Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Podezřeni - Virus, Malware, Spyware v PC

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zamčeno
Zpráva
Autor
Lilly [FR]

Podezřeni - Virus, Malware, Spyware v PC

#1 Příspěvek od Lilly [FR] »

:?: Dobry den mam starosti o svůj počitač obavam se, ale nejsem si jista zda neni nakaženy vírem.V pc sestave je nainstalovana aplikace přimo z důveryhodného serveru :arrow: KOMERČNI BANKA - INTERNETOVE BANKOVNICTVI - JAWA ORACLE, bez teto aplikace nemůžu ovladat svůj mezinarodni učet na svůj počitač /Nakup, prodej, dobiti atd / Při těchto operacich mi chodíva na registračni mobilni čislo autorizačne kody z KB, ktere pokud nezadam nelze provest operace /Je to ochrana, zda učet ovlada original uživatel a ne zloděj nebo hacker /

:?: Začali mi v poslední době chodivat smsky s autorizačnym kodem o přesun peněz na jini neznamy učet, tyhle aktivity jsem teda neprovaděla a požadala jsem BANKU o dočasne zastavení učtu, dokud nebudu mit jistotu zda můj počitač je v pořadku.Kromě toho jsem si všimnula, že mi hrozně začina blbnout přehravani ADOBE FLASH PLAYER 11.00, prostě pokud PT myši nevyvolam menu obraz a přehravani videa na youtube nebo na steam serveru je nestabilní a jsou tam zatrhavaci procesy v max režimu zobrazeni, takže určite tam je nějaky vírus no nevim, byla bych rada, kdybych se spletla.

- Takže na zavěr než pošlu LOG z RSTI x64 Bit, ještě uvedu nove zabezpečeni v moje pc sestave a byla bych rada zda je to dobre zabezpečeni nebo něco k tomu chybi, možna to byla moje chyba volby a selhaní
- Avira FREE Antivirus /pořad aktivna a aktualizovana /
- Superantispyware FREE / není aktivny jenom aktualizuji a 2x do měsice ho pouzživam jenom jako jednorazovku na odplevnění spyware pak ho vypinam ohledem konfliktu /
- Firewal Comodo / pořad aktivny v režimu firewal security na ostatni režimy ma konflikt ohledem zprávy vice nainstalovaných antispywarových programu /
- 2x webovy scanner Avira a McAfee neni tam konflikt ani spomaleni browseru - scannery mě informuji o nebezpečnych web stranek, ktere zablokuji
- Ochrana E-Mail neni žadna nemůžu najit softwer co chrani e-mail antivirus avira to neumi

:arrow: Byla provedena aktualizace všech produktu a vykonany hloubkovy scan AVIRY a SUPERANTISPYWARE, ale nic nenašli

- Takže tady je LOG a předem děkuji za veškerou informační pomoc, budu jenom doufat, že PC je čiste.Použivala jsem ohledem bankovnictvi aj firemni počitač ve studiu, ale ten mě vůbec nezajima neni můj :lol: Omlouvam se za dlouhe psaní, ale jenom se snažim rozepsat co a jak, aby se zbytečne nestracel čas jsem si vědoma, že nejsem tady jedina co potřebuje pomoc.Takže jěště jedno děkuji za pomoc a přeji hezky den... :worship:
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#2 Příspěvek od Lilly [FR] »

Logfile of random's system information tool 1.09 (written by random/random)
Run by Skynet - 2010 at 2012-07-30 15:28:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 335 GB (60%) free of 559 GB
Total RAM: 6142 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:28:25, on 30.7.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Menič - Tapet\awplite.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\Internet Firefox\firefox.exe
C:\Program Files (x86)\Internet Firefox\plugin-container.exe
c:\PROGRA~2\mcafee\SITEAD~1\saui.exe
C:\Program Files\trend micro\Skynet - 2010.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java - Internet Banking\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java - Internet Banking\bin\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [awplite] C:\Program Files (x86)\Menič - Tapet\awplite.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BB9E5AD9-9C9E-60A6-EE59-C5F72FF09E6A}: NameServer = 93.153.117.1 93.153.117.33
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\guard32.dll
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\Firewal - Comodo\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\3.0.271\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\Tune-Up Utilities 2012\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10857 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Firewal - Comodo\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files (x86)\Tune-Up Utilities 2012\TuneUpUtilitiesService64.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2580
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000008c8
\??\C:\Windows\system32\conhost.exe "-876205972-1482566920-1741802441962771769-101027440148840588512622272381810862559
"C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-3480f7f0-0445-4e99-ba52-54ed1809d86b -SystemEventPortName:HostProcess-1f5a1143-da32-4fde-b8fd-73c0e4f6aff9 -IoCancelEventPortName:HostProcess-b1e4e7c5-6033-4ac2-b7c8-61d56bfb22f1 -NonStateChangingEventPortName:HostProcess-a15d5144-7947-4aa4-ba10-45ca8c5e1ac9 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:aea9ceb9-fd7f-4c39-b1d5-43193e4369dd
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\Program Files (x86)\Tune-Up Utilities 2012\TuneUpUtilitiesApp64.exe" /TUStart /pid:2544
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\SysWOW64\rundll32.exe" C:\Windows\Syswow64\cm108.dll,CMICtrlWnd
"C:\Program Files\Firewal - Comodo\COMODO\COMODO Internet Security\cfp.exe" -h
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Menič - Tapet\awplite.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Tune-Up Utilities 2012\TUAutoReactivator64.exe" "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Internet Firefox\firefox.exe"
"C:\Program Files (x86)\Internet Firefox\plugin-container.exe" --channel=1572.d89e110.1048378260 "C:\Program Files (x86)\McAfee\SiteAdvisor\NPMcFFPlg32.dll" 1C6DF6A37C10EA61 -greomni "C:\Program Files (x86)\Internet Firefox\omni.ja" 1572 "\\.\pipe\gecko-crash-server-pipe.1572" plugin
"c:\PROGRA~2\mcafee\SITEAD~1\saui.exe" -Embedding
"C:\Users\Skynet - 2010\4 - Poštova Schránka\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\Windows 7 Manager - Logon Background Changer.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Skynet - 2010\AppData\Roaming\Mozilla\Firefox\Profiles\s630gdzp.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
prefs.js - "keyword.URL" - "http://isearch.avg.com/search?cid=%7B4a ... &sap=ku&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.268 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.5.0]
"Description"=
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java - Internet Banking\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/SAFFPlugin]
"Description"=
"Path"=C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe Aplikace\Adobe Reader 10.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.268 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll

C:\Program Files (x86)\Internet Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Internet Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Internet Firefox\plugins\
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
QuickTimePlugin.class

C:\Program Files (x86)\Internet Firefox\searchplugins\
avg-secure-search.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Skynet - 2010\AppData\Roaming\Mozilla\Firefox\Profiles\s630gdzp.default\extensions\
toolbar@ask.com

C:\Users\Skynet - 2010\AppData\Roaming\Mozilla\Firefox\Profiles\s630gdzp.default\searchplugins\
askcom.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java - Internet Banking\bin\ssv.dll [2012-06-25 453104]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-06-19 4014280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2012-06-21 261568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-06-20 1519824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java - Internet Banking\bin\jp2ssv.dll [2012-06-25 157680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2012-06-21 261568]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-06-20 1519824]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Cm108Sound"=C:\Windows\syswow64\RunDll32.exe [2009-07-14 44544]
"COMODO Internet Security"=C:\Program Files\Firewal - Comodo\COMODO\COMODO Internet Security\cfp.exe [2012-03-11 9569096]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"T-Mobile Communication Centre"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2012-06-12 1368824]
"awplite"=C:\Program Files (x86)\Menič - Tapet\awplite.exe [2007-02-10 2607616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe [2012-06-20 1568976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverMax]
C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [2012-06-19 11324352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverMax_RESTART]
C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [2012-06-19 11324352]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2012-07-27 348624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\Windows\system32\guard64.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=32

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivermax.exe]
"Debugger=""C:\Program Files (x86)\Tune-Up Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstlink.exe]
"Debugger=""C:\Program Files (x86)\Tune-Up Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstview.exe]
"Debugger=""C:\Program Files (x86)\Tune-Up Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger=""C:\Program Files (x86)\Tune-Up Utilities 2012\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-07-30 15:28:14 ----D---- C:\rsit
2012-07-30 02:18:32 ----D---- C:\Program Files (x86)\Menič - Tapet
2012-07-30 02:00:37 ----A---- C:\Windows\system32\nvvsvc.exe
2012-07-30 02:00:37 ----A---- C:\Windows\system32\nvsvcr.dll
2012-07-30 02:00:37 ----A---- C:\Windows\system32\nvsvc64.dll
2012-07-30 02:00:37 ----A---- C:\Windows\system32\nvshext.dll
2012-07-30 02:00:37 ----A---- C:\Windows\system32\nvmctray.dll
2012-07-30 02:00:37 ----A---- C:\Windows\system32\nvcpl.dll
2012-07-30 01:59:56 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2012-07-30 01:59:56 ----A---- C:\Windows\system32\OpenCL.dll
2012-07-30 01:59:48 ----D---- C:\ProgramData\NVIDIA Corporation
2012-07-30 01:55:52 ----A---- C:\Windows\system32\nvhdap64.dll
2012-07-30 01:55:52 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2012-07-30 01:55:51 ----A---- C:\Windows\system32\nvir3dgenco6420142.dll
2012-07-30 01:55:51 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2012-07-30 01:55:50 ----A---- C:\Windows\system32\drivers\nvstusb.sys
2012-07-30 01:55:48 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2012-07-30 01:55:48 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2012-07-30 01:55:48 ----A---- C:\Windows\system32\nvwgf2umx.dll
2012-07-30 01:55:48 ----A---- C:\Windows\system32\nvumdshimx.dll
2012-07-30 01:55:47 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2012-07-30 01:55:47 ----A---- C:\Windows\system32\nvoglv64.dll
2012-07-30 01:55:46 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2012-07-30 01:55:46 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2012-07-30 01:55:46 ----A---- C:\Windows\system32\nvinitx.dll
2012-07-30 01:55:46 ----A---- C:\Windows\system32\nvgenco64.dll
2012-07-30 01:55:46 ----A---- C:\Windows\system32\nvdispco64.dll
2012-07-30 01:55:46 ----A---- C:\Windows\system32\nvdecodemft.dll
2012-07-30 01:55:46 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-07-30 01:55:45 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2012-07-30 01:55:45 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2012-07-30 01:55:45 ----A---- C:\Windows\system32\nvd3dumx.dll
2012-07-30 01:55:45 ----A---- C:\Windows\system32\nvcuvid.dll
2012-07-30 01:55:45 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-07-30 01:55:44 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2012-07-30 01:55:44 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2012-07-30 01:55:44 ----A---- C:\Windows\system32\nvcuda.dll
2012-07-30 01:55:39 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2012-07-30 01:55:39 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2012-07-30 01:55:39 ----A---- C:\Windows\system32\nvcompiler.dll
2012-07-30 01:55:39 ----A---- C:\Windows\system32\nvapi64.dll
2012-07-29 19:27:35 ----D---- C:\Program Files\Windows 7 - Manager
2012-07-29 01:48:38 ----D---- C:\Windows\pss
2012-07-29 01:31:18 ----D---- C:\ProgramData\BioWare
2012-07-28 20:30:28 ----D---- C:\Windows\SYSWOW64\AGEIA
2012-07-28 20:30:28 ----D---- C:\Program Files (x86)\AGEIA Technologies
2012-07-28 04:26:59 ----D---- C:\Program Files (x86)\Steam
2012-07-27 15:14:16 ----D---- C:\Users\Skynet - 2010\AppData\Roaming\Avira
2012-07-27 15:08:40 ----D---- C:\Program Files (x86)\Ask.com
2012-07-27 15:08:27 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2012-07-27 15:08:27 ----A---- C:\Windows\system32\drivers\avipbb.sys
2012-07-27 15:08:27 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2012-07-27 15:08:26 ----D---- C:\ProgramData\Avira
2012-07-27 15:08:26 ----D---- C:\Program Files (x86)\Avira
2012-07-26 00:38:46 ----D---- C:\Program Files (x86)\Reality Pump
2012-07-23 14:36:25 ----D---- C:\Program Files (x86)\T-Mobile
2012-07-23 14:24:05 ----A---- C:\Windows\system32\WdfCoInstaller01007.dll
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\WdfCoInstaller01007.dll
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\mod7700.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ewusbwwan.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ewusbmdm.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ewdcsc.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_usbenumfilter.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_juwwanecm.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_juextctrl.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_jucdcecm.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_jucdcacm.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_jubusenum.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_hwusbdev.sys
2012-07-23 14:24:05 ----A---- C:\Windows\system32\drivers\ew_hwupgrade.sys
2012-07-23 14:23:38 ----D---- C:\Program Files (x86)\Huawei
2012-07-23 06:06:17 ----D---- C:\Program Files\DIFX
2012-07-23 06:01:53 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2012-07-23 06:00:48 ----D---- C:\Program Files\Common Files\Motorola Shared
2012-07-22 03:07:13 ----HD---- C:\GvTemp
2012-07-22 01:10:40 ----D---- C:\Users\Skynet - 2010\AppData\Roaming\Spy Emergency
2012-07-21 21:40:04 ----A---- C:\Windows\system32\nvdispgenco64.dll
2012-07-19 00:15:08 ----D---- C:\Users\Skynet - 2010\AppData\Roaming\SUPERAntiSpyware.com
2012-07-19 00:14:36 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2012-07-13 02:22:03 ----A---- C:\Windows\system32\drivers\AmUStor.sys
2012-07-13 02:20:59 ----A---- C:\Windows\system32\RtNicProp64.dll
2012-07-13 02:20:59 ----A---- C:\Windows\system32\drivers\Rt630x64.sys
2012-07-11 18:52:48 ----A---- C:\Windows\system32\win32k.sys
2012-07-11 18:47:53 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-07-11 18:47:53 ----A---- C:\Windows\system32\mshtmled.dll
2012-07-11 18:47:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-07-11 18:47:52 ----A---- C:\Windows\SYSWOW64\url.dll
2012-07-11 18:47:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-07-11 18:47:52 ----A---- C:\Windows\system32\urlmon.dll
2012-07-11 18:47:52 ----A---- C:\Windows\system32\url.dll
2012-07-11 18:47:52 ----A---- C:\Windows\system32\iertutil.dll
2012-07-11 18:47:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-07-11 18:47:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-07-11 18:47:51 ----A---- C:\Windows\system32\ieUnatt.exe
2012-07-11 18:47:51 ----A---- C:\Windows\system32\ieui.dll
2012-07-11 18:47:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-07-11 18:47:49 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-07-11 18:47:49 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-07-11 18:47:49 ----A---- C:\Windows\system32\wininet.dll
2012-07-11 18:47:49 ----A---- C:\Windows\system32\jsproxy.dll
2012-07-11 18:47:49 ----A---- C:\Windows\system32\jscript9.dll
2012-07-11 18:47:49 ----A---- C:\Windows\system32\jscript.dll
2012-07-11 18:47:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-07-11 18:47:48 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-07-11 18:47:47 ----A---- C:\Windows\system32\mshtml.dll
2012-07-11 18:47:45 ----A---- C:\Windows\system32\ieframe.dll
2012-07-11 18:47:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-07-11 18:37:10 ----A---- C:\Windows\system32\shell32.dll
2012-07-11 18:37:09 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-07-11 18:36:13 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-07-11 18:36:12 ----A---- C:\Windows\system32\cdosys.dll
2012-07-11 18:00:44 ----A---- C:\Windows\system32\msxml6.dll
2012-07-11 18:00:43 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-07-11 18:00:43 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-07-11 18:00:43 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-07-11 18:00:43 ----A---- C:\Windows\system32\msxml3r.dll
2012-07-11 18:00:43 ----A---- C:\Windows\system32\msxml3.dll
2012-07-11 18:00:35 ----A---- C:\Windows\system32\schannel.dll
2012-07-11 18:00:35 ----A---- C:\Windows\system32\ncrypt.dll
2012-07-11 18:00:35 ----A---- C:\Windows\system32\drivers\cng.sys
2012-07-11 18:00:34 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-07-11 18:00:34 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-07-11 18:00:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-07-11 18:00:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-07-11 18:00:34 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-07-11 18:00:33 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-07-04 04:34:43 ----D---- C:\ProgramData\Comodo
2012-07-03 13:49:45 ----A---- C:\Windows\system32\browserchoice.exe
2012-07-02 17:52:59 ----D---- C:\Users\Skynet - 2010\AppData\Roaming\Ubisoft

