Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosim o kontrolu logu komp se seká

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
mustangSchelby
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 06 dub 2007 11:02

prosim o kontrolu logu komp se seká

#1 Příspěvek od mustangSchelby »

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:09:54, on 30.12.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Administrator\Plocha\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_Prot
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/bsprpc/{068B7 ... 6C3560EEDC}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ICQ] ~"C:\Program Files\ICQ7.7\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe /s
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 6898 bytes
Nahoru
Uživatelský avatar
Mc_Murphy
VIP in memoriam
VIP in memoriam
Příspěvky: 6706
Registrován: 03 lis 2008 15:55
Bydliště: Plzeň [ZČ]
Kontaktovat uživatele:
Kontaktovat uživatele Mc_Murphy

Re: prosim o kontrolu logu komp se seká

#2 Příspěvek od Mc_Murphy »

Zdravím. :162:

:!: Jako první si přečti pravidla našeho fóra! Zjistil bys, mimo jiné, že jako vstupní log používáme už delší dobu RSIT a ne HJT. :172:

:arrow: Odinstaluj všechny tyto toolbary a programy: ICQToolBar, uTorrentBar Toolbar, Babylon Toolbar, všechno od SweetIM a SWEETIE.
:arrow: Program ICQ odeber ze spouštění po startu systému a spouštěj jen v případě potřeby.

:arrow: Potom fixni v HJT níže uvedené položky.
"Fixnout" znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek. Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
HJT najdeš zde: C:\Documents and Settings\Administrator\Plocha\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_Prot
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/bsprpc/{068B7 ... 6C3560EEDC}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html


:arrow: Dále stáhni a nainstaluj Malwarebytes' Anti-Malware (zkráceně MBAM) podle návodu z tohoto topicu.
  • Proveď aktualizaci virové databáze.
  • V záložce Kontrolor zvol Úplná kontrola a zaškrtni všechny pevné disky, které máš na počítači.
  • Předem nic nemaž!!
  • MBAM mívá občas falešné detekce, proto vlož jeho log do příspěvku a počkej na posouzení!
Obrázek-Obrázek
Obrázek-Obrázek

  • ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me love, I've found my identity, found my identity.

    I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me hope, I've found my identity in Christ...
Nahoru
mustangSchelby
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 06 dub 2007 11:02

Re: prosim o kontrolu logu komp se seká

#3 Příspěvek od mustangSchelby »

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.60.0.1800
www.malwarebytes.org

Verze databáze: v2011.12.30.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Administrator :: DOMA [administrátor]

Ochrana: Povolena

30.12.2011 10:01:40
mbam-log-2011-12-30 (10-36-11).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 214950
Uplynulý čas: 33 minut, 42 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SanskaRaja Toolber 3.00 (Backdoor.Agent.Co) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 1
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Backdoor.Agent.Gen) -> Data: C:\Documents and Settings\Administrator\Local Settings\Data aplikací\9539e794\X -> Žádná instrukce nebyla provedena.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 1
C:\Program Files\Company\SanskaRaja Toolber (Backdoor.Agent.Co) -> Žádná instrukce nebyla provedena.

Nalezené soubory: 18
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\9539e794\U\000000c0.@ (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\9539e794\U\000000cb.@ (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\9539e794\U\000000cf.$ (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\9539e794\U\800000c0.@ (Rootkit.0Access) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\9539e794\U\800000cb.$ (Backdoor.0Access) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\9539e794\U\800000cf.$ (Backdoor.0Access) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Local Settings\Temp\Rar$EX35.408\Client\BFC.exe (Spyware.Passwords) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\ESVD3M5G\Testbundle23w_1254[1].exe (Adware.Agent) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Administrator\Plocha\pekelna kuchyne\Facebook Hack.exe (Backdoor.RAT.Co) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{C0E12ABA-150A-4A07-A2A0-44716A23CF2F}\RP73\A0013134.ini (Rootkit.0Access) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{C0E12ABA-150A-4A07-A2A0-44716A23CF2F}\RP73\A0013144.exe (PUP.BundleOffer.Downloader.S) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{C0E12ABA-150A-4A07-A2A0-44716A23CF2F}\RP74\A0013204.ini (Rootkit.0Access) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{C0E12ABA-150A-4A07-A2A0-44716A23CF2F}\RP74\A0013327.ini (Rootkit.0Access) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{C0E12ABA-150A-4A07-A2A0-44716A23CF2F}\RP74\A0013343.ini (Rootkit.0Access) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{C0E12ABA-150A-4A07-A2A0-44716A23CF2F}\RP74\A0014343.ini (Rootkit.0Access) -> Žádná instrukce nebyla provedena.
C:\WINDOWS\assembly\GAC_MSIL\Desktop.ini (Rootkit.0Access) -> Žádná instrukce nebyla provedena.
C:\Program Files\Company\SanskaRaja Toolber\Uninstall.ini (Backdoor.Agent.Co) -> Žádná instrukce nebyla provedena.
C:\Program Files\Company\SanskaRaja Toolber\Uninstall.exe (Backdoor.Agent.Co) -> Žádná instrukce nebyla provedena.

(konec)
Nahoru
Uživatelský avatar
Mc_Murphy
VIP in memoriam
VIP in memoriam
Příspěvky: 6706
Registrován: 03 lis 2008 15:55
Bydliště: Plzeň [ZČ]
Kontaktovat uživatele:
Kontaktovat uživatele Mc_Murphy

Re: prosim o kontrolu logu komp se seká

#4 Příspěvek od Mc_Murphy »

No, kamaráde, máš to pěkně zaflákané... :?:

:arrow: Všechny nálezy MBAMu dej smazat.
:arrow: Podle tohoto návodu vypni body obnovy pro svůj počítač, dej restart a prozatím je nezapínej! V těch starých máš havěť a já jisté podezření.


Udělej scan pomocí TDSS Killer.

:arrow: Stáhni si TDSSKiller a ulož ho na Plochu.
  • Dvojklik na TDSSKiller.exe, potom kliknout na Spustit kontrolu - Start Scan.
  • Ať už bude detekován infikovaný soubor(y), či podezřelý (suspicious), zvol u všech akci Skip (!!!), pak klikni na Continue.
  • Program Tě může požádat, abys restartoval počítač pro dokončení procesu. Klikni na Reboot Now.
  • Jestli se restart nevyžaduje, klikni na tlačítko Report. Soubor s logem by se měl objevit. Zkopíruj ho a vlož sem.
  • Je-li vyžadován restart počítače, zpráva je k dispozici ve Tvém kořenovém adresáři (například C:\ složka) ve formě "TDSSKiller. _log.txt".

:arrow: Dále klikni na Start >> Spustit... (nebo Win+R) >> do okénka zkopíruj řádek:

Kód: Vybrat vše

%windir%\system32\wbem\wmic.exe partition get name,bootable,size,type > "%userprofile%\Desktop\disk.txt"
  • Klikni na [OK].
  • Na Ploše se vytvoří log s názvem disk.txt - jeho obsah mi sem také vlož.
Obrázek-Obrázek
Obrázek-Obrázek

  • ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me love, I've found my identity, found my identity.

    I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me hope, I've found my identity in Christ...
Nahoru
mustangSchelby
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 06 dub 2007 11:02

Re: prosim o kontrolu logu komp se seká

#5 Příspěvek od mustangSchelby »

15:27:36.0343 3940 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
15:27:36.0421 3940 ============================================================
15:27:36.0421 3940 Current date / time: 2011/12/30 15:27:36.0421
15:27:36.0421 3940 SystemInfo:
15:27:36.0421 3940
15:27:36.0421 3940 OS Version: 5.1.2600 ServicePack: 3.0
15:27:36.0421 3940 Product type: Workstation
15:27:36.0421 3940 ComputerName: DOMA
15:27:36.0421 3940 UserName: Administrator
15:27:36.0421 3940 Windows directory: C:\WINDOWS
15:27:36.0421 3940 System windows directory: C:\WINDOWS
15:27:36.0421 3940 Processor architecture: Intel x86
15:27:36.0421 3940 Number of processors: 2
15:27:36.0421 3940 Page size: 0x1000
15:27:36.0421 3940 Boot type: Normal boot
15:27:36.0421 3940 ============================================================
15:27:37.0718 3940 Initialize success
15:27:40.0187 3076 ============================================================
15:27:40.0187 3076 Scan started
15:27:40.0187 3076 Mode: Manual;
15:27:40.0187 3076 ============================================================
15:27:40.0750 3076 Scan interrupted by user!
15:27:40.0750 3076 Scan interrupted by user!
15:27:40.0750 3076 Scan interrupted by user!
15:27:40.0750 3076 ============================================================
15:27:40.0750 3076 Scan finished
15:27:40.0750 3076 ============================================================
15:27:40.0750 3116 Detected object count: 0
15:27:40.0750 3116 Actual detected object count: 0
15:27:42.0890 2132 ============================================================
15:27:42.0890 2132 Scan started
15:27:42.0890 2132 Mode: Manual;
15:27:42.0890 2132 ============================================================
15:27:43.0031 2132 Abiosdsk - ok
15:27:43.0046 2132 abp480n5 - ok
15:27:43.0078 2132 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:27:43.0078 2132 ACPI - ok
15:27:43.0109 2132 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
15:27:43.0109 2132 ACPIEC - ok
15:27:43.0125 2132 adpu160m - ok
15:27:43.0140 2132 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
15:27:43.0156 2132 aec - ok
15:27:43.0171 2132 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
15:27:43.0187 2132 AFD - ok
15:27:43.0187 2132 Aha154x - ok
15:27:43.0203 2132 aic78u2 - ok
15:27:43.0218 2132 aic78xx - ok
15:27:43.0234 2132 AliIde - ok
15:27:43.0234 2132 amsint - ok
15:27:43.0250 2132 asc - ok
15:27:43.0265 2132 asc3350p - ok
15:27:43.0265 2132 asc3550 - ok
15:27:43.0296 2132 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:27:43.0296 2132 AsyncMac - ok
15:27:43.0343 2132 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
15:27:43.0343 2132 atapi - ok
15:27:43.0359 2132 Atdisk - ok
15:27:43.0390 2132 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:27:43.0390 2132 Atmarpc - ok
15:27:43.0421 2132 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
15:27:43.0421 2132 audstub - ok
15:27:43.0468 2132 b57w2k (241474d01380e9ed41d4c07f4f5fd401) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
15:27:43.0468 2132 b57w2k - ok
15:27:43.0500 2132 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
15:27:43.0500 2132 Beep - ok
15:27:43.0531 2132 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
15:27:43.0531 2132 cbidf2k - ok
15:27:43.0546 2132 cd20xrnt - ok
15:27:43.0578 2132 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
15:27:43.0578 2132 Cdaudio - ok
15:27:43.0609 2132 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
15:27:43.0609 2132 Cdfs - ok
15:27:43.0640 2132 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:27:43.0687 2132 Cdrom - ok
15:27:43.0687 2132 cerc6 - ok
15:27:43.0703 2132 Changer - ok
15:27:43.0734 2132 CmdIde - ok
15:27:43.0750 2132 Cpqarray - ok
15:27:43.0765 2132 dac2w2k - ok
15:27:43.0765 2132 dac960nt - ok
15:27:43.0796 2132 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
15:27:43.0796 2132 Disk - ok
15:27:43.0828 2132 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
15:27:43.0843 2132 dmboot - ok
15:27:43.0859 2132 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
15:27:43.0859 2132 dmio - ok
15:27:43.0890 2132 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
15:27:43.0890 2132 dmload - ok
15:27:43.0921 2132 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
15:27:43.0921 2132 DMusic - ok
15:27:43.0937 2132 dpti2o - ok
15:27:43.0937 2132 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
15:27:43.0937 2132 drmkaud - ok
15:27:43.0968 2132 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
15:27:43.0968 2132 Fastfat - ok
15:27:43.0984 2132 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
15:27:43.0984 2132 Fdc - ok
15:27:44.0000 2132 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
15:27:44.0000 2132 Fips - ok
15:27:44.0031 2132 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:27:44.0031 2132 Flpydisk - ok
15:27:44.0062 2132 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
15:27:44.0062 2132 FltMgr - ok
15:27:44.0078 2132 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:27:44.0078 2132 Fs_Rec - ok
15:27:44.0093 2132 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:27:44.0093 2132 Ftdisk - ok
15:27:44.0125 2132 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:27:44.0125 2132 Gpc - ok
15:27:44.0140 2132 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:27:44.0156 2132 hidusb - ok
15:27:44.0156 2132 hpn - ok
15:27:44.0203 2132 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
15:27:44.0203 2132 HTTP - ok
15:27:44.0218 2132 i2omgmt - ok
15:27:44.0218 2132 i2omp - ok
15:27:44.0265 2132 ialm (0f0194c4b635c10c3f785e4fee52d641) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
15:27:44.0281 2132 ialm - ok
15:27:44.0296 2132 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
15:27:44.0296 2132 Imapi - ok
15:27:44.0328 2132 ini910u - ok
15:27:44.0328 2132 IntelIde - ok
15:27:44.0359 2132 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:27:44.0359 2132 intelppm - ok
15:27:44.0375 2132 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
15:27:44.0375 2132 Ip6Fw - ok
15:27:44.0406 2132 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:27:44.0406 2132 IpFilterDriver - ok
15:27:44.0421 2132 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:27:44.0421 2132 IpInIp - ok
15:27:44.0437 2132 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:27:44.0437 2132 IpNat - ok
15:27:44.0453 2132 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:27:44.0515 2132 IPSec - ok
15:27:44.0531 2132 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
15:27:44.0531 2132 IRENUM - ok
15:27:44.0562 2132 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:27:44.0562 2132 isapnp - ok
15:27:44.0609 2132 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:27:44.0609 2132 Kbdclass - ok
15:27:44.0625 2132 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:27:44.0625 2132 kbdhid - ok
15:27:44.0671 2132 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
15:27:44.0671 2132 kmixer - ok
15:27:44.0687 2132 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
15:27:44.0687 2132 KSecDD - ok
15:27:44.0703 2132 lbrtfdc - ok
15:27:44.0750 2132 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
15:27:44.0750 2132 MBAMProtector - ok
15:27:44.0765 2132 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
15:27:44.0765 2132 mnmdd - ok
15:27:44.0796 2132 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
15:27:44.0796 2132 Modem - ok
15:27:44.0843 2132 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:27:44.0843 2132 Mouclass - ok
15:27:44.0875 2132 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:27:44.0875 2132 mouhid - ok
15:27:44.0890 2132 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
15:27:44.0890 2132 MountMgr - ok
15:27:44.0906 2132 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
15:27:44.0906 2132 MpFilter - ok
15:27:44.0953 2132 MpKsl0bb6a6f0 - ok
15:27:44.0953 2132 MpKsl234a9bb7 - ok
15:27:44.0968 2132 MpKsl34b42f63 - ok
15:27:44.0968 2132 MpKsl47d865d7 - ok
15:27:44.0984 2132 MpKsl4968940e - ok
15:27:44.0984 2132 MpKsl83c91715 - ok
15:27:45.0000 2132 MpKsl8784ef26 - ok
15:27:45.0000 2132 MpKsl97873e19 - ok
15:27:45.0015 2132 MpKsle37f9d59 (a69630d039c38018689190234f866d77) c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{7E92FC7B-17A0-4CB4-A3DE-BBC1BAA19651}\MpKsle37f9d59.sys
15:27:45.0015 2132 MpKsle37f9d59 - ok
15:27:45.0031 2132 mraid35x - ok
15:27:45.0046 2132 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:27:45.0046 2132 MRxDAV - ok
15:27:45.0093 2132 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:27:45.0093 2132 MRxSmb - ok
15:27:45.0109 2132 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
15:27:45.0109 2132 Msfs - ok
15:27:45.0140 2132 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:27:45.0140 2132 MSKSSRV - ok
15:27:45.0171 2132 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:27:45.0171 2132 MSPCLOCK - ok
15:27:45.0203 2132 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
15:27:45.0203 2132 MSPQM - ok
15:27:45.0218 2132 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:27:45.0234 2132 mssmbios - ok
15:27:45.0250 2132 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
15:27:45.0250 2132 Mup - ok
15:27:45.0281 2132 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
15:27:45.0281 2132 NDIS - ok
15:27:45.0296 2132 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:27:45.0296 2132 NdisTapi - ok
15:27:45.0328 2132 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:27:45.0328 2132 Ndisuio - ok
15:27:45.0343 2132 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:27:45.0343 2132 NdisWan - ok
15:27:45.0375 2132 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
15:27:45.0375 2132 NDProxy - ok
15:27:45.0390 2132 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
15:27:45.0390 2132 NetBIOS - ok
15:27:45.0406 2132 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
15:27:45.0453 2132 NetBT - ok
15:27:45.0484 2132 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
15:27:45.0484 2132 Npfs - ok
15:27:45.0531 2132 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
15:27:45.0546 2132 Ntfs - ok
15:27:45.0593 2132 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
15:27:45.0593 2132 Null - ok
15:27:45.0640 2132 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:27:45.0640 2132 NwlnkFlt - ok
15:27:45.0656 2132 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:27:45.0656 2132 NwlnkFwd - ok
15:27:45.0671 2132 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
15:27:45.0671 2132 Parport - ok
15:27:45.0687 2132 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
15:27:45.0687 2132 PartMgr - ok
15:27:45.0703 2132 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
15:27:45.0703 2132 ParVdm - ok
15:27:45.0734 2132 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
15:27:45.0734 2132 PCI - ok
15:27:45.0750 2132 PCIDump - ok
15:27:45.0765 2132 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
15:27:45.0765 2132 PCIIde - ok
15:27:45.0781 2132 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
15:27:45.0781 2132 Pcmcia - ok
15:27:45.0796 2132 PDCOMP - ok
15:27:45.0812 2132 PDFRAME - ok
15:27:45.0812 2132 PDRELI - ok
15:27:45.0828 2132 PDRFRAME - ok
15:27:45.0843 2132 perc2 - ok
15:27:45.0843 2132 perc2hib - ok
15:27:45.0890 2132 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:27:45.0890 2132 PptpMiniport - ok
15:27:45.0906 2132 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
15:27:45.0921 2132 PSched - ok
15:27:45.0937 2132 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:27:45.0937 2132 Ptilink - ok
15:27:45.0953 2132 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:27:45.0953 2132 PxHelp20 - ok
15:27:45.0968 2132 ql1080 - ok
15:27:45.0984 2132 Ql10wnt - ok
15:27:45.0984 2132 ql12160 - ok
15:27:46.0000 2132 ql1240 - ok
15:27:46.0015 2132 ql1280 - ok
15:27:46.0031 2132 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:27:46.0031 2132 RasAcd - ok
15:27:46.0046 2132 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:27:46.0046 2132 Rasl2tp - ok
15:27:46.0062 2132 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:27:46.0062 2132 RasPppoe - ok
15:27:46.0078 2132 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
15:27:46.0078 2132 Raspti - ok
15:27:46.0093 2132 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:27:46.0156 2132 Rdbss - ok
15:27:46.0171 2132 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:27:46.0171 2132 RDPCDD - ok
15:27:46.0203 2132 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:27:46.0203 2132 rdpdr - ok
15:27:46.0234 2132 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
15:27:46.0234 2132 RDPWD - ok
15:27:46.0265 2132 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
15:27:46.0296 2132 redbook - ok
15:27:46.0359 2132 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:27:46.0359 2132 Secdrv - ok
15:27:46.0421 2132 senfilt (b9c7617c1e8ab6fdff75d3c8dafcb4c8) C:\WINDOWS\system32\drivers\senfilt.sys
15:27:46.0421 2132 senfilt - ok
15:27:46.0453 2132 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
15:27:46.0453 2132 serenum - ok
15:27:46.0484 2132 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
15:27:46.0484 2132 Sfloppy - ok
15:27:46.0500 2132 Simbad - ok
15:27:46.0546 2132 smwdm (c6d9959e493682f872a639b6ec1b4a08) C:\WINDOWS\system32\drivers\smwdm.sys
15:27:46.0546 2132 smwdm - ok
15:27:46.0546 2132 Sparrow - ok
15:27:46.0578 2132 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
15:27:46.0593 2132 splitter - ok
15:27:46.0640 2132 sptd (a199171385be17973fd800fa91f8f78a) C:\WINDOWS\system32\Drivers\sptd.sys
15:27:46.0640 2132 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: a199171385be17973fd800fa91f8f78a
15:27:46.0640 2132 sptd ( LockedFile.Multi.Generic ) - warning
15:27:46.0640 2132 sptd - detected LockedFile.Multi.Generic (1)
15:27:46.0656 2132 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
15:27:46.0656 2132 sr - ok
15:27:46.0687 2132 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
15:27:46.0703 2132 Srv - ok
15:27:46.0734 2132 sscebus (b2063ce662af3ab20045121a5b716df6) C:\WINDOWS\system32\DRIVERS\sscebus.sys
15:27:46.0734 2132 sscebus - ok
15:27:46.0765 2132 sscemdfl (66799dc0afe3dcaf8368cae17394a762) C:\WINDOWS\system32\DRIVERS\sscemdfl.sys
15:27:46.0765 2132 sscemdfl - ok
15:27:46.0781 2132 sscemdm (cbf03ffc08f8db547bab2f79aa663d16) C:\WINDOWS\system32\DRIVERS\sscemdm.sys
15:27:46.0796 2132 sscemdm - ok
15:27:46.0828 2132 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
15:27:46.0828 2132 swenum - ok
15:27:46.0875 2132 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
15:27:46.0875 2132 swmidi - ok
15:27:46.0890 2132 symc810 - ok
15:27:46.0890 2132 symc8xx - ok
15:27:46.0906 2132 sym_hi - ok
15:27:46.0921 2132 sym_u3 - ok
15:27:46.0953 2132 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
15:27:46.0953 2132 sysaudio - ok
15:27:47.0000 2132 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:27:47.0015 2132 Tcpip - ok
15:27:47.0031 2132 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
15:27:47.0031 2132 TDPIPE - ok
15:27:47.0062 2132 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
15:27:47.0062 2132 TDTCP - ok
15:27:47.0093 2132 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
15:27:47.0093 2132 TermDD - ok
15:27:47.0109 2132 TosIde - ok
15:27:47.0156 2132 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
15:27:47.0156 2132 Udfs - ok
15:27:47.0171 2132 ultra - ok
15:27:47.0187 2132 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
15:27:47.0203 2132 Update - ok
15:27:47.0234 2132 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:27:47.0265 2132 usbccgp - ok
15:27:47.0296 2132 USBCCID (6b5e4d5e6e5ecd6acd14aed59768ce5c) C:\WINDOWS\system32\DRIVERS\usbccid.sys
15:27:47.0312 2132 USBCCID - ok
15:27:47.0343 2132 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:27:47.0343 2132 usbehci - ok
15:27:47.0375 2132 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:27:47.0375 2132 usbhub - ok
15:27:47.0406 2132 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:27:47.0421 2132 usbscan - ok
15:27:47.0453 2132 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:27:47.0453 2132 USBSTOR - ok
15:27:47.0484 2132 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:27:47.0484 2132 usbuhci - ok
15:27:47.0515 2132 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
15:27:47.0531 2132 VgaSave - ok
15:27:47.0531 2132 ViaIde - ok
15:27:47.0562 2132 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
15:27:47.0562 2132 VolSnap - ok
15:27:47.0609 2132 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:27:47.0609 2132 Wanarp - ok
15:27:47.0625 2132 WDICA - ok
15:27:47.0656 2132 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
15:27:47.0656 2132 wdmaud - ok
15:27:47.0718 2132 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:27:47.0765 2132 WpdUsb - ok
15:27:47.0796 2132 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:27:47.0859 2132 WudfPf - ok
15:27:47.0890 2132 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:27:47.0953 2132 WudfRd - ok
15:27:47.0984 2132 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
15:27:48.0125 2132 \Device\Harddisk0\DR0 - ok
15:27:48.0125 2132 Boot (0x1200) (c3938432af83454c2151563e05bf5a3b) \Device\Harddisk0\DR0\Partition0
15:27:48.0140 2132 \Device\Harddisk0\DR0\Partition0 - ok
15:27:48.0156 2132 Boot (0x1200) (bb638435753727f27041cbfb15a66b91) \Device\Harddisk0\DR0\Partition1
15:27:48.0156 2132 \Device\Harddisk0\DR0\Partition1 - ok
15:27:48.0156 2132 ============================================================
15:27:48.0156 2132 Scan finished
15:27:48.0156 2132 ============================================================
15:27:48.0171 0908 Detected object count: 1
15:27:48.0171 0908 Actual detected object count: 1
15:28:43.0406 0908 sptd ( LockedFile.Multi.Generic ) - skipped by user
15:28:43.0406 0908 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
Nahoru
Uživatelský avatar
Mc_Murphy
VIP in memoriam
VIP in memoriam
Příspěvky: 6706
Registrován: 03 lis 2008 15:55
Bydliště: Plzeň [ZČ]
Kontaktovat uživatele:
Kontaktovat uživatele Mc_Murphy

Re: prosim o kontrolu logu komp se seká

#6 Příspěvek od Mc_Murphy »

Ještě ten druhý log, prosím.
Obrázek-Obrázek
Obrázek-Obrázek

  • ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me love, I've found my identity, found my identity.

    I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me hope, I've found my identity in Christ...
Nahoru
mustangSchelby
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 06 dub 2007 11:02

Re: prosim o kontrolu logu komp se seká

#7 Příspěvek od mustangSchelby »

15:27:36.0343 3940 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
15:27:36.0421 3940 ============================================================
15:27:36.0421 3940 Current date / time: 2011/12/30 15:27:36.0421
15:27:36.0421 3940 SystemInfo:
15:27:36.0421 3940
15:27:36.0421 3940 OS Version: 5.1.2600 ServicePack: 3.0
15:27:36.0421 3940 Product type: Workstation
15:27:36.0421 3940 ComputerName: DOMA
15:27:36.0421 3940 UserName: Administrator
15:27:36.0421 3940 Windows directory: C:\WINDOWS
15:27:36.0421 3940 System windows directory: C:\WINDOWS
15:27:36.0421 3940 Processor architecture: Intel x86
15:27:36.0421 3940 Number of processors: 2
15:27:36.0421 3940 Page size: 0x1000
15:27:36.0421 3940 Boot type: Normal boot
15:27:36.0421 3940 ============================================================
15:27:37.0718 3940 Initialize success
15:27:40.0187 3076 ============================================================
15:27:40.0187 3076 Scan started
15:27:40.0187 3076 Mode: Manual;
15:27:40.0187 3076 ============================================================
15:27:40.0750 3076 Scan interrupted by user!
15:27:40.0750 3076 Scan interrupted by user!
15:27:40.0750 3076 Scan interrupted by user!
15:27:40.0750 3076 ============================================================
15:27:40.0750 3076 Scan finished
15:27:40.0750 3076 ============================================================
15:27:40.0750 3116 Detected object count: 0
15:27:40.0750 3116 Actual detected object count: 0
15:27:42.0890 2132 ============================================================
15:27:42.0890 2132 Scan started
15:27:42.0890 2132 Mode: Manual;
15:27:42.0890 2132 ============================================================
15:27:43.0031 2132 Abiosdsk - ok
15:27:43.0046 2132 abp480n5 - ok
15:27:43.0078 2132 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:27:43.0078 2132 ACPI - ok
15:27:43.0109 2132 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
15:27:43.0109 2132 ACPIEC - ok
15:27:43.0125 2132 adpu160m - ok
15:27:43.0140 2132 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
15:27:43.0156 2132 aec - ok
15:27:43.0171 2132 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
15:27:43.0187 2132 AFD - ok
15:27:43.0187 2132 Aha154x - ok
15:27:43.0203 2132 aic78u2 - ok
15:27:43.0218 2132 aic78xx - ok
15:27:43.0234 2132 AliIde - ok
15:27:43.0234 2132 amsint - ok
15:27:43.0250 2132 asc - ok
15:27:43.0265 2132 asc3350p - ok
15:27:43.0265 2132 asc3550 - ok
15:27:43.0296 2132 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:27:43.0296 2132 AsyncMac - ok
15:27:43.0343 2132 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
15:27:43.0343 2132 atapi - ok
15:27:43.0359 2132 Atdisk - ok
15:27:43.0390 2132 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:27:43.0390 2132 Atmarpc - ok
15:27:43.0421 2132 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
15:27:43.0421 2132 audstub - ok
15:27:43.0468 2132 b57w2k (241474d01380e9ed41d4c07f4f5fd401) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
15:27:43.0468 2132 b57w2k - ok
15:27:43.0500 2132 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
15:27:43.0500 2132 Beep - ok
15:27:43.0531 2132 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
15:27:43.0531 2132 cbidf2k - ok
15:27:43.0546 2132 cd20xrnt - ok
15:27:43.0578 2132 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
15:27:43.0578 2132 Cdaudio - ok
15:27:43.0609 2132 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
15:27:43.0609 2132 Cdfs - ok
15:27:43.0640 2132 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:27:43.0687 2132 Cdrom - ok
15:27:43.0687 2132 cerc6 - ok
15:27:43.0703 2132 Changer - ok
15:27:43.0734 2132 CmdIde - ok
15:27:43.0750 2132 Cpqarray - ok
15:27:43.0765 2132 dac2w2k - ok
15:27:43.0765 2132 dac960nt - ok
15:27:43.0796 2132 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
15:27:43.0796 2132 Disk - ok
15:27:43.0828 2132 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
15:27:43.0843 2132 dmboot - ok
15:27:43.0859 2132 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
15:27:43.0859 2132 dmio - ok
15:27:43.0890 2132 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
15:27:43.0890 2132 dmload - ok
15:27:43.0921 2132 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
15:27:43.0921 2132 DMusic - ok
15:27:43.0937 2132 dpti2o - ok
15:27:43.0937 2132 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
15:27:43.0937 2132 drmkaud - ok
15:27:43.0968 2132 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
15:27:43.0968 2132 Fastfat - ok
15:27:43.0984 2132 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
15:27:43.0984 2132 Fdc - ok
15:27:44.0000 2132 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
15:27:44.0000 2132 Fips - ok
15:27:44.0031 2132 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:27:44.0031 2132 Flpydisk - ok
15:27:44.0062 2132 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
15:27:44.0062 2132 FltMgr - ok
15:27:44.0078 2132 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:27:44.0078 2132 Fs_Rec - ok
15:27:44.0093 2132 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:27:44.0093 2132 Ftdisk - ok
15:27:44.0125 2132 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:27:44.0125 2132 Gpc - ok
15:27:44.0140 2132 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:27:44.0156 2132 hidusb - ok
15:27:44.0156 2132 hpn - ok
15:27:44.0203 2132 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
15:27:44.0203 2132 HTTP - ok
15:27:44.0218 2132 i2omgmt - ok
15:27:44.0218 2132 i2omp - ok
15:27:44.0265 2132 ialm (0f0194c4b635c10c3f785e4fee52d641) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
15:27:44.0281 2132 ialm - ok
15:27:44.0296 2132 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
15:27:44.0296 2132 Imapi - ok
15:27:44.0328 2132 ini910u - ok
15:27:44.0328 2132 IntelIde - ok
15:27:44.0359 2132 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:27:44.0359 2132 intelppm - ok
15:27:44.0375 2132 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
15:27:44.0375 2132 Ip6Fw - ok
15:27:44.0406 2132 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:27:44.0406 2132 IpFilterDriver - ok
15:27:44.0421 2132 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:27:44.0421 2132 IpInIp - ok
15:27:44.0437 2132 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:27:44.0437 2132 IpNat - ok
15:27:44.0453 2132 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:27:44.0515 2132 IPSec - ok
15:27:44.0531 2132 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
15:27:44.0531 2132 IRENUM - ok
15:27:44.0562 2132 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:27:44.0562 2132 isapnp - ok
15:27:44.0609 2132 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:27:44.0609 2132 Kbdclass - ok
15:27:44.0625 2132 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:27:44.0625 2132 kbdhid - ok
15:27:44.0671 2132 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
15:27:44.0671 2132 kmixer - ok
15:27:44.0687 2132 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
15:27:44.0687 2132 KSecDD - ok
15:27:44.0703 2132 lbrtfdc - ok
15:27:44.0750 2132 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
15:27:44.0750 2132 MBAMProtector - ok
15:27:44.0765 2132 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
15:27:44.0765 2132 mnmdd - ok
15:27:44.0796 2132 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
15:27:44.0796 2132 Modem - ok
15:27:44.0843 2132 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:27:44.0843 2132 Mouclass - ok
15:27:44.0875 2132 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:27:44.0875 2132 mouhid - ok
15:27:44.0890 2132 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
15:27:44.0890 2132 MountMgr - ok
15:27:44.0906 2132 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
15:27:44.0906 2132 MpFilter - ok
15:27:44.0953 2132 MpKsl0bb6a6f0 - ok
15:27:44.0953 2132 MpKsl234a9bb7 - ok
15:27:44.0968 2132 MpKsl34b42f63 - ok
15:27:44.0968 2132 MpKsl47d865d7 - ok
15:27:44.0984 2132 MpKsl4968940e - ok
15:27:44.0984 2132 MpKsl83c91715 - ok
15:27:45.0000 2132 MpKsl8784ef26 - ok
15:27:45.0000 2132 MpKsl97873e19 - ok
15:27:45.0015 2132 MpKsle37f9d59 (a69630d039c38018689190234f866d77) c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{7E92FC7B-17A0-4CB4-A3DE-BBC1BAA19651}\MpKsle37f9d59.sys
15:27:45.0015 2132 MpKsle37f9d59 - ok
15:27:45.0031 2132 mraid35x - ok
15:27:45.0046 2132 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:27:45.0046 2132 MRxDAV - ok
15:27:45.0093 2132 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:27:45.0093 2132 MRxSmb - ok
15:27:45.0109 2132 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
15:27:45.0109 2132 Msfs - ok
15:27:45.0140 2132 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:27:45.0140 2132 MSKSSRV - ok
15:27:45.0171 2132 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:27:45.0171 2132 MSPCLOCK - ok
15:27:45.0203 2132 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
15:27:45.0203 2132 MSPQM - ok
15:27:45.0218 2132 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:27:45.0234 2132 mssmbios - ok
15:27:45.0250 2132 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
15:27:45.0250 2132 Mup - ok
15:27:45.0281 2132 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
15:27:45.0281 2132 NDIS - ok
15:27:45.0296 2132 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:27:45.0296 2132 NdisTapi - ok
15:27:45.0328 2132 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:27:45.0328 2132 Ndisuio - ok
15:27:45.0343 2132 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:27:45.0343 2132 NdisWan - ok
15:27:45.0375 2132 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
15:27:45.0375 2132 NDProxy - ok
15:27:45.0390 2132 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
15:27:45.0390 2132 NetBIOS - ok
15:27:45.0406 2132 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
15:27:45.0453 2132 NetBT - ok
15:27:45.0484 2132 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
15:27:45.0484 2132 Npfs - ok
15:27:45.0531 2132 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
15:27:45.0546 2132 Ntfs - ok
15:27:45.0593 2132 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
15:27:45.0593 2132 Null - ok
15:27:45.0640 2132 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:27:45.0640 2132 NwlnkFlt - ok
15:27:45.0656 2132 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:27:45.0656 2132 NwlnkFwd - ok
15:27:45.0671 2132 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
15:27:45.0671 2132 Parport - ok
15:27:45.0687 2132 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
15:27:45.0687 2132 PartMgr - ok
15:27:45.0703 2132 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
15:27:45.0703 2132 ParVdm - ok
15:27:45.0734 2132 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
15:27:45.0734 2132 PCI - ok
15:27:45.0750 2132 PCIDump - ok
15:27:45.0765 2132 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
15:27:45.0765 2132 PCIIde - ok
15:27:45.0781 2132 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
15:27:45.0781 2132 Pcmcia - ok
15:27:45.0796 2132 PDCOMP - ok
15:27:45.0812 2132 PDFRAME - ok
15:27:45.0812 2132 PDRELI - ok
15:27:45.0828 2132 PDRFRAME - ok
15:27:45.0843 2132 perc2 - ok
15:27:45.0843 2132 perc2hib - ok
15:27:45.0890 2132 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:27:45.0890 2132 PptpMiniport - ok
15:27:45.0906 2132 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
15:27:45.0921 2132 PSched - ok
15:27:45.0937 2132 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:27:45.0937 2132 Ptilink - ok
15:27:45.0953 2132 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:27:45.0953 2132 PxHelp20 - ok
15:27:45.0968 2132 ql1080 - ok
15:27:45.0984 2132 Ql10wnt - ok
15:27:45.0984 2132 ql12160 - ok
15:27:46.0000 2132 ql1240 - ok
15:27:46.0015 2132 ql1280 - ok
15:27:46.0031 2132 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:27:46.0031 2132 RasAcd - ok
15:27:46.0046 2132 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:27:46.0046 2132 Rasl2tp - ok
15:27:46.0062 2132 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:27:46.0062 2132 RasPppoe - ok
15:27:46.0078 2132 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
15:27:46.0078 2132 Raspti - ok
15:27:46.0093 2132 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:27:46.0156 2132 Rdbss - ok
15:27:46.0171 2132 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:27:46.0171 2132 RDPCDD - ok
15:27:46.0203 2132 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:27:46.0203 2132 rdpdr - ok
15:27:46.0234 2132 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
15:27:46.0234 2132 RDPWD - ok
15:27:46.0265 2132 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
15:27:46.0296 2132 redbook - ok
15:27:46.0359 2132 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:27:46.0359 2132 Secdrv - ok
15:27:46.0421 2132 senfilt (b9c7617c1e8ab6fdff75d3c8dafcb4c8) C:\WINDOWS\system32\drivers\senfilt.sys
15:27:46.0421 2132 senfilt - ok
15:27:46.0453 2132 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
15:27:46.0453 2132 serenum - ok
15:27:46.0484 2132 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
15:27:46.0484 2132 Sfloppy - ok
15:27:46.0500 2132 Simbad - ok
15:27:46.0546 2132 smwdm (c6d9959e493682f872a639b6ec1b4a08) C:\WINDOWS\system32\drivers\smwdm.sys
15:27:46.0546 2132 smwdm - ok
15:27:46.0546 2132 Sparrow - ok
15:27:46.0578 2132 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
15:27:46.0593 2132 splitter - ok
15:27:46.0640 2132 sptd (a199171385be17973fd800fa91f8f78a) C:\WINDOWS\system32\Drivers\sptd.sys
15:27:46.0640 2132 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: a199171385be17973fd800fa91f8f78a
15:27:46.0640 2132 sptd ( LockedFile.Multi.Generic ) - warning
15:27:46.0640 2132 sptd - detected LockedFile.Multi.Generic (1)
15:27:46.0656 2132 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
15:27:46.0656 2132 sr - ok
15:27:46.0687 2132 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
15:27:46.0703 2132 Srv - ok
15:27:46.0734 2132 sscebus (b2063ce662af3ab20045121a5b716df6) C:\WINDOWS\system32\DRIVERS\sscebus.sys
15:27:46.0734 2132 sscebus - ok
15:27:46.0765 2132 sscemdfl (66799dc0afe3dcaf8368cae17394a762) C:\WINDOWS\system32\DRIVERS\sscemdfl.sys
15:27:46.0765 2132 sscemdfl - ok
15:27:46.0781 2132 sscemdm (cbf03ffc08f8db547bab2f79aa663d16) C:\WINDOWS\system32\DRIVERS\sscemdm.sys
15:27:46.0796 2132 sscemdm - ok
15:27:46.0828 2132 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
15:27:46.0828 2132 swenum - ok
15:27:46.0875 2132 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
15:27:46.0875 2132 swmidi - ok
15:27:46.0890 2132 symc810 - ok
15:27:46.0890 2132 symc8xx - ok
15:27:46.0906 2132 sym_hi - ok
15:27:46.0921 2132 sym_u3 - ok
15:27:46.0953 2132 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
15:27:46.0953 2132 sysaudio - ok
15:27:47.0000 2132 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:27:47.0015 2132 Tcpip - ok
15:27:47.0031 2132 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
15:27:47.0031 2132 TDPIPE - ok
15:27:47.0062 2132 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
15:27:47.0062 2132 TDTCP - ok
15:27:47.0093 2132 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
15:27:47.0093 2132 TermDD - ok
15:27:47.0109 2132 TosIde - ok
15:27:47.0156 2132 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
15:27:47.0156 2132 Udfs - ok
15:27:47.0171 2132 ultra - ok
15:27:47.0187 2132 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
15:27:47.0203 2132 Update - ok
15:27:47.0234 2132 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:27:47.0265 2132 usbccgp - ok
15:27:47.0296 2132 USBCCID (6b5e4d5e6e5ecd6acd14aed59768ce5c) C:\WINDOWS\system32\DRIVERS\usbccid.sys
15:27:47.0312 2132 USBCCID - ok
15:27:47.0343 2132 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:27:47.0343 2132 usbehci - ok
15:27:47.0375 2132 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:27:47.0375 2132 usbhub - ok
15:27:47.0406 2132 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:27:47.0421 2132 usbscan - ok
15:27:47.0453 2132 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:27:47.0453 2132 USBSTOR - ok
15:27:47.0484 2132 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:27:47.0484 2132 usbuhci - ok
15:27:47.0515 2132 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
15:27:47.0531 2132 VgaSave - ok
15:27:47.0531 2132 ViaIde - ok
15:27:47.0562 2132 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
15:27:47.0562 2132 VolSnap - ok
15:27:47.0609 2132 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:27:47.0609 2132 Wanarp - ok
15:27:47.0625 2132 WDICA - ok
15:27:47.0656 2132 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
15:27:47.0656 2132 wdmaud - ok
15:27:47.0718 2132 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:27:47.0765 2132 WpdUsb - ok
15:27:47.0796 2132 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:27:47.0859 2132 WudfPf - ok
15:27:47.0890 2132 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:27:47.0953 2132 WudfRd - ok
15:27:47.0984 2132 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
15:27:48.0125 2132 \Device\Harddisk0\DR0 - ok
15:27:48.0125 2132 Boot (0x1200) (c3938432af83454c2151563e05bf5a3b) \Device\Harddisk0\DR0\Partition0
15:27:48.0140 2132 \Device\Harddisk0\DR0\Partition0 - ok
15:27:48.0156 2132 Boot (0x1200) (bb638435753727f27041cbfb15a66b91) \Device\Harddisk0\DR0\Partition1
15:27:48.0156 2132 \Device\Harddisk0\DR0\Partition1 - ok
15:27:48.0156 2132 ============================================================
15:27:48.0156 2132 Scan finished
15:27:48.0156 2132 ============================================================
15:27:48.0171 0908 Detected object count: 1
15:27:48.0171 0908 Actual detected object count: 1
15:28:43.0406 0908 sptd ( LockedFile.Multi.Generic ) - skipped by user
15:28:43.0406 0908 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
15:30:34.0859 3832 Deinitialize success
Nahoru
Uživatelský avatar
Mc_Murphy
VIP in memoriam
VIP in memoriam
Příspěvky: 6706
Registrován: 03 lis 2008 15:55
Bydliště: Plzeň [ZČ]
Kontaktovat uživatele:
Kontaktovat uživatele Mc_Murphy

Re: prosim o kontrolu logu komp se seká

#8 Příspěvek od Mc_Murphy »

Ten druhý!!! Ne znova z TDSS!! :roll:
Obrázek-Obrázek
Obrázek-Obrázek

  • ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me love, I've found my identity, found my identity.

    I'm moving on, I'm moving on, I'm moving on by the Spirit.
    • You gave me hope, I've found my identity in Christ...
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“