Prosím o kontrolu

Zpráva

bigbit · #1 Příspěvek od **bigbit** » 19 kvě 2012 20:55

Prosím o kontrolu logu
...po připojení na net je procesor na 100%
nevím co s tím,prosím pomozte...

Logfile of random's system information tool 1.09 (written by random/random)
Run by Bart at 2012-05-19 19:34:45
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 11 GB (15%) free of 76 GB
Total RAM: 1024 MB (36% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:35:55, on 19.5.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Bart\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Bart.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LinkAirBrowserHelper HistoryTriggerBHO - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [PD0620 STISvc] RunDLL32.exe P0620Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe

--
End of file - 9605 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Bart\Data aplikací\Mozilla\Firefox\Profiles\txcvg67t.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{27182e60-b5f3-411c-b545-b44205977502}"=C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\
"{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}"=C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
npBitCometAgent.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
crawlersrch.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21A88CB9-84D2-4020-A2D1-B25A21034884}]
HistoryTriggerBHO Class - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll [2011-07-14 35688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-07-27 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-04-09 3991200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll [2010-08-24 612616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-26 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll,-100 - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll [2010-08-24 612616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nwiz"=nwiz.exe /install []
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-03-07 4241512]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-03-11 6749512]
"PD0620 STISvc"=P0620Pin.dll,RunDLL32EP 513 []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2010-06-09 49208]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-05-13 2424192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DWPersistentQueuedReporting]
C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2008-11-04 435096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Default Manager]
C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2010-05-10 439568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
C:\Program Files\Windows Desktop Search\WindowsSearch.exe [2011-01-25 123904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LGScsiCommandService"=2
"iPod Service"=3
"ERSvc"=2
"Apple Mobile Device"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2009-09-04 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2011-01-25 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-01-25 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2011-01-25 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\Program Files\Spyware Terminator\SpywareTerminator.exe"="C:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe"="C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MIDI1"=SYNCOR11.DLL
"MSVideo8"=VfWWDM32.dll
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll

======List of files/folders created in the last 1 month======

2012-05-19 19:34:46 ----D---- C:\Program Files\trend micro
2012-05-19 19:34:45 ----D---- C:\rsit
2012-05-19 19:26:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-05-19 19:26:13 ----ASH---- C:\hiberfil.sys
2012-05-13 14:29:23 ----D---- C:\Documents and Settings\Bart\Data aplikací\SUPERAntiSpyware.com
2012-05-13 14:29:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2012-05-13 14:28:49 ----D---- C:\Program Files\SUPERAntiSpyware
2012-05-08 00:29:10 ----A---- C:\perflog.txt
2012-05-07 22:11:55 ----D---- C:\Documents and Settings\Bart\Data aplikací\Visan
2012-05-07 22:10:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Visan
2012-05-07 21:31:51 ----D---- C:\Program Files\Microsoft
2012-05-07 21:31:46 ----D---- C:\Program Files\MSN Toolbar
2012-05-07 21:31:23 ----D---- C:\Program Files\Bing Bar Installer
2012-05-07 21:31:16 ----D---- C:\Program Files\HP Photo Creations
2012-05-07 21:31:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP Photo Creations
2012-05-07 21:31:01 ----D---- C:\Documents and Settings\Bart\Data aplikací\HpUpdate
2012-05-07 21:30:20 ----A---- C:\WINDOWS\system32\HPScanMiniDrv_DJ2050_510g.dll
2012-05-07 21:30:14 ----A---- C:\WINDOWS\system32\hpinksts8711LM.dll
2012-05-07 21:30:14 ----A---- C:\WINDOWS\system32\hpinksts8711.dll
2012-05-07 21:30:14 ----A---- C:\WINDOWS\system32\hpinkcoi8711.dll
2012-05-07 21:29:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2012-05-07 21:29:30 ----D---- C:\Program Files\HP
2012-05-07 18:00:06 ----SHD---- C:\RECYCLER
2012-05-07 14:03:52 ----A---- C:\ComboFix.txt
2012-05-07 14:00:02 ----D---- C:\WINDOWS\temp
2012-05-07 13:50:16 ----A---- C:\Boot.bak
2012-05-07 13:50:05 ----RASHD---- C:\cmdcons
2012-05-07 13:47:28 ----A---- C:\WINDOWS\zip.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\SWXCACLS.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\SWSC.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\SWREG.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\sed.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\PEV.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\NIRCMD.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\MBR.exe
2012-05-07 13:47:28 ----A---- C:\WINDOWS\grep.exe
2012-05-07 13:45:44 ----D---- C:\WINDOWS\ERDNT
2012-05-07 13:44:48 ----D---- C:\Qoobox
2012-05-04 19:57:12 ----D---- C:\Program Files\Spybot - Search & Destroy
2012-05-04 19:57:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2012-05-04 10:48:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2012-04-27 07:43:56 ----D---- C:\Program Files\Common Files\Skype
2012-04-25 21:25:05 ----D---- C:\Program Files\QuickTime
2012-04-25 21:20:18 ----D---- C:\Program Files\Apple Software Update

======List of files/folders modified in the last 1 month======

2012-05-19 19:34:46 ----RD---- C:\Program Files
2012-05-19 19:34:45 ----D---- C:\WINDOWS\Prefetch
2012-05-19 19:31:21 ----D---- C:\WINDOWS\system32\CatRoot2
2012-05-19 19:29:25 ----D---- C:\WINDOWS\SoftwareDistribution
2012-05-19 19:29:16 ----D---- C:\WINDOWS
2012-05-19 18:51:13 ----D---- C:\Program Files\Mozilla Firefox
2012-05-19 18:29:35 ----D---- C:\Documents and Settings\Bart\Data aplikací\Skype
2012-05-19 17:35:23 ----D---- C:\Program Files\Startup Manager
2012-05-15 18:23:00 ----D---- C:\Program Files\Microsoft Silverlight
2012-05-15 13:51:34 ----SHD---- C:\WINDOWS\Installer
2012-05-14 22:38:10 ----SD---- C:\WINDOWS\Tasks
2012-05-14 19:15:22 ----A---- C:\WINDOWS\NeroDigital.ini
2012-05-08 09:22:08 ----D---- C:\WINDOWS\system32
2012-05-07 21:34:30 ----HD---- C:\WINDOWS\inf
2012-05-07 21:32:18 ----D---- C:\WINDOWS\system32\CatRoot
2012-05-07 21:31:56 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-05-07 21:30:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-05-07 21:29:55 ----D---- C:\WINDOWS\twain_32
2012-05-07 14:00:34 ----A---- C:\WINDOWS\system.ini
2012-05-07 13:56:26 ----D---- C:\WINDOWS\system32\drivers
2012-05-07 13:56:25 ----D---- C:\WINDOWS\AppPatch
2012-05-07 13:56:21 ----D---- C:\Program Files\Common Files
2012-05-07 13:50:17 ----RASH---- C:\boot.ini
2012-05-06 11:01:08 ----D---- C:\Downloads
2012-05-05 22:55:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2012-05-05 22:50:10 ----D---- C:\Program Files\Spyware Terminator
2012-05-05 09:05:01 ----HD---- C:\Program Files\InstallShield Installation Information
2012-05-04 10:48:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-04-27 19:47:39 ----D---- C:\Program Files\CCleaner
2012-04-27 07:43:56 ----RD---- C:\Program Files\Skype
2012-04-25 21:24:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2012-03-11 97760]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2011-01-25 77568]
R0 xmasbus;xmasbus; C:\WINDOWS\system32\DRIVERS\xmasbus.sys [2003-12-21 140800]
R0 xmasscsi;xmasscsi; C:\WINDOWS\System32\Drivers\xmasscsi.sys [2003-12-23 5248]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-03-07 24920]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2011-01-25 41600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2012-03-07 35672]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-03-07 612184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-03-07 337880]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-03-07 53848]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2012-03-11 494968]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2012-03-11 31704]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-03-07 95704]
R2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2011-01-25 62848]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 FETNDIS;VIA Rhine Family Fast Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2003-01-27 35328]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 LgBttPort;LGE Bluetooth TransPort; C:\WINDOWS\system32\DRIVERS\lgbtport.sys [2009-09-29 12160]
R3 lgbusenum;LG Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\lgbtbus.sys [2009-09-29 10496]
R3 LGVMODEM;LGE Virtual Modem; C:\WINDOWS\system32\DRIVERS\lgvmodem.sys [2009-09-29 12928]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2011-01-25 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408]
R3 PD0620VID;Creative WebCam Instant; C:\WINDOWS\system32\DRIVERS\P0620Vid.sys [2005-04-25 91864]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys [2011-01-25 9472]
S3 BrScnUsb;Brother USB Still Image driver; C:\WINDOWS\System32\Drivers\BrScnUsb.sys [2004-10-15 15295]
S3 catchme;catchme; \??\C:\DOCUME~1\Bart\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2010-01-21 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2010-01-21 20864]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2010-01-21 24960]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2011-01-25 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2011-01-25 82944]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2011-01-25 133632]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-03-07 44768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 Brother XP spl Service;BrSplService; C:\WINDOWS\system32\brsvc01a.exe [2011-08-09 57344]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-03-11 1983232]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-07-27 249136]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-04-09 3063968]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2012-01-10 482992]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-01-25 14848]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-27 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-26 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-27 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2011-01-25 14848]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2011-01-25 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 LGScsiCommandService;LG SCSI command service; C:\WINDOWS\system32\LGScsiCommandService.exe [2010-04-12 47616]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2011-01-25 439808]

-----------------EOF-----------------

#2 Příspěvek od **Roli** » 19 kvě 2012 21:33

Zdravím, tohle fixni v HJT :

O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

HJT najdeš zde :

C:\Program Files\trend micro\Bart.exe

Fix znamená že spustíš HJT Obrázek

jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.

Přes Start >> Spustit >> napiš - services.msc >> OK. Najdi službu :

Služba Google Update (gupdate)

Služba Google Update (gupdatem)

NBService - Nero AG

NMIndexingService - Nero AG

Skype C2C Service

klikni na ni pravým myšítkem, zvol vlastnosti, na další kartě nejprve službu zastav tlačítkem Zastavit a u položky Typ spouštění zvol Zakázáno.

Přes Start >> Ovládací panely >> Přidat nebo odebrat odinstaluj Spybot - SD který je už za zenitem.

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Pak použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !!!

bigbit · #3 Příspěvek od **bigbit** » 20 kvě 2012 10:35

...vše jsem provedl a tady je log z MBAM

20.5.2012 9:05:00
mbam-log-2012-05-20 (11-26-26).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 275186
Uplynulý čas: 2 hodin, 9 minut, 32 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

#4 Příspěvek od **Roli** » 20 kvě 2012 12:59

Nejdříve přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje tu starou verzi ComboFix kterou tam máš.

Znovu stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

V případě nejasností je ZDE obrázkový návod.

