Prosím o kontrolu logu Vyřešeno

[OTAS]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:06:32, on 5.7.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16618)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Users\DOMA\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: XmarksThumbnailsDLLBHO - {1BD0BEFE-F697-4eee-B7E1-76B849A5CB84} - C:\Program Files (x86)\Xmarks\Thumbnails for IE\xmarksthumbnails.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~1\BROWER~1\ASCPLU~1.DLL
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [Xmarks] C:\Program Files (x86)\Xmarks\IE Extension\xmarkssync.exe -q
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3888243311-4028355044-727952749-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3888243311-4028355044-727952749-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {638F11AA-DF27-433b-BA2E-7281CE561D71} - C:\Program Files (x86)\Xmarks\IE Extension\xmarkssync.exe (HKCU)
O9 - Extra 'Tools' menuitem: Xmarks for IE... - {638F11AA-DF27-433b-BA2E-7281CE561D71} - C:\Program Files (x86)\Xmarks\IE Extension\xmarkssync.exe (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: IMF Service (IMFservice) - Unknown owner - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10416 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[OTAS]

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.07.06.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
DOMA :: DOMA-PC [administrátor]

Ochrana: Zakázána

6.7.2013 20:29:28
mbam-log-2013-07-06 (20-29-28).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 232145
Uplynulý čas: 2 minut,

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)


# AdwCleaner v2.304 - Log vytvooen 06/07/2013 v 20:32:43
# Aktualizováno 03/07/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (64 bits)
# Uživatel : DOMA - DOMA-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\DOMA\Desktop\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****


***** [Soubory / Složky] *****


***** [Registry] *****


***** [Internetové prohlížeee] *****

-\\ Internet Explorer v10.0.9200.16618

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v22.0 (cs)

Soubor : C:\Users\DOMA\AppData\Roaming\Mozilla\Firefox\Profiles\05js2f1j.default\prefs.js

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [680 octets] - [06/07/2013 20:32:43]

########## EOF - C:\AdwCleaner[R1].txt - [739 octets] ##########

[jaro3]

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Jsou nějaké problémy?

[OTAS]

Chvílema zamrzá firefox za chvilku jsem dám log.

[OTAS]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Professional x64
Ran by DOMA on ne 07.07.2013 at 10:59:59,23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [File] C:\Users\DOMA\AppData\Roaming\mozilla\firefox\profiles\05js2f1j.default\user.js
Successfully deleted the following from C:\Users\DOMA\AppData\Roaming\mozilla\firefox\profiles\05js2f1j.default\prefs.js

user_pref("extensions.foxcub.config.encodedConfig", "{\"core\":{\"configUrl\":\"hxxp://download.seznam.cz/software/conf/\",\"updateUrl\":\"hxxp://download.seznam.cz/software/c
Emptied folder: C:\Users\DOMA\AppData\Roaming\mozilla\firefox\profiles\05js2f1j.default\minidumps [2 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 07.07.2013 at 11:09:41,39
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[OTAS]

RogueKiller V8.6.2 _x64_ [Jul 2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : hxxp://www.adlice.com/forum/
Webové stránky : hxxp://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : DOMA [Práva správce]
Mód : Kontrola -- Datum : 07/07/2013 11:14:52
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 9 ¤¤¤
[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKX-00ERMA0 ATA Device +++++
--- User ---
[MBR] 5dfd972e1e0ac4b5582fdf4d9196c1ac
[BSP] e24f332b90cee3dc99db91e402c676b7 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 476838 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_07072013_111452.txt >>
RKreport[0]_S_07072013_111239.txt

[memphisto]

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

[OTAS]

RogueKiller V8.6.2 _x64_ [Jul 2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : hxxp://www.adlice.com/forum/
Webové stránky : hxxp://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : DOMA [Práva správce]
Mód : Kontrola -- Datum : 07/07/2013 19:25:49
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKX-00ERMA0 ATA Device +++++
--- User ---
[MBR] 5dfd972e1e0ac4b5582fdf4d9196c1ac
[BSP] e24f332b90cee3dc99db91e402c676b7 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 476838 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_07072013_192549.txt >>
RKreport[0]_D_07072013_192353.txt;RKreport[0]_S_07072013_192340.txt

[OTAS]

19:28:35.0737 6116 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:28:36.0015 6116 ============================================================
19:28:36.0015 6116 Current date / time: 2013/07/07 19:28:36.0015
19:28:36.0015 6116 SystemInfo:
19:28:36.0015 6116
19:28:36.0015 6116 OS Version: 6.1.7601 ServicePack: 1.0
19:28:36.0015 6116 Product type: Workstation
19:28:36.0015 6116 ComputerName: DOMA-PC
19:28:36.0015 6116 UserName: DOMA
19:28:36.0015 6116 Windows directory: C:\Windows
19:28:36.0015 6116 System windows directory: C:\Windows
19:28:36.0015 6116 Running under WOW64
19:28:36.0015 6116 Processor architecture: Intel x64
19:28:36.0015 6116 Number of processors: 4
19:28:36.0015 6116 Page size: 0x1000
19:28:36.0015 6116 Boot type: Normal boot
19:28:36.0015 6116 ============================================================
19:28:36.0839 6116 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:28:36.0884 6116 ============================================================
19:28:36.0884 6116 \Device\Harddisk0\DR0:
19:28:36.0884 6116 MBR partitions:
19:28:36.0884 6116 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:28:36.0884 6116 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
19:28:36.0884 6116 ============================================================
19:28:36.0902 6116 C: <-> \Device\Harddisk0\DR0\Partition2
19:28:36.0902 6116 ============================================================
19:28:36.0902 6116 Initialize success
19:28:36.0902 6116 ============================================================
19:28:38.0175 4536 ============================================================
19:28:38.0175 4536 Scan started
19:28:38.0175 4536 Mode: Manual;
19:28:38.0175 4536 ============================================================
19:28:38.0980 4536 ================ Scan system memory ========================
19:28:38.0980 4536 System memory - ok
19:28:38.0980 4536 ================ Scan services =============================
19:28:39.0086 4536 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:28:39.0089 4536 1394ohci - ok
19:28:39.0108 4536 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:28:39.0111 4536 ACPI - ok
19:28:39.0125 4536 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:28:39.0126 4536 AcpiPmi - ok
19:28:39.0187 4536 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:28:39.0188 4536 AdobeARMservice - ok
19:28:39.0268 4536 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:28:39.0270 4536 AdobeFlashPlayerUpdateSvc - ok
19:28:39.0305 4536 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:28:39.0309 4536 adp94xx - ok
19:28:39.0317 4536 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:28:39.0321 4536 adpahci - ok
19:28:39.0341 4536 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:28:39.0343 4536 adpu320 - ok
19:28:39.0483 4536 [ 8539A04EEE824B24A86E7317AB64DFBE ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ascsvc.exe
19:28:39.0491 4536 AdvancedSystemCareService6 - ok
19:28:39.0505 4536 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:28:39.0506 4536 AeLookupSvc - ok
19:28:39.0555 4536 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:28:39.0560 4536 AFD - ok
19:28:39.0589 4536 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:28:39.0590 4536 agp440 - ok
19:28:39.0595 4536 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:28:39.0596 4536 ALG - ok
19:28:39.0607 4536 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:28:39.0607 4536 aliide - ok
19:28:39.0614 4536 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:28:39.0615 4536 amdide - ok
19:28:39.0646 4536 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:28:39.0647 4536 AmdK8 - ok
19:28:39.0651 4536 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:28:39.0652 4536 AmdPPM - ok
19:28:39.0686 4536 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:28:39.0687 4536 amdsata - ok
19:28:39.0693 4536 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:28:39.0695 4536 amdsbs - ok
19:28:39.0704 4536 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:28:39.0705 4536 amdxata - ok
19:28:39.0729 4536 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:28:39.0730 4536 AppID - ok
19:28:39.0751 4536 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:28:39.0752 4536 AppIDSvc - ok
19:28:39.0775 4536 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
19:28:39.0777 4536 Appinfo - ok
19:28:39.0807 4536 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
19:28:39.0809 4536 AppMgmt - ok
19:28:39.0814 4536 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:28:39.0815 4536 arc - ok
19:28:39.0820 4536 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:28:39.0821 4536 arcsas - ok
19:28:39.0858 4536 [ E85EA064C10E4B3EC1029B598D0589C6 ] ASCAntivirusSrv C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ascavsvc.exe
19:28:39.0861 4536 ASCAntivirusSrv - ok
19:28:39.0881 4536 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:28:39.0882 4536 AsyncMac - ok
19:28:39.0903 4536 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:28:39.0904 4536 atapi - ok
19:28:39.0932 4536 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:28:39.0936 4536 AudioEndpointBuilder - ok
19:28:39.0948 4536 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:28:39.0952 4536 AudioSrv - ok
19:28:39.0981 4536 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:28:39.0982 4536 AxInstSV - ok
19:28:39.0998 4536 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:28:40.0001 4536 b06bdrv - ok
19:28:40.0006 4536 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:28:40.0008 4536 b57nd60a - ok
19:28:40.0027 4536 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:28:40.0028 4536 BDESVC - ok
19:28:40.0031 4536 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:28:40.0032 4536 Beep - ok
19:28:40.0069 4536 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:28:40.0073 4536 BFE - ok
19:28:40.0107 4536 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
19:28:40.0112 4536 BITS - ok
19:28:40.0122 4536 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:28:40.0123 4536 blbdrive - ok
19:28:40.0144 4536 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:28:40.0145 4536 bowser - ok
19:28:40.0148 4536 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:28:40.0148 4536 BrFiltLo - ok
19:28:40.0152 4536 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:28:40.0152 4536 BrFiltUp - ok
19:28:40.0181 4536 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:28:40.0183 4536 Browser - ok
19:28:40.0204 4536 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:28:40.0206 4536 Brserid - ok
19:28:40.0209 4536 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:28:40.0209 4536 BrSerWdm - ok
19:28:40.0212 4536 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:28:40.0213 4536 BrUsbMdm - ok
19:28:40.0215 4536 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:28:40.0216 4536 BrUsbSer - ok
19:28:40.0220 4536 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:28:40.0220 4536 BTHMODEM - ok
19:28:40.0250 4536 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:28:40.0250 4536 bthserv - ok
