PC sám odesílá e-maily - prosím o kontrolu HJT

wik1 · Příspěvekod **wik1** » 08 črc 2013 09:54

Dobrý den,
k odesílání pošty používám MS Outlook. Nedávno mi spadnul a po opětovném spuštění byl v základním nastavení. Následně mi při odesílání pošty začal hlásit chybu "Too many connections from moje IP". Od podpory na e-mail jsem zjistil, že je omezen počet odeslaných souborů na 100 za hodinu, avšak tolik e-mailu jsem nikdy neposlal. Zatím jsem to odstranil tak, že jsem smazal hesla z účtů, takže je musím pokaždé když chci něco odeslat vyplnit. Nicméně žádost o heslo vyskakuje v podstatě kontinuálně, avšak v "Poště k odeslání" není jediný e-mail.
Rád bych tu havěť z počítače dostal, avšak nevím jak.
Dále přikládám log z HJT.
Děkuji za pomoc

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:21:39, on 8.7.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Users\Vikous\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarDriverAdapter_550vista.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (file missing)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\MediaShow" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
O4 - HKLM\..\Run: [Lenovo SlideNav] "C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe"
O4 - HKLM\..\Run: [OnekeyDM] C:\Program Files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\windows\Samsung\PanelMgr\ssmmgr.exe /autorun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [Power2GoExpress] NA
O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'Default user')
O4 - Startup: Dropbox.lnk = Vikous\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://consumersupport.lenovo.com
O15 - Trusted Zone: http://edrivers.lenovo.com.cn
O15 - Trusted Zone: http://support4.lenovo.com.cn
O15 - Trusted Zone: http://think.lenovo.com.cn
O15 - Trusted Zone: http://klient.ppl.cz
O16 - DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} (CeWe Color AG & Co. OHG Control) - https://as.photoprintit.de/ips-opdata/a ... oader6.cab
O16 - DPF: {9E2CD2C3-4DDA-4473-B904-B8E6D0DBAB86} (ElevatedCreater Class) - http://consumersupport.lenovo.com/smart ... pdueng.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0}: NameServer = 62.141.0.1 213.162.65.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D}: NameServer = 217.77.165.81 217.77.161.131
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12081 bytes

Reklama

Příspěvekod **memphisto** » 08 črc 2013 10:17

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

wik1 · Příspěvekod **wik1** » 08 črc 2013 11:13

Log z Malwarebytes' Anti-Malware:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.07.08.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
Vikous :: VIKOUS-PC [administrátor]

Ochrana: Povolena

8.7.2013 10:40:12
mbam-log-2013-07-08 (10-40-12).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 235233
Uplynulý čas: 5 minut, 8 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Log z AdwCleaner:

# AdwCleaner v2.304 - Log vytvooen 08/07/2013 v 11:08:32
# Aktualizováno 03/07/2013 Xplode
# Operaení systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : Vikous - VIKOUS-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Vikous\Desktop\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

***** [Registry] *****

Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Nalezeno : HKLM\Software\AVG Secure Search
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Registry jsou eisté.

*************************

AdwCleaner[R1].txt - [1886 octets] - [08/07/2013 11:08:32]

########## EOF - C:\AdwCleaner[R1].txt - [1946 octets] ##########

Příspěvekod **memphisto** » 08 črc 2013 12:51

V adw nech vše smazat a dodej logy po mazání

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
- Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

wik1 · Příspěvekod **wik1** » 08 črc 2013 23:25

Log z ADW:

# AdwCleaner v2.304 - Log vytvooen 08/07/2013 v 23:03:35
# Aktualizováno 03/07/2013 Xplode
# Operaení systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : Vikous - VIKOUS-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Vikous\Desktop\adwcleaner.exe
# Volba [Vymazat]

***** [Služby] *****

***** [Soubory / Složky] *****

***** [Registry] *****

Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Vymazáno : HKLM\Software\AVG Secure Search
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Klíe Vymazáno : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Registry jsou eisté.

*************************

AdwCleaner[R1].txt - [2009 octets] - [08/07/2013 11:08:32]
AdwCleaner[R2].txt - [2069 octets] - [08/07/2013 23:03:19]
AdwCleaner[S1].txt - [2004 octets] - [08/07/2013 23:03:35]

########## EOF - C:\AdwCleaner[S1].txt - [2064 octets] ##########

Log z RK:

RogueKiller V8.6.2 _x64_ [Jul 2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : hxxp://www.adlice.com/forum/
Webové stránky : hxxp://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Vikous [Práva správce]
Mód : Kontrola -- Datum : 07/08/2013 23:12:47
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[DNS] HKLM\[...]\CCSet\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NALEZENO
[DNS] HKLM\[...]\CCSet\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NALEZENO
[DNS] HKLM\[...]\CS001\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NALEZENO
[DNS] HKLM\[...]\CS001\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NALEZENO
[DNS] HKLM\[...]\CS002\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NALEZENO
[DNS] HKLM\[...]\CS002\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 5edd6f26b01659852cf795e14194a892
[BSP] 165473a09ee5aaeea4427f18f0e64756 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 200 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 411648 | Size: 430657 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 882397568 | Size: 30973 Mo
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 945830272 | Size: 15108 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_07082013_231247.txt >>

Log z JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.7 (07.08.2013:2)
OS: Windows 7 Home Premium x64
Ran by Vikous on po 08.07.2013 at 23:14:37,69
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Vikous\appdata\local\{520D2C66-5C62-4861-BAE7-34BBE1970CAD}
Successfully deleted: [Empty Folder] C:\Users\Vikous\appdata\local\{886CFF33-BD6D-4A46-B207-2886942CD1AC}
Successfully deleted: [Empty Folder] C:\Users\Vikous\appdata\local\{93D5059F-2434-4D19-81F0-82EB61F23C6A}
Successfully deleted: [Empty Folder] C:\Users\Vikous\appdata\local\{F35E5126-A4D8-4ED7-947D-2B22F0509620}

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 08.07.2013 at 23:18:28,69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Příspěvekod **memphisto** » 09 črc 2013 08:21

Zavři všechny programy a prohlížeče.
Odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller (Pro Windows Vista nebo WIN7 klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status box zobrazuje "Scan" "
- Klikni na "Delete"
- Počkej, dokud status box zobrazuje "Smazání - Finished"
- Klikni na "Zprávy", zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [1].txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

wik1 · Příspěvekod **wik1** » 09 črc 2013 12:28

RK reporty mám dva tak posílám oba:

1) RKreport[0]_S_07092013_121254.txt

RogueKiller V8.6.2 _x64_ [Jul 2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : hxxp://www.adlice.com/forum/
Webové stránky : hxxp://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Vikous [Práva správce]
Mód : Kontrola -- Datum : 07/09/2013 12:12:54
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[DNS] HKLM\[...]\CCSet\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NALEZENO
[DNS] HKLM\[...]\CCSet\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NALEZENO
[DNS] HKLM\[...]\CS001\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NALEZENO
[DNS] HKLM\[...]\CS001\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NALEZENO
[DNS] HKLM\[...]\CS002\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NALEZENO
[DNS] HKLM\[...]\CS002\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NALEZENO
[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 5edd6f26b01659852cf795e14194a892
[BSP] 165473a09ee5aaeea4427f18f0e64756 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 200 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 411648 | Size: 430657 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 882397568 | Size: 30973 Mo
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 945830272 | Size: 15108 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_07092013_121254.txt >>

2) RKreport[0]_D_07092013_121323.txt

RogueKiller V8.6.2 _x64_ [Jul 2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : hxxp://www.adlice.com/forum/
Webové stránky : hxxp://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Vikous [Práva správce]
Mód : Odebrat -- Datum : 07/09/2013 12:13:23
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[DNS] HKLM\[...]\CCSet\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\CCSet\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\CS001\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\CS001\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\CS002\[...]\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0} : NameServer (62.141.0.1 213.162.65.1) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\CS002\[...]\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D} : NameServer (217.77.165.81 217.77.161.131) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 5edd6f26b01659852cf795e14194a892
[BSP] 165473a09ee5aaeea4427f18f0e64756 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 200 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 411648 | Size: 430657 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 882397568 | Size: 30973 Mo
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 945830272 | Size: 15108 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_07092013_121323.txt >>
RKreport[0]_S_07092013_121254.txt

Log z TDSSKiller:

12:16:46.0803 2120 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:16:47.0037 2120 ============================================================
12:16:47.0037 2120 Current date / time: 2013/07/09 12:16:47.0037
12:16:47.0037 2120 SystemInfo:
12:16:47.0037 2120
12:16:47.0037 2120 OS Version: 6.1.7601 ServicePack: 1.0
12:16:47.0037 2120 Product type: Workstation
12:16:47.0037 2120 ComputerName: VIKOUS-PC
12:16:47.0037 2120 UserName: Vikous
12:16:47.0037 2120 Windows directory: C:\windows
12:16:47.0037 2120 System windows directory: C:\windows
12:16:47.0037 2120 Running under WOW64
12:16:47.0037 2120 Processor architecture: Intel x64
12:16:47.0037 2120 Number of processors: 2
12:16:47.0037 2120 Page size: 0x1000
12:16:47.0037 2120 Boot type: Normal boot
12:16:47.0037 2120 ============================================================
12:16:47.0802 2120 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:16:47.0802 2120 ============================================================
12:16:47.0802 2120 \Device\Harddisk0\DR0:
12:16:47.0802 2120 MBR partitions:
12:16:47.0802 2120 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
12:16:47.0802 2120 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x34920980
12:16:47.0833 2120 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x34985980, BlocksNum 0x3C7E000
12:16:47.0833 2120 ============================================================
12:16:47.0880 2120 C: <-> \Device\Harddisk0\DR0\Partition2
12:16:47.0927 2120 D: <-> \Device\Harddisk0\DR0\Partition3
12:16:47.0927 2120 ============================================================
12:16:47.0927 2120 Initialize success
12:16:47.0927 2120 ============================================================
12:16:52.0638 2984 ============================================================
12:16:52.0638 2984 Scan started
12:16:52.0638 2984 Mode: Manual;
12:16:52.0638 2984 ============================================================
12:16:53.0465 2984 ================ Scan system memory ========================
12:16:53.0465 2984 System memory - ok
12:16:53.0465 2984 ================ Scan services =============================
12:16:53.0699 2984 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
12:16:53.0699 2984 1394ohci - ok
12:16:53.0730 2984 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
12:16:53.0745 2984 ACPI - ok
12:16:53.0792 2984 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
12:16:53.0792 2984 AcpiPmi - ok
12:16:53.0839 2984 [ 2E68544BCE94DE6677F700CF1D582B6D ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys
12:16:53.0839 2984 ACPIVPC - ok
12:16:53.0964 2984 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:16:53.0964 2984 AdobeARMservice - ok
12:16:54.0104 2984 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:16:54.0104 2984 AdobeFlashPlayerUpdateSvc - ok
12:16:54.0167 2984 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
12:16:54.0167 2984 adp94xx - ok
12:16:54.0213 2984 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
12:16:54.0213 2984 adpahci - ok
12:16:54.0229 2984 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
12:16:54.0229 2984 adpu320 - ok
12:16:54.0260 2984 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
12:16:54.0260 2984 AeLookupSvc - ok
12:16:54.0323 2984 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
12:16:54.0338 2984 AFD - ok
12:16:54.0385 2984 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
12:16:54.0385 2984 agp440 - ok
12:16:54.0416 2984 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
12:16:54.0432 2984 ALG - ok
12:16:54.0447 2984 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
12:16:54.0447 2984 aliide - ok
12:16:54.0463 2984 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
12:16:54.0463 2984 amdide - ok
12:16:54.0494 2984 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
12:16:54.0494 2984 AmdK8 - ok
12:16:54.0525 2984 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
12:16:54.0525 2984 AmdPPM - ok
12:16:54.0572 2984 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
12:16:54.0572 2984 amdsata - ok
12:16:54.0619 2984 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
12:16:54.0635 2984 amdsbs - ok
12:16:54.0650 2984 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
12:16:54.0650 2984 amdxata - ok
12:16:54.0759 2984 [ E4EDE40F326B3B815EC06FF03A8697D6 ] ameisvc C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
12:16:54.0759 2984 ameisvc - ok
12:16:54.0806 2984 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
12:16:54.0806 2984 AppID - ok
12:16:54.0837 2984 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
12:16:54.0853 2984 AppIDSvc - ok
12:16:54.0900 2984 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\windows\System32\appinfo.dll
12:16:54.0900 2984 Appinfo - ok
12:16:54.0931 2984 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
12:16:54.0931 2984 arc - ok
12:16:54.0931 2984 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
12:16:54.0931 2984 arcsas - ok
12:16:54.0962 2984 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
12:16:54.0962 2984 AsyncMac - ok
12:16:55.0009 2984 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
12:16:55.0009 2984 atapi - ok
12:16:55.0071 2984 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
12:16:55.0118 2984 AudioEndpointBuilder - ok
12:16:55.0149 2984 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
12:16:55.0149 2984 AudioSrv - ok
12:16:55.0196 2984 [ F0FC8614A0200F0DFEF70FEA581CB84E ] AVerAF35 C:\windows\system32\Drivers\AVerAF35.sys
12:16:55.0196 2984 AVerAF35 - ok
12:16:55.0430 2984 [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
12:16:55.0461 2984 AVGIDSAgent - ok
12:16:55.0524 2984 [ 139BD30C32BEE830D0CF39C5324D79DE ] AVGIDSDriver C:\windows\system32\DRIVERS\avgidsdrivera.sys
12:16:55.0524 2984 AVGIDSDriver - ok
12:16:55.0602 2984 [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA C:\windows\system32\DRIVERS\avgidsha.sys
12:16:55.0602 2984 AVGIDSHA - ok
12:16:55.0680 2984 [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64 C:\windows\system32\DRIVERS\avgldx64.sys
12:16:55.0680 2984 Avgldx64 - ok
12:16:55.0742 2984 [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga C:\windows\system32\DRIVERS\avgloga.sys
12:16:55.0742 2984 Avgloga - ok
12:16:55.0805 2984 [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64 C:\windows\system32\DRIVERS\avgmfx64.sys
12:16:55.0805 2984 Avgmfx64 - ok
12:16:55.0836 2984 [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64 C:\windows\system32\DRIVERS\avgrkx64.sys
12:16:55.0836 2984 Avgrkx64 - ok
12:16:55.0883 2984 [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia C:\windows\system32\DRIVERS\avgtdia.sys
12:16:55.0898 2984 Avgtdia - ok
12:16:55.0945 2984 [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
12:16:55.0961 2984 avgwd - ok
12:16:56.0039 2984 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
12:16:56.0039 2984 AxInstSV - ok
12:16:56.0085 2984 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
12:16:56.0101 2984 b06bdrv - ok
12:16:56.0132 2984 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
12:16:56.0132 2984 b57nd60a - ok
12:16:56.0226 2984 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
12:16:56.0226 2984 BcmSqlStartupSvc - ok
12:16:56.0257 2984 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
12:16:56.0273 2984 BDESVC - ok
12:16:56.0304 2984 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
12:16:56.0304 2984 Beep - ok
12:16:56.0397 2984 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
12:16:56.0429 2984 BFE - ok
12:16:56.0475 2984 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
12:16:56.0507 2984 BITS - ok
12:16:56.0553 2984 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
12:16:56.0553 2984 blbdrive - ok
12:16:56.0600 2984 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
12:16:56.0600 2984 bowser - ok
12:16:56.0631 2984 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
12:16:56.0631 2984 BrFiltLo - ok
12:16:56.0647 2984 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
12:16:56.0647 2984 BrFiltUp - ok
12:16:56.0694 2984 [ 34F786535F9245E4028C57B28248C9D8 ] Bridge0 C:\windows\system32\drivers\WDBridge.sys
12:16:56.0694 2984 Bridge0 - ok
12:16:56.0741 2984 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
12:16:56.0741 2984 Browser - ok
12:16:56.0787 2984 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
12:16:56.0787 2984 Brserid - ok
12:16:56.0819 2984 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
12:16:56.0819 2984 BrSerWdm - ok
12:16:56.0834 2984 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
12:16:56.0834 2984 BrUsbMdm - ok
12:16:56.0865 2984 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
12:16:56.0865 2984 BrUsbSer - ok
12:16:56.0912 2984 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
12:16:56.0912 2984 BthEnum - ok
12:16:56.0928 2984 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
12:16:56.0943 2984 BTHMODEM - ok
12:16:56.0959 2984 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
12:16:56.0959 2984 BthPan - ok
12:16:57.0053 2984 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
12:16:57.0053 2984 BTHPORT - ok
12:16:57.0099 2984 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
12:16:57.0099 2984 bthserv - ok
12:16:57.0131 2984 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
12:16:57.0131 2984 BTHUSB - ok
12:16:57.0162 2984 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\windows\system32\drivers\btwaudio.sys
12:16:57.0162 2984 btwaudio - ok
12:16:57.0193 2984 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\windows\system32\drivers\btwavdt.sys
12:16:57.0209 2984 btwavdt - ok
12:16:57.0318 2984 [ D65AA164ACD0F6706DBCFBBCC9731584 ] btwdins C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
12:16:57.0333 2984 btwdins - ok
12:16:57.0349 2984 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
12:16:57.0349 2984 btwl2cap - ok
12:16:57.0380 2984 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
12:16:57.0380 2984 btwrchid - ok
12:16:57.0396 2984 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
12:16:57.0396 2984 cdfs - ok
12:16:57.0443 2984 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
12:16:57.0443 2984 cdrom - ok
12:16:57.0489 2984 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
12:16:57.0505 2984 CertPropSvc - ok
12:16:57.0521 2984 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
12:16:57.0521 2984 circlass - ok
12:16:57.0552 2984 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
12:16:57.0552 2984 CLFS - ok
12:16:57.0645 2984 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:16:57.0645 2984 clr_optimization_v2.0.50727_32 - ok
12:16:57.0692 2984 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:16:57.0708 2984 clr_optimization_v2.0.50727_64 - ok
12:16:57.0770 2984 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:16:57.0770 2984 clr_optimization_v4.0.30319_32 - ok
12:16:57.0817 2984 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:16:57.0817 2984 clr_optimization_v4.0.30319_64 - ok
12:16:57.0848 2984 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
12:16:57.0848 2984 CmBatt - ok
12:16:57.0895 2984 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
12:16:57.0895 2984 cmdide - ok
12:16:57.0942 2984 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\windows\system32\Drivers\cng.sys
12:16:57.0957 2984 CNG - ok
12:16:57.0989 2984 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
12:16:57.0989 2984 Compbatt - ok
12:16:58.0035 2984 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
12:16:58.0051 2984 CompositeBus - ok

