VIRY.CZ

Naughty píše:perfect, ted info o antiviru zdali neco rve

zatím nic neřve, ale aktualizace se po 5s stopne

1) přišel jsem na prevíta kvůli tomu, že se mi cpal na moje stránky přes total comandera (to jsem ještě nevěděl co to je, jen že tam něco je) a pak ho začal hlásit i avast (heslo už jsem změnil), dokáže zjistit i neuložené heslo, které se zadává vždy ručně?

2)je to pověřená (dvojková) obec, já konkrétně mám na starost stavební úřad

3) poprosím o nějaký ověřený odkaz na combofix

4) PC má problém s připojením, noťas jede v pohodě

chtěl jsem odinstalovat původní CF přes combofix/u, ale on se spustil, tak jsem ho nechal jet, skončil na "mažu složky: c:........AdCache" a dál nic

stáhl jsem tedy znova z Tvého odkazu (z něj jsem stahoval i poprvé, než jsem se dostal sem) a dopadlo to stejně, zase konec na "mažu složky"

co teď?

na stavební se klidně ptej, snad budu umět poradit

stále to samé

při otevření exploreru se nepřipojí, po opravě připojení k místní síti je to v pohodě

musím teď odejít, po návratu zkusím ten nový odkaz

zatím moc děkuju

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.02.07

Windows XP Service Pack 3 x86 FAT32
Internet Explorer 8.0.6001.18702
Ing. Ondřej Dokoupil :: OLDŘICH [administrátor]

Ochrana: Povolena

2.2.2013 19:41:21
MBAM-log-2013-02-02 (21-50-01).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 387438
Uplynulý čas: 32 minut, 36 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCU\Software\Cydoor (AdWare.Cydoor) -> Nebyla provedena žádná instrukce.
HKCU\Software\Cydoor Services (AdWare.Cydoor) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\WINDOWS\system32\AdCache (AdWare.Cydoor) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\AdCache\Temp (AdWare.Cydoor) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 2
C:\Documents and Settings\Ing. Ondřej Dokoupil\Dokumenty\---PROGRAMY----\různé\ABBYY FineReader 8.0 Professional Edition\! serial + keygen !\Keygen.exe (Riskware.Took.CK) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ing. Ondřej Dokoupil\Dokumenty\---PROGRAMY----\správa PC\Alcohol.120%.v1.9.5.3105.Retail-BiG.BoY.Cracked-BetaMaster\patch_3105.exe (RiskWare.Tool.HCK) -> Nebyla provedena žádná instrukce.

(konec)

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.02.07

Windows XP Service Pack 3 x86 FAT32
Internet Explorer 8.0.6001.18702
Ing. Ondřej Dokoupil :: OLDŘICH [administrátor]

Ochrana: Povolena

2.2.2013 19:41:21
mbam-log-2013-02-02 (19-41-21).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 387438
Uplynulý čas: 32 minut, 36 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCU\Software\Cydoor (AdWare.Cydoor) -> Přesun do karantény a smazání se zdařilo.
HKCU\Software\Cydoor Services (AdWare.Cydoor) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\WINDOWS\system32\AdCache (AdWare.Cydoor) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\system32\AdCache\Temp (AdWare.Cydoor) -> Přesun do karantény a smazání se zdařilo.

Nalezené soubory: 2
C:\Documents and Settings\Ing. Ondřej Dokoupil\Dokumenty\---PROGRAMY----\různé\ABBYY FineReader 8.0 Professional Edition\! serial + keygen !\Keygen.exe (Riskware.Took.CK) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Ing. Ondřej Dokoupil\Dokumenty\---PROGRAMY----\správa PC\Alcohol.120%.v1.9.5.3105.Retail-BiG.BoY.Cracked-BetaMaster\patch_3105.exe (RiskWare.Tool.HCK) -> Přesun do karantény a smazání se zdařilo.

(konec)

ty keygeny jsou ještě z dávných dob studii, vím že se to nemá

je už tedy vše v pořádku?

Net jede, ale nejde aktualizovat avast, po pár vteřinách se aktualizace stopne.

Avast přeinstalován, ale aktualizace se zase hned zastaví. A net nabíhá ze začátku nějak dlouho. Dřív jsem myslel že je to virem, který se sám ze začátku někam připojuje, teď si říkám, jestli to není tím avastem. Jestli se nesnaží po spuštění aktualizovat a tím to brzdí. No prostě nevím. Vypnutí firewall před aktualizací nepomohlo. Mám zkusit avast odinstalovat a dát něco jiného? Případně co?

zdravím, mám krapet problém,

po odinstalaci avastu a instalaci esetu PC naběhl v pohodě, ale explorer nabíhal jako dřív docela dlouho, po aktualizaci esetu a restartu pc naběhl, ale při jakékoli činnosti hned zamrzne, nefunguje vůbec nic, zkusil jsem poslední známou konfiguraci, ale je to stejné,

omlouvám se za stálé otravování a slibuju, že se budu fóru revanšovat

zakázal jsem eset v nouzovém režimu a už to jede

rsit přikládám, killer bude za chvilku


Logfile of random's system information tool 1.06 (written by random/random)
Run by Ing. Ondřej Dokoupil at 2013-02-03 14:35:31
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 594 MB (0%) free of 148 GB
Total RAM: 1015 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:35:38, on 3.2.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\TO2SSM\McciTrayApp.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\GIGABYTE\GHOST(6980)\ghostopen.exe
C:\Program Files\GIGABYTE\GHOST(6980)\Tilt.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Ing. Ondřej Dokoupil\Plocha\RSIT.exe
C:\Program Files\trend micro\Ing. Ondřej Dokoupil.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Toolbar_eula_launcher] C:\install\google\eula\EULALauncher.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Bonus.SSR.FR11] "C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe" /autorun
O4 - HKLM\..\Run: [ghost] C:\Program Files\GIGABYTE\GHOST(6980)\ghostopen.exe
O4 - HKLM\..\Run: [Tilt] C:\Program Files\GIGABYTE\GHOST(6980)\Tilt.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [PMCLoader] C:\Program Files\Pinnacle\TVCenter Pro\PMCLoader.exe -checktasks
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Akcelerátor spuštění AutoCADu.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart17.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.comfor.cz
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... eqlab3.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skyline - {3A4F9195-65A8-11D5-85C1-0001023952C1} - C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Služba Google Update (gupdate1c9ad959001adb2) (gupdate1c9ad959001adb2) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 10250 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-05-30 4014280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll [2013-01-12 1000984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-03 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-03 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-11-03 98304]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-11-03 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-11-03 118784]
"Toolbar_eula_launcher"=C:\install\google\eula\EULALauncher.exe []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-06-13 16377344]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2006-07-12 29696]
"LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2006-05-18 49152]
"WinampAgent"=C:\Program Files\Winamp\Winampa.exe []
"DAEMON Tools-1033"=C:\Program Files\D-Tools\daemon.exe [2002-01-20 35252]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"Bonus.SSR.FR11"=C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [2011-08-18 925960]
"ghost"=C:\Program Files\GIGABYTE\GHOST(6980)\ghostopen.exe [2010-02-07 192000]
"Tilt"=C:\Program Files\GIGABYTE\GHOST(6980)\Tilt.exe [2009-06-25 724992]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-18 946352]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-11-26 5074384]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe []
"PMCRemote"= []
"PMCLoader"=C:\Program Files\Pinnacle\TVCenter Pro\PMCLoader.exe [2007-09-27 109640]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Akcelerátor spuštění AutoCADu.lnk - C:\Program Files\Common Files\Autodesk Shared\acstart17.exe

C:\Documents and Settings\Ing. Ondřej Dokoupil\Nabídka Start\Programy\Po spuštění
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2005-11-03 135168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\QIP Infium\INFIUM.EXE"="C:\Program Files\QIP Infium\INFIUM.EXE:*:Enabled:QIP Infium"
"C:\Program Files\Bentley\Program\MicroStation\ustation.exe"="C:\Program Files\Bentley\Program\MicroStation\ustation.exe:*:Enabled:MicroStation for Windows x86"
"C:\TOTALCMD\TOTALCMD.EXE"="C:\TOTALCMD\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.scr - open - "C:\WINDOWS\system32\NOTEPAD.EXE" "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2013-02-03 14:26:13 ----D---- C:\WINDOWS\CSC
2013-02-03 13:25:02 ----D---- C:\Documents and Settings\Ing. Ondřej Dokoupil\Data aplikací\ESET
2013-02-03 13:23:27 ----D---- C:\Program Files\ESET
2013-02-03 13:23:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2013-02-02 23:25:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-02-02 23:25:03 ----SHD---- C:\Recycled
2013-02-02 23:08:32 ----D---- C:\RegBackup
2013-02-02 23:03:12 ----A---- C:\WINDOWS\PSEXESVC.EXE
2013-02-02 23:02:21 ----D---- C:\Tweaking.com_Windows_Repair_Logs
2013-02-02 23:02:11 ----D---- C:\Program Files\Tweaking.com
2013-02-02 19:37:30 ----D---- C:\Documents and Settings\Ing. Ondřej Dokoupil\Data aplikací\Malwarebytes
2013-02-02 19:36:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2013-02-02 19:36:58 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-02-02 19:17:48 ----SD---- C:\ComboFix
2013-02-02 14:10:36 ----D---- C:\Program Files\trend micro
2013-02-02 14:10:35 ----D---- C:\rsit
2013-02-01 20:24:52 ----A---- C:\Boot.bak
2013-02-01 20:24:50 ----RASHD---- C:\cmdcons
2013-02-01 20:22:09 ----A---- C:\WINDOWS\zip.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\SWXCACLS.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\SWSC.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\SWREG.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\sed.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\PEV.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\NIRCMD.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\MBR.exe
2013-02-01 20:22:09 ----A---- C:\WINDOWS\grep.exe
2013-02-01 20:21:18 ----D---- C:\Qoobox
2013-02-01 20:21:02 ----D---- C:\WINDOWS\erdnt
2013-01-30 21:32:34 ----D---- C:\Program Files\Common Files\Skype
2013-01-12 23:33:27 ----HD---- C:\WINDOWS\$NtUninstallKB2757638$

