Omylem jsem si stahl nějaký vir co rozesíla spam po facebook

[smudy]

Je uložen na ploše co s ním ? nejde odstranit

Logfile of random's system information tool 1.09 (written by random/random)
Run by Smudy at 2012-06-22 17:21:13
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 21 GB (36%) free of 60 GB
Total RAM: 2015 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:21:22, on 22.6.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Rockstar Games\GTA San Andreas\samp.exe
C:\Documents and Settings\Smudy\Plocha\IMG_22362473515562104-IMG-www.facebook.com.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
D:\Dokumenty\viry\RSIT.exe
C:\Program Files\trend micro\Smudy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://domredi.com/1/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ifwjxhb] C:\Documents and Settings\Smudy\Local Settings\Data aplikací\htiagq.exe
O4 - HKUS\S-1-5-21-1957994488-854245398-1177238915-500\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Administrator')
O4 - HKUS\S-1-5-21-1957994488-854245398-1177238915-500\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Administrator')
O4 - Startup: fhyst.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{9783E68B-AEAD-4271-864F-D0C12BB83B40}: NameServer = 78.157.167.7,78.157.167.57
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 6035 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Smudy\Data aplikací\Mozilla\Firefox\Profiles\go4nqkiu.default

prefs.js - "browser.startup.homepage" - "http://domredi.com/1/"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.257 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69]
"Description"=6.0.12.69
"Path"=C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-08-16 7630848]
"nwiz"=nwiz.exe /install []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-27 17567744]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2012-05-08 348624]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"ifwjxhb"=C:\Documents and Settings\Smudy\Local Settings\Data aplikací\htiagq.exe [2012-06-22 115204]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2006-02-19 288472]

C:\Documents and Settings\Smudy\Nabídka Start\Programy\Po spuštění
fhyst.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-06-13 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe"="C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Disabled:SopCast Adver"
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Winamp\winamp.exe"="C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp"
"C:\Program Files\Counter-Strike Source\hl2.exe"="C:\Program Files\Counter-Strike Source\hl2.exe:*:Disabled:hl2"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"msacm.lhacm"=lhacm.acm
"VIDC.FPS1"=frapsvid.dll
"vidc.yv12"=yv12vfw.dll
"VIDC.CFHD"=cfhd.dll

======List of files/folders created in the last 1 month======

2012-06-22 17:21:13 ----D---- C:\rsit
2012-06-17 14:33:02 ----D---- C:\Program Files\Valve
2012-05-30 20:10:08 ----D---- C:\Program Files\CrystalDiskInfo
2012-05-29 13:58:13 ----D---- C:\Program Files\SpeedFan
2012-05-23 21:28:54 ----A---- C:\WINDOWS\game.ini
2012-05-23 20:14:22 ----D---- C:\Program Files\Activision

======List of files/folders modified in the last 1 month======

2012-06-22 17:21:17 ----D---- C:\WINDOWS\Temp
2012-06-22 17:21:17 ----D---- C:\Program Files\trend micro
2012-06-22 17:20:14 ----D---- C:\Documents and Settings\Smudy\Data aplikací\Skype
2012-06-22 17:08:17 ----D---- C:\WINDOWS\Prefetch
2012-06-22 14:28:32 ----SHD---- C:\WINDOWS\Installer
2012-06-22 14:28:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-06-22 14:28:32 ----D---- C:\Config.Msi
2012-06-17 16:37:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-06-17 14:33:02 ----D---- C:\Program Files
2012-06-17 13:09:36 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-06-16 20:31:42 ----D---- C:\Program Files\Mozilla Firefox
2012-06-15 18:11:50 ----SD---- C:\WINDOWS\Tasks
2012-06-15 18:11:28 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-05-31 11:21:37 ----D---- C:\WINDOWS\system32\drivers
2012-05-31 09:34:58 ----SHD---- C:\System Volume Information
2012-05-31 09:34:58 ----D---- C:\WINDOWS\system32\Restore
2012-05-31 09:33:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2012-05-30 09:51:59 ----D---- C:\Documents and Settings\Smudy\Data aplikací\vlc
2012-05-29 19:03:35 ----D---- C:\WINDOWS\system32\CatRoot2
2012-05-29 15:07:45 ----D---- C:\WINDOWS\system32
2012-05-26 20:45:25 ----A---- C:\WINDOWS\NeroDigital.ini
2012-05-26 08:28:02 ----D---- C:\WINDOWS
2012-05-25 20:46:32 ----D---- C:\Documents and Settings\Smudy\Data aplikací\TS3Client
2012-05-23 21:28:56 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 a347bus;a347bus; C:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
R0 a347scsi;a347scsi; C:\WINDOWS\System32\Drivers\a347scsi.sys [2004-04-30 5248]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-14 105344]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-06-13 77568]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2012-05-08 137928]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2011-09-16 36000]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2012-05-08 83392]
R2 CX23880;WinFast CX2388x WDM Video Capture.; C:\WINDOWS\system32\drivers\cx88vid.sys [2005-06-28 163584]
R2 CXTUNE;WinFast CX2388x WDM TVTuner.; C:\WINDOWS\system32\drivers\CX88TUNE.sys [2005-06-28 30976]
R3 CXAVXBAR;WinFast CX2388x WDM Crossbar.; C:\WINDOWS\system32\drivers\cxavxbar.sys [2005-06-28 9728]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-30 5063168]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-08-16 3959712]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-07-11 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-07-11 20480]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WFIOCTL;WFIOCTL; \??\C:\Program Files\WinFast\WFTVFM\WFIOCTL.SYS []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-06-13 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-06-13 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Realtime Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2012-05-08 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2012-05-08 86224]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-08-16 155715]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-06-05 160944]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-16 113120]
S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-06-29 155344]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

EDIT: Ten program mi pořád otvírá ENG stránky

[Rudy]

Zdravím!
Poprosím o log ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

[smudy]

ComboFix 12-06-21.03 - Smudy 22.06.2012 18:29:40.7.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2015.1605 [GMT 2:00]
Spuštěný z: c:\documents and settings\Smudy\Plocha\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Smudy\Local Settings\Data aplikací\htiagq.exe
c:\documents and settings\Smudy\Nabídka Start\Programy\Po spuštění\fhyst.exe
c:\progra~1\CLICKS~1\CLICks~1.exe
c:\windows\system32\tempdir
c:\windows\system32\tempdir\tinypdf.dll
c:\windows\system32\tempdir\tinypdf.chm
c:\windows\system32\tempdir\tinypdf1.dll
c:\windows\system32\tempdir\tinypdf2.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-05-22 do 2012-06-22 )))))))))))))))))))))))))))))))
.
.
2012-06-22 15:21 . 2012-06-22 15:21 -------- d-----w- C:\rsit
2012-06-17 12:33 . 2012-06-17 12:33 -------- d-----w- c:\program files\Valve
2012-06-08 19:05 . 2012-06-08 19:05 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2012-06-08 19:05 . 2012-06-08 19:05 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
2012-05-30 18:10 . 2012-05-30 18:10 -------- d-----w- c:\program files\CrystalDiskInfo
2012-05-29 17:33 . 2012-05-29 17:33 512 ----a-w- C:\PhysicalMBR.bin
2012-05-29 11:58 . 2012-05-29 17:06 -------- d-----w- c:\program files\SpeedFan
2012-05-23 18:14 . 2012-05-23 18:14 -------- d-----w- c:\program files\Activision
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-15 16:11 . 2012-04-06 06:59 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-15 16:11 . 2011-06-12 10:21 70344 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-05-08 08:19 . 2012-02-05 08:59 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-05-08 08:19 . 2012-02-05 08:59 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-12-27 17:40 . 2010-12-27 17:39 19985265 ----a-w- c:\program files\vlc-1.1.5-win32.exe
2006-12-04 17:39 . 2011-12-21 12:43 915968 ----a-w- c:\program files\WinRAR.exe
2006-12-04 17:39 . 2011-12-21 12:43 313856 ----a-w- c:\program files\Rar.exe
2006-12-03 13:53 . 2011-12-21 12:43 66560 -c--a-w- c:\program files\Zip.SFX
2006-12-03 13:53 . 2011-12-21 12:43 100864 -c--a-w- c:\program files\Default.SFX
2006-12-03 13:52 . 2011-12-21 12:43 200704 ----a-w- c:\program files\UnRAR.exe
2006-09-18 13:31 . 2011-12-21 12:43 79360 -c--a-w- c:\program files\WinCon.SFX
2006-09-14 16:29 . 2011-12-21 12:43 315392 ----a-w- c:\program files\rarlng.dll
2005-06-07 11:25 . 2011-12-21 12:43 44032 ----a-w- c:\program files\RarExtLoader.exe
2012-06-16 18:31 . 2012-03-14 15:49 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2006-05-03 10:06 163328 -csh--r- c:\windows\system32\flvDX.dll
2007-02-21 11:47 31232 -csh--r- c:\windows\system32\msfDX.dll
2008-03-16 13:30 216064 -csh--r- c:\windows\system32\nbDX.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\atapi.sys
[-] 2008-04-13 21:10 . !HASH: COULD NOT OPEN FILE !!!!! . 96512 . . [------] . . c:\windows\system32\drivers\atapi.sys
.
[-] 2008-06-13 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-08-16 7630848]
"nwiz"="nwiz.exe" [2006-08-16 1617920]
"RTHDCPL"="RTHDCPL.EXE" [2009-03-27 17567744]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-05-08 348624]
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Engine\\Sony Ericsson Update Engine.exe"=
"c:\\Program Files\\ICQ7.5\\ICQ.exe"=
"c:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"c:\\Program Files\\SopCast\\SopCast.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\Winamp\\winamp.exe"=
"c:\\Program Files\\Counter-Strike Source\\hl2.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [4.10.2009 15:07 160640]
R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [4.10.2009 15:07 5248]
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [5.2.2012 10:59 36000]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [5.2.2012 10:59 86224]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [6.9.2010 18:59 27632]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [5.6.2012 15:17 160944]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [30.9.2009 17:17 1684736]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [25.4.2012 5:27 113120]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [30.8.2010 10:09 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [30.8.2010 10:09 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [30.8.2010 10:09 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [30.8.2010 10:09 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [30.8.2010 10:09 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [30.8.2010 10:09 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [30.8.2010 10:09 115752]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [30.8.2010 10:09 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [30.8.2010 10:09 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [30.8.2010 10:09 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [30.8.2010 10:09 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [30.8.2010 10:09 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [30.8.2010 10:09 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [30.8.2010 10:09 109864]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [28.12.2010 9:04 155344]
S3 WFIOCTL;WFIOCTL;\??\c:\program files\WinFast\WFTVFM\WFIOCTL.SYS --> c:\program files\WinFast\WFTVFM\WFIOCTL.SYS [?]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://domredi.com/1/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: Interfaces\{9783E68B-AEAD-4271-864F-D0C12BB83B40}: NameServer = 78.157.167.7,78.157.167.57
FF - ProfilePath - c:\documents and settings\Smudy\Data aplikací\Mozilla\Firefox\Profiles\go4nqkiu.default\
FF - prefs.js: browser.startup.homepage - hxxp://domredi.com/1/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-ifwjxhb - c:\documents and settings\Smudy\Local Settings\Data aplikací\htiagq.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-06-22 18:35
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2012-06-22 18:37:33
ComboFix-quarantined-files.txt 2012-06-22 16:37
.
Před spuštěním: Volných bajtů: 22 956 593 152
Po spuštění: Volných bajtů: 22 936 616 960
.
- - End Of File - - F283D904229CF451C0D10058C6292682

[Rudy]

Něco CF smazal. Ještě porosím o spuštění TDSSKilleru: http://support.kaspersky.com/downloads/ ... killer.zip . Stáhněte, rozbalte a spusťte. Nechte pracovat a po akci sem vložte log.

