Witam pare miesiecy temu mialem format kompa dysk C uszkodzony { wymiana } ale do rzeczy nie uzywalem zadnych programow antywirosowych tydzien temu przegladajac strone YouTube stalo sie twoj komputer zostal zatakowany przez *ROBOT* to cos praktycznie przejelo kontrole nad moim kompem zmieniajac przegladarke OPERA na wersje anglojezyczna wylaczylo ciasteczka co uniemozliwilo gdziekolwiek zalogowanie sie pobralem program TDSS KILLER ktory wykryl 7 trojanow i kilka inne wirki PUP nw nawed co to, usunolem ale po robocie ni sladu i problem nadal, pobralem nastepnie pr, Advanced Spyware ktory wyczyscil ciasteczka, nastepnie sciaglem program MalwareBytes Anti-Malware ktory znalazl to cos, ROBOT&malware czy jakos tak usunolem uff jak reka odjol wszystko wrocilo do normy, az do pewnego momentu gdzie pr, TDSSKILER zaczol znajdywac i raportowac TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35, mozna to usunac ale po paru dniach znow to najduje i raportóje, z kolei pr, Malwarebytes znajduje Registry key i rowniez usowam ale sytuacja sie powtarza po pewnym czasie powraca, nie stety moj komputer jest za slaby by korzystac z pr antywirusowego po prostu muli. 1 LOG z pr TDSS KILLER 18:42:52.0109 3668 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
18:42:53.0187 3668 ============================================================
18:42:53.0187 3668 Current date / time: 2012/07/26 18:42:53.0187
18:42:53.0187 3668 SystemInfo:
18:42:53.0187 3668
18:42:53.0187 3668 OS Version: 5.1.2600 ServicePack: 3.0
18:42:53.0187 3668 Product type: Workstation
18:42:53.0187 3668 ComputerName: OPEN
18:42:53.0187 3668 UserName: testerek
18:42:53.0187 3668 Windows directory: C:\WINDOWS
18:42:53.0187 3668 System windows directory: C:\WINDOWS
18:42:53.0187 3668 Processor architecture: Intel x86
18:42:53.0187 3668 Number of processors: 1
18:42:53.0187 3668 Page size: 0x1000
18:42:53.0187 3668 Boot type: Normal boot
18:42:53.0187 3668 ============================================================
18:42:54.0781 3668 Drive \Device\Harddisk0\DR0 - Size: 0x25432CDE00 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type ‘K0’, Flags 0x00000054
18:42:54.0781 3668 ============================================================
18:42:54.0781 3668 \Device\Harddisk0\DR0:
18:42:54.0781 3668 MBR partitions:
18:42:54.0781 3668 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x61A6301
18:42:54.0796 3668 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x61A637F, BlocksNum 0xC86E881
18:42:54.0796 3668 ============================================================
18:42:54.0890 3668 C: <-> \Device\Harddisk0\DR0\Partition0
18:42:55.0015 3668 D: <-> \Device\Harddisk0\DR0\Partition1
18:42:55.0015 3668 ============================================================
18:42:55.0015 3668 Initialize success
18:42:55.0015 3668 ============================================================
18:42:57.0703 3692 ============================================================
18:42:57.0703 3692 Scan started
18:42:57.0703 3692 Mode: Manual;
18:42:57.0703 3692 ============================================================
18:42:58.0343 3692 Scan interrupted by user!
18:42:58.0343 3692 Scan interrupted by user!
18:42:58.0343 3692 Scan interrupted by user!
18:42:58.0343 3692 ============================================================
18:42:58.0343 3692 Scan finished
18:42:58.0343 3692 ============================================================
18:42:58.0375 3684 Detected object count: 0
18:42:58.0375 3684 Actual detected object count: 0
18:42:59.0125 3704 ============================================================
18:42:59.0125 3704 Scan started
18:42:59.0125 3704 Mode: Manual;
18:42:59.0125 3704 ============================================================
18:42:59.0468 3704 Abiosdsk - ok
18:42:59.0500 3704 abp480n5 - ok
18:43:00.0406 3704 ACPI (05118282f5d039595a2b92b4a4afe197) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:43:00.0531 3704 ACPI - ok
18:43:00.0593 3704 ACPIEC (66a42b7db194e24b973bbcce840a0f3f) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:43:00.0593 3704 ACPIEC - ok
18:43:01.0156 3704 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:43:01.0171 3704 AdobeFlashPlayerUpdateSvc - ok
18:43:01.0187 3704 adpu160m - ok
18:43:01.0281 3704 aeaudio (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys
18:43:01.0296 3704 aeaudio - ok
18:43:01.0468 3704 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:43:01.0468 3704 aec - ok
18:43:01.0531 3704 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
18:43:01.0546 3704 AFD - ok
18:43:01.0562 3704 Aha154x - ok
18:43:01.0656 3704 aic78u2 - ok
18:43:01.0671 3704 aic78xx - ok
18:43:01.0718 3704 Alerter (27af056d8c42f0ab3cf1dfdcbbeb3243) C:\WINDOWS\system32\alrsvc.dll
18:43:01.0718 3704 Alerter - ok
18:43:01.0734 3704 ALG (d1738dddff196c5cee6d867c136af745) C:\WINDOWS\System32\alg.exe
18:43:01.0734 3704 ALG - ok
18:43:01.0750 3704 AliIde - ok
18:43:01.0781 3704 AmdK7 (6f41705041a671feb1fc8cfbadbb90ca) C:\WINDOWS\system32\DRIVERS\amdk7.sys
18:43:01.0781 3704 AmdK7 - ok
18:43:01.0812 3704 amsint - ok
18:43:01.0890 3704 AppMgmt (1561430da2f2ab81cc0ce71af95a778d) C:\WINDOWS\System32\appmgmts.dll
18:43:01.0890 3704 AppMgmt - ok
18:43:01.0906 3704 asc - ok
18:43:01.0921 3704 asc3350p - ok
18:43:01.0937 3704 asc3550 - ok
18:43:02.0000 3704 aspnet_state (4eabf511b1af176a971c3271e48fa3a8) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:43:02.0015 3704 aspnet_state - ok
18:43:02.0203 3704 ASRservice (2133a6ccbe84dded48dc3e3b075ead1c) D:\Advanced Spyware Remover\ASRsrv.exe
18:43:02.0218 3704 ASRservice - ok
18:43:02.0250 3704 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:43:02.0250 3704 AsyncMac - ok
18:43:02.0312 3704 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:43:02.0312 3704 atapi - ok
18:43:02.0343 3704 Atdisk - ok
18:43:02.0484 3704 ati2mtag (d1333ac9ec252997bc3a19dd432dc42d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:43:02.0500 3704 ati2mtag - ok
18:43:02.0546 3704 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:43:02.0546 3704 Atmarpc - ok
18:43:02.0609 3704 AudioSrv (3a28d3e7bad0eed3810cd918b2525b54) C:\WINDOWS\System32\audiosrv.dll
18:43:02.0609 3704 AudioSrv - ok
18:43:02.0640 3704 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:43:02.0640 3704 audstub - ok
18:43:02.0703 3704 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:43:02.0703 3704 Beep - ok
18:43:02.0843 3704 BITS (78200faa6fd9c69394134c238c87fb7f) C:\WINDOWS\system32\qmgr.dll
18:43:02.0859 3704 BITS - ok
18:43:02.0906 3704 Browser (b98ed6d85339a66a73f32fb569eb6c01) C:\WINDOWS\System32\browser.dll
18:43:02.0906 3704 Browser - ok
18:43:02.0953 3704 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:43:02.0953 3704 cbidf2k - ok
18:43:02.0984 3704 cd20xrnt - ok
18:43:03.0015 3704 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:43:03.0015 3704 Cdaudio - ok
18:43:03.0062 3704 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:43:03.0062 3704 Cdfs - ok
18:43:03.0109 3704 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:43:03.0109 3704 Cdrom - ok
18:43:03.0140 3704 Changer - ok
18:43:03.0187 3704 CiSvc (45b63df2fb498d219fcbb4425cade676) C:\WINDOWS\system32\cisvc.exe
18:43:03.0187 3704 CiSvc - ok
18:43:03.0234 3704 ClipSrv (c94f1b6f61858d6389c0fa06954fb9c4) C:\WINDOWS\system32\clipsrv.exe
18:43:03.0234 3704 ClipSrv - ok
18:43:03.0328 3704 clr_optimization_v2.0.50727_32 (234b1bc2796483e1f5c3f26649fb3388) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:43:03.0343 3704 clr_optimization_v2.0.50727_32 - ok
18:43:03.0359 3704 CmdIde - ok
18:43:03.0406 3704 COMSysApp - ok
18:43:03.0484 3704 Cpqarray - ok
18:43:03.0562 3704 CryptSvc (6b105fe95f2e9f0b6346044ba59d41c9) C:\WINDOWS\System32\cryptsvc.dll
18:43:03.0562 3704 CryptSvc - ok
18:43:03.0593 3704 dac2w2k - ok
18:43:03.0609 3704 dac960nt - ok
18:43:03.0734 3704 DcomLaunch (02396dab9dd407b06539981f477f3fec) C:\WINDOWS\system32\rpcss.dll
18:43:03.0765 3704 DcomLaunch - ok
18:43:03.0875 3704 Dhcp (6b4afe7c676cff3eff2dc06a4ee945f7) C:\WINDOWS\System32\dhcpcsvc.dll
18:43:03.0890 3704 Dhcp - ok
18:43:03.0921 3704 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:43:03.0937 3704 Disk - ok
18:43:03.0937 3704 dmadmin - ok
18:43:04.0140 3704 dmboot (bc9219abc5696942e6f9ac8a9b28670f) C:\WINDOWS\system32\drivers\dmboot.sys
18:43:04.0171 3704 dmboot - ok
18:43:04.0203 3704 dmio (5fa232e3ba6e1346f9f5a7e519320cb0) C:\WINDOWS\system32\drivers\dmio.sys
18:43:04.0234 3704 dmio - ok
18:43:04.0265 3704 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:43:04.0265 3704 dmload - ok