======List of files/folders modified in the last 1 months======

2013-02-03 14:26:30 ----A---- C:\WINDOWS\ntbtlog.txt
2013-02-03 13:32:02 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-02-02 17:44:28 ----A---- C:\WINDOWS\wincmd.ini
2013-02-02 16:22:58 ----A---- C:\WINDOWS\wcx_ftp.ini
2013-02-01 20:24:54 ----RASH---- C:\boot.ini
2013-01-30 22:16:36 ----A---- C:\WINDOWS\iltwain.ini
2013-01-17 20:57:18 ----A---- C:\WINDOWS\winamp.ini
2013-01-12 23:41:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-01-12 23:33:42 ----A---- C:\WINDOWS\imsins.BAK
2013-01-12 23:29:16 ----A---- C:\WINDOWS\system32\MRT.exe
2013-01-06 06:33:56 ----A---- C:\WINDOWS\system32\mshtml.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Angelnt;Angelnt; C:\WINDOWS\System32\Drivers\ANGELNT.SYS [2008-12-03 52544]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2012-10-08 159832]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2012-10-08 121216]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2012-10-08 62512]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2001-08-10 3252]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2012-10-08 149568]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R3 akshasp;Aladdin HASP Key; C:\WINDOWS\system32\DRIVERS\akshasp.sys [2006-11-22 327168]
R3 aksusb;Aladdin USB Key; C:\WINDOWS\system32\DRIVERS\aksusb.sys [2006-11-22 100096]
R3 AtcL002;NDIS Miniport Driver for Attansic L2 Fast Ethernet Controller; C:\WINDOWS\system32\DRIVERS\atl02_xp.sys [2006-10-31 28416]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2012-10-08 40376]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-11-03 1353820]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-06-14 4429312]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2007-11-07 9856]
R3 ROCKEYNT;Feitian ROCKEY4 Device Service; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2008-12-03 22016]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WINDOWS\System32\Drivers\adildr.sys []
S3 adiusbaw;ADSL USB MODEM WAN ADAPTER; C:\WINDOWS\system32\DRIVERS\adiusbaw.sys []
S3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys []
S3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
S3 BCM43XX;ASUS 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
S3 catchme;catchme; \??\C:\DOCUME~1\ING~1.OND\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 Ltn_stk7070P;PCTV based TV tuner device; C:\WINDOWS\system32\DRIVERS\Ltn_stk7070P.sys [2007-06-14 466048]
S3 Ltn_stkrc;PCTV Infrared Receiver; C:\WINDOWS\system32\DRIVERS\Ltn_stkrc.sys [2007-06-13 13440]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2005-08-08 167936]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-05-30 3048136]
R2 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S2 gupdate1c9ad959001adb2;Služba Google Update (gupdate1c9ad959001adb2); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-25 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-15 194032]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2008-11-06 77944]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-25 133104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2012-11-26 1329304]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