19:28:40.0254 4536 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:28:40.0254 4536 cdfs - ok
19:28:40.0279 4536 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
19:28:40.0280 4536 cdrom - ok
19:28:40.0306 4536 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:28:40.0307 4536 CertPropSvc - ok
19:28:40.0310 4536 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:28:40.0311 4536 circlass - ok
19:28:40.0325 4536 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:28:40.0327 4536 CLFS - ok
19:28:40.0380 4536 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:28:40.0381 4536 clr_optimization_v2.0.50727_32 - ok
19:28:40.0417 4536 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:28:40.0419 4536 clr_optimization_v2.0.50727_64 - ok
19:28:40.0470 4536 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:28:40.0471 4536 clr_optimization_v4.0.30319_32 - ok
19:28:40.0508 4536 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:28:40.0510 4536 clr_optimization_v4.0.30319_64 - ok
19:28:40.0519 4536 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:28:40.0520 4536 CmBatt - ok
19:28:40.0535 4536 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:28:40.0536 4536 cmdide - ok
19:28:40.0615 4536 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
19:28:40.0618 4536 CNG - ok
19:28:40.0652 4536 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:28:40.0653 4536 Compbatt - ok
19:28:40.0680 4536 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:28:40.0681 4536 CompositeBus - ok
19:28:40.0689 4536 COMSysApp - ok
19:28:40.0693 4536 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:28:40.0694 4536 crcdisk - ok
19:28:40.0745 4536 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:28:40.0747 4536 CryptSvc - ok
19:28:40.0779 4536 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
19:28:40.0783 4536 CSC - ok
19:28:40.0821 4536 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
19:28:40.0827 4536 CscService - ok
19:28:40.0864 4536 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:28:40.0869 4536 DcomLaunch - ok
19:28:40.0901 4536 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:28:40.0904 4536 defragsvc - ok
19:28:40.0931 4536 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:28:40.0933 4536 DfsC - ok
19:28:41.0031 4536 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:28:41.0034 4536 Dhcp - ok
19:28:41.0040 4536 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:28:41.0041 4536 discache - ok
19:28:41.0046 4536 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:28:41.0047 4536 Disk - ok
19:28:41.0091 4536 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:28:41.0093 4536 Dnscache - ok
19:28:41.0120 4536 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:28:41.0123 4536 dot3svc - ok
19:28:41.0146 4536 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:28:41.0148 4536 DPS - ok
19:28:41.0173 4536 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:28:41.0174 4536 drmkaud - ok
19:28:41.0213 4536 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:28:41.0221 4536 DXGKrnl - ok
19:28:41.0250 4536 [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
19:28:41.0252 4536 eamonm - ok
19:28:41.0283 4536 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:28:41.0285 4536 EapHost - ok
19:28:41.0346 4536 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:28:41.0367 4536 ebdrv - ok
19:28:41.0395 4536 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:28:41.0396 4536 EFS - ok
19:28:41.0417 4536 [ 9E39134330C18CBAC0F24C1283701D7E ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
19:28:41.0418 4536 ehdrv - ok
19:28:41.0477 4536 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:28:41.0482 4536 ehRecvr - ok
19:28:41.0511 4536 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:28:41.0513 4536 ehSched - ok
19:28:41.0587 4536 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
19:28:41.0597 4536 ekrn - ok
19:28:41.0628 4536 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:28:41.0631 4536 elxstor - ok
19:28:41.0659 4536 [ B4E8DC817963B256537B1EC09AF0647E ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
19:28:41.0660 4536 epfwwfpr - ok
19:28:41.0678 4536 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:28:41.0679 4536 ErrDev - ok
19:28:41.0742 4536 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:28:41.0746 4536 EventSystem - ok
19:28:41.0763 4536 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:28:41.0765 4536 exfat - ok
19:28:41.0771 4536 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:28:41.0773 4536 fastfat - ok
19:28:41.0804 4536 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:28:41.0810 4536 Fax - ok
19:28:41.0814 4536 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:28:41.0815 4536 fdc - ok
19:28:41.0829 4536 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:28:41.0830 4536 fdPHost - ok
19:28:41.0834 4536 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:28:41.0835 4536 FDResPub - ok
19:28:41.0840 4536 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:28:41.0841 4536 FileInfo - ok
19:28:41.0919 4536 [ D409D4A4517865131999FAC96D366CBF ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
19:28:41.0920 4536 FileMonitor - ok
19:28:41.0924 4536 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:28:41.0925 4536 Filetrace - ok
19:28:41.0930 4536 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:28:41.0931 4536 flpydisk - ok
19:28:41.0947 4536 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:28:41.0949 4536 FltMgr - ok
19:28:41.0989 4536 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
19:28:41.0996 4536 FontCache - ok
19:28:42.0033 4536 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:28:42.0033 4536 FontCache3.0.0.0 - ok
19:28:42.0037 4536 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:28:42.0038 4536 FsDepends - ok
19:28:42.0058 4536 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:28:42.0058 4536 Fs_Rec - ok
19:28:42.0087 4536 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:28:42.0089 4536 fvevol - ok
19:28:42.0104 4536 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:28:42.0105 4536 gagp30kx - ok
19:28:42.0163 4536 [ 2973B4EB7BE10A0D491B2037DCAAE88F ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
19:28:42.0165 4536 Garmin Core Update Service - ok
19:28:42.0202 4536 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:28:42.0209 4536 gpsvc - ok
19:28:42.0269 4536 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:28:42.0270 4536 gupdate - ok
19:28:42.0277 4536 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:28:42.0278 4536 gupdatem - ok
19:28:42.0283 4536 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:28:42.0284 4536 hcw85cir - ok
19:28:42.0326 4536 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:28:42.0329 4536 HdAudAddService - ok
19:28:42.0344 4536 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:28:42.0345 4536 HDAudBus - ok
19:28:42.0361 4536 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:28:42.0362 4536 HidBatt - ok
19:28:42.0368 4536 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:28:42.0370 4536 HidBth - ok
19:28:42.0374 4536 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:28:42.0375 4536 HidIr - ok
19:28:42.0396 4536 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:28:42.0397 4536 hidserv - ok
19:28:42.0414 4536 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
19:28:42.0415 4536 HidUsb - ok
19:28:42.0445 4536 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:28:42.0447 4536 hkmsvc - ok
19:28:42.0478 4536 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:28:42.0481 4536 HomeGroupListener - ok
19:28:42.0502 4536 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:28:42.0506 4536 HomeGroupProvider - ok
19:28:42.0523 4536 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:28:42.0524 4536 HpSAMD - ok
19:28:42.0557 4536 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:28:42.0562 4536 HTTP - ok
19:28:42.0595 4536 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:28:42.0596 4536 hwpolicy - ok
19:28:42.0608 4536 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:28:42.0609 4536 i8042prt - ok
19:28:42.0629 4536 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:28:42.0632 4536 iaStorV - ok
19:28:42.0668 4536 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:28:42.0674 4536 idsvc - ok
19:28:42.0719 4536 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:28:42.0720 4536 iirsp - ok
19:28:42.0775 4536 [ AD5DF6F4FBBC798636EDC66BFEC7D0DE ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
19:28:42.0776 4536 IJPLMSVC - ok
19:28:42.0814 4536 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:28:42.0821 4536 IKEEXT - ok
19:28:42.0862 4536 [ 24EA4E2F76E216CE70353736E3556585 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
19:28:42.0865 4536 IMFservice - ok
19:28:42.0917 4536 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
19:28:42.0922 4536 Intel(R) Capability Licensing Service Interface - ok
19:28:42.0942 4536 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:28:42.0942 4536 intelide - ok
19:28:42.0970 4536 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:28:42.0971 4536 intelppm - ok
19:28:42.0997 4536 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:28:42.0999 4536 IPBusEnum - ok
19:28:43.0020 4536 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:28:43.0022 4536 IpFilterDriver - ok
19:28:43.0058 4536 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:28:43.0063 4536 iphlpsvc - ok
19:28:43.0087 4536 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:28:43.0088 4536 IPMIDRV - ok
19:28:43.0093 4536 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:28:43.0095 4536 IPNAT - ok
19:28:43.0099 4536 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:28:43.0100 4536 IRENUM - ok
19:28:43.0156 4536 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:28:43.0157 4536 isapnp - ok
19:28:43.0186 4536 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:28:43.0188 4536 iScsiPrt - ok
19:28:43.0277 4536 [ 78ABBE558F57144047F10A0F50FE4B2F ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
19:28:43.0279 4536 jhi_service - ok
19:28:43.0295 4536 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:28:43.0295 4536 kbdclass - ok
19:28:43.0319 4536 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:28:43.0320 4536 kbdhid - ok
19:28:43.0337 4536 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:28:43.0338 4536 KeyIso - ok
19:28:43.0366 4536 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:28:43.0367 4536 KSecDD - ok
19:28:43.0397 4536 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:28:43.0399 4536 KSecPkg - ok
19:28:43.0424 4536 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:28:43.0425 4536 ksthunk - ok
19:28:43.0451 4536 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:28:43.0455 4536 KtmRm - ok
19:28:43.0559 4536 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:28:43.0562 4536 LanmanServer - ok
19:28:43.0603 4536 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:28:43.0606 4536 LanmanWorkstation - ok
19:28:43.0614 4536 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:28:43.0615 4536 lltdio - ok
19:28:43.0671 4536 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:28:43.0674 4536 lltdsvc - ok
19:28:43.0678 4536 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:28:43.0680 4536 lmhosts - ok
19:28:43.0711 4536 [ 2C24DC448DBE8DB9BE1441B824C57E79 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:28:43.0714 4536 LMS - ok
19:28:43.0721 4536 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:28:43.0722 4536 LSI_FC - ok
19:28:43.0729 4536 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:28:43.0730 4536 LSI_SAS - ok
19:28:43.0734 4536 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:28:43.0735 4536 LSI_SAS2 - ok
19:28:43.0790 4536 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:28:43.0792 4536 LSI_SCSI - ok
19:28:43.0797 4536 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:28:43.0798 4536 luafv - ok
19:28:43.0818 4536 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:28:43.0819 4536 MBAMProtector - ok
19:28:43.0854 4536 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:28:43.0858 4536 MBAMScheduler - ok
19:28:43.0876 4536 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:28:43.0881 4536 MBAMService - ok
19:28:43.0903 4536 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:28:43.0905 4536 Mcx2Svc - ok
19:28:43.0909 4536 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:28:43.0910 4536 megasas - ok
19:28:43.0918 4536 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:28:43.0921 4536 MegaSR - ok
19:28:43.0952 4536 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:28:43.0953 4536 MEIx64 - ok
19:28:44.0009 4536 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
19:28:44.0010 4536 Microsoft Office Groove Audit Service - ok
19:28:44.0043 4536 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:28:44.0045 4536 MMCSS - ok
19:28:44.0049 4536 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:28:44.0050 4536 Modem - ok
19:28:44.0076 4536 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:28:44.0077 4536 monitor - ok
19:28:44.0084 4536 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:28:44.0085 4536 mouclass - ok
19:28:44.0090 4536 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:28:44.0091 4536 mouhid - ok
19:28:44.0116 4536 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:28:44.0117 4536 mountmgr - ok
19:28:44.0161 4536 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:28:44.0163 4536 MozillaMaintenance - ok
19:28:44.0185 4536 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:28:44.0186 4536 mpio - ok
19:28:44.0205 4536 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:28:44.0207 4536 mpsdrv - ok
19:28:44.0242 4536 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:28:44.0249 4536 MpsSvc - ok
19:28:44.0280 4536 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:28:44.0281 4536 MRxDAV - ok
19:28:44.0306 4536 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:28:44.0307 4536 mrxsmb - ok
19:28:44.0325 4536 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:28:44.0328 4536 mrxsmb10 - ok
19:28:44.0350 4536 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:28:44.0352 4536 mrxsmb20 - ok
19:28:44.0363 4536 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:28:44.0363 4536 msahci - ok
19:28:44.0397 4536 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:28:44.0398 4536 msdsm - ok
19:28:44.0414 4536 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:28:44.0416 4536 MSDTC - ok
19:28:44.0439 4536 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:28:44.0441 4536 Msfs - ok
19:28:44.0445 4536 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:28:44.0446 4536 mshidkmdf - ok
19:28:44.0456 4536 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:28:44.0456 4536 msisadrv - ok
19:28:44.0492 4536 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:28:44.0495 4536 MSiSCSI - ok
19:28:44.0498 4536 msiserver - ok
19:28:44.0503 4536 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:28:44.0504 4536 MSKSSRV - ok
19:28:44.0510 4536 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:28:44.0511 4536 MSPCLOCK - ok
19:28:44.0515 4536 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:28:44.0516 4536 MSPQM - ok
19:28:44.0536 4536 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:28:44.0538 4536 MsRPC - ok
19:28:44.0558 4536 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:28:44.0558 4536 mssmbios - ok
19:28:44.0574 4536 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:28:44.0576 4536 MSTEE - ok
19:28:44.0581 4536 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:28:44.0582 4536 MTConfig - ok
19:28:44.0585 4536 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:28:44.0586 4536 Mup - ok
19:28:44.0636 4536 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:28:44.0640 4536 napagent - ok
19:28:44.0659 4536 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:28:44.0663 4536 NativeWifiP - ok
19:28:44.0748 4536 [ 87A00FAEDD703D8D2BDCB29CE5EEEA6B ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
19:28:44.0754 4536 NBService - ok
19:28:44.0809 4536 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:28:44.0817 4536 NDIS - ok
19:28:44.0856 4536 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:28:44.0857 4536 NdisCap - ok
19:28:44.0862 4536 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:28:44.0864 4536 NdisTapi - ok
19:28:44.0884 4536 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:28:44.0885 4536 Ndisuio - ok
19:28:44.0908 4536 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:28:44.0909 4536 NdisWan - ok
19:28:44.0933 4536 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:28:44.0934 4536 NDProxy - ok
19:28:44.0938 4536 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:28:44.0940 4536 NetBIOS - ok
19:28:44.0971 4536 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:28:44.0972 4536 NetBT - ok
19:28:44.0987 4536 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:28:44.0988 4536 Netlogon - ok
19:28:45.0073 4536 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:28:45.0077 4536 Netman - ok
19:28:45.0168 4536 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:28:45.0173 4536 netprofm - ok
19:28:45.0198 4536 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:28:45.0199 4536 NetTcpPortSharing - ok
19:28:45.0214 4536 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:28:45.0215 4536 nfrd960 - ok
19:28:45.0236 4536 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:28:45.0239 4536 NlaSvc - ok
19:28:45.0243 4536 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:28:45.0244 4536 Npfs - ok
19:28:45.0260 4536 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:28:45.0262 4536 nsi - ok
19:28:45.0267 4536 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:28:45.0268 4536 nsiproxy - ok
19:28:45.0318 4536 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:28:45.0330 4536 Ntfs - ok
19:28:45.0340 4536 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:28:45.0341 4536 Null - ok
19:28:45.0532 4536 [ 8E6247F418B4C8AE9EEB0B532CABCC21 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:28:45.0585 4536 nvlddmkm - ok
19:28:45.0614 4536 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:28:45.0615 4536 nvraid - ok
19:28:45.0630 4536 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:28:45.0632 4536 nvstor - ok
19:28:45.0663 4536 [ 41B97DCE2B2D113B831EB197F02A7398 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:28:45.0671 4536 nvsvc - ok
19:28:45.0705 4536 [ A3A25E0509F67473B960DAF214828BE3 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:28:45.0715 4536 nvUpdatusService - ok
19:28:45.0739 4536 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:28:45.0741 4536 nv_agp - ok
19:28:45.0813 4536 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:28:45.0817 4536 odserv - ok
19:28:45.0836 4536 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:28:45.0837 4536 ohci1394 - ok
19:28:45.0881 4536 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:28:45.0883 4536 ose - ok
19:28:45.0910 4536 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:28:45.0914 4536 p2pimsvc - ok
19:28:45.0942 4536 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:28:45.0947 4536 p2psvc - ok
19:28:45.0979 4536 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:28:45.0980 4536 Parport - ok
19:28:46.0015 4536 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:28:46.0016 4536 partmgr - ok
19:28:46.0035 4536 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:28:46.0038 4536 PcaSvc - ok
19:28:46.0076 4536 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:28:46.0078 4536 pci - ok
19:28:46.0102 4536 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:28:46.0103 4536 pciide - ok
19:28:46.0135 4536 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:28:46.0137 4536 pcmcia - ok
19:28:46.0174 4536 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:28:46.0175 4536 pcw - ok
19:28:46.0238 4536 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:28:46.0243 4536 PEAUTH - ok
19:28:46.0287 4536 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:28:46.0298 4536 PeerDistSvc - ok
19:28:46.0367 4536 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:28:46.0369 4536 PerfHost - ok
19:28:46.0417 4536 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:28:46.0428 4536 pla - ok
19:28:46.0453 4536 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:28:46.0457 4536 PlugPlay - ok
19:28:46.0479 4536 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:28:46.0480 4536 PNRPAutoReg - ok
19:28:46.0486 4536 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:28:46.0489 4536 PNRPsvc - ok
19:28:46.0509 4536 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:28:46.0512 4536 PolicyAgent - ok
19:28:46.0552 4536 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:28:46.0555 4536 Power - ok
19:28:46.0578 4536 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:28:46.0580 4536 PptpMiniport - ok
19:28:46.0610 4536 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:28:46.0611 4536 Processor - ok
19:28:46.0631 4536 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:28:46.0634 4536 ProfSvc - ok
19:28:46.0645 4536 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:28:46.0647 4536 ProtectedStorage - ok
19:28:46.0664 4536 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:28:46.0665 4536 Psched - ok
19:28:46.0700 4536 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:28:46.0711 4536 ql2300 - ok
19:28:46.0717 4536 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:28:46.0719 4536 ql40xx - ok
19:28:46.0787 4536 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:28:46.0790 4536 QWAVE - ok
19:28:46.0794 4536 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:28:46.0796 4536 QWAVEdrv - ok
19:28:46.0800 4536 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:28:46.0801 4536 RasAcd - ok
19:28:46.0842 4536 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:28:46.0843 4536 RasAgileVpn - ok
19:28:46.0855 4536 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:28:46.0858 4536 RasAuto - ok
19:28:46.0888 4536 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:28:46.0890 4536 Rasl2tp - ok
19:28:46.0918 4536 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:28:46.0922 4536 RasMan - ok
19:28:46.0927 4536 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:28:46.0929 4536 RasPppoe - ok
19:28:46.0933 4536 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:28:46.0935 4536 RasSstp - ok
19:28:46.0981 4536 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:28:46.0984 4536 rdbss - ok
19:28:47.0005 4536 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:28:47.0006 4536 rdpbus - ok
19:28:47.0011 4536 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:28:47.0012 4536 RDPCDD - ok
19:28:47.0038 4536 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:28:47.0040 4536 RDPDR - ok
19:28:47.0044 4536 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:28:47.0045 4536 RDPENCDD - ok
19:28:47.0051 4536 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:28:47.0053 4536 RDPREFMP - ok
19:28:47.0072 4536 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:28:47.0073 4536 RdpVideoMiniport - ok
19:28:47.0096 4536 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:28:47.0098 4536 RDPWD - ok
19:28:47.0123 4536 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:28:47.0125 4536 rdyboost - ok
19:28:47.0193 4536 [ BB26BDE6308A46A8497AA7C4AB569B77 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
19:28:47.0193 4536 RegFilter - ok
19:28:47.0221 4536 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:28:47.0223 4536 RemoteAccess - ok
19:28:47.0253 4536 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:28:47.0256 4536 RemoteRegistry - ok
19:28:47.0270 4536 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:28:47.0273 4536 RpcEptMapper - ok
19:28:47.0295 4536 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:28:47.0297 4536 RpcLocator - ok
19:28:47.0330 4536 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:28:47.0336 4536 RpcSs - ok
19:28:47.0370 4536 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:28:47.0371 4536 rspndr - ok
19:28:47.0410 4536 [ 3713DACCA1025B05A6343104112708D9 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:28:47.0415 4536 RTL8167 - ok
19:28:47.0443 4536 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:28:47.0444 4536 s3cap - ok
19:28:47.0461 4536 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:28:47.0463 4536 SamSs - ok
19:28:47.0486 4536 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:28:47.0488 4536 sbp2port - ok
19:28:47.0523 4536 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:28:47.0525 4536 SCardSvr - ok
19:28:47.0554 4536 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:28:47.0555 4536 scfilter - ok
19:28:47.0592 4536 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:28:47.0597 4536 Schedule - ok
19:28:47.0622 4536 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:28:47.0623 4536 SCPolicySvc - ok
19:28:47.0649 4536 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:28:47.0651 4536 SDRSVC - ok
19:28:47.0675 4536 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:28:47.0675 4536 secdrv - ok
19:28:47.0696 4536 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:28:47.0699 4536 seclogon - ok
19:28:47.0714 4536 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:28:47.0716 4536 SENS - ok
19:28:47.0726 4536 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:28:47.0728 4536 SensrSvc - ok
19:28:47.0732 4536 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:28:47.0733 4536 Serenum - ok
19:28:47.0738 4536 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:28:47.0740 4536 Serial - ok
19:28:47.0764 4536 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:28:47.0765 4536 sermouse - ok
19:28:47.0796 4536 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:28:47.0798 4536 SessionEnv - ok
19:28:47.0817 4536 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:28:47.0817 4536 sffdisk - ok
19:28:47.0825 4536 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:28:47.0825 4536 sffp_mmc - ok
19:28:47.0839 4536 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:28:47.0839 4536 sffp_sd - ok
19:28:47.0843 4536 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:28:47.0843 4536 sfloppy - ok
19:28:47.0913 4536 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:28:47.0917 4536 SharedAccess - ok
19:28:47.0950 4536 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:28:47.0954 4536 ShellHWDetection - ok
19:28:47.0959 4536 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:28:47.0960 4536 SiSRaid2 - ok
19:28:47.0980 4536 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:28:47.0981 4536 SiSRaid4 - ok
19:28:48.0006 4536 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
19:28:48.0006 4536 SmartDefragDriver - ok
19:28:48.0011 4536 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:28:48.0013 4536 Smb - ok
19:28:48.0051 4536 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:28:48.0052 4536 SNMPTRAP - ok
19:28:48.0056 4536 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:28:48.0057 4536 spldr - ok
19:28:48.0091 4536 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:28:48.0096 4536 Spooler - ok
19:28:48.0173 4536 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:28:48.0188 4536 sppsvc - ok
19:28:48.0201 4536 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:28:48.0203 4536 sppuinotify - ok
19:28:48.0229 4536 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:28:48.0231 4536 srv - ok
19:28:48.0242 4536 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:28:48.0244 4536 srv2 - ok
19:28:48.0253 4536 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:28:48.0254 4536 srvnet - ok
19:28:48.0268 4536 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:28:48.0270 4536 SSDPSRV - ok
19:28:48.0275 4536 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:28:48.0277 4536 SstpSvc - ok
19:28:48.0305 4536 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:28:48.0305 4536 stexstor - ok
19:28:48.0334 4536 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:28:48.0340 4536 stisvc - ok
19:28:48.0367 4536 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:28:48.0368 4536 storflt - ok
19:28:48.0392 4536 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
19:28:48.0395 4536 StorSvc - ok
19:28:48.0410 4536 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:28:48.0411 4536 storvsc - ok

[OTAS]

19:28:48.0428 4536 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:28:48.0429 4536 swenum - ok
19:28:48.0446 4536 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:28:48.0450 4536 swprv - ok
19:28:48.0495 4536 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:28:48.0504 4536 SysMain - ok
19:28:48.0537 4536 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:28:48.0538 4536 TabletInputService - ok
19:28:48.0568 4536 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:28:48.0571 4536 TapiSrv - ok
19:28:48.0585 4536 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:28:48.0587 4536 TBS - ok
19:28:48.0637 4536 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:28:48.0650 4536 Tcpip - ok
19:28:48.0712 4536 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:28:48.0725 4536 TCPIP6 - ok
19:28:48.0772 4536 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:28:48.0774 4536 tcpipreg - ok
19:28:48.0803 4536 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:28:48.0804 4536 TDPIPE - ok
19:28:48.0822 4536 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:28:48.0823 4536 TDTCP - ok
19:28:48.0844 4536 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:28:48.0846 4536 tdx - ok
19:28:48.0869 4536 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:28:48.0870 4536 TermDD - ok
19:28:48.0903 4536 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:28:48.0909 4536 TermService - ok
19:28:48.0952 4536 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:28:48.0954 4536 Themes - ok
19:28:48.0968 4536 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:28:48.0970 4536 THREADORDER - ok
19:28:48.0987 4536 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:28:48.0990 4536 TrkWks - ok
19:28:49.0042 4536 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:28:49.0044 4536 TrustedInstaller - ok
19:28:49.0071 4536 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:28:49.0072 4536 tssecsrv - ok
19:28:49.0125 4536 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:28:49.0126 4536 TsUsbFlt - ok
19:28:49.0146 4536 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:28:49.0148 4536 tunnel - ok
19:28:49.0176 4536 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:28:49.0178 4536 uagp35 - ok
19:28:49.0202 4536 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:28:49.0205 4536 udfs - ok
19:28:49.0242 4536 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:28:49.0244 4536 UI0Detect - ok
19:28:49.0260 4536 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:28:49.0262 4536 uliagpkx - ok
19:28:49.0284 4536 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:28:49.0285 4536 umbus - ok
19:28:49.0290 4536 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:28:49.0291 4536 UmPass - ok
19:28:49.0313 4536 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
19:28:49.0317 4536 UmRdpService - ok
19:28:49.0386 4536 [ E1A119AD21F5AFE22EB516C549306D3D ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
19:28:49.0389 4536 UNS - ok
19:28:49.0404 4536 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:28:49.0409 4536 upnphost - ok
19:28:49.0423 4536 [ C2C5672B001A471FCE195CC15910AED9 ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
19:28:49.0424 4536 UrlFilter - ok
19:28:49.0436 4536 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:28:49.0437 4536 usbccgp - ok
19:28:49.0460 4536 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:28:49.0461 4536 usbcir - ok
19:28:49.0481 4536 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:28:49.0482 4536 usbehci - ok
19:28:49.0511 4536 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:28:49.0513 4536 usbhub - ok
19:28:49.0525 4536 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:28:49.0526 4536 usbohci - ok
19:28:49.0548 4536 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:28:49.0548 4536 usbprint - ok
19:28:49.0571 4536 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:28:49.0571 4536 usbscan - ok
19:28:49.0590 4536 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:28:49.0591 4536 USBSTOR - ok
19:28:49.0600 4536 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:28:49.0601 4536 usbuhci - ok
19:28:49.0624 4536 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:28:49.0626 4536 UxSms - ok
19:28:49.0645 4536 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:28:49.0646 4536 VaultSvc - ok
19:28:49.0655 4536 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:28:49.0656 4536 vdrvroot - ok
19:28:49.0679 4536 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:28:49.0682 4536 vds - ok
19:28:49.0686 4536 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:28:49.0687 4536 vga - ok
19:28:49.0692 4536 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:28:49.0693 4536 VgaSave - ok
19:28:49.0725 4536 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:28:49.0726 4536 vhdmp - ok
19:28:49.0787 4536 [ EECF5B7210D773F3501CEDA848D53D31 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
19:28:49.0799 4536 VIAHdAudAddService - ok
19:28:49.0811 4536 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:28:49.0811 4536 viaide - ok
19:28:49.0822 4536 [ 43412F74D9516EF87988F2397A9B8E78 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
19:28:49.0823 4536 VIAKaraokeService - ok
19:28:49.0850 4536 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:28:49.0851 4536 vmbus - ok
19:28:49.0867 4536 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:28:49.0868 4536 VMBusHID - ok
19:28:49.0877 4536 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:28:49.0878 4536 volmgr - ok
19:28:49.0906 4536 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:28:49.0908 4536 volmgrx - ok
19:28:49.0929 4536 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:28:49.0931 4536 volsnap - ok
19:28:49.0963 4536 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:28:49.0964 4536 vsmraid - ok
19:28:50.0015 4536 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:28:50.0028 4536 VSS - ok
19:28:50.0034 4536 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:28:50.0035 4536 vwifibus - ok
19:28:50.0067 4536 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:28:50.0069 4536 W32Time - ok
19:28:50.0075 4536 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:28:50.0076 4536 WacomPen - ok
19:28:50.0087 4536 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:28:50.0088 4536 WANARP - ok
19:28:50.0090 4536 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:28:50.0091 4536 Wanarpv6 - ok
19:28:50.0144 4536 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:28:50.0154 4536 WatAdminSvc - ok
19:28:50.0228 4536 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:28:50.0240 4536 wbengine - ok
19:28:50.0257 4536 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:28:50.0259 4536 WbioSrvc - ok
19:28:50.0288 4536 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:28:50.0290 4536 wcncsvc - ok
19:28:50.0304 4536 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:28:50.0305 4536 WcsPlugInService - ok
19:28:50.0333 4536 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:28:50.0333 4536 Wd - ok
19:28:50.0365 4536 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:28:50.0368 4536 Wdf01000 - ok
19:28:50.0381 4536 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:28:50.0383 4536 WdiServiceHost - ok
19:28:50.0386 4536 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:28:50.0387 4536 WdiSystemHost - ok
19:28:50.0416 4536 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:28:50.0418 4536 WebClient - ok
19:28:50.0433 4536 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:28:50.0436 4536 Wecsvc - ok
19:28:50.0443 4536 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:28:50.0445 4536 wercplsupport - ok
19:28:50.0448 4536 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:28:50.0450 4536 WerSvc - ok
19:28:50.0464 4536 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:28:50.0464 4536 WfpLwf - ok
19:28:50.0467 4536 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:28:50.0468 4536 WIMMount - ok
19:28:50.0478 4536 WinDefend - ok
19:28:50.0482 4536 WinHttpAutoProxySvc - ok
19:28:50.0533 4536 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:28:50.0535 4536 Winmgmt - ok
19:28:50.0579 4536 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:28:50.0588 4536 WinRM - ok
19:28:50.0652 4536 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:28:50.0660 4536 Wlansvc - ok
19:28:50.0700 4536 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:28:50.0701 4536 WmiAcpi - ok
19:28:50.0738 4536 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:28:50.0739 4536 wmiApSrv - ok
19:28:50.0753 4536 WMPNetworkSvc - ok
19:28:50.0765 4536 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:28:50.0766 4536 WPCSvc - ok
19:28:50.0787 4536 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:28:50.0789 4536 WPDBusEnum - ok
19:28:50.0815 4536 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:28:50.0815 4536 ws2ifsl - ok
19:28:50.0826 4536 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
19:28:50.0827 4536 wscsvc - ok
19:28:50.0831 4536 WSearch - ok
19:28:50.0878 4536 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:28:50.0889 4536 wuauserv - ok
19:28:50.0929 4536 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:28:50.0929 4536 WudfPf - ok
19:28:50.0943 4536 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:28:50.0945 4536 WUDFRd - ok
19:28:50.0989 4536 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:28:50.0992 4536 wudfsvc - ok
19:28:51.0019 4536 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
19:28:51.0023 4536 WwanSvc - ok
19:28:51.0030 4536 ================ Scan global ===============================
19:28:51.0089 4536 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:28:51.0113 4536 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:28:51.0121 4536 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:28:51.0158 4536 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:28:51.0183 4536 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:28:51.0188 4536 [Global] - ok
19:28:51.0189 4536 ================ Scan MBR ==================================
19:28:51.0197 4536 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:28:51.0498 4536 \Device\Harddisk0\DR0 - ok
19:28:51.0498 4536 ================ Scan VBR ==================================
19:28:51.0500 4536 [ CF5CC3E1C695B017718B2822180987E1 ] \Device\Harddisk0\DR0\Partition1
19:28:51.0500 4536 \Device\Harddisk0\DR0\Partition1 - ok
19:28:51.0511 4536 [ 7518822FD565A1776FF8A042FF40A37D ] \Device\Harddisk0\DR0\Partition2
19:28:51.0512 4536 \Device\Harddisk0\DR0\Partition2 - ok
19:28:51.0512 4536 ============================================================
19:28:51.0513 4536 Scan finished
19:28:51.0513 4536 ============================================================
19:28:51.0519 5140 Detected object count: 0
19:28:51.0519 5140 Actual detected object count: 0
19:28:57.0168 6084 Deinitialize success

[memphisto]

Jak je na tom PC?
Dodej nový HJT