[smudy]

13:41:09.0937 2828 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
13:41:10.0000 2828 ============================================================
13:41:10.0015 2828 Current date / time: 2012/06/23 13:41:10.0000
13:41:10.0015 2828 SystemInfo:
13:41:10.0015 2828
13:41:10.0015 2828 OS Version: 5.1.2600 ServicePack: 3.0
13:41:10.0015 2828 Product type: Workstation
13:41:10.0015 2828 ComputerName: POKOJ
13:41:10.0015 2828 UserName: Smudy
13:41:10.0015 2828 Windows directory: C:\WINDOWS
13:41:10.0015 2828 System windows directory: C:\WINDOWS
13:41:10.0015 2828 Processor architecture: Intel x86
13:41:10.0015 2828 Number of processors: 1
13:41:10.0015 2828 Page size: 0x1000
13:41:10.0015 2828 Boot type: Normal boot
13:41:10.0015 2828 ============================================================
13:41:12.0656 2828 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:41:12.0671 2828 ============================================================
13:41:12.0671 2828 \Device\Harddisk0\DR0:
13:41:12.0671 2828 MBR partitions:
13:41:12.0671 2828 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x7530462
13:41:12.0703 2828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x75304E0, BlocksNum 0xB4E4720
13:41:12.0703 2828 ============================================================
13:41:12.0734 2828 C: <-> \Device\Harddisk0\DR0\Partition0
13:41:12.0750 2828 D: <-> \Device\Harddisk0\DR0\Partition1
13:41:12.0781 2828 ============================================================
13:41:12.0781 2828 Initialize success
13:41:12.0781 2828 ============================================================
13:41:15.0156 1656 ============================================================
13:41:15.0156 1656 Scan started
13:41:15.0156 1656 Mode: Manual;
13:41:15.0156 1656 ============================================================
13:41:15.0343 1656 a347bus (1f61cacacb521215f39061789147968c) C:\WINDOWS\system32\DRIVERS\a347bus.sys
13:41:15.0359 1656 a347bus - ok
13:41:15.0375 1656 a347scsi (113e4b318bbaa7483ca4e582a4d63f49) C:\WINDOWS\system32\Drivers\a347scsi.sys
13:41:15.0375 1656 a347scsi - ok
13:41:15.0390 1656 Abiosdsk - ok
13:41:15.0406 1656 abp480n5 - ok
13:41:15.0453 1656 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:41:15.0453 1656 ACPI - ok
13:41:15.0484 1656 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
13:41:15.0484 1656 ACPIEC - ok
13:41:15.0500 1656 adpu160m - ok
13:41:15.0531 1656 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
13:41:15.0562 1656 aec - ok
13:41:15.0593 1656 AFD (f6b7b1ecd7b41736bdb6ff4b092bcb79) C:\WINDOWS\System32\drivers\afd.sys
13:41:15.0609 1656 AFD - ok
13:41:15.0625 1656 Aha154x - ok
13:41:15.0625 1656 aic78u2 - ok
13:41:15.0640 1656 aic78xx - ok
13:41:15.0656 1656 Alerter (e0a6fa244b8624d78fe5ff6f56a33bae) C:\WINDOWS\system32\alrsvc.dll
13:41:15.0671 1656 Alerter - ok
13:41:15.0687 1656 ALG (88842de939a827577bf24243699ac80a) C:\WINDOWS\System32\alg.exe
13:41:15.0687 1656 ALG - ok
13:41:15.0703 1656 AliIde - ok
13:41:15.0796 1656 Ambfilt (f6af59d6eee5e1c304f7f73706ad11d8) C:\WINDOWS\system32\drivers\Ambfilt.sys
13:41:15.0906 1656 Ambfilt - ok
13:41:15.0968 1656 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
13:41:15.0968 1656 AmdK8 - ok
13:41:15.0984 1656 amsint - ok
13:41:16.0109 1656 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files\Avira\AntiVir Desktop\sched.exe
13:41:16.0125 1656 AntiVirSchedulerService - ok
13:41:16.0171 1656 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
13:41:16.0187 1656 AntiVirService - ok
13:41:16.0187 1656 AppMgmt - ok
13:41:16.0203 1656 asc - ok
13:41:16.0218 1656 asc3350p - ok
13:41:16.0218 1656 asc3550 - ok
13:41:16.0343 1656 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:41:16.0359 1656 aspnet_state - ok
13:41:16.0390 1656 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:41:16.0390 1656 AsyncMac - ok
13:41:16.0406 1656 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
13:41:16.0406 1656 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atapi.sys. md5: 9f3a2f5aa6875c72bf062c712cfa2674
13:41:16.0406 1656 atapi ( LockedFile.Multi.Generic ) - warning
13:41:16.0406 1656 atapi - detected LockedFile.Multi.Generic (1)
13:41:16.0421 1656 Atdisk - ok
13:41:16.0437 1656 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:41:16.0453 1656 Atmarpc - ok
13:41:16.0468 1656 AudioSrv (de31b88962a8645dba5a37b993e7b0f1) C:\WINDOWS\System32\audiosrv.dll
13:41:16.0484 1656 AudioSrv - ok
13:41:16.0515 1656 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
13:41:16.0515 1656 audstub - ok
13:41:16.0562 1656 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
13:41:16.0578 1656 avgntflt - ok
13:41:16.0625 1656 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\WINDOWS\system32\DRIVERS\avipbb.sys
13:41:16.0625 1656 avipbb - ok
13:41:16.0671 1656 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
13:41:16.0687 1656 avkmgr - ok
13:41:16.0718 1656 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
13:41:16.0718 1656 Beep - ok
13:41:16.0765 1656 BITS (19395d092fd85ddc2d9c7729cf5a2ac8) C:\WINDOWS\system32\qmgr.dll
13:41:16.0859 1656 BITS - ok
13:41:16.0875 1656 Browser (249276d3ef1e74b992299cb96099e4d7) C:\WINDOWS\System32\browser.dll
13:41:16.0890 1656 Browser - ok
13:41:17.0000 1656 catchme - ok
13:41:17.0015 1656 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
13:41:17.0031 1656 cbidf2k - ok
13:41:17.0078 1656 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
13:41:17.0078 1656 CCDECODE - ok
13:41:17.0093 1656 cd20xrnt - ok
13:41:17.0109 1656 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
13:41:17.0125 1656 Cdaudio - ok
13:41:17.0140 1656 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
13:41:17.0140 1656 Cdfs - ok
13:41:17.0171 1656 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:41:17.0187 1656 Cdrom - ok
13:41:17.0203 1656 Changer - ok
13:41:17.0203 1656 CiSvc (e390dc1d7c461d7d56ec53402f329928) C:\WINDOWS\system32\cisvc.exe
13:41:17.0218 1656 CiSvc - ok
13:41:17.0218 1656 ClipSrv (064507a8dfa8c5c7e2ffddd3e6f424fa) C:\WINDOWS\system32\clipsrv.exe
13:41:17.0234 1656 ClipSrv - ok
13:41:17.0265 1656 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:41:17.0312 1656 clr_optimization_v2.0.50727_32 - ok
13:41:17.0375 1656 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:41:17.0390 1656 clr_optimization_v4.0.30319_32 - ok
13:41:17.0406 1656 CmdIde - ok
13:41:17.0406 1656 COMSysApp - ok
13:41:17.0437 1656 Cpqarray - ok
13:41:17.0468 1656 CryptSvc (f3ab0933cbd166d271992f411c27ccaf) C:\WINDOWS\System32\cryptsvc.dll
13:41:17.0484 1656 CryptSvc - ok
13:41:17.0531 1656 CX23880 (fce8506d1c61f05319e85c70638abd21) C:\WINDOWS\system32\drivers\cx88vid.sys
13:41:17.0562 1656 CX23880 - ok
13:41:17.0593 1656 CXAVXBAR (e80185c7ac234c9b045513de2cbeff4c) C:\WINDOWS\system32\drivers\cxavxbar.sys
13:41:17.0593 1656 CXAVXBAR - ok
13:41:17.0640 1656 CXTUNE (b5e3d476efaf08a2cd2cf77835018123) C:\WINDOWS\system32\drivers\CX88TUNE.sys
13:41:17.0640 1656 CXTUNE - ok
13:41:17.0656 1656 dac2w2k - ok
13:41:17.0671 1656 dac960nt - ok
13:41:17.0718 1656 DcomLaunch (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\system32\rpcss.dll
13:41:17.0718 1656 DcomLaunch - ok
13:41:17.0750 1656 Dhcp (8c9a53e285ac5e6704844d0459ec85be) C:\WINDOWS\System32\dhcpcsvc.dll
13:41:17.0765 1656 Dhcp - ok
13:41:17.0781 1656 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
13:41:17.0781 1656 Disk - ok
13:41:17.0796 1656 dmadmin - ok
13:41:17.0828 1656 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
13:41:17.0859 1656 dmboot - ok
13:41:17.0875 1656 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
13:41:17.0890 1656 dmio - ok
13:41:17.0906 1656 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
13:41:17.0921 1656 dmload - ok
13:41:17.0937 1656 dmserver (2bfefe9e865655a76982f050450b9591) C:\WINDOWS\System32\dmserver.dll
13:41:17.0953 1656 dmserver - ok
13:41:17.0968 1656 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
13:41:17.0984 1656 DMusic - ok
13:41:18.0015 1656 Dnscache (adb285644a95431ccedc7c706090936d) C:\WINDOWS\System32\dnsrslvr.dll
13:41:18.0031 1656 Dnscache - ok
13:41:18.0046 1656 Dot3svc (4a3e2bd20157a0946751229e92eb8621) C:\WINDOWS\System32\dot3svc.dll
13:41:18.0093 1656 Dot3svc - ok
13:41:18.0093 1656 dpti2o - ok
13:41:18.0109 1656 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
13:41:18.0109 1656 drmkaud - ok
13:41:18.0140 1656 EapHost (0887d9c2be8d940778cad1e3b85f2a41) C:\WINDOWS\System32\eapsvc.dll
13:41:18.0156 1656 EapHost - ok
13:41:18.0171 1656 ERSvc (a2a4912798f2be706abadd3d30800d16) C:\WINDOWS\System32\ersvc.dll
13:41:18.0171 1656 ERSvc - ok
13:41:18.0203 1656 Eventlog (3d107d45ccfdb266e91d84b52cd7f430) C:\WINDOWS\system32\services.exe
13:41:18.0218 1656 Eventlog - ok
13:41:18.0234 1656 EventSystem (be68ea4457e2e5717231cf91be5448e0) C:\WINDOWS\system32\es.dll
13:41:18.0265 1656 EventSystem - ok
13:41:18.0296 1656 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
13:41:18.0312 1656 Fastfat - ok
13:41:18.0343 1656 FastUserSwitchingCompatibility (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
13:41:18.0390 1656 FastUserSwitchingCompatibility - ok
13:41:18.0406 1656 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
13:41:18.0421 1656 Fdc - ok
13:41:18.0453 1656 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
13:41:18.0453 1656 Fips - ok
13:41:18.0468 1656 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
13:41:18.0468 1656 Flpydisk - ok
13:41:18.0500 1656 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
13:41:18.0515 1656 FltMgr - ok
13:41:18.0609 1656 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:41:18.0625 1656 FontCache3.0.0.0 - ok
13:41:18.0625 1656 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:41:18.0640 1656 Fs_Rec - ok
13:41:18.0656 1656 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:41:18.0671 1656 Ftdisk - ok
13:41:18.0703 1656 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:41:18.0718 1656 Gpc - ok
13:41:18.0734 1656 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
13:41:18.0734 1656 HDAudBus - ok
13:41:18.0796 1656 helpsvc (fcfe31fb75f8a6295b6b0af87a626282) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:41:18.0796 1656 helpsvc - ok
13:41:18.0843 1656 HidServ (00e25ee90166b3e1be6e74aebf858306) C:\WINDOWS\System32\hidserv.dll
13:41:18.0843 1656 HidServ - ok
13:41:18.0875 1656 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:41:18.0890 1656 HidUsb - ok
13:41:18.0921 1656 hkmsvc (7a6b320928f86bc851530d63c82965d9) C:\WINDOWS\System32\kmsvc.dll
13:41:18.0937 1656 hkmsvc - ok
13:41:18.0937 1656 hpn - ok
13:41:18.0984 1656 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
13:41:18.0984 1656 HPZid412 - ok
13:41:19.0015 1656 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
13:41:19.0015 1656 HPZipr12 - ok