14:40:21.0062 2696 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
14:40:21.0328 2696 ============================================================
14:40:21.0328 2696 Current date / time: 2013/02/03 14:40:21.0328
14:40:21.0328 2696 SystemInfo:
14:40:21.0328 2696
14:40:21.0328 2696 OS Version: 5.1.2600 ServicePack: 3.0
14:40:21.0328 2696 Product type: Workstation
14:40:21.0328 2696 ComputerName: OLDŘICH
14:40:21.0328 2696 UserName: Ing. Ondřej Dokoupil
14:40:21.0328 2696 Windows directory: C:\WINDOWS
14:40:21.0328 2696 System windows directory: C:\WINDOWS
14:40:21.0328 2696 Processor architecture: Intel x86
14:40:21.0328 2696 Number of processors: 2
14:40:21.0328 2696 Page size: 0x1000
14:40:21.0328 2696 Boot type: Normal boot
14:40:21.0328 2696 ============================================================
14:40:22.0234 2696 Drive \Device\Harddisk0\DR0 - Size: 0x2407D7FC00 (144.12 Gb), SectorSize: 0x200, Cylinders: 0x497E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:40:22.0234 2696 ============================================================
14:40:22.0234 2696 \Device\Harddisk0\DR0:
14:40:22.0234 2696 MBR partitions:
14:40:22.0234 2696 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x1203E747
14:40:22.0234 2696 ============================================================
14:40:22.0234 2696 C: <-> \Device\Harddisk0\DR0\Partition1
14:40:22.0265 2696 ============================================================
14:40:22.0265 2696 Initialize success
14:40:22.0265 2696 ============================================================
14:40:53.0906 3104 ============================================================
14:40:53.0906 3104 Scan started
14:40:53.0906 3104 Mode: Manual; SigCheck; TDLFS;
14:40:53.0906 3104 ============================================================
14:40:54.0125 3104 ================ Scan system memory ========================
14:40:54.0140 3104 System memory - ok
14:40:54.0140 3104 ================ Scan services =============================
14:40:54.0265 3104 [ 656F06850D02BAED19F0E2E72B047CE2 ] ABBYY.Licensing.FineReader.Professional.11.0 C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
14:40:54.0421 3104 ABBYY.Licensing.FineReader.Professional.11.0 - ok
14:40:54.0484 3104 Abiosdsk - ok
14:40:54.0484 3104 abp480n5 - ok
14:40:54.0515 3104 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:40:55.0640 3104 ACPI - ok
14:40:55.0687 3104 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
14:40:55.0812 3104 ACPIEC - ok
14:40:55.0828 3104 ADILOADER - ok
14:40:55.0828 3104 adiusbaw - ok
14:40:55.0843 3104 adpu160m - ok
14:40:55.0953 3104 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
14:40:56.0046 3104 aec - ok
14:40:56.0078 3104 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
14:40:56.0140 3104 AFD - ok
14:40:56.0140 3104 Aha154x - ok
14:40:56.0156 3104 aic78u2 - ok
14:40:56.0156 3104 aic78xx - ok
14:40:56.0187 3104 [ 3F9F42085AB5B6A55498A539C54575AB ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys
14:40:56.0218 3104 akshasp - ok
14:40:56.0234 3104 [ D2B95315CC47F9230006FDBCBA394D8D ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys
14:40:56.0250 3104 aksusb - ok
14:40:56.0296 3104 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
14:40:56.0390 3104 Alerter - ok
14:40:56.0421 3104 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
14:40:56.0515 3104 ALG - ok
14:40:56.0515 3104 AliIde - ok
14:40:56.0531 3104 AmdLLD - ok
14:40:56.0531 3104 amsint - ok
14:40:56.0546 3104 [ DB8168E6F8407CE29C0A322CFA1D5BFA ] Angelnt C:\WINDOWS\System32\Drivers\ANGELNT.SYS
14:40:56.0546 3104 Angelnt ( UnsignedFile.Multi.Generic ) - warning
14:40:56.0546 3104 Angelnt - detected UnsignedFile.Multi.Generic (1)
14:40:56.0578 3104 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
14:40:56.0687 3104 AppMgmt - ok
14:40:56.0687 3104 asc - ok
14:40:56.0703 3104 asc3350p - ok
14:40:56.0703 3104 asc3550 - ok
14:40:56.0750 3104 [ 05A56C3156E1B6CC7BBD8E1D54D491F2 ] ASNDIS5 C:\WINDOWS\system32\ASNDIS5.SYS
14:40:56.0750 3104 ASNDIS5 ( UnsignedFile.Multi.Generic ) - warning
14:40:56.0750 3104 ASNDIS5 - detected UnsignedFile.Multi.Generic (1)
14:40:56.0828 3104 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:40:56.0843 3104 aspnet_state - ok
14:40:56.0890 3104 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:40:56.0984 3104 AsyncMac - ok
14:40:57.0000 3104 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
14:40:57.0109 3104 atapi - ok
14:40:57.0140 3104 [ 07ED1101F574B93A6312BF5D4241B41A ] AtcL002 C:\WINDOWS\system32\DRIVERS\atl02_xp.sys
14:40:57.0171 3104 AtcL002 - ok
14:40:57.0187 3104 Atdisk - ok
14:40:57.0218 3104 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:40:57.0328 3104 Atmarpc - ok
14:40:57.0406 3104 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
14:40:57.0515 3104 AudioSrv - ok
14:40:57.0531 3104 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
14:40:57.0656 3104 audstub - ok
14:40:57.0734 3104 [ 32A5DEFDDC3562BF89D73586F5915B34 ] Autodesk Licensing Service C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
14:40:57.0750 3104 Autodesk Licensing Service - ok
14:40:57.0796 3104 [ E7DEBB46B9EF1F28932E533BE4A3D1A9 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
14:40:57.0828 3104 BCM43XX - ok
14:40:57.0859 3104 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
14:40:57.0968 3104 Beep - ok
14:40:58.0031 3104 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
14:40:58.0156 3104 BITS - ok
14:40:58.0234 3104 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
14:40:58.0281 3104 Browser - ok
14:40:58.0343 3104 catchme - ok
14:40:58.0359 3104 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
14:40:58.0468 3104 cbidf2k - ok
14:40:58.0515 3104 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:40:58.0609 3104 CCDECODE - ok
14:40:58.0609 3104 cd20xrnt - ok
14:40:58.0640 3104 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
14:40:58.0734 3104 Cdaudio - ok
14:40:58.0750 3104 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
14:40:58.0843 3104 Cdfs - ok
14:40:58.0859 3104 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:40:58.0968 3104 Cdrom - ok
14:40:58.0968 3104 Changer - ok
14:40:59.0031 3104 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
14:40:59.0125 3104 CiSvc - ok
14:40:59.0156 3104 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
14:40:59.0265 3104 ClipSrv - ok
14:40:59.0359 3104 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:40:59.0375 3104 clr_optimization_v2.0.50727_32 - ok
14:40:59.0375 3104 CmdIde - ok
14:40:59.0406 3104 COMSysApp - ok
14:40:59.0421 3104 Cpqarray - ok
14:40:59.0468 3104 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
14:40:59.0546 3104 CryptSvc - ok
14:40:59.0562 3104 dac2w2k - ok
14:40:59.0562 3104 dac960nt - ok
14:40:59.0578 3104 [ 14626AACF90FF1667A72B27C6EDBB63C ] Daemon C:\WINDOWS\system32\DRIVERS\daemon.sys
14:40:59.0578 3104 Daemon ( UnsignedFile.Multi.Generic ) - warning
14:40:59.0578 3104 Daemon - detected UnsignedFile.Multi.Generic (1)
14:40:59.0656 3104 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
14:40:59.0671 3104 DcomLaunch - ok
14:40:59.0750 3104 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
14:40:59.0843 3104 Dhcp - ok
14:40:59.0843 3104 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
14:40:59.0937 3104 Disk - ok
14:40:59.0968 3104 dmadmin - ok
14:41:00.0046 3104 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
14:41:00.0171 3104 dmboot - ok
14:41:00.0187 3104 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
14:41:00.0281 3104 dmio - ok
14:41:00.0281 3104 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
14:41:00.0375 3104 dmload - ok
14:41:00.0406 3104 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
14:41:00.0500 3104 dmserver - ok
14:41:00.0546 3104 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
14:41:00.0640 3104 DMusic - ok
14:41:00.0718 3104 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
14:41:00.0781 3104 Dnscache - ok
14:41:00.0843 3104 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
14:41:00.0937 3104 Dot3svc - ok
14:41:00.0937 3104 dpti2o - ok
14:41:00.0968 3104 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
14:41:01.0046 3104 drmkaud - ok
14:41:01.0109 3104 [ 63A53BB2A85DD22A5E8D6C5CB6273043 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
14:41:01.0265 3104 eamon - ok
14:41:01.0296 3104 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
14:41:01.0406 3104 EapHost - ok
14:41:01.0437 3104 [ 4F72DD48A2ED63A57C1210228A472020 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
14:41:01.0453 3104 ehdrv - ok
14:41:01.0656 3104 [ E95AB781773870BD68ABE1AE1B57A8AC ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
14:41:01.0703 3104 ekrn - ok
14:41:01.0734 3104 [ 0C0C50813FC59C145B604B1DCCFFB377 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
14:41:01.0750 3104 epfw - ok
14:41:01.0796 3104 [ C1A8B6E44DCF250DB6BCCA7B460B9B6B ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
14:41:01.0796 3104 Epfwndis - ok
14:41:01.0828 3104 [ 7859F3E4AA8B9708D05F0DFBB3080721 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
14:41:01.0828 3104 epfwtdi - ok
14:41:01.0921 3104 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
14:41:02.0031 3104 ERSvc - ok
14:41:02.0093 3104 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
14:41:02.0109 3104 Eventlog - ok
14:41:02.0156 3104 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
14:41:02.0187 3104 EventSystem - ok
14:41:02.0234 3104 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
14:41:02.0343 3104 Fastfat - ok
14:41:02.0421 3104 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
14:41:02.0468 3104 FastUserSwitchingCompatibility - ok
14:41:02.0484 3104 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
14:41:02.0593 3104 Fdc - ok
14:41:02.0625 3104 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
14:41:02.0703 3104 Fips - ok
14:41:02.0703 3104 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
14:41:02.0796 3104 Flpydisk - ok
14:41:02.0828 3104 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
14:41:02.0937 3104 FltMgr - ok
14:41:03.0031 3104 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:41:03.0046 3104 FontCache3.0.0.0 - ok
14:41:03.0046 3104 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:41:03.0156 3104 Fs_Rec - ok
14:41:03.0187 3104 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:41:03.0296 3104 Ftdisk - ok
14:41:03.0328 3104 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:41:03.0421 3104 Gpc - ok
14:41:03.0531 3104 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9ad959001adb2 C:\Program Files\Google\Update\GoogleUpdate.exe
14:41:03.0531 3104 gupdate1c9ad959001adb2 - ok
14:41:03.0546 3104 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
14:41:03.0562 3104 gupdatem - ok
14:41:03.0640 3104 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
14:41:03.0656 3104 gusvc - ok
14:41:03.0718 3104 [ D95554949082FD29A04D351B58396718 ] Hardlock C:\WINDOWS\system32\drivers\hardlock.sys
14:41:03.0796 3104 Hardlock - ok
14:41:03.0812 3104 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:41:03.0921 3104 HDAudBus - ok
14:41:03.0984 3104 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:41:04.0078 3104 helpsvc - ok
14:41:04.0171 3104 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
14:41:04.0281 3104 HidServ - ok
14:41:04.0296 3104 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:41:04.0406 3104 HidUsb - ok
14:41:04.0468 3104 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
14:41:04.0578 3104 hkmsvc - ok
14:41:04.0578 3104 hpn - ok
14:41:04.0640 3104 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
14:41:04.0671 3104 HTTP - ok