bigbit · #5 Příspěvek od **bigbit** » 21 kvě 2012 18:13

...starý combo je pryč a tady je log z nového combofix

ComboFix 12-05-21.05 - Bart 21.05.2012 18:56:32.2.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1024.453 [GMT 2:00]
Spuštěný z: c:\documents and settings\Bart\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: COMODO Firewall *Enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Bart\Dokumenty\~WRL0003.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-04-21 do 2012-05-21 )))))))))))))))))))))))))))))))
.
.
2012-05-21 15:10 . 2012-05-21 15:10 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2012-05-19 21:17 . 2012-05-19 21:17 -------- d-----w- c:\documents and settings\Bart\Data aplikací\Malwarebytes
2012-05-19 21:17 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-05-19 21:17 . 2012-05-19 21:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-05-19 17:34 . 2012-05-19 20:50 -------- d-----w- c:\program files\trend micro
2012-05-19 17:34 . 2012-05-19 17:36 -------- d-----w- C:\rsit
2012-05-19 17:05 . 2012-05-19 17:05 -------- d-----w- c:\documents and settings\Administrator\Data aplikací\SUPERAntiSpyware.com
2012-05-13 12:29 . 2012-05-13 12:29 -------- d-----w- c:\documents and settings\Bart\Data aplikací\SUPERAntiSpyware.com
2012-05-13 12:28 . 2012-05-15 17:51 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-05-07 20:11 . 2012-05-07 20:11 -------- d-----w- c:\documents and settings\All Users\Data aplikac
2012-05-07 20:11 . 2012-05-07 20:11 -------- d-----w- c:\documents and settings\Bart\Data aplikací\Visan
2012-05-07 19:31 . 2012-05-07 19:31 -------- d-----w- c:\program files\Microsoft
2012-05-07 19:31 . 2012-05-07 19:31 -------- d-----w- c:\program files\MSN Toolbar
2012-05-07 19:31 . 2012-05-07 19:32 -------- d-----w- c:\program files\Bing Bar Installer
2012-05-07 19:31 . 2012-05-07 20:10 -------- d-----w- c:\program files\HP Photo Creations
2012-05-07 19:31 . 2012-05-07 19:31 -------- d-----w- c:\documents and settings\Bart\Data aplikací\HpUpdate
2012-05-07 19:30 . 2010-11-16 23:48 1792872 ----a-w- c:\windows\system32\HPScanMiniDrv_DJ2050_510g.dll
2012-05-07 19:30 . 2010-11-16 23:48 267112 ----a-w- c:\windows\system32\hpinksts8711LM.dll
2012-05-07 19:30 . 2010-11-16 23:48 232296 ----a-w- c:\windows\system32\hpinksts8711.dll
2012-05-07 19:30 . 2010-11-16 23:48 213864 ----a-w- c:\windows\system32\hpinkcoi8711.dll
2012-05-07 19:29 . 2012-05-07 19:31 -------- d-----w- c:\program files\HP
2012-05-07 19:28 . 2012-05-07 19:48 -------- d-----w- c:\documents and settings\Bart\Local Settings\Data aplikací\HP
2012-04-27 05:43 . 2012-04-27 05:43 -------- d-----w- c:\program files\Common Files\Skype
2012-04-25 19:20 . 2012-04-25 19:20 -------- d-----w- c:\program files\Apple Software Update
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-11 21:13 . 2010-04-08 23:25 97760 ----a-w- c:\windows\system32\drivers\inspect.sys
2012-03-11 21:13 . 2010-04-08 23:25 31704 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2012-03-11 21:13 . 2010-04-08 23:25 494968 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2012-03-11 21:13 . 2010-04-08 23:25 18056 ----a-w- c:\windows\system32\drivers\cmderd.sys
2012-03-11 21:13 . 2011-11-15 16:03 33984 ----a-w- c:\windows\system32\cmdcsr.dll
2012-03-11 21:13 . 2010-04-08 23:26 301224 ----a-w- c:\windows\system32\guard32.dll
2012-03-07 00:15 . 2011-07-26 21:28 41184 ----a-w- c:\windows\avastSS.scr
2012-03-07 00:15 . 2011-07-26 21:28 201352 ----a-w- c:\windows\system32\aswBoot.exe
2012-03-07 00:03 . 2011-07-26 21:29 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-03-07 00:03 . 2011-07-26 21:29 337880 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-03-07 00:02 . 2011-07-26 21:29 35672 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-03-07 00:01 . 2011-07-26 21:29 53848 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-03-07 00:01 . 2011-07-26 21:29 95704 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-03-07 00:01 . 2011-07-26 21:29 89048 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-03-07 00:01 . 2011-07-26 21:29 20696 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-03-06 23:58 . 2011-07-26 21:29 24920 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-03-04 21:28 . 2012-03-04 21:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2011-01-25 . 8F41FD1CC693054347C6FB7B0E618B07 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-07 00:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-05-13 2424192]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="nwiz.exe" [2008-05-16 1630208]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-07 4241512]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-03-11 6749512]
"PD0620 STISvc"="P0620Pin.dll" [2005-05-10 36864]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13529088]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2011-01-25 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2011-09-27 05:22 59240 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DWPersistentQueuedReporting]
2008-11-03 23:44 435096 ----a-w- c:\program files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Default Manager]
2010-05-10 12:12 439568 ----a-w- c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-09 17:53 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2008-05-16 12:01 13529088 ----a-w- c:\windows\system32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-10-24 12:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LGScsiCommandService"=2 (0x2)
"iPod Service"=3 (0x3)
"ERSvc"=2 (0x2)
"Apple Mobile Device"=2 (0x2)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"NvMediaCenter"=RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
"SpywareTerminatorUpdater"=c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
"KernelFaultCheck"=%systemroot%\system32\dumprep 0 -k
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"25177:TCP"= 25177:TCP:BitComet 25177 TCP
"25177:UDP"= 25177:UDP:BitComet 25177 UDP
.
R0 xmasbus;xmasbus;c:\windows\system32\drivers\xmasbus.sys [11.8.2011 20:14 140800]
R0 xmasscsi;xmasscsi;c:\windows\system32\drivers\xmasscsi.sys [11.8.2011 20:14 5248]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [26.7.2011 23:29 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [26.7.2011 23:29 337880]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [9.4.2010 1:25 494968]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [9.4.2010 1:25 31704]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [17.2.2010 20:25 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [10.5.2010 20:41 67656]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [26.7.2011 23:29 20696]
R2 CLPSLS;COMODO livePCsupport Service;c:\program files\COMODO\COMODO livePCsupport\CLPSLS.exe [19.2.2010 17:00 148744]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [19.5.2012 23:17 654408]
R3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\drivers\lgbtport.sys [29.9.2009 8:11 12160]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\drivers\lgbtbus.sys [29.9.2009 8:11 10496]
R3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\drivers\lgvmodem.sys [29.9.2009 8:11 12928]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [19.5.2012 23:17 22344]
S1 DumpDrv;Crash Dump Driver;c:\windows\system32\drivers\dumpdrv.sys [25.1.2011 10:15 9472]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [26.7.2011 15:39 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [29.2.2012 8:50 158856]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [25.1.2011 10:12 14848]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [26.7.2011 15:40 753504]
S4 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [27.8.2011 14:40 136176]
S4 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [27.8.2011 14:40 136176]
S4 LGScsiCommandService;LG SCSI command service;c:\windows\system32\LGScsiCommandService.exe [30.7.2011 18:54 47616]
S4 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [9.4.2012 11:20 3063968]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Bart\Data aplikací\Mozilla\Firefox\Profiles\txcvg67t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: network.http.max-persistent-connections-per-server - 4
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-05-21 19:08
Windows 5.1.2600 Service Pack 3 NTFS
.
detected NTDLL code modification:
ZwClose
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: ST380011A rev.3.06 -> Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T0L0-4
.
device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user != kernel MBR !!!
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(768)
c:\windows\system32\guard32.dll
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
- - - - - - - > 'lsass.exe'(824)
c:\windows\system32\MPR.dll
c:\windows\system32\guard32.dll
.
- - - - - - - > 'csrss.exe'(740)
c:\windows\system32\cmdcsr.dll
.
Celkový čas: 2012-05-21 19:12:34
ComboFix-quarantined-files.txt 2012-05-21 17:12
ComboFix2.txt 2012-05-07 12:03
.
Před spuštěním: Volných bajtů: 19 781 955 584
Po spuštění: Volných bajtů: 19 770 159 104
.
- - End Of File - - D7F36D10E517A28679A9EBAE83B7933A

#6 Příspěvek od **Roli** » 21 kvě 2012 22:01

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.

Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.

Stáhni TDSSKiller a ulož ho na plochu.

Spusť aplikaci, vyber volbu Spustit kontrolu a klik na Start sken

Pokud aplikace najde infikovaný soubor, ukáže se Ti předvolená akce Cure,

v tom případě potvrď tlačítko Continue

Pokud bude chtít apliakce restartovat počítač, klikni na tlačítko Reboot Now

Pokud si restart nevyžádá, klikni na tlačítko Report.

Po té na Tebe vypadne log, jeho obsah zkopíruj sem.

Pokud se log nezobrazí, je uložený na C:\TDSSKiller

bigbit · #7 Příspěvek od **bigbit** » 22 kvě 2012 18:49

Ahoj
vše jsem učinil jak si radil ale nejde mi poslat log z TDSSKIller protože obsahuje větší množství znaků než je povoleno vkládat

