Zamrznutí pc při připojení exter. disku

[cechk]

Ahoj,
prosím o kontrolu přiloženého logu. Zamrzá mi pc při připojení ext. HDD. Bylo to způsobeno zřejmě předchozím čištěním od viru. Dle pokynu na viry.cz ( http://forum.viry.cz/viewtopic.php?f=13&t=128593 ) jsem provedl čistku Combofixem.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:51:54, on 8.3.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Asus\EZVCR\EZSERVICE.exe
C:\Program Files\ASUS\EZVCR\Agent.exe
C:\Program Files\ASUS\EZVCR\ASUS_IRAppl.exe
C:\Program Files\Java\jre7\bin\jqs.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ASUS\Printer Utilities\UsbService.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\PowerForPhone\PowerForPhone\PowerForPhone.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Seznam\Postak\Postak.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\ASUS\ASUS WebStorage\3.0.138.290\AsusWSPanel.exe
C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Akamai\netsession_win.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Akamai\netsession_win.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Asus\ASUS WebStorage\3.0.138.290\AsusWSService.exe
C:\Programy\ProcessExplorer\procexp.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kamil\My Documents\Downloads\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bohusice.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R3 - URLSearchHook: QIPBHO Class - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Kamil\Application Data\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Kamil\Application Data\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [SMail] "C:\Program Files\Seznam\Postak\Postak.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\3.0.138.290\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SafeQ Client] "C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\Kamil\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Documents and Settings\Kamil\Local Settings\Application Data\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Infium] "C:\Program Files\QIP 2012\qip.exe" /autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-2916314380-1386057458-2243310981-500\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Administrator')
O4 - HKUS\S-1-5-21-2916314380-1386057458-2243310981-500\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized (User 'Administrator')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x08b2 -f video -m logitech -d 10.5.1.2023 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x08b2 -f video -m logitech -d 10.5.1.2023 (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download All by ASUS Download - C:\Program Files\Asus\WL-500gP V2 Wireless Router Utilities\ASDownloadAll.htm
O8 - Extra context menu item: Download using ASUS Download - C:\Program Files\Asus\WL-500gP V2 Wireless Router Utilities\ASDownload.htm
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O15 - Trusted Zone: *.mfcr.cz
O16 - DPF: {210D0CBC-8B17-48D1-B294-1A338DD2EB3A} (VatCtrl Class) - http://proxynet.mbudejovice.cz:3333/VatDec.cab
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/ ... 7887705944
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 1156323750
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {7E88D4EE-0969-48ED-9F1C-B647586C0419} (Media Control) - http://192.168.100.105/Media.CAB
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisdpr.mfcr.cz/adistc/adis/idp ... tsignx.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: APSHook.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: CamProExpress64 - AirLive - C:\Program Files\AirLive\CamPro Express 64\CamProExpress64.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: EZSERVICE - Unknown owner - C:\Program Files\Asus\EZVCR\EZSERVICE.exe
O23 - Service: Služba Google Update (gupdate1ca7380bfb797ae) (gupdate1ca7380bfb797ae) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: ASUS Virtual MFP Service (UsbService) - Unknown owner - C:\Program Files\ASUS\Printer Utilities\UsbService.exe

--
End of file - 15748 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[cechk]

OK, provedeno. MBAM jsem spouštěl už dřív. Viz. topic na viry.cz. Tehdy to něco našlo. Nyní je to čistý:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.03.08.13

Windows XP Service Pack 3 x86 FAT32
Internet Explorer 8.0.6001.18702
Kamil :: NOTEBOOK_K [administrátor]

Ochrana: Zakázána

9.3.2013 18:37:12
mbam-log-2013-03-09 (18-37-12).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 230313
Uplynulý čas: 8 minut, 53 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)


AdwCleaner:

# AdwCleaner v2.114 - Logfile created 03/09/2013 at 19:06:45
# Updated 05/03/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Kamil - NOTEBOOK_K
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Kamil\My Documents\Downloads\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Documents and Settings\Kamil\Application Data\Microsoft\Internet Explorer\qipsearchbar.dll
File Found : C:\Documents and Settings\Kamil\Application Data\Mozilla\Firefox\Profiles\9a4k7py8.default\searchplugins\qip-search.xml
Folder Found : C:\Documents and Settings\All Users\Application Data\ICQ\ICQToolbar
Folder Found : C:\Documents and Settings\Kamil\Application Data\pdfforge
Folder Found : C:\Documents and Settings\Kamil\Local Settings\Application Data\Conduit
Folder Found : C:\Documents and Settings\Kamil\Local Settings\Application Data\DVDVideoSoftTB
Folder Found : C:\Documents and Settings\Kamil\Local Settings\Application Data\DVDVideoSoftTB
Folder Found : C:\Program Files\Conduit
Folder Found : C:\Program Files\DVDVideoSoftTB
Folder Found : C:\Program Files\DVDVideoSoftTB
Folder Found : C:\Program Files\ICQ6Toolbar

***** [Registry] *****

Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DVDVideoSoftTB
Key Found : HKCU\Software\DVDVideoSoftTB
Key Found : HKCU\Software\ICQToolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKCU\Toolbar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E20CEA7D-7186-4A44-BB22-D9C9AFD460E0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0C44E4F0-AED1-405C-B246-D85C9D8C2BBA}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{90CB326E-134B-4198-859E-D834D1A1085D}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E20CEA7D-7186-4A44-BB22-D9C9AFD460E0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Found : HKU\S-1-5-21-2916314380-1386057458-2243310981-1005\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKU\S-1-5-21-2916314380-1386057458-2243310981-1005\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0.2 (cs)

File : C:\Documents and Settings\Kamil\Application Data\Mozilla\Firefox\Profiles\9a4k7py8.default\prefs.js

Found : user_pref("browser.search.defaultenginename", "QIP Search");
Found : user_pref("keyword.URL", "hxxp://search.qip.ru/search?from=FF&query=");

-\\ Google Chrome v25.0.1364.152

File : C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

-\\ Opera v12.2.1578.0

File : C:\Documents and Settings\Kamil\Application Data\Opera\Opera\operaprefs.ini