wik1 · Příspěvekod **wik1** » 09 črc 2013 12:29

DOKONČENÍ LOGU Z TDSSKILLER:
12:16:58.0067 2984 COMSysApp - ok
12:16:58.0098 2984 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
12:16:58.0098 2984 crcdisk - ok
12:16:58.0145 2984 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\windows\system32\cryptsvc.dll
12:16:58.0145 2984 CryptSvc - ok
12:16:58.0191 2984 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
12:16:58.0223 2984 DcomLaunch - ok
12:16:58.0269 2984 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
12:16:58.0269 2984 defragsvc - ok
12:16:58.0316 2984 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
12:16:58.0316 2984 DfsC - ok
12:16:58.0347 2984 DgiVecp - ok
12:16:58.0394 2984 [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus C:\windows\system32\DRIVERS\ssudbus.sys
12:16:58.0394 2984 dg_ssudbus - ok
12:16:58.0441 2984 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
12:16:58.0457 2984 Dhcp - ok
12:16:58.0503 2984 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
12:16:58.0503 2984 discache - ok
12:16:58.0550 2984 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
12:16:58.0550 2984 Disk - ok
12:16:58.0597 2984 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
12:16:58.0613 2984 Dnscache - ok
12:16:58.0644 2984 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
12:16:58.0659 2984 dot3svc - ok
12:16:58.0706 2984 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
12:16:58.0706 2984 DPS - ok
12:16:58.0753 2984 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
12:16:58.0753 2984 drmkaud - ok
12:16:58.0815 2984 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
12:16:58.0831 2984 DXGKrnl - ok
12:16:58.0878 2984 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
12:16:58.0878 2984 EapHost - ok
12:16:59.0003 2984 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
12:16:59.0018 2984 ebdrv - ok
12:16:59.0049 2984 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
12:16:59.0049 2984 EFS - ok
12:16:59.0127 2984 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
12:16:59.0159 2984 ehRecvr - ok
12:16:59.0205 2984 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
12:16:59.0205 2984 ehSched - ok
12:16:59.0252 2984 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
12:16:59.0268 2984 elxstor - ok
12:16:59.0299 2984 [ 524C79054636D2E5751169005006460B ] enecir C:\windows\system32\DRIVERS\enecir.sys
12:16:59.0299 2984 enecir - ok
12:16:59.0315 2984 [ E17EB95358F396E27D573A1B20F891F8 ] enecirhid C:\windows\system32\DRIVERS\enecirhid.sys
12:16:59.0330 2984 enecirhid - ok
12:16:59.0330 2984 [ 8492D808C79BD6FE439F77BE84956CDF ] enecirhidma C:\windows\system32\DRIVERS\enecirhidma.sys
12:16:59.0330 2984 enecirhidma - ok
12:16:59.0361 2984 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
12:16:59.0361 2984 ErrDev - ok
12:16:59.0393 2984 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
12:16:59.0408 2984 EventSystem - ok
12:16:59.0471 2984 [ 86F7951BBCEE4A86E79A97306BD14318 ] ew_hwusbdev C:\windows\system32\DRIVERS\ew_hwusbdev.sys
12:16:59.0471 2984 ew_hwusbdev - ok
12:16:59.0517 2984 [ 55E0EDA185869F7EA67EA97FD0655B39 ] ew_usbenumfilter C:\windows\system32\DRIVERS\ew_usbenumfilter.sys
12:16:59.0517 2984 ew_usbenumfilter - ok
12:16:59.0533 2984 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
12:16:59.0533 2984 exfat - ok
12:16:59.0564 2984 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
12:16:59.0564 2984 fastfat - ok
12:16:59.0627 2984 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
12:16:59.0642 2984 Fax - ok
12:16:59.0673 2984 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
12:16:59.0673 2984 fdc - ok
12:16:59.0720 2984 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
12:16:59.0720 2984 fdPHost - ok
12:16:59.0736 2984 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
12:16:59.0736 2984 FDResPub - ok
12:16:59.0736 2984 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
12:16:59.0751 2984 FileInfo - ok
12:16:59.0751 2984 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
12:16:59.0751 2984 Filetrace - ok
12:16:59.0767 2984 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
12:16:59.0767 2984 flpydisk - ok
12:16:59.0814 2984 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
12:16:59.0829 2984 FltMgr - ok
12:16:59.0892 2984 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll
12:16:59.0939 2984 FontCache - ok
12:17:00.0017 2984 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:17:00.0017 2984 FontCache3.0.0.0 - ok
12:17:00.0063 2984 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
12:17:00.0063 2984 FsDepends - ok
12:17:00.0095 2984 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\windows\system32\DRIVERS\fssfltr.sys
12:17:00.0095 2984 fssfltr - ok
12:17:00.0204 2984 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
12:17:00.0282 2984 fsssvc - ok
12:17:00.0438 2984 [ DDEE99DC54EFA20BD5A442CD733C4462 ] FsUsbExDisk C:\windows\SysWOW64\FsUsbExDisk.SYS
12:17:00.0438 2984 FsUsbExDisk - ok
12:17:00.0469 2984 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
12:17:00.0469 2984 Fs_Rec - ok
12:17:00.0531 2984 [ 6CCF66BCA3D24146CB8B0930DBA1448F ] funfrm C:\windows\system32\drivers\funfrm.sys
12:17:00.0531 2984 funfrm - ok
12:17:00.0594 2984 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
12:17:00.0594 2984 fvevol - ok
12:17:00.0625 2984 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
12:17:00.0625 2984 gagp30kx - ok
12:17:00.0687 2984 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
12:17:00.0719 2984 gpsvc - ok
12:17:00.0781 2984 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\windows\system32\DRIVERS\hamachi.sys
12:17:00.0781 2984 hamachi - ok
12:17:00.0922 2984 [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:17:00.0937 2984 Hamachi2Svc - ok
12:17:00.0968 2984 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
12:17:00.0968 2984 hcw85cir - ok
12:17:01.0280 2984 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
12:17:01.0280 2984 HdAudAddService - ok
12:17:01.0343 2984 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
12:17:01.0343 2984 HDAudBus - ok
12:17:01.0358 2984 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
12:17:01.0358 2984 HidBatt - ok
12:17:01.0390 2984 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
12:17:01.0390 2984 HidBth - ok
12:17:01.0421 2984 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
12:17:01.0421 2984 HidIr - ok
12:17:01.0436 2984 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
12:17:01.0436 2984 hidserv - ok
12:17:01.0499 2984 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
12:17:01.0499 2984 HidUsb - ok
12:17:01.0530 2984 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
12:17:01.0530 2984 hkmsvc - ok
12:17:01.0577 2984 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
12:17:01.0592 2984 HomeGroupListener - ok
12:17:01.0624 2984 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
12:17:01.0624 2984 HomeGroupProvider - ok
12:17:01.0686 2984 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
12:17:01.0686 2984 HpSAMD - ok
12:17:01.0748 2984 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
12:17:01.0764 2984 HTTP - ok
12:17:01.0811 2984 [ 30516686A4ACA616AE8728BC0CB65E51 ] huawei_cdcacm C:\windows\system32\DRIVERS\ew_jucdcacm.sys
12:17:01.0826 2984 huawei_cdcacm - ok
12:17:01.0873 2984 [ E1EE74AC69C88C8379898D97E34A8852 ] huawei_enumerator C:\windows\system32\DRIVERS\ew_jubusenum.sys
12:17:01.0873 2984 huawei_enumerator - ok
12:17:01.0904 2984 [ D13B215259D8362DC1C6F8F645DF7BA9 ] huawei_ext_ctrl C:\windows\system32\DRIVERS\ew_juextctrl.sys
12:17:01.0904 2984 huawei_ext_ctrl - ok
12:17:01.0920 2984 [ 6AF9654CEDC83CB533771C9FFC6B27B0 ] huawei_wwanecm C:\windows\system32\DRIVERS\ew_juwwanecm.sys
12:17:01.0936 2984 huawei_wwanecm - ok
12:17:01.0982 2984 [ 8F9B0FC4EC3A8194BD4CBC5ED3E7ABEB ] hwdatacard C:\windows\system32\DRIVERS\ewusbmdm.sys
12:17:01.0982 2984 hwdatacard - ok
12:17:02.0029 2984 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
12:17:02.0029 2984 hwpolicy - ok
12:17:02.0092 2984 [ B45B3647BA32749B94FA689175EC8C26 ] hwusbdev C:\windows\system32\DRIVERS\ewusbdev.sys
12:17:02.0092 2984 hwusbdev - ok
12:17:02.0154 2984 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
12:17:02.0154 2984 i8042prt - ok
12:17:02.0232 2984 [ 0E899D0DB39617AA0B2F992E7E95B5EB ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
12:17:02.0232 2984 IAANTMON - ok
