prosím o kontrolu logu

Zpráva

tomas.tob · #16 Příspěvek od **tomas.tob** » 18 pro 2011 21:07

prominte, ale mam velice omezeny pristup k pc

takze odpovim nejspis az v patek, ale uzivatel mi hlasil, ze kdyz to projel nodem, ukazalo to 5 viru, podrobnosti vam tedy napisu v patek ok?:)diky

#17 Příspěvek od **vyosek** » 19 pro 2011 10:06

Oki, no problem

tomas.tob · #18 Příspěvek od **tomas.tob** » 22 pro 2011 18:23

tady je log od 11.12. (20.12.

njn)

20.12.2011 23:14:12 HTTP filter file http://www.dlouha-videa.at/wp-content/t ... avicon.ico JS/Iframe.AS trojan connection terminated - quarantined STANOUS\Staňouš Threat was detected upon access to web by the application: C:\Program Files\Mozilla Firefox\firefox.exe.
20.12.2011 23:14:12 HTTP filter file http://www.dlouha-videa.at/redtube-freevideo/drsny-sex/ JS/Iframe.AS trojan connection terminated - quarantined STANOUS\Staňouš Threat was detected upon access to web by the application: C:\Program Files\Mozilla Firefox\firefox.exe.
18.12.2011 7:01:10 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP74\A0017345.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
17.12.2011 16:24:57 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP74\A0017338.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
17.12.2011 16:21:52 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP74\A0017339.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 19:19:01 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017297.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 19:10:25 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017298.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 18:43:43 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017279.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 18:29:32 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017280.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 17:56:25 Real-time file system protection file C:\DOCUME~1\STAOU~1\LOCALS~1\Temp\Av-test.txt Eicar test file cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\ComboFix\CF32276.3XE.
16.12.2011 17:25:37 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017261.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 17:23:22 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017262.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 16:00:41 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017234.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 15:48:31 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017235.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 14:32:21 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017199.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 14:31:21 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP73\A0017200.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
16.12.2011 13:21:28 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
16.12.2011 11:53:23 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
16.12.2011 6:40:19 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\Program Files\Mozilla Firefox\firefox.exe.
16.12.2011 6:38:03 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart) STANOUS\Staňouš
16.12.2011 6:37:57 Startup scanner file Operating memory » winlogon.exe(692) a variant of Win32/Sirefef.DV trojan unable to clean STANOUS\Staňouš
15.12.2011 17:53:52 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart)
15.12.2011 17:53:44 Startup scanner file Operating memory » winlogon.exe(692) a variant of Win32/Sirefef.DV trojan unable to clean
15.12.2011 17:53:01 Startup scanner file C:\WINDOWS\system32\DRIVERS\ipsec.sys a variant of Win32/Patched.NBE trojan unable to clean
15.12.2011 13:42:11 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP72\A0017006.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
15.12.2011 13:39:28 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP72\A0017007.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
15.12.2011 12:58:24 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\Program Files\Mozilla Firefox\firefox.exe.
15.12.2011 12:53:56 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\Program Files\Mozilla Firefox\firefox.exe.
15.12.2011 7:31:46 Real-time file system protection file C:\WINDOWS\SoftwareDistribution\Download\4fb7b2c1be1d9a123b960e23415fe9b2\update\update.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\WINDOWS\SoftwareDistribution\Download\4fb7b2c1be1d9a123b960e23415fe9b2\update\update.exe.
15.12.2011 7:31:44 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\WINDOWS\SoftwareDistribution\Download\4fb7b2c1be1d9a123b960e23415fe9b2\update\update.exe.
15.12.2011 1:23:19 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016965.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 23:10:34 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016966.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 21:31:30 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016943.sys a variant of Win32/Patched.NBE trojan NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 21:24:02 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016944.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 20:11:10 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016925.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 20:09:13 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016926.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 19:26:27 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016907.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 19:04:42 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP71\A0016908.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 18:03:44 Real-time file system protection file C:\Program Files\Java\jre6\bin\jqs.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
14.12.2011 17:14:34 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart)
14.12.2011 17:14:31 Startup scanner file Operating memory » winlogon.exe(696) a variant of Win32/Sirefef.DV trojan unable to clean
14.12.2011 17:13:43 Startup scanner file C:\WINDOWS\system32\DRIVERS\ipsec.sys a variant of Win32/Patched.NBE trojan error while deleting
14.12.2011 17:09:36 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016882.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 17:02:36 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016883.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 16:23:38 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016870.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 16:21:43 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016871.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 16:03:43 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
14.12.2011 16:01:35 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart) STANOUS\Staňouš
14.12.2011 16:01:31 Startup scanner file Operating memory » winlogon.exe(696) a variant of Win32/Sirefef.DV trojan unable to clean STANOUS\Staňouš
14.12.2011 13:26:47 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016849.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 13:22:56 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016850.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
14.12.2011 12:22:02 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
14.12.2011 7:40:53 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\WINDOWS\system32\wuauclt.exe.
13.12.2011 22:58:37 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016830.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
13.12.2011 22:57:39 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016831.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
13.12.2011 22:36:39 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
13.12.2011 19:22:56 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016811.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
13.12.2011 19:16:14 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP70\A0016812.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
13.12.2011 15:14:19 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
13.12.2011 15:09:28 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart) STANOUS\Staňouš
13.12.2011 15:09:25 Startup scanner file Operating memory » winlogon.exe(692) a variant of Win32/Sirefef.DV trojan unable to clean STANOUS\Staňouš
13.12.2011 15:05:58 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart)
13.12.2011 15:05:56 Startup scanner file Operating memory » winlogon.exe(692) a variant of Win32/Sirefef.DV trojan unable to clean
13.12.2011 15:05:22 Startup scanner file C:\WINDOWS\system32\DRIVERS\ipsec.sys a variant of Win32/Patched.NBE trojan error while deleting
13.12.2011 14:39:18 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016782.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
13.12.2011 14:36:20 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016783.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
13.12.2011 13:05:23 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\Program Files\Mozilla Firefox\firefox.exe.
13.12.2011 6:52:49 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: C:\WINDOWS\System32\svchost.exe.
12.12.2011 23:01:26 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016768.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
12.12.2011 23:01:23 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016767.sys a variant of Win32/Patched.NBE trojan NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
12.12.2011 22:21:26 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016747.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
12.12.2011 22:20:48 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016748.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
12.12.2011 21:53:20 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
12.12.2011 19:14:01 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016722.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
12.12.2011 18:36:17 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP69\A0016723.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
12.12.2011 17:35:22 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
12.12.2011 13:40:20 Startup scanner file C:\WINDOWS\system32\DRIVERS\ipsec.sys a variant of Win32/Patched.NBE trojan unable to clean
12.12.2011 13:39:22 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart) STANOUS\Staňouš
12.12.2011 13:39:12 Startup scanner file Operating memory » winlogon.exe(692) a variant of Win32/Sirefef.DV trojan unable to clean STANOUS\Staňouš
12.12.2011 6:49:00 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
11.12.2011 18:56:02 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP68\A0016693.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
11.12.2011 18:53:17 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP68\A0016694.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
11.12.2011 18:22:34 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
11.12.2011 17:05:50 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP68\A0016673.sys a variant of Win32/Patched.NBE trojan deleted - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
11.12.2011 17:04:20 Real-time file system protection file C:\System Volume Information\_restore{ABB15D23-1038-4AD9-AFDC-9BC629570AF5}\RP68\A0016674.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\System32\svchost.exe.
11.12.2011 9:51:52 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
11.12.2011 8:13:01 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart)
11.12.2011 8:12:51 Startup scanner file Operating memory » winlogon.exe(692) a variant of Win32/Sirefef.DV trojan unable to clean
11.12.2011 8:12:31 Real-time file system protection file C:\WINDOWS\system32\wuauclt.exe Win32/Patched.HN trojan cleaned - quarantined NT AUTHORITY\SYSTEM Event occurred on a new file created by the application: D:\Instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe.
11.12.2011 8:11:27 Startup scanner file C:\WINDOWS\system32\DRIVERS\ipsec.sys a variant of Win32/Patched.NBE trojan unable to clean
11.12.2011 8:10:30 Startup scanner file Operating memory » C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini a variant of Win32/Sirefef.CH trojan cleaned by deleting (after the next restart) STANOUS\Staňouš
11.12.2011 8:10:19 Startup scanner file Operating memory » winlogon.exe(692) a variant of Win32/Sirefef.DV trojan unable to clean STANOUS\Staňouš

