nemůžu vyhledávat v Google chrome

[cermmi]

Dobrý den,
prosím moc o radu, nemůžu vyhledávat ve vyhledávači google chrome, píše mi to hlášku ,,Neobvyklá návštěvnost z vaší počítačové sítě.

Zde je výsledek kontroly HiJackThis:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:40:34, on 15.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16736)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\dell\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eu.ask.com?o=14597&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8657 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[cermmi]

tak už jsem to vyčistila v tom ATF Cleaneru

tady je log z Malwarevyte´s Anti-Malware:

Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Verze: v2013.11.16.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
dell :: DELL-PC [administrátor]

16.11.2013 11:18:39
MBAM-log-2013-11-16 (11-24-17).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 202015
Uplynulý čas: 5 minut, 14 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\dell\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\dell\AppData\Roaming\OpenCandy\9D4D502CC3ED4B7DB648E41A818FC8CA (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 1
C:\Users\dell\AppData\Roaming\OpenCandy\9D4D502CC3ED4B7DB648E41A818FC8CA\PasswordBoxCHSTORE_p1v0.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.


tady je log z adxCleaneru:
dwCleaner v3.012 - Report created 16/11/2013 at 11:06:23
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : dell - DELL-PC
# Running from : C:\Users\dell\Downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Program Files (x86)\ICQ6Toolbar
Folder Found C:\ProgramData\Ask
Folder Found C:\ProgramData\ICQ\ICQToolbar
Folder Found C:\Users\dell\AppData\Roaming\OpenCandy

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16736

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://eu.ask.com?o=14597&l=dis
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2856 octets] - [16/11/2013 11:06:23]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2916 octets] ##########

[Orcus]

Znovu spusť MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit


====================================================

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Delete“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

====================================================

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

====================================================

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

====================================================

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[cermmi]

LOG Z MBAM:
17.11.2013 19:53:12
mbam-log-2013-11-17 (19-53-12).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 201634
Uplynulý čas: 6 minut, 51 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\dell\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Users\dell\AppData\Roaming\OpenCandy\9D4D502CC3ED4B7DB648E41A818FC8CA (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.

Nalezené soubory: 1
C:\Users\dell\AppData\Roaming\OpenCandy\9D4D502CC3ED4B7DB648E41A818FC8CA\PasswordBoxCHSTORE_p1v0.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.

(konec)


LOG z AdwCleaneru:
# AdwCleaner v3.012 - Report created 17/11/2013 at 20:12:29
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : dell - DELL-PC
# Running from : C:\Users\dell\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16736

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3012 octets] - [16/11/2013 11:06:23]
AdwCleaner[R1].txt - [3018 octets] - [17/11/2013 20:10:48]
AdwCleaner[S0].txt - [2572 octets] - [17/11/2013 20:12:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2632 octets] ##########


Log z RogueKilleru:
RogueKiller V8.7.8 [Nov 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : dell [Práva správce]
Mód : Kontrola -- Datum : 11/17/2013 20:19:42
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9320423AS ATA Device +++++
--- User ---
[MBR] b091b00a77c78202a2592856caf82400
[BSP] 821c04d84790a00de212b9def440f452 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30801920 | Size: 290204 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_11172013_201942.txt >>





log Z ASWmbr:
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-11-17 20:31:57
-----------------------------
20:31:57.390 OS Version: Windows x64 6.1.7601 Service Pack 1
20:31:57.390 Number of processors: 1 586 0x603
20:31:57.395 ComputerName: DELL-PC UserName: dell
20:32:02.001 Initialize success
20:32:13.348 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
20:32:13.348 Disk 0 Vendor: ST9320423AS D005SDM1 Size: 305245MB BusType: 11
20:32:13.489 Disk 0 MBR read successfully
20:32:13.489 Disk 0 MBR scan
20:32:13.489 Disk 0 Windows VISTA default MBR code
20:32:13.489 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
20:32:13.504 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 81920
20:32:13.520 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 290204 MB offset 30801920
20:32:13.535 Disk 0 scanning C:\Windows\system32\drivers
20:32:33.145 Service scanning
20:32:54.127 Modules scanning
20:32:54.142 Disk 0 trace - called modules:
20:32:54.158 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
20:32:54.173 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80023ac060]
20:32:54.688 3 CLASSPNP.SYS[fffff8800188643f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80022ee060]
20:32:54.688 Scan finished successfully
20:33:15.311 Disk 0 MBR has been saved successfully to "C:\Users\dell\Desktop\MBR.dat"
20:33:15.327 The log file has been saved successfully to "C:\Users\dell\Desktop\aswMBR.txt"

[cermmi]

LOG z TDSSKiLLERU: - 1. část
20:22:46.0564 4508 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:24:54.0344 4508 ============================================================
20:24:54.0344 4508 Current date / time: 2013/11/17 20:24:54.0344
20:24:54.0344 4508 SystemInfo:
20:24:54.0344 4508
20:24:54.0344 4508 OS Version: 6.1.7601 ServicePack: 1.0
20:24:54.0344 4508 Product type: Workstation
20:24:54.0344 4508 ComputerName: DELL-PC
20:24:54.0344 4508 UserName: dell
20:24:54.0344 4508 Windows directory: C:\Windows
20:24:54.0344 4508 System windows directory: C:\Windows
20:24:54.0344 4508 Running under WOW64
20:24:54.0344 4508 Processor architecture: Intel x64
20:24:54.0344 4508 Number of processors: 1
20:24:54.0344 4508 Page size: 0x1000
20:24:54.0344 4508 Boot type: Normal boot
20:24:54.0344 4508 ============================================================
20:24:56.0122 4508 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:24:56.0122 4508 ============================================================
20:24:56.0122 4508 \Device\Harddisk0\DR0:
20:24:56.0122 4508 MBR partitions:
20:24:56.0122 4508 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
20:24:56.0122 4508 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x236CE2B0
20:24:56.0122 4508 ============================================================
20:24:56.0154 4508 C: <-> \Device\Harddisk0\DR0\Partition2
20:24:56.0154 4508 ============================================================
20:24:56.0154 4508 Initialize success
20:24:56.0154 4508 ============================================================
20:25:48.0835 4300 ============================================================
20:25:48.0835 4300 Scan started
20:25:48.0835 4300 Mode: Manual;
20:25:48.0835 4300 ============================================================
20:25:49.0802 4300 ================ Scan system memory ========================
20:25:49.0802 4300 System memory - ok
20:25:49.0818 4300 ================ Scan services =============================
20:25:50.0021 4300 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:25:50.0021 4300 1394ohci - ok
20:25:50.0067 4300 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:25:50.0067 4300 ACPI - ok
20:25:50.0114 4300 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:25:50.0130 4300 AcpiPmi - ok
20:25:50.0270 4300 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:25:50.0286 4300 AdobeARMservice - ok
20:25:50.0442 4300 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:25:50.0457 4300 AdobeFlashPlayerUpdateSvc - ok
20:25:50.0520 4300 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:25:50.0598 4300 adp94xx - ok
20:25:50.0645 4300 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:25:50.0707 4300 adpahci - ok
20:25:50.0738 4300 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:25:50.0738 4300 adpu320 - ok
20:25:50.0785 4300 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:25:50.0785 4300 AeLookupSvc - ok
20:25:50.0847 4300 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
20:25:50.0847 4300 AERTFilters - ok
20:25:50.0910 4300 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
20:25:50.0925 4300 AFD - ok
20:25:50.0972 4300 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:25:50.0972 4300 agp440 - ok
20:25:50.0988 4300 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:25:51.0003 4300 ALG - ok
20:25:51.0050 4300 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:25:51.0050 4300 aliide - ok
20:25:51.0081 4300 [ CAA6ED31C6DA3C505A684162B3492166 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:25:51.0097 4300 AMD External Events Utility - ok
20:25:51.0113 4300 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:25:51.0144 4300 amdide - ok
20:25:51.0175 4300 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:25:51.0222 4300 AmdK8 - ok
20:25:51.0378 4300 [ CC0B8B1912967D429C4A2D2BD7A9E52D ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:25:51.0565 4300 amdkmdag - ok
20:25:51.0581 4300 [ B855C99C23A57EDECA29F49A3210B95C ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:25:51.0596 4300 amdkmdap - ok
20:25:51.0612 4300 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:25:51.0612 4300 AmdPPM - ok
20:25:51.0643 4300 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:25:51.0690 4300 amdsata - ok
20:25:51.0705 4300 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:25:51.0737 4300 amdsbs - ok
20:25:51.0768 4300 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:25:51.0768 4300 amdxata - ok
20:25:51.0815 4300 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:25:51.0830 4300 AppID - ok
20:25:51.0846 4300 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:25:51.0861 4300 AppIDSvc - ok
20:25:51.0924 4300 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
20:25:51.0924 4300 Appinfo - ok
20:25:51.0955 4300 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:25:51.0955 4300 arc - ok
20:25:51.0986 4300 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:25:52.0002 4300 arcsas - ok
20:25:52.0049 4300 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:25:52.0064 4300 AsyncMac - ok
20:25:52.0111 4300 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:25:52.0127 4300 atapi - ok
20:25:52.0189 4300 [ 7E2F5A758F63F80F8B03F889B4E6B19F ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
20:25:52.0189 4300 AtiHdmiService - ok
20:25:52.0236 4300 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
20:25:52.0236 4300 AtiPcie - ok
20:25:52.0329 4300 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:25:52.0345 4300 AudioEndpointBuilder - ok
20:25:52.0392 4300 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:25:52.0392 4300 AudioSrv - ok
20:25:52.0454 4300 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:25:52.0454 4300 AxInstSV - ok
20:25:52.0517 4300 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:25:52.0517 4300 b06bdrv - ok
20:25:52.0548 4300 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:25:52.0563 4300 b57nd60a - ok
20:25:52.0657 4300 [ 6A32E90524E150B7AF61201168720E78 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
20:25:52.0735 4300 BCM43XX - ok
20:25:52.0782 4300 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:25:52.0782 4300 BDESVC - ok
20:25:52.0813 4300 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:25:52.0813 4300 Beep - ok
20:25:52.0875 4300 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:25:52.0907 4300 BFE - ok
20:25:52.0938 4300 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:25:52.0969 4300 BITS - ok
20:25:53.0000 4300 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:25:53.0000 4300 blbdrive - ok
20:25:53.0031 4300 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:25:53.0063 4300 bowser - ok
20:25:53.0094 4300 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:25:53.0094 4300 BrFiltLo - ok
20:25:53.0125 4300 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:25:53.0125 4300 BrFiltUp - ok
20:25:53.0172 4300 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:25:53.0172 4300 Browser - ok
20:25:53.0203 4300 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:25:53.0234 4300 Brserid - ok
20:25:53.0265 4300 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:25:53.0281 4300 BrSerWdm - ok
20:25:53.0297 4300 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:25:53.0328 4300 BrUsbMdm - ok
20:25:53.0343 4300 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:25:53.0359 4300 BrUsbSer - ok
20:25:53.0421 4300 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:25:53.0421 4300 BthEnum - ok
20:25:53.0453 4300 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:25:53.0468 4300 BTHMODEM - ok
20:25:53.0484 4300 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:25:53.0499 4300 BthPan - ok
20:25:53.0562 4300 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:25:53.0624 4300 BTHPORT - ok
20:25:53.0640 4300 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:25:53.0640 4300 bthserv - ok
20:25:53.0687 4300 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:25:53.0687 4300 BTHUSB - ok
20:25:53.0733 4300 [ EE215AC3C16F00667D0FC391D018C8FD ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
20:25:53.0749 4300 btwampfl - ok
20:25:53.0796 4300 [ EBC9E33C13CDD6C51C1134EAE46466A1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:25:53.0796 4300 btwaudio - ok
20:25:53.0827 4300 [ 43FB7FA896D87AA5A9F3E743D7E2303F ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
20:25:53.0843 4300 btwavdt - ok
20:25:53.0905 4300 [ 0D86D2C7659588DB97BDB1AE74D95875 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:25:53.0936 4300 btwdins - ok
20:25:53.0952 4300 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
20:25:53.0967 4300 btwl2cap - ok
20:25:53.0983 4300 [ 1AED551A8CB2F2343EDA09109EEF4807 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:25:53.0983 4300 btwrchid - ok
20:25:54.0014 4300 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:25:54.0014 4300 cdfs - ok
20:25:54.0061 4300 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:25:54.0061 4300 cdrom - ok
20:25:54.0123 4300 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:25:54.0139 4300 CertPropSvc - ok
20:25:54.0170 4300 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:25:54.0170 4300 circlass - ok
20:25:54.0201 4300 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:25:54.0217 4300 CLFS - ok
20:25:54.0295 4300 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:25:54.0295 4300 clr_optimization_v2.0.50727_32 - ok
20:25:54.0373 4300 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:25:54.0373 4300 clr_optimization_v2.0.50727_64 - ok
20:25:54.0467 4300 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:25:54.0498 4300 clr_optimization_v4.0.30319_32 - ok
20:25:54.0545 4300 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:25:54.0560 4300 clr_optimization_v4.0.30319_64 - ok
20:25:54.0576 4300 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:25:54.0576 4300 CmBatt - ok
20:25:54.0623 4300 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:25:54.0669 4300 cmdide - ok
20:25:54.0732 4300 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
20:25:54.0747 4300 CNG - ok
20:25:54.0779 4300 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:25:54.0810 4300 Compbatt - ok
20:25:54.0841 4300 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:25:54.0841 4300 CompositeBus - ok
20:25:54.0888 4300 COMSysApp - ok
20:25:54.0903 4300 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:25:54.0903 4300 crcdisk - ok
20:25:54.0981 4300 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:25:54.0981 4300 CryptSvc - ok
20:25:55.0028 4300 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:25:55.0044 4300 CtClsFlt - ok
20:25:55.0122 4300 [ 61A86809B62769643892BC0812B204AA ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:25:55.0137 4300 cvhsvc - ok
20:25:55.0200 4300 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:25:55.0231 4300 DcomLaunch - ok
20:25:55.0278 4300 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:25:55.0293 4300 defragsvc - ok
20:25:55.0356 4300 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:25:55.0356 4300 DfsC - ok
20:25:55.0387 4300 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:25:55.0403 4300 Dhcp - ok
20:25:55.0418 4300 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:25:55.0418 4300 discache - ok
20:25:55.0481 4300 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:25:55.0496 4300 Disk - ok
20:25:55.0543 4300 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:25:55.0543 4300 Dnscache - ok
20:25:55.0574 4300 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:25:55.0574 4300 dot3svc - ok
20:25:55.0637 4300 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:25:55.0637 4300 DPS - ok
20:25:55.0683 4300 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:25:55.0683 4300 drmkaud - ok
20:25:55.0777 4300 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:25:55.0808 4300 DXGKrnl - ok
20:25:55.0855 4300 [ 72A1AA3C6C79B928D02A6FAD387B1349 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
20:25:55.0855 4300 eamonm - ok
20:25:55.0886 4300 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:25:55.0886 4300 EapHost - ok
20:25:56.0011 4300 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:25:56.0136 4300 ebdrv - ok
20:25:56.0167 4300 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
20:25:56.0183 4300 EFS - ok
20:25:56.0229 4300 [ E99457900012B53B2226F146ECAF9136 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
20:25:56.0261 4300 ehdrv - ok
20:25:56.0354 4300 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:25:56.0385 4300 ehRecvr - ok
20:25:56.0432 4300 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:25:56.0432 4300 ehSched - ok
20:25:56.0526 4300 [ B36A22D8B8C4B425235029FA130A8AA7 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
20:25:56.0541 4300 EhttpSrv - ok
20:25:56.0604 4300 [ 737300EFBE3B82F09A615797A9D7E510 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
20:25:56.0635 4300 ekrn - ok
20:25:56.0682 4300 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:25:56.0713 4300 elxstor - ok
20:25:56.0760 4300 [ A2AF094DCBE8BFF7E898D327750506A0 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
20:25:56.0791 4300 epfwwfpr - ok
20:25:56.0822 4300 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:25:56.0838 4300 ErrDev - ok
20:25:56.0900 4300 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:25:56.0900 4300 EventSystem - ok
20:25:56.0931 4300 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:25:56.0978 4300 exfat - ok
20:25:56.0994 4300 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:25:57.0009 4300 fastfat - ok
20:25:57.0072 4300 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:25:57.0103 4300 Fax - ok
20:25:57.0119 4300 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:25:57.0119 4300 fdc - ok
20:25:57.0150 4300 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:25:57.0150 4300 fdPHost - ok
20:25:57.0165 4300 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:25:57.0181 4300 FDResPub - ok
20:25:57.0197 4300 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:25:57.0228 4300 FileInfo - ok
20:25:57.0259 4300 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:25:57.0259 4300 Filetrace - ok
20:25:57.0290 4300 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:25:57.0290 4300 flpydisk - ok
20:25:57.0368 4300 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:25:57.0431 4300 FltMgr - ok
20:25:57.0524 4300 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
20:25:57.0571 4300 FontCache - ok
20:25:57.0633 4300 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:25:57.0649 4300 FontCache3.0.0.0 - ok
20:25:57.0680 4300 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:25:57.0711 4300 FsDepends - ok
20:25:57.0743 4300 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:25:57.0789 4300 Fs_Rec - ok
20:25:57.0852 4300 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:25:57.0852 4300 fvevol - ok
20:25:57.0899 4300 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:25:57.0899 4300 gagp30kx - ok
20:25:57.0977 4300 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:25:58.0008 4300 gpsvc - ok
20:25:58.0070 4300 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:25:58.0086 4300 gupdate - ok
20:25:58.0117 4300 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:25:58.0117 4300 gupdatem - ok
20:25:58.0148 4300 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:25:58.0164 4300 hcw85cir - ok
20:25:58.0179 4300 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:25:58.0179 4300 HDAudBus - ok
20:25:58.0211 4300 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:25:58.0242 4300 HidBatt - ok
20:25:58.0273 4300 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:25:58.0289 4300 HidBth - ok
20:25:58.0304 4300 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:25:58.0351 4300 HidIr - ok
20:25:58.0398 4300 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:25:58.0398 4300 hidserv - ok
20:25:58.0476 4300 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:25:58.0476 4300 HidUsb - ok
20:25:58.0538 4300 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:25:58.0538 4300 hkmsvc - ok
20:25:58.0616 4300 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:25:58.0616 4300 HomeGroupListener - ok
20:25:58.0679 4300 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:25:58.0694 4300 HomeGroupProvider - ok
20:25:58.0725 4300 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:25:58.0725 4300 HpSAMD - ok
20:25:58.0803 4300 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:25:58.0835 4300 HTTP - ok
20:25:58.0881 4300 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:25:58.0881 4300 hwpolicy - ok
20:25:58.0928 4300 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:25:58.0928 4300 i8042prt - ok
20:25:58.0959 4300 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:25:58.0975 4300 iaStorV - ok
20:25:59.0037 4300 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:25:59.0100 4300 idsvc - ok
20:25:59.0162 4300 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:25:59.0178 4300 iirsp - ok
20:25:59.0256 4300 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
20:25:59.0303 4300 IKEEXT - ok
20:25:59.0396 4300 [ 06B774E74F7E2B8AE903A70C45A03D61 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:25:59.0521 4300 IntcAzAudAddService - ok
20:25:59.0568 4300 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:25:59.0568 4300 intelide - ok
20:25:59.0615 4300 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:25:59.0615 4300 intelppm - ok
20:25:59.0661 4300 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:25:59.0677 4300 IPBusEnum - ok
20:25:59.0739 4300 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:25:59.0739 4300 IpFilterDriver - ok
20:25:59.0817 4300 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:25:59.0849 4300 iphlpsvc - ok
20:25:59.0880 4300 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:25:59.0880 4300 IPMIDRV - ok
20:25:59.0911 4300 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:25:59.0942 4300 IPNAT - ok
20:25:59.0973 4300 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:25:59.0973 4300 IRENUM - ok
20:26:00.0005 4300 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:26:00.0020 4300 isapnp - ok
20:26:00.0083 4300 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:26:00.0083 4300 iScsiPrt - ok
20:26:00.0129 4300 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:26:00.0129 4300 kbdclass - ok
20:26:00.0161 4300 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:26:00.0161 4300 kbdhid - ok
20:26:00.0192 4300 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
20:26:00.0192 4300 KeyIso - ok
20:26:00.0239 4300 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:26:00.0254 4300 KSecDD - ok
20:26:00.0301 4300 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:26:00.0317 4300 KSecPkg - ok
20:26:00.0348 4300 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:26:00.0363 4300 ksthunk - ok
20:26:00.0395 4300 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:26:00.0410 4300 KtmRm - ok
20:26:00.0457 4300 [ 39918DB0EFCF045A1CE6FABBF339F975 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
20:26:00.0457 4300 L1C - ok
20:26:00.0535 4300 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:26:00.0535 4300 LanmanServer - ok
20:26:00.0613 4300 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:26:00.0613 4300 LanmanWorkstation - ok
20:26:00.0675 4300 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:26:00.0722 4300 lltdio - ok
20:26:00.0753 4300 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:26:00.0769 4300 lltdsvc - ok
20:26:00.0785 4300 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:26:00.0785 4300 lmhosts - ok
20:26:00.0831 4300 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:26:00.0878 4300 LSI_FC - ok
20:26:00.0894 4300 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:26:00.0956 4300 LSI_SAS - ok
20:26:00.0972 4300 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:26:01.0019 4300 LSI_SAS2 - ok
20:26:01.0050 4300 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:26:01.0050 4300 LSI_SCSI - ok
20:26:01.0081 4300 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:26:01.0081 4300 luafv - ok
20:26:01.0143 4300 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:26:01.0143 4300 Mcx2Svc - ok
20:26:01.0175 4300 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:26:01.0175 4300 megasas - ok
20:26:01.0206 4300 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:26:01.0237 4300 MegaSR - ok
20:26:01.0268 4300 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:26:01.0268 4300 MMCSS - ok
20:26:01.0299 4300 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:26:01.0299 4300 Modem - ok
20:26:01.0331 4300 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:26:01.0362 4300 monitor - ok
20:26:01.0377 4300 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:26:01.0393 4300 mouclass - ok
20:26:01.0409 4300 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:26:01.0409 4300 mouhid - ok
20:26:01.0471 4300 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:26:01.0471 4300 mountmgr - ok
20:26:01.0518 4300 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:26:01.0533 4300 mpio - ok
20:26:01.0565 4300 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:26:01.0596 4300 mpsdrv - ok
20:26:01.0658 4300 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:26:01.0705 4300 MpsSvc - ok
20:26:01.0752 4300 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:26:01.0767 4300 MRxDAV - ok
20:26:01.0799 4300 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:26:01.0845 4300 mrxsmb - ok
20:26:01.0877 4300 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:26:01.0923 4300 mrxsmb10 - ok
20:26:01.0955 4300 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:26:01.0986 4300 mrxsmb20 - ok
20:26:02.0017 4300 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:26:02.0033 4300 msahci - ok
20:26:02.0064 4300 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:26:02.0111 4300 msdsm - ok
20:26:02.0157 4300 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:26:02.0157 4300 MSDTC - ok
20:26:02.0204 4300 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:26:02.0204 4300 Msfs - ok
20:26:02.0235 4300 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:26:02.0235 4300 mshidkmdf - ok
20:26:02.0267 4300 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:26:02.0267 4300 msisadrv - ok
20:26:02.0298 4300 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:26:02.0313 4300 MSiSCSI - ok
20:26:02.0313 4300 msiserver - ok
20:26:02.0360 4300 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:26:02.0360 4300 MSKSSRV - ok
20:26:02.0376 4300 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:26:02.0376 4300 MSPCLOCK - ok
20:26:02.0407 4300 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:26:02.0423 4300 MSPQM - ok
20:26:02.0485 4300 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:26:02.0501 4300 MsRPC - ok
20:26:02.0547 4300 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:26:02.0547 4300 mssmbios - ok
20:26:02.0563 4300 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:26:02.0563 4300 MSTEE - ok
20:26:02.0594 4300 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:26:02.0594 4300 MTConfig - ok
20:26:02.0610 4300 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:26:02.0641 4300 Mup - ok
20:26:02.0672 4300 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:26:02.0688 4300 napagent - ok
20:26:02.0719 4300 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:26:02.0766 4300 NativeWifiP - ok
20:26:02.0828 4300 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:26:02.0859 4300 NDIS - ok
20:26:02.0906 4300 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:26:02.0922 4300 NdisCap - ok
20:26:02.0953 4300 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:26:02.0953 4300 NdisTapi - ok
20:26:03.0015 4300 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:26:03.0015 4300 Ndisuio - ok
20:26:03.0078 4300 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:26:03.0093 4300 NdisWan - ok
20:26:03.0140 4300 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:26:03.0140 4300 NDProxy - ok
20:26:03.0171 4300 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:26:03.0203 4300 NetBIOS - ok
20:26:03.0249 4300 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:26:03.0249 4300 NetBT - ok
20:26:03.0296 4300 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
20:26:03.0312 4300 Netlogon - ok
20:26:03.0359 4300 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:26:03.0374 4300 Netman - ok
20:26:03.0405 4300 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:26:03.0421 4300 netprofm - ok
20:26:03.0452 4300 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:26:03.0452 4300 NetTcpPortSharing - ok
20:26:03.0483 4300 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:26:03.0530 4300 nfrd960 - ok
20:26:03.0577 4300 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:26:03.0593 4300 NlaSvc - ok
20:26:03.0639 4300 [ 907B5E1E4A592E5EDC5E4CCBDE4863C2 ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
20:26:03.0639 4300 nmwcd - ok
20:26:03.0686 4300 [ 41C1AC1F3613435EB32D67BCB80A5FA5 ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
20:26:03.0686 4300 nmwcdc - ok
20:26:03.0717 4300 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:26:03.0733 4300 Npfs - ok
20:26:03.0764 4300 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:26:03.0764 4300 nsi - ok
20:26:03.0780 4300 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:26:03.0780 4300 nsiproxy - ok
20:26:03.0858 4300 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:26:03.0967 4300 Ntfs - ok
20:26:03.0983 4300 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:26:04.0014 4300 Null - ok
20:26:04.0045 4300 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:26:04.0076 4300 nvraid - ok
20:26:04.0092 4300 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:26:04.0154 4300 nvstor - ok
20:26:04.0170 4300 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:26:04.0170 4300 nv_agp - ok
20:26:04.0217 4300 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:26:04.0232 4300 ohci1394 - ok
20:26:04.0263 4300 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:26:04.0279 4300 ose - ok
20:26:04.0419 4300 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:26:04.0575 4300 osppsvc - ok
20:26:04.0622 4300 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:26:04.0622 4300 p2pimsvc - ok
20:26:04.0669 4300 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:26:04.0685 4300 p2psvc - ok
20:26:04.0716 4300 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:26:04.0747 4300 Parport - ok
20:26:04.0794 4300 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:26:04.0794 4300 partmgr - ok
20:26:04.0825 4300 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:26:04.0841 4300 PcaSvc - ok
20:26:04.0872 4300 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:26:04.0872 4300 pci - ok
20:26:04.0919 4300 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:26:04.0919 4300 pciide - ok
20:26:04.0965 4300 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:26:04.0981 4300 pcmcia - ok
20:26:05.0012 4300 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:26:05.0028 4300 pcw - ok
20:26:05.0075 4300 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:26:05.0121 4300 PEAUTH - ok
20:26:05.0199 4300 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:26:05.0215 4300 PerfHost - ok
20:26:05.0340 4300 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll

[cermmi]

LOG z TDSSKiLLERU: - 2. část

20:26:05.0418 4300 pla - ok
20:26:05.0480 4300 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:26:05.0480 4300 PlugPlay - ok
20:26:05.0511 4300 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:26:05.0527 4300 PNRPAutoReg - ok
20:26:05.0558 4300 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:26:05.0574 4300 PNRPsvc - ok
20:26:05.0605 4300 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:26:05.0605 4300 PolicyAgent - ok
20:26:05.0652 4300 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:26:05.0652 4300 Power - ok
20:26:05.0714 4300 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:26:05.0792 4300 PptpMiniport - ok
20:26:05.0823 4300 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:26:05.0855 4300 Processor - ok
20:26:05.0917 4300 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:26:05.0933 4300 ProfSvc - ok
20:26:05.0948 4300 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
20:26:05.0948 4300 ProtectedStorage - ok
20:26:05.0995 4300 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:26:06.0011 4300 Psched - ok
20:26:06.0089 4300 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:26:06.0198 4300 ql2300 - ok
20:26:06.0229 4300 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:26:06.0229 4300 ql40xx - ok
20:26:06.0276 4300 [ 5E8CA72BB225A5090EB8D194DAB3A7F3 ] QWARQNet C:\Windows\system32\DRIVERS\QWARQNet.sys
20:26:06.0276 4300 QWARQNet - ok
20:26:06.0323 4300 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:26:06.0338 4300 QWAVE - ok
20:26:06.0369 4300 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:26:06.0369 4300 QWAVEdrv - ok
20:26:06.0385 4300 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:26:06.0401 4300 RasAcd - ok
20:26:06.0432 4300 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:26:06.0432 4300 RasAgileVpn - ok
20:26:06.0463 4300 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:26:06.0463 4300 RasAuto - ok
20:26:06.0525 4300 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:26:06.0588 4300 Rasl2tp - ok
20:26:06.0619 4300 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:26:06.0619 4300 RasMan - ok
20:26:06.0650 4300 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:26:06.0650 4300 RasPppoe - ok
20:26:06.0681 4300 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:26:06.0697 4300 RasSstp - ok
20:26:06.0775 4300 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:26:06.0775 4300 rdbss - ok
20:26:06.0806 4300 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:26:06.0837 4300 rdpbus - ok
20:26:06.0869 4300 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:26:06.0869 4300 RDPCDD - ok
20:26:06.0900 4300 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:26:06.0900 4300 RDPENCDD - ok
20:26:06.0931 4300 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:26:06.0931 4300 RDPREFMP - ok
20:26:06.0978 4300 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:26:07.0025 4300 RDPWD - ok
20:26:07.0071 4300 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:26:07.0087 4300 rdyboost - ok
20:26:07.0118 4300 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:26:07.0134 4300 RemoteAccess - ok
20:26:07.0165 4300 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:26:07.0165 4300 RemoteRegistry - ok
20:26:07.0212 4300 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:26:07.0227 4300 RFCOMM - ok
20:26:07.0259 4300 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:26:07.0274 4300 RpcEptMapper - ok
20:26:07.0305 4300 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:26:07.0305 4300 RpcLocator - ok
20:26:07.0368 4300 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:26:07.0383 4300 RpcSs - ok
20:26:07.0446 4300 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:26:07.0477 4300 rspndr - ok
20:26:07.0508 4300 [ 22D6B47D004A6568C500680BE2972854 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
20:26:07.0539 4300 RSUSBSTOR - ok
20:26:07.0555 4300 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
20:26:07.0555 4300 SamSs - ok
20:26:07.0602 4300 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:26:07.0617 4300 sbp2port - ok
20:26:07.0649 4300 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:26:07.0664 4300 SCardSvr - ok
20:26:07.0711 4300 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:26:07.0742 4300 scfilter - ok
20:26:07.0805 4300 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:26:07.0851 4300 Schedule - ok
20:26:07.0914 4300 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:26:07.0914 4300 SCPolicySvc - ok
20:26:07.0961 4300 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:26:07.0976 4300 SDRSVC - ok
20:26:08.0023 4300 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:26:08.0023 4300 secdrv - ok
20:26:08.0054 4300 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:26:08.0070 4300 seclogon - ok
20:26:08.0085 4300 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:26:08.0085 4300 SENS - ok
20:26:08.0117 4300 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:26:08.0117 4300 SensrSvc - ok
20:26:08.0132 4300 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:26:08.0148 4300 Serenum - ok
20:26:08.0163 4300 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:26:08.0163 4300 Serial - ok
20:26:08.0195 4300 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:26:08.0226 4300 sermouse - ok
20:26:08.0288 4300 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:26:08.0304 4300 SessionEnv - ok
20:26:08.0335 4300 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:26:08.0382 4300 sffdisk - ok
20:26:08.0397 4300 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:26:08.0397 4300 sffp_mmc - ok
20:26:08.0413 4300 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:26:08.0413 4300 sffp_sd - ok
20:26:08.0444 4300 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:26:08.0444 4300 sfloppy - ok
20:26:08.0507 4300 [ D5183ED285D2795491DC15BDDCBEE5AD ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
20:26:08.0538 4300 Sftfs - ok
20:26:08.0600 4300 [ BFDB58616FF5EA540A5F58301D50641E ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:26:08.0616 4300 sftlist - ok
20:26:08.0663 4300 [ 00F118B68C50D2206DD51634F9142B83 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
20:26:08.0663 4300 Sftplay - ok
20:26:08.0678 4300 [ 76A827DF5640BFE16A0CDBB4108ADECA ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
20:26:08.0678 4300 Sftredir - ok
20:26:08.0772 4300 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:26:08.0819 4300 SftService - ok
20:26:08.0850 4300 [ 1B4C9701645086BAB8CAFFFCE30ED284 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
20:26:08.0850 4300 Sftvol - ok
20:26:08.0881 4300 [ B94C3C4DCA2093243C76CA218EDE2A97 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:26:08.0881 4300 sftvsa - ok
20:26:08.0928 4300 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:26:08.0928 4300 SharedAccess - ok
20:26:08.0990 4300 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:26:09.0006 4300 ShellHWDetection - ok
20:26:09.0068 4300 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:26:09.0115 4300 SiSRaid2 - ok
20:26:09.0146 4300 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:26:09.0162 4300 SiSRaid4 - ok
20:26:09.0240 4300 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:26:09.0255 4300 SkypeUpdate - ok
20:26:09.0287 4300 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:26:09.0287 4300 Smb - ok
20:26:09.0365 4300 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:26:09.0365 4300 SNMPTRAP - ok
20:26:09.0427 4300 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:26:09.0458 4300 spldr - ok
20:26:09.0521 4300 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:26:09.0552 4300 Spooler - ok
20:26:09.0692 4300 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:26:09.0801 4300 sppsvc - ok
20:26:09.0817 4300 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:26:09.0817 4300 sppuinotify - ok
20:26:09.0864 4300 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:26:09.0879 4300 srv - ok
20:26:09.0911 4300 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:26:09.0942 4300 srv2 - ok
20:26:09.0957 4300 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:26:09.0957 4300 srvnet - ok
20:26:10.0004 4300 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:26:10.0020 4300 SSDPSRV - ok
20:26:10.0035 4300 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:26:10.0051 4300 SstpSvc - ok
20:26:10.0082 4300 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:26:10.0082 4300 stexstor - ok
20:26:10.0145 4300 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:26:10.0176 4300 stisvc - ok
20:26:10.0223 4300 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:26:10.0223 4300 swenum - ok
20:26:10.0254 4300 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:26:10.0285 4300 swprv - ok
20:26:10.0332 4300 [ 4998AE89119C7106C92F0A64E4840FF6 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:26:10.0332 4300 SynTP - ok
20:26:10.0425 4300 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:26:10.0488 4300 SysMain - ok
20:26:10.0535 4300 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:26:10.0550 4300 TabletInputService - ok
20:26:10.0613 4300 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:26:10.0628 4300 TapiSrv - ok
20:26:10.0659 4300 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:26:10.0659 4300 TBS - ok
20:26:10.0753 4300 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:26:10.0800 4300 Tcpip - ok
20:26:10.0878 4300 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:26:10.0893 4300 TCPIP6 - ok
20:26:10.0956 4300 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:26:10.0956 4300 tcpipreg - ok
20:26:11.0003 4300 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:26:11.0003 4300 TDPIPE - ok
20:26:11.0049 4300 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:26:11.0065 4300 TDTCP - ok
20:26:11.0127 4300 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:26:11.0143 4300 tdx - ok
20:26:11.0159 4300 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:26:11.0174 4300 TermDD - ok
20:26:11.0205 4300 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:26:11.0237 4300 TermService - ok
20:26:11.0283 4300 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:26:11.0299 4300 Themes - ok
20:26:11.0315 4300 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:26:11.0315 4300 THREADORDER - ok
20:26:11.0346 4300 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:26:11.0346 4300 TrkWks - ok
20:26:11.0424 4300 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:26:11.0439 4300 TrustedInstaller - ok
20:26:11.0502 4300 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:26:11.0502 4300 tssecsrv - ok
20:26:11.0564 4300 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:26:11.0627 4300 TsUsbFlt - ok
20:26:11.0705 4300 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:26:11.0736 4300 tunnel - ok
20:26:11.0767 4300 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:26:11.0783 4300 uagp35 - ok
20:26:11.0814 4300 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:26:11.0829 4300 udfs - ok
20:26:11.0876 4300 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:26:11.0876 4300 UI0Detect - ok
20:26:11.0907 4300 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:26:11.0907 4300 uliagpkx - ok
20:26:11.0970 4300 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:26:11.0970 4300 umbus - ok
20:26:12.0001 4300 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:26:12.0032 4300 UmPass - ok
20:26:12.0063 4300 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:26:12.0063 4300 upnphost - ok
20:26:12.0126 4300 [ 4E93C8496359E97830C75AC36393654D ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
20:26:12.0126 4300 upperdev - ok
20:26:12.0204 4300 [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:26:12.0204 4300 usbaudio - ok
20:26:12.0251 4300 [ ACCEA6BC68D0C9A78EB97EE159028B4E ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:26:12.0266 4300 usbccgp - ok
20:26:12.0329 4300 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:26:12.0329 4300 usbcir - ok
20:26:12.0360 4300 [ 311C1DD1088E55BEAE15954D17F50646 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:26:12.0360 4300 usbehci - ok
20:26:12.0391 4300 [ D524F3716D85B744762FF5EAAEF8F3A2 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:26:12.0407 4300 usbfilter - ok
20:26:12.0469 4300 [ 280E90CBF4B2DDD169F0728CB44D726F ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:26:12.0516 4300 usbhub - ok
20:26:12.0547 4300 [ 9406D801042FAF859CF81B2C886413DC ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:26:12.0547 4300 usbohci - ok
20:26:12.0594 4300 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:26:12.0609 4300 usbprint - ok
20:26:12.0656 4300 [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan C:\Windows\system32\drivers\usbscan.sys
20:26:12.0672 4300 usbscan - ok
20:26:12.0750 4300 [ B57B4F0BEC4270A281B9F8537EB2FA04 ] usbser C:\Windows\system32\drivers\usbser.sys
20:26:12.0750 4300 usbser - ok
20:26:12.0797 4300 [ 8844CB19A37B65E27049D4A7786726A9 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
20:26:12.0812 4300 UsbserFilt - ok
20:26:12.0859 4300 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:26:12.0890 4300 USBSTOR - ok
20:26:12.0921 4300 [ A83D0EC9AE4C31704442099D40BA2471 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:26:12.0921 4300 usbuhci - ok
20:26:12.0999 4300 [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:26:13.0015 4300 usbvideo - ok
20:26:13.0046 4300 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:26:13.0046 4300 UxSms - ok
20:26:13.0062 4300 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
20:26:13.0062 4300 VaultSvc - ok
20:26:13.0093 4300 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:26:13.0093 4300 vdrvroot - ok
20:26:13.0155 4300 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:26:13.0171 4300 vds - ok
20:26:13.0218 4300 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:26:13.0218 4300 vga - ok
20:26:13.0280 4300 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:26:13.0327 4300 VgaSave - ok
20:26:13.0358 4300 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:26:13.0374 4300 vhdmp - ok
20:26:13.0436 4300 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:26:13.0467 4300 viaide - ok
20:26:13.0499 4300 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:26:13.0499 4300 volmgr - ok
20:26:13.0561 4300 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:26:13.0561 4300 volmgrx - ok
20:26:13.0608 4300 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:26:13.0608 4300 volsnap - ok
20:26:13.0639 4300 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:26:13.0670 4300 vsmraid - ok
20:26:13.0764 4300 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:26:13.0826 4300 VSS - ok
20:26:13.0857 4300 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:26:13.0873 4300 vwifibus - ok
20:26:13.0904 4300 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:26:13.0904 4300 vwififlt - ok
20:26:13.0951 4300 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:26:13.0951 4300 vwifimp - ok
20:26:13.0998 4300 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:26:14.0013 4300 W32Time - ok
20:26:14.0045 4300 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:26:14.0045 4300 WacomPen - ok
20:26:14.0076 4300 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:26:14.0091 4300 WANARP - ok
20:26:14.0107 4300 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:26:14.0107 4300 Wanarpv6 - ok
20:26:14.0201 4300 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:26:14.0263 4300 WatAdminSvc - ok
20:26:14.0357 4300 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:26:14.0419 4300 wbengine - ok
20:26:14.0450 4300 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:26:14.0466 4300 WbioSrvc - ok
20:26:14.0513 4300 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:26:14.0528 4300 wcncsvc - ok
20:26:14.0575 4300 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:26:14.0575 4300 WcsPlugInService - ok
20:26:14.0606 4300 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:26:14.0606 4300 Wd - ok
20:26:14.0684 4300 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:26:14.0747 4300 Wdf01000 - ok
20:26:14.0762 4300 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:26:14.0762 4300 WdiServiceHost - ok
20:26:14.0778 4300 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:26:14.0778 4300 WdiSystemHost - ok
20:26:14.0840 4300 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
20:26:14.0856 4300 WebClient - ok
20:26:14.0887 4300 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:26:14.0903 4300 Wecsvc - ok
20:26:14.0934 4300 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:26:14.0934 4300 wercplsupport - ok
20:26:14.0965 4300 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:26:14.0981 4300 WerSvc - ok
20:26:15.0012 4300 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:26:15.0043 4300 WfpLwf - ok
20:26:15.0137 4300 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:26:15.0183 4300 WimFltr - ok
20:26:15.0215 4300 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:26:15.0261 4300 WIMMount - ok
20:26:15.0293 4300 WinDefend - ok
20:26:15.0308 4300 WinHttpAutoProxySvc - ok
20:26:15.0371 4300 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:26:15.0386 4300 Winmgmt - ok
20:26:15.0480 4300 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:26:15.0589 4300 WinRM - ok
20:26:15.0651 4300 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:26:15.0667 4300 WinUsb - ok
20:26:15.0714 4300 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:26:15.0745 4300 Wlansvc - ok
20:26:15.0776 4300 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:26:15.0792 4300 WmiAcpi - ok
20:26:15.0823 4300 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:26:15.0839 4300 wmiApSrv - ok
20:26:15.0854 4300 WMPNetworkSvc - ok
20:26:15.0885 4300 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:26:15.0885 4300 WPCSvc - ok
20:26:15.0948 4300 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:26:15.0948 4300 WPDBusEnum - ok
20:26:15.0979 4300 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:26:16.0010 4300 ws2ifsl - ok
20:26:16.0026 4300 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:26:16.0041 4300 wscsvc - ok
20:26:16.0041 4300 WSearch - ok
20:26:16.0166 4300 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:26:16.0229 4300 wuauserv - ok
20:26:16.0291 4300 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:26:16.0291 4300 WudfPf - ok
20:26:16.0353 4300 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:26:16.0353 4300 WUDFRd - ok
20:26:16.0416 4300 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:26:16.0431 4300 wudfsvc - ok
20:26:16.0463 4300 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
20:26:16.0478 4300 WwanSvc - ok
20:26:16.0541 4300 ================ Scan global ===============================
20:26:16.0572 4300 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:26:16.0603 4300 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
20:26:16.0619 4300 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
20:26:16.0650 4300 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:26:16.0697 4300 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:26:16.0728 4300 [Global] - ok
20:26:16.0728 4300 ================ Scan MBR ==================================
20:26:16.0743 4300 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:26:17.0040 4300 \Device\Harddisk0\DR0 - ok
20:26:17.0040 4300 ================ Scan VBR ==================================
20:26:17.0040 4300 [ 0AD3EBECAB549DD646D76C2386D1ED9A ] \Device\Harddisk0\DR0\Partition1
20:26:17.0040 4300 \Device\Harddisk0\DR0\Partition1 - ok
20:26:17.0071 4300 [ 15022E2A6BFD9A7C25146DBE29877B1E ] \Device\Harddisk0\DR0\Partition2
20:26:17.0071 4300 \Device\Harddisk0\DR0\Partition2 - ok
20:26:17.0071 4300 ============================================================
20:26:17.0071 4300 Scan finished
20:26:17.0071 4300 ============================================================
20:26:17.0087 4400 Detected object count: 0
20:26:17.0087 4400 Actual detected object count: 0
20:27:06.0835 4176 Deinitialize success

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.