12:17:02.0279 2984 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
12:17:02.0279 2984 iaStor - ok
12:17:02.0341 2984 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
12:17:02.0341 2984 iaStorV - ok
12:17:02.0435 2984 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:17:02.0466 2984 idsvc - ok
12:17:02.0622 2984 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
12:17:02.0653 2984 igfx - ok
12:17:02.0762 2984 [ D951D20153E51928F9DB2227D6FF5C7A ] IGRS C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
12:17:02.0762 2984 IGRS - ok
12:17:02.0794 2984 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
12:17:02.0794 2984 iirsp - ok
12:17:02.0856 2984 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
12:17:02.0887 2984 IKEEXT - ok
12:17:02.0981 2984 [ BEA724F57B1525883B72856FB8CAA410 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
12:17:02.0996 2984 IntcAzAudAddService - ok
12:17:03.0012 2984 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
12:17:03.0012 2984 intelide - ok
12:17:03.0043 2984 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
12:17:03.0043 2984 intelppm - ok
12:17:03.0074 2984 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
12:17:03.0074 2984 IPBusEnum - ok
12:17:03.0106 2984 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
12:17:03.0106 2984 IpFilterDriver - ok
12:17:03.0152 2984 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
12:17:03.0168 2984 iphlpsvc - ok
12:17:03.0199 2984 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
12:17:03.0215 2984 IPMIDRV - ok
12:17:03.0230 2984 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
12:17:03.0230 2984 IPNAT - ok
12:17:03.0262 2984 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
12:17:03.0262 2984 IRENUM - ok
12:17:03.0277 2984 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
12:17:03.0277 2984 isapnp - ok
12:17:03.0308 2984 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
12:17:03.0324 2984 iScsiPrt - ok
12:17:03.0371 2984 [ 08DD34F74D65E1C8F238565570952630 ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
12:17:03.0371 2984 k57nd60a - ok
12:17:03.0402 2984 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
12:17:03.0418 2984 kbdclass - ok
12:17:03.0449 2984 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
12:17:03.0449 2984 kbdhid - ok
12:17:03.0449 2984 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
12:17:03.0464 2984 KeyIso - ok
12:17:03.0496 2984 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
12:17:03.0496 2984 KSecDD - ok
12:17:03.0542 2984 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
12:17:03.0542 2984 KSecPkg - ok
12:17:03.0558 2984 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
12:17:03.0558 2984 ksthunk - ok
12:17:03.0589 2984 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
12:17:03.0605 2984 KtmRm - ok
12:17:03.0667 2984 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
12:17:03.0667 2984 LanmanServer - ok
12:17:03.0714 2984 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
12:17:03.0730 2984 LanmanWorkstation - ok
12:17:03.0854 2984 [ 7FCB3EC66361F157BCD5B5C33CE2AC16 ] Lenovo ReadyComm AppSvc C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
12:17:03.0870 2984 Lenovo ReadyComm AppSvc - ok
12:17:03.0917 2984 [ 5287074E79E4BA82510886F684DC5F72 ] Lenovo ReadyComm ConnSvc C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
12:17:03.0948 2984 Lenovo ReadyComm ConnSvc - ok
12:17:03.0979 2984 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
12:17:03.0979 2984 lltdio - ok
12:17:04.0010 2984 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
12:17:04.0026 2984 lltdsvc - ok
12:17:04.0042 2984 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
12:17:04.0042 2984 lmhosts - ok
12:17:04.0088 2984 [ 16679269303613C4CE7C8FF03413410F ] LPCFilter C:\windows\system32\DRIVERS\LPCFilter.sys
12:17:04.0088 2984 LPCFilter - ok
12:17:04.0135 2984 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
12:17:04.0135 2984 LSI_FC - ok
12:17:04.0182 2984 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
12:17:04.0182 2984 LSI_SAS - ok
12:17:04.0213 2984 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
12:17:04.0213 2984 LSI_SAS2 - ok
12:17:04.0229 2984 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
12:17:04.0244 2984 LSI_SCSI - ok
12:17:04.0276 2984 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
12:17:04.0276 2984 luafv - ok
12:17:04.0322 2984 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
12:17:04.0322 2984 MBAMProtector - ok
12:17:04.0385 2984 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:17:04.0385 2984 MBAMScheduler - ok
12:17:04.0447 2984 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
12:17:04.0447 2984 MBAMService - ok
12:17:04.0494 2984 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
12:17:04.0510 2984 Mcx2Svc - ok
12:17:04.0541 2984 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
12:17:04.0541 2984 megasas - ok
12:17:04.0572 2984 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
12:17:04.0572 2984 MegaSR - ok
12:17:04.0619 2984 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
12:17:04.0619 2984 MMCSS - ok
12:17:04.0634 2984 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
12:17:04.0634 2984 Modem - ok
12:17:04.0650 2984 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
12:17:04.0650 2984 monitor - ok
12:17:04.0697 2984 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
12:17:04.0697 2984 mouclass - ok
12:17:04.0728 2984 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
12:17:04.0728 2984 mouhid - ok
12:17:04.0759 2984 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
12:17:04.0759 2984 mountmgr - ok
12:17:04.0806 2984 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
12:17:04.0806 2984 mpio - ok
12:17:04.0822 2984 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
12:17:04.0822 2984 mpsdrv - ok
12:17:04.0884 2984 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
12:17:04.0915 2984 MpsSvc - ok
12:17:04.0946 2984 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
12:17:04.0962 2984 MRxDAV - ok
12:17:04.0978 2984 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
12:17:04.0993 2984 mrxsmb - ok
12:17:05.0024 2984 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
12:17:05.0024 2984 mrxsmb10 - ok
12:17:05.0056 2984 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
12:17:05.0056 2984 mrxsmb20 - ok
12:17:05.0102 2984 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
12:17:05.0102 2984 msahci - ok
12:17:05.0134 2984 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
12:17:05.0134 2984 msdsm - ok
12:17:05.0165 2984 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
12:17:05.0180 2984 MSDTC - ok
12:17:05.0243 2984 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
12:17:05.0243 2984 Msfs - ok
12:17:05.0258 2984 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
12:17:05.0258 2984 mshidkmdf - ok
12:17:05.0274 2984 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
12:17:05.0274 2984 msisadrv - ok
12:17:05.0305 2984 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
12:17:05.0305 2984 MSiSCSI - ok
12:17:05.0321 2984 msiserver - ok
12:17:05.0336 2984 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
12:17:05.0336 2984 MSKSSRV - ok
12:17:05.0352 2984 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
12:17:05.0352 2984 MSPCLOCK - ok
12:17:05.0368 2984 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
12:17:05.0368 2984 MSPQM - ok
12:17:05.0414 2984 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
12:17:05.0414 2984 MsRPC - ok
12:17:05.0477 2984 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
12:17:05.0477 2984 mssmbios - ok
12:17:05.0539 2984 MSSQL$MSSMLBIZ - ok
12:17:05.0602 2984 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
12:17:05.0602 2984 MSSQLServerADHelper - ok
12:17:05.0633 2984 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
12:17:05.0633 2984 MSTEE - ok
12:17:05.0664 2984 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
12:17:05.0680 2984 MTConfig - ok
12:17:05.0711 2984 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
12:17:05.0711 2984 Mup - ok
12:17:05.0773 2984 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
12:17:05.0789 2984 napagent - ok
12:17:05.0851 2984 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
12:17:05.0851 2984 NativeWifiP - ok
12:17:05.0929 2984 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
12:17:05.0945 2984 NDIS - ok
12:17:05.0960 2984 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