======List of files/folders modified in the last 1 month======

2012-07-30 15:28:25 ----D---- C:\Windows\Temp
2012-07-30 15:28:25 ----D---- C:\Program Files\Trend micro
2012-07-30 15:20:01 ----D---- C:\Windows\system32\config
2012-07-30 15:07:56 ----D---- C:\Windows\Logs
2012-07-30 15:07:56 ----D---- C:\Windows\inf
2012-07-30 15:07:56 ----D---- C:\Windows
2012-07-30 14:58:43 ----D---- C:\Windows\SoftwareDistribution
2012-07-30 14:28:26 ----D---- C:\Windows\system32\Tasks
2012-07-30 14:28:25 ----D---- C:\Program Files\C-Cleaner
2012-07-30 14:05:44 ----SHD---- C:\System Volume Information
2012-07-30 13:37:03 ----D---- C:\Windows\System32
2012-07-30 13:37:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-07-30 13:32:50 ----D---- C:\ProgramData\NVIDIA
2012-07-30 05:46:46 ----SHD---- C:\Windows\Installer
2012-07-30 05:45:55 ----RSD---- C:\Windows\assembly
2012-07-30 05:40:32 ----D---- C:\Windows\SysWOW64
2012-07-30 02:51:59 ----D---- C:\Windows\ModemLogs
2012-07-30 02:47:37 ----D---- C:\Windows\system32\wbem
2012-07-30 02:46:58 ----D---- C:\Windows\Tasks
2012-07-30 02:46:58 ----D---- C:\Windows\system32\catroot2
2012-07-30 02:46:58 ----D---- C:\Windows\registration
2012-07-30 02:18:32 ----RD---- C:\Program Files (x86)
2012-07-30 02:02:25 ----D---- C:\Windows\system32\drivers
2012-07-30 02:02:25 ----D---- C:\Windows\system32\catroot
2012-07-30 02:02:24 ----D---- C:\Windows\system32\DriverStore
2012-07-30 02:00:27 ----D---- C:\Windows\Help
2012-07-30 02:00:27 ----D---- C:\Program Files\NVIDIA Corporation
2012-07-30 01:59:48 ----HD---- C:\ProgramData
2012-07-30 01:55:59 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-07-30 01:55:58 ----RHD---- C:\Users
2012-07-29 22:34:00 ----D---- C:\Users\Skynet - 2010\AppData\Roaming\uTorrent
2012-07-29 19:27:35 ----RD---- C:\Program Files
2012-07-29 02:11:28 ----D---- C:\Windows\system32\wfp
2012-07-29 02:11:27 ----D---- C:\Windows\SYSWOW64\migration
2012-07-29 02:11:27 ----D---- C:\Windows\system32\migration
2012-07-29 02:11:22 ----D---- C:\Windows\winsxs
2012-07-29 02:00:45 ----D---- C:\Windows\ShellNew
2012-07-29 02:00:44 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-07-29 02:00:41 ----D---- C:\Windows\PolicyDefinitions
2012-07-29 02:00:40 ----D---- C:\Windows\system32\cs-CZ
2012-07-27 13:39:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-07-23 18:15:47 ----D---- C:\ProgramData\Ubisoft
2012-07-23 17:34:46 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-07-23 17:34:46 ----D---- C:\Program Files (x86)\Ubisoft
2012-07-23 15:36:13 ----D---- C:\Users\Skynet - 2010\AppData\Roaming\DAEMON Tools Pro
2012-07-23 13:52:33 ----D---- C:\Windows\system32\NDF
2012-07-23 06:00:48 ----D---- C:\Program Files\Common Files
2012-07-22 03:04:27 ----D---- C:\Program Files\Speccy - Informator
2012-07-21 01:31:19 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2012-07-20 19:26:50 ----D---- C:\Program Files (x86)\McAfee
2012-07-19 00:15:08 ----D---- C:\Program Files\Antispyware - Super Anti-Spyware
2012-07-18 23:46:49 ----D---- C:\Program Files (x86)\Internet Firefox
2012-07-18 22:53:15 ----D---- C:\Windows\Prefetch
2012-07-18 20:55:58 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-07-11 19:16:14 ----D---- C:\Windows\debug
2012-07-11 18:53:49 ----D---- C:\Program Files (x86)\Internet Explorer
2012-07-11 18:53:44 ----D---- C:\Program Files\Internet Explorer
2012-07-11 18:52:47 ----D---- C:\ProgramData\Microsoft Help
2012-07-11 18:52:36 ----A---- C:\Windows\win.ini
2012-07-11 18:49:04 ----A---- C:\Windows\system32\MRT.exe
2012-07-04 05:57:45 ----D---- C:\Program Files\Firewal - Comodo
2012-07-04 04:24:29 ----SD---- C:\ProgramData\Microsoft
2012-07-04 04:19:41 ----D---- C:\Program Files (x86)\Microsoft Security Client
2012-07-03 18:21:18 ----A---- C:\Windows\system32\aswBoot.exe
2012-07-01 14:55:08 ----D---- C:\Program Files\Common Files\Microsoft Shared

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdide64;amdide64; C:\Windows\system32\DRIVERS\amdide64.sys [2011-12-17 11904]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2011-12-29 35120]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-03-20 203888]
R0 MxEFUF;Matrox Extio Upper Function Filter; C:\Windows\system32\DRIVERS\MxEFUF64.sys [2011-10-20 157696]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2012-01-05 277088]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-01-04 530488]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273); C:\Windows\system32\DRIVERS\tdrpm273.sys [2012-01-05 1263200]
R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2012-01-05 970336]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-03-07 28504]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2012-07-27 132832]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2011-09-16 27760]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2012-03-11 577824]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2012-03-11 43248]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-04 272448]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2012-02-03 93200]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2012-07-27 98848]
R2 ntk_PowerDVD12;ntk_PowerDVD12; \??\C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [2011-10-27 82928]
R2 ubsbm;Unibrain 1394 SBM Driver; C:\Windows\system32\DRIVERS\ubsbm.sys [2011-09-13 24064]
R2 ubumapi;Unibrain 1394 FireAPI Driver; C:\Windows\system32\DRIVERS\ubumapi.sys [2011-09-13 92160]
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2012-01-05 285280]
R3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2012-04-20 97880]
R3 CT20XUT.SYS;CT20XUT.SYS; C:\Windows\System32\drivers\CT20XUT.SYS [2011-08-11 230488]
R3 ctaud2k;Creative Audio Driver (WDM); C:\Windows\system32\drivers\ctaud2k.sys [2011-08-11 700632]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS; C:\Windows\System32\drivers\CTEXFIFX.SYS [2011-08-11 1445976]
R3 CTHWIUT.SYS;CTHWIUT.SYS; C:\Windows\System32\drivers\CTHWIUT.SYS [2011-08-11 95320]
R3 ctprxy2k;Creative Proxy Driver; C:\Windows\system32\drivers\ctprxy2k.sys [2011-08-11 15960]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\Windows\system32\drivers\ctsfm2k.sys [2011-08-11 213080]
R3 emupia;E-mu Plug-in Architecture Driver; C:\Windows\system32\drivers\emupia2k.sys [2011-08-11 118360]
R3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2010-03-20 13952]
R3 ha20x22k;Creative 20X2 HAL Driver; C:\Windows\system32\drivers\ha20x22k.sys [2011-08-11 1613400]
R3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2011-09-09 98304]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2011-09-09 87040]
R3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2011-09-09 28672]
R3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [2011-09-09 218624]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-04-24 4028520]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
R3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\Windows\system32\DRIVERS\nvstusb.sys [2012-05-15 398656]
R3 ossrv;Creative OS Services Driver; C:\Windows\system32\drivers\ctoss2k.sys [2011-08-11 179288]
R3 RTLE8023x64;Realtek 10/100/1000 PCI-E NIC Family NDIS XP(x64) Driver; C:\Windows\system32\DRIVERS\Rtenic64.sys [2012-05-25 438376]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2012-01-07 34032]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\Tune-Up Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-12-12 11856]
R3 ubohci;Unibrain 1394 OHCI Driver; C:\Windows\system32\DRIVERS\ubohci.sys [2011-09-13 132608]
R3 USBPNPA;USB PnP Sound Device Interface; C:\Windows\system32\drivers\CM10864.sys [2010-08-12 1310720]
S1 SASDIFSV;SASDIFSV; \??\C:\Program Files\Super Anti-Spyware\SASDIFSV64.SYS []
S1 SASKUTIL;SASKUTIL; \??\C:\Program Files\Super Anti-Spyware\SASKUTIL64.SYS []
S3 CT20XUT;CT20XUT; C:\Windows\system32\drivers\CT20XUT.SYS [2011-08-11 230488]
S3 ctac32k;Creative AC3 Software Decoder; C:\Windows\system32\drivers\ctac32k.sys [2011-08-11 580696]
S3 CTEXFIFX;CTEXFIFX; C:\Windows\system32\drivers\CTEXFIFX.SYS [2011-08-11 1445976]
S3 CTHWIUT;CTHWIUT; C:\Windows\system32\drivers\CTHWIUT.SYS [2011-08-11 95320]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ewusbmbb;HUAWEI USB-WWAN miniport; C:\Windows\system32\DRIVERS\ewusbwwan.sys [2011-10-24 422400]
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys []
S3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2009-11-02 25088]
S3 gMouUsb;USB Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb.sys [2009-11-02 14336]
S3 ha20x2k;Creative 20X HAL Driver; C:\Windows\system32\drivers\ha20x2k.sys [2011-08-11 1568344]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2010-10-08 32768]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-08-16 223232]
S3 hwmassfilter;HUAWEI Mass Storage Filter Driver; C:\Windows\system32\DRIVERS\ewmassfilter.sys [2009-06-26 10240]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-03-16 685672]
S3 RTL8168;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-12 683664]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 whfltr2k;WheelMouse USB Lower Filter Driver; C:\Windows\system32\DRIVERS\whfltr2k.sys [2009-09-17 10368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2010-12-17 1112664]
R2 afcdpsrv;Služba Acronis Nonstop Backup; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2012-01-05 3246040]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2012-06-12 124856]
R2 AntiVirService;Avira Realtime Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2012-07-27 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2012-07-27 86224]
R2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2012-07-27 465360]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\Firewal - Comodo\COMODO\COMODO Internet Security\cmdagent.exe [2012-03-11 2815496]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [2012-06-15 103472]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-05-15 889664]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-06-12 75136]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2010-08-19 386344]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\Tune-Up Utilities 2012\TuneUpUtilitiesService64.exe [2011-12-14 2123584]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-27 250056]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-12-31 79360]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\3.0.271\McCHSvc.exe [2012-03-13 237272]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-18 113120]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-07-28 529232]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-31 1255736]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S4 CLHNServiceForPowerDVD12;CLHNServiceForPowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [2012-01-12 87336]
S4 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2010-02-12 286720]
S4 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2012-01-12 75048]
S4 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2012-01-12 296232]
S4 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu; c:\program files (x86)\steam\steamapps\common\dragon age origins\bin_ship\DAUpdaterSvc.Service.exe [2012-07-28 25832]
S4 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S4 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-06-19 3048136]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-06-14 160944]
S4 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files (x86)\Acronis Manager\Hardisk Spravce\OSS\reinstall_svc.exe [2010-07-07 2156952]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S4 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

-----------------EOF-----------------
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#3 Příspěvek od Lilly [FR] »

Zdravim NAUGHTY :) , posilam ty loga, ale dalo mi zabrat než jsem tady vubec něco našla ke staženi můsela jsem se podivat do historie, kde zůstaly odkazy ke staženi po moderatorovi VYOSEK

Na OTL a Mbscan zareagoval můj webovy scanner McAfee hlasi to jako nebezpečny soubor, jelikož to je od tebe mam jistotu, že to je falešna detekce tak jsem povolila stahovani a vstup do počitače.
Kdyby mi tohle dal někdo na jiních web.strankach věř mi, že bych to ignorovala a zakazala stažení.Takže mame důvěru kvůli tebe a tomuhle serveru, který jsem si oblibila a mam ho velice rada :thumbsup:

:arrow: Log: Kaspersky Killer

17:18:44.0064 1844 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
17:18:46.0066 1844 ============================================================
17:18:46.0066 1844 Current date / time: 2012/07/30 17:18:46.0066
17:18:46.0066 1844 SystemInfo:
17:18:46.0066 1844
17:18:46.0066 1844 OS Version: 6.1.7601 ServicePack: 1.0
17:18:46.0066 1844 Product type: Workstation
17:18:46.0067 1844 ComputerName: AMD-POČITAČ
17:18:46.0067 1844 UserName: Skynet - 2010
17:18:46.0067 1844 Windows directory: C:\Windows
17:18:46.0067 1844 System windows directory: C:\Windows
17:18:46.0067 1844 Running under WOW64
17:18:46.0067 1844 Processor architecture: Intel x64
17:18:46.0067 1844 Number of processors: 4
17:18:46.0067 1844 Page size: 0x1000
17:18:46.0067 1844 Boot type: Normal boot
17:18:46.0067 1844 ============================================================
17:18:47.0144 1844 Drive \Device\Harddisk0\DR0 - Size: 0x950AC4DE00 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x14300, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
17:18:47.0184 1844 Drive \Device\Harddisk6\DR6 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:18:57.0763 1844 ============================================================
17:18:57.0763 1844 \Device\Harddisk0\DR0:
17:18:57.0769 1844 MBR partitions:
17:18:57.0769 1844 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:18:57.0769 1844 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x443CBFF9
17:18:57.0769 1844 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x443FE800, BlocksNum 0x6457000
17:18:57.0769 1844 \Device\Harddisk6\DR6:
17:18:57.0770 1844 MBR partitions:
17:18:57.0770 1844 \Device\Harddisk6\DR6\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E07482
17:18:57.0770 1844 ============================================================
17:18:57.0785 1844 C: <-> \Device\Harddisk0\DR0\Partition1
17:18:57.0829 1844 D: <-> \Device\Harddisk0\DR0\Partition2
17:18:57.0884 1844 J: <-> \Device\Harddisk6\DR6\Partition0
17:18:57.0884 1844 ============================================================
17:18:57.0884 1844 Initialize success
17:18:57.0884 1844 ============================================================
17:19:12.0929 1344 ============================================================
17:19:12.0929 1344 Scan started
17:19:12.0929 1344 Mode: Manual; SigCheck; TDLFS;
17:19:12.0929 1344 ============================================================
17:19:13.0529 1344 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:19:13.0597 1344 1394ohci - ok
17:19:13.0629 1344 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:19:13.0644 1344 ACPI - ok
17:19:13.0658 1344 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:19:13.0690 1344 AcpiPmi - ok
17:19:13.0798 1344 AcrSch2Svc (5500073ea319e320952a021402ebc23e) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
17:19:13.0825 1344 AcrSch2Svc - ok
17:19:13.0886 1344 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:19:13.0913 1344 AdobeARMservice - ok
17:19:14.0012 1344 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:19:14.0036 1344 AdobeFlashPlayerUpdateSvc - ok
17:19:14.0141 1344 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:19:14.0162 1344 adp94xx - ok
17:19:14.0195 1344 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:19:14.0208 1344 adpahci - ok
17:19:14.0276 1344 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:19:14.0308 1344 adpu320 - ok
17:19:14.0329 1344 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:19:14.0366 1344 AeLookupSvc - ok
17:19:14.0408 1344 afcdp (ae1fce2cd1e99bea89183ba8cd320872) C:\Windows\system32\DRIVERS\afcdp.sys
17:19:14.0450 1344 afcdp - ok
17:19:14.0751 1344 afcdpsrv (af44f7e027037628f1fac3c13cde73e6) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
17:19:14.0805 1344 afcdpsrv - ok
17:19:14.0920 1344 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:19:14.0951 1344 AFD - ok
17:19:14.0976 1344 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:19:14.0986 1344 agp440 - ok
17:19:15.0007 1344 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:19:15.0018 1344 ALG - ok
17:19:15.0024 1344 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:19:15.0034 1344 aliide - ok
17:19:15.0042 1344 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:19:15.0051 1344 amdide - ok
17:19:15.0065 1344 amdide64 (0db2df2b692a3f70443fd14d7920f249) C:\Windows\system32\DRIVERS\amdide64.sys
17:19:15.0079 1344 amdide64 - ok
17:19:15.0097 1344 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:19:15.0121 1344 AmdK8 - ok
17:19:15.0126 1344 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:19:15.0136 1344 AmdPPM - ok
17:19:15.0161 1344 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:19:15.0171 1344 amdsata - ok
17:19:15.0190 1344 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:19:15.0201 1344 amdsbs - ok
17:19:15.0204 1344 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:19:15.0213 1344 amdxata - ok
17:19:15.0277 1344 ameisvc (950305bb9ab6207c3e53f90e4b6bc787) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
17:19:15.0300 1344 ameisvc - ok
17:19:15.0329 1344 AmUStor (64053d3aa5cfef3d81cd152f00ec09f5) C:\Windows\system32\drivers\AmUStor.SYS
17:19:15.0354 1344 AmUStor - ok
17:19:15.0481 1344 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:19:15.0508 1344 AntiVirSchedulerService - ok
17:19:15.0556 1344 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:19:15.0584 1344 AntiVirService - ok
17:19:15.0649 1344 AntiVirWebService (e38ba9fab3981a2115c53260b930fd3c) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
17:19:15.0671 1344 AntiVirWebService - ok
17:19:15.0694 1344 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:19:15.0753 1344 AppID - ok
17:19:15.0780 1344 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:19:15.0820 1344 AppIDSvc - ok
17:19:15.0836 1344 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:19:15.0881 1344 Appinfo - ok
17:19:15.0900 1344 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:19:15.0911 1344 arc - ok
17:19:15.0927 1344 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:19:15.0938 1344 arcsas - ok
17:19:15.0950 1344 aswKbd (316271cc32fdfffcdb30677684906d5e) C:\Windows\system32\drivers\aswKbd.sys
17:19:15.0966 1344 aswKbd - ok
17:19:15.0979 1344 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:19:16.0016 1344 AsyncMac - ok
17:19:16.0035 1344 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:19:16.0045 1344 atapi - ok
17:19:16.0100 1344 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:19:16.0139 1344 AudioEndpointBuilder - ok
17:19:16.0145 1344 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:19:16.0177 1344 AudioSrv - ok
17:19:16.0215 1344 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
17:19:16.0232 1344 avgntflt - ok
17:19:16.0283 1344 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
17:19:16.0301 1344 avipbb - ok
17:19:16.0334 1344 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
17:19:16.0350 1344 avkmgr - ok
17:19:16.0390 1344 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:19:16.0406 1344 AxInstSV - ok
17:19:16.0457 1344 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:19:16.0508 1344 b06bdrv - ok
17:19:16.0542 1344 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:19:16.0561 1344 b57nd60a - ok
17:19:16.0594 1344 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:19:16.0605 1344 BDESVC - ok
17:19:16.0616 1344 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:19:16.0644 1344 Beep - ok
17:19:16.0702 1344 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:19:16.0769 1344 BFE - ok
17:19:16.0820 1344 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
17:19:16.0855 1344 BITS - ok
17:19:16.0872 1344 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:19:16.0910 1344 blbdrive - ok
17:19:16.0932 1344 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:19:16.0946 1344 bowser - ok
17:19:16.0955 1344 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:19:16.0983 1344 BrFiltLo - ok
17:19:16.0991 1344 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:19:17.0006 1344 BrFiltUp - ok
17:19:17.0029 1344 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:19:17.0057 1344 Browser - ok
17:19:17.0099 1344 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:19:17.0131 1344 Brserid - ok
17:19:17.0149 1344 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:19:17.0169 1344 BrSerWdm - ok
17:19:17.0185 1344 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:19:17.0214 1344 BrUsbMdm - ok
17:19:17.0228 1344 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:19:17.0265 1344 BrUsbSer - ok
17:19:17.0287 1344 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:19:17.0303 1344 BTHMODEM - ok
17:19:17.0334 1344 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:19:17.0369 1344 bthserv - ok
17:19:17.0375 1344 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:19:17.0411 1344 cdfs - ok
17:19:17.0445 1344 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:19:17.0456 1344 cdrom - ok
17:19:17.0481 1344 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:19:17.0508 1344 CertPropSvc - ok
17:19:17.0523 1344 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:19:17.0536 1344 circlass - ok
17:19:17.0577 1344 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:19:17.0611 1344 CLFS - ok
17:19:17.0699 1344 CLHNServiceForPowerDVD12 (4c6406cf07d4ebb70c5774d55c6688fb) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
17:19:17.0727 1344 CLHNServiceForPowerDVD12 - ok
17:19:17.0800 1344 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:19:17.0831 1344 clr_optimization_v2.0.50727_32 - ok
17:19:17.0867 1344 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:19:17.0879 1344 clr_optimization_v2.0.50727_64 - ok
17:19:17.0915 1344 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:19:17.0928 1344 clr_optimization_v4.0.30319_32 - ok
17:19:17.0951 1344 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:19:17.0963 1344 clr_optimization_v4.0.30319_64 - ok
17:19:17.0999 1344 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:19:18.0027 1344 CmBatt - ok
17:19:18.0267 1344 cmdAgent (cee48ccc4d561ddb19c72f9fb55d28d5) C:\Program Files\Firewal - Comodo\COMODO\COMODO Internet Security\cmdagent.exe
17:19:18.0324 1344 cmdAgent - ok
17:19:18.0450 1344 cmdGuard (0599d5a458d4e0e37ab84e9d1c5c73e5) C:\Windows\system32\DRIVERS\cmdguard.sys
17:19:18.0493 1344 cmdGuard - ok
17:19:18.0505 1344 cmdHlp (2d3e08c7106f748f9eff3dec14142d3e) C:\Windows\system32\DRIVERS\cmdhlp.sys
17:19:18.0524 1344 cmdHlp - ok
17:19:18.0541 1344 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:19:18.0553 1344 cmdide - ok
17:19:18.0601 1344 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
17:19:18.0642 1344 CNG - ok
17:19:18.0656 1344 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:19:18.0665 1344 Compbatt - ok
17:19:18.0688 1344 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:19:18.0701 1344 CompositeBus - ok
17:19:18.0703 1344 COMSysApp - ok
17:19:18.0749 1344 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:19:18.0777 1344 crcdisk - ok
17:19:18.0815 1344 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:19:18.0849 1344 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:19:18.0849 1344 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:19:18.0900 1344 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
17:19:18.0930 1344 CryptSvc - ok
17:19:18.0965 1344 CT20XUT (d7f36860b025f19faf8c7172f84ba01c) C:\Windows\system32\drivers\CT20XUT.SYS
17:19:18.0989 1344 CT20XUT - ok
17:19:18.0994 1344 CT20XUT.SYS (d7f36860b025f19faf8c7172f84ba01c) C:\Windows\System32\drivers\CT20XUT.SYS
17:19:19.0016 1344 CT20XUT.SYS - ok
17:19:19.0058 1344 ctac32k (f5964c14c10497317901e6776ccda2ca) C:\Windows\system32\drivers\ctac32k.sys
17:19:19.0079 1344 ctac32k - ok
17:19:19.0150 1344 ctaud2k (d778e18645602cc567b055a30c6a35b4) C:\Windows\system32\drivers\ctaud2k.sys
17:19:19.0192 1344 ctaud2k - ok
17:19:19.0259 1344 CTAudSvcService (5ce3d0e1d1b3832ee052cfc442eee0fa) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:19:19.0285 1344 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
17:19:19.0285 1344 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
17:19:19.0426 1344 CTEXFIFX (cd77e1ddabd5fe8cf9f41147437c11e3) C:\Windows\system32\drivers\CTEXFIFX.SYS
17:19:19.0468 1344 CTEXFIFX - ok
17:19:19.0673 1344 CTEXFIFX.SYS (cd77e1ddabd5fe8cf9f41147437c11e3) C:\Windows\System32\drivers\CTEXFIFX.SYS
17:19:19.0712 1344 CTEXFIFX.SYS - ok
17:19:19.0774 1344 CTHWIUT (b786e3f9970231d3203c8d7d9fb31074) C:\Windows\system32\drivers\CTHWIUT.SYS
17:19:19.0807 1344 CTHWIUT - ok
17:19:19.0811 1344 CTHWIUT.SYS (b786e3f9970231d3203c8d7d9fb31074) C:\Windows\System32\drivers\CTHWIUT.SYS
17:19:19.0831 1344 CTHWIUT.SYS - ok
17:19:19.0834 1344 ctprxy2k (133c4c45e1b68f49a9ceba88973f60e2) C:\Windows\system32\drivers\ctprxy2k.sys
17:19:19.0849 1344 ctprxy2k - ok
17:19:19.0867 1344 ctsfm2k (9b670f98b9d35274c13acc36f341c070) C:\Windows\system32\drivers\ctsfm2k.sys
17:19:19.0884 1344 ctsfm2k - ok
17:19:19.0941 1344 CyberLink PowerDVD 12 Media Server Monitor Service (ea22bca708b37b82adebc822a171b92e) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
17:19:19.0967 1344 CyberLink PowerDVD 12 Media Server Monitor Service - ok
17:19:20.0015 1344 CyberLink PowerDVD 12 Media Server Service (3168d2f171a64590e7a11355cae60a1e) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
17:19:20.0042 1344 CyberLink PowerDVD 12 Media Server Service - ok
17:19:20.0190 1344 DAUpdaterSvc (914a7156b0c0f10be645a02e13f576b2) c:\program files (x86)\steam\steamapps\common\dragon age origins\bin_ship\DAUpdaterSvc.Service.exe
17:19:20.0214 1344 DAUpdaterSvc - ok
17:19:20.0269 1344 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:19:20.0315 1344 DcomLaunch - ok
17:19:20.0353 1344 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:19:20.0383 1344 defragsvc - ok
17:19:20.0403 1344 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:19:20.0431 1344 DfsC - ok
17:19:20.0464 1344 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:19:20.0506 1344 Dhcp - ok
17:19:20.0534 1344 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:19:20.0562 1344 discache - ok
17:19:20.0567 1344 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:19:20.0578 1344 Disk - ok
17:19:20.0609 1344 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:19:20.0621 1344 Dnscache - ok
17:19:20.0657 1344 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:19:20.0696 1344 dot3svc - ok
17:19:20.0729 1344 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:19:20.0764 1344 DPS - ok
17:19:20.0777 1344 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:19:20.0789 1344 drmkaud - ok
17:19:20.0826 1344 dtsoftbus01 (1cecd1252261153c7873b5d9eb259d65) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:19:20.0844 1344 dtsoftbus01 - ok
17:19:20.0931 1344 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:19:20.0977 1344 DXGKrnl - ok
17:19:21.0010 1344 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:19:21.0060 1344 EapHost - ok
17:19:21.0327 1344 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:19:21.0378 1344 ebdrv - ok
17:19:21.0469 1344 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:19:21.0513 1344 EFS - ok
17:19:21.0581 1344 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:19:21.0597 1344 ehRecvr - ok
17:19:21.0638 1344 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:19:21.0650 1344 ehSched - ok
17:19:21.0722 1344 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:19:21.0755 1344 elxstor - ok
17:19:21.0786 1344 emupia (5af6de61e2cb029c2c9be268d69f2bb8) C:\Windows\system32\drivers\emupia2k.sys
17:19:21.0805 1344 emupia - ok
17:19:21.0823 1344 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:19:21.0836 1344 ErrDev - ok
17:19:21.0877 1344 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:19:21.0919 1344 EventSystem - ok
17:19:21.0979 1344 ewusbmbb (404ec152190e79dcf757aebd9b166ea3) C:\Windows\system32\DRIVERS\ewusbwwan.sys
17:19:21.0992 1344 ewusbmbb - ok
17:19:21.0995 1344 ewusbnet - ok
17:19:22.0059 1344 ew_hwusbdev (86f7951bbcee4a86e79a97306bd14318) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
17:19:22.0071 1344 ew_hwusbdev - ok
17:19:22.0112 1344 ew_usbenumfilter (55e0eda185869f7ea67ea97fd0655b39) C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
17:19:22.0136 1344 ew_usbenumfilter - ok
17:19:22.0159 1344 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:19:22.0190 1344 exfat - ok
17:19:22.0214 1344 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:19:22.0253 1344 fastfat - ok
17:19:22.0343 1344 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:19:22.0381 1344 Fax - ok
17:19:22.0392 1344 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:19:22.0412 1344 fdc - ok
17:19:22.0431 1344 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:19:22.0467 1344 fdPHost - ok
17:19:22.0473 1344 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:19:22.0501 1344 FDResPub - ok
17:19:22.0515 1344 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:19:22.0525 1344 FileInfo - ok
17:19:22.0537 1344 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:19:22.0572 1344 Filetrace - ok
17:19:22.0581 1344 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:19:22.0591 1344 flpydisk - ok
17:19:22.0631 1344 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:19:22.0644 1344 FltMgr - ok
17:19:22.0756 1344 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:19:22.0792 1344 FontCache - ok
17:19:22.0822 1344 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:19:22.0845 1344 FontCache3.0.0.0 - ok
17:19:22.0879 1344 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:19:22.0891 1344 FsDepends - ok
17:19:22.0911 1344 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:19:22.0921 1344 Fs_Rec - ok
17:19:22.0986 1344 Futuremark SystemInfo Service (79b4cde2b69ed8ba4011859780a66a4d) C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
17:19:23.0009 1344 Futuremark SystemInfo Service - ok
17:19:23.0026 1344 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:19:23.0044 1344 fvevol - ok
17:19:23.0053 1344 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:19:23.0063 1344 gagp30kx - ok
17:19:23.0090 1344 gHidPnp (3dde7c6713d699bfd78227de882ce438) C:\Windows\system32\Drivers\gHidPnp.Sys
17:19:23.0099 1344 gHidPnp - ok
17:19:23.0109 1344 gMouUsb (86b350ece3101d33680537a571fe3a83) C:\Windows\system32\DRIVERS\gMouUsb.sys
17:19:23.0119 1344 gMouUsb - ok
17:19:23.0196 1344 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:19:23.0274 1344 gpsvc - ok
17:19:23.0425 1344 ha20x22k (ec2d3b3e6c27a7e9e93dc194c1ff13a5) C:\Windows\system32\drivers\ha20x22k.sys
17:19:23.0470 1344 ha20x22k - ok
17:19:23.0695 1344 ha20x2k (1b04a2f6cd01468b5daf4699e203c3e2) C:\Windows\system32\drivers\ha20x2k.sys
17:19:23.0739 1344 ha20x2k - ok
17:19:23.0798 1344 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:19:23.0832 1344 hcw85cir - ok
17:19:24.0099 1344 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:19:24.0119 1344 HdAudAddService - ok
17:19:24.0136 1344 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:19:24.0149 1344 HDAudBus - ok
17:19:24.0162 1344 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:19:24.0172 1344 HidBatt - ok
17:19:24.0195 1344 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:19:24.0216 1344 HidBth - ok
17:19:24.0229 1344 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:19:24.0250 1344 HidIr - ok
17:19:24.0268 1344 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:19:24.0296 1344 hidserv - ok
17:19:24.0308 1344 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:19:24.0318 1344 HidUsb - ok
17:19:24.0346 1344 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:19:24.0374 1344 hkmsvc - ok
17:19:24.0417 1344 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:19:24.0449 1344 HomeGroupListener - ok
17:19:24.0527 1344 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:19:24.0564 1344 HomeGroupProvider - ok
17:19:24.0580 1344 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:19:24.0594 1344 HpSAMD - ok
17:19:24.0674 1344 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:19:24.0745 1344 HTTP - ok
17:19:24.0771 1344 Huawei (f572b7467b5cb4fa8fb6319575902e41) C:\Windows\system32\DRIVERS\ewdcsc.sys
17:19:24.0782 1344 Huawei - ok
17:19:24.0816 1344 huawei_cdcacm (91971bcd780d6063df90de4f1df10c2f) C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
17:19:24.0826 1344 huawei_cdcacm - ok
17:19:24.0862 1344 huawei_enumerator (cce3db0ba3c615caa321eb1301532688) C:\Windows\system32\DRIVERS\ew_jubusenum.sys
17:19:24.0893 1344 huawei_enumerator - ok
17:19:24.0931 1344 huawei_ext_ctrl (c4bc37b9e5e54a50b2aa458f1fca428c) C:\Windows\system32\DRIVERS\ew_juextctrl.sys
17:19:24.0942 1344 huawei_ext_ctrl - ok
17:19:24.0990 1344 huawei_wwanecm (b3d171e4ed0b89ad49049556541f1dc3) C:\Windows\system32\DRIVERS\ew_juwwanecm.sys
17:19:25.0017 1344 huawei_wwanecm - ok
17:19:25.0051 1344 hwdatacard (ce93b8af848fe2aa44455a4769c1bc8a) C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:19:25.0067 1344 hwdatacard - ok
17:19:25.0088 1344 hwmassfilter (019aa7829c7f1d253593d72818499e51) C:\Windows\system32\DRIVERS\ewmassfilter.sys
17:19:25.0097 1344 hwmassfilter - ok
17:19:25.0114 1344 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:19:25.0124 1344 hwpolicy - ok
17:19:25.0128 1344 hwusbdev - ok
17:19:25.0155 1344 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:19:25.0166 1344 i8042prt - ok
17:19:25.0219 1344 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:19:25.0233 1344 iaStorV - ok
17:19:25.0286 1344 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
17:19:25.0309 1344 IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:19:25.0309 1344 IDriverT - detected UnsignedFile.Multi.Generic (1)
17:19:25.0431 1344 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:19:25.0474 1344 idsvc - ok
17:19:25.0563 1344 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:19:25.0590 1344 iirsp - ok
17:19:25.0682 1344 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:19:25.0739 1344 IKEEXT - ok
17:19:25.0759 1344 inspect (efff0afd27cc97bf0e5e0bab78419de7) C:\Windows\system32\DRIVERS\inspect.sys
17:19:25.0775 1344 inspect - ok
17:19:26.0077 1344 IntcAzAudAddService (02674201ad9fe19ac3376705077882c6) C:\Windows\system32\drivers\RTKVHD64.sys
17:19:26.0145 1344 IntcAzAudAddService - ok
17:19:26.0224 1344 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:19:26.0250 1344 intelide - ok
17:19:26.0269 1344 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:19:26.0293 1344 intelppm - ok
17:19:26.0317 1344 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:19:26.0370 1344 IPBusEnum - ok
17:19:26.0390 1344 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:19:26.0425 1344 IpFilterDriver - ok
17:19:26.0484 1344 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:19:26.0522 1344 iphlpsvc - ok
17:19:26.0544 1344 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:19:26.0556 1344 IPMIDRV - ok
17:19:26.0572 1344 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:19:26.0607 1344 IPNAT - ok
17:19:26.0619 1344 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:19:26.0639 1344 IRENUM - ok
17:19:26.0654 1344 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:19:26.0664 1344 isapnp - ok
17:19:26.0692 1344 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:19:26.0706 1344 iScsiPrt - ok
17:19:26.0851 1344 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:19:26.0879 1344 kbdclass - ok
17:19:26.0902 1344 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
17:19:26.0919 1344 kbdhid - ok
17:19:26.0943 1344 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:19:26.0954 1344 KeyIso - ok
17:19:26.0980 1344 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
17:19:26.0990 1344 KSecDD - ok
17:19:27.0001 1344 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
17:19:27.0013 1344 KSecPkg - ok
17:19:27.0020 1344 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:19:27.0055 1344 ksthunk - ok
17:19:27.0099 1344 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:19:27.0158 1344 KtmRm - ok
17:19:27.0190 1344 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
17:19:27.0220 1344 LanmanServer - ok
17:19:27.0249 1344 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:19:27.0278 1344 LanmanWorkstation - ok
17:19:27.0299 1344 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:19:27.0327 1344 lltdio - ok
17:19:27.0364 1344 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:19:27.0407 1344 lltdsvc - ok
17:19:27.0418 1344 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:19:27.0453 1344 lmhosts - ok
17:19:27.0463 1344 LPCFilter (a5080ff109574e41abf38bbd73ea2405) C:\Windows\system32\DRIVERS\LPCFilter.sys
17:19:27.0478 1344 LPCFilter - ok
17:19:27.0497 1344 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:19:27.0508 1344 LSI_FC - ok
17:19:27.0524 1344 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:19:27.0535 1344 LSI_SAS - ok
17:19:27.0553 1344 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:19:27.0563 1344 LSI_SAS2 - ok
17:19:27.0573 1344 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:19:27.0584 1344 LSI_SCSI - ok
17:19:27.0592 1344 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:19:27.0632 1344 luafv - ok
17:19:27.0666 1344 MarvinBus (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
17:19:27.0677 1344 MarvinBus - ok
17:19:27.0743 1344 McAfee SiteAdvisor Service (b891e3920f24ff1a3bead6cd2b42ed99) c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
17:19:27.0782 1344 McAfee SiteAdvisor Service - ok
17:19:27.0822 1344 McComponentHostService (485405de203e88b3fe4294a2ea48d7ee) C:\Program Files (x86)\McAfee Security Scan\3.0.271\McCHSvc.exe
17:19:27.0850 1344 McComponentHostService - ok
17:19:27.0881 1344 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:19:27.0907 1344 Mcx2Svc - ok
17:19:27.0928 1344 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:19:27.0944 1344 megasas - ok
17:19:27.0970 1344 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:19:27.0983 1344 MegaSR - ok
17:19:28.0002 1344 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:19:28.0030 1344 MMCSS - ok
17:19:28.0046 1344 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:19:28.0074 1344 Modem - ok
17:19:28.0085 1344 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:19:28.0112 1344 monitor - ok
17:19:28.0142 1344 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:19:28.0152 1344 mouclass - ok
17:19:28.0168 1344 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:19:28.0195 1344 mouhid - ok
17:19:28.0222 1344 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:19:28.0233 1344 mountmgr - ok
17:19:28.0274 1344 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:19:28.0284 1344 MozillaMaintenance - ok
17:19:28.0305 1344 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
17:19:28.0317 1344 MpFilter - ok
17:19:28.0345 1344 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:19:28.0356 1344 mpio - ok
17:19:28.0368 1344 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:19:28.0396 1344 mpsdrv - ok
17:19:28.0483 1344 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:19:28.0536 1344 MpsSvc - ok
17:19:28.0568 1344 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:19:28.0590 1344 MRxDAV - ok
17:19:28.0607 1344 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:19:28.0618 1344 mrxsmb - ok
17:19:28.0637 1344 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:19:28.0649 1344 mrxsmb10 - ok
17:19:28.0663 1344 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:19:28.0674 1344 mrxsmb20 - ok
17:19:28.0687 1344 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:19:28.0697 1344 msahci - ok
17:19:28.0719 1344 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:19:28.0730 1344 msdsm - ok
17:19:28.0753 1344 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:19:28.0766 1344 MSDTC - ok
17:19:28.0783 1344 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:19:28.0810 1344 Msfs - ok
17:19:28.0818 1344 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:19:28.0846 1344 mshidkmdf - ok
17:19:28.0850 1344 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:19:28.0859 1344 msisadrv - ok
17:19:28.0885 1344 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:19:28.0923 1344 MSiSCSI - ok
17:19:28.0926 1344 msiserver - ok
17:19:28.0944 1344 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:19:28.0973 1344 MSKSSRV - ok
17:19:28.0987 1344 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:19:29.0019 1344 MSPCLOCK - ok
17:19:29.0026 1344 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:19:29.0055 1344 MSPQM - ok
17:19:29.0171 1344 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:19:29.0200 1344 MsRPC - ok
17:19:29.0216 1344 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
17:19:29.0226 1344 mssmbios - ok
17:19:29.0240 1344 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:19:29.0268 1344 MSTEE - ok
17:19:29.0277 1344 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:19:29.0288 1344 MTConfig - ok
17:19:29.0293 1344 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:19:29.0303 1344 Mup - ok
17:19:29.0321 1344 MxEFUF (08835780cc6a5cff5275101b5a9d17a4) C:\Windows\system32\DRIVERS\MxEFUF64.sys
17:19:29.0338 1344 MxEFUF - ok
17:19:29.0381 1344 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:19:29.0413 1344 napagent - ok
17:19:29.0449 1344 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:19:29.0478 1344 NativeWifiP - ok
17:19:29.0573 1344 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:19:29.0618 1344 NDIS - ok
17:19:29.0625 1344 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:19:29.0662 1344 NdisCap - ok
17:19:29.0677 1344 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:19:29.0708 1344 NdisTapi - ok
17:19:29.0740 1344 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:19:29.0767 1344 Ndisuio - ok
17:19:29.0778 1344 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:19:29.0806 1344 NdisWan - ok
17:19:29.0824 1344 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:19:29.0851 1344 NDProxy - ok
17:19:29.0856 1344 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:19:29.0884 1344 NetBIOS - ok
17:19:29.0916 1344 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:19:29.0950 1344 NetBT - ok
17:19:29.0969 1344 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:19:29.0979 1344 Netlogon - ok
17:19:30.0020 1344 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:19:30.0144 1344 Netman - ok
17:19:30.0175 1344 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:19:30.0215 1344 netprofm - ok
17:19:30.0275 1344 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:19:30.0300 1344 NetTcpPortSharing - ok
17:19:30.0316 1344 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:19:30.0330 1344 nfrd960 - ok
17:19:30.0373 1344 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:19:30.0402 1344 NlaSvc - ok
17:19:30.0408 1344 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:19:30.0435 1344 Npfs - ok
17:19:30.0456 1344 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:19:30.0485 1344 nsi - ok
17:19:30.0489 1344 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:19:30.0555 1344 nsiproxy - ok
17:19:30.0713 1344 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:19:30.0755 1344 Ntfs - ok
17:19:30.0844 1344 ntk_PowerDVD12 (eaac965642ef5f818aed508cadf83e4b) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys
17:19:30.0878 1344 ntk_PowerDVD12 - ok
17:19:30.0958 1344 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:19:31.0010 1344 Null - ok
17:19:31.0050 1344 NVHDA (102806b360d0e6bc6e55bf47ef655d43) C:\Windows\system32\drivers\nvhda64v.sys
17:19:31.0068 1344 NVHDA - ok
17:19:31.0951 1344 nvlddmkm (ba0b4889c40380a01ecdf84c227a89c9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:19:32.0136 1344 nvlddmkm - ok
17:19:32.0204 1344 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:19:32.0216 1344 nvraid - ok
17:19:32.0242 1344 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:19:32.0254 1344 nvstor - ok
17:19:32.0292 1344 NvStUSB (4b451cfd408fe3356f44438a3631dfb5) C:\Windows\system32\DRIVERS\nvstusb.sys
17:19:32.0312 1344 NvStUSB - ok
17:19:32.0418 1344 nvsvc (06633cf95bea62164c3bfca24bce6b11) C:\Windows\system32\nvvsvc.exe
17:19:32.0460 1344 nvsvc - ok
17:19:32.0493 1344 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:19:32.0505 1344 nv_agp - ok
17:19:32.0609 1344 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:19:32.0642 1344 odserv - ok
17:19:32.0677 1344 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:19:32.0704 1344 ohci1394 - ok
17:19:32.0738 1344 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:19:32.0750 1344 ose - ok
17:19:32.0779 1344 ossrv (61b16c288d2e96353323717442e08afc) C:\Windows\system32\drivers\ctoss2k.sys
17:19:32.0799 1344 ossrv - ok
17:19:32.0841 1344 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:19:32.0879 1344 p2pimsvc - ok
17:19:32.0930 1344 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:19:32.0948 1344 p2psvc - ok
17:19:32.0976 1344 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:19:32.0989 1344 Parport - ok
17:19:33.0009 1344 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:19:33.0019 1344 partmgr - ok
17:19:33.0036 1344 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:19:33.0052 1344 PcaSvc - ok
17:19:33.0070 1344 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:19:33.0082 1344 pci - ok
17:19:33.0086 1344 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:19:33.0096 1344 pciide - ok
17:19:33.0125 1344 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:19:33.0137 1344 pcmcia - ok
17:19:33.0143 1344 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:19:33.0153 1344 pcw - ok
17:19:33.0203 1344 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:19:33.0248 1344 PEAUTH - ok
17:19:33.0332 1344 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:19:33.0377 1344 PerfHost - ok
17:19:33.0601 1344 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:19:33.0663 1344 pla - ok
17:19:33.0703 1344 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:19:33.0718 1344 PlugPlay - ok
17:19:33.0722 1344 PnkBstrA - ok
17:19:33.0741 1344 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:19:33.0767 1344 PNRPAutoReg - ok
17:19:33.0801 1344 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:19:33.0814 1344 PNRPsvc - ok
17:19:33.0860 1344 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:19:33.0891 1344 PolicyAgent - ok
17:19:33.0941 1344 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:19:33.0996 1344 Power - ok
17:19:34.0027 1344 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:19:34.0058 1344 PptpMiniport - ok
17:19:34.0083 1344 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:19:34.0094 1344 Processor - ok
17:19:34.0126 1344 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
17:19:34.0138 1344 ProfSvc - ok
17:19:34.0161 1344 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:19:34.0171 1344 ProtectedStorage - ok
17:19:34.0194 1344 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:19:34.0233 1344 Psched - ok
17:19:34.0383 1344 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:19:34.0431 1344 ql2300 - ok
17:19:34.0558 1344 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:19:34.0589 1344 ql40xx - ok
17:19:34.0629 1344 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:19:34.0649 1344 QWAVE - ok
17:19:34.0664 1344 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:19:34.0689 1344 QWAVEdrv - ok
17:19:34.0707 1344 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:19:34.0747 1344 RasAcd - ok
17:19:34.0774 1344 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:19:34.0802 1344 RasAgileVpn - ok
17:19:34.0840 1344 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:19:34.0869 1344 RasAuto - ok
17:19:34.0922 1344 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:19:34.0994 1344 Rasl2tp - ok
17:19:35.0040 1344 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:19:35.0072 1344 RasMan - ok
17:19:35.0085 1344 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:19:35.0114 1344 RasPppoe - ok
17:19:35.0122 1344 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:19:35.0151 1344 RasSstp - ok
17:19:35.0182 1344 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:19:35.0212 1344 rdbss - ok
17:19:35.0221 1344 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:19:35.0234 1344 rdpbus - ok
17:19:35.0252 1344 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:19:35.0286 1344 RDPCDD - ok
17:19:35.0292 1344 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:19:35.0329 1344 RDPENCDD - ok
17:19:35.0336 1344 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:19:35.0367 1344 RDPREFMP - ok
17:19:35.0415 1344 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
17:19:35.0427 1344 RDPWD - ok
17:19:35.0463 1344 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:19:35.0476 1344 rdyboost - ok
17:19:35.0503 1344 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:19:35.0538 1344 RemoteAccess - ok
17:19:35.0581 1344 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:19:35.0633 1344 RemoteRegistry - ok
17:19:35.0737 1344 RichVideo64 (0b169fe016039571ecc6db70073f8979) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
17:19:35.0773 1344 RichVideo64 - ok
17:19:35.0795 1344 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:19:35.0832 1344 RpcEptMapper - ok
17:19:35.0850 1344 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:19:35.0862 1344 RpcLocator - ok
17:19:35.0923 1344 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:19:35.0975 1344 RpcSs - ok
17:19:36.0011 1344 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:19:36.0046 1344 rspndr - ok
17:19:36.0103 1344 RTL8167 (f307f1c796c0886490839fde5ed5728c) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:19:36.0125 1344 RTL8167 - ok
17:19:36.0197 1344 RTL8168 (7d9da8ec6784a9ee213c676709d46be6) C:\Windows\system32\DRIVERS\Rt630x64.sys
17:19:36.0236 1344 RTL8168 - ok
17:19:36.0290 1344 RTLE8023x64 (573b3eb59948a23c5fbad48d90056817) C:\Windows\system32\DRIVERS\Rtenic64.sys
17:19:36.0309 1344 RTLE8023x64 - ok
17:19:36.0336 1344 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:19:36.0346 1344 SamSs - ok
17:19:36.0369 1344 SASDIFSV - ok
17:19:36.0374 1344 SASKUTIL - ok
17:19:36.0396 1344 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:19:36.0407 1344 sbp2port - ok
17:19:36.0443 1344 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:19:36.0504 1344 SCardSvr - ok
17:19:36.0529 1344 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:19:36.0567 1344 scfilter - ok
17:19:36.0666 1344 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:19:36.0735 1344 Schedule - ok
17:19:36.0767 1344 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:19:36.0794 1344 SCPolicySvc - ok
17:19:36.0842 1344 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:19:36.0872 1344 SDRSVC - ok
17:19:36.0919 1344 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:19:36.0961 1344 secdrv - ok
17:19:36.0977 1344 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:19:37.0011 1344 seclogon - ok
17:19:37.0036 1344 seehcri (ede7a1d2715aac2190d51dc07afd44e3) C:\Windows\system32\DRIVERS\seehcri.sys
17:19:37.0047 1344 seehcri - ok
17:19:37.0059 1344 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:19:37.0089 1344 SENS - ok
17:19:37.0104 1344 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:19:37.0115 1344 SensrSvc - ok
17:19:37.0129 1344 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:19:37.0139 1344 Serenum - ok
17:19:37.0152 1344 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:19:37.0162 1344 Serial - ok
17:19:37.0186 1344 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:19:37.0207 1344 sermouse - ok
17:19:37.0256 1344 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:19:37.0309 1344 SessionEnv - ok
17:19:37.0348 1344 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:19:37.0395 1344 sffdisk - ok
17:19:37.0414 1344 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:19:37.0430 1344 sffp_mmc - ok
17:19:37.0440 1344 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:19:37.0461 1344 sffp_sd - ok
17:19:37.0473 1344 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:19:37.0494 1344 sfloppy - ok
17:19:37.0549 1344 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:19:37.0594 1344 SharedAccess - ok
17:19:37.0655 1344 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:19:37.0728 1344 ShellHWDetection - ok
17:19:37.0749 1344 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:19:37.0759 1344 SiSRaid2 - ok
17:19:37.0774 1344 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:19:37.0785 1344 SiSRaid4 - ok
17:19:38.0081 1344 Skype C2C Service (2a99850c2a6edd6c6602e822c716edaf) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
17:19:38.0130 1344 Skype C2C Service - ok
17:19:38.0184 1344 SkypeUpdate (ef3b592545676301cdeb7c2609eed7bf) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:19:38.0213 1344 SkypeUpdate - ok
17:19:38.0291 1344 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:19:38.0353 1344 Smb - ok
17:19:38.0409 1344 snapman (10450f432811d7fda60a97fcc674d7b2) C:\Windows\system32\DRIVERS\snapman.sys
17:19:38.0459 1344 snapman - ok
17:19:38.0488 1344 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:19:38.0520 1344 SNMPTRAP - ok
17:19:38.0528 1344 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:19:38.0544 1344 spldr - ok
17:19:38.0598 1344 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:19:38.0630 1344 Spooler - ok
17:19:38.0970 1344 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:19:39.0053 1344 sppsvc - ok
17:19:39.0111 1344 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:19:39.0140 1344 sppuinotify - ok
17:19:39.0358 1344 Správce výběru OS (51b3f28772e44f0b87df19b42c90ba8a) C:\Program Files (x86)\Acronis Manager\Hardisk Spravce\OSS\reinstall_svc.exe
17:19:39.0400 1344 Správce výběru OS - ok
17:19:39.0489 1344 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
17:19:39.0490 1344 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
17:19:39.0499 1344 sptd ( LockedFile.Multi.Generic ) - warning
17:19:39.0499 1344 sptd - detected LockedFile.Multi.Generic (1)
17:19:39.0544 1344 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:19:39.0565 1344 srv - ok
17:19:39.0594 1344 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:19:39.0620 1344 srv2 - ok
17:19:39.0634 1344 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:19:39.0645 1344 srvnet - ok
17:19:39.0695 1344 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:19:39.0774 1344 SSDPSRV - ok
17:19:39.0793 1344 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:19:39.0822 1344 SstpSvc - ok
17:19:39.0842 1344 Steam Client Service - ok
17:19:39.0912 1344 Stereo Service (c354621b6b94e10ae7f5cdbe745feb86) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:19:39.0949 1344 Stereo Service - ok
17:19:39.0994 1344 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:19:40.0020 1344 stexstor - ok
17:19:40.0087 1344 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:19:40.0114 1344 stisvc - ok
17:19:40.0124 1344 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
17:19:40.0134 1344 swenum - ok
17:19:40.0203 1344 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:19:40.0238 1344 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
17:19:40.0238 1344 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
17:19:40.0303 1344 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:19:40.0355 1344 swprv - ok
17:19:40.0520 1344 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:19:40.0567 1344 SysMain - ok
17:19:40.0686 1344 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:19:40.0721 1344 TabletInputService - ok
17:19:40.0754 1344 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:19:40.0791 1344 TapiSrv - ok
17:19:40.0818 1344 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:19:40.0847 1344 TBS - ok
17:19:41.0031 1344 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:19:41.0071 1344 Tcpip - ok
17:19:41.0246 1344 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:19:41.0303 1344 TCPIP6 - ok
17:19:41.0380 1344 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:19:41.0441 1344 tcpipreg - ok
17:19:41.0466 1344 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:19:41.0504 1344 TDPIPE - ok
17:19:41.0635 1344 tdrpman273 (99527d49ee0a96fc25537c61b270a372) C:\Windows\system32\DRIVERS\tdrpm273.sys
17:19:41.0676 1344 tdrpman273 - ok
17:19:41.0698 1344 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:19:41.0710 1344 TDTCP - ok
17:19:41.0737 1344 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:19:41.0764 1344 tdx - ok
17:19:41.0779 1344 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
17:19:41.0789 1344 TermDD - ok
17:19:41.0852 1344 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:19:41.0929 1344 TermService - ok
17:19:41.0949 1344 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:19:41.0963 1344 Themes - ok
17:19:41.0985 1344 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:19:42.0014 1344 THREADORDER - ok
17:19:42.0060 1344 timounter (ebbaea02f0095a798000c7e06b16d41b) C:\Windows\system32\DRIVERS\timntr.sys
17:19:42.0086 1344 timounter - ok
17:19:42.0118 1344 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:19:42.0148 1344 TrkWks - ok
17:19:42.0216 1344 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:19:42.0268 1344 TrustedInstaller - ok
17:19:42.0299 1344 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:19:42.0336 1344 tssecsrv - ok
17:19:42.0361 1344 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:19:42.0371 1344 TsUsbFlt - ok
17:19:42.0598 1344 TuneUp.UtilitiesSvc (dc0f2a0c445ef104bc240954d3a460c2) C:\Program Files (x86)\Tune-Up Utilities 2012\TuneUpUtilitiesService64.exe
17:19:42.0652 1344 TuneUp.UtilitiesSvc - ok
17:19:42.0667 1344 TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) C:\Program Files (x86)\Tune-Up Utilities 2012\TuneUpUtilitiesDriver64.sys
17:19:42.0682 1344 TuneUpUtilitiesDrv - ok
17:19:42.0768 1344 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:19:42.0848 1344 tunnel - ok
17:19:42.0875 1344 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:19:42.0885 1344 uagp35 - ok
17:19:42.0912 1344 ubohci (96fc3b68b6966c539d0b002f56728b3d) C:\Windows\system32\DRIVERS\ubohci.sys
17:19:42.0922 1344 ubohci - ok
17:19:42.0941 1344 ubsbm (5c09691125bc5f0e3200aee249973be9) C:\Windows\system32\DRIVERS\ubsbm.sys
17:19:42.0949 1344 ubsbm - ok
17:19:42.0967 1344 ubumapi (adaa2f75f4dd3a79f1a0304031939436) C:\Windows\system32\DRIVERS\ubumapi.sys
17:19:42.0976 1344 ubumapi - ok
17:19:43.0019 1344 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:19:43.0078 1344 udfs - ok
17:19:43.0097 1344 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:19:43.0109 1344 UI0Detect - ok
17:19:43.0134 1344 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:19:43.0144 1344 uliagpkx - ok
17:19:43.0168 1344 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
17:19:43.0179 1344 umbus - ok
17:19:43.0187 1344 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:19:43.0219 1344 UmPass - ok
17:19:43.0285 1344 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:19:43.0356 1344 upnphost - ok
17:19:43.0383 1344 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
17:19:43.0396 1344 usbaudio - ok
17:19:43.0416 1344 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:19:43.0427 1344 usbccgp - ok
17:19:43.0451 1344 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:19:43.0464 1344 usbcir - ok
17:19:43.0481 1344 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
17:19:43.0491 1344 usbehci - ok
17:19:43.0532 1344 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:19:43.0561 1344 usbhub - ok
17:19:43.0585 1344 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
17:19:43.0598 1344 usbohci - ok
17:19:43.0724 1344 USBPNPA (538233fbbc748aa1d57b7b53f150de9a) C:\Windows\system32\drivers\CM10864.sys
17:19:43.0762 1344 USBPNPA - ok
17:19:43.0775 1344 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:19:43.0788 1344 usbprint - ok
17:19:43.0810 1344 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:19:43.0821 1344 USBSTOR - ok
17:19:43.0833 1344 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
17:19:43.0844 1344 usbuhci - ok
17:19:43.0858 1344 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:19:43.0893 1344 UxSms - ok
17:19:43.0919 1344 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:19:43.0929 1344 VaultSvc - ok
17:19:43.0956 1344 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:19:43.0966 1344 vdrvroot - ok
17:19:44.0025 1344 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:19:44.0082 1344 vds - ok
17:19:44.0104 1344 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:19:44.0116 1344 vga - ok
17:19:44.0134 1344 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:19:44.0174 1344 VgaSave - ok
17:19:44.0210 1344 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:19:44.0222 1344 vhdmp - ok
17:19:44.0236 1344 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:19:44.0246 1344 viaide - ok
17:19:44.0254 1344 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:19:44.0264 1344 volmgr - ok
17:19:44.0288 1344 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:19:44.0301 1344 volmgrx - ok
17:19:44.0323 1344 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:19:44.0336 1344 volsnap - ok
17:19:44.0353 1344 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:19:44.0364 1344 vsmraid - ok
17:19:44.0505 1344 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:19:44.0575 1344 VSS - ok
17:19:44.0649 1344 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
17:19:44.0697 1344 vwifibus - ok
17:19:44.0759 1344 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:19:44.0814 1344 W32Time - ok
17:19:44.0829 1344 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:19:44.0839 1344 WacomPen - ok
17:19:44.0860 1344 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:19:44.0887 1344 WANARP - ok
17:19:44.0891 1344 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:19:44.0918 1344 Wanarpv6 - ok
17:19:45.0044 1344 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:19:45.0087 1344 WatAdminSvc - ok
17:19:45.0170 1344 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:19:45.0202 1344 wbengine - ok
17:19:45.0294 1344 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:19:45.0332 1344 WbioSrvc - ok
17:19:45.0387 1344 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:19:45.0429 1344 wcncsvc - ok
17:19:45.0450 1344 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:19:45.0472 1344 WcsPlugInService - ok
17:19:45.0490 1344 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:19:45.0500 1344 Wd - ok
17:19:45.0550 1344 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:19:45.0585 1344 Wdf01000 - ok
17:19:45.0617 1344 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:19:45.0679 1344 WdiServiceHost - ok
17:19:45.0691 1344 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:19:45.0717 1344 WdiSystemHost - ok
17:19:45.0765 1344 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:19:45.0792 1344 WebClient - ok
17:19:45.0821 1344 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:19:45.0862 1344 Wecsvc - ok
17:19:45.0881 1344 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:19:45.0911 1344 wercplsupport - ok
17:19:45.0927 1344 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:19:45.0967 1344 WerSvc - ok
17:19:45.0986 1344 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:19:46.0025 1344 WfpLwf - ok
17:19:46.0054 1344 whfltr2k (2c3e71ff4f6e859ae3833ba206b00614) C:\Windows\system32\DRIVERS\whfltr2k.sys
17:19:46.0062 1344 whfltr2k - ok
17:19:46.0070 1344 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:19:46.0080 1344 WIMMount - ok
17:19:46.0107 1344 WinDefend - ok
17:19:46.0117 1344 WinHttpAutoProxySvc - ok
17:19:46.0163 1344 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:19:46.0221 1344 Winmgmt - ok
17:19:46.0424 1344 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:19:46.0482 1344 WinRM - ok
17:19:46.0604 1344 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:19:46.0626 1344 Wlansvc - ok
17:19:46.0864 1344 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:19:46.0920 1344 wlidsvc - ok
17:19:46.0979 1344 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:19:47.0007 1344 WmiAcpi - ok
17:19:47.0048 1344 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:19:47.0078 1344 wmiApSrv - ok
17:19:47.0107 1344 WMPNetworkSvc - ok
17:19:47.0140 1344 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:19:47.0154 1344 WPCSvc - ok
17:19:47.0179 1344 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:19:47.0196 1344 WPDBusEnum - ok
17:19:47.0216 1344 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:19:47.0244 1344 ws2ifsl - ok
17:19:47.0265 1344 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
17:19:47.0280 1344 wscsvc - ok
17:19:47.0501 1344 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
17:19:47.0555 1344 wuauserv - ok
17:19:47.0672 1344 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:19:47.0727 1344 WudfPf - ok
17:19:47.0764 1344 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:19:47.0792 1344 WUDFRd - ok
17:19:47.0817 1344 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:19:47.0845 1344 wudfsvc - ok
17:19:47.0877 1344 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:19:47.0893 1344 WwanSvc - ok
17:19:47.0984 1344 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl
17:19:48.0000 1344 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
17:19:48.0084 1344 {329F96B6-DF1E-4328-BFDA-39EA953C1312} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl
17:19:48.0101 1344 {329F96B6-DF1E-4328-BFDA-39EA953C1312} - ok
17:19:48.0112 1344 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:19:48.0384 1344 \Device\Harddisk0\DR0 - ok
17:19:48.0390 1344 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk6\DR6
17:19:48.0658 1344 \Device\Harddisk6\DR6 - ok
17:19:48.0664 1344 Boot (0x1200) (ba3e5658e71430aab230ce34bf64b9cb) \Device\Harddisk0\DR0\Partition0
17:19:48.0668 1344 \Device\Harddisk0\DR0\Partition0 - ok
17:19:48.0692 1344 Boot (0x1200) (74d6e0a3e7ae7d7c4d0a621035d1ffd5) \Device\Harddisk0\DR0\Partition1
17:19:48.0694 1344 \Device\Harddisk0\DR0\Partition1 - ok
17:19:48.0718 1344 Boot (0x1200) (3aa8529764222a5676e777d53aa84a90) \Device\Harddisk0\DR0\Partition2
17:19:48.0720 1344 \Device\Harddisk0\DR0\Partition2 - ok
17:19:48.0724 1344 Boot (0x1200) (241125eff61228296e118b697807d904) \Device\Harddisk6\DR6\Partition0
17:19:48.0726 1344 \Device\Harddisk6\DR6\Partition0 - ok
17:19:48.0727 1344 ============================================================
17:19:48.0727 1344 Scan finished
17:19:48.0727 1344 ============================================================
17:19:48.0740 4796 Detected object count: 5
17:19:48.0740 4796 Actual detected object count: 5
17:20:02.0623 4796 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:20:02.0624 4796 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:20:02.0627 4796 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
17:20:02.0627 4796 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:20:02.0630 4796 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:20:02.0630 4796 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:20:02.0634 4796 sptd ( LockedFile.Multi.Generic ) - skipped by user
17:20:02.0634 4796 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
17:20:02.0635 4796 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
17:20:02.0635 4796 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:20:08.0283 2172 Deinitialize success
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#4 Příspěvek od Lilly [FR] »

:arrow: Log: Mbrscan

Kód: Vybrat vše

MBRScan v1.1.1

OS             : Windows 7 Service Pack 1 (64 bit)
PROCESSOR      : AMD64 Family 16 Model 4 Stepping 2, AuthenticAMD
BOOT           : Normal Boot
DATE           : 2012/07/30 (ISO 8601) at 17:38:00
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __WDC WD6401AALS-00J7B1 (05.00K05)
BUS_TYPE       : (0x03)  P-ATA
USE_PIO        : NO
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

DISK           : Device\Harddisk6\DR6 __Seagate FreeAgent (102F)
BUS_TYPE       : (0x07)  USB
USE_PIO        : NO
MAX_TRANSFER   : 64 Kb
ALIGNMENT_MASK : byte aligned
________________________________________________________________________________

Device\Harddisk0\DR0	596.2 Go  [Fixed] ==> 7 MBR Code

MBR_MD5   : CB22B156F792CA58C578F7617E1F7292
MBR_SHA1  : 148F90A037E275CAE6E2714FD31D5624BCFD269D

Device\Harddisk0\Partition1	100.0 Mo  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2	545.9 Go  	0x07 NTFS / HPFS
Device\Harddisk0\Partition3	50.17 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk6\DR6	1.82 To  [Fixed] ==> XP MBR Code ....

MBR_MD5   : 425B698A2AB77256A9C6E5C098045B86
MBR_SHA1  : 9C35600F3C8AC8C36FDB702A683E664585750C9A

Device\Harddisk6\Partition1	1.82 To  	0x07 NTFS / HPFS __ BOOTABLE __
________________________________________________________________________________

############################### Additional scan ################################

DRIVER  : C:\Windows\system32\hal.dll => Invisible on the disk
ADDRESS : 0x039FC000
SIZE    : 292.0 Ko

DRIVER  : C:\Windows\system32\kdcom.dll => Invisible on the disk
ADDRESS : 0x00BAB000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\mcupdate_AuthenticAMD.dll => Invisible on the disk
ADDRESS : 0x00C72000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\CLFS.SYS => Invisible on the disk
ADDRESS : 0x00C93000
SIZE    : 376.0 Ko

DRIVER  : C:\Windows\system32\CI.dll => Invisible on the disk
ADDRESS : 0x00CF1000
SIZE    : 768.0 Ko

DRIVER  : C:\Windows\system32\drivers\Wdf01000.sys => Invisible on the disk
ADDRESS : 0x00E0C000
SIZE    : 656.0 Ko

DRIVER  : C:\Windows\system32\drivers\WDFLDR.SYS => Invisible on the disk
ADDRESS : 0x00EB0000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\drivers\ACPI.sys => Invisible on the disk
ADDRESS : 0x01000000
SIZE    : 348.0 Ko

DRIVER  : C:\Windows\system32\drivers\WMILIB.SYS => Invisible on the disk
ADDRESS : 0x01057000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\drivers\msisadrv.sys => Invisible on the disk
ADDRESS : 0x01060000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\drivers\vdrvroot.sys => Invisible on the disk
ADDRESS : 0x011D5000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\drivers\pci.sys => Invisible on the disk
ADDRESS : 0x00EBF000
SIZE    : 204.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\LPCFilter.sys => Invisible on the disk
ADDRESS : 0x011E2000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\System32\drivers\partmgr.sys => Invisible on the disk
ADDRESS : 0x00EF2000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\system32\drivers\volmgr.sys => Invisible on the disk
ADDRESS : 0x00F07000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\System32\drivers\volmgrx.sys => Invisible on the disk
ADDRESS : 0x00F1C000
SIZE    : 368.0 Ko

DRIVER  : C:\Windows\system32\drivers\pciide.sys => Invisible on the disk
ADDRESS : 0x011EF000
SIZE    : 28.0 Ko

DRIVER  : C:\Windows\system32\drivers\PCIIDEX.SYS => Invisible on the disk
ADDRESS : 0x00F78000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\amdide64.sys => Invisible on the disk
ADDRESS : 0x011F6000
SIZE    : 28.0 Ko

DRIVER  : C:\Windows\System32\drivers\mountmgr.sys => Invisible on the disk
ADDRESS : 0x00F88000
SIZE    : 104.0 Ko

DRIVER  : C:\Windows\system32\drivers\atapi.sys => Invisible on the disk
ADDRESS : 0x00FA2000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\drivers\ataport.SYS => Invisible on the disk
ADDRESS : 0x00FAB000
SIZE    : 168.0 Ko

DRIVER  : C:\Windows\system32\drivers\amdxata.sys => Invisible on the disk
ADDRESS : 0x00FD5000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\drivers\fltmgr.sys => Invisible on the disk
ADDRESS : 0x00DB1000
SIZE    : 304.0 Ko

DRIVER  : C:\Windows\system32\drivers\fileinfo.sys => Invisible on the disk
ADDRESS : 0x00FE0000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\MpFilter.sys => Invisible on the disk
ADDRESS : 0x00C00000
SIZE    : 212.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Ntfs.sys => Invisible on the disk
ADDRESS : 0x01226000
SIZE    : 1.64 Mo

DRIVER  : C:\Windows\System32\Drivers\msrpc.sys => Invisible on the disk
ADDRESS : 0x01465000
SIZE    : 376.0 Ko

DRIVER  : C:\Windows\System32\Drivers\ksecdd.sys => Invisible on the disk
ADDRESS : 0x014C3000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\System32\Drivers\cng.sys => Invisible on the disk
ADDRESS : 0x014DE000
SIZE    : 456.0 Ko

DRIVER  : C:\Windows\System32\drivers\pcw.sys => Invisible on the disk
ADDRESS : 0x01550000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Fs_Rec.sys => Invisible on the disk
ADDRESS : 0x01561000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\drivers\ndis.sys => Invisible on the disk
ADDRESS : 0x016DB000
SIZE    : 972.0 Ko

DRIVER  : C:\Windows\system32\drivers\NETIO.SYS => Invisible on the disk
ADDRESS : 0x01600000
SIZE    : 384.0 Ko

DRIVER  : C:\Windows\System32\Drivers\ksecpkg.sys => Invisible on the disk
ADDRESS : 0x01660000
SIZE    : 168.0 Ko

DRIVER  : C:\Windows\System32\drivers\tcpip.sys => Invisible on the disk
ADDRESS : 0x018CD000
SIZE    : 2.01 Mo

DRIVER  : C:\Windows\System32\drivers\fwpkclnt.sys => Invisible on the disk
ADDRESS : 0x01AD0000
SIZE    : 296.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\timntr.sys => Invisible on the disk
ADDRESS : 0x01CBC000
SIZE    : 960.0 Ko

DRIVER  : C:\Windows\system32\drivers\volsnap.sys => Invisible on the disk
ADDRESS : 0x01DAC000
SIZE    : 304.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tdrpm273.sys => Invisible on the disk
ADDRESS : 0x01E78000
SIZE    : 1.21 Mo

DRIVER  : C:\Windows\System32\Drivers\spldr.sys => Invisible on the disk
ADDRESS : 0x01FAF000
SIZE    : 32.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\snapman.sys => Invisible on the disk
ADDRESS : 0x01FB7000
SIZE    : 280.0 Ko

DRIVER  : C:\Windows\System32\drivers\rdyboost.sys => Invisible on the disk
ADDRESS : 0x01E00000
SIZE    : 232.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\MxEFUF64.sys => Invisible on the disk
ADDRESS : 0x01E3A000
SIZE    : 168.0 Ko

DRIVER  : C:\Windows\System32\Drivers\mup.sys => Invisible on the disk
ADDRESS : 0x01E64000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\System32\drivers\hwpolicy.sys => Invisible on the disk
ADDRESS : 0x01C00000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\fvevol.sys => Invisible on the disk
ADDRESS : 0x01C09000
SIZE    : 232.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\disk.sys => Invisible on the disk
ADDRESS : 0x01C43000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\CLASSPNP.SYS => Invisible on the disk
ADDRESS : 0x01C59000
SIZE    : 192.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\dtsoftbus01.sys => Invisible on the disk
ADDRESS : 0x01B2D000
SIZE    : 280.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\cdrom.sys => Invisible on the disk
ADDRESS : 0x01B73000
SIZE    : 168.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\cmdguard.sys => Invisible on the disk
ADDRESS : 0x01800000
SIZE    : 580.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Null.SYS => Invisible on the disk
ADDRESS : 0x01CAC000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Beep.SYS => Invisible on the disk
ADDRESS : 0x01CB5000
SIZE    : 28.0 Ko

DRIVER  : C:\Windows\System32\Drivers\aswKbd.SYS => Invisible on the disk
ADDRESS : 0x01891000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\System32\drivers\vga.sys => Invisible on the disk
ADDRESS : 0x0189B000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\drivers\VIDEOPRT.SYS => Invisible on the disk
ADDRESS : 0x01B9D000
SIZE    : 148.0 Ko

DRIVER  : C:\Windows\System32\drivers\watchdog.sys => Invisible on the disk
ADDRESS : 0x01BC2000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\RDPCDD.sys => Invisible on the disk
ADDRESS : 0x01BD2000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\drivers\rdpencdd.sys => Invisible on the disk
ADDRESS : 0x01BDB000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\drivers\rdprefmp.sys => Invisible on the disk
ADDRESS : 0x01BE4000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Msfs.SYS => Invisible on the disk
ADDRESS : 0x01BED000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Npfs.SYS => Invisible on the disk
ADDRESS : 0x018A9000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tdx.sys => Invisible on the disk
ADDRESS : 0x0168A000
SIZE    : 136.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\TDI.SYS => Invisible on the disk
ADDRESS : 0x018BA000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\cmdhlp.sys => Invisible on the disk
ADDRESS : 0x016AC000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\drivers\afd.sys => Invisible on the disk
ADDRESS : 0x0156B000
SIZE    : 548.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\netbt.sys => Invisible on the disk
ADDRESS : 0x01400000
SIZE    : 276.0 Ko

DRIVER  : C:\Windows\system32\drivers\ws2ifsl.sys => Invisible on the disk
ADDRESS : 0x016B8000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\wfplwf.sys => Invisible on the disk
ADDRESS : 0x016C3000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\pacer.sys => Invisible on the disk
ADDRESS : 0x017CE000
SIZE    : 152.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\inspect.sys => Invisible on the disk
ADDRESS : 0x01445000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\netbios.sys => Invisible on the disk
ADDRESS : 0x016CC000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\serial.sys => Invisible on the disk
ADDRESS : 0x013C9000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\wanarp.sys => Invisible on the disk
ADDRESS : 0x01200000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\termdd.sys => Invisible on the disk
ADDRESS : 0x013E6000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rdbss.sys => Invisible on the disk
ADDRESS : 0x0444C000
SIZE    : 324.0 Ko

DRIVER  : C:\Windows\system32\drivers\nsiproxy.sys => Invisible on the disk
ADDRESS : 0x0449D000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mssmbios.sys => Invisible on the disk
ADDRESS : 0x044A9000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\drivers\discache.sys => Invisible on the disk
ADDRESS : 0x044B4000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\System32\Drivers\dfsc.sys => Invisible on the disk
ADDRESS : 0x044C3000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\blbdrive.sys => Invisible on the disk
ADDRESS : 0x044E1000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\avkmgr.sys => Invisible on the disk
ADDRESS : 0x044F2000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\avipbb.sys => Invisible on the disk
ADDRESS : 0x044FC000
SIZE    : 156.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tunnel.sys => Invisible on the disk
ADDRESS : 0x04523000
SIZE    : 152.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\amdppm.sys => Invisible on the disk
ADDRESS : 0x04549000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\system32\drivers\wmiacpi.sys => Invisible on the disk
ADDRESS : 0x0455E000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\nvlddmkm.sys => Invisible on the disk
ADDRESS : 0x13613000
SIZE    : 13.76 Mo

DRIVER  : C:\Windows\System32\drivers\dxgkrnl.sys => Invisible on the disk
ADDRESS : 0x07224000
SIZE    : 976.0 Ko

DRIVER  : C:\Windows\System32\drivers\dxgmms1.sys => Invisible on the disk
ADDRESS : 0x07318000
SIZE    : 280.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\HDAudBus.sys => Invisible on the disk
ADDRESS : 0x0735E000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\system32\drivers\ctaud2k.sys => Invisible on the disk
ADDRESS : 0x032BD000
SIZE    : 680.0 Ko

DRIVER  : C:\Windows\system32\drivers\portcls.sys => Invisible on the disk
ADDRESS : 0x03367000
SIZE    : 244.0 Ko

DRIVER  : C:\Windows\system32\drivers\drmk.sys => Invisible on the disk
ADDRESS : 0x033A4000
SIZE    : 136.0 Ko

DRIVER  : C:\Windows\system32\drivers\ks.sys => Invisible on the disk
ADDRESS : 0x03200000
SIZE    : 268.0 Ko

DRIVER  : C:\Windows\system32\drivers\ctoss2k.sys => Invisible on the disk
ADDRESS : 0x03243000
SIZE    : 196.0 Ko

DRIVER  : C:\Windows\system32\drivers\ctprxy2k.sys => Invisible on the disk
ADDRESS : 0x03274000
SIZE    : 32.0 Ko

DRIVER  : C:\Windows\system32\drivers\ksthunk.sys => Invisible on the disk
ADDRESS : 0x0327C000
SIZE    : 24.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\Rtenic64.sys => Invisible on the disk
ADDRESS : 0x07382000
SIZE    : 440.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbohci.sys => Invisible on the disk
ADDRESS : 0x03282000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\USBPORT.SYS => Invisible on the disk
ADDRESS : 0x04567000
SIZE    : 344.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbehci.sys => Invisible on the disk
ADDRESS : 0x0328D000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ubohci.sys => Invisible on the disk
ADDRESS : 0x033C6000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\UB1394.SYS => Invisible on the disk
ADDRESS : 0x045BD000
SIZE    : 208.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\serenum.sys => Invisible on the disk
ADDRESS : 0x033EA000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\parport.sys => Invisible on the disk
ADDRESS : 0x0329E000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\system32\drivers\CompositeBus.sys => Invisible on the disk
ADDRESS : 0x073F0000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\AgileVpn.sys => Invisible on the disk
ADDRESS : 0x07200000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rasl2tp.sys => Invisible on the disk
ADDRESS : 0x143D5000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ndistapi.sys => Invisible on the disk
ADDRESS : 0x07216000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ndiswan.sys => Invisible on the disk
ADDRESS : 0x04400000
SIZE    : 188.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\raspppoe.sys => Invisible on the disk
ADDRESS : 0x0442F000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\raspptp.sys => Invisible on the disk
ADDRESS : 0x00C35000
SIZE    : 132.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rassstp.sys => Invisible on the disk
ADDRESS : 0x00C56000
SIZE    : 104.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\kbdclass.sys => Invisible on the disk
ADDRESS : 0x13600000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mouclass.sys => Invisible on the disk
ADDRESS : 0x045F1000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\seehcri.sys => Invisible on the disk
ADDRESS : 0x017F4000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\swenum.sys => Invisible on the disk
ADDRESS : 0x032BB000
SIZE    : 8.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\MarvinBus64.sys => Invisible on the disk
ADDRESS : 0x078FE000
SIZE    : 272.0 Ko

DRIVER  : C:\Windows\system32\drivers\umbus.sys => Invisible on the disk
ADDRESS : 0x07942000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ew_jubusenum.sys => Invisible on the disk
ADDRESS : 0x07954000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\system32\drivers\ha20x22k.sys => Invisible on the disk
ADDRESS : 0x07A06000
SIZE    : 1.55 Mo

DRIVER  : C:\Windows\system32\drivers\emupia2k.sys => Invisible on the disk
ADDRESS : 0x07B93000
SIZE    : 296.0 Ko

DRIVER  : C:\Windows\system32\drivers\ctsfm2k.sys => Invisible on the disk
ADDRESS : 0x0796F000
SIZE    : 224.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbhub.sys => Invisible on the disk
ADDRESS : 0x07800000
SIZE    : 360.0 Ko

DRIVER  : C:\Windows\System32\drivers\CTHWIUT.SYS => Invisible on the disk
ADDRESS : 0x07BDD000
SIZE    : 112.0 Ko

DRIVER  : C:\Windows\System32\drivers\CT20XUT.SYS => Invisible on the disk
ADDRESS : 0x0785A000
SIZE    : 244.0 Ko

DRIVER  : C:\Windows\System32\Drivers\NDProxy.SYS => Invisible on the disk
ADDRESS : 0x07897000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\System32\drivers\CTEXFIFX.SYS => Invisible on the disk
ADDRESS : 0x0A25F000
SIZE    : 1.39 Mo

DRIVER  : C:\Windows\system32\drivers\nvhda64v.sys => Invisible on the disk
ADDRESS : 0x0A3C3000
SIZE    : 200.0 Ko

DRIVER  : C:\Windows\system32\drivers\RTKVHD64.sys => Invisible on the disk
ADDRESS : 0x0A429000
SIZE    : 3.84 Mo

DRIVER  : C:\Windows\System32\win32k.sys => Invisible on the disk
ADDRESS : 0x000E0000
SIZE    : 3.08 Mo

DRIVER  : C:\Windows\System32\drivers\Dxapi.sys => Invisible on the disk
ADDRESS : 0x0A400000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\System32\Drivers\crashdmp.sys => Invisible on the disk
ADDRESS : 0x0A40C000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\Drivers\dump_dumpata.sys => Invisible on the disk
ADDRESS : 0x0A41A000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\monitor.sys => Invisible on the disk
ADDRESS : 0x0A213000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\system32\drivers\AmUStor.SYS => Invisible on the disk
ADDRESS : 0x0A221000
SIZE    : 104.0 Ko

DRIVER  : C:\Windows\system32\drivers\USBD.SYS => Invisible on the disk
ADDRESS : 0x0A426000
SIZE    : 8.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\usbccgp.sys => Invisible on the disk
ADDRESS : 0x0A23B000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys => Invisible on the disk
ADDRESS : 0x0A258000
SIZE    : 16.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\USBSTOR.SYS => Invisible on the disk
ADDRESS : 0x078AC000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ew_jucdcacm.sys => Invisible on the disk
ADDRESS : 0x078C7000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\system32\drivers\modem.sys => Invisible on the disk
ADDRESS : 0x078E5000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ew_juwwanecm.sys => Invisible on the disk
ADDRESS : 0x079A7000
SIZE    : 236.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ew_juextctrl.sys => Invisible on the disk
ADDRESS : 0x079E2000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\hidusb.sys => Invisible on the disk
ADDRESS : 0x079F0000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\HIDCLASS.SYS => Invisible on the disk
ADDRESS : 0x01C89000
SIZE    : 100.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\HIDPARSE.SYS => Invisible on the disk
ADDRESS : 0x078F4000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\kbdhid.sys => Invisible on the disk
ADDRESS : 0x01B1A000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\TSDDD.dll => Invisible on the disk
ADDRESS : 0x004E0000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\system32\drivers\CM10864.sys => Invisible on the disk
ADDRESS : 0x04C51000
SIZE    : 1.55 Mo

DRIVER  : C:\Windows\System32\cdd.dll => Invisible on the disk
ADDRESS : 0x00790000
SIZE    : 156.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\nvstusb.sys => Invisible on the disk
ADDRESS : 0x0AA9F000
SIZE    : 396.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mouhid.sys => Invisible on the disk
ADDRESS : 0x0AB02000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\drivers\luafv.sys => Invisible on the disk
ADDRESS : 0x0AB0F000
SIZE    : 140.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\avgntflt.sys => Invisible on the disk
ADDRESS : 0x0AB32000
SIZE    : 128.0 Ko

DRIVER  : C:\Windows\system32\drivers\WudfPf.sys => Invisible on the disk
ADDRESS : 0x0AB52000
SIZE    : 132.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\lltdio.sys => Invisible on the disk
ADDRESS : 0x0AB73000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ndisuio.sys => Invisible on the disk
ADDRESS : 0x0AB88000
SIZE    : 76.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rspndr.sys => Invisible on the disk
ADDRESS : 0x0AB9B000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\cdfs.sys => Invisible on the disk
ADDRESS : 0x0ABB3000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\bowser.sys => Invisible on the disk
ADDRESS : 0x0ABD0000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\System32\drivers\mpsdrv.sys => Invisible on the disk
ADDRESS : 0x0AA00000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
ADDRESS : 0x0AA18000
SIZE    : 180.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
ADDRESS : 0x0AA45000
SIZE    : 312.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
ADDRESS : 0x04C00000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\system32\drivers\peauth.sys => Invisible on the disk
ADDRESS : 0x0B846000
SIZE    : 664.0 Ko

DRIVER  : C:\Windows\System32\Drivers\secdrv.SYS => Invisible on the disk
ADDRESS : 0x0B8EC000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\srvnet.sys => Invisible on the disk
ADDRESS : 0x0B8F7000
SIZE    : 196.0 Ko

DRIVER  : C:\Windows\System32\drivers\tcpipreg.sys => Invisible on the disk
ADDRESS : 0x0B928000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ubsbm.sys => Invisible on the disk
ADDRESS : 0x0B93A000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ubumapi.sys => Invisible on the disk
ADDRESS : 0x0B945000
SIZE    : 112.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\srv2.sys => Invisible on the disk
ADDRESS : 0x0BC6E000
SIZE    : 420.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\srv.sys => Invisible on the disk
ADDRESS : 0x0BCD7000
SIZE    : 608.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\afcdp.sys => Invisible on the disk
ADDRESS : 0x0BD6F000
SIZE    : 288.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\WUDFRd.sys => Invisible on the disk
ADDRESS : 0x0BDBF000
SIZE    : 196.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\asyncmac.sys => Invisible on the disk
ADDRESS : 0x0C714000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\smss.exe => Invisible on the disk
ADDRESS : 0x48310000
SIZE    : 128.0 Ko

SystemStartOptions :  NOEXECUTE=OPTIN  NUMPROC=4

________________________________________________________________________________

_______MBR   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.м.|.À.ؾ.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84   N.u..~......².ë.
0x000000B0   55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55   U2ä.V.Í.]ë..>þ}U
0x000000C0   AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64   ªun.v.è..u.ú°Ñæd
0x000000D0   E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75   è..°ßæ`è|.°.ædèu
0x000000E0   00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54   .û¸.»Í.f#Àu;f.ûT
0x000000F0   43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00   CPAu2.ù..r,fh.».
0x00000100   00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66   .fh....fh....fSf
0x00000110   53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66   SfUfh....fh.|..f
0x00000120   61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD   ah...Í.Z2öê.|..Í
0x00000130   18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4   ..·.ë..¶.ë..µ.2ä
0x00000140   05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD   ....ð¬<.t.»..´.Í
0x00000150   10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8   .ëòôëý+Éädë.$.àø
0x00000160   24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69   $.ÃInvalid parti
0x00000170   74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72   tion table.Error
0x00000180   20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69    loading operati
0x00000190   6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E   ng system.Missin
0x000001A0   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x000001B0   65 6D 00 00 00 63 7B 9A 68 9D 23 B0 00 00 80 20   em...c{.h.#°... 
0x000001C0   21 00 07 A3 13 0D 00 08 00 00 00 20 03 00 00 A3   !..£....... ...£
0x000001D0   14 0D 07 EF FF FF 00 28 03 00 F9 BF 3C 44 00 EF   ...ï...(..ù¿<D.ï
0x000001E0   FF FF 07 EF FF FF 00 E8 3F 44 00 70 45 06 00 00   ...ï...è?D.pE...
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk6\DR6  

0x00000000   33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C   3À.м.|ûP.P.ü¾.|
0x00000010   BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04   ¿..PW¹å.ó¤Ë½¾.±.
0x00000020   38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5   8n.|.u..Å.âôÍ..õ
0x00000030   83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B   .Æ.It.8,tö.µ.´..
0x00000040   F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88   ð¬<.tü»..´.Í.ëò.
0x00000050   4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B   N.èF.s*þF..~..t.
0x00000060   80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83   .~..t..¶.uÒ.F...
0x00000070   46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB   F...V..è!.s..¶.ë
0x00000080   BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0   ¼.>þ}Uªt..~..tÈ.
0x00000090   B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56   ·.ë©.ü.W.õË¿...V
0x000000A0   00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC   .´.Í.r#.Á$?..Þ.ü
0x000000B0   43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56   C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0   0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C   .w#r.9F.s.¸..».|
0x000000D0   8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A   .N..V.Í.sQOtN2ä.
0x000000E0   56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD   V.Í.ëä.V.`»ªU´AÍ
0x000000F0   13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60   .r6.ûUªu0öÁ.t+a`
0x00000100   6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A   j.j..v..v.j.h.|j
0x00000110   01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B   .j.´B.ôÍ.aas.Ot.
0x00000120   32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 49 6E 76 61   2ä.V.Í.ëÖaùÃInva
0x00000130   6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61   lid partition ta
0x00000140   62 6C 65 00 45 72 72 6F 72 20 6C 6F 61 64 69 6E   ble.Error loadin
0x00000150   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x00000160   65 6D 00 4D 69 73 73 69 6E 67 20 6F 70 65 72 61   em.Missing opera
0x00000170   74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00   ting system.....
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 2C 44 63 D9 3A E9 2F 00 00 80 01   .....,DcÙ:é/....
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 82 74 E0 E8 00 00   ...þ..?....tàè..
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#5 Příspěvek od Lilly [FR] »

OTL :shock: děla pri scanu potíže, davala jsem pomalejši aj rychli scan po 5 minutach zamrzne a vyhodi zprávu OUT OF MEMORY

Použivam mobil Sony Ericson K770i ten žadny system android nema, obyčejní klasicke digitalni zobrazeni je to zastaraly způsob, ale bezpečny jak jsem ho koupila tak zůstal ve vychozim nastaveni, žadne přidavani obrazku nebo zvoněni z webu, byl take scenovan a žadna detekce viru.

Takže jake je moje zabezpečení na pc, mam něco přidat nebo odinstalovat?Log z RSIT je v pořadku?Pokud všechno je v pořadku což můžeš potvrdit bude problem asi na firemnim pc.
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#6 Příspěvek od Lilly [FR] »

Udělala jsem dle tvych instrukci, ale pokud došlo na scan prostě cez přikazovy řadek tak ohledem přikazu c:\frst.exe - System nemuže nic nalezt a druhy přikaz: e:\frst64 - tam se mi vyhodil tabulator o vložemí DVD - Media do mechaniky, buď jsem tak blba nebo jako vždycky jsem zase zazmatkovala :roll: :roll: :roll:

Na C: je operacny system 7 a ten ma jeste takovou zvlaštni složku při spuštení systemu 100 mb, na D:je druha čast diskoveho oddilu mam 2 oddily a E:je opticka mechanika DVD - RW

Promin v tomhle jsem nezkušena, tak raději počkam co dale, abych něco nezpackala a nezroutila op.systemovu jednotku :?:
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#7 Příspěvek od Lilly [FR] »

Scan result of Farbar Recovery Scan Tool Version: 25-07-2012 01
Ran by Skynet - 2010 at 30-07-2012 19:32:00
Running from C:\
Service Pack 1 (X64) OS Language: Czech
Attention: Could not load system hive.Chyba: Proces nem  pýˇstup k souboru, neboś jej pr vŘ vyu§ˇv  jině proces.

ATTENTION:=====> THE TOOL IS NOT RUN FROM RECOVERY ENVIRONMENT AND WILL NOT FUNCTION PROPERLY.