14:41:04.0734 3104 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
14:41:04.0828 3104 HTTPFilter - ok
14:41:04.0828 3104 i2omgmt - ok
14:41:04.0843 3104 i2omp - ok
14:41:04.0859 3104 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:41:04.0953 3104 i8042prt - ok
14:41:05.0015 3104 [ 81EFE1C5542AFB2570758F39AE3B1151 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
14:41:05.0093 3104 ialm - ok
14:41:05.0234 3104 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:41:05.0265 3104 idsvc - ok
14:41:05.0328 3104 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
14:41:05.0437 3104 Imapi - ok
14:41:05.0515 3104 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
14:41:05.0609 3104 ImapiService - ok
14:41:05.0609 3104 ini910u - ok
14:41:05.0843 3104 [ 915CE2A58C6917E3C53BE1E91FA66BA8 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:41:05.0984 3104 IntcAzAudAddService - ok
14:41:06.0062 3104 IntelIde - ok
14:41:06.0125 3104 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:41:06.0218 3104 intelppm - ok
14:41:06.0265 3104 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
14:41:06.0359 3104 Ip6Fw - ok
14:41:06.0406 3104 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:41:06.0515 3104 IpFilterDriver - ok
14:41:06.0562 3104 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:41:06.0671 3104 IpInIp - ok
14:41:06.0703 3104 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:41:06.0812 3104 IpNat - ok
14:41:06.0828 3104 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:41:06.0921 3104 IPSec - ok
14:41:06.0937 3104 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
14:41:07.0031 3104 IRENUM - ok
14:41:07.0046 3104 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:41:07.0125 3104 isapnp - ok
14:41:07.0218 3104 [ 1834C96FB1F9280BCF6DDFA6DE8338BF ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
14:41:07.0234 3104 JavaQuickStarterService - ok
14:41:07.0265 3104 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:41:07.0375 3104 Kbdclass - ok
14:41:07.0390 3104 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:41:07.0500 3104 kbdhid - ok
14:41:07.0562 3104 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
14:41:07.0656 3104 kmixer - ok
14:41:07.0671 3104 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
14:41:07.0734 3104 KSecDD - ok
14:41:07.0781 3104 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
14:41:07.0812 3104 lanmanserver - ok
14:41:07.0906 3104 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
14:41:07.0921 3104 lanmanworkstation - ok
14:41:07.0921 3104 lbrtfdc - ok
14:41:07.0984 3104 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
14:41:08.0078 3104 LmHosts - ok
14:41:08.0125 3104 [ 23B55D27A0AFB7FE9CBCB20B617CC168 ] Ltn_stk7070P C:\WINDOWS\system32\DRIVERS\Ltn_stk7070P.sys
14:41:08.0218 3104 Ltn_stk7070P - ok
14:41:08.0265 3104 [ 1FA7503D019291C027FEDAE509BC5500 ] Ltn_stkrc C:\WINDOWS\system32\DRIVERS\Ltn_stkrc.sys
14:41:08.0312 3104 Ltn_stkrc - ok
14:41:08.0359 3104 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
14:41:08.0375 3104 MBAMProtector - ok
14:41:08.0453 3104 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:41:08.0468 3104 MBAMScheduler - ok
14:41:08.0562 3104 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
14:41:08.0593 3104 MBAMService - ok
14:41:08.0687 3104 [ 4F74184920B2D6E33024409B4C5C57C1 ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
14:41:08.0703 3104 McciCMService ( UnsignedFile.Multi.Generic ) - warning
14:41:08.0703 3104 McciCMService - detected UnsignedFile.Multi.Generic (1)
14:41:08.0750 3104 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
14:41:08.0859 3104 Messenger - ok
14:41:08.0937 3104 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
14:41:08.0937 3104 Microsoft Office Groove Audit Service - ok
14:41:08.0968 3104 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
14:41:09.0062 3104 mnmdd - ok
14:41:09.0109 3104 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
14:41:09.0203 3104 mnmsrvc - ok
14:41:09.0234 3104 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
14:41:09.0343 3104 Modem - ok
14:41:09.0375 3104 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:41:09.0484 3104 Mouclass - ok
14:41:09.0515 3104 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:41:09.0625 3104 mouhid - ok
14:41:09.0656 3104 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
14:41:09.0765 3104 MountMgr - ok
14:41:09.0828 3104 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\WINDOWS\system32\DRIVERS\MPE.sys
14:41:09.0906 3104 MPE - ok
14:41:09.0906 3104 mraid35x - ok
14:41:09.0968 3104 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
14:41:09.0968 3104 MREMP50 ( UnsignedFile.Multi.Generic ) - warning
14:41:09.0968 3104 MREMP50 - detected UnsignedFile.Multi.Generic (1)
14:41:09.0984 3104 MREMP50a64 - ok
14:41:09.0984 3104 MREMPR5 - ok
14:41:09.0984 3104 MRENDIS5 - ok
14:41:09.0984 3104 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
14:41:10.0000 3104 MRESP50 ( UnsignedFile.Multi.Generic ) - warning
14:41:10.0000 3104 MRESP50 - detected UnsignedFile.Multi.Generic (1)
14:41:10.0000 3104 MRESP50a64 - ok
14:41:10.0015 3104 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:41:10.0093 3104 MRxDAV - ok
14:41:10.0140 3104 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:41:10.0187 3104 MRxSmb - ok
14:41:10.0265 3104 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
14:41:10.0375 3104 MSDTC - ok
14:41:10.0390 3104 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
14:41:10.0500 3104 Msfs - ok
14:41:10.0546 3104 MSIServer - ok
14:41:10.0562 3104 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:41:10.0671 3104 MSKSSRV - ok
14:41:10.0703 3104 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:41:10.0796 3104 MSPCLOCK - ok
14:41:10.0828 3104 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
14:41:10.0921 3104 MSPQM - ok
14:41:10.0953 3104 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:41:11.0046 3104 mssmbios - ok
14:41:11.0078 3104 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
14:41:11.0171 3104 MSTEE - ok
14:41:11.0203 3104 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
14:41:11.0234 3104 MTsensor - ok
14:41:11.0265 3104 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
14:41:11.0312 3104 Mup - ok
14:41:11.0359 3104 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:41:11.0453 3104 NABTSFEC - ok
14:41:11.0546 3104 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
14:41:11.0656 3104 napagent - ok
14:41:11.0687 3104 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
14:41:11.0796 3104 NDIS - ok
14:41:11.0843 3104 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:41:11.0937 3104 NdisIP - ok
14:41:11.0968 3104 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:41:12.0015 3104 NdisTapi - ok
14:41:12.0046 3104 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:41:12.0140 3104 Ndisuio - ok
14:41:12.0156 3104 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:41:12.0234 3104 NdisWan - ok
14:41:12.0265 3104 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
14:41:12.0296 3104 NDProxy - ok
14:41:12.0328 3104 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
14:41:12.0421 3104 NetBIOS - ok
14:41:12.0453 3104 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
14:41:12.0562 3104 NetBT - ok
14:41:12.0609 3104 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
14:41:12.0718 3104 NetDDE - ok
14:41:12.0718 3104 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
14:41:12.0812 3104 NetDDEdsdm - ok
14:41:12.0859 3104 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
14:41:12.0937 3104 Netlogon - ok
14:41:12.0968 3104 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
14:41:13.0062 3104 Netman - ok
14:41:13.0156 3104 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:41:13.0156 3104 NetTcpPortSharing - ok
14:41:13.0250 3104 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
14:41:13.0281 3104 Nla - ok
14:41:13.0328 3104 NMIndexingService - ok
14:41:13.0343 3104 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
14:41:13.0453 3104 Npfs - ok
14:41:13.0515 3104 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
14:41:13.0671 3104 Ntfs - ok
14:41:13.0687 3104 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
14:41:13.0765 3104 NtLmSsp - ok
14:41:13.0828 3104 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
14:41:13.0953 3104 NtmsSvc - ok
14:41:13.0984 3104 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
14:41:14.0093 3104 Null - ok
14:41:14.0125 3104 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:41:14.0234 3104 NwlnkFlt - ok
14:41:14.0250 3104 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:41:14.0359 3104 NwlnkFwd - ok
14:41:14.0437 3104 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:41:14.0468 3104 odserv - ok
14:41:14.0500 3104 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:41:14.0515 3104 ose - ok
14:41:14.0531 3104 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
14:41:14.0640 3104 Parport - ok
14:41:14.0671 3104 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
14:41:14.0765 3104 PartMgr - ok
14:41:14.0812 3104 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
14:41:14.0906 3104 ParVdm - ok
14:41:14.0937 3104 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
14:41:15.0015 3104 PCI - ok
14:41:15.0031 3104 PCIDump - ok
14:41:15.0031 3104 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
14:41:15.0156 3104 PCIIde - ok
14:41:15.0187 3104 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
14:41:15.0281 3104 Pcmcia - ok
14:41:15.0281 3104 PDCOMP - ok
14:41:15.0281 3104 PDFRAME - ok
14:41:15.0296 3104 PDRELI - ok
14:41:15.0296 3104 PDRFRAME - ok
14:41:15.0296 3104 perc2 - ok
14:41:15.0312 3104 perc2hib - ok
14:41:15.0328 3104 [ 5903FA75200807AD739286BBF40C4904 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
14:41:15.0328 3104 pfc ( UnsignedFile.Multi.Generic ) - warning
14:41:15.0328 3104 pfc - detected UnsignedFile.Multi.Generic (1)
14:41:15.0406 3104 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
14:41:15.0406 3104 PlugPlay - ok
14:41:15.0421 3104 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
14:41:15.0515 3104 PolicyAgent - ok
14:41:15.0546 3104 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:41:15.0640 3104 PptpMiniport - ok
14:41:15.0671 3104 [ 474543751522111DD7C0CF09E17F6D9F ] PQNTDrv C:\WINDOWS\system32\drivers\PQNTDrv.sys
14:41:15.0687 3104 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning
14:41:15.0687 3104 PQNTDrv - detected UnsignedFile.Multi.Generic (1)
14:41:15.0703 3104 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
14:41:15.0781 3104 ProtectedStorage - ok
14:41:15.0796 3104 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
14:41:15.0875 3104 PSched - ok
14:41:15.0890 3104 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:41:15.0984 3104 Ptilink - ok
14:41:15.0984 3104 ql1080 - ok
14:41:16.0000 3104 Ql10wnt - ok
14:41:16.0000 3104 ql12160 - ok
14:41:16.0000 3104 ql1240 - ok
14:41:16.0015 3104 ql1280 - ok
14:41:16.0046 3104 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:41:16.0156 3104 RasAcd - ok
14:41:16.0203 3104 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
14:41:16.0296 3104 RasAuto - ok
14:41:16.0328 3104 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:41:16.0421 3104 Rasl2tp - ok
14:41:16.0484 3104 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
14:41:16.0578 3104 RasMan - ok
14:41:16.0578 3104 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:41:16.0671 3104 RasPppoe - ok
14:41:16.0671 3104 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
14:41:16.0765 3104 Raspti - ok
14:41:16.0796 3104 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:41:16.0906 3104 Rdbss - ok