12:17:05.0976 2984 NdisCap - ok
12:17:05.0992 2984 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
12:17:05.0992 2984 NdisTapi - ok
12:17:06.0054 2984 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
12:17:06.0054 2984 Ndisuio - ok
12:17:06.0101 2984 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
12:17:06.0101 2984 NdisWan - ok
12:17:06.0132 2984 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
12:17:06.0132 2984 NDProxy - ok
12:17:06.0163 2984 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
12:17:06.0163 2984 NetBIOS - ok
12:17:06.0210 2984 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
12:17:06.0226 2984 NetBT - ok
12:17:06.0241 2984 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
12:17:06.0241 2984 Netlogon - ok
12:17:06.0272 2984 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
12:17:06.0288 2984 Netman - ok
12:17:06.0304 2984 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
12:17:06.0304 2984 netprofm - ok
12:17:06.0335 2984 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:17:06.0350 2984 NetTcpPortSharing - ok
12:17:06.0538 2984 [ 4D85A450EDEF10C38882182753A49AAE ] NETw5s64 C:\windows\system32\DRIVERS\NETw5s64.sys
12:17:06.0584 2984 NETw5s64 - ok
12:17:06.0787 2984 [ 705283C02177809CA9FA7CC58A4F1E77 ] netw5v64 C:\windows\system32\DRIVERS\netw5v64.sys
12:17:06.0818 2984 netw5v64 - ok
12:17:06.0865 2984 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
12:17:06.0865 2984 nfrd960 - ok
12:17:06.0881 2984 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
12:17:06.0896 2984 NlaSvc - ok
12:17:06.0896 2984 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
12:17:06.0896 2984 Npfs - ok
12:17:06.0928 2984 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
12:17:06.0928 2984 nsi - ok
12:17:06.0943 2984 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
12:17:06.0943 2984 nsiproxy - ok
12:17:07.0021 2984 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
12:17:07.0037 2984 Ntfs - ok
12:17:07.0177 2984 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
12:17:07.0177 2984 Null - ok
12:17:07.0240 2984 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\windows\system32\drivers\nvhda64v.sys
12:17:07.0255 2984 NVHDA - ok
12:17:07.0520 2984 [ FD39B98FF1BB8ED3848781497E9D02E0 ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
12:17:07.0583 2984 nvlddmkm - ok
12:17:07.0630 2984 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
12:17:07.0630 2984 nvraid - ok
12:17:07.0661 2984 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
12:17:07.0661 2984 nvstor - ok
12:17:07.0708 2984 [ C1668D58547DD0C4A0FBD6AFA20D5890 ] nvsvc C:\windows\system32\nvvsvc.exe
12:17:07.0723 2984 nvsvc - ok
12:17:07.0754 2984 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
12:17:07.0754 2984 nv_agp - ok
12:17:07.0848 2984 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:17:07.0879 2984 odserv - ok
12:17:07.0910 2984 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
12:17:07.0910 2984 ohci1394 - ok
12:17:07.0942 2984 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:17:07.0942 2984 ose - ok
12:17:07.0988 2984 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
12:17:07.0988 2984 p2pimsvc - ok
12:17:08.0020 2984 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
12:17:08.0035 2984 p2psvc - ok
12:17:08.0066 2984 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
12:17:08.0066 2984 Parport - ok
12:17:08.0098 2984 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
12:17:08.0098 2984 partmgr - ok
12:17:08.0113 2984 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
12:17:08.0129 2984 PcaSvc - ok
12:17:08.0160 2984 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
12:17:08.0160 2984 pci - ok
12:17:08.0176 2984 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
12:17:08.0176 2984 pciide - ok
12:17:08.0207 2984 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
12:17:08.0207 2984 pcmcia - ok
12:17:08.0238 2984 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
12:17:08.0238 2984 pcw - ok
12:17:08.0269 2984 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
12:17:08.0269 2984 PEAUTH - ok
12:17:08.0300 2984 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
12:17:08.0300 2984 PerfHost - ok
12:17:08.0378 2984 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
12:17:08.0425 2984 pla - ok
12:17:08.0472 2984 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
12:17:08.0488 2984 PlugPlay - ok
12:17:08.0503 2984 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
12:17:08.0503 2984 PNRPAutoReg - ok
12:17:08.0519 2984 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
12:17:08.0519 2984 PNRPsvc - ok
12:17:08.0550 2984 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
12:17:08.0566 2984 PolicyAgent - ok
12:17:08.0581 2984 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
12:17:08.0597 2984 Power - ok
12:17:08.0628 2984 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
12:17:08.0628 2984 PptpMiniport - ok
12:17:08.0644 2984 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
12:17:08.0644 2984 Processor - ok
12:17:08.0675 2984 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
12:17:08.0690 2984 ProfSvc - ok
12:17:08.0706 2984 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
12:17:08.0706 2984 ProtectedStorage - ok
12:17:08.0753 2984 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
12:17:08.0753 2984 Psched - ok
12:17:08.0784 2984 PS_MDP - ok
12:17:08.0846 2984 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
12:17:08.0862 2984 ql2300 - ok
12:17:08.0893 2984 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
12:17:08.0893 2984 ql40xx - ok
12:17:08.0909 2984 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
12:17:08.0924 2984 QWAVE - ok
12:17:08.0940 2984 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
12:17:08.0940 2984 QWAVEdrv - ok
12:17:08.0956 2984 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
12:17:08.0956 2984 RasAcd - ok
12:17:08.0987 2984 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
12:17:08.0987 2984 RasAgileVpn - ok
12:17:09.0002 2984 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
12:17:09.0002 2984 RasAuto - ok
12:17:09.0034 2984 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
12:17:09.0034 2984 Rasl2tp - ok
12:17:09.0080 2984 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
12:17:09.0096 2984 RasMan - ok
12:17:09.0127 2984 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
12:17:09.0127 2984 RasPppoe - ok
12:17:09.0143 2984 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
12:17:09.0143 2984 RasSstp - ok
12:17:09.0190 2984 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
12:17:09.0205 2984 rdbss - ok
12:17:09.0221 2984 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
12:17:09.0221 2984 rdpbus - ok
12:17:09.0236 2984 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
12:17:09.0252 2984 RDPCDD - ok
12:17:09.0283 2984 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
12:17:09.0283 2984 RDPENCDD - ok
12:17:09.0299 2984 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
12:17:09.0299 2984 RDPREFMP - ok
12:17:09.0361 2984 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
12:17:09.0361 2984 RdpVideoMiniport - ok
12:17:09.0408 2984 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
12:17:09.0408 2984 RDPWD - ok
12:17:09.0470 2984 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
12:17:09.0470 2984 rdyboost - ok
12:17:09.0486 2984 ReadyComm.DirectRouter - ok
12:17:09.0517 2984 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
12:17:09.0517 2984 RemoteAccess - ok
12:17:09.0548 2984 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
12:17:09.0564 2984 RemoteRegistry - ok
12:17:09.0611 2984 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
12:17:09.0611 2984 RFCOMM - ok
12:17:09.0658 2984 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
12:17:09.0658 2984 RichVideo - ok
12:17:09.0689 2984 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
12:17:09.0689 2984 RpcEptMapper - ok
12:17:09.0720 2984 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
12:17:09.0720 2984 RpcLocator - ok
12:17:09.0767 2984 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
12:17:09.0782 2984 RpcSs - ok
12:17:09.0814 2984 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
12:17:09.0814 2984 rspndr - ok
12:17:09.0876 2984 [ DA67387F9644C48F204147B351877CB3 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