13:41:19.0031 1656 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
13:41:19.0031 1656 HPZius12 - ok
13:41:19.0078 1656 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
13:41:19.0078 1656 HTTP - ok
13:41:19.0125 1656 HTTPFilter (58fe2f2da3bc5573f4a35b3760d3125f) C:\WINDOWS\System32\w3ssl.dll
13:41:19.0140 1656 HTTPFilter - ok
13:41:19.0140 1656 i2omgmt - ok
13:41:19.0156 1656 i2omp - ok
13:41:19.0187 1656 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:41:19.0203 1656 i8042prt - ok
13:41:19.0265 1656 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:41:19.0359 1656 idsvc - ok
13:41:19.0390 1656 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
13:41:19.0406 1656 Imapi - ok
13:41:19.0437 1656 ImapiService (f7b93aafad33b2320954c17e26c8d361) C:\WINDOWS\system32\imapi.exe
13:41:19.0453 1656 ImapiService - ok
13:41:19.0468 1656 ini910u - ok
13:41:19.0640 1656 IntcAzAudAddService (1ae3cff80017ef89da959350724c7194) C:\WINDOWS\system32\drivers\RtkHDAud.sys
13:41:19.0671 1656 IntcAzAudAddService - ok
13:41:19.0750 1656 IntelIde (57d928e548b38502abba7a77a6eb7312) C:\WINDOWS\system32\drivers\IntelIde.sys
13:41:19.0750 1656 IntelIde - ok
13:41:19.0781 1656 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
13:41:19.0781 1656 Ip6Fw - ok
13:41:19.0796 1656 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:41:19.0812 1656 IpFilterDriver - ok
13:41:19.0828 1656 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:41:19.0828 1656 IpInIp - ok
13:41:19.0859 1656 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:41:19.0859 1656 IpNat - ok
13:41:19.0875 1656 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:41:19.0890 1656 IPSec - ok
13:41:19.0906 1656 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
13:41:19.0906 1656 IRENUM - ok
13:41:19.0937 1656 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:41:19.0953 1656 isapnp - ok
13:41:19.0968 1656 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:41:19.0968 1656 Kbdclass - ok
13:41:19.0984 1656 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
13:41:19.0984 1656 kbdhid - ok
13:41:20.0015 1656 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
13:41:20.0046 1656 kmixer - ok
13:41:20.0078 1656 KSecDD (c6ebf1d6ad71df30db49b8d3287e1368) C:\WINDOWS\system32\drivers\KSecDD.sys
13:41:20.0093 1656 KSecDD - ok
13:41:20.0125 1656 LanmanServer (111a41b749f0e8cd7566b4ffd613cffe) C:\WINDOWS\System32\srvsvc.dll
13:41:20.0156 1656 LanmanServer - ok
13:41:20.0203 1656 lanmanworkstation (9a2e7ee3989aac0079e9d23555545d52) C:\WINDOWS\System32\wkssvc.dll
13:41:20.0234 1656 lanmanworkstation - ok
13:41:20.0234 1656 lbrtfdc - ok
13:41:20.0265 1656 LmHosts (0ab159f536e3e8f7f07113702a07cca5) C:\WINDOWS\System32\lmhsvc.dll
13:41:20.0281 1656 LmHosts - ok
13:41:20.0296 1656 Messenger (221cd1c815b8a6b79389c3f5d1018de8) C:\WINDOWS\System32\msgsvc.dll
13:41:20.0312 1656 Messenger - ok
13:41:20.0312 1656 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
13:41:20.0328 1656 mnmdd - ok
13:41:20.0343 1656 mnmsrvc (9a57d046f88f4b69751b11fd40088a61) C:\WINDOWS\system32\mnmsrvc.exe
13:41:20.0343 1656 mnmsrvc - ok
13:41:20.0375 1656 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
13:41:20.0375 1656 Modem - ok
13:41:20.0437 1656 Monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\Monfilt.sys
13:41:20.0515 1656 Monfilt - ok
13:41:20.0562 1656 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:41:20.0578 1656 Mouclass - ok
13:41:20.0593 1656 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:41:20.0609 1656 mouhid - ok
13:41:20.0625 1656 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
13:41:20.0625 1656 MountMgr - ok
13:41:20.0671 1656 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:41:20.0687 1656 MozillaMaintenance - ok
13:41:20.0703 1656 mraid35x - ok
13:41:20.0750 1656 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:41:20.0781 1656 MRxDAV - ok
13:41:20.0828 1656 MRxSmb (fb2fccc70f7174c7bf64f48e96d3adf4) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:41:20.0875 1656 MRxSmb - ok
13:41:20.0906 1656 MSDTC (6db4d1521caba9a5ffab54ade0ae867d) C:\WINDOWS\system32\msdtc.exe
13:41:20.0906 1656 MSDTC - ok
13:41:20.0953 1656 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
13:41:20.0953 1656 Msfs - ok
13:41:20.0968 1656 MSIServer - ok
13:41:20.0984 1656 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:41:20.0984 1656 MSKSSRV - ok
13:41:21.0000 1656 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:41:21.0000 1656 MSPCLOCK - ok
13:41:21.0015 1656 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
13:41:21.0015 1656 MSPQM - ok
13:41:21.0031 1656 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:41:21.0031 1656 mssmbios - ok
13:41:21.0125 1656 MSSQL$SONY_MEDIAMGR - ok
13:41:21.0187 1656 MSSQLServerADHelper (cb7524c21727404bd3140dca32deb7de) C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
13:41:21.0203 1656 MSSQLServerADHelper - ok
13:41:21.0218 1656 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
13:41:21.0218 1656 MSTEE - ok
13:41:21.0234 1656 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
13:41:21.0250 1656 Mup - ok
13:41:21.0281 1656 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
13:41:21.0296 1656 NABTSFEC - ok
13:41:21.0343 1656 napagent (6ea362e9db03d44f6b996f4d8be237e9) C:\WINDOWS\System32\qagentrt.dll
13:41:21.0375 1656 napagent - ok
13:41:21.0390 1656 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
13:41:21.0421 1656 NDIS - ok
13:41:21.0421 1656 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
13:41:21.0437 1656 NdisIP - ok
13:41:21.0468 1656 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:41:21.0468 1656 NdisTapi - ok
13:41:21.0484 1656 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:41:21.0484 1656 Ndisuio - ok
13:41:21.0515 1656 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:41:21.0531 1656 NdisWan - ok
13:41:21.0562 1656 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
13:41:21.0578 1656 NDProxy - ok
13:41:21.0578 1656 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
13:41:21.0593 1656 NetBIOS - ok
13:41:21.0609 1656 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
13:41:21.0640 1656 NetBT - ok
13:41:21.0656 1656 NetDDE (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
13:41:21.0671 1656 NetDDE - ok
13:41:21.0671 1656 NetDDEdsdm (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
13:41:21.0671 1656 NetDDEdsdm - ok
13:41:21.0718 1656 Netlogon (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:41:21.0718 1656 Netlogon - ok
13:41:21.0750 1656 Netman (72e1e9e2977be08bdeedb6d8fd9d4d40) C:\WINDOWS\System32\netman.dll
13:41:21.0765 1656 Netman - ok
13:41:21.0843 1656 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:41:21.0859 1656 NetTcpPortSharing - ok
13:41:21.0875 1656 Nla (b6cec406351ea5ef131416d5f52d006f) C:\WINDOWS\System32\mswsock.dll
13:41:21.0890 1656 Nla - ok
13:41:21.0906 1656 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
13:41:21.0906 1656 Npfs - ok
13:41:21.0937 1656 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
13:41:22.0000 1656 Ntfs - ok
13:41:22.0000 1656 NtLmSsp (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:41:22.0000 1656 NtLmSsp - ok
13:41:22.0046 1656 NtmsSvc (023dd70573d644f3d9c8b1258a7bfd08) C:\WINDOWS\system32\ntmssvc.dll
13:41:22.0093 1656 NtmsSvc - ok
13:41:22.0125 1656 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
13:41:22.0125 1656 Null - ok
13:41:22.0265 1656 nv (15a6306a0b958bf60f09688d0ee70479) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
13:41:22.0406 1656 nv - ok
13:41:22.0453 1656 nvata (947c4a0e7b25bcecc3b40f0f1070378b) C:\WINDOWS\system32\DRIVERS\nvata.sys
13:41:22.0453 1656 nvata - ok
13:41:22.0500 1656 NVENETFD (4d6f0d3fb17c1ba64942f415c73adcdb) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
13:41:22.0500 1656 NVENETFD - ok
13:41:22.0531 1656 nvnetbus (921e63aa1e1a20302223d016acafb52b) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
13:41:22.0546 1656 nvnetbus - ok
13:41:22.0578 1656 NVSvc (986d6666e076afd2b60acafd5b01a00f) C:\WINDOWS\system32\nvsvc32.exe
13:41:22.0593 1656 NVSvc - ok
13:41:22.0609 1656 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:41:22.0625 1656 NwlnkFlt - ok
13:41:22.0640 1656 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:41:22.0640 1656 NwlnkFwd - ok
13:41:22.0750 1656 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:41:22.0796 1656 odserv - ok
13:41:22.0828 1656 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:41:22.0859 1656 ose - ok
13:41:22.0890 1656 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
13:41:22.0906 1656 Parport - ok
13:41:22.0921 1656 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
13:41:22.0937 1656 PartMgr - ok
13:41:22.0953 1656 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
13:41:22.0953 1656 ParVdm - ok
13:41:22.0984 1656 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
13:41:23.0000 1656 PCI - ok
13:41:23.0000 1656 PCIDump - ok
13:41:23.0031 1656 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
13:41:23.0031 1656 PCIIde - ok
13:41:23.0062 1656 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
13:41:23.0093 1656 Pcmcia - ok
13:41:23.0093 1656 PDCOMP - ok
13:41:23.0109 1656 PDFRAME - ok
13:41:23.0109 1656 PDRELI - ok
13:41:23.0125 1656 PDRFRAME - ok
13:41:23.0125 1656 perc2 - ok
13:41:23.0140 1656 perc2hib - ok
13:41:23.0187 1656 PlugPlay (3d107d45ccfdb266e91d84b52cd7f430) C:\WINDOWS\system32\services.exe
13:41:23.0187 1656 PlugPlay - ok
13:41:23.0218 1656 Pml Driver HPZ12 (d31f88c5f19eefa366a415d6bc5f2abc) C:\WINDOWS\system32\HPZipm12.exe
13:41:23.0234 1656 Pml Driver HPZ12 - ok
13:41:23.0250 1656 PolicyAgent (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:41:23.0265 1656 PolicyAgent - ok
13:41:23.0281 1656 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:41:23.0296 1656 PptpMiniport - ok
13:41:23.0296 1656 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
13:41:23.0312 1656 Processor - ok
13:41:23.0328 1656 ProtectedStorage (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:41:23.0328 1656 ProtectedStorage - ok
13:41:23.0343 1656 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
13:41:23.0343 1656 PSched - ok
13:41:23.0390 1656 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:41:23.0390 1656 Ptilink - ok
13:41:23.0406 1656 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
13:41:23.0421 1656 PxHelp20 - ok
13:41:23.0421 1656 ql1080 - ok
13:41:23.0437 1656 Ql10wnt - ok
13:41:23.0453 1656 ql12160 - ok
13:41:23.0453 1656 ql1240 - ok
13:41:23.0468 1656 ql1280 - ok
13:41:23.0484 1656 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:41:23.0500 1656 RasAcd - ok
13:41:23.0515 1656 RasAuto (2b5e44ea009f2f374b980e1e9a70635d) C:\WINDOWS\System32\rasauto.dll
13:41:23.0531 1656 RasAuto - ok
13:41:23.0546 1656 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:41:23.0562 1656 Rasl2tp - ok
13:41:23.0578 1656 RasMan (d57554c664b64604bd1ee13ea2c07e77) C:\WINDOWS\System32\rasmans.dll
13:41:23.0609 1656 RasMan - ok
13:41:23.0625 1656 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:41:23.0625 1656 RasPppoe - ok
13:41:23.0640 1656 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
13:41:23.0640 1656 Raspti - ok
13:41:23.0671 1656 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:41:23.0703 1656 Rdbss - ok
13:41:23.0718 1656 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:41:23.0718 1656 RDPCDD - ok
13:41:23.0765 1656 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
13:41:23.0812 1656 RDPWD - ok
13:41:23.0843 1656 RDSessMgr (c0d9d9711cb74ee9bc66353d8cbdab0e) C:\WINDOWS\system32\sessmgr.exe
13:41:23.0859 1656 RDSessMgr - ok
13:41:23.0875 1656 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
13:41:23.0890 1656 redbook - ok
13:41:23.0906 1656 RemoteAccess (127c26b5371651043450e52542099aba) C:\WINDOWS\System32\mprdim.dll
13:41:23.0921 1656 RemoteAccess - ok
13:41:23.0953 1656 RpcLocator (718b3bdc0bc3c2f7d065a53d26202af9) C:\WINDOWS\system32\locator.exe
13:41:23.0968 1656 RpcLocator - ok
13:41:24.0000 1656 RpcSs (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\System32\rpcss.dll
13:41:24.0015 1656 RpcSs - ok
13:41:24.0031 1656 RSVP (09ab2e71e58b078038e3bfdba7ffc984) C:\WINDOWS\system32\rsvp.exe
13:41:24.0046 1656 RSVP - ok
13:41:24.0078 1656 s0016bus (59509ad6cbc28f2c73056268985b3e48) C:\WINDOWS\system32\DRIVERS\s0016bus.sys
13:41:24.0093 1656 s0016bus - ok
13:41:24.0125 1656 s0016mdfl (b98c3a6f91f4fba285af9606a240c6b4) C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys
13:41:24.0125 1656 s0016mdfl - ok
13:41:24.0171 1656 s0016mdm (8a83426f4fb7b5212825d9de76368b1a) C:\WINDOWS\system32\DRIVERS\s0016mdm.sys
13:41:24.0187 1656 s0016mdm - ok
13:41:24.0234 1656 s0016mgmt (7a78bba97feb5e6d24c49e93a3bf7287) C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys
13:41:24.0250 1656 s0016mgmt - ok
13:41:24.0265 1656 s0016nd5 (34ef7b5f611957b73e7219dd5a222ad1) C:\WINDOWS\system32\DRIVERS\s0016nd5.sys
13:41:24.0281 1656 s0016nd5 - ok
13:41:24.0312 1656 s0016obex (36792935847143e4a3cda0dc87248487) C:\WINDOWS\system32\DRIVERS\s0016obex.sys
13:41:24.0328 1656 s0016obex - ok
13:41:24.0359 1656 s0016unic (927208754fb27fc3e7a659e77500c5d1) C:\WINDOWS\system32\DRIVERS\s0016unic.sys
13:41:24.0375 1656 s0016unic - ok
13:41:24.0421 1656 s1018bus (1c5c2cb892553d2cf3f45a4bb323fcd6) C:\WINDOWS\system32\DRIVERS\s1018bus.sys
13:41:24.0421 1656 s1018bus - ok
13:41:24.0453 1656 s1018mdfl (38f5ea219593f19b6b3a1b9c169e3b61) C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys
13:41:24.0453 1656 s1018mdfl - ok
13:41:24.0484 1656 s1018mdm (666af6b64fc7df92d3ca4819ea91631d) C:\WINDOWS\system32\DRIVERS\s1018mdm.sys
13:41:24.0484 1656 s1018mdm - ok
13:41:24.0531 1656 s1018mgmt (f4ceda6e2ddff2af8bd745615a7ca9c0) C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys
13:41:24.0531 1656 s1018mgmt - ok
13:41:24.0562 1656 s1018nd5 (3622d9ff2253dcbe885b10736609a4ca) C:\WINDOWS\system32\DRIVERS\s1018nd5.sys
13:41:24.0562 1656 s1018nd5 - ok
13:41:24.0593 1656 s1018obex (49431efda842b474531c29ffae9f5d09) C:\WINDOWS\system32\DRIVERS\s1018obex.sys
13:41:24.0609 1656 s1018obex - ok
13:41:24.0640 1656 s1018unic (ac6b514cb4474f4c867d7cdc9cd54f05) C:\WINDOWS\system32\DRIVERS\s1018unic.sys
13:41:24.0656 1656 s1018unic - ok
13:41:24.0687 1656 SamSs (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:41:24.0687 1656 SamSs - ok
13:41:24.0718 1656 SCardSvr (410046e401eb11e1e6749e9deea41d4a) C:\WINDOWS\System32\SCardSvr.exe
13:41:24.0718 1656 SCardSvr - ok
13:41:24.0765 1656 Schedule (3ff232a7731621b8902d81d42418c93c) C:\WINDOWS\system32\schedsvc.dll
13:41:24.0796 1656 Schedule - ok
13:41:24.0812 1656 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:41:24.0828 1656 Secdrv - ok
13:41:24.0859 1656 seclogon (477e2c3cc5e4a0d635bcb0ea8dcac3c6) C:\WINDOWS\System32\seclogon.dll
13:41:24.0875 1656 seclogon - ok
13:41:24.0906 1656 seehcri (e5b56569a9f79b70314fede6c953641e) C:\WINDOWS\system32\DRIVERS\seehcri.sys
13:41:24.0921 1656 seehcri - ok
13:41:24.0921 1656 SENS (a530b75c10c23c9ab28fdb6ce719e21f) C:\WINDOWS\system32\sens.dll
13:41:24.0921 1656 SENS - ok
13:41:24.0953 1656 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
13:41:24.0953 1656 serenum - ok
13:41:24.0968 1656 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
13:41:24.0984 1656 Serial - ok
13:41:25.0046 1656 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
13:41:25.0046 1656 Sfloppy - ok
13:41:25.0093 1656 SharedAccess (f58faca9621d2db01bd0927d9a0a208e) C:\WINDOWS\System32\ipnathlp.dll
13:41:25.0109 1656 SharedAccess - ok
13:41:25.0156 1656 ShellHWDetection (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
13:41:25.0156 1656 ShellHWDetection - ok
13:41:25.0171 1656 Simbad - ok
13:41:25.0234 1656 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files\Skype\Updater\Updater.exe
13:41:25.0312 1656 SkypeUpdate - ok
13:41:25.0343 1656 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
13:41:25.0359 1656 SLIP - ok
13:41:25.0453 1656 Sony Ericsson PCCompanion (1a623f2b69e1f182f995f963c55db935) C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
13:41:25.0484 1656 Sony Ericsson PCCompanion - ok
13:41:25.0500 1656 Sparrow - ok
13:41:25.0531 1656 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
13:41:25.0546 1656 splitter - ok
13:41:25.0562 1656 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
13:41:25.0578 1656 Spooler - ok
13:41:25.0625 1656 SQLAgent$SONY_MEDIAMGR - ok
13:41:25.0656 1656 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
13:41:25.0671 1656 sr - ok
13:41:25.0687 1656 srservice (35b91147124f64ac8081a2edb9ea4dee) C:\WINDOWS\system32\srsvc.dll
13:41:25.0703 1656 srservice - ok
13:41:25.0750 1656 Srv (9b390283569ea58d43d2586032b892f5) C:\WINDOWS\system32\DRIVERS\srv.sys
13:41:25.0765 1656 Srv - ok
13:41:25.0796 1656 SSDPSRV (becd5271dc4e3b7c3d035f790fcbc1e5) C:\WINDOWS\System32\ssdpsrv.dll
13:41:25.0796 1656 SSDPSRV - ok
13:41:25.0843 1656 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
13:41:25.0843 1656 ssmdrv - ok
13:41:25.0890 1656 stisvc (c1cdd9275f6a115bb0ae1d55d8d27ba6) C:\WINDOWS\system32\wiaservc.dll
13:41:25.0921 1656 stisvc - ok
13:41:25.0953 1656 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
13:41:25.0953 1656 streamip - ok
13:41:25.0984 1656 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
13:41:26.0000 1656 swenum - ok
13:41:26.0031 1656 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
13:41:26.0046 1656 swmidi - ok
13:41:26.0062 1656 SwPrv - ok
13:41:26.0062 1656 symc810 - ok
13:41:26.0078 1656 symc8xx - ok
13:41:26.0093 1656 sym_hi - ok
13:41:26.0093 1656 sym_u3 - ok
13:41:26.0140 1656 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
13:41:26.0140 1656 sysaudio - ok
13:41:26.0187 1656 SysmonLog (ce06f01b88ace199a1bf460cac29c110) C:\WINDOWS\system32\smlogsvc.exe
13:41:26.0203 1656 SysmonLog - ok
13:41:26.0234 1656 TapiSrv (c2546cd7a398476f9df5614b2ae160e8) C:\WINDOWS\System32\tapisrv.dll
13:41:26.0250 1656 TapiSrv - ok
13:41:26.0265 1656 Tcpip (ad978a1b783b5719720cff204b666c8e) C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:41:26.0312 1656 Tcpip - ok
13:41:26.0328 1656 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
13:41:26.0343 1656 TDPIPE - ok
13:41:26.0359 1656 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
13:41:26.0359 1656 TDTCP - ok
13:41:26.0406 1656 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
13:41:26.0406 1656 TermDD - ok
13:41:26.0437 1656 TermService (a75dd6fc3dbee4fff5ebc9f2c28bb66e) C:\WINDOWS\System32\termsrv.dll
13:41:26.0468 1656 TermService - ok
13:41:26.0515 1656 Themes (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
13:41:26.0515 1656 Themes - ok
13:41:26.0546 1656 TosIde - ok
13:41:26.0578 1656 TrkWks (38853304ccb938d30e0c4cde8d2c2a8a) C:\WINDOWS\system32\trkwks.dll
13:41:26.0593 1656 TrkWks - ok
13:41:26.0640 1656 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
13:41:26.0640 1656 Udfs - ok
13:41:26.0703 1656 UleadBurningHelper (332d341d92b933600d41953b08360dfb) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
13:41:26.0703 1656 UleadBurningHelper - ok
13:41:26.0718 1656 ultra - ok
13:41:26.0765 1656 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
13:41:26.0781 1656 Update - ok
13:41:26.0812 1656 upnphost (651bd90dcee5b7bdc74a2eb7c9266f9e) C:\WINDOWS\System32\upnphost.dll
13:41:26.0843 1656 upnphost - ok
13:41:26.0859 1656 UPS (20a0f6a11959e92908717d09e87d670d) C:\WINDOWS\System32\ups.exe
13:41:26.0859 1656 UPS - ok
13:41:26.0890 1656 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:41:26.0906 1656 usbccgp - ok
13:41:26.0921 1656 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:41:26.0921 1656 usbehci - ok
13:41:26.0953 1656 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:41:26.0968 1656 usbhub - ok
13:41:26.0984 1656 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
13:41:26.0984 1656 usbohci - ok
13:41:27.0000 1656 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:41:27.0015 1656 usbprint - ok
13:41:27.0031 1656 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
13:41:27.0031 1656 usbscan - ok
13:41:27.0046 1656 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:41:27.0046 1656 usbstor - ok
13:41:27.0078 1656 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
13:41:27.0093 1656 usbvideo - ok
13:41:27.0125 1656 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
13:41:27.0140 1656 VgaSave - ok
13:41:27.0156 1656 ViaIde - ok
13:41:27.0171 1656 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
13:41:27.0187 1656 VolSnap - ok
13:41:27.0218 1656 VSS (d6ba1a63d9e00933f1cd2a885573afb2) C:\WINDOWS\System32\vssvc.exe
13:41:27.0250 1656 VSS - ok
13:41:27.0281 1656 W32Time (fa4e1cdba256787f2149f4aad07bc91f) C:\WINDOWS\system32\w32time.dll
13:41:27.0328 1656 W32Time - ok
13:41:27.0359 1656 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:41:27.0359 1656 Wanarp - ok
13:41:27.0390 1656 WDICA - ok
13:41:27.0421 1656 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
13:41:27.0453 1656 wdmaud - ok
13:41:27.0484 1656 WebClient (47ae51048a82dfa1cd6b51d369f7e169) C:\WINDOWS\System32\webclnt.dll
13:41:27.0500 1656 WebClient - ok
13:41:27.0500 1656 WFIOCTL - ok
13:41:27.0562 1656 winmgmt (e488332126e3b1182d2b8a0c35408ec6) C:\WINDOWS\system32\wbem\WMIsvc.dll
13:41:27.0593 1656 winmgmt - ok
13:41:27.0640 1656 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\mspmsnsv.dll
13:41:27.0671 1656 WmdmPmSN - ok
13:41:27.0718 1656 WmiApSrv (23f6f03272f7e5679f1f050aed5acee6) C:\WINDOWS\system32\wbem\wmiapsrv.exe
13:41:27.0734 1656 WmiApSrv - ok
13:41:29.0031 1656 WMPNetworkSvc (3739866d20abd42f26a7b85f9e2560af) C:\Program Files\Windows Media Player\WMPNetwk.exe