vložil jsem zatím jen první polovinu:
212 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
19:35:54.0203 3212 ============================================================
19:35:54.0203 3212 Current date / time: 2012/05/22 19:35:54.0203
19:35:54.0203 3212 SystemInfo:
19:35:54.0203 3212
19:35:54.0203 3212 OS Version: 5.1.2600 ServicePack: 3.0
19:35:54.0203 3212 Product type: Workstation
19:35:54.0203 3212 ComputerName: BART-3E021B0EEE
19:35:54.0203 3212 UserName: Bart
19:35:54.0203 3212 Windows directory: C:\WINDOWS
19:35:54.0203 3212 System windows directory: C:\WINDOWS
19:35:54.0203 3212 Processor architecture: Intel x86
19:35:54.0203 3212 Number of processors: 1
19:35:54.0203 3212 Page size: 0x1000
19:35:54.0203 3212 Boot type: Normal boot
19:35:54.0203 3212 ============================================================
19:35:55.0984 3212 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:35:56.0000 3212 Drive \Device\Harddisk1\DR1 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:35:56.0078 3212 Drive \Device\Harddisk4\DR7 - Size: 0x3BA00200 (0.93 Gb), SectorSize: 0x200, Cylinders: 0x79, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:35:56.0109 3212 ============================================================
19:35:56.0109 3212 \Device\Harddisk0\DR0:
19:35:56.0109 3212 MBR partitions:
19:35:56.0109 3212 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3AF44C9
19:35:56.0125 3212 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3AF4547, BlocksNum 0x5A19F7A
19:35:56.0125 3212 \Device\Harddisk1\DR1:
19:35:56.0125 3212 MBR partitions:
19:35:56.0125 3212 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950A5C1
19:35:56.0125 3212 \Device\Harddisk4\DR7:
19:35:56.0140 3212 MBR partitions:
19:35:56.0140 3212 \Device\Harddisk4\DR7\Partition0: MBR, Type 0x6, StartLBA 0x81, BlocksNum 0x1DCF7F
19:35:56.0140 3212 ============================================================
19:35:56.0359 3212 C: <-> \Device\Harddisk1\DR1\Partition0
19:35:56.0406 3212 F: <-> \Device\Harddisk0\DR0\Partition0
19:35:56.0437 3212 G: <-> \Device\Harddisk0\DR0\Partition1
19:35:56.0453 3212 ============================================================
19:35:56.0453 3212 Initialize success
19:35:56.0453 3212 ============================================================
19:36:06.0093 3368 ============================================================
19:36:06.0093 3368 Scan started
19:36:06.0093 3368 Mode: Manual;
19:36:06.0093 3368 ============================================================
19:36:06.0484 3368 Aavmker4 (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys
19:36:06.0484 3368 Aavmker4 - ok
19:36:06.0500 3368 Abiosdsk - ok
19:36:06.0546 3368 abp480n5 - ok
19:36:06.0656 3368 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:36:06.0671 3368 ACPI - ok
19:36:06.0734 3368 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:36:06.0734 3368 ACPIEC - ok
19:36:06.0765 3368 adpu160m - ok
19:36:06.0796 3368 aeaudio (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys
19:36:06.0796 3368 aeaudio - ok
19:36:06.0859 3368 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:36:06.0859 3368 aec - ok
19:36:06.0921 3368 AFD (8d499b1276012eb907e7a9e0f4d8fda4) C:\WINDOWS\System32\drivers\afd.sys
19:36:06.0921 3368 AFD - ok
19:36:06.0953 3368 Aha154x - ok
19:36:06.0984 3368 aic78u2 - ok
19:36:07.0000 3368 aic78xx - ok
19:36:07.0062 3368 Alerter (e0a6fa244b8624d78fe5ff6f56a33bae) C:\WINDOWS\system32\alrsvc.dll
19:36:07.0062 3368 Alerter - ok
19:36:07.0125 3368 ALG (88842de939a827577bf24243699ac80a) C:\WINDOWS\System32\alg.exe
19:36:07.0125 3368 ALG - ok
19:36:07.0140 3368 AliIde - ok
19:36:07.0203 3368 AmdK7 (3980814f8027d27ea003e2e3d9d4f604) C:\WINDOWS\system32\DRIVERS\amdk7.sys
19:36:07.0203 3368 AmdK7 - ok
19:36:07.0234 3368 amsint - ok
19:36:07.0281 3368 AppMgmt (6b8e7a90e576d4fe308f97c69060a171) C:\WINDOWS\System32\appmgmts.dll
19:36:07.0281 3368 AppMgmt - ok
19:36:07.0312 3368 asc - ok
19:36:07.0328 3368 asc3350p - ok
19:36:07.0359 3368 asc3550 - ok
19:36:07.0609 3368 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:36:07.0609 3368 aspnet_state - ok
19:36:07.0687 3368 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys
19:36:07.0687 3368 aswFsBlk - ok
19:36:07.0718 3368 aswMon2 (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys
19:36:07.0718 3368 aswMon2 - ok
19:36:07.0765 3368 aswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\aswRdr.sys
19:36:07.0765 3368 aswRdr - ok
19:36:07.0843 3368 aswSnx (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys
19:36:07.0875 3368 aswSnx - ok
19:36:07.0921 3368 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys
19:36:07.0937 3368 aswSP - ok
19:36:07.0968 3368 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys
19:36:07.0968 3368 aswTdi - ok
19:36:08.0046 3368 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:36:08.0046 3368 AsyncMac - ok
19:36:08.0078 3368 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:36:08.0093 3368 atapi - ok
19:36:08.0109 3368 Atdisk - ok
19:36:08.0140 3368 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:36:08.0140 3368 Atmarpc - ok
19:36:08.0203 3368 AudioSrv (de31b88962a8645dba5a37b993e7b0f1) C:\WINDOWS\System32\audiosrv.dll
19:36:08.0203 3368 AudioSrv - ok
19:36:08.0265 3368 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:36:08.0265 3368 audstub - ok
19:36:08.0421 3368 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:36:08.0421 3368 avast! Antivirus - ok
19:36:08.0531 3368 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:36:08.0546 3368 Beep - ok
19:36:08.0625 3368 BITS (3aede727580f0a7c3929dd6526145759) C:\WINDOWS\system32\qmgr.dll
19:36:08.0671 3368 BITS - ok
19:36:08.0796 3368 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
19:36:08.0828 3368 Bonjour Service - ok
19:36:08.0890 3368 Brother XP spl Service (d3facb34fff5db91adb70987838f8ba7) C:\WINDOWS\system32\brsvc01a.exe
19:36:08.0890 3368 Brother XP spl Service - ok
19:36:08.0937 3368 Browser (39ce94b2b33771a3d95c70f41847f3f9) C:\WINDOWS\System32\browser.dll
19:36:08.0937 3368 Browser - ok
19:36:09.0000 3368 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:36:09.0015 3368 cbidf2k - ok
19:36:09.0062 3368 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:36:09.0062 3368 CCDECODE - ok
19:36:09.0078 3368 cd20xrnt - ok
19:36:09.0109 3368 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:36:09.0109 3368 Cdaudio - ok
19:36:09.0156 3368 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:36:09.0156 3368 Cdfs - ok
19:36:09.0265 3368 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:36:09.0265 3368 Cdrom - ok
19:36:09.0296 3368 Changer - ok
19:36:09.0343 3368 CiSvc (e390dc1d7c461d7d56ec53402f329928) C:\WINDOWS\system32\cisvc.exe
19:36:09.0343 3368 CiSvc - ok
19:36:09.0390 3368 ClipSrv (064507a8dfa8c5c7e2ffddd3e6f424fa) C:\WINDOWS\system32\clipsrv.exe
19:36:09.0390 3368 ClipSrv - ok
19:36:09.0437 3368 CLPSLS (56139566e462c1fb1775e140d4ee6b22) C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
19:36:09.0437 3368 CLPSLS - ok
19:36:09.0671 3368 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:36:09.0687 3368 clr_optimization_v2.0.50727_32 - ok
19:36:09.0781 3368 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:36:09.0796 3368 clr_optimization_v4.0.30319_32 - ok
19:36:10.0015 3368 cmdAgent (907324001ae25ac5959c91eaa34cabae) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
19:36:10.0031 3368 cmdAgent - ok
19:36:10.0265 3368 cmdGuard (bee235831f8e3f0baaca18b39d285cf5) C:\WINDOWS\system32\DRIVERS\cmdguard.sys
19:36:10.0265 3368 cmdGuard - ok
19:36:10.0328 3368 cmdHlp (de548946f36cab62fec2e6aa0149a619) C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
19:36:10.0328 3368 cmdHlp - ok
19:36:10.0343 3368 CmdIde - ok
19:36:10.0375 3368 COMSysApp - ok
19:36:10.0421 3368 Cpqarray - ok
19:36:10.0453 3368 CryptSvc (f3ab0933cbd166d271992f411c27ccaf) C:\WINDOWS\System32\cryptsvc.dll
19:36:10.0453 3368 CryptSvc - ok
19:36:10.0484 3368 dac2w2k - ok
19:36:10.0500 3368 dac960nt - ok
19:36:10.0625 3368 DcomLaunch (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\system32\rpcss.dll
19:36:10.0656 3368 DcomLaunch - ok
19:36:10.0890 3368 Dhcp (eb737f46d7d494c7760a932c9b6491a4) C:\WINDOWS\System32\dhcpcsvc.dll
19:36:10.0890 3368 Dhcp - ok
19:36:10.0984 3368 Disk (47b6aaec570f2c11d8bad80a064d8ed1) C:\WINDOWS\system32\DRIVERS\disk.sys
19:36:10.0984 3368 Disk - ok
19:36:11.0015 3368 dmadmin - ok
19:36:11.0093 3368 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
19:36:11.0125 3368 dmboot - ok
19:36:11.0203 3368 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
19:36:11.0218 3368 dmio - ok
19:36:11.0265 3368 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:36:11.0265 3368 dmload - ok
19:36:11.0296 3368 dmserver (2bfefe9e865655a76982f050450b9591) C:\WINDOWS\System32\dmserver.dll
19:36:11.0296 3368 dmserver - ok
19:36:11.0359 3368 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:36:11.0359 3368 DMusic - ok
19:36:11.0468 3368 Dnscache (38aad7e982198cb4f642bb60e59511f1) C:\WINDOWS\System32\dnsrslvr.dll
19:36:11.0468 3368 Dnscache - ok
19:36:11.0531 3368 Dot3svc (aacfc38e9d085d58f9f933cfd6af1d2b) C:\WINDOWS\System32\dot3svc.dll
19:36:11.0546 3368 Dot3svc - ok
19:36:11.0578 3368 dpti2o - ok
19:36:11.0625 3368 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:36:11.0625 3368 drmkaud - ok
19:36:11.0687 3368 DumpDrv (b327281012b48bd73f587799f9f29be2) C:\WINDOWS\system32\drivers\DumpDrv.sys
19:36:11.0687 3368 DumpDrv - ok
19:36:11.0765 3368 EapHost (0887d9c2be8d940778cad1e3b85f2a41) C:\WINDOWS\System32\eapsvc.dll
19:36:11.0781 3368 EapHost - ok
19:36:11.0812 3368 ERSvc (a2a4912798f2be706abadd3d30800d16) C:\WINDOWS\System32\ersvc.dll
19:36:11.0812 3368 ERSvc - ok
19:36:11.0875 3368 Eventlog (4f40d16b2d5ed9e48a193ce468912fed) C:\WINDOWS\system32\services.exe
19:36:11.0890 3368 Eventlog - ok
19:36:11.0953 3368 EventSystem (be68ea4457e2e5717231cf91be5448e0) C:\WINDOWS\system32\es.dll
19:36:11.0953 3368 EventSystem - ok
19:36:12.0015 3368 exFat (4d893323dae445e34a4c9038b0551bc9) C:\WINDOWS\system32\drivers\exFat.sys
19:36:12.0015 3368 exFat - ok
19:36:12.0109 3368 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:36:12.0109 3368 Fastfat - ok
19:36:12.0187 3368 FastUserSwitchingCompatibility (54a6bf743e0517528a5064ceaeb40ea7) C:\WINDOWS\System32\shsvcs.dll
19:36:12.0203 3368 FastUserSwitchingCompatibility - ok
19:36:12.0250 3368 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
19:36:12.0250 3368 Fdc - ok
19:36:12.0296 3368 FETNDIS (d8b0f7a609ace22b8acfe0605f1dab67) C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
19:36:12.0296 3368 FETNDIS - ok
19:36:12.0328 3368 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
19:36:12.0328 3368 Fips - ok
19:36:12.0484 3368 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:36:12.0515 3368 FLEXnet Licensing Service - ok
19:36:12.0562 3368 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:36:12.0562 3368 Flpydisk - ok
19:36:12.0625 3368 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:36:12.0640 3368 FltMgr - ok
19:36:12.0750 3368 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:36:12.0750 3368 FontCache3.0.0.0 - ok
19:36:12.0812 3368 Fs_Rec (30d42943a54704ef13e2562911dbfcea) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:36:12.0812 3368 Fs_Rec - ok
19:36:12.0859 3368 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:36:12.0859 3368 Ftdisk - ok
19:36:12.0968 3368 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
19:36:12.0984 3368 gameenum - ok
19:36:13.0046 3368 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:36:13.0046 3368 GEARAspiWDM - ok
19:36:13.0109 3368 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:36:13.0109 3368 Gpc - ok
19:36:13.0218 3368 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:36:13.0218 3368 gupdate - ok
19:36:13.0250 3368 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:36:13.0250 3368 gupdatem - ok
19:36:13.0375 3368 helpsvc (fcfe31fb75f8a6295b6b0af87a626282) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:36:13.0375 3368 helpsvc - ok
19:36:13.0390 3368 HidServ - ok
19:36:13.0468 3368 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:36:13.0468 3368 hidusb - ok