12:17:09.0876 2984 RSUSBSTOR - ok
12:17:09.0892 2984 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
12:17:09.0892 2984 SamSs - ok
12:17:09.0923 2984 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
12:17:09.0923 2984 sbp2port - ok
12:17:09.0954 2984 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
12:17:09.0954 2984 SCardSvr - ok
12:17:09.0985 2984 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
12:17:09.0985 2984 scfilter - ok
12:17:10.0063 2984 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
12:17:10.0110 2984 Schedule - ok
12:17:10.0157 2984 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
12:17:10.0157 2984 SCPolicySvc - ok
12:17:10.0172 2984 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
12:17:10.0172 2984 SDRSVC - ok
12:17:10.0235 2984 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
12:17:10.0235 2984 SeaPort - ok
12:17:10.0282 2984 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
12:17:10.0282 2984 secdrv - ok
12:17:10.0328 2984 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
12:17:10.0344 2984 seclogon - ok
12:17:10.0360 2984 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
12:17:10.0375 2984 SENS - ok
12:17:10.0375 2984 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
12:17:10.0391 2984 SensrSvc - ok
12:17:10.0406 2984 [ EF7B5EC21E7C0F6E4237424A41FA720E ] Ser2pl C:\windows\system32\DRIVERS\ser2pl64.sys
12:17:10.0406 2984 Ser2pl - ok
12:17:10.0438 2984 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
12:17:10.0453 2984 Serenum - ok
12:17:10.0469 2984 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
12:17:10.0469 2984 Serial - ok
12:17:10.0484 2984 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
12:17:10.0500 2984 sermouse - ok
12:17:10.0547 2984 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
12:17:10.0547 2984 SessionEnv - ok
12:17:10.0578 2984 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
12:17:10.0578 2984 sffdisk - ok
12:17:10.0609 2984 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
12:17:10.0609 2984 sffp_mmc - ok
12:17:10.0625 2984 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
12:17:10.0625 2984 sffp_sd - ok
12:17:10.0672 2984 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
12:17:10.0672 2984 sfloppy - ok
12:17:10.0703 2984 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
12:17:10.0718 2984 SharedAccess - ok
12:17:10.0765 2984 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
12:17:10.0781 2984 ShellHWDetection - ok
12:17:10.0812 2984 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
12:17:10.0812 2984 SiSRaid2 - ok
12:17:10.0859 2984 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
12:17:10.0859 2984 SiSRaid4 - ok
12:17:10.0937 2984 [ B23EC17A0CD78FAE8DE3BBB7DF228D7E ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:17:10.0937 2984 SkypeUpdate - ok
12:17:10.0999 2984 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
12:17:10.0999 2984 Smb - ok
12:17:11.0046 2984 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
12:17:11.0046 2984 SNMPTRAP - ok
12:17:11.0062 2984 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
12:17:11.0062 2984 spldr - ok
12:17:11.0108 2984 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
12:17:11.0108 2984 Spooler - ok
12:17:11.0233 2984 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
12:17:11.0249 2984 sppsvc - ok
12:17:11.0327 2984 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
12:17:11.0342 2984 sppuinotify - ok
12:17:11.0374 2984 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
12:17:11.0374 2984 SQLBrowser - ok
12:17:11.0436 2984 [ 3C432A96363097870995E2A3C8B66ABD ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:17:11.0436 2984 SQLWriter - ok
12:17:11.0483 2984 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
12:17:11.0483 2984 srv - ok
12:17:11.0545 2984 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
12:17:11.0545 2984 srv2 - ok
12:17:11.0576 2984 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
12:17:11.0576 2984 srvnet - ok
12:17:11.0608 2984 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
12:17:11.0623 2984 SSDPSRV - ok
12:17:11.0654 2984 [ 0211AB46B73A2623B86C1CFCB30579AB ] SSPORT C:\windows\system32\Drivers\SSPORT.sys
12:17:11.0670 2984 SSPORT - ok
12:17:11.0686 2984 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
12:17:11.0701 2984 SstpSvc - ok
12:17:11.0779 2984 [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm C:\windows\system32\DRIVERS\ssudmdm.sys
12:17:11.0779 2984 ssudmdm - ok
12:17:11.0810 2984 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
12:17:11.0810 2984 stexstor - ok
12:17:11.0842 2984 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
12:17:11.0842 2984 StillCam - ok
12:17:11.0904 2984 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
12:17:11.0935 2984 stisvc - ok
12:17:11.0966 2984 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
12:17:11.0966 2984 swenum - ok
12:17:11.0998 2984 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
12:17:12.0013 2984 swprv - ok
12:17:12.0060 2984 [ 12A35E44D8647985FCDB8D298A590134 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
12:17:12.0060 2984 SynTP - ok
12:17:12.0138 2984 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
12:17:12.0216 2984 SysMain - ok
12:17:12.0263 2984 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
12:17:12.0263 2984 TabletInputService - ok
12:17:12.0278 2984 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
12:17:12.0294 2984 TapiSrv - ok
12:17:12.0310 2984 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
12:17:12.0310 2984 TBS - ok
12:17:12.0388 2984 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\windows\system32\drivers\tcpip.sys
12:17:12.0403 2984 Tcpip - ok
12:17:12.0466 2984 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
12:17:12.0481 2984 TCPIP6 - ok
12:17:12.0512 2984 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
12:17:12.0512 2984 tcpipreg - ok
12:17:12.0544 2984 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
12:17:12.0544 2984 TDPIPE - ok
12:17:12.0575 2984 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
12:17:12.0575 2984 TDTCP - ok
12:17:12.0622 2984 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
12:17:12.0622 2984 tdx - ok
12:17:12.0653 2984 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
12:17:12.0653 2984 TermDD - ok
12:17:12.0684 2984 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
12:17:12.0700 2984 TermService - ok
12:17:12.0731 2984 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
12:17:12.0731 2984 Themes - ok
12:17:12.0762 2984 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
12:17:12.0762 2984 THREADORDER - ok
12:17:12.0778 2984 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
12:17:12.0793 2984 TrkWks - ok
12:17:12.0840 2984 [ 370A6907DDF79532A39319492B1FA38A ] truecrypt C:\windows\system32\drivers\truecrypt.sys
12:17:12.0840 2984 truecrypt - ok
12:17:12.0902 2984 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
12:17:12.0902 2984 TrustedInstaller - ok
12:17:12.0949 2984 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
12:17:12.0949 2984 tssecsrv - ok
12:17:12.0996 2984 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
12:17:12.0996 2984 TsUsbFlt - ok
12:17:13.0058 2984 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
12:17:13.0074 2984 tunnel - ok
12:17:13.0105 2984 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
12:17:13.0105 2984 uagp35 - ok
12:17:13.0136 2984 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
12:17:13.0136 2984 udfs - ok
12:17:13.0168 2984 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
12:17:13.0168 2984 UI0Detect - ok
12:17:13.0214 2984 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
12:17:13.0214 2984 uliagpkx - ok
12:17:13.0261 2984 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\drivers\umbus.sys
12:17:13.0261 2984 umbus - ok
12:17:13.0277 2984 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
12:17:13.0277 2984 UmPass - ok
12:17:13.0308 2984 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
12:17:13.0324 2984 upnphost - ok
12:17:13.0339 2984 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
12:17:13.0339 2984 usbccgp - ok
12:17:13.0386 2984 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
12:17:13.0386 2984 usbcir - ok
12:17:13.0402 2984 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
12:17:13.0402 2984 usbehci - ok
12:17:13.0433 2984 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