14:41:16.0921 3104 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:41:17.0046 3104 RDPCDD - ok
14:41:17.0078 3104 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:41:17.0187 3104 rdpdr - ok
14:41:17.0234 3104 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
14:41:17.0312 3104 RDPWD - ok
14:41:17.0343 3104 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
14:41:17.0421 3104 RDSessMgr - ok
14:41:17.0437 3104 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
14:41:17.0531 3104 redbook - ok
14:41:17.0609 3104 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
14:41:17.0687 3104 RemoteAccess - ok
14:41:17.0734 3104 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
14:41:17.0812 3104 RemoteRegistry - ok
14:41:17.0921 3104 [ BD517C7FB119997EFFBE39D5E4B37B05 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
14:41:17.0921 3104 RichVideo ( UnsignedFile.Multi.Generic ) - warning
14:41:17.0921 3104 RichVideo - detected UnsignedFile.Multi.Generic (1)
14:41:17.0953 3104 [ 7B9921A14BE8D230148B87322CF1917A ] ROCKEYNT C:\WINDOWS\system32\DRIVERS\Rockey4.sys
14:41:17.0968 3104 ROCKEYNT - ok
14:41:18.0031 3104 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
14:41:18.0125 3104 RpcLocator - ok
14:41:18.0187 3104 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
14:41:18.0203 3104 RpcSs - ok
14:41:18.0234 3104 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
14:41:18.0359 3104 RSVP - ok
14:41:18.0406 3104 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
14:41:18.0500 3104 SamSs - ok
14:41:18.0546 3104 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
14:41:18.0640 3104 SCardSvr - ok
14:41:18.0703 3104 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
14:41:18.0812 3104 Schedule - ok
14:41:18.0843 3104 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:41:18.0937 3104 Secdrv - ok
14:41:18.0968 3104 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
14:41:19.0265 3104 seclogon - ok
14:41:19.0312 3104 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
14:41:19.0406 3104 SENS - ok
14:41:19.0437 3104 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
14:41:19.0515 3104 serenum - ok
14:41:19.0531 3104 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
14:41:19.0609 3104 Serial - ok
14:41:19.0640 3104 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
14:41:19.0734 3104 Sfloppy - ok
14:41:19.0796 3104 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
14:41:19.0906 3104 SharedAccess - ok
14:41:19.0984 3104 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:41:20.0000 3104 ShellHWDetection - ok
14:41:20.0015 3104 Simbad - ok
14:41:20.0203 3104 [ 4CA43B85F22C7739311788B651A779CB ] Skype C2C Service C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
14:41:20.0281 3104 Skype C2C Service - ok
14:41:20.0406 3104 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
14:41:20.0421 3104 SkypeUpdate - ok
14:41:20.0515 3104 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:41:20.0609 3104 SLIP - ok
14:41:20.0609 3104 Sparrow - ok
14:41:20.0656 3104 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
14:41:20.0734 3104 splitter - ok
14:41:20.0812 3104 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
14:41:20.0843 3104 Spooler - ok
14:41:20.0890 3104 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
14:41:21.0000 3104 sr - ok
14:41:21.0046 3104 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
14:41:21.0156 3104 srservice - ok
14:41:21.0187 3104 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
14:41:21.0234 3104 Srv - ok
14:41:21.0281 3104 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
14:41:21.0359 3104 SSDPSRV - ok
14:41:21.0437 3104 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
14:41:21.0546 3104 stisvc - ok
14:41:21.0578 3104 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:41:21.0687 3104 streamip - ok
14:41:21.0718 3104 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
14:41:21.0812 3104 swenum - ok
14:41:21.0828 3104 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
14:41:21.0921 3104 swmidi - ok
14:41:21.0984 3104 SwPrv - ok
14:41:21.0984 3104 symc810 - ok
14:41:22.0000 3104 symc8xx - ok
14:41:22.0000 3104 sym_hi - ok
14:41:22.0000 3104 sym_u3 - ok
14:41:22.0031 3104 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
14:41:22.0109 3104 sysaudio - ok
14:41:22.0171 3104 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
14:41:22.0250 3104 SysmonLog - ok
14:41:22.0296 3104 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
14:41:22.0406 3104 TapiSrv - ok
14:41:22.0437 3104 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:41:22.0500 3104 Tcpip - ok
14:41:22.0531 3104 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
14:41:22.0609 3104 TDPIPE - ok
14:41:22.0625 3104 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
14:41:22.0718 3104 TDTCP - ok
14:41:22.0750 3104 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
14:41:22.0843 3104 TermDD - ok
14:41:22.0921 3104 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
14:41:23.0031 3104 TermService - ok
14:41:23.0109 3104 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
14:41:23.0125 3104 Themes - ok
14:41:23.0171 3104 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
14:41:23.0265 3104 TlntSvr - ok
14:41:23.0265 3104 TosIde - ok
14:41:23.0328 3104 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
14:41:23.0421 3104 TrkWks - ok
14:41:23.0468 3104 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
14:41:23.0562 3104 Udfs - ok
14:41:23.0562 3104 ultra - ok
14:41:23.0609 3104 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
14:41:23.0718 3104 Update - ok
14:41:23.0765 3104 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
14:41:23.0875 3104 upnphost - ok
14:41:23.0937 3104 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
14:41:24.0015 3104 UPS - ok
14:41:24.0031 3104 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:41:24.0140 3104 usbccgp - ok
14:41:24.0156 3104 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:41:24.0265 3104 usbehci - ok
14:41:24.0296 3104 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:41:24.0390 3104 usbhub - ok
14:41:24.0421 3104 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:41:24.0515 3104 usbprint - ok
14:41:24.0531 3104 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:41:24.0625 3104 usbscan - ok
14:41:24.0640 3104 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:41:24.0750 3104 USBSTOR - ok
14:41:24.0781 3104 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:41:24.0859 3104 usbuhci - ok
14:41:24.0890 3104 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
14:41:24.0968 3104 usbvideo - ok
14:41:24.0984 3104 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
14:41:25.0093 3104 VgaSave - ok
14:41:25.0093 3104 ViaIde - ok
14:41:25.0125 3104 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
14:41:25.0218 3104 VolSnap - ok
14:41:25.0281 3104 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
14:41:25.0390 3104 VSS - ok
14:41:25.0453 3104 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
14:41:25.0531 3104 W32Time - ok
14:41:25.0562 3104 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:41:25.0671 3104 Wanarp - ok
14:41:25.0718 3104 [ 46A247F6617526AFE38B6F12F5512120 ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
14:41:25.0765 3104 wceusbsh - ok
14:41:25.0765 3104 WDICA - ok
14:41:25.0796 3104 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
14:41:25.0890 3104 wdmaud - ok
14:41:25.0953 3104 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
14:41:26.0046 3104 WebClient - ok
14:41:26.0375 3104 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
14:41:26.0500 3104 winmgmt - ok
14:41:26.0640 3104 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
14:41:26.0750 3104 WmdmPmSN - ok
14:41:27.0531 3104 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
14:41:27.0609 3104 Wmi - ok
14:41:27.0687 3104 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:41:27.0796 3104 WmiApSrv - ok
14:41:27.0890 3104 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
14:41:27.0968 3104 WMPNetworkSvc - ok
14:41:28.0000 3104 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:41:28.0093 3104 WS2IFSL - ok
14:41:28.0156 3104 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
14:41:28.0250 3104 wscsvc - ok
14:41:28.0281 3104 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:41:28.0375 3104 WSTCODEC - ok
14:41:28.0453 3104 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
14:41:28.0531 3104 wuauserv - ok
14:41:28.0562 3104 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:41:28.0593 3104 WudfPf - ok
14:41:28.0625 3104 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:41:28.0656 3104 WudfRd - ok
14:41:28.0703 3104 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
14:41:28.0703 3104 WudfSvc - ok
14:41:28.0781 3104 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
14:41:28.0921 3104 WZCSVC - ok
14:41:28.0984 3104 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
14:41:29.0078 3104 xmlprov - ok
14:41:29.0078 3104 ================ Scan global ===============================
14:41:29.0187 3104 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
14:41:29.0296 3104 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
14:41:29.0359 3104 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
14:41:29.0437 3104 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
14:41:29.0437 3104 [Global] - ok
14:41:29.0437 3104 ================ Scan MBR ==================================
14:41:29.0453 3104 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
14:41:29.0468 3104 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected
14:41:29.0468 3104 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0)
14:41:29.0500 3104 ================ Scan VBR ==================================
14:41:29.0515 3104 [ B4BCA7950B9614AE386C8859E00A22DD ] \Device\Harddisk0\DR0\Partition1
14:41:29.0515 3104 \Device\Harddisk0\DR0\Partition1 - ok
14:41:29.0515 3104 ============================================================
14:41:29.0515 3104 Scan finished
14:41:29.0515 3104 ============================================================
14:41:29.0640 0176 Detected object count: 10
14:41:29.0640 0176 Actual detected object count: 10
14:41:58.0140 0176 Angelnt ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0140 0176 Angelnt ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0140 0176 ASNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0140 0176 ASNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0140 0176 Daemon ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0140 0176 Daemon ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0156 0176 McciCMService ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0156 0176 McciCMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0156 0176 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0156 0176 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0156 0176 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0156 0176 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0156 0176 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0156 0176 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0156 0176 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0156 0176 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0156 0176 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:58.0156 0176 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:58.0156 0176 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - skipped by user
14:41:58.0156 0176 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Skip
14:42:05.0328 2540 Deinitialize success

19:05:28.0656 0620 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
19:05:29.0406 0620 ============================================================
19:05:29.0406 0620 Current date / time: 2013/02/03 19:05:29.0406
19:05:29.0406 0620 SystemInfo:
19:05:29.0406 0620
19:05:29.0406 0620 OS Version: 5.1.2600 ServicePack: 3.0
19:05:29.0406 0620 Product type: Workstation
19:05:29.0406 0620 ComputerName: OLDŘICH
19:05:29.0406 0620 UserName: Ing. Ondřej Dokoupil
19:05:29.0406 0620 Windows directory: C:\WINDOWS
19:05:29.0406 0620 System windows directory: C:\WINDOWS
19:05:29.0406 0620 Processor architecture: Intel x86
19:05:29.0406 0620 Number of processors: 2
19:05:29.0406 0620 Page size: 0x1000
19:05:29.0406 0620 Boot type: Normal boot
19:05:29.0406 0620 ============================================================
19:05:31.0484 0620 BG loaded
19:05:32.0171 0620 Drive \Device\Harddisk0\DR0 - Size: 0x2407D7FC00 (144.12 Gb), SectorSize: 0x200, Cylinders: 0x497E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:05:32.0203 0620 ============================================================
19:05:32.0203 0620 \Device\Harddisk0\DR0:
19:05:32.0203 0620 MBR partitions:
19:05:32.0203 0620 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x1203E747
19:05:32.0203 0620 ============================================================
19:05:32.0390 0620 C: <-> \Device\Harddisk0\DR0\Partition1
19:05:32.0421 0620 ============================================================
19:05:32.0421 0620 Initialize success
19:05:32.0421 0620 ============================================================
19:05:59.0562 2884 ============================================================
19:05:59.0562 2884 Scan started
19:05:59.0562 2884 Mode: Manual; SigCheck; TDLFS;
19:05:59.0562 2884 ============================================================
19:06:08.0703 2884 ================ Scan system memory ========================
19:06:08.0703 2884 System memory - ok
19:06:08.0703 2884 ================ Scan services =============================
19:06:19.0593 2884 [ 656F06850D02BAED19F0E2E72B047CE2 ] ABBYY.Licensing.FineReader.Professional.11.0 C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
19:06:19.0890 2884 ABBYY.Licensing.FineReader.Professional.11.0 - ok
19:06:20.0171 2884 Abiosdsk - ok
19:06:20.0187 2884 abp480n5 - ok
19:06:20.0359 2884 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:06:36.0187 2884 ACPI - ok
19:06:36.0328 2884 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:06:36.0515 2884 ACPIEC - ok
19:06:36.0515 2884 ADILOADER - ok
19:06:36.0531 2884 adiusbaw - ok
19:06:36.0546 2884 adpu160m - ok
19:06:36.0718 2884 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:06:36.0968 2884 aec - ok
19:06:37.0390 2884 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:06:37.0500 2884 AFD - ok
19:06:37.0515 2884 Aha154x - ok
19:06:37.0515 2884 aic78u2 - ok
19:06:37.0531 2884 aic78xx - ok
19:06:37.0656 2884 [ 3F9F42085AB5B6A55498A539C54575AB ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys
19:06:37.0781 2884 akshasp - ok
19:06:37.0843 2884 [ D2B95315CC47F9230006FDBCBA394D8D ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys
19:06:37.0890 2884 aksusb - ok
19:06:37.0953 2884 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:06:38.0140 2884 Alerter - ok
19:06:38.0250 2884 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
19:06:38.0375 2884 ALG - ok
19:06:38.0390 2884 AliIde - ok
19:06:38.0406 2884 AmdLLD - ok
19:06:38.0406 2884 amsint - ok
19:06:38.0468 2884 [ DB8168E6F8407CE29C0A322CFA1D5BFA ] Angelnt C:\WINDOWS\System32\Drivers\ANGELNT.SYS
19:06:38.0500 2884 Angelnt ( UnsignedFile.Multi.Generic ) - warning
19:06:38.0500 2884 Angelnt - detected UnsignedFile.Multi.Generic (1)
19:06:38.0640 2884 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:06:38.0765 2884 AppMgmt - ok
19:06:38.0765 2884 asc - ok
19:06:38.0781 2884 asc3350p - ok
19:06:38.0781 2884 asc3550 - ok
19:06:38.0921 2884 [ 05A56C3156E1B6CC7BBD8E1D54D491F2 ] ASNDIS5 C:\WINDOWS\system32\ASNDIS5.SYS
19:06:38.0953 2884 ASNDIS5 ( UnsignedFile.Multi.Generic ) - warning
19:06:38.0953 2884 ASNDIS5 - detected UnsignedFile.Multi.Generic (1)
19:06:39.0265 2884 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:06:39.0281 2884 aspnet_state - ok
19:06:39.0343 2884 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:06:39.0453 2884 AsyncMac - ok
19:06:39.0531 2884 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:06:39.0671 2884 atapi - ok
19:06:39.0765 2884 [ 07ED1101F574B93A6312BF5D4241B41A ] AtcL002 C:\WINDOWS\system32\DRIVERS\atl02_xp.sys
19:06:39.0796 2884 AtcL002 - ok
19:06:39.0812 2884 Atdisk - ok
19:06:40.0062 2884 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:06:40.0203 2884 Atmarpc - ok
19:06:40.0796 2884 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:06:40.0921 2884 AudioSrv - ok
19:06:41.0000 2884 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:06:41.0140 2884 audstub - ok
19:06:41.0828 2884 [ 32A5DEFDDC3562BF89D73586F5915B34 ] Autodesk Licensing Service C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
19:06:41.0875 2884 Autodesk Licensing Service - ok
19:06:42.0703 2884 [ E7DEBB46B9EF1F28932E533BE4A3D1A9 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
19:06:42.0906 2884 BCM43XX - ok
19:06:43.0015 2884 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:06:43.0156 2884 Beep - ok
19:06:44.0593 2884 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
19:06:44.0953 2884 BITS - ok
19:06:45.0359 2884 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
19:06:45.0468 2884 Browser - ok
19:06:45.0734 2884 catchme - ok
19:06:45.0875 2884 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:06:46.0093 2884 cbidf2k - ok
19:06:46.0171 2884 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:06:46.0312 2884 CCDECODE - ok
19:06:46.0328 2884 cd20xrnt - ok
19:06:46.0375 2884 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:06:46.0593 2884 Cdaudio - ok
19:06:46.0718 2884 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:06:46.0875 2884 Cdfs - ok
19:06:46.0953 2884 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:06:47.0093 2884 Cdrom - ok
19:06:47.0093 2884 Changer - ok
19:06:47.0187 2884 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:06:47.0312 2884 CiSvc - ok
19:06:47.0406 2884 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:06:47.0531 2884 ClipSrv - ok
19:06:47.0750 2884 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:06:47.0765 2884 clr_optimization_v2.0.50727_32 - ok
19:06:47.0781 2884 CmdIde - ok
19:06:47.0812 2884 COMSysApp - ok
19:06:47.0828 2884 Cpqarray - ok
19:06:47.0937 2884 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:06:48.0046 2884 CryptSvc - ok
19:06:48.0062 2884 dac2w2k - ok
19:06:48.0078 2884 dac960nt - ok
19:06:48.0125 2884 [ 14626AACF90FF1667A72B27C6EDBB63C ] Daemon C:\WINDOWS\system32\DRIVERS\daemon.sys
19:06:48.0171 2884 Daemon ( UnsignedFile.Multi.Generic ) - warning
19:06:48.0171 2884 Daemon - detected UnsignedFile.Multi.Generic (1)
19:06:48.0312 2884 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:06:48.0359 2884 DcomLaunch - ok
19:06:48.0437 2884 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:06:48.0531 2884 Dhcp - ok
19:06:48.0531 2884 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:06:48.0625 2884 Disk - ok
19:06:48.0656 2884 dmadmin - ok
19:06:48.0734 2884 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:06:48.0906 2884 dmboot - ok
19:06:48.0921 2884 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:06:49.0015 2884 dmio - ok
19:06:49.0015 2884 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:06:49.0109 2884 dmload - ok
19:06:49.0140 2884 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:06:49.0234 2884 dmserver - ok
19:06:49.0296 2884 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:06:49.0375 2884 DMusic - ok
19:06:49.0437 2884 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:06:49.0484 2884 Dnscache - ok
19:06:49.0531 2884 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:06:49.0625 2884 Dot3svc - ok
19:06:49.0640 2884 dpti2o - ok
19:06:49.0656 2884 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:06:49.0750 2884 drmkaud - ok
19:06:49.0796 2884 [ 63A53BB2A85DD22A5E8D6C5CB6273043 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
19:06:49.0953 2884 eamon - ok
19:06:49.0984 2884 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:06:50.0093 2884 EapHost - ok
19:06:50.0109 2884 [ 4F72DD48A2ED63A57C1210228A472020 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
19:06:50.0125 2884 ehdrv - ok
19:06:50.0312 2884 [ E95AB781773870BD68ABE1AE1B57A8AC ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
19:06:50.0406 2884 ekrn - ok
19:06:50.0437 2884 [ 0C0C50813FC59C145B604B1DCCFFB377 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
19:06:50.0453 2884 epfw - ok
19:06:50.0500 2884 [ C1A8B6E44DCF250DB6BCCA7B460B9B6B ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
19:06:50.0515 2884 Epfwndis - ok
19:06:50.0531 2884 [ 7859F3E4AA8B9708D05F0DFBB3080721 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
19:06:50.0546 2884 epfwtdi - ok
19:06:50.0625 2884 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:06:50.0734 2884 ERSvc - ok
19:06:50.0796 2884 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
19:06:50.0812 2884 Eventlog - ok
19:06:50.0859 2884 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
19:06:50.0890 2884 EventSystem - ok
19:06:50.0937 2884 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:06:51.0046 2884 Fastfat - ok
19:06:51.0125 2884 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:06:51.0156 2884 FastUserSwitchingCompatibility - ok
19:06:51.0187 2884 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
19:06:51.0281 2884 Fdc - ok
19:06:51.0312 2884 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:06:51.0390 2884 Fips - ok
19:06:51.0406 2884 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
19:06:51.0484 2884 Flpydisk - ok
19:06:51.0515 2884 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
19:06:51.0625 2884 FltMgr - ok
19:06:51.0718 2884 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:06:51.0734 2884 FontCache3.0.0.0 - ok
19:06:51.0750 2884 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:06:51.0843 2884 Fs_Rec - ok
19:06:51.0859 2884 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:06:51.0968 2884 Ftdisk - ok
19:06:52.0000 2884 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:06:52.0093 2884 Gpc - ok
19:06:52.0203 2884 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9ad959001adb2 C:\Program Files\Google\Update\GoogleUpdate.exe
19:06:52.0203 2884 gupdate1c9ad959001adb2 - ok
19:06:52.0218 2884 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:06:52.0218 2884 gupdatem - ok
19:06:52.0312 2884 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:06:52.0328 2884 gusvc - ok
19:06:52.0375 2884 [ D95554949082FD29A04D351B58396718 ] Hardlock C:\WINDOWS\system32\drivers\hardlock.sys
19:06:52.0406 2884 Hardlock - ok
19:06:52.0453 2884 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:06:52.0546 2884 HDAudBus - ok
19:06:52.0609 2884 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:06:52.0703 2884 helpsvc - ok
19:06:52.0796 2884 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
19:06:52.0906 2884 HidServ - ok
19:06:52.0937 2884 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:06:53.0031 2884 HidUsb - ok