19:36:13.0546 3368 hkmsvc (7a6b320928f86bc851530d63c82965d9) C:\WINDOWS\System32\kmsvc.dll
19:36:13.0546 3368 hkmsvc - ok
19:36:13.0578 3368 hpn - ok
19:36:13.0671 3368 HTTP (937031c085718c1c04a9c0864625ec6b) C:\WINDOWS\system32\Drivers\HTTP.sys
19:36:13.0687 3368 HTTP - ok
19:36:13.0765 3368 HTTPFilter (58fe2f2da3bc5573f4a35b3760d3125f) C:\WINDOWS\System32\w3ssl.dll
19:36:13.0781 3368 HTTPFilter - ok
19:36:13.0796 3368 i2omgmt - ok
19:36:13.0828 3368 i2omp - ok
19:36:13.0875 3368 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:36:13.0875 3368 i8042prt - ok
19:36:14.0000 3368 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:36:14.0000 3368 IDriverT - ok
19:36:14.0125 3368 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:36:14.0156 3368 idsvc - ok
19:36:14.0234 3368 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:36:14.0234 3368 Imapi - ok
19:36:14.0296 3368 ImapiService (f7b93aafad33b2320954c17e26c8d361) C:\WINDOWS\system32\imapi.exe
19:36:14.0296 3368 ImapiService - ok
19:36:14.0343 3368 ini910u - ok
19:36:14.0437 3368 Inspect (f89849cf13805ef49da64a8a63193af7) C:\WINDOWS\system32\DRIVERS\inspect.sys
19:36:14.0437 3368 Inspect - ok
19:36:14.0468 3368 IntelIde - ok
19:36:14.0500 3368 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:36:14.0500 3368 Ip6Fw - ok
19:36:14.0546 3368 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:36:14.0562 3368 IpFilterDriver - ok
19:36:14.0578 3368 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:36:14.0578 3368 IpInIp - ok
19:36:14.0640 3368 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:36:14.0640 3368 IpNat - ok
19:36:14.0750 3368 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:36:14.0750 3368 IPSec - ok
19:36:14.0796 3368 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:36:14.0812 3368 IRENUM - ok
19:36:14.0875 3368 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:36:14.0875 3368 isapnp - ok
19:36:14.0937 3368 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:36:14.0937 3368 Kbdclass - ok
19:36:15.0015 3368 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:36:15.0015 3368 kmixer - ok
19:36:15.0078 3368 KSecDD (c6ebf1d6ad71df30db49b8d3287e1368) C:\WINDOWS\system32\drivers\KSecDD.sys
19:36:15.0093 3368 KSecDD - ok
19:36:15.0171 3368 LanmanServer (111a41b749f0e8cd7566b4ffd613cffe) C:\WINDOWS\System32\srvsvc.dll
19:36:15.0171 3368 LanmanServer - ok
19:36:15.0250 3368 lanmanworkstation (9a2e7ee3989aac0079e9d23555545d52) C:\WINDOWS\System32\wkssvc.dll
19:36:15.0265 3368 lanmanworkstation - ok
19:36:15.0281 3368 lbrtfdc - ok
19:36:15.0343 3368 LgBttPort (4dd47b5af0b24871ebb9efc012a7474e) C:\WINDOWS\system32\DRIVERS\lgbtport.sys
19:36:15.0343 3368 LgBttPort - ok
19:36:15.0421 3368 lgbusenum (1d038ca6c529203087a990e5e97887b4) C:\WINDOWS\system32\DRIVERS\lgbtbus.sys
19:36:15.0421 3368 lgbusenum - ok
19:36:15.0484 3368 LGScsiCommandService (a193f8fdc130d8ba65e444facd75ab05) C:\WINDOWS\system32\LGScsiCommandService.exe
19:36:15.0500 3368 LGScsiCommandService - ok
19:36:15.0546 3368 LGVMODEM (26f1976a330195d62a6224c76968cf0d) C:\WINDOWS\system32\DRIVERS\lgvmodem.sys
19:36:15.0546 3368 LGVMODEM - ok
19:36:15.0609 3368 LmHosts (0ab159f536e3e8f7f07113702a07cca5) C:\WINDOWS\System32\lmhsvc.dll
19:36:15.0625 3368 LmHosts - ok
19:36:15.0656 3368 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\WINDOWS\system32\drivers\mbam.sys
19:36:15.0671 3368 MBAMProtector - ok
19:36:15.0812 3368 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:36:15.0812 3368 MBAMService - ok
19:36:15.0890 3368 Messenger (221cd1c815b8a6b79389c3f5d1018de8) C:\WINDOWS\System32\msgsvc.dll
19:36:15.0890 3368 Messenger - ok
19:36:15.0984 3368 Microsoft Office Groove Audit Service (7c4c76b39d5525c4a465e0be32528e19) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:36:16.0000 3368 Microsoft Office Groove Audit Service - ok
19:36:16.0046 3368 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:36:16.0046 3368 mnmdd - ok
19:36:16.0109 3368 mnmsrvc (9a57d046f88f4b69751b11fd40088a61) C:\WINDOWS\system32\mnmsrvc.exe
19:36:16.0109 3368 mnmsrvc - ok
19:36:16.0171 3368 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
19:36:16.0171 3368 Modem - ok
19:36:16.0218 3368 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:36:16.0218 3368 Mouclass - ok
19:36:16.0281 3368 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:36:16.0281 3368 mouhid - ok
19:36:16.0328 3368 MountMgr (1a1faa5102466f418494e94ff9b0b091) C:\WINDOWS\system32\drivers\MountMgr.sys
19:36:16.0328 3368 MountMgr - ok
19:36:16.0359 3368 mraid35x - ok
19:36:16.0531 3368 MRxDAV (4fefd389d71126ee581b9f9cb2918be4) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:36:16.0546 3368 MRxDAV - ok
19:36:16.0625 3368 MRxSmb (8dd801e28eb76fda2a38907882a0036f) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:36:16.0640 3368 MRxSmb - ok
19:36:16.0703 3368 MSDTC (6db4d1521caba9a5ffab54ade0ae867d) C:\WINDOWS\system32\msdtc.exe
19:36:16.0703 3368 MSDTC - ok
19:36:16.0781 3368 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:36:16.0781 3368 Msfs - ok
19:36:16.0812 3368 MSIServer - ok
19:36:16.0875 3368 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:36:16.0875 3368 MSKSSRV - ok
19:36:16.0921 3368 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:36:16.0921 3368 MSPCLOCK - ok
19:36:16.0953 3368 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:36:16.0953 3368 MSPQM - ok
19:36:17.0015 3368 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:36:17.0015 3368 mssmbios - ok
19:36:17.0078 3368 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:36:17.0078 3368 MSTEE - ok
19:36:17.0140 3368 Mup (f7b1ad991491f02af6da70b00b8bf114) C:\WINDOWS\system32\drivers\Mup.sys
19:36:17.0140 3368 Mup - ok
19:36:17.0203 3368 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:36:17.0218 3368 NABTSFEC - ok
19:36:17.0281 3368 napagent (6ea362e9db03d44f6b996f4d8be237e9) C:\WINDOWS\System32\qagentrt.dll
19:36:17.0312 3368 napagent - ok
19:36:17.0531 3368 NBService (89844c3d3a7aae8999e229c88e452633) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
19:36:17.0562 3368 NBService - ok
19:36:17.0640 3368 NDIS (b5b1080d35974c0e718d64280761bcd5) C:\WINDOWS\system32\drivers\NDIS.sys
19:36:17.0640 3368 NDIS - ok
19:36:17.0671 3368 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:36:17.0671 3368 NdisIP - ok
19:36:17.0687 3368 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:36:17.0687 3368 NdisTapi - ok
19:36:17.0703 3368 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:36:17.0703 3368 Ndisuio - ok
19:36:17.0750 3368 NdisWan (b053a8411045fd0664b389a090cb2bbc) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:36:17.0781 3368 NdisWan - ok
19:36:17.0828 3368 NDProxy (816460bd4b4acd27937d1d0813e2e9e9) C:\WINDOWS\system32\drivers\NDProxy.sys
19:36:17.0828 3368 NDProxy - ok
19:36:17.0875 3368 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:36:17.0890 3368 NetBIOS - ok
19:36:17.0953 3368 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:36:17.0984 3368 NetBT - ok
19:36:18.0046 3368 NetDDE (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
19:36:18.0062 3368 NetDDE - ok
19:36:18.0093 3368 NetDDEdsdm (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
19:36:18.0156 3368 NetDDEdsdm - ok
19:36:18.0203 3368 Netlogon (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:36:18.0250 3368 Netlogon - ok
19:36:18.0359 3368 Netman (72e1e9e2977be08bdeedb6d8fd9d4d40) C:\WINDOWS\System32\netman.dll
19:36:18.0390 3368 Netman - ok
19:36:18.0546 3368 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:36:18.0562 3368 NetTcpPortSharing - ok
19:36:18.0656 3368 Nla (0d594d828829e1bc727b870899376b19) C:\WINDOWS\System32\mswsock.dll
19:36:18.0687 3368 Nla - ok
19:36:18.0875 3368 NMIndexingService (433049770b810d7c83c5c94cdb3e09d2) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
19:36:18.0906 3368 NMIndexingService - ok
19:36:18.0968 3368 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:36:18.0968 3368 Npfs - ok
19:36:19.0046 3368 Ntfs (ae8cad8f28db13b515a68510a539b0b8) C:\WINDOWS\system32\drivers\Ntfs.sys
19:36:19.0078 3368 Ntfs - ok
19:36:19.0125 3368 NtLmSsp (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:36:19.0140 3368 NtLmSsp - ok
19:36:19.0234 3368 NtmsSvc (023dd70573d644f3d9c8b1258a7bfd08) C:\WINDOWS\system32\ntmssvc.dll
19:36:19.0265 3368 NtmsSvc - ok
19:36:19.0296 3368 NTSIM (4d3eb5a8021af05c7fe5f313443a533b) C:\WINDOWS\system32\ntsim.sys
19:36:19.0312 3368 NTSIM - ok
19:36:19.0359 3368 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:36:19.0359 3368 Null - ok
19:36:19.0781 3368 nv (9f4384aa43548ddd438f7b7825d11699) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:36:20.0000 3368 nv - ok
19:36:20.0187 3368 NVSvc (0c41c4acfe00d826db479c40c1d9edc8) C:\WINDOWS\system32\nvsvc32.exe
19:36:20.0203 3368 NVSvc - ok
19:36:20.0265 3368 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:36:20.0265 3368 NwlnkFlt - ok
19:36:20.0296 3368 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:36:20.0296 3368 NwlnkFwd - ok
19:36:20.0484 3368 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:36:20.0500 3368 odserv - ok
19:36:20.0546 3368 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:36:20.0562 3368 ose - ok
19:36:20.0625 3368 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
19:36:20.0625 3368 Parport - ok
19:36:20.0671 3368 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:36:20.0671 3368 PartMgr - ok
19:36:20.0750 3368 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
19:36:20.0750 3368 ParVdm - ok
19:36:20.0812 3368 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
19:36:20.0812 3368 PCI - ok
19:36:20.0843 3368 PCIDump - ok
19:36:20.0875 3368 PCIIde - ok
19:36:20.0937 3368 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:36:20.0937 3368 Pcmcia - ok
19:36:21.0000 3368 PD0620VID (ea296b87ba381c640b441d95f90785f8) C:\WINDOWS\system32\DRIVERS\P0620Vid.sys
19:36:21.0000 3368 PD0620VID - ok
19:36:21.0015 3368 PDCOMP - ok
19:36:21.0031 3368 PDFRAME - ok
19:36:21.0062 3368 PDRELI - ok
19:36:21.0093 3368 PDRFRAME - ok
19:36:21.0109 3368 perc2 - ok
19:36:21.0140 3368 perc2hib - ok
19:36:21.0265 3368 PlugPlay (4f40d16b2d5ed9e48a193ce468912fed) C:\WINDOWS\system32\services.exe
19:36:21.0296 3368 PlugPlay - ok
19:36:21.0359 3368 PolicyAgent (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:36:21.0359 3368 PolicyAgent - ok
19:36:21.0421 3368 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:36:21.0437 3368 PptpMiniport - ok
19:36:21.0453 3368 ProtectedStorage (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:36:21.0468 3368 ProtectedStorage - ok
19:36:21.0546 3368 PSched (d8e11d311785f89f1d70a28b0e879127) C:\WINDOWS\system32\DRIVERS\psched.sys
19:36:21.0546 3368 PSched - ok
19:36:21.0578 3368 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:36:21.0593 3368 Ptilink - ok
19:36:21.0609 3368 ql1080 - ok
19:36:21.0640 3368 Ql10wnt - ok
19:36:21.0671 3368 ql12160 - ok
19:36:21.0703 3368 ql1240 - ok
19:36:21.0734 3368 ql1280 - ok
19:36:21.0765 3368 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:36:21.0765 3368 RasAcd - ok
19:36:21.0812 3368 RasAuto (2b5e44ea009f2f374b980e1e9a70635d) C:\WINDOWS\System32\rasauto.dll
19:36:21.0828 3368 RasAuto - ok
19:36:21.0859 3368 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:36:21.0859 3368 Rasl2tp - ok
19:36:21.0921 3368 RasMan (d57554c664b64604bd1ee13ea2c07e77) C:\WINDOWS\System32\rasmans.dll
19:36:21.0937 3368 RasMan - ok
19:36:21.0968 3368 RasPppoe (2c9d4620a0fd35de1828370b392f6e2d) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:36:21.0968 3368 RasPppoe - ok
19:36:22.0046 3368 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:36:22.0046 3368 Raspti - ok
19:36:22.0109 3368 Rdbss (77050c6615f6eb5402f832b27fd695e0) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:36:22.0125 3368 Rdbss - ok
19:36:22.0156 3368 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:36:22.0156 3368 RDPCDD - ok
19:36:22.0234 3368 rdpdr (47ea20320e3d6fdc7b7bb22b2b881ca6) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:36:22.0250 3368 rdpdr - ok
19:36:22.0328 3368 RDPWD (e8e3107243b16a549b88d145ec051b06) C:\WINDOWS\system32\drivers\RDPWD.sys
19:36:22.0328 3368 RDPWD - ok
19:36:22.0390 3368 RDSessMgr (c0d9d9711cb74ee9bc66353d8cbdab0e) C:\WINDOWS\system32\sessmgr.exe