#19 Příspěvek od **vyosek** » 22 pro 2011 21:27

Havet se usadila v bodech obnoveni - smazte je dle navodu kolegy riffa http://www.viry.cz/forum/viewtopic.php?f=11&t=47040

Spustte ComboFix, bez skriptu, log pak sem

tomas.tob · #20 Příspěvek od **tomas.tob** » 25 pro 2011 12:14

ComboFix 11-12-24.10 - Staňouš 25.12.2011 12:01:19.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.511.235 [GMT 1:00]
Spuštěný z: C:\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-25 do 2011-12-25 )))))))))))))))))))))))))))))))
.
.
2011-12-16 16:47 . 2008-04-13 23:49 75264 -c--a-w- c:\windows\system32\dllcache\ipsec.sys
2011-12-16 16:47 . 2008-04-13 23:49 75264 ----a-w- c:\windows\system32\drivers\ipsec.sys
2011-12-14 17:03 . 2011-12-14 17:03 -------- d-----w- c:\program files\Common Files\Java
2011-12-14 17:02 . 2011-12-14 17:02 476904 ----a-w- c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
2011-12-14 17:02 . 2011-12-14 17:01 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-12-14 17:02 . 2011-12-14 17:01 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-12-14 17:01 . 2011-12-14 17:01 -------- d-----w- c:\program files\Java
2011-12-13 14:43 . 2011-12-13 14:43 -------- d-----w- C:\Terasoft
2011-12-11 13:24 . 2011-12-11 13:25 -------- d-----w- c:\program files\trend micro
2011-12-11 13:24 . 2011-12-11 13:25 -------- d-----w- C:\rsit
2011-12-08 07:13 . 2011-12-08 07:13 -------- d-----w- c:\documents and settings\LocalService\Data aplikací\McAfee
2011-12-06 23:03 . 2011-12-06 23:03 -------- d-----w- c:\documents and settings\Staňouš\Local Settings\Data aplikací\Temp
2011-12-06 23:03 . 2011-12-06 23:03 -------- d-----w- c:\documents and settings\Staňouš\Local Settings\Data aplikací\Adobe
2011-12-06 23:00 . 2011-12-06 23:00 -------- d-----w- c:\program files\Common Files\Adobe
2011-12-06 22:58 . 2011-12-06 22:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací\McAfee
2011-12-06 22:58 . 2011-12-06 22:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací\McAfee Security Scan
2011-12-06 22:58 . 2011-12-08 07:12 -------- d-----w- c:\program files\McAfee Security Scan
2011-12-04 15:36 . 2011-12-04 15:36 -------- d-----w- c:\documents and settings\Staňouš\Local Settings\Data aplikací\Identities
2011-12-01 12:04 . 2011-12-01 12:04 -------- d-----w- c:\documents and settings\All Users\Data aplikací\vsosdk
2011-11-27 17:59 . 2011-12-02 20:28 -------- d-----w- c:\windows\system32\kb
2011-11-27 17:48 . 2011-11-27 17:48 -------- d-----w- c:\documents and settings\Default User\Local Settings\Data aplikací\Microsoft Help
2011-11-27 17:40 . 2011-11-27 18:04 -------- d-----w- c:\windows\SxsCaPendDel
2011-11-27 17:38 . 2011-11-27 17:38 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\PCHealth
2011-11-25 19:28 . 2011-11-25 19:28 -------- d-s---w- c:\documents and settings\LocalService\UserData
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-23 14:40 . 2004-08-17 13:44 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-23 14:32 . 2011-11-23 14:37 29480 ----a-w- c:\windows\system32\msxml3a.dll
2011-11-23 14:32 . 2011-11-21 16:12 505128 ----a-w- c:\windows\system32\msvcp71.dll
2011-11-23 14:32 . 2011-11-21 16:12 353576 ----a-w- c:\windows\system32\msvcr71.dll
2011-11-23 14:25 . 2011-11-23 14:25 87608 ----a-w- c:\documents and settings\Staňouš\Data aplikací\inst.exe
2011-11-23 14:25 . 2011-11-23 14:25 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2011-11-23 14:25 . 2011-11-23 14:25 47360 ----a-w- c:\documents and settings\Staňouš\Data aplikací\pcouffin.sys
2011-11-21 16:33 . 2011-11-18 16:27 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-01 20:36 . 2004-08-17 13:49 668160 ----a-w- c:\windows\system32\wininet.dll
2011-11-01 20:36 . 2004-08-17 13:49 81920 ----a-w- c:\windows\system32\ieencode.dll
2011-11-01 20:36 . 2004-08-03 20:59 61952 ----a-w- c:\windows\system32\tdc.ocx
2011-11-01 20:34 . 2004-08-17 13:44 370176 ----a-w- c:\windows\system32\html.iec
2011-11-01 16:07 . 2004-08-17 13:49 1288192 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 08:00 . 2011-11-20 09:22 74752 ----a-w- c:\windows\system32\ff_vfw.dll
2011-10-28 05:32 . 2004-08-17 13:49 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-26 10:50 . 2004-08-17 15:45 2071552 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-26 10:50 . 2004-08-17 13:45 2194944 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-18 11:13 . 2004-08-17 13:49 186880 ----a-w- c:\windows\system32\encdec.dll
2011-10-10 14:22 . 2011-11-18 15:12 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-09-28 07:06 . 2004-08-17 13:49 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-11-05 07:07 . 2011-11-18 16:13 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-12-16_17.05.33 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-12-25 10:54 . 2011-12-25 10:54 16384 c:\windows\temp\Perflib_Perfdata_e4.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13529088]