[smudy]

13:41:29.0156 1656 WMPNetworkSvc - ok
13:41:29.0171 1656 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
13:41:29.0187 1656 WpdUsb - ok
13:41:29.0781 1656 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:41:29.0828 1656 WPFFontCache_v0400 - ok
13:41:29.0859 1656 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
13:41:29.0859 1656 WS2IFSL - ok
13:41:29.0890 1656 wscsvc (4c86d5faf78194995af9cc1075f65dd3) C:\WINDOWS\system32\wscsvc.dll
13:41:29.0921 1656 wscsvc - ok
13:41:29.0953 1656 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
13:41:29.0953 1656 WSTCODEC - ok
13:41:29.0984 1656 wuauserv (c1364564800ee9784192145324a23308) C:\WINDOWS\system32\wuauserv.dll
13:41:29.0984 1656 wuauserv - ok
13:41:30.0000 1656 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
13:41:30.0015 1656 WudfPf - ok
13:41:30.0031 1656 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
13:41:30.0046 1656 WudfRd - ok
13:41:30.0062 1656 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
13:41:30.0078 1656 WudfSvc - ok
13:41:30.0109 1656 WZCSVC (a27d4ba7264c0bf52f32d10405bea1d4) C:\WINDOWS\System32\wzcsvc.dll
13:41:30.0187 1656 WZCSVC - ok
13:41:30.0203 1656 xmlprov (eaa4bb9edb3fb10cf8979fe65e63658f) C:\WINDOWS\System32\xmlprov.dll
13:41:30.0265 1656 xmlprov - ok
13:41:30.0281 1656 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
13:41:30.0921 1656 \Device\Harddisk0\DR0 - ok
13:41:31.0125 1656 Boot (0x1200) (526e6b919521ae741cad142b2e462b96) \Device\Harddisk0\DR0\Partition0
13:41:31.0125 1656 \Device\Harddisk0\DR0\Partition0 - ok
13:41:31.0265 1656 Boot (0x1200) (3a2258e8ab37de7d74a0774b8fe2d899) \Device\Harddisk0\DR0\Partition1
13:41:31.0281 1656 \Device\Harddisk0\DR0\Partition1 - ok
13:41:31.0281 1656 ============================================================
13:41:31.0281 1656 Scan finished
13:41:31.0281 1656 ============================================================
13:41:31.0312 0528 Detected object count: 1
13:41:31.0312 0528 Actual detected object count: 1
13:41:47.0203 0528 atapi ( LockedFile.Multi.Generic ) - skipped by user
13:41:47.0203 0528 atapi ( LockedFile.Multi.Generic ) - User select action: Skip
13:42:08.0000 3776 ============================================================
13:42:08.0000 3776 Scan started
13:42:08.0000 3776 Mode: Manual;
13:42:08.0000 3776 ============================================================
13:42:08.0140 3776 a347bus (1f61cacacb521215f39061789147968c) C:\WINDOWS\system32\DRIVERS\a347bus.sys
13:42:08.0140 3776 a347bus - ok
13:42:08.0140 3776 a347scsi (113e4b318bbaa7483ca4e582a4d63f49) C:\WINDOWS\system32\Drivers\a347scsi.sys
13:42:08.0140 3776 a347scsi - ok
13:42:08.0156 3776 Abiosdsk - ok
13:42:08.0171 3776 abp480n5 - ok
13:42:08.0187 3776 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:42:08.0187 3776 ACPI - ok
13:42:08.0218 3776 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
13:42:08.0218 3776 ACPIEC - ok
13:42:08.0234 3776 adpu160m - ok
13:42:08.0265 3776 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
13:42:08.0265 3776 aec - ok
13:42:08.0296 3776 AFD (f6b7b1ecd7b41736bdb6ff4b092bcb79) C:\WINDOWS\System32\drivers\afd.sys
13:42:08.0296 3776 AFD - ok
13:42:08.0296 3776 Aha154x - ok
13:42:08.0312 3776 aic78u2 - ok
13:42:08.0328 3776 aic78xx - ok
13:42:08.0343 3776 Alerter (e0a6fa244b8624d78fe5ff6f56a33bae) C:\WINDOWS\system32\alrsvc.dll
13:42:08.0343 3776 Alerter - ok
13:42:08.0359 3776 ALG (88842de939a827577bf24243699ac80a) C:\WINDOWS\System32\alg.exe
13:42:08.0359 3776 ALG - ok
13:42:08.0375 3776 AliIde - ok
13:42:08.0453 3776 Ambfilt (f6af59d6eee5e1c304f7f73706ad11d8) C:\WINDOWS\system32\drivers\Ambfilt.sys
13:42:08.0468 3776 Ambfilt - ok
13:42:08.0515 3776 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
13:42:08.0515 3776 AmdK8 - ok
13:42:08.0531 3776 amsint - ok
13:42:08.0625 3776 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files\Avira\AntiVir Desktop\sched.exe
13:42:08.0625 3776 AntiVirSchedulerService - ok
13:42:08.0671 3776 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
13:42:08.0671 3776 AntiVirService - ok
13:42:08.0687 3776 AppMgmt - ok
13:42:08.0687 3776 asc - ok
13:42:08.0703 3776 asc3350p - ok
13:42:08.0703 3776 asc3550 - ok
13:42:08.0812 3776 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:42:08.0812 3776 aspnet_state - ok
13:42:08.0828 3776 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:42:08.0828 3776 AsyncMac - ok
13:42:08.0859 3776 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
13:42:08.0859 3776 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atapi.sys. md5: 9f3a2f5aa6875c72bf062c712cfa2674
13:42:08.0859 3776 atapi ( LockedFile.Multi.Generic ) - warning
13:42:08.0859 3776 atapi - detected LockedFile.Multi.Generic (1)
13:42:08.0875 3776 Atdisk - ok
13:42:08.0890 3776 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:42:08.0890 3776 Atmarpc - ok
13:42:08.0906 3776 AudioSrv (de31b88962a8645dba5a37b993e7b0f1) C:\WINDOWS\System32\audiosrv.dll
13:42:08.0906 3776 AudioSrv - ok
13:42:08.0937 3776 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
13:42:08.0937 3776 audstub - ok
13:42:08.0968 3776 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
13:42:08.0984 3776 avgntflt - ok
13:42:09.0015 3776 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\WINDOWS\system32\DRIVERS\avipbb.sys
13:42:09.0015 3776 avipbb - ok
13:42:09.0046 3776 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
13:42:09.0046 3776 avkmgr - ok
13:42:09.0093 3776 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
13:42:09.0093 3776 Beep - ok
13:42:09.0140 3776 BITS (19395d092fd85ddc2d9c7729cf5a2ac8) C:\WINDOWS\system32\qmgr.dll
13:42:09.0140 3776 BITS - ok
13:42:09.0187 3776 Browser (249276d3ef1e74b992299cb96099e4d7) C:\WINDOWS\System32\browser.dll
13:42:09.0187 3776 Browser - ok
13:42:09.0250 3776 catchme - ok
13:42:09.0281 3776 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
13:42:09.0281 3776 cbidf2k - ok
13:42:09.0296 3776 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
13:42:09.0296 3776 CCDECODE - ok
13:42:09.0312 3776 cd20xrnt - ok
13:42:09.0343 3776 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
13:42:09.0343 3776 Cdaudio - ok
13:42:09.0343 3776 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
13:42:09.0343 3776 Cdfs - ok
13:42:09.0375 3776 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:42:09.0375 3776 Cdrom - ok
13:42:09.0375 3776 Changer - ok
13:42:09.0390 3776 CiSvc (e390dc1d7c461d7d56ec53402f329928) C:\WINDOWS\system32\cisvc.exe
13:42:09.0390 3776 CiSvc - ok
13:42:09.0406 3776 ClipSrv (064507a8dfa8c5c7e2ffddd3e6f424fa) C:\WINDOWS\system32\clipsrv.exe
13:42:09.0406 3776 ClipSrv - ok
13:42:09.0437 3776 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:42:09.0437 3776 clr_optimization_v2.0.50727_32 - ok
13:42:09.0500 3776 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:42:09.0500 3776 clr_optimization_v4.0.30319_32 - ok
13:42:09.0515 3776 CmdIde - ok
13:42:09.0515 3776 COMSysApp - ok
13:42:09.0546 3776 Cpqarray - ok
13:42:09.0562 3776 CryptSvc (f3ab0933cbd166d271992f411c27ccaf) C:\WINDOWS\System32\cryptsvc.dll
13:42:09.0562 3776 CryptSvc - ok
13:42:09.0609 3776 CX23880 (fce8506d1c61f05319e85c70638abd21) C:\WINDOWS\system32\drivers\cx88vid.sys
13:42:09.0609 3776 CX23880 - ok
13:42:09.0640 3776 CXAVXBAR (e80185c7ac234c9b045513de2cbeff4c) C:\WINDOWS\system32\drivers\cxavxbar.sys
13:42:09.0640 3776 CXAVXBAR - ok
13:42:09.0671 3776 CXTUNE (b5e3d476efaf08a2cd2cf77835018123) C:\WINDOWS\system32\drivers\CX88TUNE.sys
13:42:09.0671 3776 CXTUNE - ok
13:42:09.0687 3776 dac2w2k - ok
13:42:09.0687 3776 dac960nt - ok
13:42:09.0734 3776 DcomLaunch (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\system32\rpcss.dll
13:42:09.0734 3776 DcomLaunch - ok
13:42:09.0750 3776 Dhcp (8c9a53e285ac5e6704844d0459ec85be) C:\WINDOWS\System32\dhcpcsvc.dll
13:42:09.0750 3776 Dhcp - ok
13:42:09.0765 3776 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
13:42:09.0765 3776 Disk - ok
13:42:09.0781 3776 dmadmin - ok
13:42:09.0828 3776 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
13:42:09.0828 3776 dmboot - ok
13:42:09.0843 3776 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
13:42:09.0843 3776 dmio - ok
13:42:09.0859 3776 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
13:42:09.0859 3776 dmload - ok
13:42:09.0890 3776 dmserver (2bfefe9e865655a76982f050450b9591) C:\WINDOWS\System32\dmserver.dll
13:42:09.0890 3776 dmserver - ok
13:42:09.0937 3776 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
13:42:09.0937 3776 DMusic - ok
13:42:09.0968 3776 Dnscache (adb285644a95431ccedc7c706090936d) C:\WINDOWS\System32\dnsrslvr.dll
13:42:09.0968 3776 Dnscache - ok
13:42:09.0984 3776 Dot3svc (4a3e2bd20157a0946751229e92eb8621) C:\WINDOWS\System32\dot3svc.dll
13:42:10.0000 3776 Dot3svc - ok
13:42:10.0000 3776 dpti2o - ok
13:42:10.0015 3776 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
13:42:10.0015 3776 drmkaud - ok
13:42:10.0046 3776 EapHost (0887d9c2be8d940778cad1e3b85f2a41) C:\WINDOWS\System32\eapsvc.dll
13:42:10.0046 3776 EapHost - ok
13:42:10.0062 3776 ERSvc (a2a4912798f2be706abadd3d30800d16) C:\WINDOWS\System32\ersvc.dll
13:42:10.0062 3776 ERSvc - ok
13:42:10.0093 3776 Eventlog (3d107d45ccfdb266e91d84b52cd7f430) C:\WINDOWS\system32\services.exe
13:42:10.0093 3776 Eventlog - ok
13:42:10.0109 3776 EventSystem (be68ea4457e2e5717231cf91be5448e0) C:\WINDOWS\system32\es.dll
13:42:10.0125 3776 EventSystem - ok
13:42:10.0140 3776 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
13:42:10.0140 3776 Fastfat - ok
13:42:10.0187 3776 FastUserSwitchingCompatibility (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
13:42:10.0187 3776 FastUserSwitchingCompatibility - ok
13:42:10.0203 3776 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
13:42:10.0203 3776 Fdc - ok
13:42:10.0218 3776 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
13:42:10.0218 3776 Fips - ok
13:42:10.0218 3776 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
13:42:10.0234 3776 Flpydisk - ok
13:42:10.0265 3776 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
13:42:10.0265 3776 FltMgr - ok
13:42:10.0343 3776 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:42:10.0343 3776 FontCache3.0.0.0 - ok
13:42:10.0375 3776 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:42:10.0375 3776 Fs_Rec - ok
13:42:10.0390 3776 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:42:10.0390 3776 Ftdisk - ok
13:42:10.0421 3776 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:42:10.0421 3776 Gpc - ok
13:42:10.0437 3776 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
13:42:10.0453 3776 HDAudBus - ok
13:42:10.0484 3776 helpsvc (fcfe31fb75f8a6295b6b0af87a626282) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:42:10.0484 3776 helpsvc - ok
13:42:10.0515 3776 HidServ (00e25ee90166b3e1be6e74aebf858306) C:\WINDOWS\System32\hidserv.dll
13:42:10.0515 3776 HidServ - ok
13:42:10.0546 3776 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:42:10.0546 3776 HidUsb - ok
13:42:10.0578 3776 hkmsvc (7a6b320928f86bc851530d63c82965d9) C:\WINDOWS\System32\kmsvc.dll
13:42:10.0578 3776 hkmsvc - ok
13:42:10.0593 3776 hpn - ok
13:42:10.0625 3776 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
13:42:10.0625 3776 HPZid412 - ok
13:42:10.0625 3776 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
13:42:10.0640 3776 HPZipr12 - ok
13:42:10.0640 3776 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
13:42:10.0640 3776 HPZius12 - ok
13:42:10.0687 3776 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
13:42:10.0687 3776 HTTP - ok
13:42:10.0718 3776 HTTPFilter (58fe2f2da3bc5573f4a35b3760d3125f) C:\WINDOWS\System32\w3ssl.dll
13:42:10.0718 3776 HTTPFilter - ok
13:42:10.0734 3776 i2omgmt - ok
13:42:10.0750 3776 i2omp - ok
13:42:10.0781 3776 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:42:10.0781 3776 i8042prt - ok
13:42:10.0843 3776 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:42:10.0859 3776 idsvc - ok
13:42:10.0890 3776 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
13:42:10.0890 3776 Imapi - ok
13:42:10.0937 3776 ImapiService (f7b93aafad33b2320954c17e26c8d361) C:\WINDOWS\system32\imapi.exe
13:42:10.0937 3776 ImapiService - ok
13:42:10.0953 3776 ini910u - ok
13:42:11.0109 3776 IntcAzAudAddService (1ae3cff80017ef89da959350724c7194) C:\WINDOWS\system32\drivers\RtkHDAud.sys
13:42:11.0156 3776 IntcAzAudAddService - ok
13:42:11.0234 3776 IntelIde (57d928e548b38502abba7a77a6eb7312) C:\WINDOWS\system32\drivers\IntelIde.sys
13:42:11.0234 3776 IntelIde - ok
13:42:11.0250 3776 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
13:42:11.0250 3776 Ip6Fw - ok
13:42:11.0281 3776 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:42:11.0281 3776 IpFilterDriver - ok
13:42:11.0281 3776 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:42:11.0281 3776 IpInIp - ok
13:42:11.0312 3776 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:42:11.0312 3776 IpNat - ok
13:42:11.0328 3776 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:42:11.0328 3776 IPSec - ok
13:42:11.0359 3776 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
13:42:11.0359 3776 IRENUM - ok
13:42:11.0375 3776 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:42:11.0375 3776 isapnp - ok
13:42:11.0390 3776 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:42:11.0390 3776 Kbdclass - ok
13:42:11.0406 3776 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
13:42:11.0406 3776 kbdhid - ok
13:42:11.0437 3776 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
13:42:11.0437 3776 kmixer - ok
13:42:11.0453 3776 KSecDD (c6ebf1d6ad71df30db49b8d3287e1368) C:\WINDOWS\system32\drivers\KSecDD.sys
13:42:11.0453 3776 KSecDD - ok
13:42:11.0500 3776 LanmanServer (111a41b749f0e8cd7566b4ffd613cffe) C:\WINDOWS\System32\srvsvc.dll
13:42:11.0500 3776 LanmanServer - ok
13:42:11.0546 3776 lanmanworkstation (9a2e7ee3989aac0079e9d23555545d52) C:\WINDOWS\System32\wkssvc.dll
13:42:11.0546 3776 lanmanworkstation - ok
13:42:11.0562 3776 lbrtfdc - ok
13:42:11.0593 3776 LmHosts (0ab159f536e3e8f7f07113702a07cca5) C:\WINDOWS\System32\lmhsvc.dll
13:42:11.0593 3776 LmHosts - ok
13:42:11.0625 3776 Messenger (221cd1c815b8a6b79389c3f5d1018de8) C:\WINDOWS\System32\msgsvc.dll
13:42:11.0625 3776 Messenger - ok
13:42:11.0640 3776 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
13:42:11.0640 3776 mnmdd - ok
13:42:11.0656 3776 mnmsrvc (9a57d046f88f4b69751b11fd40088a61) C:\WINDOWS\system32\mnmsrvc.exe
13:42:11.0656 3776 mnmsrvc - ok
13:42:11.0671 3776 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
13:42:11.0671 3776 Modem - ok
13:42:11.0734 3776 Monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\Monfilt.sys
13:42:11.0734 3776 Monfilt - ok
13:42:11.0765 3776 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:42:11.0765 3776 Mouclass - ok
13:42:11.0781 3776 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:42:11.0796 3776 mouhid - ok
13:42:11.0812 3776 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
13:42:11.0812 3776 MountMgr - ok
13:42:11.0875 3776 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:42:11.0875 3776 MozillaMaintenance - ok
13:42:11.0875 3776 mraid35x - ok
13:42:11.0906 3776 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:42:11.0906 3776 MRxDAV - ok
13:42:11.0953 3776 MRxSmb (fb2fccc70f7174c7bf64f48e96d3adf4) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:42:11.0953 3776 MRxSmb - ok
13:42:12.0000 3776 MSDTC (6db4d1521caba9a5ffab54ade0ae867d) C:\WINDOWS\system32\msdtc.exe
13:42:12.0000 3776 MSDTC - ok
13:42:12.0031 3776 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
13:42:12.0031 3776 Msfs - ok
13:42:12.0046 3776 MSIServer - ok
13:42:12.0062 3776 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:42:12.0062 3776 MSKSSRV - ok
13:42:12.0078 3776 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:42:12.0078 3776 MSPCLOCK - ok
13:42:12.0093 3776 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
13:42:12.0093 3776 MSPQM - ok
13:42:12.0109 3776 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:42:12.0109 3776 mssmbios - ok
13:42:12.0203 3776 MSSQL$SONY_MEDIAMGR - ok
13:42:12.0265 3776 MSSQLServerADHelper (cb7524c21727404bd3140dca32deb7de) C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
13:42:12.0265 3776 MSSQLServerADHelper - ok
13:42:12.0296 3776 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
13:42:12.0296 3776 MSTEE - ok
13:42:12.0312 3776 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
13:42:12.0312 3776 Mup - ok
13:42:12.0328 3776 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
13:42:12.0328 3776 NABTSFEC - ok
13:42:12.0359 3776 napagent (6ea362e9db03d44f6b996f4d8be237e9) C:\WINDOWS\System32\qagentrt.dll
13:42:12.0375 3776 napagent - ok
13:42:12.0390 3776 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
13:42:12.0390 3776 NDIS - ok
13:42:12.0390 3776 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
13:42:12.0406 3776 NdisIP - ok
13:42:12.0437 3776 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:42:12.0437 3776 NdisTapi - ok
13:42:12.0468 3776 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:42:12.0468 3776 Ndisuio - ok
13:42:12.0500 3776 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:42:12.0500 3776 NdisWan - ok
13:42:12.0531 3776 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
13:42:12.0531 3776 NDProxy - ok
13:42:12.0546 3776 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
13:42:12.0546 3776 NetBIOS - ok
13:42:12.0578 3776 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
13:42:12.0578 3776 NetBT - ok
13:42:12.0593 3776 NetDDE (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
13:42:12.0593 3776 NetDDE - ok
13:42:12.0609 3776 NetDDEdsdm (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
13:42:12.0609 3776 NetDDEdsdm - ok
13:42:12.0656 3776 Netlogon (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:42:12.0656 3776 Netlogon - ok
13:42:12.0671 3776 Netman (72e1e9e2977be08bdeedb6d8fd9d4d40) C:\WINDOWS\System32\netman.dll
13:42:12.0671 3776 Netman - ok
13:42:12.0765 3776 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:42:12.0765 3776 NetTcpPortSharing - ok
13:42:12.0796 3776 Nla (b6cec406351ea5ef131416d5f52d006f) C:\WINDOWS\System32\mswsock.dll
13:42:12.0812 3776 Nla - ok
13:42:12.0828 3776 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
13:42:12.0828 3776 Npfs - ok
13:42:12.0859 3776 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
13:42:12.0859 3776 Ntfs - ok
13:42:12.0875 3776 NtLmSsp (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:42:12.0875 3776 NtLmSsp - ok
13:42:12.0906 3776 NtmsSvc (023dd70573d644f3d9c8b1258a7bfd08) C:\WINDOWS\system32\ntmssvc.dll
13:42:12.0906 3776 NtmsSvc - ok
13:42:12.0937 3776 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
13:42:12.0937 3776 Null - ok
13:42:13.0078 3776 nv (15a6306a0b958bf60f09688d0ee70479) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
13:42:13.0109 3776 nv - ok
13:42:13.0171 3776 nvata (947c4a0e7b25bcecc3b40f0f1070378b) C:\WINDOWS\system32\DRIVERS\nvata.sys
13:42:13.0171 3776 nvata - ok
13:42:13.0187 3776 NVENETFD (4d6f0d3fb17c1ba64942f415c73adcdb) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
13:42:13.0187 3776 NVENETFD - ok
13:42:13.0218 3776 nvnetbus (921e63aa1e1a20302223d016acafb52b) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
13:42:13.0218 3776 nvnetbus - ok
13:42:13.0250 3776 NVSvc (986d6666e076afd2b60acafd5b01a00f) C:\WINDOWS\system32\nvsvc32.exe
13:42:13.0250 3776 NVSvc - ok
13:42:13.0265 3776 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:42:13.0265 3776 NwlnkFlt - ok
13:42:13.0281 3776 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:42:13.0281 3776 NwlnkFwd - ok
13:42:13.0375 3776 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:42:13.0390 3776 odserv - ok
13:42:13.0421 3776 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:42:13.0421 3776 ose - ok
13:42:13.0453 3776 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
13:42:13.0468 3776 Parport - ok
13:42:13.0468 3776 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
13:42:13.0468 3776 PartMgr - ok
13:42:13.0484 3776 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
13:42:13.0484 3776 ParVdm - ok
13:42:13.0515 3776 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
13:42:13.0515 3776 PCI - ok
13:42:13.0531 3776 PCIDump - ok
13:42:13.0546 3776 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
13:42:13.0546 3776 PCIIde - ok
13:42:13.0578 3776 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
13:42:13.0578 3776 Pcmcia - ok
13:42:13.0593 3776 PDCOMP - ok
13:42:13.0609 3776 PDFRAME - ok
13:42:13.0609 3776 PDRELI - ok
13:42:13.0625 3776 PDRFRAME - ok
13:42:13.0625 3776 perc2 - ok
13:42:13.0640 3776 perc2hib - ok
13:42:13.0703 3776 PlugPlay (3d107d45ccfdb266e91d84b52cd7f430) C:\WINDOWS\system32\services.exe
13:42:13.0703 3776 PlugPlay - ok
13:42:13.0734 3776 Pml Driver HPZ12 (d31f88c5f19eefa366a415d6bc5f2abc) C:\WINDOWS\system32\HPZipm12.exe
13:42:13.0734 3776 Pml Driver HPZ12 - ok
13:42:13.0765 3776 PolicyAgent (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:42:13.0765 3776 PolicyAgent - ok
13:42:13.0781 3776 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:42:13.0781 3776 PptpMiniport - ok
13:42:13.0796 3776 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
13:42:13.0796 3776 Processor - ok
13:42:13.0812 3776 ProtectedStorage (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:42:13.0812 3776 ProtectedStorage - ok
13:42:13.0828 3776 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
13:42:13.0828 3776 PSched - ok
13:42:13.0843 3776 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:42:13.0843 3776 Ptilink - ok
13:42:13.0875 3776 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
13:42:13.0875 3776 PxHelp20 - ok
13:42:13.0890 3776 ql1080 - ok
13:42:13.0890 3776 Ql10wnt - ok
13:42:13.0906 3776 ql12160 - ok
13:42:13.0921 3776 ql1240 - ok
13:42:13.0921 3776 ql1280 - ok
13:42:13.0968 3776 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:42:13.0968 3776 RasAcd - ok
13:42:13.0984 3776 RasAuto (2b5e44ea009f2f374b980e1e9a70635d) C:\WINDOWS\System32\rasauto.dll
13:42:13.0984 3776 RasAuto - ok
13:42:14.0015 3776 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:42:14.0015 3776 Rasl2tp - ok
13:42:14.0031 3776 RasMan (d57554c664b64604bd1ee13ea2c07e77) C:\WINDOWS\System32\rasmans.dll
13:42:14.0046 3776 RasMan - ok
13:42:14.0046 3776 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:42:14.0046 3776 RasPppoe - ok
13:42:14.0062 3776 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
13:42:14.0062 3776 Raspti - ok
13:42:14.0093 3776 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:42:14.0093 3776 Rdbss - ok
13:42:14.0109 3776 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:42:14.0109 3776 RDPCDD - ok
13:42:14.0156 3776 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
13:42:14.0156 3776 RDPWD - ok
13:42:14.0187 3776 RDSessMgr (c0d9d9711cb74ee9bc66353d8cbdab0e) C:\WINDOWS\system32\sessmgr.exe
13:42:14.0187 3776 RDSessMgr - ok
13:42:14.0203 3776 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
13:42:14.0218 3776 redbook - ok
13:42:14.0234 3776 RemoteAccess (127c26b5371651043450e52542099aba) C:\WINDOWS\System32\mprdim.dll
13:42:14.0234 3776 RemoteAccess - ok
13:42:14.0265 3776 RpcLocator (718b3bdc0bc3c2f7d065a53d26202af9) C:\WINDOWS\system32\locator.exe
13:42:14.0265 3776 RpcLocator - ok
13:42:14.0296 3776 RpcSs (c0bd34a62508ba68f146e22ce45919f9) C:\WINDOWS\System32\rpcss.dll
13:42:14.0312 3776 RpcSs - ok
13:42:14.0328 3776 RSVP (09ab2e71e58b078038e3bfdba7ffc984) C:\WINDOWS\system32\rsvp.exe
13:42:14.0328 3776 RSVP - ok
13:42:14.0375 3776 s0016bus (59509ad6cbc28f2c73056268985b3e48) C:\WINDOWS\system32\DRIVERS\s0016bus.sys
13:42:14.0375 3776 s0016bus - ok
13:42:14.0390 3776 s0016mdfl (b98c3a6f91f4fba285af9606a240c6b4) C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys
13:42:14.0390 3776 s0016mdfl - ok
13:42:14.0437 3776 s0016mdm (8a83426f4fb7b5212825d9de76368b1a) C:\WINDOWS\system32\DRIVERS\s0016mdm.sys
13:42:14.0437 3776 s0016mdm - ok
13:42:14.0453 3776 s0016mgmt (7a78bba97feb5e6d24c49e93a3bf7287) C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys
13:42:14.0468 3776 s0016mgmt - ok
13:42:14.0484 3776 s0016nd5 (34ef7b5f611957b73e7219dd5a222ad1) C:\WINDOWS\system32\DRIVERS\s0016nd5.sys
13:42:14.0484 3776 s0016nd5 - ok
13:42:14.0515 3776 s0016obex (36792935847143e4a3cda0dc87248487) C:\WINDOWS\system32\DRIVERS\s0016obex.sys
13:42:14.0531 3776 s0016obex - ok
13:42:14.0562 3776 s0016unic (927208754fb27fc3e7a659e77500c5d1) C:\WINDOWS\system32\DRIVERS\s0016unic.sys
13:42:14.0562 3776 s0016unic - ok
13:42:14.0593 3776 s1018bus (1c5c2cb892553d2cf3f45a4bb323fcd6) C:\WINDOWS\system32\DRIVERS\s1018bus.sys
13:42:14.0593 3776 s1018bus - ok
13:42:14.0625 3776 s1018mdfl (38f5ea219593f19b6b3a1b9c169e3b61) C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys
13:42:14.0625 3776 s1018mdfl - ok
13:42:14.0640 3776 s1018mdm (666af6b64fc7df92d3ca4819ea91631d) C:\WINDOWS\system32\DRIVERS\s1018mdm.sys
13:42:14.0640 3776 s1018mdm - ok
13:42:14.0656 3776 s1018mgmt (f4ceda6e2ddff2af8bd745615a7ca9c0) C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys
13:42:14.0671 3776 s1018mgmt - ok
13:42:14.0687 3776 s1018nd5 (3622d9ff2253dcbe885b10736609a4ca) C:\WINDOWS\system32\DRIVERS\s1018nd5.sys
13:42:14.0687 3776 s1018nd5 - ok
13:42:14.0718 3776 s1018obex (49431efda842b474531c29ffae9f5d09) C:\WINDOWS\system32\DRIVERS\s1018obex.sys
13:42:14.0718 3776 s1018obex - ok
13:42:14.0734 3776 s1018unic (ac6b514cb4474f4c867d7cdc9cd54f05) C:\WINDOWS\system32\DRIVERS\s1018unic.sys
13:42:14.0750 3776 s1018unic - ok
13:42:14.0765 3776 SamSs (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
13:42:14.0781 3776 SamSs - ok
13:42:14.0812 3776 SCardSvr (410046e401eb11e1e6749e9deea41d4a) C:\WINDOWS\System32\SCardSvr.exe
13:42:14.0812 3776 SCardSvr - ok
13:42:14.0843 3776 Schedule (3ff232a7731621b8902d81d42418c93c) C:\WINDOWS\system32\schedsvc.dll
13:42:14.0843 3776 Schedule - ok
13:42:14.0875 3776 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:42:14.0875 3776 Secdrv - ok
13:42:14.0906 3776 seclogon (477e2c3cc5e4a0d635bcb0ea8dcac3c6) C:\WINDOWS\System32\seclogon.dll
13:42:14.0906 3776 seclogon - ok
13:42:14.0953 3776 seehcri (e5b56569a9f79b70314fede6c953641e) C:\WINDOWS\system32\DRIVERS\seehcri.sys
13:42:14.0953 3776 seehcri - ok
13:42:14.0968 3776 SENS (a530b75c10c23c9ab28fdb6ce719e21f) C:\WINDOWS\system32\sens.dll
13:42:14.0968 3776 SENS - ok
13:42:15.0000 3776 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
13:42:15.0015 3776 serenum - ok
13:42:15.0031 3776 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
13:42:15.0031 3776 Serial - ok
13:42:15.0078 3776 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
13:42:15.0078 3776 Sfloppy - ok
13:42:15.0125 3776 SharedAccess (f58faca9621d2db01bd0927d9a0a208e) C:\WINDOWS\System32\ipnathlp.dll
13:42:15.0140 3776 SharedAccess - ok
13:42:15.0171 3776 ShellHWDetection (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
13:42:15.0171 3776 ShellHWDetection - ok
13:42:15.0187 3776 Simbad - ok
13:42:15.0265 3776 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files\Skype\Updater\Updater.exe
13:42:15.0265 3776 SkypeUpdate - ok
13:42:15.0296 3776 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
13:42:15.0296 3776 SLIP - ok
13:42:15.0390 3776 Sony Ericsson PCCompanion (1a623f2b69e1f182f995f963c55db935) C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
13:42:15.0390 3776 Sony Ericsson PCCompanion - ok
13:42:15.0406 3776 Sparrow - ok
13:42:15.0437 3776 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
13:42:15.0437 3776 splitter - ok
13:42:15.0468 3776 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
13:42:15.0468 3776 Spooler - ok
13:42:15.0515 3776 SQLAgent$SONY_MEDIAMGR - ok
13:42:15.0562 3776 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
13:42:15.0562 3776 sr - ok
13:42:15.0593 3776 srservice (35b91147124f64ac8081a2edb9ea4dee) C:\WINDOWS\system32\srsvc.dll
13:42:15.0843 3776 srservice - ok
13:42:15.0953 3776 Srv (9b390283569ea58d43d2586032b892f5) C:\WINDOWS\system32\DRIVERS\srv.sys
13:42:15.0953 3776 Srv - ok
13:42:16.0015 3776 SSDPSRV (becd5271dc4e3b7c3d035f790fcbc1e5) C:\WINDOWS\System32\ssdpsrv.dll
13:42:16.0015 3776 SSDPSRV - ok
13:42:16.0046 3776 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
13:42:16.0046 3776 ssmdrv - ok
13:42:16.0093 3776 stisvc (c1cdd9275f6a115bb0ae1d55d8d27ba6) C:\WINDOWS\system32\wiaservc.dll
13:42:16.0093 3776 stisvc - ok
13:42:16.0109 3776 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
13:42:16.0109 3776 streamip - ok
13:42:16.0140 3776 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
13:42:16.0140 3776 swenum - ok
13:42:16.0171 3776 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
13:42:16.0171 3776 swmidi - ok
13:42:16.0187 3776 SwPrv - ok
13:42:16.0203 3776 symc810 - ok
13:42:16.0203 3776 symc8xx - ok
13:42:16.0234 3776 sym_hi - ok
13:42:16.0234 3776 sym_u3 - ok
13:42:16.0265 3776 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
13:42:16.0281 3776 sysaudio - ok
13:42:16.0328 3776 SysmonLog (ce06f01b88ace199a1bf460cac29c110) C:\WINDOWS\system32\smlogsvc.exe
13:42:16.0328 3776 SysmonLog - ok
13:42:16.0359 3776 TapiSrv (c2546cd7a398476f9df5614b2ae160e8) C:\WINDOWS\System32\tapisrv.dll
13:42:16.0375 3776 TapiSrv - ok
13:42:16.0406 3776 Tcpip (ad978a1b783b5719720cff204b666c8e) C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:42:16.0406 3776 Tcpip - ok
13:42:16.0437 3776 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
13:42:16.0437 3776 TDPIPE - ok
13:42:16.0468 3776 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
13:42:16.0468 3776 TDTCP - ok
13:42:16.0500 3776 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
13:42:16.0500 3776 TermDD - ok
13:42:16.0546 3776 TermService (a75dd6fc3dbee4fff5ebc9f2c28bb66e) C:\WINDOWS\System32\termsrv.dll
13:42:16.0546 3776 TermService - ok
13:42:16.0593 3776 Themes (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
13:42:16.0593 3776 Themes - ok
13:42:16.0609 3776 TosIde - ok
13:42:16.0625 3776 TrkWks (38853304ccb938d30e0c4cde8d2c2a8a) C:\WINDOWS\system32\trkwks.dll
13:42:16.0625 3776 TrkWks - ok
13:42:16.0640 3776 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
13:42:16.0656 3776 Udfs - ok
13:42:16.0796 3776 UleadBurningHelper (332d341d92b933600d41953b08360dfb) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
13:42:16.0796 3776 UleadBurningHelper - ok
13:42:16.0812 3776 ultra - ok
13:42:16.0859 3776 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
13:42:16.0859 3776 Update - ok
13:42:16.0890 3776 upnphost (651bd90dcee5b7bdc74a2eb7c9266f9e) C:\WINDOWS\System32\upnphost.dll
13:42:16.0906 3776 upnphost - ok
13:42:16.0937 3776 UPS (20a0f6a11959e92908717d09e87d670d) C:\WINDOWS\System32\ups.exe
13:42:16.0937 3776 UPS - ok
13:42:16.0984 3776 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:42:16.0984 3776 usbccgp - ok
13:42:17.0000 3776 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:42:17.0000 3776 usbehci - ok
13:42:17.0031 3776 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:42:17.0031 3776 usbhub - ok
13:42:17.0046 3776 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
13:42:17.0046 3776 usbohci - ok
13:42:17.0062 3776 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:42:17.0062 3776 usbprint - ok
13:42:17.0078 3776 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
13:42:17.0078 3776 usbscan - ok
13:42:17.0109 3776 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:42:17.0109 3776 usbstor - ok
13:42:17.0140 3776 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
13:42:17.0140 3776 usbvideo - ok
13:42:17.0187 3776 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
13:42:17.0187 3776 VgaSave - ok
13:42:17.0187 3776 ViaIde - ok
13:42:17.0218 3776 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
13:42:17.0218 3776 VolSnap - ok
13:42:17.0250 3776 VSS (d6ba1a63d9e00933f1cd2a885573afb2) C:\WINDOWS\System32\vssvc.exe
13:42:17.0250 3776 VSS - ok
13:42:17.0265 3776 W32Time (fa4e1cdba256787f2149f4aad07bc91f) C:\WINDOWS\system32\w32time.dll
13:42:17.0281 3776 W32Time - ok
13:42:17.0296 3776 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:42:17.0296 3776 Wanarp - ok
13:42:17.0296 3776 WDICA - ok
13:42:17.0343 3776 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
13:42:17.0343 3776 wdmaud - ok
13:42:17.0343 3776 WebClient (47ae51048a82dfa1cd6b51d369f7e169) C:\WINDOWS\System32\webclnt.dll
13:42:17.0359 3776 WebClient - ok
13:42:17.0359 3776 WFIOCTL - ok
13:42:17.0421 3776 winmgmt (e488332126e3b1182d2b8a0c35408ec6) C:\WINDOWS\system32\wbem\WMIsvc.dll
13:42:17.0421 3776 winmgmt - ok
13:42:17.0453 3776 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\mspmsnsv.dll
13:42:17.0453 3776 WmdmPmSN - ok
13:42:17.0484 3776 WmiApSrv (23f6f03272f7e5679f1f050aed5acee6) C:\WINDOWS\system32\wbem\wmiapsrv.exe
13:42:17.0484 3776 WmiApSrv - ok
13:42:17.0562 3776 WMPNetworkSvc (3739866d20abd42f26a7b85f9e2560af) C:\Program Files\Windows Media Player\WMPNetwk.exe
13:42:17.0578 3776 WMPNetworkSvc - ok
13:42:17.0593 3776 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
13:42:17.0593 3776 WpdUsb - ok
13:42:17.0734 3776 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:42:17.0734 3776 WPFFontCache_v0400 - ok
13:42:17.0781 3776 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
13:42:17.0781 3776 WS2IFSL - ok
13:42:17.0812 3776 wscsvc (4c86d5faf78194995af9cc1075f65dd3) C:\WINDOWS\system32\wscsvc.dll
13:42:17.0812 3776 wscsvc - ok
13:42:17.0843 3776 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
13:42:17.0843 3776 WSTCODEC - ok
13:42:17.0890 3776 wuauserv (c1364564800ee9784192145324a23308) C:\WINDOWS\system32\wuauserv.dll
13:42:17.0890 3776 wuauserv - ok
13:42:17.0906 3776 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
13:42:17.0906 3776 WudfPf - ok
13:42:17.0937 3776 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
13:42:17.0937 3776 WudfRd - ok
13:42:17.0953 3776 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
13:42:17.0953 3776 WudfSvc - ok
13:42:17.0984 3776 WZCSVC (a27d4ba7264c0bf52f32d10405bea1d4) C:\WINDOWS\System32\wzcsvc.dll
13:42:18.0000 3776 WZCSVC - ok
13:42:18.0015 3776 xmlprov (eaa4bb9edb3fb10cf8979fe65e63658f) C:\WINDOWS\System32\xmlprov.dll
13:42:18.0015 3776 xmlprov - ok
13:42:18.0046 3776 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
13:42:18.0906 3776 \Device\Harddisk0\DR0 - ok
13:42:18.0921 3776 Boot (0x1200) (526e6b919521ae741cad142b2e462b96) \Device\Harddisk0\DR0\Partition0
13:42:18.0921 3776 \Device\Harddisk0\DR0\Partition0 - ok
13:42:18.0937 3776 Boot (0x1200) (3a2258e8ab37de7d74a0774b8fe2d899) \Device\Harddisk0\DR0\Partition1
13:42:18.0937 3776 \Device\Harddisk0\DR0\Partition1 - ok
13:42:18.0937 3776 ============================================================
13:42:18.0937 3776 Scan finished
13:42:18.0937 3776 ============================================================
13:42:18.0953 0232 Detected object count: 1
13:42:18.0953 0232 Actual detected object count: 1

[Rudy]

Máte nainstalován nějaký emulátor CD mechanik (Alcohol, DaemonTools) apod?

[smudy]

Mám alkohol 120% ale virtualni mechaniky odpojeny

[Rudy]

Pak je to v pořádku. Nastala nějaká změna?

[smudy]

Ne, ta havěť mi pořád při otevřeni mozzily otevírá ruzné stránky na některe mozzila sama upozorňuje, že jsou nebezpečné

[Rudy]

Udělejte sken AVPTool: http://forum.viry.cz/viewtopic.php?f=29&t=58179 a dejte log.

[smudy]

Status: Will be deleted when the computer is restarted (events: 5)
24.6.2012 16:01:26 Will be deleted when the computer is restarted Trojan program Trojan.Win32.Agent.soqa C:\Qoobox\Quarantine\C\Documents and Settings\Smudy\Nabídka Start\Programy\Po spuštění\fhyst.exe.vir High
24.6.2012 16:01:34 Will be deleted when the computer is restarted Trojan program Trojan.Win32.Agent.soqa C:\Qoobox\Quarantine\C\Documents and Settings\Smudy\Local Settings\Data aplikací\htiagq.exe.vir High
24.6.2012 16:01:40 Will be deleted when the computer is restarted Trojan program Trojan.Win32.Agent.soqa C:\System Volume Information\_restore{2C2BFA09-B66D-4404-871A-17FE60D6D376}\RP10\A0000746.exe High
24.6.2012 16:01:50 Will be deleted when the computer is restarted Trojan program Trojan.Win32.Agent.soqa C:\System Volume Information\_restore{2C2BFA09-B66D-4404-871A-17FE60D6D376}\RP10\A0000821.exe High
24.6.2012 16:01:56 Will be deleted when the computer is restarted Trojan program Trojan.Win32.Agent.soqa C:\System Volume Information\_restore{2C2BFA09-B66D-4404-871A-17FE60D6D376}\RP10\A0000822.exe High

[Rudy]

Měl jste ještě něco v záloze systému a záloze ComboFixu. Pokud změna nenastala, stáhněte, nainstalujte a spusťte SuperAntispyware: http://www.stahuj.centrum.cz/utility_a_ ... tispyware/ . Proveďte sken a vše, co najde, smažte.

[smudy]

Scan oběvil několik spywaru a další chavěť, odstraněno a snad už to bude v pořádku děkuji za pomoc

[Rudy]

Nemáte zač!