19:36:22.0406 3368 RDSessMgr - ok
19:36:22.0500 3368 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:36:22.0500 3368 redbook - ok
19:36:22.0562 3368 RemoteAccess (127c26b5371651043450e52542099aba) C:\WINDOWS\System32\mprdim.dll
19:36:22.0578 3368 RemoteAccess - ok
19:36:22.0640 3368 RemoteRegistry (8f31505484a190d5b22274708799f4ec) C:\WINDOWS\system32\regsvc.dll
19:36:22.0656 3368 RemoteRegistry - ok
19:36:22.0718 3368 RpcLocator (718b3bdc0bc3c2f7d065a53d26202af9) C:\WINDOWS\system32\locator.exe
19:36:22.0718 3368 RpcLocator - ok
19:36:22.0843 3368 RpcSs (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\System32\rpcss.dll
19:36:22.0843 3368 RpcSs - ok
19:36:22.0921 3368 rspndr (743d7d59767073a617b1dcc6c546f234) C:\WINDOWS\system32\DRIVERS\rspndr.sys
19:36:22.0921 3368 rspndr - ok
19:36:22.0984 3368 RSVP (09ab2e71e58b078038e3bfdba7ffc984) C:\WINDOWS\system32\rsvp.exe
19:36:23.0000 3368 RSVP - ok
19:36:23.0046 3368 SamSs (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:36:23.0062 3368 SamSs - ok
19:36:23.0218 3368 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:36:23.0218 3368 SASDIFSV - ok
19:36:23.0250 3368 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:36:23.0250 3368 SASKUTIL - ok
19:36:23.0328 3368 SCardSvr (410046e401eb11e1e6749e9deea41d4a) C:\WINDOWS\System32\SCardSvr.exe
19:36:23.0343 3368 SCardSvr - ok
19:36:23.0421 3368 Schedule (3ff232a7731621b8902d81d42418c93c) C:\WINDOWS\system32\schedsvc.dll
19:36:23.0437 3368 Schedule - ok
19:36:23.0609 3368 SeaPort (331e7bde228914574fc9ae6cd520dafa) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
19:36:23.0609 3368 SeaPort - ok
19:36:23.0703 3368 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:36:23.0703 3368 Secdrv - ok
19:36:23.0750 3368 seclogon (477e2c3cc5e4a0d635bcb0ea8dcac3c6) C:\WINDOWS\System32\seclogon.dll
19:36:23.0765 3368 seclogon - ok
19:36:23.0812 3368 SENS (a530b75c10c23c9ab28fdb6ce719e21f) C:\WINDOWS\system32\sens.dll
19:36:23.0828 3368 SENS - ok
19:36:23.0875 3368 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:36:23.0875 3368 serenum - ok
19:36:23.0921 3368 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
19:36:23.0921 3368 Serial - ok
19:36:24.0031 3368 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:36:24.0031 3368 Sfloppy - ok
19:36:24.0109 3368 SharedAccess (65eacfe3182afee8d222d0b17fe05eda) C:\WINDOWS\System32\ipnathlp.dll
19:36:24.0140 3368 SharedAccess - ok
19:36:24.0203 3368 ShellHWDetection (54a6bf743e0517528a5064ceaeb40ea7) C:\WINDOWS\System32\shsvcs.dll
19:36:24.0203 3368 ShellHWDetection - ok
19:36:24.0234 3368 Simbad - ok
19:36:24.0562 3368 Skype C2C Service (192d93ee7ae6a3c599c96cd8d736e914) C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:36:24.0703 3368 Skype C2C Service - ok
19:36:24.0828 3368 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
19:36:24.0843 3368 SkypeUpdate - ok
19:36:25.0031 3368 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:36:25.0031 3368 SLIP - ok
19:36:25.0140 3368 smwdm (1d381a07361e4d6a8be95026b3eba47a) C:\WINDOWS\system32\drivers\smwdm.sys
19:36:25.0171 3368 smwdm - ok
19:36:25.0203 3368 SoundMAX Agent Service (default) (3978f082274f723ad5a0a8058c2417dd) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
19:36:25.0218 3368 SoundMAX Agent Service (default) - ok
19:36:25.0234 3368 Sparrow - ok
19:36:25.0281 3368 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:36:25.0281 3368 splitter - ok
19:36:25.0359 3368 Spooler (258dd5d4283fd9f9a7166be9ae45ce73) C:\WINDOWS\system32\spoolsv.exe
19:36:25.0375 3368 Spooler - ok
19:36:25.0468 3368 SR (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
19:36:25.0468 3368 SR - ok
19:36:25.0531 3368 srservice (35b91147124f64ac8081a2edb9ea4dee) C:\WINDOWS\system32\srsvc.dll
19:36:25.0546 3368 srservice - ok
19:36:25.0625 3368 Srv (9b390283569ea58d43d2586032b892f5) C:\WINDOWS\system32\DRIVERS\srv.sys
19:36:25.0640 3368 Srv - ok
19:36:25.0718 3368 SSDPSRV (becd5271dc4e3b7c3d035f790fcbc1e5) C:\WINDOWS\System32\ssdpsrv.dll
19:36:25.0734 3368 SSDPSRV - ok
19:36:25.0812 3368 stisvc (c1cdd9275f6a115bb0ae1d55d8d27ba6) C:\WINDOWS\system32\wiaservc.dll
19:36:25.0843 3368 stisvc - ok
19:36:25.0906 3368 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:36:25.0906 3368 streamip - ok
19:36:25.0968 3368 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:36:25.0968 3368 swenum - ok
19:36:26.0015 3368 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:36:26.0015 3368 swmidi - ok
19:36:26.0046 3368 SwPrv - ok
19:36:26.0078 3368 symc810 - ok
19:36:26.0109 3368 symc8xx - ok
19:36:26.0125 3368 sym_hi - ok
19:36:26.0156 3368 sym_u3 - ok
19:36:26.0218 3368 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:36:26.0234 3368 sysaudio - ok
19:36:26.0296 3368 SysmonLog (ce06f01b88ace199a1bf460cac29c110) C:\WINDOWS\system32\smlogsvc.exe
19:36:26.0312 3368 SysmonLog - ok
19:36:26.0375 3368 TapiSrv (af2a883cc63318a8bda168bdd7ac80d9) C:\WINDOWS\System32\tapisrv.dll
19:36:26.0437 3368 TapiSrv - ok
19:36:26.0515 3368 Tcpip (51e41f16acd80b8b39c0ae703a213f09) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:36:26.0531 3368 Tcpip - ok
19:36:26.0578 3368 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:36:26.0578 3368 TDPIPE - ok
19:36:26.0640 3368 TDTCP (c0578456f29e5f26285f81b7b71fe57d) C:\WINDOWS\system32\drivers\TDTCP.sys
19:36:26.0640 3368 TDTCP - ok
19:36:26.0703 3368 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:36:26.0703 3368 TermDD - ok
19:36:26.0781 3368 TermService (0e43a7cf302d85273fc86f5fca9a1909) C:\WINDOWS\System32\termsrv.dll
19:36:26.0796 3368 TermService - ok
19:36:26.0859 3368 Themes (54a6bf743e0517528a5064ceaeb40ea7) C:\WINDOWS\System32\shsvcs.dll
19:36:26.0875 3368 Themes - ok
19:36:26.0953 3368 TlntSvr (cd0cc7b167d78043a41c98d4921efb54) C:\WINDOWS\system32\tlntsvr.exe
19:36:26.0968 3368 TlntSvr - ok
19:36:27.0000 3368 TosIde - ok
19:36:27.0031 3368 TrkWks (38853304ccb938d30e0c4cde8d2c2a8a) C:\WINDOWS\system32\trkwks.dll
19:36:27.0046 3368 TrkWks - ok
19:36:27.0125 3368 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:36:27.0125 3368 Udfs - ok
19:36:27.0171 3368 ultra - ok
19:36:27.0281 3368 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:36:27.0296 3368 Update - ok
19:36:27.0375 3368 upnphost (651bd90dcee5b7bdc74a2eb7c9266f9e) C:\WINDOWS\System32\upnphost.dll
19:36:27.0390 3368 upnphost - ok
19:36:27.0531 3368 UPS (20a0f6a11959e92908717d09e87d670d) C:\WINDOWS\System32\ups.exe
19:36:27.0546 3368 UPS - ok
19:36:27.0625 3368 usbbus (8ef48ff1c23b1ce6f96d09a45959eb20) C:\WINDOWS\system32\DRIVERS\lgusbbus.sys
19:36:27.0625 3368 usbbus - ok
19:36:27.0671 3368 usbccgp (c18d6c74953621346df6b0a11f80c1cc) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:36:27.0671 3368 usbccgp - ok
19:36:27.0750 3368 UsbDiag (a0e24c5c2d0cff04bbd3753a72fae80b) C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys
19:36:27.0750 3368 UsbDiag - ok
19:36:27.0796 3368 usbehci (52674b5dbee499342a599c7771abecaa) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:36:27.0812 3368 usbehci - ok
19:36:27.0843 3368 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:36:27.0859 3368 usbhub - ok
19:36:27.0921 3368 USBModem (cc09a1132b1f6a8362107cc134e90d0b) C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys
19:36:27.0921 3368 USBModem - ok
19:36:27.0984 3368 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:36:27.0984 3368 usbprint - ok
19:36:28.0031 3368 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:36:28.0046 3368 usbscan - ok
19:36:28.0078 3368 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:36:28.0093 3368 usbstor - ok
19:36:28.0156 3368 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:36:28.0156 3368 usbuhci - ok
19:36:28.0218 3368 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:36:28.0218 3368 VgaSave - ok
19:36:28.0281 3368 viaagp1 (4b039bbd037b01f5db5a144c837f283a) C:\WINDOWS\system32\DRIVERS\viaagp1.sys
19:36:28.0281 3368 viaagp1 - ok
19:36:28.0312 3368 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
19:36:28.0312 3368 ViaIde - ok
19:36:28.0343 3368 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
19:36:28.0343 3368 VolSnap - ok
19:36:28.0406 3368 VSS (d6ba1a63d9e00933f1cd2a885573afb2) C:\WINDOWS\System32\vssvc.exe
19:36:28.0421 3368 VSS - ok
19:36:28.0484 3368 W32Time (df2e8ea96391126977da1b8ab6fc39fc) C:\WINDOWS\system32\w32time.dll
19:36:28.0500 3368 W32Time - ok
19:36:28.0562 3368 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:36:28.0578 3368 Wanarp - ok
19:36:28.0609 3368 WDICA - ok
19:36:28.0656 3368 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:36:28.0656 3368 wdmaud - ok
19:36:28.0734 3368 WebClient (b6f28b94a7cac612a93a840299bd860b) C:\WINDOWS\System32\webclnt.dll
19:36:28.0750 3368 WebClient - ok
19:36:28.0921 3368 winmgmt (e488332126e3b1182d2b8a0c35408ec6) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:36:28.0937 3368 winmgmt - ok
19:36:29.0046 3368 WinRM (4d34cedd74bdbf2b6a935eae3bf80543) C:\WINDOWS\system32\WsmSvc.dll
19:36:29.0109 3368 WinRM - ok
19:36:29.0218 3368 WmdmPmSN (051b1bdecd6dee18c771b5d5ec7f044d) C:\WINDOWS\system32\MsPMSNSv.dll
19:36:29.0234 3368 WmdmPmSN - ok
19:36:29.0312 3368 Wmi (4e68a735673ce17152329428524ba1c3) C:\WINDOWS\System32\advapi32.dll
19:36:29.0343 3368 Wmi - ok
19:36:29.0468 3368 WmiApSrv (23f6f03272f7e5679f1f050aed5acee6) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:36:29.0484 3368 WmiApSrv - ok
19:36:29.0656 3368 WMPNetworkSvc (0dcc3a79329f0fde9b1b5283cacd3f50) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:36:29.0687 3368 WMPNetworkSvc - ok
19:36:29.0781 3368 WpdUsb (c60dc16d4e406810fad54b98dc92d5ec) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:36:29.0781 3368 WpdUsb - ok
19:36:30.0031 3368 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:36:30.0062 3368 WPFFontCache_v0400 - ok
19:36:30.0109 3368 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:36:30.0109 3368 WS2IFSL - ok
19:36:30.0203 3368 wscsvc (4c86d5faf78194995af9cc1075f65dd3) C:\WINDOWS\system32\wscsvc.dll
19:36:30.0218 3368 wscsvc - ok
19:36:30.0250 3368 WSearch - ok
19:36:30.0312 3368 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:36:30.0312 3368 WSTCODEC - ok
19:36:30.0375 3368 wuauserv (fc1e3b06ae8d160b686c5d04b5e85371) C:\WINDOWS\system32\wuauserv.dll
19:36:30.0390 3368 wuauserv - ok
19:36:30.0484 3368 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:36:30.0484 3368 WudfPf - ok
19:36:30.0546 3368 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:36:30.0546 3368 WudfRd - ok
19:36:30.0593 3368 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:36:30.0609 3368 WudfSvc - ok
19:36:30.0703 3368 WZCSVC (f345ff726d92d58abe5b0aee08d29df1) C:\WINDOWS\System32\wzcsvc.dll
19:36:30.0734 3368 WZCSVC - ok
19:36:30.0828 3368 xmasbus (ddd8286b88fe764ad2a8bd171e7b569a) C:\WINDOWS\system32\DRIVERS\xmasbus.sys
19:36:30.0843 3368 xmasbus - ok
19:36:30.0875 3368 xmasscsi (4059ad5e639fa47e334304cbe82e9572) C:\WINDOWS\system32\Drivers\xmasscsi.sys
19:36:30.0890 3368 xmasscsi - ok
19:36:30.0968 3368 xmlprov (eaa4bb9edb3fb10cf8979fe65e63658f) C:\WINDOWS\System32\xmlprov.dll
19:36:30.0984 3368 xmlprov - ok
19:36:31.0046 3368 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
19:36:31.0421 3368 \Device\Harddisk0\DR0 - ok
19:36:31.0468 3368 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk1\DR1
19:36:31.0937 3368 \Device\Harddisk1\DR1 - ok
19:36:32.0000 3368 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk4\DR7
19:36:32.0031 3368 \Device\Harddisk4\DR7 - ok
19:36:32.0062 3368 Boot (0x1200) (baef7fa6b3390181c4ab6dcd758a78b3) \Device\Harddisk0\DR0\Partition0
19:36:32.0062 3368 \Device\Harddisk0\DR0\Partition0 - ok
19:36:32.0109 3368 Boot (0x1200) (d3a219604f236e15c95c88a18eef621f) \Device\Harddisk0\DR0\Partition1
19:36:32.0109 3368 \Device\Harddisk0\DR0\Partition1 - ok
19:36:32.0125 3368 Boot (0x1200) (0ad3b586ec788ceb579b676662ee4d71) \Device\Harddisk1\DR1\Partition0
19:36:32.0125 3368 \Device\Harddisk1\DR1\Partition0 - ok
19:36:32.0171 3368 Boot (0x1200) (8bb56048ebba5c3036cbe273a604e8cc) \Device\Harddisk4\DR7\Partition0
19:36:32.0171 3368 \Device\Harddisk4\DR7\Partition0 - ok
19:36:32.0187 3368 ============================================================
19:36:32.0187 3368 Scan finished