"nwiz"="nwiz.exe" [2008-05-16 1630208]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-16 86016]
"AudioDeck"="c:\program files\VIA\VIAudioi\SBADeck\ADeck.exe" [2007-08-09 528384]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"Easy-PrintToolBox"="c:\program files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE" [2004-01-14 409600]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-10-07 1461080]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\Staňouš\Nabídka Start\Programy\Po spuštění\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 10:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"d:\\Instalave od18.11.2011\\ICQ7.7\\ICQ.exe"=
"d:\\Instalave od18.11.2011\\PowerDVD11\\PowerDVD11.exe"=
"d:\\Instalave od18.11.2011\\PowerDVD11\\PDVD11Serv.exe"=
"d:\\Instalave od18.11.2011\\PowerDVD11\\Common\\MediaServer\\CLMSServerForPDVD11.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"d:\\Instalave od18.11.2011\\Winamp\\winamp.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"d:\\Instalave od18.11.2011\\PowerDVD10\\NavFilter\\CLHelper.exe"=
"d:\\Instalave od18.11.2011\\4\\ConvertXtoDvd.exe"=
"d:\\Instalave od18.11.2011\\PowerDVD10\\PowerDVD Cox\\PowerDVDCox10.exe"=
"d:\\Instalave od18.11.2011\\Total KOmandr\\totalcmd\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\McAfee Security Scan\\2.0.181\\mcuicnt.exe"=
"c:\\Program Files\\Adobe\\Reader 10.0\\Reader\\AcroRd32.exe"=
"d:\\Instalave od18.11.2011\\PowerDVD10\\PowerDVD10.exe"=
"c:\\Documents and Settings\\Staňouš\\Plocha\\RSIT.exe"=
"d:\\Stahování\\staženo\\jxpiinstall.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe"=
.
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [13.3.2008 16:52 35168]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/11/23 15:39];d:\instalave od18.11.2011\PowerDVD10\NavFilter\000.fcl [13.3.2010 12:58 87536]
R2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;d:\instalave od18.11.2011\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [24.11.2011 12:01 77824]
R2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;d:\instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [24.11.2011 12:01 69632]
R2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;d:\instalave od18.11.2011\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [24.11.2011 12:01 286720]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [7.10.2009 9:16 472280]
R2 ntk_PowerDVD;ntk_PowerDVD;d:\instalave od18.11.2011\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys [24.11.2011 12:01 71664]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [23.11.2011 15:25 47360]
S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/11/24 12:02];\??\d:\instalave od18.11.2011\PowerDVD11\Common\NavFilter\000.fcl --> d:\instalave od18.11.2011\PowerDVD11\Common\NavFilter\000.fcl [?]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [15.1.2010 13:49 227232]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - d:\instalave od18.11.2011\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - d:\instalave od18.11.2011\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - d:\instalave od18.11.2011\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - d:\instalave od18.11.2011\Easy-WebPrint\Resource.dll/RC_Print.html
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - d:\instalave od18.11.2011\ICQ7.7\ICQ.exe
TCP: Interfaces\{B745FC88-D69F-476F-8D4D-93C6CA3F3A0B}: NameServer = 10.0.0.1
FF - ProfilePath - c:\documents and settings\Staňouš\Data aplikací\Mozilla\Firefox\Profiles\xqgp9cpz.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-12-25 12:06
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
AudioDeck = c:\program files\VIA\VIAudioi\SBADeck\ADeck.exe 1????????????????????????????????????????????????
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\d:\instalave od18.11.2011\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]
"ImagePath"="\??\d:\instalave od18.11.2011\PowerDVD11\Common\NavFilter\000.fcl"
.
Celkový čas: 2011-12-25 12:07:53
ComboFix-quarantined-files.txt 2011-12-25 11:07
ComboFix2.txt 2011-12-18 16:51
ComboFix3.txt 2011-12-16 17:08
.
Před spuštěním: 2 029 887 488
Po spuštění: 2 048 667 648
.
- - End Of File - - 21501BDD7721A5FBABF82221D0F44545

#21 Příspěvek od **vyosek** » 25 pro 2011 19:16

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte

tomas.tob · #22 Příspěvek od **tomas.tob** » 01 led 2012 17:03

zdravim, omlouvam se ze po takove dobe... a preji stastny novy rok:)