12:17:13.0433 2984 usbhub - ok
12:17:13.0464 2984 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
12:17:13.0464 2984 usbohci - ok
12:17:13.0495 2984 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
12:17:13.0495 2984 usbprint - ok
12:17:13.0542 2984 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
12:17:13.0542 2984 usbscan - ok
12:17:13.0573 2984 [ 5878E66639535AB9238412CB5F0DC2BE ] usbsmi C:\windows\system32\DRIVERS\SMIksdrv.sys
12:17:13.0573 2984 usbsmi - ok
12:17:13.0604 2984 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
12:17:13.0604 2984 USBSTOR - ok
12:17:13.0636 2984 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\DRIVERS\usbuhci.sys
12:17:13.0636 2984 usbuhci - ok
12:17:13.0714 2984 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
12:17:13.0714 2984 usbvideo - ok
12:17:13.0776 2984 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\windows\system32\DRIVERS\usb8023x.sys
12:17:13.0776 2984 usb_rndisx - ok
12:17:13.0807 2984 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
12:17:13.0823 2984 UxSms - ok
12:17:13.0838 2984 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
12:17:13.0838 2984 VaultSvc - ok
12:17:13.0885 2984 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
12:17:13.0885 2984 vdrvroot - ok
12:17:13.0932 2984 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
12:17:13.0963 2984 vds - ok
12:17:14.0010 2984 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
12:17:14.0010 2984 vga - ok
12:17:14.0026 2984 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
12:17:14.0026 2984 VgaSave - ok
12:17:14.0072 2984 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
12:17:14.0072 2984 vhdmp - ok
12:17:14.0088 2984 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
12:17:14.0088 2984 viaide - ok
12:17:14.0119 2984 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
12:17:14.0119 2984 volmgr - ok
12:17:14.0166 2984 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
12:17:14.0166 2984 volmgrx - ok
12:17:14.0182 2984 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
12:17:14.0182 2984 volsnap - ok
12:17:14.0213 2984 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
12:17:14.0213 2984 vsmraid - ok
12:17:14.0291 2984 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
12:17:14.0369 2984 VSS - ok
12:17:14.0400 2984 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\System32\drivers\vwifibus.sys
12:17:14.0400 2984 vwifibus - ok
12:17:14.0447 2984 [ 6A3D66263414FF0D6FA754C646612F3F ] VWiFiFlt C:\windows\system32\DRIVERS\vwififlt.sys
12:17:14.0447 2984 VWiFiFlt - ok
12:17:14.0478 2984 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
12:17:14.0478 2984 vwifimp - ok
12:17:14.0509 2984 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
12:17:14.0525 2984 W32Time - ok
12:17:14.0556 2984 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
12:17:14.0556 2984 WacomPen - ok
12:17:14.0603 2984 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
12:17:14.0618 2984 WANARP - ok
12:17:14.0634 2984 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
12:17:14.0634 2984 Wanarpv6 - ok
12:17:14.0712 2984 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
12:17:14.0743 2984 WatAdminSvc - ok
12:17:14.0790 2984 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
12:17:14.0852 2984 wbengine - ok
12:17:14.0884 2984 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
12:17:14.0884 2984 WbioSrvc - ok
12:17:14.0930 2984 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
12:17:14.0962 2984 wcncsvc - ok
12:17:14.0977 2984 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
12:17:14.0993 2984 WcsPlugInService - ok
12:17:15.0008 2984 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
12:17:15.0024 2984 Wd - ok
12:17:15.0055 2984 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
12:17:15.0071 2984 Wdf01000 - ok
12:17:15.0086 2984 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
12:17:15.0086 2984 WdiServiceHost - ok
12:17:15.0086 2984 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
12:17:15.0086 2984 WdiSystemHost - ok
12:17:15.0118 2984 [ 2A444ACF7DD446505BCC801F8F6AE5FD ] wdmirror C:\windows\system32\DRIVERS\WDMirror.sys
12:17:15.0118 2984 wdmirror - ok
12:17:15.0164 2984 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
12:17:15.0180 2984 WebClient - ok
12:17:15.0196 2984 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
12:17:15.0211 2984 Wecsvc - ok
12:17:15.0211 2984 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
12:17:15.0227 2984 wercplsupport - ok
12:17:15.0258 2984 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
12:17:15.0258 2984 WerSvc - ok
12:17:15.0289 2984 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
12:17:15.0289 2984 WfpLwf - ok
12:17:15.0320 2984 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
12:17:15.0320 2984 WimFltr - ok
12:17:15.0336 2984 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
12:17:15.0352 2984 WIMMount - ok
12:17:15.0383 2984 WinDefend - ok
12:17:15.0398 2984 WinHttpAutoProxySvc - ok
12:17:15.0445 2984 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
12:17:15.0461 2984 Winmgmt - ok
12:17:15.0554 2984 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
12:17:15.0632 2984 WinRM - ok
12:17:15.0695 2984 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
12:17:15.0695 2984 WinUsb - ok
12:17:15.0742 2984 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
12:17:15.0773 2984 Wlansvc - ok
12:17:15.0929 2984 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:17:15.0944 2984 wlidsvc - ok
12:17:15.0991 2984 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
12:17:15.0991 2984 WmiAcpi - ok
12:17:16.0022 2984 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
12:17:16.0022 2984 wmiApSrv - ok
12:17:16.0054 2984 WMPNetworkSvc - ok
12:17:16.0100 2984 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
12:17:16.0100 2984 WPCSvc - ok
12:17:16.0147 2984 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
12:17:16.0163 2984 WPDBusEnum - ok
12:17:16.0178 2984 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
12:17:16.0178 2984 ws2ifsl - ok
12:17:16.0194 2984 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
12:17:16.0194 2984 wscsvc - ok
12:17:16.0210 2984 WSearch - ok
12:17:16.0241 2984 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\windows\system32\DRIVERS\wsvd.sys
12:17:16.0256 2984 wsvd - ok
12:17:16.0350 2984 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
12:17:16.0459 2984 wuauserv - ok
12:17:16.0506 2984 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
12:17:16.0522 2984 WudfPf - ok
12:17:16.0553 2984 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
12:17:16.0553 2984 WUDFRd - ok
12:17:16.0584 2984 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
12:17:16.0584 2984 wudfsvc - ok
12:17:16.0631 2984 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\windows\System32\wwansvc.dll
12:17:16.0646 2984 WwanSvc - ok
12:17:16.0693 2984 ================ Scan global ===============================
12:17:16.0709 2984 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
12:17:16.0740 2984 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
12:17:16.0756 2984 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
12:17:16.0787 2984 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
12:17:16.0818 2984 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
12:17:16.0818 2984 [Global] - ok
12:17:16.0818 2984 ================ Scan MBR ==================================
12:17:16.0834 2984 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:17:17.0083 2984 \Device\Harddisk0\DR0 - ok
12:17:17.0083 2984 ================ Scan VBR ==================================
12:17:17.0099 2984 [ 7794CD083BD537BACCC9CEEA2BF07D3E ] \Device\Harddisk0\DR0\Partition1
12:17:17.0099 2984 \Device\Harddisk0\DR0\Partition1 - ok
12:17:17.0114 2984 [ 8D8700E4B2040F3AFA03C1FC4FC98F2E ] \Device\Harddisk0\DR0\Partition2
12:17:17.0114 2984 \Device\Harddisk0\DR0\Partition2 - ok
12:17:17.0161 2984 [ AF911C5CA9707165E34307A632BEE5B3 ] \Device\Harddisk0\DR0\Partition3
12:17:17.0161 2984 \Device\Harddisk0\DR0\Partition3 - ok
12:17:17.0161 2984 ============================================================
12:17:17.0161 2984 Scan finished
12:17:17.0161 2984 ============================================================
12:17:17.0177 5772 Detected object count: 0
12:17:17.0177 5772 Actual detected object count: 0
12:17:24.0758 3380 Deinitialize success