bigbit · #8 Příspěvek od **bigbit** » 22 kvě 2012 18:51

teď druhá polovina:

19:36:32.0187 3368 ============================================================
19:36:32.0234 3216 Detected object count: 0
19:36:32.0234 3216 Actual detected object count: 0
19:37:08.0125 2640 ============================================================
19:37:08.0125 2640 Scan started
19:37:08.0125 2640 Mode: Manual;
19:37:08.0125 2640 ============================================================
19:37:08.0375 2640 Aavmker4 (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys
19:37:08.0375 2640 Aavmker4 - ok
19:37:08.0406 2640 Abiosdsk - ok
19:37:08.0437 2640 abp480n5 - ok
19:37:08.0500 2640 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:37:08.0500 2640 ACPI - ok
19:37:08.0578 2640 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:37:08.0578 2640 ACPIEC - ok
19:37:08.0609 2640 adpu160m - ok
19:37:08.0656 2640 aeaudio (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys
19:37:08.0656 2640 aeaudio - ok
19:37:08.0718 2640 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:37:08.0718 2640 aec - ok
19:37:08.0781 2640 AFD (8d499b1276012eb907e7a9e0f4d8fda4) C:\WINDOWS\System32\drivers\afd.sys
19:37:08.0781 2640 AFD - ok
19:37:08.0812 2640 Aha154x - ok
19:37:08.0843 2640 aic78u2 - ok
19:37:08.0875 2640 aic78xx - ok
19:37:08.0937 2640 Alerter (e0a6fa244b8624d78fe5ff6f56a33bae) C:\WINDOWS\system32\alrsvc.dll
19:37:08.0937 2640 Alerter - ok
19:37:08.0984 2640 ALG (88842de939a827577bf24243699ac80a) C:\WINDOWS\System32\alg.exe
19:37:09.0000 2640 ALG - ok
19:37:09.0031 2640 AliIde - ok
19:37:09.0062 2640 AmdK7 (3980814f8027d27ea003e2e3d9d4f604) C:\WINDOWS\system32\DRIVERS\amdk7.sys
19:37:09.0062 2640 AmdK7 - ok
19:37:09.0093 2640 amsint - ok
19:37:09.0156 2640 AppMgmt (6b8e7a90e576d4fe308f97c69060a171) C:\WINDOWS\System32\appmgmts.dll
19:37:09.0156 2640 AppMgmt - ok
19:37:09.0187 2640 asc - ok
19:37:09.0218 2640 asc3350p - ok
19:37:09.0234 2640 asc3550 - ok
19:37:09.0437 2640 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:37:09.0437 2640 aspnet_state - ok
19:37:09.0500 2640 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys
19:37:09.0500 2640 aswFsBlk - ok
19:37:09.0531 2640 aswMon2 (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys
19:37:09.0531 2640 aswMon2 - ok
19:37:09.0593 2640 aswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\aswRdr.sys
19:37:09.0593 2640 aswRdr - ok
19:37:09.0703 2640 aswSnx (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys
19:37:09.0703 2640 aswSnx - ok
19:37:09.0750 2640 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys
19:37:09.0765 2640 aswSP - ok
19:37:09.0796 2640 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys
19:37:09.0796 2640 aswTdi - ok
19:37:09.0875 2640 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:37:09.0875 2640 AsyncMac - ok
19:37:09.0921 2640 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:37:09.0921 2640 atapi - ok
19:37:09.0953 2640 Atdisk - ok
19:37:09.0984 2640 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:37:09.0984 2640 Atmarpc - ok
19:37:10.0031 2640 AudioSrv (de31b88962a8645dba5a37b993e7b0f1) C:\WINDOWS\System32\audiosrv.dll
19:37:10.0031 2640 AudioSrv - ok
19:37:10.0093 2640 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:37:10.0093 2640 audstub - ok
19:37:10.0234 2640 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:37:10.0234 2640 avast! Antivirus - ok
19:37:10.0359 2640 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:37:10.0359 2640 Beep - ok
19:37:10.0515 2640 BITS (3aede727580f0a7c3929dd6526145759) C:\WINDOWS\system32\qmgr.dll
19:37:10.0531 2640 BITS - ok
19:37:10.0656 2640 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
19:37:10.0656 2640 Bonjour Service - ok
19:37:10.0718 2640 Brother XP spl Service (d3facb34fff5db91adb70987838f8ba7) C:\WINDOWS\system32\brsvc01a.exe
19:37:10.0718 2640 Brother XP spl Service - ok
19:37:10.0796 2640 Browser (39ce94b2b33771a3d95c70f41847f3f9) C:\WINDOWS\System32\browser.dll
19:37:10.0796 2640 Browser - ok
19:37:10.0843 2640 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:37:10.0843 2640 cbidf2k - ok
19:37:10.0875 2640 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:37:10.0890 2640 CCDECODE - ok
19:37:10.0906 2640 cd20xrnt - ok
19:37:10.0937 2640 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:37:10.0937 2640 Cdaudio - ok
19:37:11.0000 2640 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:37:11.0000 2640 Cdfs - ok
19:37:11.0046 2640 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:37:11.0046 2640 Cdrom - ok
19:37:11.0062 2640 Changer - ok
19:37:11.0125 2640 CiSvc (e390dc1d7c461d7d56ec53402f329928) C:\WINDOWS\system32\cisvc.exe
19:37:11.0125 2640 CiSvc - ok
19:37:11.0171 2640 ClipSrv (064507a8dfa8c5c7e2ffddd3e6f424fa) C:\WINDOWS\system32\clipsrv.exe
19:37:11.0171 2640 ClipSrv - ok
19:37:11.0234 2640 CLPSLS (56139566e462c1fb1775e140d4ee6b22) C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
19:37:11.0234 2640 CLPSLS - ok
19:37:11.0453 2640 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:37:11.0453 2640 clr_optimization_v2.0.50727_32 - ok
19:37:11.0562 2640 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:37:11.0578 2640 clr_optimization_v4.0.30319_32 - ok
19:37:11.0781 2640 cmdAgent (907324001ae25ac5959c91eaa34cabae) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
19:37:11.0812 2640 cmdAgent - ok
19:37:12.0031 2640 cmdGuard (bee235831f8e3f0baaca18b39d285cf5) C:\WINDOWS\system32\DRIVERS\cmdguard.sys
19:37:12.0046 2640 cmdGuard - ok
19:37:12.0093 2640 cmdHlp (de548946f36cab62fec2e6aa0149a619) C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
19:37:12.0093 2640 cmdHlp - ok
19:37:12.0125 2640 CmdIde - ok
19:37:12.0156 2640 COMSysApp - ok
19:37:12.0218 2640 Cpqarray - ok
19:37:12.0296 2640 CryptSvc (f3ab0933cbd166d271992f411c27ccaf) C:\WINDOWS\System32\cryptsvc.dll
19:37:12.0296 2640 CryptSvc - ok
19:37:12.0328 2640 dac2w2k - ok
19:37:12.0359 2640 dac960nt - ok
19:37:12.0468 2640 DcomLaunch (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\system32\rpcss.dll
19:37:12.0484 2640 DcomLaunch - ok
19:37:12.0703 2640 Dhcp (eb737f46d7d494c7760a932c9b6491a4) C:\WINDOWS\System32\dhcpcsvc.dll
19:37:12.0703 2640 Dhcp - ok
19:37:12.0812 2640 Disk (47b6aaec570f2c11d8bad80a064d8ed1) C:\WINDOWS\system32\DRIVERS\disk.sys
19:37:12.0812 2640 Disk - ok
19:37:12.0843 2640 dmadmin - ok
19:37:12.0921 2640 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
19:37:12.0921 2640 dmboot - ok
19:37:12.0968 2640 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
19:37:12.0968 2640 dmio - ok
19:37:13.0031 2640 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:37:13.0031 2640 dmload - ok
19:37:13.0078 2640 dmserver (2bfefe9e865655a76982f050450b9591) C:\WINDOWS\System32\dmserver.dll
19:37:13.0078 2640 dmserver - ok
19:37:13.0156 2640 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:37:13.0156 2640 DMusic - ok
19:37:13.0265 2640 Dnscache (38aad7e982198cb4f642bb60e59511f1) C:\WINDOWS\System32\dnsrslvr.dll
19:37:13.0265 2640 Dnscache - ok
19:37:13.0343 2640 Dot3svc (aacfc38e9d085d58f9f933cfd6af1d2b) C:\WINDOWS\System32\dot3svc.dll
19:37:13.0343 2640 Dot3svc - ok
19:37:13.0375 2640 dpti2o - ok
19:37:13.0437 2640 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:37:13.0437 2640 drmkaud - ok
19:37:13.0515 2640 DumpDrv (b327281012b48bd73f587799f9f29be2) C:\WINDOWS\system32\drivers\DumpDrv.sys
19:37:13.0515 2640 DumpDrv - ok
19:37:13.0593 2640 EapHost (0887d9c2be8d940778cad1e3b85f2a41) C:\WINDOWS\System32\eapsvc.dll
19:37:13.0593 2640 EapHost - ok
19:37:13.0640 2640 ERSvc (a2a4912798f2be706abadd3d30800d16) C:\WINDOWS\System32\ersvc.dll
19:37:13.0640 2640 ERSvc - ok
19:37:13.0703 2640 Eventlog (4f40d16b2d5ed9e48a193ce468912fed) C:\WINDOWS\system32\services.exe
19:37:13.0718 2640 Eventlog - ok
19:37:13.0781 2640 EventSystem (be68ea4457e2e5717231cf91be5448e0) C:\WINDOWS\system32\es.dll
19:37:13.0781 2640 EventSystem - ok
19:37:13.0859 2640 exFat (4d893323dae445e34a4c9038b0551bc9) C:\WINDOWS\system32\drivers\exFat.sys
19:37:13.0859 2640 exFat - ok
19:37:13.0953 2640 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:37:13.0953 2640 Fastfat - ok
19:37:14.0015 2640 FastUserSwitchingCompatibility (54a6bf743e0517528a5064ceaeb40ea7) C:\WINDOWS\System32\shsvcs.dll
19:37:14.0031 2640 FastUserSwitchingCompatibility - ok
19:37:14.0078 2640 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
19:37:14.0078 2640 Fdc - ok
19:37:14.0125 2640 FETNDIS (d8b0f7a609ace22b8acfe0605f1dab67) C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
19:37:14.0125 2640 FETNDIS - ok
19:37:14.0171 2640 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
19:37:14.0171 2640 Fips - ok
19:37:14.0296 2640 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:37:14.0328 2640 FLEXnet Licensing Service - ok
19:37:14.0375 2640 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:37:14.0375 2640 Flpydisk - ok
19:37:14.0437 2640 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:37:14.0453 2640 FltMgr - ok
19:37:14.0625 2640 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:37:14.0625 2640 FontCache3.0.0.0 - ok
19:37:14.0671 2640 Fs_Rec (30d42943a54704ef13e2562911dbfcea) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:37:14.0687 2640 Fs_Rec - ok
19:37:14.0718 2640 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:37:14.0718 2640 Ftdisk - ok
19:37:14.0828 2640 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
19:37:14.0843 2640 gameenum - ok
19:37:14.0921 2640 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:37:14.0921 2640 GEARAspiWDM - ok
19:37:14.0984 2640 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:37:14.0984 2640 Gpc - ok
19:37:15.0125 2640 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:37:15.0140 2640 gupdate - ok
19:37:15.0156 2640 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:37:15.0171 2640 gupdatem - ok
19:37:15.0296 2640 helpsvc (fcfe31fb75f8a6295b6b0af87a626282) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:37:15.0296 2640 helpsvc - ok
19:37:15.0328 2640 HidServ - ok
19:37:15.0375 2640 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:37:15.0375 2640 hidusb - ok
19:37:15.0468 2640 hkmsvc (7a6b320928f86bc851530d63c82965d9) C:\WINDOWS\System32\kmsvc.dll
19:37:15.0468 2640 hkmsvc - ok
19:37:15.0500 2640 hpn - ok
19:37:15.0593 2640 HTTP (937031c085718c1c04a9c0864625ec6b) C:\WINDOWS\system32\Drivers\HTTP.sys
19:37:15.0593 2640 HTTP - ok
19:37:15.0671 2640 HTTPFilter (58fe2f2da3bc5573f4a35b3760d3125f) C:\WINDOWS\System32\w3ssl.dll
19:37:15.0687 2640 HTTPFilter - ok
19:37:15.0703 2640 i2omgmt - ok
19:37:15.0734 2640 i2omp - ok
19:37:15.0796 2640 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:37:15.0796 2640 i8042prt - ok
19:37:15.0921 2640 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:37:15.0921 2640 IDriverT - ok
19:37:16.0062 2640 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:37:16.0078 2640 idsvc - ok
19:37:16.0156 2640 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:37:16.0156 2640 Imapi - ok
19:37:16.0218 2640 ImapiService (f7b93aafad33b2320954c17e26c8d361) C:\WINDOWS\system32\imapi.exe
19:37:16.0218 2640 ImapiService - ok
19:37:16.0265 2640 ini910u - ok
19:37:16.0359 2640 Inspect (f89849cf13805ef49da64a8a63193af7) C:\WINDOWS\system32\DRIVERS\inspect.sys
19:37:16.0359 2640 Inspect - ok
19:37:16.0390 2640 IntelIde - ok
19:37:16.0437 2640 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:37:16.0437 2640 Ip6Fw - ok
19:37:16.0484 2640 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:37:16.0484 2640 IpFilterDriver - ok
19:37:16.0515 2640 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:37:16.0515 2640 IpInIp - ok
19:37:16.0546 2640 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:37:16.0562 2640 IpNat - ok
19:37:16.0671 2640 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:37:16.0671 2640 IPSec - ok
19:37:16.0718 2640 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:37:16.0718 2640 IRENUM - ok
19:37:16.0796 2640 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:37:16.0796 2640 isapnp - ok
19:37:16.0859 2640 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:37:16.0859 2640 Kbdclass - ok
19:37:16.0921 2640 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:37:16.0921 2640 kmixer - ok
19:37:16.0984 2640 KSecDD (c6ebf1d6ad71df30db49b8d3287e1368) C:\WINDOWS\system32\drivers\KSecDD.sys
19:37:16.0984 2640 KSecDD - ok
19:37:17.0078 2640 LanmanServer (111a41b749f0e8cd7566b4ffd613cffe) C:\WINDOWS\System32\srvsvc.dll
19:37:17.0093 2640 LanmanServer - ok
19:37:17.0156 2640 lanmanworkstation (9a2e7ee3989aac0079e9d23555545d52) C:\WINDOWS\System32\wkssvc.dll
19:37:17.0171 2640 lanmanworkstation - ok
19:37:17.0203 2640 lbrtfdc - ok
19:37:17.0265 2640 LgBttPort (4dd47b5af0b24871ebb9efc012a7474e) C:\WINDOWS\system32\DRIVERS\lgbtport.sys
19:37:17.0265 2640 LgBttPort - ok
19:37:17.0343 2640 lgbusenum (1d038ca6c529203087a990e5e97887b4) C:\WINDOWS\system32\DRIVERS\lgbtbus.sys
19:37:17.0343 2640 lgbusenum - ok
19:37:17.0406 2640 LGScsiCommandService (a193f8fdc130d8ba65e444facd75ab05) C:\WINDOWS\system32\LGScsiCommandService.exe
19:37:17.0421 2640 LGScsiCommandService - ok
19:37:17.0468 2640 LGVMODEM (26f1976a330195d62a6224c76968cf0d) C:\WINDOWS\system32\DRIVERS\lgvmodem.sys
19:37:17.0468 2640 LGVMODEM - ok
19:37:17.0546 2640 LmHosts (0ab159f536e3e8f7f07113702a07cca5) C:\WINDOWS\System32\lmhsvc.dll
19:37:17.0562 2640 LmHosts - ok
19:37:17.0609 2640 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\WINDOWS\system32\drivers\mbam.sys
19:37:17.0609 2640 MBAMProtector - ok
19:37:17.0734 2640 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:37:17.0734 2640 MBAMService - ok
19:37:17.0796 2640 Messenger (221cd1c815b8a6b79389c3f5d1018de8) C:\WINDOWS\System32\msgsvc.dll
19:37:17.0796 2640 Messenger - ok
19:37:17.0906 2640 Microsoft Office Groove Audit Service (7c4c76b39d5525c4a465e0be32528e19) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:37:17.0906 2640 Microsoft Office Groove Audit Service - ok
19:37:17.0937 2640 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:37:17.0937 2640 mnmdd - ok
19:37:18.0031 2640 mnmsrvc (9a57d046f88f4b69751b11fd40088a61) C:\WINDOWS\system32\mnmsrvc.exe
19:37:18.0046 2640 mnmsrvc - ok
19:37:18.0109 2640 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
19:37:18.0109 2640 Modem - ok
19:37:18.0171 2640 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:37:18.0171 2640 Mouclass - ok
19:37:18.0250 2640 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:37:18.0250 2640 mouhid - ok
19:37:18.0296 2640 MountMgr (1a1faa5102466f418494e94ff9b0b091) C:\WINDOWS\system32\drivers\MountMgr.sys
19:37:18.0296 2640 MountMgr - ok
19:37:18.0328 2640 mraid35x - ok
19:37:18.0453 2640 MRxDAV (4fefd389d71126ee581b9f9cb2918be4) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:37:18.0453 2640 MRxDAV - ok
19:37:18.0546 2640 MRxSmb (8dd801e28eb76fda2a38907882a0036f) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:37:18.0562 2640 MRxSmb - ok
19:37:18.0609 2640 MSDTC (6db4d1521caba9a5ffab54ade0ae867d) C:\WINDOWS\system32\msdtc.exe
19:37:18.0625 2640 MSDTC - ok
19:37:18.0687 2640 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:37:18.0687 2640 Msfs - ok
19:37:18.0703 2640 MSIServer - ok
19:37:18.0781 2640 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:37:18.0781 2640 MSKSSRV - ok
19:37:18.0843 2640 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:37:18.0843 2640 MSPCLOCK - ok
19:37:18.0875 2640 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:37:18.0875 2640 MSPQM - ok
19:37:18.0953 2640 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:37:18.0953 2640 mssmbios - ok
19:37:19.0015 2640 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:37:19.0015 2640 MSTEE - ok
19:37:19.0078 2640 Mup (f7b1ad991491f02af6da70b00b8bf114) C:\WINDOWS\system32\drivers\Mup.sys
19:37:19.0078 2640 Mup - ok
19:37:19.0156 2640 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:37:19.0156 2640 NABTSFEC - ok
19:37:19.0218 2640 napagent (6ea362e9db03d44f6b996f4d8be237e9) C:\WINDOWS\System32\qagentrt.dll
19:37:19.0234 2640 napagent - ok
19:37:19.0468 2640 NBService (89844c3d3a7aae8999e229c88e452633) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
19:37:19.0468 2640 NBService - ok
19:37:19.0546 2640 NDIS (b5b1080d35974c0e718d64280761bcd5) C:\WINDOWS\system32\drivers\NDIS.sys
19:37:19.0546 2640 NDIS - ok
19:37:19.0609 2640 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:37:19.0609 2640 NdisIP - ok
19:37:19.0671 2640 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:37:19.0671 2640 NdisTapi - ok
19:37:19.0718 2640 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:37:19.0718 2640 Ndisuio - ok
19:37:19.0750 2640 NdisWan (b053a8411045fd0664b389a090cb2bbc) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:37:19.0750 2640 NdisWan - ok
19:37:19.0812 2640 NDProxy (816460bd4b4acd27937d1d0813e2e9e9) C:\WINDOWS\system32\drivers\NDProxy.sys
19:37:19.0828 2640 NDProxy - ok
19:37:19.0890 2640 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:37:19.0890 2640 NetBIOS - ok
19:37:19.0953 2640 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:37:19.0953 2640 NetBT - ok
19:37:20.0000 2640 NetDDE (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
19:37:20.0000 2640 NetDDE - ok
19:37:20.0031 2640 NetDDEdsdm (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
19:37:20.0046 2640 NetDDEdsdm - ok
19:37:20.0109 2640 Netlogon (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:37:20.0125 2640 Netlogon - ok
19:37:20.0203 2640 Netman (72e1e9e2977be08bdeedb6d8fd9d4d40) C:\WINDOWS\System32\netman.dll
19:37:20.0218 2640 Netman - ok
19:37:20.0437 2640 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:37:20.0437 2640 NetTcpPortSharing - ok
19:37:20.0500 2640 Nla (0d594d828829e1bc727b870899376b19) C:\WINDOWS\System32\mswsock.dll
19:37:20.0515 2640 Nla - ok
19:37:20.0718 2640 NMIndexingService (433049770b810d7c83c5c94cdb3e09d2) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
19:37:20.0718 2640 NMIndexingService - ok
19:37:20.0796 2640 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:37:20.0796 2640 Npfs - ok
19:37:20.0859 2640 Ntfs (ae8cad8f28db13b515a68510a539b0b8) C:\WINDOWS\system32\drivers\Ntfs.sys
19:37:20.0875 2640 Ntfs - ok
19:37:20.0937 2640 NtLmSsp (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:37:20.0937 2640 NtLmSsp - ok
19:37:21.0015 2640 NtmsSvc (023dd70573d644f3d9c8b1258a7bfd08) C:\WINDOWS\system32\ntmssvc.dll
19:37:21.0015 2640 NtmsSvc - ok
19:37:21.0078 2640 NTSIM (4d3eb5a8021af05c7fe5f313443a533b) C:\WINDOWS\system32\ntsim.sys
19:37:21.0093 2640 NTSIM - ok
19:37:21.0140 2640 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:37:21.0140 2640 Null - ok
19:37:21.0546 2640 nv (9f4384aa43548ddd438f7b7825d11699) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:37:21.0640 2640 nv - ok
19:37:21.0828 2640 NVSvc (0c41c4acfe00d826db479c40c1d9edc8) C:\WINDOWS\system32\nvsvc32.exe
19:37:21.0843 2640 NVSvc - ok
19:37:21.0937 2640 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:37:21.0937 2640 NwlnkFlt - ok
19:37:21.0968 2640 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:37:21.0968 2640 NwlnkFwd - ok
19:37:22.0156 2640 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:37:22.0171 2640 odserv - ok
19:37:22.0218 2640 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:37:22.0218 2640 ose - ok
19:37:22.0312 2640 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
19:37:22.0312 2640 Parport - ok
19:37:22.0359 2640 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:37:22.0359 2640 PartMgr - ok
19:37:22.0453 2640 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
19:37:22.0453 2640 ParVdm - ok
19:37:22.0515 2640 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
19:37:22.0515 2640 PCI - ok
19:37:22.0546 2640 PCIDump - ok
19:37:22.0578 2640 PCIIde - ok
19:37:22.0671 2640 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:37:22.0671 2640 Pcmcia - ok
19:37:22.0718 2640 PD0620VID (ea296b87ba381c640b441d95f90785f8) C:\WINDOWS\system32\DRIVERS\P0620Vid.sys
19:37:22.0718 2640 PD0620VID - ok
19:37:22.0750 2640 PDCOMP - ok
19:37:22.0781 2640 PDFRAME - ok
19:37:22.0812 2640 PDRELI - ok
19:37:22.0843 2640 PDRFRAME - ok
19:37:22.0859 2640 perc2 - ok
19:37:22.0890 2640 perc2hib - ok
19:37:23.0015 2640 PlugPlay (4f40d16b2d5ed9e48a193ce468912fed) C:\WINDOWS\system32\services.exe
19:37:23.0031 2640 PlugPlay - ok
19:37:23.0093 2640 PolicyAgent (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:37:23.0109 2640 PolicyAgent - ok
19:37:23.0171 2640 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:37:23.0171 2640 PptpMiniport - ok
19:37:23.0203 2640 ProtectedStorage (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:37:23.0203 2640 ProtectedStorage - ok
19:37:23.0265 2640 PSched (d8e11d311785f89f1d70a28b0e879127) C:\WINDOWS\system32\DRIVERS\psched.sys
19:37:23.0265 2640 PSched - ok
19:37:23.0312 2640 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:37:23.0312 2640 Ptilink - ok
19:37:23.0343 2640 ql1080 - ok
19:37:23.0375 2640 Ql10wnt - ok
19:37:23.0406 2640 ql12160 - ok
19:37:23.0437 2640 ql1240 - ok
19:37:23.0453 2640 ql1280 - ok
19:37:23.0468 2640 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:37:23.0484 2640 RasAcd - ok
19:37:23.0515 2640 RasAuto (2b5e44ea009f2f374b980e1e9a70635d) C:\WINDOWS\System32\rasauto.dll
19:37:23.0531 2640 RasAuto - ok
19:37:23.0562 2640 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:37:23.0562 2640 Rasl2tp - ok
19:37:23.0625 2640 RasMan (d57554c664b64604bd1ee13ea2c07e77) C:\WINDOWS\System32\rasmans.dll
19:37:23.0640 2640 RasMan - ok
19:37:23.0671 2640 RasPppoe (2c9d4620a0fd35de1828370b392f6e2d) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:37:23.0671 2640 RasPppoe - ok
19:37:23.0765 2640 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:37:23.0765 2640 Raspti - ok
19:37:23.0828 2640 Rdbss (77050c6615f6eb5402f832b27fd695e0) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:37:23.0828 2640 Rdbss - ok
19:37:23.0859 2640 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:37:23.0859 2640 RDPCDD - ok
19:37:23.0937 2640 rdpdr (47ea20320e3d6fdc7b7bb22b2b881ca6) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:37:23.0937 2640 rdpdr - ok
19:37:24.0015 2640 RDPWD (e8e3107243b16a549b88d145ec051b06) C:\WINDOWS\system32\drivers\RDPWD.sys
19:37:24.0015 2640 RDPWD - ok
19:37:24.0078 2640 RDSessMgr (c0d9d9711cb74ee9bc66353d8cbdab0e) C:\WINDOWS\system32\sessmgr.exe
19:37:24.0078 2640 RDSessMgr - ok
19:37:24.0171 2640 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:37:24.0171 2640 redbook - ok
19:37:24.0250 2640 RemoteAccess (127c26b5371651043450e52542099aba) C:\WINDOWS\System32\mprdim.dll
19:37:24.0250 2640 RemoteAccess - ok
19:37:24.0312 2640 RemoteRegistry (8f31505484a190d5b22274708799f4ec) C:\WINDOWS\system32\regsvc.dll
19:37:24.0328 2640 RemoteRegistry - ok
19:37:24.0390 2640 RpcLocator (718b3bdc0bc3c2f7d065a53d26202af9) C:\WINDOWS\system32\locator.exe
19:37:24.0406 2640 RpcLocator - ok
19:37:24.0515 2640 RpcSs (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\System32\rpcss.dll
19:37:24.0531 2640 RpcSs - ok
19:37:24.0609 2640 rspndr (743d7d59767073a617b1dcc6c546f234) C:\WINDOWS\system32\DRIVERS\rspndr.sys
19:37:24.0609 2640 rspndr - ok
19:37:24.0687 2640 RSVP (09ab2e71e58b078038e3bfdba7ffc984) C:\WINDOWS\system32\rsvp.exe
19:37:24.0687 2640 RSVP - ok
19:37:24.0750 2640 SamSs (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
19:37:24.0750 2640 SamSs - ok
19:37:24.0906 2640 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:37:24.0906 2640 SASDIFSV - ok
19:37:24.0937 2640 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:37:24.0937 2640 SASKUTIL - ok
19:37:25.0015 2640 SCardSvr (410046e401eb11e1e6749e9deea41d4a) C:\WINDOWS\System32\SCardSvr.exe
19:37:25.0031 2640 SCardSvr - ok
19:37:25.0109 2640 Schedule (3ff232a7731621b8902d81d42418c93c) C:\WINDOWS\system32\schedsvc.dll
19:37:25.0125 2640 Schedule - ok
19:37:25.0250 2640 SeaPort (331e7bde228914574fc9ae6cd520dafa) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
19:37:25.0265 2640 SeaPort - ok
19:37:25.0328 2640 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:37:25.0328 2640 Secdrv - ok
19:37:25.0390 2640 seclogon (477e2c3cc5e4a0d635bcb0ea8dcac3c6) C:\WINDOWS\System32\seclogon.dll
19:37:25.0390 2640 seclogon - ok
19:37:25.0453 2640 SENS (a530b75c10c23c9ab28fdb6ce719e21f) C:\WINDOWS\system32\sens.dll
19:37:25.0453 2640 SENS - ok
19:37:25.0515 2640 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:37:25.0515 2640 serenum - ok
19:37:25.0562 2640 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
19:37:25.0562 2640 Serial - ok
19:37:25.0718 2640 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:37:25.0718 2640 Sfloppy - ok
19:37:25.0796 2640 SharedAccess (65eacfe3182afee8d222d0b17fe05eda) C:\WINDOWS\System32\ipnathlp.dll
19:37:25.0796 2640 SharedAccess - ok
19:37:25.0859 2640 ShellHWDetection (54a6bf743e0517528a5064ceaeb40ea7) C:\WINDOWS\System32\shsvcs.dll
19:37:25.0875 2640 ShellHWDetection - ok
19:37:25.0906 2640 Simbad - ok
19:37:26.0234 2640 Skype C2C Service (192d93ee7ae6a3c599c96cd8d736e914) C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:37:26.0281 2640 Skype C2C Service - ok
19:37:26.0421 2640 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
19:37:26.0421 2640 SkypeUpdate - ok
19:37:26.0609 2640 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:37:26.0625 2640 SLIP - ok
19:37:26.0734 2640 smwdm (1d381a07361e4d6a8be95026b3eba47a) C:\WINDOWS\system32\drivers\smwdm.sys
19:37:26.0750 2640 smwdm - ok
19:37:26.0796 2640 SoundMAX Agent Service (default) (3978f082274f723ad5a0a8058c2417dd) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
19:37:26.0796 2640 SoundMAX Agent Service (default) - ok
19:37:26.0828 2640 Sparrow - ok
19:37:26.0859 2640 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:37:26.0859 2640 splitter - ok
19:37:26.0937 2640 Spooler (258dd5d4283fd9f9a7166be9ae45ce73) C:\WINDOWS\system32\spoolsv.exe
19:37:26.0953 2640 Spooler - ok
19:37:27.0015 2640 SR (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
19:37:27.0015 2640 SR - ok
19:37:27.0078 2640 srservice (35b91147124f64ac8081a2edb9ea4dee) C:\WINDOWS\system32\srsvc.dll
19:37:27.0093 2640 srservice - ok
19:37:27.0187 2640 Srv (9b390283569ea58d43d2586032b892f5) C:\WINDOWS\system32\DRIVERS\srv.sys
19:37:27.0187 2640 Srv - ok
19:37:27.0265 2640 SSDPSRV (becd5271dc4e3b7c3d035f790fcbc1e5) C:\WINDOWS\System32\ssdpsrv.dll
19:37:27.0281 2640 SSDPSRV - ok
19:37:27.0359 2640 stisvc (c1cdd9275f6a115bb0ae1d55d8d27ba6) C:\WINDOWS\system32\wiaservc.dll
19:37:27.0375 2640 stisvc - ok
19:37:27.0437 2640 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:37:27.0453 2640 streamip - ok
19:37:27.0500 2640 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:37:27.0500 2640 swenum - ok
19:37:27.0562 2640 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:37:27.0562 2640 swmidi - ok
19:37:27.0593 2640 SwPrv - ok
19:37:27.0609 2640 symc810 - ok
19:37:27.0640 2640 symc8xx - ok
19:37:27.0656 2640 sym_hi - ok
19:37:27.0687 2640 sym_u3 - ok
19:37:27.0765 2640 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:37:27.0765 2640 sysaudio - ok
19:37:27.0859 2640 SysmonLog (ce06f01b88ace199a1bf460cac29c110) C:\WINDOWS\system32\smlogsvc.exe
19:37:27.0859 2640 SysmonLog - ok
19:37:27.0921 2640 TapiSrv (af2a883cc63318a8bda168bdd7ac80d9) C:\WINDOWS\System32\tapisrv.dll
19:37:27.0937 2640 TapiSrv - ok
19:37:28.0000 2640 Tcpip (51e41f16acd80b8b39c0ae703a213f09) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:37:28.0015 2640 Tcpip - ok
19:37:28.0078 2640 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:37:28.0078 2640 TDPIPE - ok
19:37:28.0125 2640 TDTCP (c0578456f29e5f26285f81b7b71fe57d) C:\WINDOWS\system32\drivers\TDTCP.sys
19:37:28.0125 2640 TDTCP - ok
19:37:28.0187 2640 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:37:28.0187 2640 TermDD - ok
19:37:28.0265 2640 TermService (0e43a7cf302d85273fc86f5fca9a1909) C:\WINDOWS\System32\termsrv.dll
19:37:28.0265 2640 TermService - ok
19:37:28.0328 2640 Themes (54a6bf743e0517528a5064ceaeb40ea7) C:\WINDOWS\System32\shsvcs.dll
19:37:28.0343 2640 Themes - ok
19:37:28.0437 2640 TlntSvr (cd0cc7b167d78043a41c98d4921efb54) C:\WINDOWS\system32\tlntsvr.exe
19:37:28.0437 2640 TlntSvr - ok
19:37:28.0468 2640 TosIde - ok
19:37:28.0515 2640 TrkWks (38853304ccb938d30e0c4cde8d2c2a8a) C:\WINDOWS\system32\trkwks.dll
19:37:28.0531 2640 TrkWks - ok
19:37:28.0609 2640 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:37:28.0609 2640 Udfs - ok
19:37:28.0671 2640 ultra - ok
19:37:28.0765 2640 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:37:28.0765 2640 Update - ok
19:37:28.0812 2640 upnphost (651bd90dcee5b7bdc74a2eb7c9266f9e) C:\WINDOWS\System32\upnphost.dll
19:37:28.0828 2640 upnphost - ok
19:37:28.0953 2640 UPS (20a0f6a11959e92908717d09e87d670d) C:\WINDOWS\System32\ups.exe
19:37:28.0968 2640 UPS - ok
19:37:29.0031 2640 usbbus (8ef48ff1c23b1ce6f96d09a45959eb20) C:\WINDOWS\system32\DRIVERS\lgusbbus.sys
19:37:29.0031 2640 usbbus - ok
19:37:29.0078 2640 usbccgp (c18d6c74953621346df6b0a11f80c1cc) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:37:29.0093 2640 usbccgp - ok
19:37:29.0156 2640 UsbDiag (a0e24c5c2d0cff04bbd3753a72fae80b) C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys
19:37:29.0156 2640 UsbDiag - ok
19:37:29.0187 2640 usbehci (52674b5dbee499342a599c7771abecaa) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:37:29.0187 2640 usbehci - ok
19:37:29.0218 2640 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:37:29.0234 2640 usbhub - ok
19:37:29.0281 2640 USBModem (cc09a1132b1f6a8362107cc134e90d0b) C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys
19:37:29.0281 2640 USBModem - ok
19:37:29.0343 2640 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:37:29.0343 2640 usbprint - ok
19:37:29.0406 2640 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:37:29.0406 2640 usbscan - ok
19:37:29.0453 2640 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:37:29.0453 2640 usbstor - ok
19:37:29.0500 2640 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:37:29.0500 2640 usbuhci - ok
19:37:29.0562 2640 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:37:29.0578 2640 VgaSave - ok
19:37:29.0640 2640 viaagp1 (4b039bbd037b01f5db5a144c837f283a) C:\WINDOWS\system32\DRIVERS\viaagp1.sys
19:37:29.0640 2640 viaagp1 - ok
19:37:29.0687 2640 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
19:37:29.0687 2640 ViaIde - ok
19:37:29.0718 2640 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
19:37:29.0718 2640 VolSnap - ok
19:37:29.0781 2640 VSS (d6ba1a63d9e00933f1cd2a885573afb2) C:\WINDOWS\System32\vssvc.exe
19:37:29.0796 2640 VSS - ok
19:37:29.0859 2640 W32Time (df2e8ea96391126977da1b8ab6fc39fc) C:\WINDOWS\system32\w32time.dll
19:37:29.0875 2640 W32Time - ok
19:37:29.0953 2640 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:37:29.0953 2640 Wanarp - ok
19:37:29.0984 2640 WDICA - ok
19:37:30.0046 2640 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:37:30.0046 2640 wdmaud - ok
19:37:30.0125 2640 WebClient (b6f28b94a7cac612a93a840299bd860b) C:\WINDOWS\System32\webclnt.dll
19:37:30.0140 2640 WebClient - ok
19:37:30.0265 2640 winmgmt (e488332126e3b1182d2b8a0c35408ec6) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:37:30.0265 2640 winmgmt - ok
19:37:30.0375 2640 WinRM (4d34cedd74bdbf2b6a935eae3bf80543) C:\WINDOWS\system32\WsmSvc.dll
19:37:30.0406 2640 WinRM - ok
19:37:30.0515 2640 WmdmPmSN (051b1bdecd6dee18c771b5d5ec7f044d) C:\WINDOWS\system32\MsPMSNSv.dll
19:37:30.0515 2640 WmdmPmSN - ok
19:37:30.0625 2640 Wmi (4e68a735673ce17152329428524ba1c3) C:\WINDOWS\System32\advapi32.dll
19:37:30.0625 2640 Wmi - ok
19:37:30.0765 2640 WmiApSrv (23f6f03272f7e5679f1f050aed5acee6) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:37:30.0765 2640 WmiApSrv - ok
19:37:30.0921 2640 WMPNetworkSvc (0dcc3a79329f0fde9b1b5283cacd3f50) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:37:30.0937 2640 WMPNetworkSvc - ok
19:37:31.0031 2640 WpdUsb (c60dc16d4e406810fad54b98dc92d5ec) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:37:31.0031 2640 WpdUsb - ok
19:37:31.0265 2640 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:37:31.0265 2640 WPFFontCache_v0400 - ok
19:37:31.0328 2640 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:37:31.0328 2640 WS2IFSL - ok
19:37:31.0390 2640 wscsvc (4c86d5faf78194995af9cc1075f65dd3) C:\WINDOWS\system32\wscsvc.dll
19:37:31.0406 2640 wscsvc - ok
19:37:31.0437 2640 WSearch - ok
19:37:31.0515 2640 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:37:31.0515 2640 WSTCODEC - ok
19:37:31.0578 2640 wuauserv (fc1e3b06ae8d160b686c5d04b5e85371) C:\WINDOWS\system32\wuauserv.dll
19:37:31.0593 2640 wuauserv - ok
19:37:31.0656 2640 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:37:31.0656 2640 WudfPf - ok
19:37:31.0718 2640 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:37:31.0734 2640 WudfRd - ok
19:37:31.0765 2640 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:37:31.0781 2640 WudfSvc - ok
19:37:31.0875 2640 WZCSVC (f345ff726d92d58abe5b0aee08d29df1) C:\WINDOWS\System32\wzcsvc.dll
19:37:31.0890 2640 WZCSVC - ok
19:37:31.0968 2640 xmasbus (ddd8286b88fe764ad2a8bd171e7b569a) C:\WINDOWS\system32\DRIVERS\xmasbus.sys
19:37:31.0984 2640 xmasbus - ok
19:37:32.0015 2640 xmasscsi (4059ad5e639fa47e334304cbe82e9572) C:\WINDOWS\system32\Drivers\xmasscsi.sys
19:37:32.0031 2640 xmasscsi - ok
19:37:32.0093 2640 xmlprov (eaa4bb9edb3fb10cf8979fe65e63658f) C:\WINDOWS\System32\xmlprov.dll
19:37:32.0109 2640 xmlprov - ok
19:37:32.0187 2640 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
19:37:32.0578 2640 \Device\Harddisk0\DR0 - ok
19:37:32.0609 2640 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk1\DR1
19:37:33.0015 2640 \Device\Harddisk1\DR1 - ok
19:37:33.0093 2640 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk4\DR7
19:37:33.0109 2640 \Device\Harddisk4\DR7 - ok
19:37:33.0140 2640 Boot (0x1200) (baef7fa6b3390181c4ab6dcd758a78b3) \Device\Harddisk0\DR0\Partition0
19:37:33.0140 2640 \Device\Harddisk0\DR0\Partition0 - ok
19:37:33.0187 2640 Boot (0x1200) (d3a219604f236e15c95c88a18eef621f) \Device\Harddisk0\DR0\Partition1
19:37:33.0187 2640 \Device\Harddisk0\DR0\Partition1 - ok
19:37:33.0203 2640 Boot (0x1200) (0ad3b586ec788ceb579b676662ee4d71) \Device\Harddisk1\DR1\Partition0
19:37:33.0203 2640 \Device\Harddisk1\DR1\Partition0 - ok
19:37:33.0234 2640 Boot (0x1200) (8bb56048ebba5c3036cbe273a604e8cc) \Device\Harddisk4\DR7\Partition0
19:37:33.0234 2640 \Device\Harddisk4\DR7\Partition0 - ok
19:37:33.0250 2640 ============================================================
19:37:33.0250 2640 Scan finished
19:37:33.0250 2640 ============================================================
19:37:33.0296 3552 Detected object count: 0
19:37:33.0296 3552 Actual detected object count: 0