16:59:38.0062 10944 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
17:00:14.0828 10944 ============================================================
17:00:14.0828 10944 Current date / time: 2012/01/01 17:00:14.0828
17:00:14.0828 10944 SystemInfo:
17:00:14.0828 10944
17:00:14.0828 10944 OS Version: 5.1.2600 ServicePack: 3.0
17:00:14.0828 10944 Product type: Workstation
17:00:14.0828 10944 ComputerName: STANOUS
17:00:14.0828 10944 UserName: Staňouš
17:00:14.0828 10944 Windows directory: C:\WINDOWS
17:00:14.0828 10944 System windows directory: C:\WINDOWS
17:00:14.0828 10944 Processor architecture: Intel x86
17:00:14.0828 10944 Number of processors: 1
17:00:14.0828 10944 Page size: 0x1000
17:00:14.0828 10944 Boot type: Normal boot
17:00:14.0828 10944 ============================================================
17:00:17.0171 10944 Initialize success
17:00:51.0015 11328 ============================================================
17:00:51.0015 11328 Scan started
17:00:51.0015 11328 Mode: Manual;
17:00:51.0015 11328 ============================================================
17:00:51.0453 11328 Abiosdsk - ok
17:00:51.0500 11328 abp480n5 - ok
17:00:51.0562 11328 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:00:51.0562 11328 ACPI - ok
17:00:51.0625 11328 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
17:00:51.0656 11328 ACPIEC - ok
17:00:51.0687 11328 adpu160m - ok
17:00:51.0734 11328 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:00:51.0796 11328 aec - ok
17:00:51.0843 11328 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
17:00:51.0859 11328 AFD - ok
17:00:51.0890 11328 Aha154x - ok
17:00:51.0921 11328 aic78u2 - ok
17:00:51.0953 11328 aic78xx - ok
17:00:52.0031 11328 AliIde - ok
17:00:52.0062 11328 AmdK7 (3980814f8027d27ea003e2e3d9d4f604) C:\WINDOWS\system32\DRIVERS\amdk7.sys
17:00:52.0093 11328 AmdK7 - ok
17:00:52.0125 11328 amsint - ok
17:00:52.0171 11328 asc - ok
17:00:52.0203 11328 asc3350p - ok
17:00:52.0234 11328 asc3550 - ok
17:00:52.0296 11328 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:00:52.0312 11328 AsyncMac - ok
17:00:52.0343 11328 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:00:52.0343 11328 atapi - ok
17:00:52.0390 11328 Atdisk - ok
17:00:52.0437 11328 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:00:52.0453 11328 Atmarpc - ok
17:00:52.0531 11328 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:00:52.0546 11328 audstub - ok
17:00:52.0609 11328 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:00:52.0640 11328 Beep - ok
17:00:52.0765 11328 catchme - ok
17:00:52.0812 11328 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:00:52.0828 11328 cbidf2k - ok
17:00:52.0875 11328 cd20xrnt - ok
17:00:52.0906 11328 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:00:52.0921 11328 Cdaudio - ok
17:00:52.0953 11328 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:00:52.0953 11328 Cdfs - ok
17:00:53.0000 11328 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:00:53.0031 11328 Cdrom - ok
17:00:53.0078 11328 Changer - ok
17:00:53.0140 11328 CmdIde - ok
17:00:53.0203 11328 Cpqarray - ok
17:00:53.0281 11328 dac2w2k - ok
17:00:53.0296 11328 dac960nt - ok
17:00:53.0359 11328 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:00:53.0359 11328 Disk - ok
17:00:53.0468 11328 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:00:53.0578 11328 dmboot - ok
17:00:53.0609 11328 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:00:53.0609 11328 dmio - ok
17:00:53.0671 11328 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:00:53.0671 11328 dmload - ok
17:00:53.0734 11328 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:00:53.0750 11328 DMusic - ok
17:00:53.0812 11328 dpti2o - ok
17:00:53.0859 11328 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:00:53.0890 11328 drmkaud - ok
17:00:53.0968 11328 dtsoftbus01 (fb38473835476a6fb272215a1d972af9) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
17:00:54.0046 11328 dtsoftbus01 - ok
17:00:54.0093 11328 eamon (a777d095402b31b0aafe7f19c89fb3a1) C:\WINDOWS\system32\DRIVERS\eamon.sys
17:00:54.0125 11328 eamon - ok
17:00:54.0171 11328 easdrv (e6dffb60bdbd91749eab4d45bc8926a9) C:\WINDOWS\system32\DRIVERS\easdrv.sys
17:00:54.0203 11328 easdrv - ok
17:00:54.0281 11328 epfwtdir (bb2e195088af3f6091ef9f8e42f0581f) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
17:00:54.0312 11328 epfwtdir - ok
17:00:54.0390 11328 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:00:54.0390 11328 Fastfat - ok
17:00:54.0437 11328 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
17:00:54.0468 11328 Fdc - ok
17:00:54.0500 11328 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
17:00:54.0531 11328 FETNDIS - ok
17:00:54.0578 11328 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:00:54.0609 11328 Fips - ok
17:00:54.0656 11328 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:00:54.0671 11328 Flpydisk - ok
17:00:54.0718 11328 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:00:54.0718 11328 FltMgr - ok
17:00:54.0750 11328 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:00:54.0796 11328 Fs_Rec - ok
17:00:54.0843 11328 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:00:54.0843 11328 Ftdisk - ok
17:00:54.0875 11328 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:00:54.0906 11328 Gpc - ok
17:00:54.0968 11328 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:00:54.0984 11328 hidusb - ok
17:00:55.0046 11328 hpn - ok
17:00:55.0109 11328 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:00:55.0156 11328 HTTP - ok
17:00:55.0218 11328 i2omgmt - ok
17:00:55.0250 11328 i2omp - ok
17:00:55.0281 11328 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:00:55.0328 11328 i8042prt - ok
17:00:55.0359 11328 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:00:55.0390 11328 Imapi - ok
17:00:55.0453 11328 ini910u - ok
17:00:55.0500 11328 IntelIde - ok
17:00:55.0531 11328 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:00:55.0593 11328 Ip6Fw - ok
17:00:55.0640 11328 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:00:55.0687 11328 IpFilterDriver - ok
17:00:55.0734 11328 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:00:55.0765 11328 IpInIp - ok
17:00:55.0843 11328 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:00:55.0890 11328 IpNat - ok
17:00:55.0937 11328 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:00:55.0968 11328 IPSec - ok
17:00:56.0015 11328 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:00:56.0046 11328 IRENUM - ok
17:00:56.0109 11328 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:00:56.0109 11328 isapnp - ok
17:00:56.0171 11328 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:00:56.0203 11328 Kbdclass - ok
17:00:56.0265 11328 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:00:56.0265 11328 kmixer - ok
17:00:56.0312 11328 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:00:56.0312 11328 KSecDD - ok
17:00:56.0359 11328 lbrtfdc - ok
17:00:56.0484 11328 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:00:56.0515 11328 mnmdd - ok
17:00:56.0562 11328 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:00:56.0609 11328 Modem - ok
17:00:56.0640 11328 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:00:56.0687 11328 Mouclass - ok
17:00:56.0718 11328 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:00:56.0750 11328 mouhid - ok
17:00:56.0781 11328 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:00:56.0796 11328 MountMgr - ok
17:00:56.0828 11328 mraid35x - ok
17:00:56.0875 11328 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:00:56.0875 11328 MRxDAV - ok
17:00:56.0937 11328 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:00:56.0953 11328 MRxSmb - ok
17:00:57.0000 11328 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:00:57.0000 11328 Msfs - ok
17:00:57.0078 11328 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:00:57.0109 11328 MSKSSRV - ok
17:00:57.0140 11328 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:00:57.0187 11328 MSPCLOCK - ok
17:00:57.0218 11328 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:00:57.0265 11328 MSPQM - ok
17:00:57.0312 11328 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:00:57.0359 11328 mssmbios - ok
17:00:57.0406 11328 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:00:57.0437 11328 Mup - ok
17:00:57.0500 11328 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:00:57.0500 11328 NDIS - ok
17:00:57.0546 11328 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:00:57.0593 11328 NdisTapi - ok
17:00:57.0625 11328 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:00:57.0656 11328 Ndisuio - ok
17:00:57.0703 11328 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:00:57.0734 11328 NdisWan - ok
17:00:57.0796 11328 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:00:57.0828 11328 NDProxy - ok
17:00:57.0859 11328 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:00:57.0859 11328 NetBIOS - ok
17:00:57.0921 11328 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:00:57.0953 11328 NetBT - ok
17:00:58.0062 11328 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:00:58.0062 11328 Npfs - ok
17:00:58.0140 11328 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:00:58.0140 11328 Ntfs - ok
17:00:58.0328 11328 ntk_PowerDVD (170ee229d4def31dbe95348c9a88fe74) D:\Instalave od18.11.2011\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys
17:00:58.0359 11328 ntk_PowerDVD - ok
17:00:58.0453 11328 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:00:58.0484 11328 Null - ok
17:00:58.0750 11328 nv (9f4384aa43548ddd438f7b7825d11699) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:00:59.0031 11328 nv - ok
17:00:59.0109 11328 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:00:59.0171 11328 NwlnkFlt - ok
17:00:59.0218 11328 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:00:59.0234 11328 NwlnkFwd - ok
17:00:59.0312 11328 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
17:00:59.0359 11328 Parport - ok
17:00:59.0406 11328 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:00:59.0406 11328 PartMgr - ok
17:00:59.0468 11328 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:00:59.0515 11328 ParVdm - ok
17:00:59.0562 11328 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:00:59.0562 11328 PCI - ok
17:00:59.0593 11328 PCIDump - ok
17:00:59.0640 11328 PCIIde - ok
17:00:59.0687 11328 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
17:00:59.0750 11328 Pcmcia - ok
17:00:59.0796 11328 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
17:00:59.0859 11328 pcouffin - ok
17:00:59.0875 11328 PDCOMP - ok
17:00:59.0906 11328 PDFRAME - ok
17:00:59.0937 11328 PDRELI - ok
17:00:59.0968 11328 PDRFRAME - ok
17:01:00.0000 11328 perc2 - ok
17:01:00.0046 11328 perc2hib - ok
17:01:00.0171 11328 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:01:00.0218 11328 PptpMiniport - ok
17:01:00.0281 11328 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:01:00.0328 11328 PSched - ok
17:01:00.0375 11328 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:01:00.0421 11328 Ptilink - ok
17:01:00.0453 11328 ql1080 - ok
17:01:00.0500 11328 Ql10wnt - ok
17:01:00.0531 11328 ql12160 - ok
17:01:00.0562 11328 ql1240 - ok
17:01:00.0593 11328 ql1280 - ok
17:01:00.0625 11328 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:01:00.0656 11328 RasAcd - ok
17:01:00.0718 11328 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:01:00.0765 11328 Rasl2tp - ok
17:01:00.0812 11328 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:01:00.0859 11328 RasPppoe - ok
17:01:00.0906 11328 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:01:00.0937 11328 Raspti - ok
17:01:00.0984 11328 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:01:01.0000 11328 Rdbss - ok
17:01:01.0031 11328 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:01:01.0062 11328 RDPCDD - ok
17:01:01.0093 11328 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:01:01.0140 11328 rdpdr - ok
17:01:01.0218 11328 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:01:01.0265 11328 RDPWD - ok
17:01:01.0312 11328 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:01:01.0343 11328 redbook - ok
17:01:01.0531 11328 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:01:01.0562 11328 Secdrv - ok
17:01:01.0625 11328 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
17:01:01.0656 11328 serenum - ok
17:01:01.0687 11328 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
17:01:01.0750 11328 Serial - ok
17:01:01.0796 11328 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:01:01.0828 11328 Sfloppy - ok
17:01:01.0890 11328 Simbad - ok
17:01:01.0921 11328 Sparrow - ok
17:01:01.0953 11328 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:01:02.0000 11328 splitter - ok
17:01:02.0093 11328 sptd (f42efefb765235f24b24e1d2b6f99f46) C:\WINDOWS\System32\Drivers\sptd.sys
17:01:02.0093 11328 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: f42efefb765235f24b24e1d2b6f99f46
17:01:02.0093 11328 sptd ( LockedFile.Multi.Generic ) - warning
17:01:02.0093 11328 sptd - detected LockedFile.Multi.Generic (1)
17:01:02.0140 11328 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:01:02.0140 11328 sr - ok
17:01:02.0218 11328 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:01:02.0234 11328 Srv - ok
17:01:02.0296 11328 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:01:02.0343 11328 swenum - ok
17:01:02.0406 11328 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:01:02.0453 11328 swmidi - ok
17:01:02.0484 11328 symc810 - ok
17:01:02.0515 11328 symc8xx - ok
17:01:02.0546 11328 sym_hi - ok