18:43:04.0296 3704 dmserver (d858920a05076914d34b0388e8d96cc0) C:\WINDOWS\System32\dmserver.dll
18:43:04.0296 3704 dmserver - ok
18:43:04.0359 3704 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:43:04.0359 3704 DMusic - ok
18:43:04.0375 3704 Dnscache (4f7e82841ed3cf026bd8d5ce7c7379db) C:\WINDOWS\System32\dnsrslvr.dll
18:43:04.0390 3704 Dnscache - ok
18:43:04.0453 3704 Dot3svc (e0b7d66cf29d9adccf873c77821cd4ca) C:\WINDOWS\System32\dot3svc.dll
18:43:04.0468 3704 Dot3svc - ok
18:43:04.0484 3704 dpti2o - ok
18:43:04.0515 3704 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:43:04.0515 3704 drmkaud - ok
18:43:04.0578 3704 EagleXNt - ok
18:43:04.0625 3704 EapHost (5f256c1ad50fefdc442cd5aab58c7dd8) C:\WINDOWS\System32\eapsvc.dll
18:43:04.0625 3704 EapHost - ok
18:43:04.0656 3704 ERSvc (ed1b71382c31fd2cf3cdc4672efad6ea) C:\WINDOWS\System32\ersvc.dll
18:43:04.0656 3704 ERSvc - ok
18:43:04.0734 3704 Eventlog (3e3ae424e27c4cefe4cab368c7b570ea) C:\WINDOWS\system32\services.exe
18:43:04.0734 3704 Eventlog - ok
18:43:04.0796 3704 EventSystem (be1b1412a3d488c50b8f67f792196108) C:\WINDOWS\system32\es.dll
18:43:04.0812 3704 EventSystem - ok
18:43:04.0859 3704 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:43:04.0859 3704 Fastfat - ok
18:43:04.0921 3704 FastUserSwitchingCompatibility (8ad90ed829b8404d962545ed3efb1129) C:\WINDOWS\System32\shsvcs.dll
18:43:04.0937 3704 FastUserSwitchingCompatibility - ok
18:43:04.0968 3704 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:43:04.0984 3704 Fdc - ok
18:43:05.0046 3704 FET5X86V (92cbce0913661ff966f9fb696a1775a5) C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys
18:43:05.0046 3704 FET5X86V - ok
18:43:05.0109 3704 Fips (09e2a4d33f81a06a8aab2ba0a0b5d235) C:\WINDOWS\system32\drivers\Fips.sys
18:43:05.0109 3704 Fips - ok
18:43:05.0140 3704 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:43:05.0140 3704 Flpydisk - ok
18:43:05.0203 3704 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
18:43:05.0203 3704 FltMgr - ok
18:43:05.0281 3704 FontCache3.0.0.0 (993883524aa9cf1c90e1545411a9ac9c) C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:43:05.0312 3704 FontCache3.0.0.0 - ok
18:43:05.0359 3704 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:43:05.0359 3704 Fs_Rec - ok
18:43:05.0421 3704 Ftdisk (ed6d921d8ab423138fb35beee6d6a6cb) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:43:05.0421 3704 Ftdisk - ok
18:43:05.0453 3704 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
18:43:05.0453 3704 gameenum - ok
18:43:05.0515 3704 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:43:05.0515 3704 Gpc - ok
18:43:05.0593 3704 helpsvc (af752014f7eb61542e3f35b9374d7e76) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:43:05.0593 3704 helpsvc - ok
18:43:05.0640 3704 HidServ (1776c3b6069eeecc8042535296c1866a) C:\WINDOWS\System32\hidserv.dll
18:43:05.0640 3704 HidServ - ok
18:43:05.0687 3704 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:43:05.0687 3704 HidUsb - ok
18:43:05.0718 3704 hkmsvc (f0273916da6fb64cc88e0bd77619554f) C:\WINDOWS\System32\kmsvc.dll
18:43:05.0718 3704 hkmsvc - ok
18:43:05.0750 3704 hpn - ok
18:43:05.0843 3704 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
18:43:05.0859 3704 HTTP - ok
18:43:05.0890 3704 HTTPFilter (aa268079ac119f3a596e5e27aee4bd17) C:\WINDOWS\System32\w3ssl.dll
18:43:05.0890 3704 HTTPFilter - ok
18:43:05.0921 3704 i2omgmt - ok
18:43:05.0953 3704 i2omp - ok
18:43:06.0015 3704 i8042prt (177b372af55c4460d0968b5f1d02aa1c) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:43:06.0015 3704 i8042prt - ok
18:43:06.0234 3704 idsvc (e7cc3aeaed9893a88876744cd439f76c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:43:06.0265 3704 idsvc - ok
18:43:06.0312 3704 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:43:06.0312 3704 Imapi - ok
18:43:06.0390 3704 ImapiService (9125af650608a921f98a789e5c5ba864) C:\WINDOWS\system32\imapi.exe
18:43:06.0406 3704 ImapiService - ok
18:43:06.0437 3704 ini910u - ok
18:43:06.0500 3704 IntelIde - ok
18:43:06.0546 3704 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
18:43:06.0546 3704 Ip6Fw - ok
18:43:06.0578 3704 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:43:06.0593 3704 IpFilterDriver - ok
18:43:06.0609 3704 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:43:06.0609 3704 IpInIp - ok
18:43:06.0671 3704 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:43:06.0703 3704 IpNat - ok
18:43:06.0718 3704 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:43:06.0718 3704 IPSec - ok
18:43:06.0765 3704 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:43:06.0765 3704 IRENUM - ok
18:43:06.0843 3704 isapnp (c8eef2e93835b81bd335de2123121283) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:43:06.0843 3704 isapnp - ok
18:43:06.0937 3704 JavaQuickStarterService (5472d771c0197355c1d347f20392b982) C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
18:43:06.0937 3704 JavaQuickStarterService - ok
18:43:07.0000 3704 Kbdclass (2aeca45d4aeaacbdcb77ad11184e4601) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:43:07.0015 3704 Kbdclass - ok
18:43:07.0062 3704 kbdhid (f718dcddac2544bc693f22977d06f78b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:43:07.0062 3704 kbdhid - ok
18:43:07.0140 3704 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:43:07.0140 3704 kmixer - ok
18:43:07.0187 3704 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
18:43:07.0187 3704 KSecDD - ok
18:43:07.0281 3704 LanmanServer (427f50a24aa35597a9a5e8fbf029590f) C:\WINDOWS\System32\srvsvc.dll
18:43:07.0281 3704 LanmanServer - ok
18:43:07.0359 3704 lanmanworkstation (92c7c0c7f4248f1b9f6872bab9053523) C:\WINDOWS\System32\wkssvc.dll
18:43:07.0375 3704 lanmanworkstation - ok
18:43:07.0390 3704 lbrtfdc - ok
18:43:07.0484 3704 LmHosts (437aa83d68f9fac234ca68dbd40db705) C:\WINDOWS\System32\lmhsvc.dll
18:43:07.0484 3704 LmHosts - ok
18:43:07.0562 3704 Messenger (36f3ab18b1be303da51de90a67de3942) C:\WINDOWS\System32\msgsvc.dll
18:43:07.0562 3704 Messenger - ok
18:43:07.0593 3704 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:43:07.0593 3704 mnmdd - ok
18:43:07.0640 3704 mnmsrvc (845814a8cb9d704d030f076e1bce83f3) C:\WINDOWS\system32\mnmsrvc.exe
18:43:07.0656 3704 mnmsrvc - ok
18:43:07.0671 3704 Modem (4a068db7dc37d5afedb6512d2931d7b3) C:\WINDOWS\system32\drivers\Modem.sys
18:43:07.0687 3704 Modem - ok
18:43:07.0718 3704 Mouclass (fbed3df6b884f8cf00447b73507f2c48) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:43:07.0718 3704 Mouclass - ok
18:43:07.0765 3704 mouhid (ecec1e6cd558ab80f944f31326e9d3b5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:43:07.0765 3704 mouhid - ok
18:43:07.0828 3704 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:43:07.0828 3704 MountMgr - ok
18:43:07.0875 3704 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:43:07.0890 3704 MozillaMaintenance - ok
18:43:07.0906 3704 mraid35x - ok
18:43:08.0015 3704 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:43:08.0015 3704 MRxDAV - ok
18:43:08.0171 3704 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:43:08.0187 3704 MRxSmb - ok
18:43:08.0234 3704 MSDTC (a54c5eecc7d3424824410bae0aa6c371) C:\WINDOWS\system32\msdtc.exe
18:43:08.0250 3704 MSDTC - ok
18:43:08.0312 3704 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:43:08.0312 3704 Msfs - ok
18:43:08.0343 3704 MSIServer - ok
18:43:08.0359 3704 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:43:08.0375 3704 MSKSSRV - ok
18:43:08.0421 3704 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:43:08.0421 3704 MSPCLOCK - ok
18:43:08.0468 3704 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:43:08.0468 3704 MSPQM - ok
18:43:08.0500 3704 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:43:08.0500 3704 mssmbios - ok
18:43:08.0562 3704 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
18:43:08.0562 3704 Mup - ok
18:43:08.0718 3704 napagent (14cb8528e17d1221c50fc8ca88b1795f) C:\WINDOWS\System32\qagentrt.dll
18:43:08.0718 3704 napagent - ok
18:43:08.0843 3704 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:43:08.0859 3704 NDIS - ok
18:43:08.0875 3704 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:43:08.0875 3704 NdisTapi - ok
18:43:08.0921 3704 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:43:08.0921 3704 Ndisuio - ok
18:43:08.0953 3704 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:43:08.0968 3704 NdisWan - ok
18:43:09.0000 3704 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
18:43:09.0000 3704 NDProxy - ok
18:43:09.0046 3704 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:43:09.0046 3704 NetBIOS - ok
18:43:09.0093 3704 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:43:09.0109 3704 NetBT - ok
18:43:09.0171 3704 NetDDE (cbb409b314309fcffce5e682e91338c6) C:\WINDOWS\system32\netdde.exe
18:43:09.0171 3704 NetDDE - ok
18:43:09.0218 3704 NetDDEdsdm (cbb409b314309fcffce5e682e91338c6) C:\WINDOWS\system32\netdde.exe
18:43:09.0234 3704 NetDDEdsdm - ok
18:43:09.0281 3704 Netlogon (88296f7943f30a1ee3af735440b92268) C:\WINDOWS\system32\lsass.exe
18:43:09.0281 3704 Netlogon - ok
18:43:09.0375 3704 Netman (4fe97d0b1b182df2a9bdd4c02155ef5e) C:\WINDOWS\System32\netman.dll
18:43:09.0375 3704 Netman - ok
18:43:09.0484 3704 NetTcpPortSharing (f9102685f97f9ba85f4a70afcf722cfe) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:43:09.0500 3704 NetTcpPortSharing - ok
18:43:09.0609 3704 Nla (612e31fcac1040edd78ecac81c9f859f) C:\WINDOWS\System32\mswsock.dll
18:43:09.0609 3704 Nla - ok
18:43:09.0671 3704 npf (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\npf.sys
18:43:09.0671 3704 npf - ok
18:43:09.0718 3704 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:43:09.0718 3704 Npfs - ok
18:43:09.0765 3704 npggsvc - ok
18:43:09.0812 3704 NPPTNT2 (9131fe60adfab595c8da53ad6a06aa31) C:\WINDOWS\system32\npptNT2.sys
18:43:09.0812 3704 NPPTNT2 - ok
18:43:09.0921 3704 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:43:09.0937 3704 Ntfs - ok
18:43:09.0953 3704 NtLmSsp (88296f7943f30a1ee3af735440b92268) C:\WINDOWS\system32\lsass.exe
18:43:09.0953 3704 NtLmSsp - ok
18:43:10.0078 3704 NtmsSvc (3fb5399dbb7001a80d58edad64c98225) C:\WINDOWS\system32\ntmssvc.dll
18:43:10.0093 3704 NtmsSvc - ok
18:43:10.0125 3704 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:43:10.0125 3704 Null - ok
18:43:10.0187 3704 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:43:10.0187 3704 NwlnkFlt - ok
18:43:10.0234 3704 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:43:10.0234 3704 NwlnkFwd - ok
18:43:10.0296 3704 Parport (2d4cdaebced17743aa9e25d3016dc229) C:\WINDOWS\system32\DRIVERS\parport.sys
18:43:10.0296 3704 Parport - ok
18:43:10.0343 3704 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:43:10.0359 3704 PartMgr - ok
18:43:10.0390 3704 ParVdm (453ec2c2a20a1382f564541918520eeb) C:\WINDOWS\system32\drivers\ParVdm.sys
18:43:10.0390 3704 ParVdm - ok
18:43:10.0468 3704 PCI (6862c69168d787b85a7d95ccd33c694e) C:\WINDOWS\system32\DRIVERS\pci.sys
18:43:10.0468 3704 PCI - ok
18:43:10.0484 3704 PCIDump - ok
18:43:10.0515 3704 PCIIde - ok
18:43:10.0609 3704 Pcmcia (8db27f1ae9593c94095485305a583862) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:43:10.0609 3704 Pcmcia - ok
18:43:10.0625 3704 PDCOMP - ok
18:43:10.0656 3704 PDFRAME - ok
18:43:10.0703 3704 PDRELI - ok
18:43:10.0734 3704 PDRFRAME - ok
18:43:10.0765 3704 perc2 - ok
18:43:10.0796 3704 perc2hib - ok
18:43:10.0921 3704 PlugPlay (3e3ae424e27c4cefe4cab368c7b570ea) C:\WINDOWS\system32\services.exe
18:43:10.0921 3704 PlugPlay - ok
18:43:10.0968 3704 PolicyAgent (88296f7943f30a1ee3af735440b92268) C:\WINDOWS\system32\lsass.exe
18:43:10.0968 3704 PolicyAgent - ok
18:43:11.0000 3704 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:43:11.0015 3704 PptpMiniport - ok
18:43:11.0031 3704 ProtectedStorage (88296f7943f30a1ee3af735440b92268) C:\WINDOWS\system32\lsass.exe
18:43:11.0031 3704 ProtectedStorage - ok
18:43:11.0078 3704 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:43:11.0078 3704 PSched - ok
18:43:11.0109 3704 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:43:11.0109 3704 Ptilink - ok
18:43:11.0125 3704 ql1080 - ok
18:43:11.0156 3704 Ql10wnt - ok
18:43:11.0187 3704 ql12160 - ok
18:43:11.0234 3704 ql1240 - ok
18:43:11.0250 3704 ql1280 - ok
18:43:11.0296 3704 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:43:11.0296 3704 RasAcd - ok
18:43:11.0390 3704 RasAuto (bc22c5e1238d4d36d65679e249c483c3) C:\WINDOWS\System32\rasauto.dll
18:43:11.0406 3704 RasAuto - ok
18:43:11.0468 3704 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:43:11.0468 3704 Rasl2tp - ok
18:43:11.0562 3704 RasMan (0c392e397b8d34aaaf19ec6119cbb788) C:\WINDOWS\System32\rasmans.dll
18:43:11.0578 3704 RasMan - ok
18:43:11.0625 3704 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:43:11.0625 3704 RasPppoe - ok
18:43:11.0671 3704 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:43:11.0671 3704 Raspti - ok
18:43:11.0734 3704 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:43:11.0750 3704 Rdbss - ok
18:43:11.0765 3704 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:43:11.0765 3704 RDPCDD - ok
18:43:11.0890 3704 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:43:11.0906 3704 rdpdr - ok
18:43:12.0015 3704 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
18:43:12.0015 3704 RDPWD - ok
18:43:12.0109 3704 RDSessMgr (f83907a9a038db2e35329b039628d293) C:\WINDOWS\system32\sessmgr.exe
18:43:12.0109 3704 RDSessMgr - ok
18:43:12.0171 3704 redbook (e0c7bbd18040b58651bac700c804861d) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:43:12.0171 3704 redbook - ok
18:43:12.0250 3704 RemoteAccess (b3f57e6115bcd4dbade9874f300655e3) C:\WINDOWS\System32\mprdim.dll
18:43:12.0250 3704 RemoteAccess - ok
18:43:12.0296 3704 RemoteRegistry (b472b59ef98469c91651b751d3442cb8) C:\WINDOWS\system32\regsvc.dll
18:43:12.0312 3704 RemoteRegistry - ok
18:43:12.0359 3704 RpcLocator (6bc4d5a70f46ea27ddc14e5414c862a5) C:\WINDOWS\system32\locator.exe
18:43:12.0359 3704 RpcLocator - ok
18:43:12.0468 3704 RpcSs (02396dab9dd407b06539981f477f3fec) C:\WINDOWS\system32\rpcss.dll
18:43:12.0468 3704 RpcSs - ok
18:43:12.0546 3704 RSVP (9acee3313020a01235336c2a483afd1a) C:\WINDOWS\system32\rsvp.exe
18:43:12.0562 3704 RSVP - ok
18:43:12.0593 3704 SamSs (88296f7943f30a1ee3af735440b92268) C:\WINDOWS\system32\lsass.exe
18:43:12.0593 3704 SamSs - ok
18:43:12.0671 3704 SCardSvr (c6f479218e94896738c06af5ba6ab3d3) C:\WINDOWS\System32\SCardSvr.exe
18:43:12.0671 3704 SCardSvr - ok
18:43:12.0765 3704 Schedule (dd73c11a5c4d14945846384b90a61a4b) C:\WINDOWS\system32\schedsvc.dll
18:43:12.0781 3704 Schedule - ok
18:43:12.0812 3704 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:43:12.0812 3704 Secdrv - ok
18:43:12.0875 3704 seclogon (2aad9026648120fffe2a8d871bb2bbc7) C:\WINDOWS\System32\seclogon.dll
18:43:12.0875 3704 seclogon - ok
18:43:12.0890 3704 SENS (9d01e29d59723eb73b72107b208dafe6) C:\WINDOWS\system32\sens.dll
18:43:12.0890 3704 SENS - ok
18:43:12.0937 3704 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:43:12.0937 3704 serenum - ok
18:43:13.0000 3704 Serial (d07b02f88165e69b9f17162cf592c8a6) C:\WINDOWS\system32\DRIVERS\serial.sys
18:43:13.0000 3704 Serial - ok
18:43:13.0093 3704 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
18:43:13.0093 3704 Sfloppy - ok
18:43:13.0203 3704 SharedAccess (da5c015911f68f22ed821e9ee49ab233) C:\WINDOWS\System32\ipnathlp.dll
18:43:13.0203 3704 SharedAccess - ok
18:43:13.0250 3704 ShellHWDetection (8ad90ed829b8404d962545ed3efb1129) C:\WINDOWS\System32\shsvcs.dll
18:43:13.0265 3704 ShellHWDetection - ok
18:43:13.0281 3704 Simbad - ok
18:43:13.0906 3704 Skype C2C Service (0f97e7a47a52f4a36969f0fc319654c2) C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe
18:43:13.0937 3704 Skype C2C Service - ok
18:43:14.0046 3704 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files\Skype\Updater\Updater.exe
18:43:14.0062 3704 SkypeUpdate - ok
18:43:14.0359 3704 smwdm (1d381a07361e4d6a8be95026b3eba47a) C:\WINDOWS\system32\drivers\smwdm.sys
18:43:14.0375 3704 smwdm - ok
18:43:14.0421 3704 SoundMAX Agent Service (default) (3978f082274f723ad5a0a8058c2417dd) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
18:43:14.0421 3704 SoundMAX Agent Service (default) - ok
18:43:14.0453 3704 Sparrow - ok
18:43:14.0515 3704 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:43:14.0515 3704 splitter - ok
18:43:14.0578 3704 Spooler (dd69ec597ab942c39b950d9c3ce1375d) C:\WINDOWS\system32\spoolsv.exe
18:43:14.0578 3704 Spooler - ok
18:43:14.0640 3704 Sr (eb032822be406ef220d546ddffcf0002) C:\WINDOWS\system32\DRIVERS\sr.sys
18:43:14.0640 3704 Sr - ok
18:43:14.0703 3704 srservice (316d0e66074ae4cde641c50d3a1c5148) C:\WINDOWS\system32\srsvc.dll
18:43:14.0718 3704 srservice - ok
18:43:14.0859 3704 Srv (5252605079810904e31c332e241cd59b) C:\WINDOWS\system32\DRIVERS\srv.sys
18:43:14.0875 3704 Srv - ok
18:43:14.0921 3704 SSDPSRV (2c0b1224aa36b4ca1753302baa855882) C:\WINDOWS\System32\ssdpsrv.dll
18:43:14.0921 3704 SSDPSRV - ok
18:43:15.0031 3704 stisvc (41508ea375c97dc2b56e5f1afc067187) C:\WINDOWS\system32\wiaservc.dll
18:43:15.0046 3704 stisvc - ok
18:43:15.0078 3704 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:43:15.0078 3704 swenum - ok
18:43:15.0125 3704 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:43:15.0140 3704 swmidi - ok
18:43:15.0156 3704 SwPrv - ok
18:43:15.0187 3704 symc810 - ok
18:43:15.0234 3704 symc8xx - ok
18:43:15.0296 3704 sym_hi - ok
18:43:15.0343 3704 sym_u3 - ok
18:43:15.0359 3704 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:43:15.0359 3704 sysaudio - ok
18:43:15.0437 3704 SysmonLog (e42048198518f9162027a9984cbb7b5c) C:\WINDOWS\system32\smlogsvc.exe
18:43:15.0453 3704 SysmonLog - ok
18:43:15.0546 3704 TapiSrv (2340e6977548038c88e39a9ecbb3fadc) C:\WINDOWS\System32\tapisrv.dll
18:43:15.0562 3704 TapiSrv - ok
18:43:15.0656 3704 Tcpip (68f06fe0021b01e670af37b8c5964fdf) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:43:15.0671 3704 Tcpip - ok
18:43:15.0734 3704 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:43:15.0734 3704 TDPIPE - ok
18:43:15.0781 3704 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:43:15.0781 3704 TDTCP - ok
18:43:15.0828 3704 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:43:15.0828 3704 TermDD - ok
18:43:15.0890 3704 TermService (52e0505408edd4ab5ccc7f83b67b4299) C:\WINDOWS\System32\termsrv.dll
18:43:15.0906 3704 TermService - ok
18:43:15.0968 3704 Themes (8ad90ed829b8404d962545ed3efb1129) C:\WINDOWS\System32\shsvcs.dll
18:43:15.0968 3704 Themes - ok
18:43:16.0031 3704 TlntSvr (b17551ab6eaa71dca530632c15fa3d9a) C:\WINDOWS\system32\tlntsvr.exe
18:43:16.0046 3704 TlntSvr - ok
18:43:16.0078 3704 TosIde - ok
18:43:16.0171 3704 TrkWks (9e70eb419d7785c286dc458a019bab9b) C:\WINDOWS\system32\trkwks.dll
18:43:16.0171 3704 TrkWks - ok
18:43:16.0250 3704 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:43:16.0250 3704 Udfs - ok
18:43:16.0281 3704 ultra - ok
18:43:16.0390 3704 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:43:16.0406 3704 Update - ok
18:43:16.0468 3704 upnphost (e96a6baee0b2a14a38b45830d6e30697) C:\WINDOWS\System32\upnphost.dll
18:43:16.0468 3704 upnphost - ok
18:43:16.0515 3704 UPS (eb90e28b28541ec845e5345609355ca7) C:\WINDOWS\System32\ups.exe
18:43:16.0515 3704 UPS - ok
18:43:16.0578 3704 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:43:16.0578 3704 usbccgp - ok
18:43:16.0625 3704 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:43:16.0625 3704 usbehci - ok
18:43:16.0671 3704 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:43:16.0687 3704 usbhub - ok
18:43:16.0734 3704 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:43:16.0734 3704 USBSTOR - ok
18:43:16.0781 3704 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:43:16.0781 3704 usbuhci - ok
18:43:16.0843 3704 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:43:16.0843 3704 VgaSave - ok
18:43:16.0890 3704 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
18:43:16.0890 3704 ViaIde - ok
18:43:16.0953 3704 VolSnap (56b191ac5fc0df219949c95a6c87afe7) C:\WINDOWS\system32\drivers\VolSnap.sys
18:43:16.0953 3704 VolSnap - ok
18:43:17.0078 3704 VSS (7f2d7bffc4554e1c742dd3629fd1fb1b) C:\WINDOWS\System32\vssvc.exe
18:43:17.0078 3704 VSS - ok
18:43:17.0171 3704 W32Time (a672ca3981352f8e9c30fea056e80a62) C:\WINDOWS\system32\w32time.dll
18:43:17.0187 3704 W32Time - ok
18:43:17.0234 3704 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:43:17.0234 3704 Wanarp - ok
18:43:17.0265 3704 WDICA - ok
18:43:17.0328 3704 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:43:17.0328 3704 wdmaud - ok
18:43:17.0437 3704 Web Assistant Updater (efb3074bdbabe0a137d89d8e58f02392) C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
18:43:17.0453 3704 Web Assistant Updater - ok
18:43:17.0484 3704 WebClient (81fb88b975e25d76e00b69879d8a434c) C:\WINDOWS\System32\webclnt.dll
18:43:17.0500 3704 WebClient - ok
18:43:17.0578 3704 winmgmt (70c22297534a88b0ad0568900ab5a6d9) C:\WINDOWS\system32\wbem\WMIsvc.dll
18:43:17.0593 3704 winmgmt - ok
18:43:17.0703 3704 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
18:43:17.0703 3704 WmdmPmSN - ok
18:43:17.0875 3704 Wmi (968c967f8a9b96e7d63fdd5664c896e7) C:\WINDOWS\System32\advapi32.dll
18:43:17.0921 3704 Wmi - ok
18:43:18.0000 3704 WmiApSrv (a2b12d80a1670511b047a7d8bb647598) C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:43:18.0000 3704 WmiApSrv - ok
18:43:18.0203 3704 WMPNetworkSvc (cdfa647aa82fdba6c9c7a06155afcb40) C:\Program Files\Windows Media Player\WMPNetwk.exe
18:43:18.0218 3704 WMPNetworkSvc - ok
18:43:18.0296 3704 WPFFontCache_v0400 - ok
18:43:18.0375 3704 wscsvc (b6669f49d42e09bc0f9889faa0f3336d) C:\WINDOWS\system32\wscsvc.dll
18:43:18.0375 3704 wscsvc - ok
18:43:18.0453 3704 wuauserv (04550d5eb7ee82c115db547c01df09fd) C:\WINDOWS\system32\wuauserv.dll
18:43:18.0468 3704 wuauserv - ok
18:43:18.0562 3704 WZCSVC (c2842273aaa77ac031edb87fa19a2147) C:\WINDOWS\System32\wzcsvc.dll
18:43:18.0578 3704 WZCSVC - ok
18:43:18.0609 3704 XDva397 - ok
18:43:18.0687 3704 xmlprov (24ed6935771359a5aef1fe8bf0c56f39) C:\WINDOWS\System32\xmlprov.dll
18:43:18.0687 3704 xmlprov - ok
18:43:18.0734 3704 MBR (0x1B8) (32052574bf9f325ae309abc7bfd04460) \Device\Harddisk0\DR0
18:43:19.0593 3704 \Device\Harddisk0\DR0 - ok
18:43:19.0609 3704 Boot (0x1200) (e2c52ebc21fb000df201db17c377dcfa) \Device\Harddisk0\DR0\Partition0
18:43:19.0609 3704 \Device\Harddisk0\DR0\Partition0 - ok
18:43:19.0656 3704 Boot (0x1200) (f838192206c7d29e000e7d7dcdb1cd38) \Device\Harddisk0\DR0\Partition1
18:43:19.0656 3704 \Device\Harddisk0\DR0\Partition1 - ok
18:43:19.0687 3704 ============================================================
18:43:19.0687 3704 Scan finished
18:43:19.0687 3704 ============================================================
18:43:19.0718 3696 Detected object count: 0
18:43:19.0718 3696 Actual detected object count: 0
18:43:24.0281 3656 Deinitialize success
LOG Z PROGRAMU MALWAREBYTES: Malwarebytes Anti-Malware 1.62.0.1300
Wersja bazy: v2012.07.24.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
testerek :: OPEN [administrator]
2012-07-24 11:36:28
mbam-log-2012-07-24 (11-36-28).txt
Typ skanowania: Szybkie skanowanie
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 171909
Upłynęło: 4 minut(y), 5 sekund(y)
Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych kluczy rejestru: 4
HKCR\CLSID{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
HKCR\gencrawler_gc.GenCrawler (Trojan.Downloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
HKCU\Software\DC3_FEXEC (Malware.Trace) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)
Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)
wykrytych folderów: 1
C:\Documents and Settings\All Users\Dane aplikacji\DownloadnSave (PUP.DownloadnSave) -> Nie wykonano akcji.
Wykrytych plików: 8
C:\Documents and Settings\All Users\Dane aplikacji\DownloadnSave\bhoclass.dll (PUP.DownloadnSave) -> Nie wykonano akcji.
C:\Documents and Settings\All Users\Dane aplikacji\DownloadnSave\content.js (PUP.DownloadnSave) -> Nie wykonano akcji.
C:\Documents and Settings\All Users\Dane aplikacji\DownloadnSave\background.html (PUP.DownloadnSave) -> Nie wykonano akcji.
C:\Documents and Settings\All Users\Dane aplikacji\DownloadnSave\jkcmkpifpihhlkkbjfehamkiigljaome.crx (PUP.DownloadnSave) -> Nie wykonano akcji.
C:\Documents and Settings\All Users\Dane aplikacji\DownloadnSave\settings.ini (PUP.DownloadnSave) -> Nie wykonano akcji.
C:\Documents and Settings\testerek\Dane aplikacji\Media Finder\Extensions\gencrawler_gc.dll (Trojan.Downloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
C:\Documents and Settings\testerek\Ustawienia lokalne\Temp\ICReinstall_FLVPlayerSetup.exe (Adware.Agent) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
C:\Documents and Settings\testerek\Ustawienia lokalne\Temp\44343953.Uninstall\Uninstall.exe (Adware.Agent) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
(zakończone) 3 LOG GDZIE MAM TO COS REGISTRY KEY Malwarebytes Anti-Malware 1.62.0.1300
Wersja bazy: v2012.07.25.04
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
testerek :: OPEN [administrator]
2012-07-28 11:10:57
mbam-log-2012-07-28 (11-10-57).txt
Typ skanowania: Szybkie skanowanie
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 175914
Upłynęło: 5 minut(y), 19 sekund(y)
Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych kluczy rejestru: 1
HKCU\Software\DC3_FEXEC (Malware.Trace) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)
Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)
wykrytych folderów: 0
(Nie znaleziono zagrożeń)
Wykrytych plików: 0
(Nie znaleziono zagrożeń)
(zakończone)
Prosze o pomoc pozdrawiam.