#9 Příspěvek od **Roli** » 22 kvě 2012 20:53

Stáhni MBR

přesuň mbr.exe do adresare C:\Windows

pak přes :

Start >> Spustit >> napiš - cmd >> Enter

vybafne na tebe okénko příkazového řádku a do něj ručně napíšeš příkaz :

mbr.exe -f -s

a klikneš na Enter

Po provedení Restartuj PC a spusť mbr ještě jednou ale už normálně a zkopíruj sem log.

bigbit · #10 Příspěvek od **bigbit** » 23 kvě 2012 19:27

...tak jsem to vše provedl..
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: ST380011A rev.3.06 -> Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T0L0-4

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user != kernel MBR !!!

#11 Příspěvek od **Roli** » 24 kvě 2012 21:27

Bezva a jaký je stav PC ?

bigbit · #12 Příspěvek od **bigbit** » 26 kvě 2012 21:35

...teď pc pracuje dobře,jen pokud jdu na net s prohlížečem firefox tak zase naběhne na 100%
přes google to funguje normálně

#13 Příspěvek od **Roli** » 26 kvě 2012 21:56

Jakou máš verzi Firefoxu ?

bigbit · #14 Příspěvek od **bigbit** » 28 kvě 2012 16:31

...firefox jsem odstranil,teď jsem na google a funguje to o něco lépe ale otevření každé stránky načítá asi tak dvacet vteřin

#15 Příspěvek od **Roli** » 28 kvě 2012 21:35

No šmejd tam není, ale chtělo by to možná aktualizovat ovladače od grafiky.

Pokud nevíš co tam máš použij AIDU

Sice se jedná o trial ale náš účel splní.

Nainstaluj ji >> spusť >> klik na Počítač >> dále Přehled,

nahoře v aplikaci klikni na Zpráva vyber Rychlá zpráva >> Prostý text

a vše mi sem zkopíruj, koukneme se co se s tím dá dělat.

VIRY.CZ

Prosím o kontrolu

Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu