Pomalý internet, nefunguje pořádně žádný prohlížeč

Zpráva

madleska · #1 Příspěvek od **madleska** » 14 bře 2013 11:45

Ahoj, prosím o pomoc. Měla jsem jako výchozí prohlížeč Google Chrome, najednou mi začal blbnout, nešlo se mi dostat banky, strašně se zpomaloval, jak jsem otevřela víc, jak jedno okno, tak se mi nešlo pohybovat v žádném okně bez toho, aniž bych přepla do druhého apod.Zkusila jsem ho odinstalovat a nainstalovat Mozillu, ale bylo to jen o málo lepší, ještě tak nejlépe mi jede IE, ale i tak to surfování je strašně pomalý, pomalu mi to roluje, videa na youtube jsou naprosto nekoukatelná!? takhle to dřív nebylo, připojení je v pořádku, na druhém pc vše jede jak má...
Pomůžete někdo?

#2 Příspěvek od **stell** » 14 bře 2013 12:28

Ahoj
Vloz sem log z RSIT
Navod
http://forum.viry.cz/viewtopic.php?f=13&t=105895

madleska · #3 Příspěvek od **madleska** » 14 bře 2013 14:33

Logfile of random's system information tool 1.06 (written by random/random)
Run by Madleska at 2013-03-14 14:25:03
Microsoft Windows 7 Home Premium
System drive C: has 54 GB (53%) free of 102 GB
Total RAM: 2038 MB (44% free)

HijackThis download failed

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\ROC_JAN2013_TB_rmv.job
C:\windows\tasks\SLOW-PCfighter-Madleska-Notification.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}]
AVG Do Not Track - C:\Program Files\AVG\AVG2012\avgdtiex.dll [2012-10-15 938104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll [2012-10-15 1417336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-05 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-05 170912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2009-07-20 83240]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-01 137752]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-01 354840]
"IgfxExt"=C:\Windows\system32\IgfxExt.exe [2009-09-01 174616]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-09-29 7744032]
"LivCam"=C:\Program Files\ASUS\LivCam\LivCam.exe [2009-11-19 284160]
"AVG_TRAY"=C:\Program Files\AVG\AVG2012\avgtray.exe [2012-11-19 2598520]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-01-28 59720]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2013-02-20 152392]
"CommonToolkitTray"=C:\Program Files\Fighters\Tray\FightersTray.exe [2012-11-13 1405544]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18705664]
"cz.seznam.software.autoupdate"=C:\Users\Madleska\AppData\Roaming\Seznam.cz\szninstall.exe [2012-09-13 1009288]
"cz.seznam.software.szndesktop"=C:\Users\Madleska\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2012-12-19 92296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ACSW14EN]
C:\Program Files\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe [2011-09-20 1231472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CommonToolkitTray]
C:\Program Files\Fighters\Tray\FightersTray.exe [2012-11-13 1405544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eee Docking]
C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2009-09-25 402608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EeeStorageBackup]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FileHippo.com]
C:\Program Files\FileHippo.com\UpdateChecker.exe [2010-08-09 248832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyMon]
AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2010-06-09 49208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk]
[]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Madleska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vga.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vgasave.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d9baf6e1-9010-11e0-9085-1c4bd60afd18}]
shell\AutoRun\command - E:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ee12426a-bd66-11df-900d-1c4bd60afd18}]
shell\AutoRun\command - E:\VTP_Manager.exe

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-03-14 14:25:03 ----D---- C:\rsit
2013-03-14 01:35:07 ----A---- C:\windows\system32\ieframe.dll
2013-03-14 01:35:05 ----A---- C:\windows\system32\iertutil.dll
2013-03-14 01:35:03 ----A---- C:\windows\system32\msfeeds.dll
2013-03-14 01:35:01 ----A---- C:\windows\system32\urlmon.dll
2013-03-14 01:35:00 ----A---- C:\windows\system32\mshtml.dll
2013-03-14 01:34:59 ----A---- C:\windows\system32\mstime.dll
2013-03-14 01:34:58 ----A---- C:\windows\system32\wininet.dll
2013-03-14 01:34:58 ----A---- C:\windows\system32\iedkcs32.dll
2013-03-14 01:34:57 ----A---- C:\windows\system32\mshtmled.dll
2013-03-14 01:34:57 ----A---- C:\windows\system32\licmgr10.dll
2013-03-14 01:34:57 ----A---- C:\windows\system32\iepeers.dll
2013-03-14 01:34:56 ----A---- C:\windows\system32\url.dll
2013-03-14 01:34:56 ----A---- C:\windows\system32\msfeedssync.exe
2013-03-14 01:34:56 ----A---- C:\windows\system32\msfeedsbs.dll
2013-03-14 01:34:56 ----A---- C:\windows\system32\jsproxy.dll
2013-03-14 01:34:56 ----A---- C:\windows\system32\ieui.dll
2013-03-05 22:22:23 ----D---- C:\Program Files\iPod
2013-03-05 22:22:19 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-03-05 22:22:19 ----D---- C:\Program Files\iTunes
2013-03-05 18:01:07 ----A---- C:\windows\system32\javaws.exe
2013-03-05 18:00:27 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2013-03-05 18:00:27 ----A---- C:\windows\system32\javaw.exe
2013-03-05 18:00:26 ----A---- C:\windows\system32\java.exe
2013-02-16 18:50:20 ----D---- C:\Users\Madleska\AppData\Roaming\Seznam.cz
2013-02-16 18:50:09 ----HD---- C:\windows\msdownld.tmp
2013-02-16 10:38:05 ----RD---- C:\Program Files\Skype
2013-02-16 10:38:05 ----D---- C:\Program Files\Common Files\Skype
2013-02-16 09:40:23 ----D---- C:\Users\Madleska\AppData\Roaming\Apple Computer
2013-02-16 09:38:39 ----D---- C:\ProgramData\Apple Computer
2013-02-16 09:33:56 ----D---- C:\Program Files\Apple Software Update
2013-02-16 09:32:20 ----D---- C:\Program Files\Bonjour
2013-02-16 09:31:48 ----D---- C:\ProgramData\Apple
2013-02-16 09:31:48 ----D---- C:\Program Files\Common Files\Apple

======List of files/folders modified in the last 1 months======

2013-03-14 14:25:08 ----D---- C:\Program Files\trend micro
2013-03-14 14:25:07 ----D---- C:\windows\Temp
2013-03-14 14:21:42 ----D---- C:\windows\tracing
2013-03-14 11:27:56 ----D---- C:\windows\System32
2013-03-14 11:27:32 ----SHD---- C:\windows\Installer
2013-03-14 11:27:11 ----D---- C:\windows\Prefetch
2013-03-14 11:27:07 ----D---- C:\Users\Madleska\AppData\Roaming\Fighters
2013-03-14 11:26:57 ----D---- C:\ProgramData\Fighters
2013-03-14 11:26:57 ----D---- C:\Program Files\Fighters
2013-03-14 11:25:13 ----SHD---- C:\System Volume Information
2013-03-14 11:20:41 ----D---- C:\windows\system32\config
2013-03-14 11:06:18 ----D---- C:\Users\Madleska\AppData\Roaming\Skype
2013-03-14 11:01:15 ----D---- C:\windows\winsxs
2013-03-14 11:00:17 ----D---- C:\windows\system32\migration
2013-03-14 11:00:17 ----D---- C:\Program Files\Internet Explorer
2013-03-14 11:00:06 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-14 01:45:00 ----D---- C:\windows\debug
2013-03-14 01:44:52 ----A---- C:\windows\system32\MRT.exe
2013-03-14 01:44:43 ----D---- C:\ProgramData\Microsoft Help
2013-03-14 01:32:36 ----D---- C:\windows\system32\catroot
2013-03-14 01:32:35 ----D---- C:\windows\system32\catroot2
2013-03-12 20:01:17 ----A---- C:\windows\system32\PerfStringBackup.INI
2013-03-12 20:01:16 ----D---- C:\windows\inf
2013-03-12 19:54:19 ----AD---- C:\Windows
2013-03-10 14:28:38 ----D---- C:\windows\Logs
2013-03-10 12:35:10 ----D---- C:\Program Files\Google
2013-03-08 19:42:28 ----A---- C:\windows\system32\FlashPlayerApp.exe
2013-03-07 09:20:02 ----D---- C:\ProgramData\MFAData
2013-03-06 16:40:31 ----RD---- C:\Program Files
2013-03-05 22:23:59 ----D---- C:\windows\system32\drivers
2013-03-05 22:23:52 ----DC---- C:\windows\system32\DRVSTORE
2013-03-05 22:22:19 ----HD---- C:\ProgramData
2013-03-05 18:02:56 ----D---- C:\Program Files\WinRAR
2013-03-05 18:00:04 ----A---- C:\windows\system32\npdeployJava1.dll
2013-03-05 18:00:04 ----A---- C:\windows\system32\deployJava1.dll
2013-03-04 08:51:12 ----D---- C:\Program Files\Common Files
2013-03-04 08:47:58 ----D---- C:\windows\system32\Tasks
2013-02-28 21:06:00 ----D---- C:\windows\Tasks
2013-02-25 16:59:48 ----D---- C:\windows\system32\NDF
2013-02-24 18:58:44 ----D---- C:\windows\system32\DriverStore
2013-02-16 10:38:24 ----D---- C:\ProgramData\Skype

#4 Příspěvek od **stell** » 14 bře 2013 15:10

log nie je komplet, ale uz to nevadi, dalej sa snaz, aby si sem vlozila komplet cely logy.
Pokracuj takto, a logy postupme vkladaj sem.
1:Pouzi program RKILL
http://download.bleepingcomputer.com/grinler/rkill.com
Log vloz sem

2:Pouzi program junkware removal
http://www.bleepingcomputer.com/downloa ... oval-tool/
log vloz sem.

3:pouzi program ADWCleaner, moznost DELETE
http://www.viruskasino.com/2012/09/adwcleaner.html
log vloz sem.

4:Pouzi program TFCleaner, log vloz sem.
http://www.viruskasino.com/2010/12/prog ... TF-Cleaner

5:Pouzi program USBFIX, DELETE>>log vloz sem
Pozorne precitaj navod a pripoj vdetko do USB, co pouzivas.
http://www.viruskasino.com/2010/12/prog ... tml#UsbFix

6:pouzi TDSSKILLER, log vloz sem.
http://www.viruskasino.com/2010/12/odst ... kitov.html

Potom sa uvidi ze ako dalej, len kludne casu mas dost.

madleska · #5 Příspěvek od **madleska** » 14 bře 2013 15:26

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/14/2013 03:24:28 PM in x86 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\System32\AsusService.exe (PID: 636) [WD-HEUR]
* C:\windows\system32\FsUsbExService.Exe (PID: 776) [WD-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

ÿþ1 2 7 . 0 . 0 . 1 l o c a l h o s t

: : 1 l o c a l h o s t

Program finished at: 03/14/2013 03:25:06 PM
Execution time: 0 hours(s), 0 minute(s), and 37 seconds(s)

madleska · #6 Příspěvek od **madleska** » 14 bře 2013 15:47

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.7.1 (03.12.2013:1)
OS: Windows 7 Home Premium x86
Ran by Madleska on čt 14.03.2013 at 15:30:30,02
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\windows\currentversion\run\\commontoolkittray
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\toolbar\webbrowser\\{d4027c7f-154a-4066-a1ad-4243d8127440}

~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_local_machine\software\conduit
Successfully deleted: [Registry Key] hkey_current_user\software\igearsettings
Successfully deleted: [Registry Key] hkey_current_user\software\appdatalow\software\conduit
Successfully deleted: [Registry Key] hkey_local_machine\software\classes\appid\icq service.exe
Successfully deleted: [Registry Key] hkey_local_machine\software\classes\icqtoolbar.iehook
Successfully deleted: [Registry Key] hkey_local_machine\software\classes\icqtoolbar.iehook.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\software\classes\Toolbar.CT1750559
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\0e12f736682067fde4d1158d5940a82e"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\1a24b5bb8521b03e0c8d908f5abc0ae6"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\2b0d56c4f4c46d844a57ffed6f0d2852"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\49d4375fe41653242aea4c969e4e65e0"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\6aa0923513360135b272e8289c5f13fa"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\6f7467af8f29c134cbbab394eccfde96"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\922525dcc5199162f8935747ca3d8e59"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\bcda179d619b91648538e3394cac94cc"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\d677b1a9671d4d4004f6f2a4469e86ea"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\dd1402a9dd4215a43abde169a41afa0e"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\e36e114a0ead2ad46b381d23ad69cddf"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\components\ef8e618db3aedfbb384561b5c548f65e"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\windows\currentversion\installer\userdata\s-1-5-18\products\a28b4d68debaa244eb686953b7074fef"

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\fighters"
Successfully deleted: [Folder] "C:\Users\Madleska\AppData\Roaming\fighters"
Successfully deleted: [Folder] "C:\Users\Madleska\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Program Files\conduit"
Failed to delete: [Folder] "C:\Program Files\fighters"
Successfully deleted: [Folder] "C:\ProgramData\ask"

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on čt 14.03.2013 at 15:44:12,06
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

madleska · #7 Příspěvek od **madleska** » 14 bře 2013 16:02

# AdwCleaner v2.114 - Logfile created 03/14/2013 at 15:51:18
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium (32 bits)
# User : Madleska - MAZLIK
# Boot Mode : Normal
# Running from : C:\Users\Madleska\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QIT5M96Q\adwcleaner[1].exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.17256

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd --> hxxp://www.google.com

-\\ Google Chrome v25.0.1364.152

File : C:\Users\Madleska\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2792 octets] - [14/03/2013 15:51:18]

########## EOF - C:\AdwCleaner[S1].txt - [2852 octets] ##########

madleska · #8 Příspěvek od **madleska** » 14 bře 2013 16:30

TFCleaner jsem stáhla, uložila na plochu, dle návodu, vše zavřela, spustila, čištění proběhlo, počítač se restartoval a po naběhnutí mi TFCleaner z plochy zmizel, Log se neobjevil. Nemůžu ho najít ani na Céčku, kde jinak všechny ostatní jsou, co s tím, mám to celé zopakovat?

#9 Příspěvek od **stell** » 14 bře 2013 16:36

Nevadi, pokracuj dalej..tak ako je v navode, a nakoniec este spustis aj OTL.exe
http://www.bleepingcomputer.com/download/otl/dl/93/
stiahnes na plochu, pravy klik spustis ako spravca/admin
zafajknes>>PRO VSECHNY UZIVATELE>>
Dole do okna vlozis tento script:
A kliknes na Gombik OPRAVIT
Log po restarte vloz sem.

Kód: Vybrat vše

:files
C:\Program Files\fighters
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[resethosts]
[clearallrestorepoints]
[Reboot]

madleska · #10 Příspěvek od **madleska** » 14 bře 2013 16:51

User: Madleska (Administrator) # MAZLIK
Updated 08/03/2013 by El Desaparecido
Started at 16:41:05 | 14/03/2013

Website: http://sosvirus.org/index.php
Contact: contact@sosvirus.org

PC: ASUSTeK Computer INC. (1201HA) (X86-based PC)
CPU: Intel(R) Atom(TM) CPU Z520 @ 1.33GHz (1333)
RAM -> [Total : 2038 | Free : 1036]
BIOS: BIOS Date: 02/05/10 09:41:20 Ver: 08.00.15
BOOT: Normal boot

OS: Microsoft Windows 7 Home Premium (6.1.7600 32-Bit) #
WB: Windows Internet Explorer 8.0.7600.16385

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: AVG Anti-Virus 2012 [Enabled | Updated]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Fixed drive # 100 Gb (53 Mb free - 53%) [] # NTFS
D:\ -> Fixed drive # 123 Gb (94 Mb free - 76%) [] # NTFS
E:\ -> Removable drive # 28 Gb (6 Mb free - 21%) [MADLESKA'S] # FAT32
F:\ -> Fixed drive # 932 Gb (277 Mb free - 30%) [Seagate Backup Plus Drive] # NTFS

################## | Stopped processes |

Stopped! C:\PROGRA~1\AVG\AVG2012\avgrsx.exe (364)
Stopped! C:\Program Files\AVG\AVG2012\avgcsrvx.exe (416)
Stopped! C:\windows\System32\spoolsv.exe (1676)
Stopped! C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe (1816)
Stopped! C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (1848)
Stopped! C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (1868)
Stopped! C:\Windows\System32\AsusService.exe (1904)
Stopped! C:\Program Files\AVG\AVG2012\avgwdsvc.exe (1936)
Stopped! C:\Program Files\Bonjour\mDNSResponder.exe (1964)
Stopped! C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (1988)
Stopped! C:\windows\system32\FsUsbExService.Exe (344)
Stopped! C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe (608)
Stopped! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (1260)
Stopped! C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe (2152)
Stopped! C:\windows\system32\taskhost.exe (2436)
Stopped! C:\Program Files\AVG\AVG2012\avgnsx.exe (2640)
Stopped! C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (3368)
Stopped! C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (3396)
Stopped! C:\Windows\System32\igfxtray.exe (3448)
Stopped! C:\Windows\System32\hkcmd.exe (3560)
Stopped! C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (3784)
Stopped! C:\Program Files\ASUS\LivCam\LivCam.exe (3852)
Stopped! C:\Program Files\AVG\AVG2012\avgtray.exe (3908)
Stopped! C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (3972)
Stopped! C:\Program Files\Common Files\Java\Java Update\jusched.exe (4008)
Stopped! C:\Program Files\iTunes\iTunesHelper.exe (4036)
Stopped! C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (1536)
Stopped! C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (2300)
Stopped! C:\Program Files\iPod\bin\iPodService.exe (3312)
Stopped! C:\Users\Madleska\AppData\Roaming\Seznam.cz\bin\szndesktop.exe (3464)
Stopped! C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (3608)
Stopped! C:\windows\system32\SearchIndexer.exe (3960)
Stopped! C:\Program Files\Windows Media Player\wmpnetwk.exe (4916)
Stopped! C:\windows\system32\DllHost.exe (5604)
Stopped! C:\Program Files\Internet Explorer\iexplore.exe (3556)
Stopped! C:\Program Files\Internet Explorer\iexplore.exe (3416)
Stopped! C:\windows\System32\WUDFHost.exe (7336)
Stopped! C:\windows\system32\taskeng.exe (7168)

################## | Files # Infected Folders |

Deleted ! C:\Users\Madleska\AppData\Local\dt.dat

(!) Temporary files deleted.

################## | Registry |

Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr

################## | Mountpoints2 |

Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{d9baf6e1-9010-11e0-9085-1c4bd60afd18}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{ee12426a-bd66-11df-900d-1c4bd60afd18}

################## | Listing |

[13/09/2012 - 08:12:26 | D ] C:\$AVG
[29/06/2010 - 10:56:49 | SHD ] C:\$Recycle.Bin
[04/06/2011 - 21:57:15 | D ] C:\32788R22FWJFW
[14/03/2013 - 15:52:12 | N | 2921] C:\AdwCleaner[S1].txt
[03/06/2010 - 19:37:10 | N | 2006] C:\aqua_bitmap.cpp
[29/06/2012 - 20:49:01 | D ] C:\AsusVibeData
[10/06/2009 - 22:42:20 | N | 24] C:\autoexec.bat
[10/04/2010 - 14:27:33 | SHD ] C:\Boot
[14/07/2009 - 02:38:58 | RASH | 383562] C:\bootmgr
[04/06/2011 - 20:50:36 | N | 1159] C:\Bug.txt
[10/06/2009 - 22:42:20 | N | 10] C:\config.sys
[14/07/2009 - 05:53:55 | SHD ] C:\Documents and Settings
[28/02/2012 - 17:16:13 | D ] C:\Drive.2011.SCR.XviD-playXD
[12/03/2011 - 17:55:47 | D ] C:\E-Cam
[21/03/2011 - 14:49:27 | D ] C:\epv32-csu
[14/03/2013 - 16:07:47 | ASH | 1602691072] C:\hiberfil.sys
[21/12/2009 - 12:41:35 | D ] C:\Intel
[14/03/2013 - 15:30:09 | D ] C:\JRT
[21/12/2009 - 12:59:11 | RHD ] C:\MSOCache
[14/03/2013 - 16:07:47 | ASH | 2136924160] C:\pagefile.sys
[14/07/2009 - 03:37:05 | D ] C:\PerfLogs
[14/03/2013 - 15:33:00 | D ] C:\Program Files
[14/03/2013 - 15:43:03 | HD ] C:\ProgramData
[27/05/2010 - 22:46:17 | SHD ] C:\Recovery
[21/12/2009 - 14:58:12 | N | 1679] C:\RHDSetup.log
[14/03/2013 - 14:25:03 | D ] C:\rsit
[14/03/2013 - 11:25:13 | SHD ] C:\System Volume Information
[11/06/2010 - 06:06:55 | D ] C:\totalcmd
[14/03/2013 - 16:44:27 | D ] C:\UsbFix
[14/03/2013 - 16:45:12 | A | 5413] C:\UsbFix [Clean 1] MAZLIK.txt
[27/05/2010 - 22:48:15 | D ] C:\Users
[14/03/2013 - 16:06:21 | D ] C:\Windows
[27/05/2010 - 23:00:20 | SHD ] D:\$RECYCLE.BIN
[24/01/2012 - 21:01:33 | D ] D:\Adobe 7
[24/02/2013 - 19:45:04 | D ] D:\ELILY
[05/03/2013 - 18:53:14 | D ] D:\LUKÁŠEK
[31/01/2013 - 00:00:31 | D ] D:\MADELINE
[30/01/2013 - 23:48:59 | N | 466] D:\Místní disk (D) – zástupce.lnk
[07/08/2009 - 13:50:18 | N | 57187288] D:\Nero-9.4.12.3_free.exe
[06/02/2013 - 21:28:44 | D ] D:\PODL
[27/05/2010 - 14:28:48 | SHD ] D:\System Volume Information
[11/10/2009 - 14:48:40 | N | 3211616] D:\tcmd750a.exe
[02/04/2007 - 16:19:50 | D ] E:\iPod_Control
[02/04/2007 - 16:19:58 | D ] E:\Contacts
[02/04/2007 - 16:19:58 | D ] E:\Calendars
[02/04/2007 - 16:19:58 | D ] E:\Notes
[20/03/2008 - 12:53:36 | D ] E:\elík
[24/11/2010 - 12:36:28 | D ] E:\FILMY jája
[23/11/2010 - 17:40:08 | D ] E:\praha 1110
[05/05/2011 - 14:01:06 | D ] E:\Výkresy01
[05/05/2011 - 14:01:24 | D ] E:\Výkresy
[15/10/2011 - 13:02:04 | D ] E:\Hudba
[05/03/2013 - 23:29:28 | D ] E:\Photos

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | E.O.F | http://sosvirus.org |

madleska · #11 Příspěvek od **madleska** » 14 bře 2013 16:59

16:55:51.0744 2640 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:55:51.0978 2640 ============================================================
16:55:51.0978 2640 Current date / time: 2013/03/14 16:55:51.0978
16:55:51.0978 2640 SystemInfo:
16:55:51.0978 2640
16:55:51.0978 2640 OS Version: 6.1.7600 ServicePack: 0.0
16:55:51.0978 2640 Product type: Workstation
16:55:51.0978 2640 ComputerName: MAZLIK
16:55:51.0978 2640 UserName: Madleska
16:55:51.0978 2640 Windows directory: C:\windows
16:55:51.0978 2640 System windows directory: C:\windows
16:55:51.0978 2640 Processor architecture: Intel x86
16:55:51.0978 2640 Number of processors: 2
16:55:51.0978 2640 Page size: 0x1000
16:55:51.0978 2640 Boot type: Normal boot
16:55:51.0978 2640 ============================================================
16:55:54.0195 2640 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:55:54.0210 2640 ============================================================
16:55:54.0210 2640 \Device\Harddisk0\DR0:
16:55:54.0210 2640 MBR partitions:
16:55:54.0210 2640 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC800000
16:55:54.0210 2640 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xDC00800, BlocksNum 0xF5BB000
16:55:54.0210 2640 ============================================================
16:55:54.0241 2640 C: <-> \Device\Harddisk0\DR0\Partition1
16:55:54.0288 2640 D: <-> \Device\Harddisk0\DR0\Partition2
16:55:54.0288 2640 ============================================================
16:55:54.0288 2640 Initialize success
16:55:54.0288 2640 ============================================================
16:56:00.0903 8032 ============================================================
16:56:00.0903 8032 Scan started
16:56:00.0903 8032 Mode: Manual;
16:56:00.0903 8032 ============================================================
16:56:02.0884 8032 ================ Scan system memory ========================
16:56:02.0899 8032 System memory - ok
16:56:02.0899 8032 ================ Scan services =============================
16:56:03.0180 8032 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\windows\system32\DRIVERS\1394ohci.sys
16:56:03.0196 8032 1394ohci - ok
16:56:03.0336 8032 [ F11D68E40ED62FDB7C460C445F1EC4E5 ] 602XML Updater C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
16:56:03.0352 8032 602XML Updater - ok
16:56:03.0414 8032 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\windows\system32\DRIVERS\ACPI.sys
16:56:03.0414 8032 ACPI - ok
16:56:03.0461 8032 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\windows\system32\DRIVERS\acpipmi.sys
16:56:03.0477 8032 AcpiPmi - ok
16:56:03.0617 8032 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:56:03.0633 8032 AdobeARMservice - ok
16:56:03.0742 8032 [ 73066045BF0D0DE250D469C5D48601DC ] AdobeFlashPlayerUpdateSvc C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:56:03.0757 8032 AdobeFlashPlayerUpdateSvc - ok
16:56:03.0851 8032 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
16:56:03.0867 8032 adp94xx - ok
16:56:03.0929 8032 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
16:56:03.0945 8032 adpahci - ok
16:56:03.0976 8032 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
16:56:03.0991 8032 adpu320 - ok
16:56:04.0038 8032 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
16:56:04.0038 8032 AeLookupSvc - ok
16:56:04.0116 8032 [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD C:\windows\system32\drivers\afd.sys
16:56:04.0116 8032 AFD - ok
16:56:04.0163 8032 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\windows\system32\DRIVERS\agp440.sys
16:56:04.0163 8032 agp440 - ok
16:56:04.0194 8032 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\windows\system32\DRIVERS\djsvs.sys
16:56:04.0210 8032 aic78xx - ok
16:56:04.0257 8032 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\windows\System32\alg.exe
16:56:04.0272 8032 ALG - ok
16:56:04.0303 8032 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\windows\system32\DRIVERS\aliide.sys
16:56:04.0303 8032 aliide - ok
16:56:04.0335 8032 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\windows\system32\DRIVERS\amdagp.sys
16:56:04.0350 8032 amdagp - ok
16:56:04.0381 8032 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\windows\system32\DRIVERS\amdide.sys
16:56:04.0381 8032 amdide - ok
16:56:04.0444 8032 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
16:56:04.0444 8032 AmdK8 - ok
16:56:04.0475 8032 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
16:56:04.0475 8032 AmdPPM - ok
16:56:04.0553 8032 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\windows\system32\drivers\amdsata.sys
16:56:04.0569 8032 amdsata - ok
16:56:04.0678 8032 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
16:56:04.0678 8032 amdsbs - ok
16:56:04.0709 8032 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\windows\system32\drivers\amdxata.sys
16:56:04.0709 8032 amdxata - ok
16:56:04.0756 8032 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\windows\system32\drivers\appid.sys
16:56:04.0771 8032 AppID - ok
16:56:04.0849 8032 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\windows\System32\appidsvc.dll
16:56:04.0849 8032 AppIDSvc - ok
16:56:04.0896 8032 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\windows\System32\appinfo.dll
16:56:04.0896 8032 Appinfo - ok
16:56:05.0021 8032 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:56:05.0037 8032 Apple Mobile Device - ok
16:56:05.0083 8032 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\windows\system32\DRIVERS\arc.sys
16:56:05.0099 8032 arc - ok
16:56:05.0130 8032 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
16:56:05.0130 8032 arcsas - ok
16:56:05.0177 8032 [ A9A565C669786C402752F609AFDD0DD5 ] AsUpIO C:\windows\system32\drivers\AsUpIO.sys
16:56:05.0177 8032 AsUpIO - ok
16:56:05.0224 8032 [ C4FB2613D3C75364BB159B9C23A00E7A ] AsusService C:\Windows\System32\AsusService.exe
16:56:05.0239 8032 AsusService - ok
16:56:05.0302 8032 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
16:56:05.0302 8032 AsyncMac - ok
16:56:05.0333 8032 [ 338C86357871C167A96AB976519BF59E ] atapi C:\windows\system32\DRIVERS\atapi.sys
16:56:05.0333 8032 atapi - ok
16:56:05.0395 8032 [ B01751CC563AECAC09BBE36AAA21FBEF ] athr C:\windows\system32\DRIVERS\athr.sys
16:56:05.0442 8032 athr - ok
16:56:05.0489 8032 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
16:56:05.0505 8032 AudioEndpointBuilder - ok
16:56:05.0551 8032 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\windows\System32\Audiosrv.dll
16:56:05.0567 8032 Audiosrv - ok
16:56:05.0863 8032 [ 231B6AD3DB2866BC3FDB9979E6B2B61E ] AVGIDSAgent C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
16:56:06.0035 8032 AVGIDSAgent - ok
16:56:06.0082 8032 [ EF67527CC2AD77D22AB1405C6470407E ] AVGIDSDriver C:\windows\system32\DRIVERS\avgidsdriverx.sys
16:56:06.0097 8032 AVGIDSDriver - ok
16:56:06.0129 8032 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\windows\system32\DRIVERS\avgidsfilterx.sys
16:56:06.0144 8032 AVGIDSFilter - ok
16:56:06.0175 8032 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\windows\system32\DRIVERS\avgidshx.sys
16:56:06.0175 8032 AVGIDSHX - ok
16:56:06.0207 8032 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\windows\system32\DRIVERS\avgidsshimx.sys
16:56:06.0207 8032 AVGIDSShim - ok
16:56:06.0269 8032 [ 6671345A6E2669AF1966BAF68EC5620F ] Avgldx86 C:\windows\system32\DRIVERS\avgldx86.sys
16:56:06.0269 8032 Avgldx86 - ok
16:56:06.0331 8032 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\windows\system32\DRIVERS\avgmfx86.sys
16:56:06.0378 8032 Avgmfx86 - ok
16:56:06.0472 8032 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\windows\system32\DRIVERS\avgrkx86.sys
16:56:06.0487 8032 Avgrkx86 - ok
16:56:06.0534 8032 [ C0BC3B2E3FD625E7F55E1FF863E94592 ] Avgtdix C:\windows\system32\DRIVERS\avgtdix.sys
16:56:06.0550 8032 Avgtdix - ok
16:56:06.0612 8032 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
16:56:06.0612 8032 avgwd - ok
16:56:06.0659 8032 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\windows\System32\AxInstSV.dll
16:56:06.0675 8032 AxInstSV - ok
16:56:06.0768 8032 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\windows\system32\DRIVERS\bxvbdx.sys
16:56:06.0784 8032 b06bdrv - ok
16:56:06.0862 8032 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\windows\system32\DRIVERS\b57nd60x.sys
16:56:06.0877 8032 b57nd60x - ok
16:56:06.0940 8032 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\windows\System32\bdesvc.dll
16:56:06.0940 8032 BDESVC - ok
16:56:06.0987 8032 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\windows\system32\drivers\Beep.sys
16:56:07.0002 8032 Beep - ok
16:56:07.0080 8032 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\windows\System32\bfe.dll
16:56:07.0096 8032 BFE - ok
16:56:07.0189 8032 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\windows\System32\qmgr.dll
16:56:07.0222 8032 BITS - ok
16:56:07.0253 8032 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
16:56:07.0268 8032 blbdrive - ok
16:56:07.0346 8032 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:56:07.0362 8032 Bonjour Service - ok
16:56:07.0424 8032 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\windows\system32\DRIVERS\bowser.sys
16:56:07.0424 8032 bowser - ok
16:56:07.0440 8032 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
16:56:07.0456 8032 BrFiltLo - ok
16:56:07.0502 8032 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
16:56:07.0518 8032 BrFiltUp - ok
16:56:07.0565 8032 [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser C:\windows\System32\browser.dll
16:56:07.0565 8032 Browser - ok
16:56:07.0612 8032 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\windows\System32\Drivers\Brserid.sys
16:56:07.0627 8032 Brserid - ok
16:56:07.0674 8032 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
16:56:07.0674 8032 BrSerWdm - ok
16:56:07.0705 8032 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
16:56:07.0705 8032 BrUsbMdm - ok
16:56:07.0736 8032 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
16:56:07.0736 8032 BrUsbSer - ok
16:56:07.0799 8032 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
16:56:07.0814 8032 BthEnum - ok
16:56:07.0830 8032 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
16:56:07.0846 8032 BTHMODEM - ok
16:56:07.0877 8032 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
16:56:07.0877 8032 BthPan - ok
16:56:07.0955 8032 [ 04CEDA17A195924070B01174CB1F9AF8 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
16:56:07.0970 8032 BTHPORT - ok
16:56:08.0033 8032 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\windows\system32\bthserv.dll
16:56:08.0048 8032 bthserv - ok
16:56:08.0095 8032 [ 80E6384BEEC03B8BD45EDEA29802D657 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
16:56:08.0095 8032 BTHUSB - ok
16:56:08.0158 8032 [ 92C5B845803F3662637EB691AC0B250F ] btusbflt C:\windows\system32\drivers\btusbflt.sys
16:56:08.0158 8032 btusbflt - ok
16:56:08.0221 8032 [ D57D29132EFE13A83133D9BD449E0CF1 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
16:56:08.0237 8032 btwaudio - ok
16:56:08.0299 8032 [ D282C14A69357D0E1BAFAECC2CA98C3A ] btwavdt C:\windows\system32\drivers\btwavdt.sys
16:56:08.0315 8032 btwavdt - ok
16:56:08.0424 8032 [ F7434401AE320BB97903A3C1865242FB ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:56:08.0455 8032 btwdins - ok
16:56:08.0486 8032 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
16:56:08.0486 8032 btwl2cap - ok
16:56:08.0517 8032 [ 02EB4D2B05967DF2D32F29C84AB1FB17 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
16:56:08.0517 8032 btwrchid - ok
16:56:08.0595 8032 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
16:56:08.0611 8032 cdfs - ok
16:56:08.0658 8032 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
16:56:08.0658 8032 cdrom - ok
16:56:08.0705 8032 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\windows\System32\certprop.dll
16:56:08.0720 8032 CertPropSvc - ok
16:56:08.0767 8032 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\windows\system32\DRIVERS\circlass.sys
16:56:08.0783 8032 circlass - ok
16:56:08.0829 8032 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\windows\system32\CLFS.sys
16:56:08.0845 8032 CLFS - ok
16:56:08.0939 8032 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:56:08.0939 8032 clr_optimization_v2.0.50727_32 - ok
16:56:09.0048 8032 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:56:09.0063 8032 clr_optimization_v4.0.30319_32 - ok
16:56:09.0095 8032 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
16:56:09.0110 8032 CmBatt - ok
16:56:09.0141 8032 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\windows\system32\DRIVERS\cmdide.sys
16:56:09.0141 8032 cmdide - ok
16:56:09.0188 8032 [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG C:\windows\system32\Drivers\cng.sys
16:56:09.0204 8032 CNG - ok
16:56:09.0360 8032 [ 14E28A5F09FDB1D6581D2DB21DEA1FB4 ] Common Toolkit Tools C:\Program Files\Fighters\FULL-DISKfighter\Common Toolkit Tools.exe
16:56:09.0391 8032 Common Toolkit Tools - ok
16:56:09.0453 8032 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
16:56:09.0453 8032 Compbatt - ok
16:56:09.0500 8032 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
16:56:09.0516 8032 CompositeBus - ok
16:56:09.0547 8032 COMSysApp - ok
16:56:09.0594 8032 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
16:56:09.0609 8032 crcdisk - ok
16:56:09.0703 8032 [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED ] CryptSvc C:\windows\system32\cryptsvc.dll
16:56:09.0703 8032 CryptSvc - ok
16:56:09.0781 8032 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\windows\system32\rpcss.dll
16:56:09.0797 8032 DcomLaunch - ok
16:56:09.0843 8032 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\windows\System32\defragsvc.dll
16:56:09.0859 8032 defragsvc - ok
16:56:09.0906 8032 [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC C:\windows\system32\Drivers\dfsc.sys
16:56:09.0906 8032 DfsC - ok
16:56:09.0953 8032 dgderdrv - ok
16:56:10.0031 8032 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\windows\system32\dhcpcore.dll
16:56:10.0031 8032 Dhcp - ok
16:56:10.0077 8032 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\windows\system32\drivers\discache.sys
16:56:10.0077 8032 discache - ok
16:56:10.0140 8032 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\windows\system32\DRIVERS\disk.sys
16:56:10.0155 8032 Disk - ok
16:56:10.0202 8032 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\windows\System32\dnsrslvr.dll
16:56:10.0202 8032 Dnscache - ok
16:56:10.0249 8032 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\windows\System32\dot3svc.dll
16:56:10.0265 8032 dot3svc - ok
16:56:10.0296 8032 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\windows\system32\dps.dll
16:56:10.0311 8032 DPS - ok
16:56:10.0358 8032 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
16:56:10.0358 8032 drmkaud - ok
16:56:10.0421 8032 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
16:56:10.0452 8032 DXGKrnl - ok
16:56:10.0530 8032 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\windows\System32\eapsvc.dll
16:56:10.0545 8032 EapHost - ok
16:56:10.0717 8032 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\windows\system32\DRIVERS\evbdx.sys
16:56:10.0826 8032 ebdrv - ok
16:56:10.0889 8032 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS C:\windows\System32\lsass.exe
16:56:10.0889 8032 EFS - ok
16:56:11.0013 8032 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\windows\ehome\ehRecvr.exe
16:56:11.0060 8032 ehRecvr - ok
16:56:11.0123 8032 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\windows\ehome\ehsched.exe
16:56:11.0123 8032 ehSched - ok
16:56:11.0185 8032 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
16:56:11.0216 8032 elxstor - ok
16:56:11.0232 8032 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\windows\system32\DRIVERS\errdev.sys
16:56:11.0247 8032 ErrDev - ok
16:56:11.0341 8032 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\windows\system32\es.dll
16:56:11.0357 8032 EventSystem - ok
16:56:11.0435 8032 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\windows\system32\drivers\exfat.sys
16:56:11.0450 8032 exfat - ok
16:56:11.0481 8032 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\windows\system32\drivers\fastfat.sys
16:56:11.0497 8032 fastfat - ok
16:56:11.0575 8032 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\windows\system32\fxssvc.exe
16:56:11.0606 8032 Fax - ok
16:56:11.0669 8032 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\windows\system32\DRIVERS\fdc.sys
16:56:11.0669 8032 fdc - ok
16:56:11.0700 8032 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\windows\system32\fdPHost.dll
16:56:11.0700 8032 fdPHost - ok
16:56:11.0731 8032 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\windows\system32\fdrespub.dll
16:56:11.0731 8032 FDResPub - ok
16:56:11.0778 8032 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
16:56:11.0778 8032 FileInfo - ok
16:56:11.0809 8032 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\windows\system32\drivers\filetrace.sys
16:56:11.0825 8032 Filetrace - ok
16:56:11.0871 8032 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
16:56:11.0871 8032 flpydisk - ok
16:56:11.0918 8032 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
16:56:11.0934 8032 FltMgr - ok
16:56:11.0996 8032 [ 7FE4995528A7529A761875151EE3D512 ] FontCache C:\windows\system32\FntCache.dll
16:56:12.0043 8032 FontCache - ok
16:56:12.0105 8032 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:56:12.0105 8032 FontCache3.0.0.0 - ok
16:56:12.0152 8032 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\windows\system32\drivers\FsDepends.sys
16:56:12.0168 8032 FsDepends - ok
16:56:12.0215 8032 [ D909075FA72C090F27AA926C32CB4612 ] fssfltr C:\windows\system32\DRIVERS\fssfltr.sys
16:56:12.0215 8032 fssfltr - ok
16:56:12.0339 8032 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
16:56:12.0402 8032 fsssvc - ok
16:56:12.0464 8032 [ B07663A810E861EEBFD0EAC7E82CA62D ] FsUsbExDisk C:\windows\system32\FsUsbExDisk.SYS
16:56:12.0480 8032 FsUsbExDisk - ok
16:56:12.0527 8032 [ F96C429788350DB4BA6771C3034DFD88 ] FsUsbExService C:\windows\system32\FsUsbExService.Exe
16:56:12.0542 8032 FsUsbExService - ok
16:56:12.0605 8032 [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
16:56:12.0620 8032 Fs_Rec - ok
16:56:12.0683 8032 [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
16:56:12.0698 8032 fvevol - ok
16:56:12.0745 8032 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
16:56:12.0761 8032 gagp30kx - ok
16:56:12.0854 8032 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
16:56:12.0854 8032 GEARAspiWDM - ok
16:56:12.0932 8032 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\windows\System32\gpsvc.dll
16:56:12.0963 8032 gpsvc - ok
16:56:13.0088 8032 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
16:56:13.0104 8032 gupdate - ok
16:56:13.0182 8032 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
16:56:13.0182 8032 gupdatem - ok
16:56:13.0229 8032 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
16:56:13.0229 8032 hcw85cir - ok
16:56:13.0275 8032 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
16:56:13.0291 8032 HdAudAddService - ok
16:56:13.0338 8032 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
16:56:13.0338 8032 HDAudBus - ok
16:56:13.0353 8032 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
16:56:13.0369 8032 HidBatt - ok
16:56:13.0400 8032 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
16:56:13.0416 8032 HidBth - ok
16:56:13.0447 8032 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\windows\system32\DRIVERS\hidir.sys
16:56:13.0447 8032 HidIr - ok
16:56:13.0478 8032 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\windows\system32\hidserv.dll
16:56:13.0494 8032 hidserv - ok
16:56:13.0541 8032 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
16:56:13.0556 8032 HidUsb - ok
16:56:13.0603 8032 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\windows\system32\kmsvc.dll
16:56:13.0619 8032 hkmsvc - ok
16:56:13.0665 8032 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\windows\system32\ListSvc.dll
16:56:13.0665 8032 HomeGroupListener - ok
16:56:13.0697 8032 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\windows\system32\provsvc.dll
16:56:13.0712 8032 HomeGroupProvider - ok
16:56:13.0759 8032 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\windows\system32\DRIVERS\HpSAMD.sys
16:56:13.0775 8032 HpSAMD - ok
16:56:13.0821 8032 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\windows\system32\drivers\HTTP.sys
16:56:13.0853 8032 HTTP - ok
16:56:13.0931 8032 [ C1258ADCBE6E51A3C06C234D2BDB81B5 ] Huawei C:\windows\system32\DRIVERS\ewdcsc.sys
16:56:13.0931 8032 Huawei - ok
16:56:13.0993 8032 [ 988C0A49F09D75D3341CB419141793C1 ] hwdatacard C:\windows\system32\DRIVERS\ewusbmdm.sys
16:56:14.0009 8032 hwdatacard - ok
16:56:14.0040 8032 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
16:56:14.0040 8032 hwpolicy - ok
16:56:14.0102 8032 [ A259D3619AA23D4562581067F85E2006 ] hwusbdev C:\windows\system32\DRIVERS\ewusbdev.sys
16:56:14.0102 8032 hwusbdev - ok
16:56:14.0165 8032 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
16:56:14.0165 8032 i8042prt - ok
16:56:14.0227 8032 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
16:56:14.0243 8032 iaStorV - ok
16:56:14.0321 8032 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:56:14.0367 8032 idsvc - ok
16:56:14.0461 8032 [ F918D5396D2C5FA76C938D471C46BA2A ] igd C:\windows\system32\DRIVERS\igdkmd32.sys
16:56:14.0492 8032 igd - ok
16:56:14.0539 8032 [ F918D5396D2C5FA76C938D471C46BA2A ] igfx C:\windows\system32\DRIVERS\igdkmd32.sys
16:56:14.0555 8032 igfx - ok
16:56:14.0601 8032 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
16:56:14.0601 8032 iirsp - ok
16:56:14.0695 8032 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\windows\System32\ikeext.dll
16:56:14.0726 8032 IKEEXT - ok
16:56:14.0913 8032 [ DB96B8BD676BB24BD4F1DC53CA1F182C ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHDA.sys
16:56:15.0007 8032 IntcAzAudAddService - ok
16:56:15.0038 8032 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\windows\system32\DRIVERS\intelide.sys
16:56:15.0038 8032 intelide - ok
16:56:15.0116 8032 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
16:56:15.0116 8032 intelppm - ok
16:56:15.0163 8032 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\windows\system32\ipbusenum.dll
16:56:15.0179 8032 IPBusEnum - ok
16:56:15.0210 8032 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
16:56:15.0225 8032 IpFilterDriver - ok
16:56:15.0272 8032 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
16:56:15.0303 8032 iphlpsvc - ok
16:56:15.0350 8032 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\windows\system32\DRIVERS\IPMIDrv.sys
16:56:15.0366 8032 IPMIDRV - ok
16:56:15.0397 8032 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\windows\system32\drivers\ipnat.sys
16:56:15.0397 8032 IPNAT - ok
16:56:15.0506 8032 [ E46B17060D3962A384AE484094614788 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:56:15.0537 8032 iPod Service - ok
16:56:15.0584 8032 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\windows\system32\drivers\irenum.sys
16:56:15.0584 8032 IRENUM - ok
16:56:15.0631 8032 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\windows\system32\DRIVERS\isapnp.sys
16:56:15.0647 8032 isapnp - ok
16:56:15.0678 8032 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\windows\system32\DRIVERS\msiscsi.sys
16:56:15.0693 8032 iScsiPrt - ok
16:56:15.0725 8032 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
16:56:15.0725 8032 kbdclass - ok
16:56:15.0771 8032 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
16:56:15.0771 8032 kbdhid - ok
16:56:15.0818 8032 [ 3EB803312987FF44265C87CB960DF6AB ] kbfiltr C:\windows\system32\DRIVERS\kbfiltr.sys
16:56:15.0818 8032 kbfiltr - ok
16:56:15.0849 8032 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso C:\windows\system32\lsass.exe
16:56:15.0865 8032 KeyIso - ok
16:56:15.0912 8032 [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
16:56:15.0912 8032 KSecDD - ok
16:56:15.0959 8032 [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
16:56:15.0959 8032 KSecPkg - ok
16:56:16.0005 8032 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\windows\system32\msdtckrm.dll
16:56:16.0037 8032 KtmRm - ok
16:56:16.0083 8032 [ A158CEA8644B8A5C1EC0E9A81B70F65A ] L1C C:\windows\system32\DRIVERS\L1C62x86.sys
16:56:16.0099 8032 L1C - ok
16:56:16.0130 8032 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\windows\system32\srvsvc.dll
16:56:16.0146 8032 LanmanServer - ok
16:56:16.0193 8032 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\windows\System32\wkssvc.dll
16:56:16.0208 8032 LanmanWorkstation - ok
16:56:16.0271 8032 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
16:56:16.0271 8032 lltdio - ok
16:56:16.0333 8032 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\windows\System32\lltdsvc.dll
16:56:16.0349 8032 lltdsvc - ok
16:56:16.0380 8032 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\windows\System32\lmhsvc.dll
16:56:16.0380 8032 lmhosts - ok
16:56:16.0442 8032 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
16:56:16.0458 8032 LSI_FC - ok
16:56:16.0489 8032 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
16:56:16.0505 8032 LSI_SAS - ok
16:56:16.0536 8032 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
16:56:16.0551 8032 LSI_SAS2 - ok
16:56:16.0583 8032 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
16:56:16.0598 8032 LSI_SCSI - ok
16:56:16.0629 8032 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\windows\system32\drivers\luafv.sys
16:56:16.0645 8032 luafv - ok
16:56:16.0739 8032 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
16:56:16.0739 8032 McComponentHostService - ok
16:56:16.0801 8032 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
16:56:16.0817 8032 Mcx2Svc - ok
16:56:16.0863 8032 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\windows\system32\DRIVERS\megasas.sys
16:56:16.0879 8032 megasas - ok
16:56:16.0941 8032 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
16:56:16.0941 8032 MegaSR - ok
16:56:17.0035 8032 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
16:56:17.0051 8032 Microsoft Office Groove Audit Service - ok
16:56:17.0097 8032 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\windows\system32\mmcss.dll
16:56:17.0097 8032 MMCSS - ok
16:56:17.0129 8032 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\windows\system32\drivers\modem.sys
16:56:17.0129 8032 Modem - ok
16:56:17.0175 8032 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\windows\system32\DRIVERS\monitor.sys
16:56:17.0175 8032 monitor - ok
16:56:17.0222 8032 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
16:56:17.0222 8032 mouclass - ok
16:56:17.0269 8032 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
16:56:17.0269 8032 mouhid - ok
16:56:17.0300 8032 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
16:56:17.0316 8032 mountmgr - ok
16:56:17.0347 8032 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\windows\system32\DRIVERS\mpio.sys
16:56:17.0363 8032 mpio - ok
16:56:17.0409 8032 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
16:56:17.0409 8032 mpsdrv - ok
16:56:17.0472 8032 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\windows\system32\mpssvc.dll
16:56:17.0487 8032 MpsSvc - ok
16:56:17.0519 8032 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
16:56:17.0534 8032 MRxDAV - ok
16:56:17.0597 8032 [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
16:56:17.0612 8032 mrxsmb - ok
16:56:17.0675 8032 [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
16:56:17.0690 8032 mrxsmb10 - ok
16:56:17.0721 8032 [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
16:56:17.0737 8032 mrxsmb20 - ok
16:56:17.0799 8032 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\windows\system32\DRIVERS\msahci.sys
16:56:17.0815 8032 msahci - ok
16:56:17.0831 8032 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\windows\system32\DRIVERS\msdsm.sys
16:56:17.0846 8032 msdsm - ok
16:56:17.0909 8032 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\windows\System32\msdtc.exe
16:56:17.0955 8032 MSDTC - ok
16:56:18.0018 8032 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\windows\system32\drivers\Msfs.sys
16:56:18.0018 8032 Msfs - ok
16:56:18.0049 8032 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
16:56:18.0065 8032 mshidkmdf - ok
16:56:18.0111 8032 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\windows\system32\DRIVERS\msisadrv.sys
16:56:18.0111 8032 msisadrv - ok
16:56:18.0189 8032 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\windows\system32\iscsiexe.dll
16:56:18.0205 8032 MSiSCSI - ok
16:56:18.0221 8032 msiserver - ok
16:56:18.0267 8032 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
16:56:18.0267 8032 MSKSSRV - ok
16:56:18.0299 8032 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
16:56:18.0314 8032 MSPCLOCK - ok
16:56:18.0345 8032 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
16:56:18.0345 8032 MSPQM - ok
16:56:18.0377 8032 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
16:56:18.0392 8032 MsRPC - ok
16:56:18.0439 8032 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
16:56:18.0439 8032 mssmbios - ok
16:56:18.0455 8032 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
16:56:18.0470 8032 MSTEE - ok
16:56:18.0501 8032 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
16:56:18.0517 8032 MTConfig - ok
16:56:18.0564 8032 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\windows\system32\Drivers\mup.sys
16:56:18.0564 8032 Mup - ok
16:56:18.0626 8032 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\windows\system32\qagentRT.dll
16:56:18.0657 8032 napagent - ok
16:56:18.0704 8032 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
16:56:18.0720 8032 NativeWifiP - ok
16:56:18.0782 8032 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\windows\system32\drivers\ndis.sys
16:56:18.0813 8032 NDIS - ok
16:56:18.0876 8032 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
16:56:18.0876 8032 NdisCap - ok
16:56:18.0907 8032 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
16:56:18.0923 8032 NdisTapi - ok
16:56:18.0985 8032 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
16:56:18.0985 8032 Ndisuio - ok
16:56:19.0047 8032 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
16:56:19.0063 8032 NdisWan - ok
16:56:19.0110 8032 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
16:56:19.0110 8032 NDProxy - ok
16:56:19.0172 8032 [ 69C503C004F49AEE8B8E3067CC047BA7 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
16:56:19.0188 8032 Net Driver HPZ12 - ok
16:56:19.0235 8032 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
16:56:19.0235 8032 NetBIOS - ok
16:56:19.0281 8032 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
16:56:19.0281 8032 NetBT - ok
16:56:19.0313 8032 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon C:\windows\system32\lsass.exe
16:56:19.0313 8032 Netlogon - ok
16:56:19.0375 8032 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\windows\System32\netman.dll
16:56:19.0391 8032 Netman - ok
16:56:19.0437 8032 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\windows\System32\netprofm.dll
16:56:19.0453 8032 netprofm - ok
16:56:19.0500 8032 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:56:19.0515 8032 NetTcpPortSharing - ok
16:56:19.0562 8032 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
16:56:19.0562 8032 nfrd960 - ok
16:56:19.0625 8032 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\windows\System32\nlasvc.dll
16:56:19.0625 8032 NlaSvc - ok
16:56:19.0656 8032 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\windows\system32\drivers\Npfs.sys
16:56:19.0656 8032 Npfs - ok
16:56:19.0687 8032 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\windows\system32\nsisvc.dll
16:56:19.0703 8032 nsi - ok
16:56:19.0718 8032 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
16:56:19.0734 8032 nsiproxy - ok
16:56:19.0827 8032 [ 5126C5402C730C2A953275D8497A4715 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
16:56:19.0874 8032 Ntfs - ok
16:56:19.0905 8032 [ F9756A98D69098DCA8945D62858A812C ] Null C:\windows\system32\drivers\Null.sys
16:56:19.0905 8032 Null - ok
16:56:19.0952 8032 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\windows\system32\drivers\nvraid.sys
16:56:19.0952 8032 nvraid - ok
16:56:20.0015 8032 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\windows\system32\drivers\nvstor.sys
16:56:20.0015 8032 nvstor - ok
16:56:20.0046 8032 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\windows\system32\DRIVERS\nv_agp.sys
16:56:20.0061 8032 nv_agp - ok
16:56:20.0155 8032 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:56:20.0186 8032 odserv - ok
16:56:20.0217 8032 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\windows\system32\DRIVERS\ohci1394.sys
16:56:20.0233 8032 ohci1394 - ok
16:56:20.0295 8032 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:56:20.0327 8032 ose - ok
16:56:20.0405 8032 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\windows\system32\pnrpsvc.dll
16:56:20.0420 8032 p2pimsvc - ok
16:56:20.0451 8032 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\windows\system32\p2psvc.dll
16:56:20.0467 8032 p2psvc - ok
16:56:20.0514 8032 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\windows\system32\DRIVERS\parport.sys
16:56:20.0514 8032 Parport - ok
16:56:20.0592 8032 [ 66D3415C159741ADE7038A277EFFF99F ] partmgr C:\windows\system32\drivers\partmgr.sys
16:56:20.0592 8032 partmgr - ok
16:56:20.0623 8032 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\windows\system32\DRIVERS\parvdm.sys
16:56:20.0623 8032 Parvdm - ok
16:56:20.0670 8032 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\windows\System32\pcasvc.dll
16:56:20.0685 8032 PcaSvc - ok
16:56:20.0717 8032 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\windows\system32\DRIVERS\pci.sys
16:56:20.0732 8032 pci - ok
16:56:20.0763 8032 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\windows\system32\DRIVERS\pciide.sys
16:56:20.0763 8032 pciide - ok
16:56:20.0810 8032 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
16:56:20.0826 8032 pcmcia - ok
16:56:20.0873 8032 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\windows\system32\drivers\pcw.sys
16:56:20.0873 8032 pcw - ok
16:56:20.0935 8032 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\windows\system32\drivers\peauth.sys
16:56:20.0951 8032 PEAUTH - ok
16:56:21.0107 8032 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\windows\system32\pla.dll
16:56:21.0169 8032 pla - ok
16:56:21.0231 8032 [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay C:\windows\system32\umpnpmgr.dll
16:56:21.0247 8032 PlugPlay - ok
16:56:21.0294 8032 [ 12B4549D515CB26BB8D375038017CA65 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
16:56:21.0294 8032 Pml Driver HPZ12 - ok
16:56:21.0341 8032 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
16:56:21.0356 8032 PNRPAutoReg - ok
16:56:21.0403 8032 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\windows\system32\pnrpsvc.dll
16:56:21.0419 8032 PNRPsvc - ok
16:56:21.0465 8032 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
16:56:21.0481 8032 PolicyAgent - ok
16:56:21.0543 8032 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\windows\system32\umpo.dll
16:56:21.0559 8032 Power - ok
16:56:21.0621 8032 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
16:56:21.0621 8032 PptpMiniport - ok
16:56:21.0668 8032 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\windows\system32\DRIVERS\processr.sys
16:56:21.0684 8032 Processor - ok
16:56:21.0746 8032 [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc C:\windows\system32\profsvc.dll
16:56:21.0746 8032 ProfSvc - ok
16:56:21.0777 8032 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\windows\system32\lsass.exe
16:56:21.0777 8032 ProtectedStorage - ok
16:56:21.0824 8032 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\windows\system32\DRIVERS\pacer.sys
16:56:21.0840 8032 Psched - ok
16:56:21.0918 8032 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
16:56:21.0965 8032 ql2300 - ok
16:56:21.0996 8032 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
16:56:22.0011 8032 ql40xx - ok
16:56:22.0058 8032 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\windows\system32\qwave.dll
16:56:22.0074 8032 QWAVE - ok
16:56:22.0089 8032 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
16:56:22.0105 8032 QWAVEdrv - ok
16:56:22.0136 8032 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
16:56:22.0136 8032 RasAcd - ok
16:56:22.0199 8032 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
16:56:22.0214 8032 RasAgileVpn - ok
16:56:22.0261 8032 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\windows\System32\rasauto.dll
16:56:22.0277 8032 RasAuto - ok
16:56:22.0308 8032 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
16:56:22.0323 8032 Rasl2tp - ok
16:56:22.0386 8032 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\windows\System32\rasmans.dll
16:56:22.0418 8032 RasMan - ok
16:56:22.0465 8032 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
16:56:22.0465 8032 RasPppoe - ok
16:56:22.0512 8032 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
16:56:22.0512 8032 RasSstp - ok
16:56:22.0590 8032 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
16:56:22.0605 8032 rdbss - ok
16:56:22.0652 8032 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
16:56:22.0668 8032 rdpbus - ok
16:56:22.0699 8032 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
16:56:22.0699 8032 RDPCDD - ok
16:56:22.0761 8032 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
16:56:22.0777 8032 RDPENCDD - ok
16:56:22.0824 8032 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
16:56:22.0839 8032 RDPREFMP - ok
16:56:22.0902 8032 [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
16:56:22.0902 8032 RDPWD - ok
16:56:22.0980 8032 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
16:56:22.0995 8032 rdyboost - ok
16:56:23.0042 8032 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\windows\System32\mprdim.dll
16:56:23.0058 8032 RemoteAccess - ok
16:56:23.0089 8032 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\windows\system32\regsvc.dll
16:56:23.0104 8032 RemoteRegistry - ok
16:56:23.0136 8032 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
16:56:23.0151 8032 RFCOMM - ok
16:56:23.0182 8032 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
16:56:23.0198 8032 RpcEptMapper - ok
16:56:23.0245 8032 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\windows\system32\locator.exe
16:56:23.0245 8032 RpcLocator - ok
16:56:23.0292 8032 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\windows\system32\rpcss.dll
16:56:23.0307 8032 RpcSs - ok
16:56:23.0354 8032 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
16:56:23.0354 8032 rspndr - ok
16:56:23.0385 8032 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs C:\windows\system32\lsass.exe
16:56:23.0385 8032 SamSs - ok
16:56:23.0463 8032 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\windows\system32\DRIVERS\sbp2port.sys
16:56:23.0463 8032 sbp2port - ok
16:56:23.0510 8032 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\windows\System32\SCardSvr.dll
16:56:23.0526 8032 SCardSvr - ok
16:56:23.0557 8032 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
16:56:23.0557 8032 scfilter - ok
16:56:23.0635 8032 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\windows\system32\schedsvc.dll
16:56:23.0666 8032 Schedule - ok
16:56:23.0682 8032 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\windows\System32\certprop.dll
16:56:23.0697 8032 SCPolicySvc - ok
16:56:23.0744 8032 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\windows\System32\SDRSVC.dll
16:56:23.0760 8032 SDRSVC - ok
16:56:23.0822 8032 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\windows\system32\drivers\secdrv.sys
16:56:23.0822 8032 secdrv - ok
16:56:23.0853 8032 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\windows\system32\seclogon.dll
16:56:23.0869 8032 seclogon - ok
16:56:23.0900 8032 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\windows\System32\sens.dll
16:56:23.0916 8032 SENS - ok
16:56:23.0947 8032 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\windows\system32\sensrsvc.dll
16:56:23.0962 8032 SensrSvc - ok
16:56:23.0994 8032 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\windows\system32\DRIVERS\serenum.sys
16:56:24.0009 8032 Serenum - ok
16:56:24.0072 8032 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\windows\system32\DRIVERS\serial.sys
16:56:24.0072 8032 Serial - ok
16:56:24.0103 8032 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
16:56:24.0103 8032 sermouse - ok
16:56:24.0212 8032 [ 3EC8DE67B1C78C31E54C0F030E6BD7D5 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
16:56:24.0243 8032 ServiceLayer - ok
16:56:24.0337 8032 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\windows\system32\sessenv.dll
16:56:24.0352 8032 SessionEnv - ok
16:56:24.0384 8032 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\windows\system32\DRIVERS\sffdisk.sys
16:56:24.0384 8032 sffdisk - ok
16:56:24.0430 8032 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\windows\system32\DRIVERS\sffp_mmc.sys
16:56:24.0430 8032 sffp_mmc - ok
16:56:24.0462 8032 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\windows\system32\DRIVERS\sffp_sd.sys
16:56:24.0462 8032 sffp_sd - ok
16:56:24.0493 8032 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
16:56:24.0508 8032 sfloppy - ok
16:56:24.0571 8032 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\windows\System32\ipnathlp.dll
16:56:24.0586 8032 SharedAccess - ok
16:56:24.0633 8032 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\windows\System32\shsvcs.dll
16:56:24.0664 8032 ShellHWDetection - ok
16:56:24.0696 8032 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\windows\system32\DRIVERS\sisagp.sys
16:56:24.0696 8032 sisagp - ok
16:56:24.0742 8032 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
16:56:24.0742 8032 SiSRaid2 - ok
16:56:24.0820 8032 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
16:56:24.0836 8032 SiSRaid4 - ok
16:56:24.0914 8032 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
16:56:24.0930 8032 SkypeUpdate - ok
16:56:24.0976 8032 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\windows\system32\DRIVERS\smb.sys
16:56:24.0976 8032 Smb - ok
16:56:25.0039 8032 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\windows\System32\snmptrap.exe
16:56:25.0054 8032 SNMPTRAP - ok
16:56:25.0086 8032 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\windows\system32\drivers\spldr.sys
16:56:25.0086 8032 spldr - ok
16:56:25.0148 8032 [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler C:\windows\System32\spoolsv.exe
16:56:25.0179 8032 Spooler - ok
16:56:25.0320 8032 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\windows\system32\sppsvc.exe
16:56:25.0429 8032 sppsvc - ok
16:56:25.0460 8032 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\windows\system32\sppuinotify.dll
16:56:25.0476 8032 sppuinotify - ok
16:56:25.0538 8032 [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv C:\windows\system32\DRIVERS\srv.sys
16:56:25.0538 8032 srv - ok
16:56:25.0585 8032 [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
16:56:25.0600 8032 srv2 - ok
16:56:25.0647 8032 [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
16:56:25.0647 8032 srvnet - ok
16:56:25.0678 8032 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
16:56:25.0694 8032 SSDPSRV - ok
16:56:25.0725 8032 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\windows\system32\sstpsvc.dll
16:56:25.0741 8032 SstpSvc - ok
16:56:25.0772 8032 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
16:56:25.0772 8032 stexstor - ok
16:56:25.0834 8032 [ EDB05BD63148796F23EA78506404A538 ] StillCam C:\windows\system32\DRIVERS\serscan.sys
16:56:25.0866 8032 StillCam - ok
16:56:25.0944 8032 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\windows\System32\wiaservc.dll
16:56:25.0975 8032 StiSvc - ok
16:56:26.0006 8032 Suite Service - ok
16:56:26.0053 8032 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\windows\system32\DRIVERS\swenum.sys
16:56:26.0068 8032 swenum - ok
16:56:26.0146 8032 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\windows\System32\swprv.dll
16:56:26.0162 8032 swprv - ok
16:56:26.0224 8032 [ 8BD10DC8809DC69A1C5A795CB10ADD76 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
16:56:26.0240 8032 SynTP - ok
16:56:26.0302 8032 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\windows\system32\sysmain.dll
16:56:26.0349 8032 SysMain - ok
16:56:26.0380 8032 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\windows\System32\TabSvc.dll
16:56:26.0396 8032 TabletInputService - ok
16:56:26.0427 8032 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\windows\System32\tapisrv.dll
16:56:26.0443 8032 TapiSrv - ok
16:56:26.0474 8032 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\windows\System32\tbssvc.dll
16:56:26.0490 8032 TBS - ok
16:56:26.0599 8032 [ BBCEAEFF1FD72A026F827CBB2F4AA8AD ] Tcpip C:\windows\system32\drivers\tcpip.sys
16:56:26.0630 8032 Tcpip - ok
16:56:26.0724 8032 [ BBCEAEFF1FD72A026F827CBB2F4AA8AD ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
16:56:26.0739 8032 TCPIP6 - ok
16:56:26.0817 8032 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
16:56:26.0817 8032 tcpipreg - ok
16:56:26.0880 8032 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
16:56:26.0895 8032 TDPIPE - ok
16:56:26.0942 8032 [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
16:56:26.0942 8032 TDTCP - ok
16:56:26.0973 8032 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\windows\system32\DRIVERS\tdx.sys
16:56:26.0989 8032 tdx - ok
16:56:27.0020 8032 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
16:56:27.0020 8032 TermDD - ok
16:56:27.0082 8032 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\windows\System32\termsrv.dll
16:56:27.0114 8032 TermService - ok
16:56:27.0145 8032 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\windows\system32\themeservice.dll
16:56:27.0145 8032 Themes - ok
16:56:27.0176 8032 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\windows\system32\mmcss.dll
16:56:27.0176 8032 THREADORDER - ok
16:56:27.0223 8032 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\windows\System32\trkwks.dll
16:56:27.0238 8032 TrkWks - ok
16:56:27.0332 8032 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
16:56:27.0348 8032 TrustedInstaller - ok
16:56:27.0394 8032 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
16:56:27.0394 8032 tssecsrv - ok
16:56:27.0472 8032 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
16:56:27.0472 8032 tunnel - ok
16:56:27.0504 8032 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
16:56:27.0519 8032 uagp35 - ok
16:56:27.0550 8032 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\windows\system32\DRIVERS\udfs.sys
16:56:27.0566 8032 udfs - ok
16:56:27.0644 8032 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\windows\system32\UI0Detect.exe
16:56:27.0644 8032 UI0Detect - ok
16:56:27.0675 8032 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\windows\system32\DRIVERS\uliagpkx.sys
16:56:27.0691 8032 uliagpkx - ok
16:56:27.0738 8032 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\windows\system32\DRIVERS\umbus.sys
16:56:27.0738 8032 umbus - ok
16:56:27.0784 8032 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\windows\system32\DRIVERS\umpass.sys
16:56:27.0784 8032 UmPass - ok
16:56:27.0847 8032 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\windows\System32\upnphost.dll
16:56:27.0862 8032 upnphost - ok
16:56:27.0925 8032 [ 2436A42AAB4AD48A9B714E5B0F344627 ] usbaudio C:\windows\system32\drivers\usbaudio.sys
16:56:27.0940 8032 usbaudio - ok
16:56:28.0003 8032 [ C31AE588E403042632DC796CF09E30B0 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
16:56:28.0003 8032 usbccgp - ok
16:56:28.0050 8032 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\windows\system32\DRIVERS\usbcir.sys
16:56:28.0050 8032 usbcir - ok
16:56:28.0081 8032 [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci C:\windows\system32\drivers\usbehci.sys
16:56:28.0096 8032 usbehci - ok
16:56:28.0159 8032 [ BDCD7156EC37448F08633FD899823620 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
16:56:28.0174 8032 usbhub - ok
16:56:28.0221 8032 [ EB2D819A639015253C871CDA09D91D58 ] usbohci C:\windows\system32\drivers\usbohci.sys
16:56:28.0252 8032 usbohci - ok
16:56:28.0299 8032 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
16:56:28.0299 8032 usbprint - ok
16:56:28.0346 8032 [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
16:56:28.0362 8032 USBSTOR - ok
16:56:28.0408 8032 [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
16:56:28.0424 8032 usbuhci - ok
16:56:28.0471 8032 [ B5F6A992D996282B7FAE7048E50AF83A ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
16:56:28.0486 8032 usbvideo - ok
16:56:28.0518 8032 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\windows\System32\uxsms.dll
16:56:28.0533 8032 UxSms - ok
16:56:28.0549 8032 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc C:\windows\system32\lsass.exe
16:56:28.0564 8032 VaultSvc - ok
16:56:28.0642 8032 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\windows\system32\DRIVERS\vdrvroot.sys
16:56:28.0642 8032 vdrvroot - ok
16:56:28.0705 8032 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\windows\System32\vds.exe
16:56:28.0736 8032 vds - ok
16:56:28.0767 8032 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
16:56:28.0767 8032 vga - ok
16:56:28.0861 8032 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\windows\System32\drivers\vga.sys
16:56:28.0861 8032 VgaSave - ok
16:56:28.0908 8032 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\windows\system32\DRIVERS\vhdmp.sys
16:56:28.0908 8032 vhdmp - ok
16:56:28.0954 8032 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\windows\system32\DRIVERS\viaagp.sys
16:56:28.0954 8032 viaagp - ok
16:56:28.0986 8032 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\windows\system32\DRIVERS\viac7.sys
16:56:29.0001 8032 ViaC7 - ok
16:56:29.0048 8032 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\windows\system32\DRIVERS\viaide.sys
16:56:29.0048 8032 viaide - ok
16:56:29.0142 8032 [ BE880E635C59470FE2AF6163EAC0DCD1 ] VodafoneConnectorService C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe
16:56:29.0157 8032 VodafoneConnectorService - ok
16:56:29.0204 8032 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\windows\system32\DRIVERS\volmgr.sys
16:56:29.0204 8032 volmgr - ok
16:56:29.0251 8032 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\windows\system32\drivers\volmgrx.sys
16:56:29.0266 8032 volmgrx - ok
16:56:29.0313 8032 [ 59F06B4968E58BC83DFC56CA4517960E ] volsnap C:\windows\system32\drivers\volsnap.sys
16:56:29.0329 8032 volsnap - ok
16:56:29.0376 8032 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
16:56:29.0391 8032 vsmraid - ok
16:56:29.0469 8032 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\windows\system32\vssvc.exe
16:56:29.0516 8032 VSS - ok
16:56:29.0563 8032 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
16:56:29.0563 8032 vwifibus - ok
16:56:29.0594 8032 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
16:56:29.0610 8032 vwififlt - ok
16:56:29.0656 8032 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
16:56:29.0656 8032 vwifimp - ok
16:56:29.0719 8032 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\windows\system32\w32time.dll
16:56:29.0734 8032 W32Time - ok
16:56:29.0781 8032 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
16:56:29.0781 8032 WacomPen - ok
16:56:29.0844 8032 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
16:56:29.0844 8032 WANARP - ok
16:56:29.0859 8032 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
16:56:29.0859 8032 Wanarpv6 - ok
16:56:29.0984 8032 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
16:56:30.0046 8032 WatAdminSvc - ok
16:56:30.0124 8032 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\windows\system32\wbengine.exe
16:56:30.0187 8032 wbengine - ok
16:56:30.0218 8032 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
16:56:30.0234 8032 WbioSrvc - ok
16:56:30.0280 8032 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\windows\System32\wcncsvc.dll
16:56:30.0296 8032 wcncsvc - ok
16:56:30.0358 8032 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
16:56:30.0374 8032 WcsPlugInService - ok
16:56:30.0421 8032 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\windows\system32\DRIVERS\wd.sys
16:56:30.0421 8032 Wd - ok
16:56:30.0483 8032 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
16:56:30.0514 8032 Wdf01000 - ok
16:56:30.0530 8032 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\windows\system32\wdi.dll
16:56:30.0546 8032 WdiServiceHost - ok
16:56:30.0561 8032 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\windows\system32\wdi.dll
16:56:30.0577 8032 WdiSystemHost - ok
16:56:30.0624 8032 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\windows\System32\webclnt.dll
16:56:30.0655 8032 WebClient - ok
16:56:30.0686 8032 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\windows\system32\wecsvc.dll
16:56:30.0717 8032 Wecsvc - ok
16:56:30.0748 8032 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\windows\System32\wercplsupport.dll
16:56:30.0764 8032 wercplsupport - ok
16:56:30.0811 8032 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\windows\System32\WerSvc.dll
16:56:30.0826 8032 WerSvc - ok
16:56:30.0873 8032 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
16:56:30.0873 8032 WfpLwf - ok
16:56:30.0920 8032 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\windows\system32\drivers\wimmount.sys
16:56:30.0920 8032 WIMMount - ok
16:56:31.0014 8032 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
16:56:31.0045 8032 WinDefend - ok
16:56:31.0076 8032 WinHttpAutoProxySvc - ok
16:56:31.0154 8032 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
16:56:31.0170 8032 Winmgmt - ok
16:56:31.0263 8032 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\windows\system32\WsmSvc.dll
16:56:31.0326 8032 WinRM - ok
16:56:31.0419 8032 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
16:56:31.0450 8032 WinUsb - ok
16:56:31.0528 8032 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\windows\System32\wlansvc.dll
16:56:31.0560 8032 Wlansvc - ok
16:56:31.0653 8032 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:56:31.0653 8032 wlcrasvc - ok
16:56:31.0794 8032 [ 0A70F4022EC2E14C159EFC4F69AA2477 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:56:31.0872 8032 wlidsvc - ok
16:56:31.0903 8032 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
16:56:31.0903 8032 WmiAcpi - ok
16:56:31.0965 8032 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
16:56:31.0981 8032 wmiApSrv - ok
16:56:32.0074 8032 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
16:56:32.0121 8032 WMPNetworkSvc - ok
16:56:32.0168 8032 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\windows\System32\wpcsvc.dll
16:56:32.0184 8032 WPCSvc - ok
16:56:32.0199 8032 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
16:56:32.0215 8032 WPDBusEnum - ok
16:56:32.0262 8032 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
16:56:32.0262 8032 ws2ifsl - ok
16:56:32.0324 8032 [ A661A76333057B383A06E65F0073222F ] wscsvc C:\windows\System32\wscsvc.dll
16:56:32.0324 8032 wscsvc - ok
16:56:32.0355 8032 WSearch - ok
16:56:32.0480 8032 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\windows\system32\wuaueng.dll
16:56:32.0558 8032 wuauserv - ok
16:56:32.0620 8032 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
16:56:32.0620 8032 WudfPf - ok
16:56:32.0667 8032 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
16:56:32.0683 8032 WUDFRd - ok
16:56:32.0745 8032 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\windows\System32\WUDFSvc.dll
16:56:32.0745 8032 wudfsvc - ok
16:56:32.0792 8032 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\windows\System32\wwansvc.dll
16:56:32.0808 8032 WwanSvc - ok
16:56:32.0932 8032 ================ Scan global ===============================
16:56:32.0979 8032 [ 9A595DF601070DA78C40481120DD2C06 ] C:\windows\system32\basesrv.dll
16:56:33.0026 8032 [ 8531AAF69394EFB93BC653916C46D245 ] C:\windows\system32\winsrv.dll
16:56:33.0057 8032 [ 8531AAF69394EFB93BC653916C46D245 ] C:\windows\system32\winsrv.dll
16:56:33.0104 8032 [ 364455805E64882844EE9ACB72522830 ] C:\windows\system32\sxssrv.dll
16:56:33.0151 8032 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\windows\system32\services.exe
16:56:33.0166 8032 [Global] - ok
16:56:33.0166 8032 ================ Scan MBR ==================================
16:56:33.0182 8032 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:56:33.0712 8032 \Device\Harddisk0\DR0 - ok
16:56:33.0712 8032 ================ Scan VBR ==================================
16:56:33.0728 8032 [ FF30EB91C7556F6EE7F9A6A29FB52DED ] \Device\Harddisk0\DR0\Partition1
16:56:33.0728 8032 \Device\Harddisk0\DR0\Partition1 - ok
16:56:33.0775 8032 [ 4BC58C8C389E4FB863C104F02F26A64E ] \Device\Harddisk0\DR0\Partition2
16:56:33.0775 8032 \Device\Harddisk0\DR0\Partition2 - ok
16:56:33.0775 8032 ============================================================
16:56:33.0775 8032 Scan finished
16:56:33.0775 8032 ============================================================
16:56:33.0822 3528 Detected object count: 0
16:56:33.0822 3528 Actual detected object count: 0
16:56:55.0053 6448 Deinitialize success

madleska · #12 Příspěvek od **madleska** » 14 bře 2013 17:13

All processes killed
========== FILES ==========
C:\Program Files\Fighters\FULL-DISKfighter folder moved successfully.
C:\Program Files\Fighters folder moved successfully.
< ipconfig /flushdns /c >
Konfigurace protokolu IP syst‚mu Windows
MezipamŘś pýekl d nˇ DNS byla ŁspŘçnŘ vypr zdnŘna.
C:\Users\Madleska\Desktop\cmd.bat deleted successfully.
C:\Users\Madleska\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Madleska
->Temp folder emptied: 18618 bytes
->Temporary Internet Files folder emptied: 12066653 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 492 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6482 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 12.00 mb

C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 03142013_170328

Files\Folders moved on Reboot...
C:\Users\Madleska\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TWS38BZO\afr[1].php moved successfully.
C:\Users\Madleska\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KSV6PLEL\ads[4].txt moved successfully.
C:\Users\Madleska\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KSV6PLEL\zrt_lookup[1].html moved successfully.
C:\Users\Madleska\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

madleska · #13 Příspěvek od **madleska** » 14 bře 2013 17:14

Tak je to všechno...

#14 Příspěvek od **stell** » 14 bře 2013 17:16

Ako to vyzera s pocitacom??
Ok, este na zaver spust Combofix a uvidime.
http://www.bleepingcomputer.com/combofi ... t-combofix
Log vloz sem.

madleska · #15 Příspěvek od **madleska** » 14 bře 2013 18:38

ComboFix 13-03-14.02 - Madleska 14.03.2013 17:51:57.1.2 - x86
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.2038.1142 [GMT 1:00]
Spuštěný z: c:\users\Madleska\Downloads\ComboFix.exe
AV: AVG Anti-Virus 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\muzapp.exe
c:\windows\system32\System32\MASetupCleaner.exe
c:\windows\system32\System32\muzapp.exe
c:\windows\system32\Thumbs.db
c:\programdata\VodafoneConnectorService.log . . . . nemohl být smazán
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-14 do 2013-03-14 )))))))))))))))))))))))))))))))
.
.
2013-03-14 17:10 . 2013-03-14 17:10 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-14 16:03 . 2013-03-14 16:03 -------- d-----w- C:\_OTL
2013-03-14 15:38 . 2013-03-14 15:44 -------- d-----w- C:\UsbFix
2013-03-14 14:30 . 2013-03-14 14:30 -------- d-----w- c:\windows\ERUNT
2013-03-14 14:30 . 2013-03-14 14:30 -------- d-----w- C:\JRT
2013-03-14 13:25 . 2013-03-14 13:25 -------- d-----w- C:\rsit
2013-03-05 21:23 . 2012-08-21 12:01 26840 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2013-03-05 21:22 . 2013-03-05 21:22 -------- d-----w- c:\program files\iPod
2013-03-05 21:22 . 2013-03-05 21:23 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-03-05 21:22 . 2013-03-05 21:23 -------- d-----w- c:\program files\iTunes
2013-03-05 17:00 . 2013-03-05 17:00 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-02-16 17:50 . 2013-03-14 16:13 -------- d-----w- c:\users\Madleska\AppData\Roaming\Seznam.cz
2013-02-16 09:38 . 2013-02-16 09:38 -------- d-----w- c:\program files\Common Files\Skype
2013-02-16 09:38 . 2013-02-16 09:38 -------- d-----r- c:\program files\Skype
2013-02-16 08:40 . 2013-02-16 08:42 -------- d-----w- c:\users\Madleska\AppData\Roaming\Apple Computer
2013-02-16 08:40 . 2013-02-16 08:40 -------- d-----w- c:\users\Madleska\AppData\Local\Apple Computer
2013-02-16 08:38 . 2013-02-16 08:38 -------- d-----w- c:\programdata\Apple Computer
2013-02-16 08:34 . 2013-02-16 08:34 -------- d-----w- c:\users\Madleska\AppData\Local\Apple
2013-02-16 08:33 . 2013-02-16 08:33 -------- d-----w- c:\program files\Apple Software Update
2013-02-16 08:32 . 2013-02-16 08:32 -------- d-----w- c:\program files\Bonjour
2013-02-16 08:31 . 2013-03-05 21:22 -------- d-----w- c:\program files\Common Files\Apple
2013-02-16 08:31 . 2013-02-16 08:33 -------- d-----w- c:\programdata\Apple
2013-02-15 22:31 . 2013-02-15 22:31 186432 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
2013-02-14 00:04 . 2013-01-04 03:00 2345984 ----a-w- c:\windows\system32\win32k.sys
2013-02-14 00:03 . 2013-01-05 05:02 3957608 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-02-14 00:03 . 2013-01-05 05:02 3902312 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-14 00:03 . 2013-01-04 04:55 1287528 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-14 00:03 . 2013-01-04 04:55 187240 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-08 18:42 . 2011-12-22 10:10 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-08 18:42 . 2011-06-06 16:52 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-05 17:00 . 2011-12-22 12:58 861088 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-03-05 17:00 . 2010-06-24 13:27 782240 ----a-w- c:\windows\system32\deployJava1.dll
2012-12-16 14:25 . 2012-12-24 13:20 295424 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:25 . 2012-12-24 13:20 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-06-02 13:56 . 2009-10-11 13:48 3211616 ----a-w- c:\program files\tcmd750a.exe
2010-06-02 13:56 . 2009-08-07 12:50 57187288 ----a-w- c:\program files\Nero-9.4.12.3_free.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-01-08 18705664]
"cz.seznam.software.autoupdate"="c:\users\Madleska\AppData\Roaming\Seznam.cz\szninstall.exe" [2012-09-13 1009288]
"cz.seznam.software.szndesktop"="c:\users\Madleska\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" [2012-12-19 92296]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-20 1545512]
"SynAsusAcpi"="c:\program files\Synaptics\SynTP\SynAsusAcpi.exe" [2009-07-20 83240]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-01 137752]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-01 354840]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-09-29 7744032]
"LivCam"="c:\program files\ASUS\LivCam\LivCam.exe" [2009-11-19 284160]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-02-20 152392]
.
c:\users\Madleska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-2 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk]
backup=c:\windows\pss\AsusVibeLauncher.lnk.CommonStartup
backupExtension=.CommonStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EeeStorageBackup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ACSW14EN]
2011-09-19 23:57 1231472 ----a-w- c:\program files\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eee Docking]
2009-09-25 22:02 402608 ----a-w- c:\program files\ASUS\Eee Docking\Eee Docking.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FileHippo.com]
2010-08-09 12:47 248832 ----a-w- c:\program files\FileHippo.com\UpdateChecker.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyMon]
2011-07-13 07:38 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
2011-07-13 07:38 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2010-06-09 18:55 49208 ----a-w- c:\program files\HP\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
2011-07-13 07:38 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 08:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
2011-07-13 07:38 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R2 Suite Service;Suite Service;c:\program files\Fighters\FighterSuiteService.exe [x]
R3 Common Toolkit Tools;Common Toolkit Tools;c:\program files\Fighters\FULL-DISKfighter\Common Toolkit Tools.exe [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [x]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [x]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [x]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [x]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [x]
S2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [x]
S2 AsusService;Asus Launcher Service;c:\windows\System32\AsusService.exe [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [x]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [x]
S2 VodafoneConnectorService;Vodafone Connector Service;c:\program files\Vodafone\Via The Phone\VodafoneConnectorService.exe [x]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdriverx.sys [x]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfilterx.sys [x]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\avgidsshimx.sys [x]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [x]
S3 igd;igd;c:\windows\system32\DRIVERS\igdkmd32.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x86.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - FSUSBEXDISK
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-06 15:28 1630672 ----a-w- c:\program files\Google\Chrome\Application\25.0.1364.152\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2011-12-22 18:42]
.
2013-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-02 13:46]
.
2013-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-02 13:46]
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 217.30.64.53 217.30.64.54
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-CommonToolkitTray - c:\program files\Fighters\Tray\FightersTray.exe
AddRemove-FULL-DISKfighter - c:\program files\Fighters\FULL-DISKfighter\Uninstall.exe
AddRemove-SLOW-PCfighter - c:\program files\Fighters\SLOW-PCfighter\Uninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.032"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.abr"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.ani"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.apd"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.arw"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.bay"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.bmp"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.bw"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.cr2"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.crw"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.cs1"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.cur"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.dcr"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.dcx"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.dib"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.djv"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.djvu"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.dng"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.emf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.eps"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.erf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.fff"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.fpx"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.gif"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.hdr"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.icl"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.icn"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.iff"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.ilbm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.int"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.inta"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.iw4"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.j2c"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.j2k"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.jbr"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.jfif"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.jif"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.jp2"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.jpc"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.jpe"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.jpeg"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.jpg"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.jpk"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.jpx"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.kdc"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.lbm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.mef"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.mos"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.mrw"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.nef"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nrw\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.nrw"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.orf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pbm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pbr"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pcd"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pct"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pcx"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.pef"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pgm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pic"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pict"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pix"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.png"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.ppm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.psd"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.psp"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pspbrush"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.pspimage"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.raf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.ras"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.raw"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.rgb"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.rgba"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.rle"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.rsb"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.rw2"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.rwl"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.sgi"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.sr2"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.srf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.srw"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.tga"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.thm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.tif"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-3615316729-2245769125-108544927-1001)
"Progid"="ACDSee 14.tiff"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.ttc"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.ttf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v14o\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.v14o"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v14p\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.v14p"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v14pf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.v14pf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.wbm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.wbmp"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.wmf"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.xbm"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.xif"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.xmp"
.
[HKEY_USERS\S-1-5-21-3615316729-2245769125-108544927-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 14.xpm"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(1528)
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\progra~1\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\AVG\AVG2012\avgnsx.exe
c:\windows\system32\taskhost.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\windows\system32\conhost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\DllHost.exe
.
**************************************************************************
.
Celkový čas: 2013-03-14 18:22:21 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-03-14 17:22
.
Před spuštěním: Volných bajtů: 56 639 135 744
Po spuštění: Volných bajtů: 56 439 414 784
.
- - End Of File - - 517C3E99C605F6E72E161FEE5DC94373

VIRY.CZ

Pomalý internet, nefunguje pořádně žádný prohlížeč

Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč

Re: Pomalý internet, nefunguje pořádně žádný prohlížeč