19:06:53.0093 2884 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
19:06:53.0187 2884 hkmsvc - ok
19:06:53.0203 2884 hpn - ok
19:06:53.0265 2884 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:06:53.0296 2884 HTTP - ok
19:06:53.0343 2884 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:06:53.0437 2884 HTTPFilter - ok
19:06:53.0453 2884 i2omgmt - ok
19:06:53.0453 2884 i2omp - ok
19:06:53.0484 2884 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:06:53.0562 2884 i8042prt - ok
19:06:53.0640 2884 [ 81EFE1C5542AFB2570758F39AE3B1151 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:06:53.0734 2884 ialm - ok
19:06:53.0859 2884 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:06:53.0937 2884 idsvc - ok
19:06:53.0984 2884 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:06:54.0093 2884 Imapi - ok
19:06:54.0171 2884 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:06:54.0265 2884 ImapiService - ok
19:06:54.0281 2884 ini910u - ok
19:06:54.0500 2884 [ 915CE2A58C6917E3C53BE1E91FA66BA8 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:06:54.0671 2884 IntcAzAudAddService - ok
19:06:54.0750 2884 IntelIde - ok
19:06:54.0781 2884 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:06:54.0875 2884 intelppm - ok
19:06:54.0921 2884 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:06:55.0031 2884 Ip6Fw - ok
19:06:55.0078 2884 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:06:55.0187 2884 IpFilterDriver - ok
19:06:55.0234 2884 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:06:55.0343 2884 IpInIp - ok
19:06:55.0375 2884 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:06:55.0484 2884 IpNat - ok
19:06:55.0515 2884 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:06:55.0593 2884 IPSec - ok
19:06:55.0609 2884 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:06:55.0703 2884 IRENUM - ok
19:06:55.0718 2884 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:06:55.0812 2884 isapnp - ok
19:06:55.0890 2884 [ 1834C96FB1F9280BCF6DDFA6DE8338BF ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
19:06:55.0906 2884 JavaQuickStarterService - ok
19:06:55.0937 2884 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:06:56.0031 2884 Kbdclass - ok
19:06:56.0062 2884 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:06:56.0156 2884 kbdhid - ok
19:06:56.0218 2884 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:06:56.0312 2884 kmixer - ok
19:06:56.0312 2884 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:06:56.0343 2884 KSecDD - ok
19:06:56.0406 2884 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:06:56.0421 2884 lanmanserver - ok
19:06:56.0500 2884 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:06:56.0531 2884 lanmanworkstation - ok
19:06:56.0531 2884 lbrtfdc - ok
19:06:56.0593 2884 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:06:56.0687 2884 LmHosts - ok
19:06:56.0734 2884 [ 23B55D27A0AFB7FE9CBCB20B617CC168 ] Ltn_stk7070P C:\WINDOWS\system32\DRIVERS\Ltn_stk7070P.sys
19:06:56.0812 2884 Ltn_stk7070P - ok
19:06:56.0890 2884 [ 1FA7503D019291C027FEDAE509BC5500 ] Ltn_stkrc C:\WINDOWS\system32\DRIVERS\Ltn_stkrc.sys
19:06:56.0921 2884 Ltn_stkrc - ok
19:06:56.0968 2884 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
19:06:56.0984 2884 MBAMProtector - ok
19:06:57.0093 2884 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:06:57.0109 2884 MBAMScheduler - ok
19:06:57.0218 2884 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:06:57.0250 2884 MBAMService - ok
19:06:57.0328 2884 [ 4F74184920B2D6E33024409B4C5C57C1 ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
19:06:57.0375 2884 McciCMService ( UnsignedFile.Multi.Generic ) - warning
19:06:57.0375 2884 McciCMService - detected UnsignedFile.Multi.Generic (1)
19:06:57.0421 2884 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:06:57.0531 2884 Messenger - ok
19:06:57.0593 2884 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:06:57.0609 2884 Microsoft Office Groove Audit Service - ok
19:06:57.0640 2884 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:06:57.0734 2884 mnmdd - ok
19:06:57.0765 2884 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:06:57.0875 2884 mnmsrvc - ok
19:06:57.0906 2884 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:06:58.0015 2884 Modem - ok
19:06:58.0031 2884 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:06:58.0140 2884 Mouclass - ok
19:06:58.0171 2884 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:06:58.0281 2884 mouhid - ok
19:06:58.0312 2884 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:06:58.0406 2884 MountMgr - ok
19:06:58.0468 2884 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\WINDOWS\system32\DRIVERS\MPE.sys
19:06:58.0562 2884 MPE - ok
19:06:58.0562 2884 mraid35x - ok
19:06:58.0609 2884 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
19:06:58.0625 2884 MREMP50 ( UnsignedFile.Multi.Generic ) - warning
19:06:58.0625 2884 MREMP50 - detected UnsignedFile.Multi.Generic (1)
19:06:58.0625 2884 MREMP50a64 - ok
19:06:58.0640 2884 MREMPR5 - ok
19:06:58.0640 2884 MRENDIS5 - ok
19:06:58.0656 2884 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
19:06:58.0656 2884 MRESP50 ( UnsignedFile.Multi.Generic ) - warning
19:06:58.0656 2884 MRESP50 - detected UnsignedFile.Multi.Generic (1)
19:06:58.0656 2884 MRESP50a64 - ok
19:06:58.0671 2884 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:06:58.0765 2884 MRxDAV - ok
19:06:58.0812 2884 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:06:58.0843 2884 MRxSmb - ok
19:06:58.0921 2884 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:06:59.0015 2884 MSDTC - ok
19:06:59.0046 2884 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:06:59.0140 2884 Msfs - ok
19:06:59.0187 2884 MSIServer - ok
19:06:59.0203 2884 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:06:59.0312 2884 MSKSSRV - ok
19:06:59.0343 2884 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:06:59.0437 2884 MSPCLOCK - ok
19:06:59.0468 2884 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:06:59.0578 2884 MSPQM - ok
19:06:59.0593 2884 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:06:59.0687 2884 mssmbios - ok
19:06:59.0718 2884 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
19:06:59.0812 2884 MSTEE - ok
19:06:59.0843 2884 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
19:06:59.0890 2884 MTsensor - ok
19:06:59.0906 2884 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:06:59.0921 2884 Mup - ok
19:06:59.0968 2884 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:07:00.0078 2884 NABTSFEC - ok
19:07:00.0156 2884 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
19:07:00.0265 2884 napagent - ok
19:07:00.0296 2884 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:07:00.0406 2884 NDIS - ok
19:07:00.0453 2884 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:07:00.0546 2884 NdisIP - ok
19:07:00.0578 2884 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:07:00.0609 2884 NdisTapi - ok
19:07:00.0656 2884 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:07:00.0750 2884 Ndisuio - ok
19:07:00.0765 2884 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:07:00.0843 2884 NdisWan - ok
19:07:00.0875 2884 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:07:00.0890 2884 NDProxy - ok
19:07:00.0921 2884 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:07:01.0031 2884 NetBIOS - ok
19:07:01.0062 2884 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:07:01.0156 2884 NetBT - ok
19:07:01.0218 2884 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
19:07:01.0312 2884 NetDDE - ok
19:07:01.0328 2884 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:07:01.0406 2884 NetDDEdsdm - ok
19:07:01.0468 2884 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:07:01.0546 2884 Netlogon - ok
19:07:01.0578 2884 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
19:07:01.0656 2884 Netman - ok
19:07:01.0750 2884 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:07:01.0765 2884 NetTcpPortSharing - ok
19:07:01.0843 2884 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
19:07:01.0875 2884 Nla - ok
19:07:01.0921 2884 NMIndexingService - ok
19:07:01.0937 2884 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:07:02.0046 2884 Npfs - ok
19:07:02.0109 2884 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:07:02.0234 2884 Ntfs - ok
19:07:02.0250 2884 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
19:07:02.0328 2884 NtLmSsp - ok
19:07:02.0390 2884 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:07:02.0531 2884 NtmsSvc - ok
19:07:02.0546 2884 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
19:07:02.0656 2884 Null - ok
19:07:02.0687 2884 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:07:02.0796 2884 NwlnkFlt - ok
19:07:02.0812 2884 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:07:02.0906 2884 NwlnkFwd - ok
19:07:03.0000 2884 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:07:03.0031 2884 odserv - ok
19:07:03.0062 2884 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:07:03.0078 2884 ose - ok
19:07:03.0109 2884 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:07:03.0203 2884 Parport - ok
19:07:03.0234 2884 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:07:03.0328 2884 PartMgr - ok
19:07:03.0359 2884 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:07:03.0453 2884 ParVdm - ok
19:07:03.0484 2884 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:07:03.0562 2884 PCI - ok
19:07:03.0562 2884 PCIDump - ok
19:07:03.0578 2884 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:07:03.0687 2884 PCIIde - ok
19:07:03.0859 2884 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
19:07:03.0984 2884 Pcmcia - ok
19:07:04.0000 2884 PDCOMP - ok
19:07:04.0000 2884 PDFRAME - ok
19:07:04.0015 2884 PDRELI - ok
19:07:04.0015 2884 PDRFRAME - ok
19:07:04.0015 2884 perc2 - ok
19:07:04.0031 2884 perc2hib - ok
19:07:04.0062 2884 [ 5903FA75200807AD739286BBF40C4904 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
19:07:04.0093 2884 pfc ( UnsignedFile.Multi.Generic ) - warning
19:07:04.0093 2884 pfc - detected UnsignedFile.Multi.Generic (1)
19:07:04.0468 2884 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
19:07:04.0515 2884 PlugPlay - ok
19:07:04.0531 2884 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:07:04.0609 2884 PolicyAgent - ok
19:07:04.0640 2884 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:07:04.0750 2884 PptpMiniport - ok
19:07:04.0765 2884 [ 474543751522111DD7C0CF09E17F6D9F ] PQNTDrv C:\WINDOWS\system32\drivers\PQNTDrv.sys
19:07:04.0781 2884 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning
19:07:04.0781 2884 PQNTDrv - detected UnsignedFile.Multi.Generic (1)
19:07:04.0796 2884 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:07:04.0890 2884 ProtectedStorage - ok
19:07:04.0937 2884 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:07:05.0046 2884 PSched - ok
19:07:05.0046 2884 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:07:05.0187 2884 Ptilink - ok
19:07:05.0203 2884 ql1080 - ok
19:07:05.0203 2884 Ql10wnt - ok
19:07:05.0203 2884 ql12160 - ok
19:07:05.0218 2884 ql1240 - ok
19:07:05.0218 2884 ql1280 - ok
19:07:05.0296 2884 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:07:05.0406 2884 RasAcd - ok
19:07:05.0625 2884 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:07:05.0734 2884 RasAuto - ok
19:07:05.0828 2884 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:07:05.0921 2884 Rasl2tp - ok
19:07:06.0531 2884 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:07:06.0640 2884 RasMan - ok
19:07:06.0781 2884 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:07:06.0875 2884 RasPppoe - ok
19:07:06.0937 2884 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:07:07.0046 2884 Raspti - ok
19:07:07.0156 2884 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:07:07.0250 2884 Rdbss - ok
19:07:07.0281 2884 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:07:07.0406 2884 RDPCDD - ok
19:07:07.0453 2884 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:07:07.0562 2884 rdpdr - ok
19:07:07.0609 2884 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:07:07.0671 2884 RDPWD - ok
19:07:07.0734 2884 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:07:07.0843 2884 RDSessMgr - ok
19:07:07.0968 2884 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:07:08.0062 2884 redbook - ok
19:07:08.0406 2884 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:07:08.0515 2884 RemoteAccess - ok
19:07:09.0718 2884 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:07:12.0375 2884 RemoteRegistry - ok
19:07:12.0734 2884 [ BD517C7FB119997EFFBE39D5E4B37B05 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
19:07:12.0781 2884 RichVideo ( UnsignedFile.Multi.Generic ) - warning
19:07:12.0781 2884 RichVideo - detected UnsignedFile.Multi.Generic (1)
19:07:12.0812 2884 [ 7B9921A14BE8D230148B87322CF1917A ] ROCKEYNT C:\WINDOWS\system32\DRIVERS\Rockey4.sys
19:07:12.0875 2884 ROCKEYNT - ok
19:07:12.0984 2884 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
19:07:13.0109 2884 RpcLocator - ok
19:07:13.0187 2884 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
19:07:13.0234 2884 RpcSs - ok
19:07:13.0328 2884 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
19:07:13.0468 2884 RSVP - ok
19:07:13.0546 2884 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
19:07:13.0625 2884 SamSs - ok
19:07:13.0750 2884 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:07:13.0859 2884 SCardSvr - ok
19:07:14.0296 2884 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:07:14.0390 2884 Schedule - ok
19:07:14.0437 2884 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:07:14.0578 2884 Secdrv - ok
19:07:14.0671 2884 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
19:07:14.0765 2884 seclogon - ok
19:07:14.0843 2884 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
19:07:14.0937 2884 SENS - ok
19:07:15.0000 2884 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
19:07:15.0109 2884 serenum - ok
19:07:15.0375 2884 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
19:07:15.0500 2884 Serial - ok
19:07:15.0531 2884 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
19:07:15.0640 2884 Sfloppy - ok
19:07:17.0062 2884 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
19:07:17.0156 2884 SharedAccess - ok
19:07:17.0265 2884 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:07:17.0296 2884 ShellHWDetection - ok
19:07:17.0296 2884 Simbad - ok
19:07:17.0531 2884 [ 4CA43B85F22C7739311788B651A779CB ] Skype C2C Service C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:07:18.0296 2884 Skype C2C Service - ok
19:07:18.0406 2884 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
19:07:18.0406 2884 SkypeUpdate - ok
19:07:18.0515 2884 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:07:18.0609 2884 SLIP - ok
19:07:18.0625 2884 Sparrow - ok
19:07:18.0656 2884 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:07:18.0750 2884 splitter - ok
19:07:18.0828 2884 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:07:18.0843 2884 Spooler - ok
19:07:18.0890 2884 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:07:19.0000 2884 sr - ok
19:07:19.0062 2884 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
19:07:19.0156 2884 srservice - ok
19:07:19.0171 2884 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:07:19.0203 2884 Srv - ok
19:07:19.0250 2884 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:07:19.0328 2884 SSDPSRV - ok
19:07:19.0406 2884 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:07:19.0500 2884 stisvc - ok
19:07:19.0546 2884 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:07:19.0640 2884 streamip - ok
19:07:19.0671 2884 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:07:19.0781 2884 swenum - ok
19:07:19.0796 2884 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:07:19.0875 2884 swmidi - ok
19:07:19.0937 2884 SwPrv - ok
19:07:19.0953 2884 symc810 - ok
19:07:19.0953 2884 symc8xx - ok
19:07:19.0953 2884 sym_hi - ok
19:07:19.0968 2884 sym_u3 - ok
19:07:20.0000 2884 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:07:20.0078 2884 sysaudio - ok
19:07:20.0125 2884 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:07:20.0218 2884 SysmonLog - ok
19:07:20.0265 2884 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:07:20.0359 2884 TapiSrv - ok
19:07:20.0406 2884 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:07:20.0437 2884 Tcpip - ok
19:07:20.0484 2884 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:07:20.0593 2884 TDPIPE - ok
19:07:20.0625 2884 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:07:20.0703 2884 TDTCP - ok
19:07:20.0718 2884 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:07:20.0828 2884 TermDD - ok
19:07:20.0906 2884 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
19:07:21.0000 2884 TermService - ok
19:07:21.0078 2884 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
19:07:21.0093 2884 Themes - ok
19:07:21.0156 2884 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:07:21.0234 2884 TlntSvr - ok
19:07:21.0250 2884 TosIde - ok
19:07:21.0312 2884 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:07:21.0390 2884 TrkWks - ok
19:07:21.0437 2884 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:07:21.0531 2884 Udfs - ok
19:07:21.0531 2884 ultra - ok
19:07:21.0578 2884 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:07:21.0687 2884 Update - ok
19:07:21.0750 2884 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
19:07:21.0843 2884 upnphost - ok
19:07:21.0906 2884 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
19:07:21.0984 2884 UPS - ok
19:07:22.0000 2884 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:07:22.0093 2884 usbccgp - ok
19:07:22.0125 2884 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:07:22.0234 2884 usbehci - ok
19:07:22.0250 2884 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:07:22.0343 2884 usbhub - ok
19:07:22.0390 2884 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:07:22.0468 2884 usbprint - ok
19:07:22.0484 2884 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:07:22.0593 2884 usbscan - ok
19:07:22.0609 2884 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:07:22.0718 2884 USBSTOR - ok
19:07:22.0750 2884 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:07:22.0828 2884 usbuhci - ok
19:07:22.0859 2884 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
19:07:22.0937 2884 usbvideo - ok
19:07:22.0953 2884 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:07:23.0062 2884 VgaSave - ok
19:07:23.0062 2884 ViaIde - ok
19:07:23.0093 2884 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:07:23.0187 2884 VolSnap - ok
19:07:23.0250 2884 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
19:07:23.0359 2884 VSS - ok
19:07:23.0421 2884 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
19:07:23.0500 2884 W32Time - ok
19:07:23.0531 2884 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:07:23.0640 2884 Wanarp - ok
19:07:23.0687 2884 [ 46A247F6617526AFE38B6F12F5512120 ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
19:07:23.0718 2884 wceusbsh - ok
19:07:23.0718 2884 WDICA - ok
19:07:23.0765 2884 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:07:23.0859 2884 wdmaud - ok
19:07:23.0921 2884 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
19:07:24.0015 2884 WebClient - ok
19:07:24.0078 2884 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:07:24.0156 2884 winmgmt - ok
19:07:24.0234 2884 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:07:24.0296 2884 WmdmPmSN - ok
19:07:24.0359 2884 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:07:24.0390 2884 Wmi - ok
19:07:24.0468 2884 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:07:24.0562 2884 WmiApSrv - ok
19:07:24.0656 2884 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
19:07:24.0734 2884 WMPNetworkSvc - ok
19:07:24.0765 2884 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:07:24.0875 2884 WS2IFSL - ok
19:07:24.0921 2884 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
19:07:25.0015 2884 wscsvc - ok
19:07:25.0046 2884 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:07:25.0156 2884 WSTCODEC - ok
19:07:25.0218 2884 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:07:25.0296 2884 wuauserv - ok
19:07:25.0531 2884 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:07:25.0546 2884 WudfPf - ok
19:07:25.0578 2884 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:07:25.0609 2884 WudfRd - ok
19:07:25.0640 2884 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
19:07:25.0656 2884 WudfSvc - ok
19:07:25.0734 2884 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:07:25.0843 2884 WZCSVC - ok
19:07:25.0906 2884 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:07:26.0000 2884 xmlprov - ok
19:07:26.0000 2884 ================ Scan global ===============================
19:07:26.0109 2884 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
19:07:26.0218 2884 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
19:07:26.0281 2884 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
19:07:26.0343 2884 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
19:07:26.0359 2884 [Global] - ok
19:07:26.0359 2884 ================ Scan MBR ==================================
19:07:26.0375 2884 [ E9CAA18A3DB6F86B1A1489541612CEB2 ] \Device\Harddisk0\DR0
19:07:26.0562 2884 \Device\Harddisk0\DR0 - ok
19:07:26.0562 2884 ================ Scan VBR ==================================
19:07:26.0562 2884 [ B4BCA7950B9614AE386C8859E00A22DD ] \Device\Harddisk0\DR0\Partition1
19:07:26.0562 2884 \Device\Harddisk0\DR0\Partition1 - ok
19:07:26.0562 2884 ============================================================
19:07:26.0562 2884 Scan finished
19:07:26.0562 2884 ============================================================
19:07:26.0687 2840 Detected object count: 9
19:07:26.0687 2840 Actual detected object count: 9
19:07:45.0406 2840 Angelnt ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 Angelnt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 ASNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 ASNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 Daemon ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 Daemon ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 McciCMService ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 McciCMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:45.0406 2840 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
19:07:45.0406 2840 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:07:59.0171 0516 Deinitialize success

ještě bych měl dotaz, dá se zjistit, s čím se pere ten eset?