Příspěvekod **Žbeky** » 09 črc 2013 15:28

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

wik1 · Příspěvekod **wik1** » 10 črc 2013 10:19

Log z ComboFixu:

ComboFix 13-07-09.01 - Vikous 10.07.2013 9:51.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4091.2771 [GMT 2:00]
Spuštěný z: c:\users\Vikous\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\9576EC4660.sys
c:\users\Vikous\AppData\Roaming\technic-launcher.jar
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\SysWow64\muzapp.exe
c:\windows\SysWow64\System32\MASetupCleaner.exe
c:\windows\SysWow64\System32\muzapp.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-06-10 do 2013-07-10 )))))))))))))))))))))))))))))))
.
.
2013-07-10 07:59 . 2013-07-10 07:59 -------- d-----w- c:\users\KMnetAdmin\AppData\Local\temp
2013-07-10 07:59 . 2013-07-10 07:59 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-07-08 21:14 . 2013-07-08 21:14 -------- d-----w- c:\windows\ERUNT
2013-07-08 21:14 . 2013-07-08 21:14 -------- d-----w- C:\JRT
2013-07-08 08:50 . 2013-07-08 21:08 -------- d-----w- c:\users\Vikous\AppData\Local\Adobe
2013-07-08 08:38 . 2013-07-08 08:38 -------- d-----w- c:\users\Vikous\AppData\Roaming\Malwarebytes
2013-07-08 08:38 . 2013-07-08 08:38 -------- d-----w- c:\programdata\Malwarebytes
2013-07-08 08:38 . 2013-07-08 08:38 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-07-08 08:38 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-07-08 07:20 . 2013-07-08 07:20 388096 ----a-r- c:\users\Vikous\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-07-08 07:20 . 2013-07-08 07:20 -------- d-----w- c:\program files (x86)\Trend Micro
2013-07-03 06:48 . 2009-03-18 16:35 33856 ---ha-w- c:\windows\system32\hamachi.sys
2013-07-03 06:48 . 2013-07-03 06:48 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2013-07-02 13:00 . 2013-07-02 13:00 -------- d-----w- c:\program files\CCleaner
2013-07-01 19:47 . 2013-07-01 19:47 -------- d-----w- c:\users\Vikous\AppData\Local\Programs
2013-06-24 11:49 . 2013-06-26 19:43 -------- d-----w- c:\program files\trend micro
2013-06-24 11:49 . 2013-06-24 11:49 -------- d-----w- C:\rsit
2013-06-13 09:02 . 2013-06-13 09:02 -------- d-----w- c:\program files (x86)\T-Mobile
2013-06-12 05:54 . 2013-05-08 06:39 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-12 15:27 . 2010-06-27 09:07 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-06-12 05:36 . 2012-04-04 06:18 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 05:36 . 2011-06-10 05:35 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-24 13:09 . 2010-06-24 09:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-02 00:06 . 2010-08-09 06:26 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-17 04:31 . 2013-05-14 13:49 9317456 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4AEE6804-2E62-43D7-B5EC-D1C456457F5B}\mpengine.dll
2013-04-13 05:49 . 2013-05-15 18:44 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 18:44 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 18:44 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 18:44 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 18:44 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 18:44 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 06:09 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 130736 ----a-w- c:\users\Vikous\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 130736 ----a-w- c:\users\Vikous\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 130736 ----a-w- c:\users\Vikous\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Power2GoExpress"="NA" [X]
"T-Mobile Communication Centre"="c:\program files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-08-22 1368768]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"MDS_Menu"="c:\program files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe" [2008-11-14 218408]
"Lenovo SlideNav"="c:\program files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe" [2009-10-22 845640]
"OnekeyDM"="c:\program files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe" [2009-03-27 468480]
"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-12-03 218408]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\ssmmgr.exe" [2009-09-24 614400]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-04-28 4408368]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WLStart"="c:\program files (x86)\Windows Live\Installer\wlstart.exe" [2009-07-26 779600]
.
c:\users\Vikous\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Vikous\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-5-25 27776968]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2009-7-1 1079584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 ReadyComm.DirectRouter;ReadyComm.DirectRouter;c:\windows\System32\IgrsSvcs.exe;c:\windows\SYSNATIVE\IgrsSvcs.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AVerAF35;AVerMedia A835 USB DVB-T;c:\windows\system32\Drivers\AVerAF35.sys;c:\windows\SYSNATIVE\Drivers\AVerAF35.sys [x]
R3 Bridge0;Bridge0;c:\windows\system32\drivers\WDBridge.sys;c:\windows\SYSNATIVE\drivers\WDBridge.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_hwusbdev.sys [x]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbenumfilter.sys [x]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\SysWOW64\FsUsbExDisk.SYS;c:\windows\SysWOW64\FsUsbExDisk.SYS [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juextctrl.sys [x]
R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juwwanecm.sys [x]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbdev.sys [x]
R3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc;c:\program files\Lenovo\ReadyComm\AppSvc.exe;c:\program files\Lenovo\ReadyComm\AppSvc.exe [x]
R3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc;c:\program files\Lenovo\ReadyComm\ConnSvc.exe;c:\program files\Lenovo\ReadyComm\ConnSvc.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 PS_MDP;ReadyComm Presentation Space Helper Service;c:\windows\System32\IgrsSvcs.exe;c:\windows\SYSNATIVE\IgrsSvcs.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 usbsmi;Lenovo EasyCamera;c:\windows\system32\DRIVERS\SMIksdrv.sys;c:\windows\SYSNATIVE\DRIVERS\SMIksdrv.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 funfrm;funfrm; [x]
S2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe;c:\program files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 IGRS;IGRS;c:\program files (x86)\Lenovo\ReadyComm\common\IGRS.exe;c:\program files (x86)\Lenovo\ReadyComm\common\IGRS.exe [x]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\SSPORT.sys [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiVpc.sys [x]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys;c:\windows\SYSNATIVE\DRIVERS\enecir.sys [x]
S3 enecirhid;ENE CIR HID Receiver;c:\windows\system32\DRIVERS\enecirhid.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhid.sys [x]
S3 enecirhidma;ENE CIR HIDmini Filter;c:\windows\system32\DRIVERS\enecirhidma.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhidma.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 NETw5s64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys;c:\windows\SYSNATIVE\DRIVERS\NETw5s64.sys [x]
S3 wdmirror;wdmirror;c:\windows\system32\DRIVERS\WDMirror.sys;c:\windows\SYSNATIVE\DRIVERS\WDMirror.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
IgrsSvcs REG_MULTI_SZ ReadyComm.DirectRouter PS_MDP
<NO NAME> REG_SZ
.
Obsah adresáře 'Naplánované úlohy'
.
2013-07-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 05:36]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Vikous\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Vikous\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Vikous\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Vikous\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-07 186904]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-10-03 16395880]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-17 9643040]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\utility.exe" [2009-09-29 4366704]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2009-08-19 5825536]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-03-21 472992]
.
------- Doplňkový sken -------
.
uStart Page = about:Tabs
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm
Trusted Zone: lenovo.com\consumersupport
Trusted Zone: lenovo.com.cn\edrivers
Trusted Zone: lenovo.com.cn\support4
Trusted Zone: lenovo.com.cn\think
Trusted Zone: ppl.cz\klient
TCP: Interfaces\{7F0B16CC-1DA2-7BB6-6C70-D83E0E862AA0}: NameServer = 62.141.0.1 213.162.65.1
TCP: Interfaces\{CDA3F8B2-696B-4202-9EE7-5167AE2BD34D}: NameServer = 217.77.165.81 217.77.161.131
TCP: Interfaces\{CE7134B6-5301-42CC-8F29-76C2E7496340}\A616E6: DhcpNameServer = 192.168.0.1
DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} - hxxps://as.photoprintit.de/ips-opdata/a ... oader6.cab
DPF: {9E2CD2C3-4DDA-4473-B904-B8E6D0DBAB86} - hxxp://consumersupport.lenovo.com/smart ... pdueng.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-07-10 10:11:07
ComboFix-quarantined-files.txt 2013-07-10 08:11
.
Před spuštěním: Volných bajtů: 362 679 934 976
Po spuštění: Volných bajtů: 362 380 595 200
.
- - End Of File - - 26A8CF7F5B6FF5B04BB94E6261C61A6D
A36C5E4F47E84449FF07ED3517B43A31

Příspěvekod **jaro3** » 10 črc 2013 10:23

Stáhni Kaspersky VRT
na svojí plochu.
Spusť program Kaspersky VRT, .Program se nainstaluje.
Potvrď licenci a klikni na „Start“ . Pokud program nabídne aktualizaci , klikni dole na na „Download Now“.
- Klikni na ozubené kolečko v pravém horním rohu. V okně vyber kromě již zatržených , svojí jednotku disku , pokud jich máš víc , můžeš zatrhnout všechny.
- zvol „Automatic Scan“ nahoře vlevo. a stiskni tlačítko „Start Scanning“
- Program začne skenovat zatržené jednotky

Zaškrtnuté :
Hidden startup objects
System Memory
Disk boot sectors

Nezašrkrtnuté:
Dokumenty
My email
Počítač
Místní disk C
Místní disk D
Jednotka DVD-Rom (E)
Jednotka BD-ROM (G)
Disketová jednotka
A jiné , např. Flash disky , které máš připojeny.

- povol programu Virus Removal Tool odstranit všechny nalezené infekce
- jakmile sken skončí ,zvol záložku „Report“ , vpravo nahoře (vedle ozubeného kolečka)
- klikni na „Detected Threads“ a klikni na obrázek diskety („Save“)
- ulož do počítače zprávu a vložit ji sem do příspěvku

PC sám odesílá e-maily - prosím o kontrolu HJT

PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Re: PC sám odesílá e-maily - prosím o kontrolu HJT

Kdo je online