17:01:02.0593 11328 sym_u3 - ok
17:01:02.0625 11328 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:01:02.0656 11328 sysaudio - ok
17:01:02.0750 11328 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:01:02.0781 11328 Tcpip - ok
17:01:02.0828 11328 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:01:02.0843 11328 TDPIPE - ok
17:01:02.0890 11328 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:01:02.0937 11328 TDTCP - ok
17:01:02.0968 11328 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:01:03.0046 11328 TermDD - ok
17:01:03.0109 11328 TosIde - ok
17:01:03.0156 11328 uagp35 (d85938f272d1bcf3db3a31fc0a048928) C:\WINDOWS\system32\DRIVERS\uagp35.sys
17:01:03.0187 11328 uagp35 - ok
17:01:03.0218 11328 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:01:03.0265 11328 Udfs - ok
17:01:03.0281 11328 ultra - ok
17:01:03.0343 11328 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:01:03.0406 11328 Update - ok
17:01:03.0468 11328 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:01:03.0515 11328 usbehci - ok
17:01:03.0546 11328 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:01:03.0593 11328 usbhub - ok
17:01:03.0656 11328 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:01:03.0671 11328 usbprint - ok
17:01:03.0718 11328 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:01:03.0718 11328 USBSTOR - ok
17:01:03.0750 11328 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:01:03.0796 11328 usbuhci - ok
17:01:03.0843 11328 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:01:03.0875 11328 VgaSave - ok
17:01:03.0937 11328 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
17:01:03.0937 11328 ViaIde - ok
17:01:03.0984 11328 VIAudio (fece79a9aef62ad5f11a3f4a14f1dead) C:\WINDOWS\system32\drivers\vinyl97.sys
17:01:04.0000 11328 VIAudio - ok
17:01:04.0046 11328 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:01:04.0062 11328 VolSnap - ok
17:01:04.0109 11328 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:01:04.0156 11328 Wanarp - ok
17:01:04.0203 11328 WDICA - ok
17:01:04.0250 11328 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:01:04.0281 11328 wdmaud - ok
17:01:04.0421 11328 WpdUsb (c1b3d9d75c3fb735f5fa3a5806aded57) C:\WINDOWS\system32\Drivers\wpdusb.sys
17:01:04.0437 11328 WpdUsb - ok
17:01:04.0781 11328 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74ec37b9eaf9fca015b933a526825c7a) D:\Instalave od18.11.2011\PowerDVD10\NavFilter\000.fcl
17:01:04.0812 11328 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
17:01:04.0921 11328 {329F96B6-DF1E-4328-BFDA-39EA953C1312} - ok
17:01:04.0968 11328 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
17:01:05.0062 11328 \Device\Harddisk0\DR0 - ok
17:01:05.0078 11328 Boot (0x1200) (97ef7a8c11d7601e41b1a69b949facc5) \Device\Harddisk0\DR0\Partition0
17:01:05.0078 11328 \Device\Harddisk0\DR0\Partition0 - ok
17:01:05.0109 11328 Boot (0x1200) (726ec966f820fdc65b21f7ed01c5bc63) \Device\Harddisk0\DR0\Partition1
17:01:05.0109 11328 \Device\Harddisk0\DR0\Partition1 - ok
17:01:05.0125 11328 ============================================================
17:01:05.0125 11328 Scan finished
17:01:05.0125 11328 ============================================================
17:01:05.0156 9332 Detected object count: 1
17:01:05.0156 9332 Actual detected object count: 1
17:01:28.0109 9332 sptd ( LockedFile.Multi.Generic ) - skipped by user
17:01:28.0109 9332 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
17:02:32.0406 11648 ============================================================
17:02:32.0406 11648 Scan started
17:02:32.0406 11648 Mode: Manual;
17:02:32.0406 11648 ============================================================
17:02:32.0687 11648 Abiosdsk - ok
17:02:32.0734 11648 abp480n5 - ok
17:02:32.0796 11648 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:02:32.0796 11648 ACPI - ok
17:02:32.0828 11648 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
17:02:32.0828 11648 ACPIEC - ok
17:02:32.0859 11648 adpu160m - ok
17:02:32.0937 11648 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:02:32.0937 11648 aec - ok
17:02:32.0984 11648 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
17:02:32.0984 11648 AFD - ok
17:02:33.0031 11648 Aha154x - ok
17:02:33.0062 11648 aic78u2 - ok
17:02:33.0093 11648 aic78xx - ok
17:02:33.0156 11648 AliIde - ok
17:02:33.0218 11648 AmdK7 (3980814f8027d27ea003e2e3d9d4f604) C:\WINDOWS\system32\DRIVERS\amdk7.sys
17:02:33.0218 11648 AmdK7 - ok
17:02:33.0250 11648 amsint - ok
17:02:33.0281 11648 asc - ok
17:02:33.0296 11648 asc3350p - ok
17:02:33.0343 11648 asc3550 - ok
17:02:33.0390 11648 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:02:33.0390 11648 AsyncMac - ok
17:02:33.0421 11648 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:02:33.0421 11648 atapi - ok
17:02:33.0453 11648 Atdisk - ok
17:02:33.0484 11648 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:02:33.0484 11648 Atmarpc - ok
17:02:33.0546 11648 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:02:33.0546 11648 audstub - ok
17:02:33.0609 11648 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:02:33.0609 11648 Beep - ok
17:02:33.0734 11648 catchme - ok
17:02:33.0781 11648 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:02:33.0781 11648 cbidf2k - ok
17:02:33.0796 11648 cd20xrnt - ok
17:02:33.0828 11648 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:02:33.0828 11648 Cdaudio - ok
17:02:33.0859 11648 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:02:33.0859 11648 Cdfs - ok
17:02:33.0890 11648 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:02:33.0890 11648 Cdrom - ok
17:02:33.0921 11648 Changer - ok
17:02:34.0000 11648 CmdIde - ok
17:02:34.0062 11648 Cpqarray - ok
17:02:34.0125 11648 dac2w2k - ok
17:02:34.0140 11648 dac960nt - ok
17:02:34.0203 11648 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:02:34.0203 11648 Disk - ok
17:02:34.0312 11648 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:02:34.0328 11648 dmboot - ok
17:02:34.0375 11648 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:02:34.0375 11648 dmio - ok
17:02:34.0390 11648 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:02:34.0390 11648 dmload - ok
17:02:34.0468 11648 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:02:34.0468 11648 DMusic - ok
17:02:34.0546 11648 dpti2o - ok
17:02:34.0593 11648 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:02:34.0593 11648 drmkaud - ok
17:02:34.0656 11648 dtsoftbus01 (fb38473835476a6fb272215a1d972af9) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
17:02:34.0656 11648 dtsoftbus01 - ok
17:02:34.0703 11648 eamon (a777d095402b31b0aafe7f19c89fb3a1) C:\WINDOWS\system32\DRIVERS\eamon.sys
17:02:34.0703 11648 eamon - ok
17:02:34.0750 11648 easdrv (e6dffb60bdbd91749eab4d45bc8926a9) C:\WINDOWS\system32\DRIVERS\easdrv.sys