Found : Home URL=hxxp://qip.ru

*************************

AdwCleaner[R1].txt - [6090 octets] - [09/03/2013 19:06:45]

########## EOF - C:\AdwCleaner[R1].txt - [6150 octets] ##########

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Delete“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

připoj ext. disk.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[cechk]

# AdwCleaner v2.114 - Logfile created 03/11/2013 at 15:45:11
# Updated 05/03/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Kamil - NOTEBOOK_K
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Kamil\My Documents\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Documents and Settings\Kamil\Application Data\Microsoft\Internet Explorer\qipsearchbar.dll
File Deleted : C:\Documents and Settings\Kamil\Application Data\Mozilla\Firefox\Profiles\9a4k7py8.default\searchplugins\qip-search.xml
Folder Deleted : C:\Documents and Settings\All Users\Application Data\ICQ\ICQToolbar
Folder Deleted : C:\Documents and Settings\Kamil\Application Data\pdfforge
Folder Deleted : C:\Documents and Settings\Kamil\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Kamil\Local Settings\Application Data\DVDVideoSoftTB
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\DVDVideoSoftTB
Folder Deleted : C:\Program Files\ICQ6Toolbar

***** [Registry] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DVDVideoSoftTB
Key Deleted : HKCU\Software\ICQToolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E20CEA7D-7186-4A44-BB22-D9C9AFD460E0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DVDVideoSoftTB
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0C44E4F0-AED1-405C-B246-D85C9D8C2BBA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{90CB326E-134B-4198-859E-D834D1A1085D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E20CEA7D-7186-4A44-BB22-D9C9AFD460E0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0.2 (cs)

File : C:\Documents and Settings\Kamil\Application Data\Mozilla\Firefox\Profiles\9a4k7py8.default\prefs.js

Deleted : user_pref("browser.search.defaultenginename", "QIP Search");
Deleted : user_pref("keyword.URL", "hxxp://search.qip.ru/search?from=FF&query=");

-\\ Google Chrome v25.0.1364.160

File : C:\Documents and Settings\Kamil\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

-\\ Opera v12.2.1578.0

File : C:\Documents and Settings\Kamil\Application Data\Opera\Opera\operaprefs.ini

Deleted : Home URL=hxxp://qip.ru

*************************

AdwCleaner[R1].txt - [6219 octets] - [09/03/2013 19:06:45]
AdwCleaner[S1].txt - [5052 octets] - [11/03/2013 15:45:11]

########## EOF - C:\AdwCleaner[S1].txt - [5112 octets] ##########

[jaro3]

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Pak ten Combofix.

[cechk]

Combofix jsem zkoušel, ale zatím se to s diskem napodařilo. Jakmile připojím disk, antivir už nevypnu. Právě jsem se chystal na opačný postup, tedy vypnout antivir, připojit diska a zkusit spustit Combofix. V nouzovém režimu je disk vidět, ale zase mi nešel vypnout antivir, ani v procesech jsem ho neviděl. Jdu tedy na ten TDSSKiller

[jaro3]

V nouz. režimu kašli na hlášku o antiviru a pokračuj dál v Combofixu.

Jak je ext. disk připojen? Na USB nebo e-sata?
Máš na něm něco důležitého?

[cechk]

Disk je přes USB. Mám na něm zálohy, ale můžu na to použít druhej, kterej je čistej a jsou s ním stený problémy.

Log z TDSSKiller:

18:58:41.0750 2820 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:58:43.0578 2820 ============================================================
18:58:43.0578 2820 Current date / time: 2013/03/11 18:58:43.0578
18:58:43.0578 2820 SystemInfo:
18:58:43.0578 2820
18:58:43.0578 2820 OS Version: 5.1.2600 ServicePack: 3.0
18:58:43.0578 2820 Product type: Workstation
18:58:43.0578 2820 ComputerName: NOTEBOOK_K
18:58:43.0578 2820 UserName: Kamil
18:58:43.0578 2820 Windows directory: C:\WINDOWS
18:58:43.0578 2820 System windows directory: C:\WINDOWS
18:58:43.0578 2820 Processor architecture: Intel x86
18:58:43.0578 2820 Number of processors: 2
18:58:43.0578 2820 Page size: 0x1000
18:58:43.0578 2820 Boot type: Normal boot
18:58:43.0578 2820 ============================================================
18:58:44.0843 2820 Drive \Device\Harddisk0\DR0 - Size: 0x174A446000 (93.16 Gb), SectorSize: 0x200, Cylinders: 0x2F81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:58:44.0843 2820 ============================================================
18:58:44.0843 2820 \Device\Harddisk0\DR0:
18:58:44.0843 2820 MBR partitions:
18:58:44.0843 2820 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x7D047E, BlocksNum 0x6B1B88F
18:58:44.0859 2820 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0x72EBD4C, BlocksNum 0x47650F5
18:58:44.0859 2820 ============================================================
18:58:44.0875 2820 C: <-> \Device\Harddisk0\DR0\Partition1
18:58:44.0890 2820 D: <-> \Device\Harddisk0\DR0\Partition2
18:58:44.0921 2820 ============================================================
18:58:44.0921 2820 Initialize success
18:58:44.0921 2820 ============================================================
18:58:54.0921 3220 ============================================================
18:58:54.0921 3220 Scan started
18:58:54.0921 3220 Mode: Manual;
18:58:54.0921 3220 ============================================================
18:58:55.0921 3220 ================ Scan system memory ========================
18:58:55.0937 3220 System memory - ok
18:58:55.0937 3220 ================ Scan services =============================
18:58:56.0125 3220 [ F11D68E40ED62FDB7C460C445F1EC4E5 ] 602XML Updater C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
18:58:56.0125 3220 602XML Updater - ok
18:58:56.0218 3220 [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883 C:\WINDOWS\system32\DRIVERS\61883.sys
18:58:56.0250 3220 61883 - ok
18:58:56.0265 3220 Abiosdsk - ok
18:58:56.0281 3220 abp480n5 - ok
18:58:56.0328 3220 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:58:56.0343 3220 ACPI - ok
18:58:56.0343 3220 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:58:56.0359 3220 ACPIEC - ok
18:58:56.0484 3220 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:58:56.0515 3220 AdobeFlashPlayerUpdateSvc - ok
18:58:56.0531 3220 adpu160m - ok
18:58:56.0578 3220 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:58:56.0593 3220 aec - ok
18:58:56.0640 3220 [ 15E655BAA989444F56787EF558823643 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
18:58:56.0656 3220 AegisP - ok
18:58:56.0703 3220 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:58:56.0718 3220 AFD - ok
18:58:56.0734 3220 Aha154x - ok
18:58:56.0750 3220 aic78u2 - ok
18:58:56.0765 3220 aic78xx - ok
18:58:57.0093 3220 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai C:/Program Files/Common Files/Akamai/netsession_win_ce5ba24.dll
18:58:57.0140 3220 Akamai - ok
18:58:57.0359 3220 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:58:57.0359 3220 Alerter - ok
18:58:57.0468 3220 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
18:58:57.0468 3220 ALG - ok
18:58:57.0500 3220 AliIde - ok
18:58:57.0531 3220 amsint - ok
18:58:57.0593 3220 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
18:58:57.0593 3220 AppMgmt - ok
18:58:57.0640 3220 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:58:57.0640 3220 Arp1394 - ok
18:58:57.0718 3220 [ 2EEDA27C19259C2340324EF7180D086B ] ASBroker C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
18:58:57.0718 3220 ASBroker - ok
18:58:57.0750 3220 asc - ok
18:58:57.0765 3220 asc3350p - ok
18:58:57.0781 3220 asc3550 - ok
18:58:57.0796 3220 [ BB3C0521ECCA4BB17AC55EB640DF0FA5 ] ASChannel C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
18:58:57.0812 3220 ASChannel - ok
18:58:57.0953 3220 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:58:57.0968 3220 aspnet_state - ok
18:58:58.0015 3220 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:58:58.0015 3220 AsyncMac - ok
18:58:58.0078 3220 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:58:58.0078 3220 atapi - ok
18:58:58.0093 3220 Atdisk - ok
18:58:58.0109 3220 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:58:58.0109 3220 Atmarpc - ok
18:58:58.0218 3220 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:58:58.0234 3220 AudioSrv - ok
18:58:58.0265 3220 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:58:58.0281 3220 audstub - ok
18:58:58.0296 3220 [ F8E6956A614F15A0860474C5E2A7DE6B ] Avc C:\WINDOWS\system32\DRIVERS\avc.sys
18:58:58.0296 3220 Avc - ok
18:58:58.0328 3220 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:58:58.0328 3220 Beep - ok
18:58:58.0406 3220 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
18:58:58.0437 3220 BITS - ok
18:58:58.0484 3220 [ F934D1B230F84E1D19DD00AC5A7A83ED ] Bridge C:\WINDOWS\system32\DRIVERS\bridge.sys
18:58:58.0484 3220 Bridge - ok
18:58:58.0515 3220 [ F934D1B230F84E1D19DD00AC5A7A83ED ] BridgeMP C:\WINDOWS\system32\DRIVERS\bridge.sys
18:58:58.0515 3220 BridgeMP - ok
18:58:58.0656 3220 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
18:58:58.0656 3220 Browser - ok
18:58:58.0765 3220 [ 0F5CA31BB3FDB5C1E63C170CFBECC93B ] CamDrL C:\WINDOWS\system32\DRIVERS\Camdrl.sys
18:58:58.0843 3220 CamDrL - ok
18:58:59.0093 3220 [ 5544957B8B97F460B5396AA3BE0A4395 ] CamProExpress64 C:\Program Files\AirLive\CamPro Express 64\CamProExpress64.exe
18:58:59.0328 3220 CamProExpress64 - ok
18:58:59.0718 3220 catchme - ok
18:59:00.0046 3220 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:59:00.0046 3220 cbidf2k - ok
18:59:00.0046 3220 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:59:00.0046 3220 CCDECODE - ok
18:59:00.0062 3220 cd20xrnt - ok
18:59:00.0093 3220 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:59:00.0093 3220 Cdaudio - ok
18:59:00.0125 3220 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:59:00.0125 3220 Cdfs - ok
18:59:00.0140 3220 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:59:00.0140 3220 Cdrom - ok
18:59:00.0156 3220 Changer - ok
18:59:00.0250 3220 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:59:00.0250 3220 CiSvc - ok
18:59:00.0312 3220 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:59:00.0312 3220 ClipSrv - ok
18:59:00.0375 3220 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:59:00.0375 3220 clr_optimization_v2.0.50727_32 - ok
18:59:00.0468 3220 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:59:00.0484 3220 clr_optimization_v4.0.30319_32 - ok
18:59:00.0515 3220 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:59:00.0515 3220 CmBatt - ok
18:59:00.0531 3220 CmdIde - ok
18:59:00.0562 3220 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:59:00.0562 3220 Compbatt - ok
18:59:00.0656 3220 COMSysApp - ok
18:59:00.0687 3220 Cpqarray - ok
18:59:00.0765 3220 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:59:00.0781 3220 CryptSvc - ok
18:59:00.0796 3220 dac2w2k - ok
18:59:00.0812 3220 dac960nt - ok
18:59:00.0890 3220 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:59:00.0921 3220 DcomLaunch - ok
18:59:00.0968 3220 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:59:00.0984 3220 Dhcp - ok
18:59:01.0015 3220 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:59:01.0015 3220 Disk - ok
18:59:01.0078 3220 dmadmin - ok
18:59:01.0140 3220 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:59:01.0187 3220 dmboot - ok
18:59:01.0203 3220 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:59:01.0218 3220 dmio - ok
18:59:01.0218 3220 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:59:01.0234 3220 dmload - ok
18:59:01.0296 3220 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:59:01.0312 3220 dmserver - ok
18:59:01.0359 3220 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:59:01.0359 3220 DMusic - ok
18:59:01.0421 3220 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:59:01.0421 3220 Dnscache - ok
18:59:01.0500 3220 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:59:01.0500 3220 Dot3svc - ok
18:59:01.0531 3220 dpti2o - ok
18:59:01.0546 3220 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:59:01.0546 3220 drmkaud - ok
18:59:01.0593 3220 [ 63A53BB2A85DD22A5E8D6C5CB6273043 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
18:59:01.0593 3220 eamon - ok
18:59:01.0656 3220 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:59:01.0656 3220 EapHost - ok
18:59:01.0765 3220 [ 96BCD90ED9235A21629EFFDE5E941FB1 ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
18:59:01.0812 3220 eeCtrl - ok
18:59:01.0875 3220 [ 4F72DD48A2ED63A57C1210228A472020 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
18:59:01.0875 3220 ehdrv - ok
18:59:01.0937 3220 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
18:59:01.0937 3220 ehRecvr - ok
18:59:01.0953 3220 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
18:59:01.0968 3220 ehSched - ok
18:59:02.0140 3220 [ C937841931F906DB88A5EAE472491B84 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
18:59:02.0156 3220 ekrn - ok
18:59:02.0234 3220 [ 0C0C50813FC59C145B604B1DCCFFB377 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
18:59:02.0234 3220 epfw - ok
18:59:02.0281 3220 [ C1A8B6E44DCF250DB6BCCA7B460B9B6B ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
18:59:02.0281 3220 Epfwndis - ok
18:59:02.0312 3220 [ 7859F3E4AA8B9708D05F0DFBB3080721 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
18:59:02.0312 3220 epfwtdi - ok
18:59:02.0468 3220 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:59:02.0468 3220 ERSvc - ok
18:59:02.0515 3220 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
18:59:02.0531 3220 Eventlog - ok
18:59:02.0578 3220 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
18:59:02.0578 3220 EventSystem - ok
18:59:02.0687 3220 [ 6A197698A141FFE7651B962AE3172008 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
18:59:02.0687 3220 EvtEng - ok
18:59:02.0781 3220 [ EC4FE01285687B57671E32C335D5AEC5 ] EZSERVICE C:\Program Files\Asus\EZVCR\EZSERVICE.exe
18:59:02.0781 3220 EZSERVICE - ok
18:59:02.0828 3220 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:59:02.0843 3220 Fastfat - ok
18:59:02.0937 3220 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:59:02.0953 3220 FastUserSwitchingCompatibility - ok
18:59:02.0984 3220 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
18:59:02.0984 3220 Fdc - ok
18:59:03.0015 3220 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:59:03.0015 3220 Fips - ok
18:59:03.0031 3220 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
18:59:03.0031 3220 Flpydisk - ok
18:59:03.0062 3220 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:59:03.0062 3220 FltMgr - ok
18:59:03.0203 3220 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:59:03.0218 3220 FontCache3.0.0.0 - ok
18:59:03.0234 3220 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:59:03.0250 3220 Fs_Rec - ok
18:59:03.0265 3220 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:59:03.0281 3220 Ftdisk - ok
18:59:03.0296 3220 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:59:03.0296 3220 Gpc - ok
18:59:03.0375 3220 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1ca7380bfb797ae C:\Program Files\Google\Update\GoogleUpdate.exe
18:59:03.0421 3220 gupdate1ca7380bfb797ae - ok
18:59:03.0437 3220 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
18:59:03.0437 3220 gupdatem - ok
18:59:03.0484 3220 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:59:03.0562 3220 gusvc - ok
18:59:03.0609 3220 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:59:03.0609 3220 HDAudBus - ok
18:59:03.0656 3220 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:59:03.0671 3220 helpsvc - ok
18:59:03.0781 3220 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
18:59:03.0781 3220 HidServ - ok
18:59:03.0828 3220 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:59:03.0828 3220 HidUsb - ok
18:59:03.0890 3220 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:59:03.0906 3220 hkmsvc - ok
18:59:03.0921 3220 hpn - ok
18:59:03.0968 3220 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:59:03.0984 3220 HTTP - ok
18:59:04.0046 3220 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:59:04.0046 3220 HTTPFilter - ok
18:59:04.0062 3220 i2omgmt - ok
18:59:04.0078 3220 i2omp - ok
18:59:04.0125 3220 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:59:04.0125 3220 i8042prt - ok
18:59:04.0281 3220 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:59:04.0296 3220 IDriverT - ok
18:59:04.0390 3220 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:59:04.0468 3220 idsvc - ok
18:59:04.0484 3220 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:59:04.0500 3220 Imapi - ok
18:59:04.0546 3220 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:59:04.0562 3220 ImapiService - ok
18:59:04.0578 3220 ini910u - ok
18:59:04.0781 3220 [ 12F4D2AA29745DC2A403FF42E75CF7FA ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:59:04.0843 3220 IntcAzAudAddService - ok
18:59:04.0906 3220 IntelIde - ok
18:59:04.0953 3220 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:59:04.0953 3220 intelppm - ok
18:59:05.0000 3220 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:59:05.0000 3220 Ip6Fw - ok
18:59:05.0031 3220 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:59:05.0031 3220 IpFilterDriver - ok
18:59:05.0062 3220 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:59:05.0062 3220 IpInIp - ok
18:59:05.0093 3220 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:59:05.0109 3220 IpNat - ok
18:59:05.0140 3220 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:59:05.0140 3220 IPSec - ok
18:59:05.0171 3220 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:59:05.0171 3220 IRENUM - ok
18:59:05.0203 3220 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:59:05.0218 3220 isapnp - ok
18:59:05.0265 3220 [ F8573D2F9CD54E0FA57F9B04D7831CB3 ] ItSDisk C:\WINDOWS\system32\Drivers\ItSDisk.sys
18:59:05.0265 3220 ItSDisk - ok
18:59:05.0421 3220 [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
18:59:05.0421 3220 JavaQuickStarterService - ok
18:59:05.0453 3220 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:59:05.0468 3220 Kbdclass - ok
18:59:05.0500 3220 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:59:05.0500 3220 kbdhid - ok
18:59:05.0546 3220 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:59:05.0546 3220 kmixer - ok
18:59:05.0578 3220 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:59:05.0593 3220 KSecDD - ok
18:59:05.0687 3220 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:59:05.0703 3220 lanmanserver - ok
18:59:05.0765 3220 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:59:05.0781 3220 lanmanworkstation - ok
18:59:05.0796 3220 lbrtfdc - ok
18:59:05.0828 3220 LgBttPort - ok
18:59:05.0859 3220 lgbusenum - ok
18:59:05.0875 3220 LGVMODEM - ok
18:59:05.0953 3220 [ 5712DCBE52D68865CCA91AE04807B755 ] LightScribeService c:\Program Files\Common Files\LightScribe\LSSrvc.exe
18:59:05.0953 3220 LightScribeService - ok
18:59:06.0000 3220 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:59:06.0000 3220 LmHosts - ok
18:59:06.0062 3220 [ 64BC29C3A0388BFC580BB8B1346F7659 ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
18:59:06.0062 3220 LVUSBSta - ok
18:59:06.0093 3220 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
18:59:06.0109 3220 MBAMProtector - ok
18:59:06.0171 3220 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:59:06.0187 3220 MBAMScheduler - ok
18:59:06.0296 3220 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
18:59:06.0359 3220 MBAMService - ok
18:59:06.0421 3220 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
18:59:06.0421 3220 McrdSvc - ok
18:59:06.0500 3220 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:59:06.0500 3220 Messenger - ok
18:59:06.0562 3220 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
18:59:06.0578 3220 MHN - ok
18:59:06.0609 3220 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
18:59:06.0609 3220 MHNDRV - ok
18:59:06.0656 3220 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:59:06.0656 3220 mnmdd - ok
18:59:06.0796 3220 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:59:06.0796 3220 mnmsrvc - ok
18:59:06.0828 3220 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:59:06.0828 3220 Modem - ok
18:59:06.0859 3220 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
18:59:06.0859 3220 MODEMCSA - ok
18:59:06.0890 3220 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:59:06.0890 3220 Mouclass - ok
18:59:06.0937 3220 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:59:06.0937 3220 mouhid - ok
18:59:06.0984 3220 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:59:06.0984 3220 MountMgr - ok
18:59:07.0046 3220 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:59:07.0093 3220 MozillaMaintenance - ok
18:59:07.0140 3220 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\WINDOWS\system32\DRIVERS\MPE.sys
18:59:07.0140 3220 MPE - ok
18:59:07.0156 3220 mraid35x - ok
18:59:07.0187 3220 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:59:07.0187 3220 MRxDAV - ok
18:59:07.0250 3220 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:59:07.0265 3220 MRxSmb - ok
18:59:07.0312 3220 [ 1477849772712BAC69C144DCF2C9CE81 ] MSDV C:\WINDOWS\system32\DRIVERS\msdv.sys
18:59:07.0312 3220 MSDV - ok
18:59:07.0343 3220 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:59:07.0343 3220 Msfs - ok
18:59:07.0421 3220 MSIServer - ok
18:59:07.0453 3220 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:59:07.0468 3220 MSKSSRV - ok
18:59:07.0468 3220 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:59:07.0484 3220 MSPCLOCK - ok
18:59:07.0500 3220 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:59:07.0500 3220 MSPQM - ok
18:59:07.0531 3220 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:59:07.0531 3220 mssmbios - ok
18:59:07.0562 3220 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
18:59:07.0562 3220 MSTEE - ok
18:59:07.0578 3220 [ 1C0F480B7C6136DDB5FB909995AF014A ] MTsensor C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
18:59:07.0578 3220 MTsensor - ok
18:59:07.0625 3220 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:59:07.0640 3220 Mup - ok
18:59:07.0671 3220 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:59:07.0687 3220 NABTSFEC - ok
18:59:07.0765 3220 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:59:07.0781 3220 napagent - ok
18:59:07.0812 3220 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:59:07.0828 3220 NDIS - ok
18:59:07.0859 3220 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:59:07.0859 3220 NdisIP - ok
18:59:07.0906 3220 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:59:07.0906 3220 NdisTapi - ok
18:59:07.0953 3220 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:59:07.0953 3220 Ndisuio - ok
18:59:07.0984 3220 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:59:08.0000 3220 NdisWan - ok
18:59:08.0046 3220 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:59:08.0046 3220 NDProxy - ok
18:59:08.0062 3220 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:59:08.0078 3220 NetBIOS - ok
18:59:08.0093 3220 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:59:08.0109 3220 NetBT - ok
18:59:08.0203 3220 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
18:59:08.0218 3220 NetDDE - ok
18:59:08.0218 3220 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:59:08.0234 3220 NetDDEdsdm - ok
18:59:08.0328 3220 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:59:08.0328 3220 Netlogon - ok
18:59:08.0406 3220 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
18:59:08.0437 3220 Netman - ok
18:59:08.0578 3220 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:59:08.0609 3220 NetTcpPortSharing - ok
18:59:08.0718 3220 [ 50F5DE54E1D1646C02078F3EDDC15A8E ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
18:59:08.0812 3220 NETw3x32 - ok
18:59:08.0828 3220 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:59:08.0828 3220 NIC1394 - ok
18:59:08.0984 3220 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
18:59:09.0000 3220 Nla - ok
18:59:09.0046 3220 [ F6C40E0A565EE3CE5AEEB325E10054F2 ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys
18:59:09.0093 3220 nmwcd - ok
18:59:09.0125 3220 [ 2A394E9E1FA3565E4B2FEA470FFE4D6B ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys
18:59:09.0140 3220 nmwcdc - ok
18:59:09.0171 3220 [ 99B224F8026CB534724AA3C408561E45 ] nmwcdnsu C:\WINDOWS\system32\drivers\nmwcdnsu.sys
18:59:09.0203 3220 nmwcdnsu - ok
18:59:09.0234 3220 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:59:09.0234 3220 Npfs - ok
18:59:09.0593 3220 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:59:09.0609 3220 Ntfs - ok
18:59:09.0718 3220 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:59:09.0718 3220 NtLmSsp - ok
18:59:09.0812 3220 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:59:09.0828 3220 NtmsSvc - ok
18:59:09.0843 3220 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:59:09.0843 3220 Null - ok
18:59:10.0000 3220 [ 59E5D945934EC2E7EAA22AF81813DABF ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:59:10.0140 3220 nv - ok
18:59:10.0265 3220 [ 6D88C26BF33D2B8404F01CECBDD47D3A ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
18:59:10.0281 3220 NVSvc - ok
18:59:10.0328 3220 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:59:10.0328 3220 NwlnkFlt - ok
18:59:10.0343 3220 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:59:10.0343 3220 NwlnkFwd - ok
18:59:10.0390 3220 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:59:10.0390 3220 ohci1394 - ok
18:59:10.0500 3220 [ EC322186D8FCE3D632F3F597D67747DD ] OpenVPNService C:\Program Files\OpenVPN\bin\openvpnserv.exe
18:59:10.0515 3220 OpenVPNService - ok
18:59:10.0625 3220 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:59:10.0640 3220 ose - ok
18:59:10.0703 3220 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\drivers\Parport.sys
18:59:10.0718 3220 Parport - ok
18:59:10.0750 3220 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:59:10.0750 3220 PartMgr - ok
18:59:10.0781 3220 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:59:10.0781 3220 ParVdm - ok
18:59:10.0828 3220 [ 5F0ED2F6DA0DF347AB7777EEDD5253BB ] PCASp50 C:\WINDOWS\system32\Drivers\PCASp50.sys
18:59:10.0828 3220 PCASp50 - ok
18:59:10.0875 3220 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
18:59:10.0875 3220 pccsmcfd - ok
18:59:10.0890 3220 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:59:10.0906 3220 PCI - ok
18:59:10.0937 3220 PCIDump - ok
18:59:10.0937 3220 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:59:10.0953 3220 PCIIde - ok
18:59:11.0000 3220 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
18:59:11.0015 3220 Pcmcia - ok
18:59:11.0031 3220 PDCOMP - ok
18:59:11.0046 3220 PDFRAME - ok
18:59:11.0062 3220 PDRELI - ok
18:59:11.0078 3220 PDRFRAME - ok
18:59:11.0093 3220 perc2 - ok
18:59:11.0109 3220 perc2hib - ok
18:59:11.0187 3220 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
18:59:11.0203 3220 PlugPlay - ok
18:59:11.0265 3220 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:59:11.0281 3220 PolicyAgent - ok
18:59:11.0328 3220 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:59:11.0328 3220 PptpMiniport - ok
18:59:11.0375 3220 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:59:11.0375 3220 ProtectedStorage - ok
18:59:11.0390 3220 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:59:11.0390 3220 PSched - ok
18:59:11.0390 3220 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:59:11.0390 3220 Ptilink - ok
18:59:11.0421 3220 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:59:11.0453 3220 PxHelp20 - ok
18:59:11.0453 3220 ql1080 - ok
18:59:11.0468 3220 Ql10wnt - ok
18:59:11.0484 3220 ql12160 - ok
18:59:11.0484 3220 ql1240 - ok
18:59:11.0500 3220 ql1280 - ok
18:59:11.0531 3220 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:59:11.0531 3220 RasAcd - ok
18:59:11.0578 3220 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:59:11.0593 3220 RasAuto - ok
18:59:11.0609 3220 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:59:11.0609 3220 Rasl2tp - ok
18:59:11.0671 3220 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:59:11.0687 3220 RasMan - ok
18:59:11.0687 3220 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:59:11.0687 3220 RasPppoe - ok
18:59:11.0703 3220 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:59:11.0703 3220 Raspti - ok
18:59:11.0734 3220 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:59:11.0734 3220 Rdbss - ok
18:59:11.0765 3220 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:59:11.0765 3220 RDPCDD - ok
18:59:11.0781 3220 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:59:11.0796 3220 rdpdr - ok
18:59:11.0843 3220 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:59:11.0859 3220 RDPWD - ok
18:59:11.0906 3220 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:59:11.0906 3220 RDSessMgr - ok
18:59:11.0937 3220 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:59:11.0937 3220 redbook - ok
18:59:12.0031 3220 [ D8F61AAAE73A1FBDE6F538BECC891F2F ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
18:59:12.0046 3220 RegSrvc - ok
18:59:12.0109 3220 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:59:12.0125 3220 RemoteAccess - ok
18:59:12.0156 3220 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
18:59:12.0171 3220 RemoteRegistry - ok
18:59:12.0187 3220 [ 7A6648B61661B1421FFAB762E391E33F ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
18:59:12.0203 3220 rimmptsk - ok
18:59:12.0203 3220 [ 8F7012D1B6A71EE9C23CE93DCDBF9F4B ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
18:59:12.0218 3220 rimsptsk - ok
18:59:12.0234 3220 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
18:59:12.0234 3220 ROOTMODEM - ok
18:59:12.0265 3220 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
18:59:12.0281 3220 RpcLocator - ok
18:59:12.0343 3220 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:59:12.0343 3220 RpcSs - ok
18:59:12.0390 3220 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:59:12.0390 3220 RSVP - ok
18:59:12.0453 3220 [ C6D34A1874CD2B212DC3E788091C64B4 ] RTL8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
18:59:12.0453 3220 RTL8023xp - ok
18:59:12.0468 3220 [ C6D34A1874CD2B212DC3E788091C64B4 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
18:59:12.0468 3220 RTLE8023xp - ok
18:59:12.0562 3220 [ 25F697E3AFA7B337BBCADDBCE38E6934 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
18:59:12.0562 3220 S24EventMonitor - ok
18:59:12.0578 3220 [ 2862ADB14481AC28F98105FF33A99EB0 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
18:59:12.0593 3220 s24trans - ok
18:59:12.0687 3220 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
18:59:12.0687 3220 SamSs - ok
18:59:12.0750 3220 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:59:12.0765 3220 SCardSvr - ok
18:59:12.0812 3220 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:59:12.0812 3220 Schedule - ok
18:59:12.0875 3220 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
18:59:12.0875 3220 sdbus - ok
18:59:12.0906 3220 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:59:12.0906 3220 Secdrv - ok
18:59:12.0968 3220 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:59:12.0984 3220 seclogon - ok
18:59:13.0015 3220 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
18:59:13.0015 3220 SENS - ok
18:59:13.0046 3220 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
18:59:13.0046 3220 Serial - ok
18:59:13.0156 3220 [ F31E9531AF225CA25350D5E87E999B31 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
18:59:13.0218 3220 ServiceLayer - ok
18:59:13.0296 3220 [ 0FA803C64DF0914B41F807EA276BF2A6 ] sffdisk C:\WINDOWS\system32\DRIVERS\sffdisk.sys
18:59:13.0296 3220 sffdisk - ok
18:59:13.0312 3220 [ C17C331E435ED8737525C86A7557B3AC ] sffp_sd C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
18:59:13.0312 3220 sffp_sd - ok
18:59:13.0328 3220 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:59:13.0343 3220 Sfloppy - ok
18:59:13.0406 3220 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:59:13.0437 3220 SharedAccess - ok
18:59:13.0500 3220 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:59:13.0500 3220 ShellHWDetection - ok
18:59:13.0515 3220 Simbad - ok
18:59:13.0656 3220 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
18:59:13.0687 3220 SkypeUpdate - ok
18:59:13.0718 3220 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:59:13.0718 3220 SLIP - ok
18:59:13.0734 3220 smserial - ok
18:59:13.0796 3220 [ 68071A3F784A31E9A386BD6F0A548F3B ] snpstd2 C:\WINDOWS\system32\DRIVERS\snpstd2.sys
18:59:13.0812 3220 snpstd2 - ok
18:59:13.0828 3220 Sparrow - ok
18:59:13.0843 3220 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:59:13.0843 3220 splitter - ok
18:59:13.0921 3220 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:59:13.0921 3220 Spooler - ok
18:59:13.0953 3220 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:59:13.0953 3220 sr - ok
18:59:14.0015 3220 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
18:59:14.0031 3220 srservice - ok
18:59:14.0078 3220 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:59:14.0093 3220 Srv - ok
18:59:14.0156 3220 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:59:14.0156 3220 SSDPSRV - ok
18:59:14.0203 3220 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:59:14.0234 3220 stisvc - ok
18:59:14.0250 3220 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:59:14.0250 3220 streamip - ok
18:59:14.0281 3220 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:59:14.0281 3220 swenum - ok
18:59:14.0312 3220 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:59:14.0328 3220 swmidi - ok
18:59:14.0406 3220 SwPrv - ok
18:59:14.0421 3220 symc810 - ok
18:59:14.0437 3220 symc8xx - ok
18:59:14.0453 3220 sym_hi - ok
18:59:14.0453 3220 sym_u3 - ok
18:59:14.0562 3220 [ 84A07BAFDEF13532E7BA10D8C55EACD3 ] SynMini C:\WINDOWS\system32\Drivers\SynMini.sys
18:59:14.0625 3220 SynMini - ok
18:59:14.0640 3220 [ 260A9E1973BAF9135BE5D7D65027B55A ] SynScan C:\WINDOWS\system32\Drivers\SynScan.sys
18:59:14.0656 3220 SynScan - ok
18:59:14.0687 3220 [ 69BF2DD9B1099D1AA3E7CF14B4B842CD ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:59:14.0703 3220 SynTP - ok
18:59:14.0718 3220 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:59:14.0734 3220 sysaudio - ok
18:59:14.0796 3220 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:59:14.0796 3220 SysmonLog - ok
18:59:14.0843 3220 [ 8CF6E2AE1707D82E904ECCA68CEF8B87 ] tap0901 C:\WINDOWS\system32\DRIVERS\tap0901.sys
18:59:14.0843 3220 tap0901 - ok
18:59:14.0906 3220 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:59:14.0937 3220 TapiSrv - ok
18:59:14.0968 3220 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:59:14.0984 3220 Tcpip - ok
18:59:15.0015 3220 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:59:15.0015 3220 TDPIPE - ok
18:59:15.0031 3220 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:59:15.0031 3220 TDTCP - ok
18:59:15.0062 3220 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:59:15.0062 3220 TermDD - ok
18:59:15.0125 3220 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
18:59:15.0140 3220 TermService - ok
18:59:15.0218 3220 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
18:59:15.0218 3220 Themes - ok
18:59:15.0265 3220 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
18:59:15.0281 3220 TlntSvr - ok
18:59:15.0312 3220 [ E362D54FD394999C4178936396664E57 ] toshidpt C:\WINDOWS\system32\drivers\Toshidpt.sys
18:59:15.0312 3220 toshidpt - ok
18:59:15.0328 3220 TosIde - ok
18:59:15.0343 3220 [ 02EBF69066D6F208AF4D07481BBAE0AD ] tosporte C:\WINDOWS\system32\DRIVERS\tosporte.sys
18:59:15.0343 3220 tosporte - ok
18:59:15.0375 3220 [ B52D9CE4A1F2FEB1C77F913B55768530 ] Tosrfbd C:\WINDOWS\system32\Drivers\tosrfbd.sys
18:59:15.0390 3220 Tosrfbd - ok
18:59:15.0406 3220 [ 1AE2BA74B2A4F5A358B13FCD35258C30 ] Tosrfbnp C:\WINDOWS\system32\Drivers\tosrfbnp.sys
18:59:15.0406 3220 Tosrfbnp - ok
18:59:15.0421 3220 [ 5BA1CA3B3CDDB1DDC67DF473F05D1EC2 ] Tosrfcom C:\WINDOWS\system32\Drivers\tosrfcom.sys
18:59:15.0437 3220 Tosrfcom - ok
18:59:15.0453 3220 [ 8310963D2D06860E272EEC87BCA4217A ] Tosrfhid C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
18:59:15.0453 3220 Tosrfhid - ok
18:59:15.0468 3220 [ C52FD27B9ADF3A1F22CB90E6BCF9B0CB ] tosrfnds C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
18:59:15.0500 3220 tosrfnds - ok
18:59:15.0515 3220 [ AB6FD13D7EFA2634FA6BDF84C7EF0696 ] TosRfSnd C:\WINDOWS\system32\drivers\TosRfSnd.sys
18:59:15.0515 3220 TosRfSnd - ok
18:59:15.0546 3220 [ C639FC314EA7436325ADE8CD514B627C ] Tosrfusb C:\WINDOWS\system32\Drivers\tosrfusb.sys
18:59:15.0546 3220 Tosrfusb - ok
18:59:15.0609 3220 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:59:15.0609 3220 TrkWks - ok
18:59:15.0671 3220 [ 0883B96195084F6443AFA63BBB1E3A94 ] u3kmini C:\WINDOWS\system32\Drivers\u3kmini.sys
18:59:15.0703 3220 u3kmini - ok
18:59:15.0718 3220 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:59:15.0734 3220 Udfs - ok
18:59:15.0750 3220 ultra - ok
18:59:15.0781 3220 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:59:15.0796 3220 Update - ok
18:59:15.0875 3220 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
18:59:15.0890 3220 upnphost - ok
18:59:15.0921 3220 [ 47F5F9D837D80FFD5882A14DB9DA0A67 ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
18:59:15.0937 3220 upperdev - ok
18:59:15.0984 3220 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
18:59:15.0984 3220 UPS - ok
18:59:16.0031 3220 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
18:59:16.0046 3220 usbaudio - ok
18:59:16.0046 3220 usbbus - ok
18:59:16.0078 3220 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:59:16.0078 3220 usbccgp - ok
18:59:16.0078 3220 UsbDiag - ok
18:59:16.0109 3220 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:59:16.0109 3220 usbehci - ok
18:59:16.0125 3220 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:59:16.0140 3220 usbhub - ok
18:59:16.0140 3220 USBModem - ok
18:59:16.0187 3220 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:59:16.0187 3220 usbprint - ok
18:59:16.0218 3220 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:59:16.0234 3220 usbscan - ok
18:59:16.0281 3220 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\drivers\usbser.sys
18:59:16.0281 3220 usbser - ok
18:59:16.0312 3220 [ E44F0D17BE0908B58DCC99CCB99C6C32 ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
18:59:16.0312 3220 UsbserFilt - ok
18:59:16.0437 3220 [ 609AC82555A790BA124D67268B4EB1AB ] UsbService C:\Program Files\ASUS\Printer Utilities\UsbService.exe
18:59:16.0437 3220 UsbService - ok
18:59:16.0484 3220 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:59:16.0484 3220 USBSTOR - ok
18:59:16.0531 3220 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:59:16.0531 3220 usbuhci - ok
18:59:16.0546 3220 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:59:16.0546 3220 VgaSave - ok
18:59:16.0562 3220 ViaIde - ok
18:59:16.0593 3220 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:59:16.0609 3220 VolSnap - ok
18:59:16.0671 3220 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
18:59:16.0687 3220 VSS - ok
18:59:16.0734 3220 [ C21DBD71AA028B3D213460F88D43BBFD ] vuhub C:\WINDOWS\system32\DRIVERS\vuhub.sys
18:59:16.0734 3220 vuhub - ok
18:59:16.0812 3220 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
18:59:16.0828 3220 W32Time - ok
18:59:16.0843 3220 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:59:16.0859 3220 Wanarp - ok
18:59:16.0906 3220 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
18:59:16.0937 3220 Wdf01000 - ok
18:59:16.0953 3220 WDICA - ok
18:59:16.0984 3220 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:59:16.0984 3220 wdmaud - ok
18:59:17.0031 3220 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:59:17.0031 3220 WebClient - ok
18:59:17.0109 3220 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:59:17.0125 3220 winmgmt - ok
18:59:17.0468 3220 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
18:59:17.0750 3220 WinRM - ok
18:59:17.0843 3220 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
18:59:17.0843 3220 WmdmPmSN - ok
18:59:17.0921 3220 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
18:59:17.0953 3220 Wmi - ok
18:59:18.0031 3220 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:59:18.0046 3220 WmiApSrv - ok
18:59:18.0109 3220 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
18:59:18.0109 3220 WpdUsb - ok
18:59:18.0281 3220 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:59:18.0359 3220 WPFFontCache_v0400 - ok
18:59:18.0390 3220 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:59:18.0390 3220 WS2IFSL - ok
18:59:18.0437 3220 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:59:18.0453 3220 wscsvc - ok
18:59:18.0593 3220 WSearch - ok
18:59:18.0640 3220 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:59:18.0640 3220 WSTCODEC - ok
18:59:18.0671 3220 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:59:18.0671 3220 wuauserv - ok
18:59:18.0734 3220 [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:59:18.0765 3220 WudfPf - ok
18:59:18.0828 3220 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:59:18.0828 3220 WudfRd - ok
18:59:18.0890 3220 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
18:59:18.0890 3220 WudfSvc - ok
18:59:19.0000 3220 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:59:19.0031 3220 WZCSVC - ok
18:59:19.0093 3220 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:59:19.0093 3220 xmlprov - ok
18:59:19.0156 3220 ================ Scan global ===============================
18:59:19.0375 3220 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
18:59:19.0484 3220 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
18:59:19.0546 3220 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
18:59:19.0593 3220 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
18:59:19.0609 3220 [Global] - ok
18:59:19.0609 3220 ================ Scan MBR ==================================
18:59:19.0625 3220 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
18:59:24.0390 3220 \Device\Harddisk0\DR0 - ok
18:59:24.0390 3220 ================ Scan VBR ==================================
18:59:24.0390 3220 [ C169AA5DAA56224C99FF005CB1FECA8F ] \Device\Harddisk0\DR0\Partition1
18:59:24.0390 3220 \Device\Harddisk0\DR0\Partition1 - ok
18:59:24.0421 3220 [ BCB189DFCF89BF902440A78D18AEA79A ] \Device\Harddisk0\DR0\Partition2
18:59:24.0421 3220 \Device\Harddisk0\DR0\Partition2 - ok
18:59:24.0421 3220 ============================================================
18:59:24.0421 3220 Scan finished
18:59:24.0421 3220 ============================================================
18:59:24.0437 1736 Detected object count: 0
18:59:24.0437 1736 Actual detected object count: 0
18:59:28.0125 0584 Deinitialize success

[jaro3]

jiné zařízení na tom USB fungují? Máš nainstalované ovladače na USB?

[cechk]

flashka funguje, disky nefungují

[cechk]

resp. disky fungují jen v nouzovým režimu. V klasickým po připojení přestane reagovat spodní windows lišta a vše se zpomalí