============ One Month Created Files and Folders ==============

2012-07-30 18:52 - 2012-07-30 18:51 - 01438391 ____A (Farbar) C:\FRST64.exe
2012-07-30 13:40 - 2012-07-30 13:40 - 00000000 ___AH C:\extensions.sqlite
2012-07-30 05:46 - 2012-07-30 05:46 - 00000000 ___HD C:\Users\Skynet - 2010\Documents\LucasArts
2012-07-30 05:46 - 2012-07-30 05:46 - 00000000 ____D C:\Users\Skynet - 2010\AppData\Local\LucasArts
2012-07-30 05:43 - 2012-07-30 05:43 - 00000000 ___HD C:\Users\Skynet - 2010\Documents\Aspyr
2012-07-30 02:37 - 2012-07-30 14:03 - 00000308 ____A C:\Windows\Tasks\Windows 7 Manager - Logon Background Changer.job
2012-07-30 02:18 - 2012-07-30 02:20 - 00000000 ____D C:\Program Files (x86)\Menič - Tapet
2012-07-30 02:00 - 2012-07-30 15:10 - 00048465 ____A C:\Windows\WindowsUpdate.log
2012-07-30 02:00 - 2012-05-15 11:29 - 03149632 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvc64.dll
2012-07-30 02:00 - 2012-05-15 11:29 - 02621723 ____A C:\Windows\System32\nvcoproc.bin
2012-07-30 02:00 - 2012-05-15 11:29 - 02561856 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvcr.dll
2012-07-30 02:00 - 2012-05-15 11:29 - 00889664 ____A (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
2012-07-30 02:00 - 2012-05-15 11:29 - 00118080 ____A (NVIDIA Corporation) C:\Windows\System32\nvmctray.dll
2012-07-30 02:00 - 2012-05-15 11:29 - 00063296 ____A (NVIDIA Corporation) C:\Windows\System32\nvshext.dll
2012-07-30 02:00 - 2012-05-15 11:28 - 06151488 ____A (NVIDIA Corporation) C:\Windows\System32\nvcpl.dll
2012-07-30 01:59 - 2012-07-30 01:59 - 00000000 ____D C:\Users\All Users\NVIDIA Corporation
2012-07-30 01:59 - 2012-07-30 01:59 - 00000000 ____D C:\Users\All Users\Application Data\NVIDIA Corporation
2012-07-30 01:59 - 2012-05-15 12:48 - 00068928 ____A (Khronos Group) C:\Windows\System32\OpenCL.dll
2012-07-30 01:59 - 2012-05-15 12:48 - 00061248 ____A (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2012-07-30 01:55 - 2012-05-15 14:55 - 01468224 ____A (NVIDIA Corporation) C:\Windows\System32\nvir3dgenco6420142.dll
2012-07-30 01:55 - 2012-05-15 14:55 - 00398656 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstusb.sys
2012-07-30 01:55 - 2012-05-15 12:48 - 25743168 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 25248064 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 19607872 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 18044224 ____A (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 17551680 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 15322432 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 14298944 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2012-07-30 01:55 - 2012-05-15 12:48 - 10194752 ____A (NVIDIA Corporation) C:\Windows\System32\nvwgf2umx.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 08139072 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 08105280 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 05982528 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 02881856 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 02741568 ____A (NVIDIA Corporation) C:\Windows\System32\nvapi64.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 02681664 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 02524992 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 02445120 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 02368832 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 01738048 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispco64.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 01468224 ____A (NVIDIA Corporation) C:\Windows\System32\nvgenco64.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 00949056 ____A (NVIDIA Corporation) C:\Windows\System32\nvumdshimx.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 00818496 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 00364352 ____A (NVIDIA Corporation) C:\Windows\System32\nvdecodemft.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 00301376 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 00246592 ____A (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 00202048 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2012-07-30 01:55 - 2012-05-15 12:48 - 00014324 ____A C:\Windows\System32\nvinfo.pb
2012-07-30 01:55 - 2012-04-18 19:08 - 01451840 ____A (NVIDIA Corporation) C:\Windows\System32\nvhdagenco6420103.dll
2012-07-30 01:55 - 2012-04-18 19:08 - 00188736 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys
2012-07-30 01:55 - 2012-04-18 19:08 - 00031040 ____A (NVIDIA Corporation) C:\Windows\System32\nvhdap64.dll
2012-07-29 19:27 - 2012-07-30 02:33 - 00000000 ____D C:\Program Files\Windows 7 - Manager
2012-07-29 01:48 - 2012-07-29 01:48 - 00000000 ____D C:\Windows\pss
2012-07-29 01:31 - 2012-07-29 01:31 - 00000000 ___HD C:\Users\Skynet - 2010\Documents\BioWare
2012-07-29 01:31 - 2012-07-29 01:31 - 00000000 ____D C:\Users\All Users\BioWare
2012-07-29 01:31 - 2012-07-29 01:31 - 00000000 ____D C:\Users\All Users\Application Data\BioWare
2012-07-28 20:30 - 2012-07-30 05:40 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2012-07-28 20:30 - 2012-07-28 20:30 - 00000000 ____D C:\Windows\SysWOW64\AGEIA
2012-07-28 04:26 - 2012-07-30 15:07 - 00000000 ____D C:\Program Files (x86)\Steam
2012-07-27 15:14 - 2012-07-27 15:14 - 00000000 ____D C:\Users\Skynet - 2010\AppData\Roaming\Avira
2012-07-27 15:08 - 2012-07-28 18:06 - 00000000 ____D C:\Program Files (x86)\Ask.com
2012-07-27 15:08 - 2012-07-28 04:14 - 00000000 ____D C:\Program Files (x86)\Avira
2012-07-27 15:08 - 2012-07-27 15:23 - 00000000 ____D C:\Users\All Users\Avira
2012-07-27 15:08 - 2012-07-27 15:23 - 00000000 ____D C:\Users\All Users\Application Data\Avira
2012-07-27 15:08 - 2012-07-27 15:19 - 00132832 ____A (Avira GmbH) C:\Windows\System32\Drivers\avipbb.sys
2012-07-27 15:08 - 2012-07-27 15:19 - 00098848 ____A (Avira GmbH) C:\Windows\System32\Drivers\avgntflt.sys
2012-07-27 15:08 - 2011-09-16 16:09 - 00027760 ____A (Avira GmbH) C:\Windows\System32\Drivers\avkmgr.sys
2012-07-26 04:28 - 2012-07-26 04:28 - 00000000 ____D C:\Users\Skynet - 2010\AppData\Local\Aspyr
2012-07-26 00:38 - 2012-07-26 17:09 - 00000000 ____D C:\Program Files (x86)\Reality Pump
2012-07-23 14:36 - 2012-07-23 14:36 - 00000000 ____D C:\Program Files (x86)\T-Mobile
2012-07-23 14:24 - 2012-07-23 14:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2012-07-23 14:24 - 2012-07-23 14:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2012-07-23 14:24 - 2012-07-23 14:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2012-07-23 14:24 - 2011-10-24 17:36 - 00422400 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ewusbwwan.sys
2012-07-23 14:24 - 2011-09-09 12:51 - 00218624 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_juwwanecm.sys
2012-07-23 14:24 - 2011-09-09 12:51 - 00098304 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_jucdcacm.sys
2012-07-23 14:24 - 2011-09-09 12:51 - 00087040 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_jubusenum.sys
2012-07-23 14:24 - 2011-09-09 12:51 - 00072192 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_jucdcecm.sys
2012-07-23 14:24 - 2011-09-09 12:51 - 00028672 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_juextctrl.sys
2012-07-23 14:24 - 2011-08-16 18:17 - 00223232 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ewusbmdm.sys
2012-07-23 14:24 - 2011-08-16 17:40 - 01490656 ____A (Microsoft Corporation) C:\Windows\System32\WdfCoInstaller01007.dll
2012-07-23 14:24 - 2011-08-16 17:40 - 01490656 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WdfCoInstaller01007.dll
2012-07-23 14:24 - 2010-10-08 17:59 - 00032768 ____A (Huawei Tech. Co., Ltd.) C:\Windows\System32\Drivers\ewdcsc.sys
2012-07-23 14:24 - 2010-09-26 19:09 - 00022016 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_hwupgrade.sys
2012-07-23 14:24 - 2010-08-06 08:43 - 01001472 ____A (DiBcom SA) C:\Windows\System32\Drivers\mod7700.sys
2012-07-23 14:24 - 2010-07-27 10:52 - 00117248 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_hwusbdev.sys
2012-07-23 14:24 - 2010-03-20 13:06 - 00013952 ____A (Huawei Technologies Co., Ltd.) C:\Windows\System32\Drivers\ew_usbenumfilter.sys
2012-07-23 14:23 - 2012-07-23 14:23 - 00000000 ____D C:\Program Files (x86)\Huawei
2012-07-23 06:06 - 2012-07-23 06:06 - 00000000 ____D C:\Program Files\DIFX
2012-07-23 06:01 - 2012-01-09 17:28 - 00057856 ____A (Nokia) C:\Windows\System32\nmwcdclsX64.dll
2012-07-23 06:00 - 2012-07-23 06:00 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
2012-07-22 01:10 - 2012-07-23 15:23 - 00000000 ____D C:\Users\Skynet - 2010\AppData\Roaming\Spy Emergency
2012-07-21 21:40 - 2012-06-29 05:37 - 01472360 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispgenco64.dll
2012-07-19 00:15 - 2012-07-19 00:15 - 00000000 ____D C:\Users\Skynet - 2010\AppData\Roaming\SUPERAntiSpyware.com
2012-07-19 00:14 - 2012-07-19 00:14 - 00000000 ____D C:\Users\All Users\SUPERAntiSpyware.com
2012-07-19 00:14 - 2012-07-19 00:14 - 00000000 ____D C:\Users\All Users\Application Data\SUPERAntiSpyware.com
2012-07-13 02:22 - 2012-04-20 07:50 - 00097880 ____A (Alcor Micro, Corp.) C:\Windows\System32\Drivers\AmUStor.sys
2012-07-13 02:20 - 2012-06-12 23:41 - 00683664 ____A (Realtek ) C:\Windows\System32\Drivers\Rt630x64.sys
2012-07-13 02:20 - 2012-06-12 23:41 - 00074344 ____A (Realtek Semiconductor Corporation) C:\Windows\System32\RtNicProp64.dll
2012-07-11 18:52 - 2012-06-12 05:08 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-11 18:47 - 2012-06-02 14:49 - 17807360 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-11 18:47 - 2012-06-02 14:17 - 10924032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-11 18:47 - 2012-06-02 14:12 - 02311680 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-07-11 18:47 - 2012-06-02 14:05 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-11 18:47 - 2012-06-02 14:05 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-11 18:47 - 2012-06-02 14:04 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-11 18:47 - 2012-06-02 14:04 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-11 18:47 - 2012-06-02 14:03 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-11 18:47 - 2012-06-02 14:01 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-07-11 18:47 - 2012-06-02 14:00 - 00818688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-07-11 18:47 - 2012-06-02 13:59 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-11 18:47 - 2012-06-02 13:57 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-07-11 18:47 - 2012-06-02 13:57 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-11 18:47 - 2012-06-02 13:54 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-07-11 18:47 - 2012-06-02 11:07 - 12314624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-07-11 18:47 - 2012-06-02 10:43 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-07-11 18:47 - 2012-06-02 10:33 - 01800192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-07-11 18:47 - 2012-06-02 10:26 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-07-11 18:47 - 2012-06-02 10:25 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-07-11 18:47 - 2012-06-02 10:25 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-07-11 18:47 - 2012-06-02 10:23 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-07-11 18:47 - 2012-06-02 10:21 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-07-11 18:47 - 2012-06-02 10:20 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-07-11 18:47 - 2012-06-02 10:19 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-07-11 18:47 - 2012-06-02 10:19 - 00716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-07-11 18:47 - 2012-06-02 10:17 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-07-11 18:47 - 2012-06-02 10:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-07-11 18:47 - 2012-06-02 10:14 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-07-11 18:37 - 2012-06-09 07:43 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-07-11 18:37 - 2012-06-09 06:41 - 12873728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2012-07-11 18:36 - 2012-06-06 08:02 - 01133568 ____A (Microsoft Corporation) C:\Windows\System32\cdosys.dll
2012-07-11 18:36 - 2012-06-06 07:03 - 00805376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2012-07-11 18:00 - 2012-06-06 08:06 - 02004480 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-07-11 18:00 - 2012-06-06 08:06 - 01881600 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2012-07-11 18:00 - 2012-06-06 07:05 - 01390080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2012-07-11 18:00 - 2012-06-06 07:05 - 01236992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2012-07-11 18:00 - 2012-06-02 07:50 - 00458704 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2012-07-11 18:00 - 2012-06-02 07:48 - 00151920 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2012-07-11 18:00 - 2012-06-02 07:48 - 00095600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2012-07-11 18:00 - 2012-06-02 07:45 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll
2012-07-11 18:00 - 2012-06-02 07:44 - 00307200 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2012-07-11 18:00 - 2012-06-02 06:40 - 00225280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2012-07-11 18:00 - 2012-06-02 06:40 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2012-07-11 18:00 - 2012-06-02 06:39 - 00219136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2012-07-11 18:00 - 2012-06-02 06:34 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2012-07-11 18:00 - 2010-06-26 05:55 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\msxml3r.dll
2012-07-11 18:00 - 2010-06-26 05:24 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2012-07-04 04:34 - 2012-07-04 06:00 - 00000000 ____D C:\Users\All Users\Comodo
2012-07-04 04:34 - 2012-07-04 06:00 - 00000000 ____D C:\Users\All Users\Application Data\Comodo
2012-07-03 13:49 - 2010-02-23 10:16 - 00294912 ____A (Microsoft Corporation) C:\Windows\System32\browserchoice.exe
2012-07-02 18:43 - 2012-07-02 18:43 - 00000000 ___HD C:\Users\Skynet - 2010\Documents\Assassin's Creed Revelations
2012-07-02 17:52 - 2012-07-02 17:52 - 00000000 ____D C:\Users\Skynet - 2010\AppData\Roaming\Ubisoft
2012-06-30 22:25 - 2012-06-30 22:25 - 00000000 ___HD C:\Users\Skynet - 2010\Documents\ARADump
2012-06-30 22:01 - 2012-06-30 22:01 - 00002091 ____A C:\Users\Default\Desktop\CyberLink WaveEditor.lnk
2012-06-30 22:01 - 2012-06-30 22:01 - 00002091 ____A C:\Users\Default User\Desktop\CyberLink WaveEditor.lnk
2012-06-30 22:00 - 2012-06-30 22:00 - 00000000 ____D C:\Users\All Users\SmartSound Software Inc
2012-06-30 22:00 - 2012-06-30 22:00 - 00000000 ____D C:\Users\All Users\eSellerate
2012-06-30 22:00 - 2012-06-30 22:00 - 00000000 ____D C:\Users\All Users\Application Data\SmartSound Software Inc
2012-06-30 22:00 - 2012-06-30 22:00 - 00000000 ____D C:\Users\All Users\Application Data\eSellerate
2012-06-30 22:00 - 2012-06-30 22:00 - 00000000 ____D C:\Program Files (x86)\SmartSound Software
2012-06-30 21:59 - 2012-06-30 22:00 - 00000000 ____D C:\Program Files (x86)\QuickTime
2012-06-30 21:59 - 2012-06-30 21:59 - 00000000 ____D C:\Users\Skynet - 2010\AppData\Local\Apple
2012-06-30 21:59 - 2012-06-30 21:59 - 00000000 ____D C:\Users\All Users\Application Data\Apple Computer
2012-06-30 21:59 - 2012-06-30 21:59 - 00000000 ____D C:\Users\All Users\Application Data\Apple
2012-06-30 21:59 - 2012-06-30 21:59 - 00000000 ____D C:\Users\All Users\Apple Computer
2012-06-30 21:59 - 2012-06-30 21:59 - 00000000 ____D C:\Users\All Users\Apple
2012-06-30 21:59 - 2012-06-30 21:59 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2012-06-30 21:57 - 2012-06-30 22:19 - 00000000 ____D C:\Program Files\CyberLink
2012-06-30 21:54 - 2012-06-30 21:54 - 00000000 ____D C:\Users\All Users\CLSK
2012-06-30 21:54 - 2012-06-30 21:54 - 00000000 ____D C:\Users\All Users\Application Data\CLSK
2012-06-30 17:41 - 2012-07-30 18:45 - 00000914 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-06-30 17:41 - 2012-07-27 13:39 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-06-30 17:41 - 2012-07-27 13:39 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-06-30 00:49 - 2012-06-30 00:49 - 00000017 ____A C:\Users\Skynet - 2010\AppData\Local\resmon.resmoncfg


============ 3 Months Modified Files ========================

2012-07-30 18:51 - 2012-07-30 18:52 - 01438391 ____A (Farbar) C:\FRST64.exe
2012-07-30 18:45 - 2012-06-30 17:41 - 00000914 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-07-30 18:25 - 2012-07-30 02:00 - 00048465 ____A C:\Windows\WindowsUpdate.log
2012-07-30 14:11 - 2009-07-14 06:45 - 00015152 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-07-30 14:11 - 2009-07-14 06:45 - 00015152 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-07-30 14:03 - 2012-07-30 02:37 - 00000308 ____A C:\Windows\Tasks\Windows 7 Manager - Logon Background Changer.job
2012-07-30 13:40 - 2012-07-30 13:40 - 00000000 ___AH C:\extensions.sqlite
2012-07-30 13:37 - 2009-07-14 17:18 - 00613184 ____A C:\Windows\System32\perfh005.dat
2012-07-30 13:37 - 2009-07-14 17:18 - 00114478 ____A C:\Windows\System32\perfc005.dat
2012-07-30 13:37 - 2009-07-14 07:13 - 01419084 ____A C:\Windows\System32\PerfStringBackup.INI
2012-07-30 13:32 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-07-27 15:19 - 2012-07-27 15:08 - 00132832 ____A (Avira GmbH) C:\Windows\System32\Drivers\avipbb.sys
2012-07-27 15:19 - 2012-07-27 15:08 - 00098848 ____A (Avira GmbH) C:\Windows\System32\Drivers\avgntflt.sys
2012-07-27 13:39 - 2012-06-30 17:41 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-07-27 13:39 - 2012-06-30 17:41 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-07-25 01:31 - 2011-12-19 09:43 - 00000125 ____A C:\Users\Skynet - 2010\Documents\Odkaz - Download.txt
2012-07-23 14:24 - 2012-07-23 14:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2012-07-23 14:24 - 2012-07-23 14:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2012-07-23 14:24 - 2012-07-23 14:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2012-07-21 16:22 - 2012-05-03 09:10 - 00000000 ____A C:\Windows\SysWOW64\config.nt
2012-07-21 01:35 - 2009-07-14 04:34 - 60817408 ____A C:\Windows\System32\config\SOFTWARE.rcbak
2012-07-21 01:35 - 2009-07-14 04:34 - 24379392 ____A C:\Windows\System32\config\SYSTEM.rcbak
2012-07-21 01:35 - 2009-07-14 04:34 - 00524288 ____A C:\Windows\System32\config\DEFAULT.rcbak
2012-07-21 01:35 - 2009-07-14 04:34 - 00262144 ____A C:\Windows\System32\config\SECURITY.rcbak
2012-07-21 01:35 - 2009-07-14 04:34 - 00057344 ____A C:\Windows\System32\config\SAM.rcbak
2012-07-17 18:44 - 2009-07-14 07:08 - 00032564 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-07-11 18:55 - 2009-07-14 06:45 - 04942488 ____A C:\Windows\System32\FNTCACHE.DAT
2012-07-11 18:52 - 2009-07-14 04:34 - 00000478 ____A C:\Windows\win.ini
2012-07-11 18:49 - 2011-12-31 17:28 - 59701280 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-07-04 04:19 - 2012-06-17 23:33 - 00001912 ____A C:\Windows\epplauncher.mif
2012-07-03 18:21 - 2012-05-03 09:10 - 00285328 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe
2012-07-01 15:05 - 2009-07-14 04:34 - 60555264 ____A C:\Windows\System32\config\SOFTWARE_tureg_old
2012-07-01 15:05 - 2009-07-14 04:34 - 23855104 ____A C:\Windows\System32\config\SYSTEM_tureg_old
2012-07-01 15:05 - 2009-07-14 04:34 - 00028672 ____A C:\Windows\System32\config\SECURITY_tureg_old
2012-07-01 15:02 - 2009-07-14 04:34 - 38010880 ____A C:\Windows\System32\config\COMPONENTS_tureg_old
2012-07-01 15:02 - 2009-07-14 04:34 - 00331776 ____A C:\Windows\System32\config\DEFAULT_tureg_old
2012-07-01 15:02 - 2009-07-14 04:34 - 00057344 ____A C:\Windows\System32\config\SAM_tureg_old
2012-06-30 22:01 - 2012-06-30 22:01 - 00002091 ____A C:\Users\Default\Desktop\CyberLink WaveEditor.lnk
2012-06-30 22:01 - 2012-06-30 22:01 - 00002091 ____A C:\Users\Default User\Desktop\CyberLink WaveEditor.lnk
2012-06-30 20:52 - 2012-06-26 13:53 - 00000349 ____A C:\Users\Public\Documents\PCLECHAL.INI
2012-06-30 20:52 - 2012-06-26 13:53 - 00000349 ____A C:\Users\All Users\Documents\PCLECHAL.INI
2012-06-30 00:49 - 2012-06-30 00:49 - 00000017 ____A C:\Users\Skynet - 2010\AppData\Local\resmon.resmoncfg
2012-06-29 05:37 - 2012-07-21 21:40 - 01472360 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispgenco64.dll
2012-06-25 15:23 - 2012-06-25 15:23 - 00227824 ____N (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2012-06-25 15:23 - 2012-06-25 15:23 - 00174064 ____N (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2012-06-25 15:23 - 2012-06-25 15:23 - 00174064 ____N (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2012-06-25 15:23 - 2012-04-15 13:17 - 00772592 ____N (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll
2012-06-25 15:23 - 2012-01-04 03:35 - 00687600 ____N (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2012-06-23 13:22 - 2012-04-15 15:13 - 00006144 ____A C:\Users\Skynet - 2010\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-20 14:51 - 2012-05-24 02:12 - 00000211 ____A C:\Users\Skynet - 2010\Documents\Kniha.txt
2012-06-18 10:20 - 2012-05-03 21:17 - 00001024 ____A C:\Users\Skynet - 2010\AppData\Local\Share Rapid - Downloader.nast
2012-06-17 23:32 - 2012-03-14 09:30 - 01502986 ____N C:\Windows\SysWOW64\PerfStringBackup.INI
2012-06-17 11:37 - 2012-04-22 00:00 - 00000000 ____A C:\Users\Skynet - 2010\AppData\Roaming\FileOut.cns
2012-06-17 11:37 - 2012-04-22 00:00 - 00000000 ____A C:\Users\Skynet - 2010\AppData\Roaming\FileIn.cns
2012-06-12 23:41 - 2012-07-13 02:20 - 00683664 ____A (Realtek ) C:\Windows\System32\Drivers\Rt630x64.sys
2012-06-12 23:41 - 2012-07-13 02:20 - 00074344 ____A (Realtek Semiconductor Corporation) C:\Windows\System32\RtNicProp64.dll
2012-06-12 05:09 - 2012-06-12 05:09 - 00189248 ____N C:\Windows\SysWOW64\PnkBstrB.exe
2012-06-12 05:09 - 2012-06-12 05:09 - 00075136 ____N C:\Windows\SysWOW64\PnkBstrA.exe
2012-06-12 05:08 - 2012-07-11 18:52 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-06-09 07:43 - 2012-07-11 18:37 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-06-09 06:41 - 2012-07-11 18:37 - 12873728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2012-06-06 08:06 - 2012-07-11 18:00 - 02004480 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-06-06 08:06 - 2012-07-11 18:00 - 01881600 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2012-06-06 08:02 - 2012-07-11 18:36 - 01133568 ____A (Microsoft Corporation) C:\Windows\System32\cdosys.dll
2012-06-06 07:05 - 2012-07-11 18:00 - 01390080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2012-06-06 07:05 - 2012-07-11 18:00 - 01236992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2012-06-06 07:03 - 2012-07-11 18:36 - 00805376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2012-06-03 00:19 - 2012-06-24 10:38 - 02428952 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2012-06-03 00:19 - 2012-06-24 10:38 - 00701976 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2012-06-03 00:19 - 2012-06-24 10:38 - 00057880 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2012-06-03 00:19 - 2012-06-24 10:38 - 00044056 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2012-06-03 00:19 - 2012-06-24 10:38 - 00038424 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2012-06-03 00:15 - 2012-06-24 10:38 - 02622464 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2012-06-03 00:15 - 2012-06-24 10:38 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2012-06-02 15:19 - 2012-06-24 10:37 - 00186752 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2012-06-02 15:15 - 2012-06-24 10:37 - 00036864 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2012-06-02 14:49 - 2012-07-11 18:47 - 17807360 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-06-02 14:17 - 2012-07-11 18:47 - 10924032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-06-02 14:12 - 2012-07-11 18:47 - 02311680 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-06-02 14:05 - 2012-07-11 18:47 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-06-02 14:05 - 2012-07-11 18:47 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-06-02 14:04 - 2012-07-11 18:47 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-06-02 14:04 - 2012-07-11 18:47 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-06-02 14:03 - 2012-07-11 18:47 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-06-02 14:01 - 2012-07-11 18:47 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-06-02 14:00 - 2012-07-11 18:47 - 00818688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-06-02 13:59 - 2012-07-11 18:47 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-06-02 13:57 - 2012-07-11 18:47 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-06-02 13:57 - 2012-07-11 18:47 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-06-02 13:54 - 2012-07-11 18:47 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-06-02 11:07 - 2012-07-11 18:47 - 12314624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-06-02 10:43 - 2012-07-11 18:47 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-06-02 10:33 - 2012-07-11 18:47 - 01800192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-06-02 10:26 - 2012-07-11 18:47 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-06-02 10:25 - 2012-07-11 18:47 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-06-02 10:25 - 2012-07-11 18:47 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-06-02 10:23 - 2012-07-11 18:47 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-06-02 10:21 - 2012-07-11 18:47 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-06-02 10:20 - 2012-07-11 18:47 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-06-02 10:19 - 2012-07-11 18:47 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-06-02 10:19 - 2012-07-11 18:47 - 00716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-06-02 10:17 - 2012-07-11 18:47 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-06-02 10:16 - 2012-07-11 18:47 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-06-02 10:14 - 2012-07-11 18:47 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-06-02 07:50 - 2012-07-11 18:00 - 00458704 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2012-06-02 07:48 - 2012-07-11 18:00 - 00151920 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2012-06-02 07:48 - 2012-07-11 18:00 - 00095600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2012-06-02 07:45 - 2012-07-11 18:00 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll
2012-06-02 07:44 - 2012-07-11 18:00 - 00307200 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2012-06-02 06:40 - 2012-07-11 18:00 - 00225280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2012-06-02 06:40 - 2012-07-11 18:00 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2012-06-02 06:39 - 2012-07-11 18:00 - 00219136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2012-06-02 06:34 - 2012-07-11 18:00 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2012-05-30 16:54 - 2011-12-31 15:14 - 00466520 ____A (Creative Labs) C:\Windows\System32\wrap_oal.dll
2012-05-30 16:54 - 2011-12-31 15:14 - 00445016 ____N (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2012-05-25 22:23 - 2012-05-26 23:23 - 00438376 ____A (Realtek Semiconductor Corporation ) C:\Windows\System32\Drivers\Rtenic64.sys
2012-05-15 14:55 - 2012-07-30 01:55 - 01468224 ____A (NVIDIA Corporation) C:\Windows\System32\nvir3dgenco6420142.dll
2012-05-15 14:55 - 2012-07-30 01:55 - 00398656 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstusb.sys
2012-05-15 12:48 - 2012-07-30 01:59 - 00068928 ____A (Khronos Group) C:\Windows\System32\OpenCL.dll
2012-05-15 12:48 - 2012-07-30 01:59 - 00061248 ____A (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 25743168 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 25248064 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 19607872 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 18044224 ____A (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 17551680 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 15322432 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 14298944 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2012-05-15 12:48 - 2012-07-30 01:55 - 10194752 ____A (NVIDIA Corporation) C:\Windows\System32\nvwgf2umx.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 08139072 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 08105280 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 05982528 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 02881856 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 02741568 ____A (NVIDIA Corporation) C:\Windows\System32\nvapi64.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 02681664 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 02524992 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 02445120 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 02368832 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 01738048 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispco64.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 01468224 ____A (NVIDIA Corporation) C:\Windows\System32\nvgenco64.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 00949056 ____A (NVIDIA Corporation) C:\Windows\System32\nvumdshimx.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 00818496 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 00364352 ____A (NVIDIA Corporation) C:\Windows\System32\nvdecodemft.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 00301376 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 00246592 ____A (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 00202048 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2012-05-15 12:48 - 2012-07-30 01:55 - 00014324 ____A C:\Windows\System32\nvinfo.pb
2012-05-15 11:29 - 2012-07-30 02:00 - 03149632 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvc64.dll
2012-05-15 11:29 - 2012-07-30 02:00 - 02621723 ____A C:\Windows\System32\nvcoproc.bin
2012-05-15 11:29 - 2012-07-30 02:00 - 02561856 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvcr.dll
2012-05-15 11:29 - 2012-07-30 02:00 - 00889664 ____A (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
2012-05-15 11:29 - 2012-07-30 02:00 - 00118080 ____A (NVIDIA Corporation) C:\Windows\System32\nvmctray.dll
2012-05-15 11:29 - 2012-07-30 02:00 - 00063296 ____A (NVIDIA Corporation) C:\Windows\System32\nvshext.dll
2012-05-15 11:28 - 2012-07-30 02:00 - 06151488 ____A (NVIDIA Corporation) C:\Windows\System32\nvcpl.dll
2012-05-15 02:21 - 2012-05-15 02:21 - 00423744 ____A C:\Windows\SysWOW64\nvStreaming.exe
2012-05-08 20:03 - 2011-12-31 14:57 - 00102312 ____A C:\Users\Skynet - 2010\AppData\Local\GDIPFONTCACHEV1.DAT
2012-05-04 13:06 - 2012-06-14 11:35 - 05559664 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-05-04 13:00 - 2012-06-14 16:58 - 00366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll
2012-05-04 12:03 - 2012-06-14 11:35 - 03968368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2012-05-04 12:03 - 2012-06-14 11:35 - 03913072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-05-04 11:59 - 2012-06-14 16:58 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 33%
Total physical RAM: 6142.49 MB
Available physical RAM: 4068.83 MB
Total Pagefile: 15783.18 MB
Available Pagefile: 13766.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.87 MB

======================= Partitions =========================

1 Drive c: (Disk - 1) (Fixed) (Total:545.9 GB) (Free:326.6 GB) NTFS
2 Drive d: (Disk - 2) (Fixed) (Total:50.17 GB) (Free:29.28 GB) NTFS
4 Drive f: (HUAWEI) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS
8 Drive j: (Disk - Extra) (Fixed) (Total:1863.01 GB) (Free:1191.1 GB) NTFS

Disk ### Stav Velikost Voln‚ Dyn Gpt
-------- ------------- -------- ------- --- ---
Disk 0 Online 596 GB 0 B
Disk 1 ¦ dn‚ m‚dium 0 B 0 B
Disk 2 ¦ dn‚ m‚dium 0 B 0 B
Disk 3 ¦ dn‚ m‚dium 0 B 0 B
Disk 4 ¦ dn‚ m‚dium 0 B 0 B
Disk 5 ¦ dn‚ m‚dium 0 B 0 B
Disk 6 Online 1863 GB 1024 KB

Probˇh  ukonźenˇ programu DiskPart...

Partitions of Disk 0:
===============

Nynˇ je vybr n disk 0.

Oddˇl ### Typ Velikost Posunutˇ
------------- ---------------- -------- --------
Oddˇl 1 Prim rnˇ 100 MB 1024 KB
Oddˇl 2 Prim rnˇ 545 GB 101 MB
Oddˇl 3 Prim rnˇ 50 GB 545 GB

Probˇh  ukonźenˇ programu DiskPart...

==================================================================================

Partitions of Disk 1:
===============

Nynˇ je vybr n disk 1.

Na tomto disku nejsou § dn‚ oddˇly k zobrazenˇ.

Probˇh  ukonźenˇ programu DiskPart...

==================================================================================

Partitions of Disk 2:
===============

Nynˇ je vybr n disk 2.

Na tomto disku nejsou § dn‚ oddˇly k zobrazenˇ.

Probˇh  ukonźenˇ programu DiskPart...

==================================================================================

Partitions of Disk 3:
===============

Nynˇ je vybr n disk 3.

Na tomto disku nejsou § dn‚ oddˇly k zobrazenˇ.

Probˇh  ukonźenˇ programu DiskPart...

==================================================================================

Partitions of Disk 4:
===============

Nynˇ je vybr n disk 4.

Na tomto disku nejsou § dn‚ oddˇly k zobrazenˇ.

Probˇh  ukonźenˇ programu DiskPart...

==================================================================================

Partitions of Disk 5:
===============

Nynˇ je vybr n disk 5.

Na tomto disku nejsou § dn‚ oddˇly k zobrazenˇ.

Probˇh  ukonźenˇ programu DiskPart...

==================================================================================

Partitions of Disk 6:
===============

Nynˇ je vybr n disk 6.

Oddˇl ### Typ Velikost Posunutˇ
------------- ---------------- -------- --------
Oddˇl 1 Prim rnˇ 1863 GB 31 KB

Probˇh  ukonźenˇ programu DiskPart...

==================================================================================

==========================================================

Last Boot: 2012-07-30 14:04

======================= End Of Log ==========================
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#8 Příspěvek od Lilly [FR] »

Už jsem to našla to je jedno francouzsky nebo česky mam česky windows 7 nahodila bych si francoužtinu, ale moje kamaradka co se mnou bydli bohužel neovlada můj jazyk a občas si rada zahraje pc hry pokud jsem pryč.

Tak cos tam našel ?
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#9 Příspěvek od Lilly [FR] »

:idea: NAUGHTY za všechno ti moc krat děkuji a jsem velice rada, že jsem tvoje oblibena holka, mam velice rada dobry lidi, neměla bych to psat, ale za kamarada vždycky položim ruku do ohně.

Dostala jsem avizo ze studia budu tam muset dneska jit, z nepochopitelnych důvodu někdo odinstaloval z firemnich počitaču antivirus a nalezli nějakou infiltraci keyloger s conflicterem ja nevim co to je, ale určitě, už tam nebudu použivat co je moje soukromni zaležitost /E-mail, facebook profil, bankovnictvo / to si radši udělam tady na svem pc, ikdyž mi to bude zabirat čas.Obavam se, že to vypada dneska na nočni směnu pokud to bude važna zaležitost můžeme všechno reinstalovat na 12 počitačich, naštesti jsou firemni zálohy.nevim co a jak to se dozvim za 2 hodiny.Ja jsem neměla 100% jistotu zda můj milaček neni nakažen aspoň prozatim mam tu nějakou naděj, kdepak bez tve pomoci bych byla stracena a nejista

Takže ja tě, už dneska, už nebudu rušit a přeji ti dobrou noc NAUGHTY a krásne sny.Budu co nevidět dělat zavěreční zkoušky z českeho jazyka zda s tim projdu to nevim, dělam ještě hodně chyb, mam velice přisneho lektora a učitele a ten protekce nebude podporovat a tolerovat jenom tak mezi nama na zavěr.

:thumbsup: Snad to do rana doufejme, že stihneme udělat pokud ne promin ber na vědomi, že budu velice unavena

No stačilo nechci spamovat tak dik zatim a pa.Lilly :worship: :wub: :wub:
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Podezřeni - Virus, Malware, Spyware v PC

#10 Příspěvek od motji »

Jak to tu vypadá? :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Lilly [FR]

Re: Podezřeni - Virus, Malware, Spyware v PC

#11 Příspěvek od Lilly [FR] »

Zatim v pohodě, můj počitač pracuje tak jak ma.Jelikož jsem hodně vytižena,nechala jsem počitač do auto režimu, podle potřeby se sam defragmentuje a pročistuje za pomoci programu TUNE-UP 2012 a kontrola za přitomnosti viru a spyware jde cez program SUPER ANTISPYWARE a ESET ANTIVIRUS 5 + COMODO FIREWAL.

- AVIRA musela pryč nerozumi si ze štitem COMODO /Hardwar Conflict /ve verzi PRO a nemůžu ani nainstalovat ESET INTERNET SECURITY 5, ten ma totež vlastní firewal štit.

- Windows firewal a defender jsem deaktivovala a nenalezla jsem zatim nic co by bylo negativni.Pro jistotu jsem zazalohovala celý system 7 na externim hardisku

- Můžeme to uzavřit :offtopic: :)
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Podezřeni - Virus, Malware, Spyware v PC

#12 Příspěvek od motji »

Dobře, takže to zamykám :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Zamčeno

Zpět na „Sekce pouze pro Vzorné návštěvníky“