17:02:34.0750 11648 easdrv - ok
17:02:34.0796 11648 epfwtdir (bb2e195088af3f6091ef9f8e42f0581f) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
17:02:34.0796 11648 epfwtdir - ok
17:02:34.0890 11648 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:02:34.0890 11648 Fastfat - ok
17:02:34.0953 11648 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
17:02:34.0953 11648 Fdc - ok
17:02:35.0000 11648 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
17:02:35.0000 11648 FETNDIS - ok
17:02:35.0046 11648 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:02:35.0046 11648 Fips - ok
17:02:35.0078 11648 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:02:35.0078 11648 Flpydisk - ok
17:02:35.0125 11648 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:02:35.0125 11648 FltMgr - ok
17:02:35.0171 11648 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:02:35.0171 11648 Fs_Rec - ok
17:02:35.0203 11648 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:02:35.0203 11648 Ftdisk - ok
17:02:35.0265 11648 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:02:35.0265 11648 Gpc - ok
17:02:35.0328 11648 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:02:35.0328 11648 hidusb - ok
17:02:35.0359 11648 hpn - ok
17:02:35.0421 11648 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:02:35.0421 11648 HTTP - ok
17:02:35.0453 11648 i2omgmt - ok
17:02:35.0500 11648 i2omp - ok
17:02:35.0546 11648 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:02:35.0546 11648 i8042prt - ok
17:02:35.0593 11648 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:02:35.0609 11648 Imapi - ok
17:02:35.0656 11648 ini910u - ok
17:02:35.0703 11648 IntelIde - ok
17:02:35.0750 11648 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:02:35.0750 11648 Ip6Fw - ok
17:02:35.0812 11648 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:02:35.0812 11648 IpFilterDriver - ok
17:02:35.0859 11648 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:02:35.0859 11648 IpInIp - ok
17:02:35.0906 11648 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:02:35.0906 11648 IpNat - ok
17:02:35.0953 11648 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:02:35.0953 11648 IPSec - ok
17:02:36.0000 11648 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:02:36.0000 11648 IRENUM - ok
17:02:36.0046 11648 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:02:36.0046 11648 isapnp - ok
17:02:36.0109 11648 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:02:36.0109 11648 Kbdclass - ok
17:02:36.0171 11648 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:02:36.0171 11648 kmixer - ok
17:02:36.0218 11648 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:02:36.0218 11648 KSecDD - ok
17:02:36.0281 11648 lbrtfdc - ok
17:02:36.0406 11648 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:02:36.0406 11648 mnmdd - ok
17:02:36.0453 11648 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:02:36.0453 11648 Modem - ok
17:02:36.0484 11648 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:02:36.0500 11648 Mouclass - ok
17:02:36.0531 11648 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:02:36.0531 11648 mouhid - ok
17:02:36.0562 11648 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:02:36.0562 11648 MountMgr - ok
17:02:36.0593 11648 mraid35x - ok
17:02:36.0625 11648 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:02:36.0625 11648 MRxDAV - ok
17:02:36.0718 11648 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:02:36.0718 11648 MRxSmb - ok
17:02:36.0781 11648 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:02:36.0781 11648 Msfs - ok
17:02:36.0843 11648 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:02:36.0843 11648 MSKSSRV - ok
17:02:36.0906 11648 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:02:36.0906 11648 MSPCLOCK - ok
17:02:36.0921 11648 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:02:36.0937 11648 MSPQM - ok
17:02:36.0984 11648 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:02:36.0984 11648 mssmbios - ok
17:02:37.0031 11648 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:02:37.0031 11648 Mup - ok
17:02:37.0093 11648 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:02:37.0093 11648 NDIS - ok
17:02:37.0140 11648 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:02:37.0140 11648 NdisTapi - ok
17:02:37.0187 11648 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:02:37.0203 11648 Ndisuio - ok
17:02:37.0250 11648 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:02:37.0250 11648 NdisWan - ok
17:02:37.0312 11648 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:02:37.0312 11648 NDProxy - ok
17:02:37.0343 11648 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:02:37.0343 11648 NetBIOS - ok
17:02:37.0390 11648 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:02:37.0406 11648 NetBT - ok
17:02:37.0515 11648 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:02:37.0515 11648 Npfs - ok
17:02:37.0593 11648 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:02:37.0609 11648 Ntfs - ok
17:02:37.0781 11648 ntk_PowerDVD (170ee229d4def31dbe95348c9a88fe74) D:\Instalave od18.11.2011\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys
17:02:37.0781 11648 ntk_PowerDVD - ok
17:02:37.0875 11648 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:02:37.0875 11648 Null - ok
17:02:38.0156 11648 nv (9f4384aa43548ddd438f7b7825d11699) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:02:38.0234 11648 nv - ok
17:02:38.0328 11648 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:02:38.0328 11648 NwlnkFlt - ok
17:02:38.0375 11648 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:02:38.0375 11648 NwlnkFwd - ok
17:02:38.0468 11648 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
17:02:38.0468 11648 Parport - ok
17:02:38.0515 11648 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:02:38.0515 11648 PartMgr - ok
17:02:38.0562 11648 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:02:38.0562 11648 ParVdm - ok
17:02:38.0609 11648 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:02:38.0609 11648 PCI - ok
17:02:38.0625 11648 PCIDump - ok
17:02:38.0656 11648 PCIIde - ok
17:02:38.0703 11648 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
17:02:38.0703 11648 Pcmcia - ok
17:02:38.0765 11648 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
17:02:38.0765 11648 pcouffin - ok
17:02:38.0796 11648 PDCOMP - ok
17:02:38.0843 11648 PDFRAME - ok
17:02:38.0890 11648 PDRELI - ok
17:02:38.0921 11648 PDRFRAME - ok
17:02:38.0953 11648 perc2 - ok
17:02:39.0000 11648 perc2hib - ok
17:02:39.0140 11648 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:02:39.0140 11648 PptpMiniport - ok
17:02:39.0171 11648 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:02:39.0187 11648 PSched - ok
17:02:39.0218 11648 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:02:39.0218 11648 Ptilink - ok
17:02:39.0250 11648 ql1080 - ok
17:02:39.0265 11648 Ql10wnt - ok
17:02:39.0296 11648 ql12160 - ok
17:02:39.0328 11648 ql1240 - ok
17:02:39.0359 11648 ql1280 - ok
17:02:39.0421 11648 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:02:39.0421 11648 RasAcd - ok
17:02:39.0453 11648 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:02:39.0453 11648 Rasl2tp - ok
17:02:39.0515 11648 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:02:39.0515 11648 RasPppoe - ok
17:02:39.0546 11648 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:02:39.0546 11648 Raspti - ok
17:02:39.0609 11648 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:02:39.0609 11648 Rdbss - ok
17:02:39.0640 11648 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:02:39.0640 11648 RDPCDD - ok
17:02:39.0718 11648 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:02:39.0718 11648 rdpdr - ok
17:02:39.0781 11648 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:02:39.0781 11648 RDPWD - ok
17:02:39.0843 11648 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:02:39.0843 11648 redbook - ok
17:02:40.0000 11648 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:02:40.0000 11648 Secdrv - ok
17:02:40.0078 11648 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
17:02:40.0078 11648 serenum - ok
17:02:40.0109 11648 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
17:02:40.0109 11648 Serial - ok
17:02:40.0140 11648 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:02:40.0140 11648 Sfloppy - ok
17:02:40.0203 11648 Simbad - ok
17:02:40.0234 11648 Sparrow - ok
17:02:40.0281 11648 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:02:40.0281 11648 splitter - ok
17:02:40.0359 11648 sptd (f42efefb765235f24b24e1d2b6f99f46) C:\WINDOWS\System32\Drivers\sptd.sys
17:02:40.0359 11648 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: f42efefb765235f24b24e1d2b6f99f46
17:02:40.0359 11648 sptd ( LockedFile.Multi.Generic ) - warning
17:02:40.0359 11648 sptd - detected LockedFile.Multi.Generic (1)
17:02:40.0406 11648 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:02:40.0406 11648 sr - ok
17:02:40.0484 11648 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:02:40.0500 11648 Srv - ok
17:02:40.0562 11648 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:02:40.0562 11648 swenum - ok
17:02:40.0609 11648 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:02:40.0609 11648 swmidi - ok
17:02:40.0671 11648 symc810 - ok
17:02:40.0718 11648 symc8xx - ok
17:02:40.0734 11648 sym_hi - ok
17:02:40.0765 11648 sym_u3 - ok
17:02:40.0812 11648 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:02:40.0812 11648 sysaudio - ok
17:02:40.0890 11648 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:02:40.0890 11648 Tcpip - ok
17:02:40.0921 11648 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:02:40.0921 11648 TDPIPE - ok
17:02:40.0968 11648 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:02:40.0968 11648 TDTCP - ok
17:02:40.0984 11648 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:02:40.0984 11648 TermDD - ok
17:02:41.0062 11648 TosIde - ok
17:02:41.0125 11648 uagp35 (d85938f272d1bcf3db3a31fc0a048928) C:\WINDOWS\system32\DRIVERS\uagp35.sys
17:02:41.0125 11648 uagp35 - ok
17:02:41.0156 11648 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:02:41.0156 11648 Udfs - ok
17:02:41.0171 11648 ultra - ok
17:02:41.0234 11648 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:02:41.0250 11648 Update - ok
17:02:41.0328 11648 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:02:41.0328 11648 usbehci - ok
17:02:41.0375 11648 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:02:41.0375 11648 usbhub - ok
17:02:41.0421 11648 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:02:41.0421 11648 usbprint - ok
17:02:41.0468 11648 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:02:41.0484 11648 USBSTOR - ok
17:02:41.0515 11648 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:02:41.0515 11648 usbuhci - ok
17:02:41.0562 11648 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:02:41.0562 11648 VgaSave - ok
17:02:41.0625 11648 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
17:02:41.0625 11648 ViaIde - ok
17:02:41.0703 11648 VIAudio (fece79a9aef62ad5f11a3f4a14f1dead) C:\WINDOWS\system32\drivers\vinyl97.sys
17:02:41.0703 11648 VIAudio - ok
17:02:41.0734 11648 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:02:41.0734 11648 VolSnap - ok
17:02:41.0828 11648 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:02:41.0828 11648 Wanarp - ok
17:02:41.0859 11648 WDICA - ok
17:02:41.0906 11648 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:02:41.0906 11648 wdmaud - ok
17:02:42.0031 11648 WpdUsb (c1b3d9d75c3fb735f5fa3a5806aded57) C:\WINDOWS\system32\Drivers\wpdusb.sys
17:02:42.0031 11648 WpdUsb - ok
17:02:42.0359 11648 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74ec37b9eaf9fca015b933a526825c7a) D:\Instalave od18.11.2011\PowerDVD10\NavFilter\000.fcl
17:02:42.0359 11648 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
17:02:42.0453 11648 {329F96B6-DF1E-4328-BFDA-39EA953C1312} - ok
17:02:42.0531 11648 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
17:02:42.0625 11648 \Device\Harddisk0\DR0 - ok
17:02:42.0656 11648 Boot (0x1200) (97ef7a8c11d7601e41b1a69b949facc5) \Device\Harddisk0\DR0\Partition0
17:02:42.0656 11648 \Device\Harddisk0\DR0\Partition0 - ok
17:02:42.0671 11648 Boot (0x1200) (726ec966f820fdc65b21f7ed01c5bc63) \Device\Harddisk0\DR0\Partition1
17:02:42.0687 11648 \Device\Harddisk0\DR0\Partition1 - ok
17:02:42.0687 11648 ============================================================
17:02:42.0687 11648 Scan finished
17:02:42.0687 11648 ============================================================
17:02:42.0718 12112 Detected object count: 1
17:02:42.0718 12112 Actual detected object count: 1
17:02:46.0812 12112 sptd ( LockedFile.Multi.Generic ) - skipped by user
17:02:46.0812 12112 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
17:03:03.0828 11828 Deinitialize success

#23 Příspěvek od **vyosek** » 01 led 2012 20:59

vse dobre v novem roce i vam

Jak se chova nas pacient

tomas.tob · #24 Příspěvek od **tomas.tob** » 01 led 2012 22:34

dekuji,
antivir nehlasi zadny vir, vypada to, ze problem je vyresen:)

#25 Příspěvek od **vyosek** » 01 led 2012 22:39

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A je to vse

tomas.tob · #26 Příspěvek od **tomas.tob** » 05 led 2012 13:13

zdravim, vse hotovo, velice dekuji:)

#27 Příspěvek od **vyosek** » 05 led 2012 14:42

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na rozloucenou vam zahraje nase kapela :guitar:

VIRY.CZ

prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu