prosim o kontrolu logu - sekne se internet, pak nejde restar

[jesuami]

podezreni na skodlive kody, hledam si praci a take mam podezreni, ze me kontaktoval zamestanvatel podvodnik, poskytla jsem par svych info a ted se domnivam, ze mam v PC neco, co tam nema byt

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:37:01, on 9.4.2013
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17055)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Option\Option 225 Driver Installation\GTDetectSc.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\V0470Mon.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Emotum\Mobile Broadband\Mobile.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O1 - Hosts: ˙ţ1
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [V0470Mon.exe] C:\WINDOWS\V0470Mon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE
O4 - HKCU\..\Run: [Emotum Mobile Broadband] C:\Program Files\Emotum\Mobile Broadband\Mobile.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BankID Security Application.lnk = C:\Program Files\Personal\bin\Personal.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 2989080843
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = pilsfree.czf
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: SearchList = pilsfree.czf
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: eLock Service (eLockService) - - C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: GtDetectSc Service (GTDetectSc) - OptionNV - C:\Program Files\Option\Option 225 Driver Installation\GTDetectSc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 11067 bytes

ps: dekuji

[Reklama]

[jaro3]

Jaké informace byly poskytnuty?

Windows XP SP2 ---je třeba doinstalovat SP3 , jinak je systém děravý!

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

[jesuami]

- poskytnute informace spise zakladni, jmeno, prijmeni, telefoni cislo, adresa, email, nicmenene mam pristup k uctu za pomoci internet. bankovnictvi atd. (zadna data ohledne uctu samozrejme poskytnuta nebyla)

# AdwCleaner v2.200 - Log vytvooen 15/04/2013 v 14:43:59
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 2 (32 bits)
# Uživatel : pokus - APOLLO-NOTE
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\pokus\Dokumenty\Downloads\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****


***** [Soubory / Složky] *****

Složka Nalezeno : C:\Documents and Settings\pokus\Local Settings\Data aplikací\PackageAware

***** [Registry] *****

Klíe Nalezeno : HKCU\Software\InstallCore
Klíe Nalezeno : HKCU\Software\SearchCore for Browsers
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v7.0.6000.17055

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v9.0.1 (cs)

Soubor : C:\Documents and Settings\pokus\Data aplikací\Mozilla\Firefox\Profiles\uucpjufd.default\prefs.js

[OK] Soubor je eistý.

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Documents and Settings\pokus\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

*************************

AdwCleaner[R2].txt - [1145 octets] - [15/04/2013 14:43:59]

########## EOF - C:\AdwCleaner[R2].txt - [1205 octets] ##########

[jesuami]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.04.15.05

Windows XP Service Pack 2 x86 NTFS
Internet Explorer 7.0.5730.13
pokus :: APOLLO-NOTE [administrátor]

15.4.2013 14:59:12
mbam-log-2013-04-15 (14-59-12).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 236278
Uplynulý čas: 6 minut,

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[jesuami]

a take, pritel casto, vetsinou tajne, navstevuje stranky s nevhodnou tematikou - porno kanaly aj. - kde je jiste riziko viru velmi vysoke, jak ochranim PC? (ja to vzdy zjistim, kdyz mi PC pracuje pomalu a kouknu se na historii stranek),..
Netvrdim, ze tyto stranky navstevujete take, ale mohl byste mit zkusenosti od znameho, rekneme napr., ktery temto ... hanebnostem holduje take, jak se chrani proti nezadoucim virum, kdyz antivir je bezmocny??

[memphisto]

To se těžko brání. STačí klik a je to. Já jsem chytil jednou vira i na neškodném Seznamu... Prostě se naučit neklikat na každou pěkně blikající blbost, nevěřit, že jste opravdu miliontý návštěvník a zadarmo bude iPhone, apod. Prostě používat hlavu...

V AdwCleaner nech vše smazat

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[jesuami]

zde log po vycisteni a restartu

# AdwCleaner v2.200 - Log vytvooen 15/04/2013 v 17:25:34
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 2 (32 bits)
# Uživatel : pokus - APOLLO-NOTE
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\pokus\Plocha\adwcleaner.exe
# Volba [Vymazat]


***** [Služby] *****


***** [Soubory / Složky] *****

Složka Vymazáno : C:\Documents and Settings\pokus\Local Settings\Data aplikací\PackageAware

***** [Registry] *****

Klíe Vymazáno : HKCU\Software\InstallCore
Klíe Vymazáno : HKCU\Software\SearchCore for Browsers
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Prod.cap

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v7.0.6000.17055

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v9.0.1 (cs)

Soubor : C:\Documents and Settings\pokus\Data aplikací\Mozilla\Firefox\Profiles\uucpjufd.default\prefs.js

[OK] Soubor je eistý.

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Documents and Settings\pokus\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

*************************

AdwCleaner[R2].txt - [1274 octets] - [15/04/2013 14:43:59]
AdwCleaner[R3].txt - [1321 octets] - [15/04/2013 17:25:14]
AdwCleaner[S2].txt - [1250 octets] - [15/04/2013 17:25:34]

########## EOF - C:\AdwCleaner[S2].txt - [1310 octets] ##########

[jesuami]

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : pokus [Práva správce]
Mód : Kontrola -- Datum : 04/15/2013 17:37:32
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[DLL] explorer.exe -- C:\WINDOWS\explorer.exe : C:\WINDOWS\TrnOEH.dll [x] -> ODEBRÁNO
[SUSP PATH] OETRN.EXE -- C:\WINDOWS\OETRN.EXE [-] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 9 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : OEXPRESS (C:\WINDOWS\OETRN.EXE) [-] -> NALEZENO
[RUN][SUSP PATH] HKUS\S-1-5-21-1960408961-1897051121-1801674531-1007[...]\Run : OEXPRESS (C:\WINDOWS\OETRN.EXE) [-] -> NALEZENO
[Services][BLSVC] HKLM\[...]\ControlSet001\Services\wcscd (C:\WINDOWS\system32\drivers\wcscd.sys) -> NALEZENO
[Services][BLSVC] HKLM\[...]\ControlSet002\Services\wcscd (C:\WINDOWS\system32\drivers\wcscd.sys) -> NALEZENO
[Services][BLSVC] HKLM\[...]\ControlSet003\Services\cdfss (C:\Documents and Settings\pokus\Local Settings\Temp\cdfss) -> NALEZENO
[Services][BLSVC] HKLM\[...]\ControlSet003\Services\wcscd (C:\WINDOWS\system32\drivers\wcscd.sys) -> NALEZENO
[HJPOL] HKCU\[...]\System : disableregistrytools (0) -> NALEZENO
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤
[Tr.Karagany][FOLDER] plugs : C:\Documents and Settings\pokus\Data aplikací\Adobe\plugs --> NALEZENO
[Tr.Karagany][FOLDER] shed : C:\Documents and Settings\pokus\Data aplikací\Adobe\shed --> NALEZENO

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

ÿþ1


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS541680J9SA00 +++++
--- User ---
[MBR] d18ebc0b68d5f89364871020a8b578fc
[BSP] 74295121703c5408305f185e879132ac : Windows XP MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 10252 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 20996955 | Size: 37032 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 96839820 | Size: 29031 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_04152013_02d1737.txt >>
RKreport[1]_S_04152013_02d1737.txt

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[jesuami]

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : pokus [Práva správce]
Mód : Odebrat -- Datum : 04/16/2013 17:23:18
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : OEXPRESS (C:\WINDOWS\OETRN.EXE) [-] -> VYMAZÁNO
[Services][BLSVC] HKLM\[...]\ControlSet001\Services\wcscd (C:\WINDOWS\system32\drivers\wcscd.sys) -> VYMAZÁNO
[Services][BLSVC] HKLM\[...]\ControlSet002\Services\wcscd (C:\WINDOWS\system32\drivers\wcscd.sys) -> VYMAZÁNO
[Services][BLSVC] HKLM\[...]\ControlSet003\Services\cdfss (C:\Documents and Settings\pokus\Local Settings\Temp\cdfss) -> VYMAZÁNO
[Services][BLSVC] HKLM\[...]\ControlSet003\Services\wcscd (C:\WINDOWS\system32\drivers\wcscd.sys) -> VYMAZÁNO
[HJPOL] HKCU\[...]\System : disableregistrytools (0) -> VYMAZÁNO
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤
[Tr.Karagany][FOLDER] ROOT : C:\Documents and Settings\pokus\Data aplikací\Adobe\plugs --> ODSTRANĚN
[Tr.Karagany][FOLDER] ROOT : C:\Documents and Settings\pokus\Data aplikací\Adobe\shed --> ODSTRANĚN

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

ÿþ1


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS541680J9SA00 +++++
--- User ---
[MBR] d18ebc0b68d5f89364871020a8b578fc
[BSP] 74295121703c5408305f185e879132ac : Windows XP MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 10252 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 20996955 | Size: 37032 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 96839820 | Size: 29031 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[3]_D_04162013_02d1723.txt >>
RKreport[1]_S_04152013_02d1737.txt ; RKreport[2]_S_04162013_02d1721.txt ; RKreport[3]_D_04162013_02d1723.txt

[jaro3]

Spusť znovu RogueKiller
Pokud používáš Win Vista či W7, klikni na RogueKiller pravým a dej spustit jako správce.
Pak klikni na Oprava Host a Zpráva - otevře se log, ten sem vlož.

pak pokračuj:

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

[jesuami]

18:34:02.0328 3388 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:34:02.0343 3388 ============================================================
18:34:02.0343 3388 Current date / time: 2013/04/16 18:34:02.0343
18:34:02.0343 3388 SystemInfo:
18:34:02.0343 3388
18:34:02.0343 3388 OS Version: 5.1.2600 ServicePack: 2.0
18:34:02.0343 3388 Product type: Workstation
18:34:02.0343 3388 ComputerName: APOLLO-NOTE
18:34:02.0343 3388 UserName: pokus
18:34:02.0343 3388 Windows directory: C:\WINDOWS
18:34:02.0343 3388 System windows directory: C:\WINDOWS
18:34:02.0343 3388 Processor architecture: Intel x86
18:34:02.0343 3388 Number of processors: 1
18:34:02.0343 3388 Page size: 0x1000
18:34:02.0343 3388 Boot type: Normal boot
18:34:02.0343 3388 ============================================================
18:34:03.0765 3388 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:34:03.0781 3388 ============================================================
18:34:03.0781 3388 \Device\Harddisk0\DR0:
18:34:03.0781 3388 MBR partitions:
18:34:03.0781 3388 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x140635B, BlocksNum 0x4854531
18:34:03.0781 3388 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x5C5A88C, BlocksNum 0x38B3C35
18:34:03.0781 3388 ============================================================
18:34:03.0953 3388 C: <-> \Device\Harddisk0\DR0\Partition1
18:34:04.0015 3388 D: <-> \Device\Harddisk0\DR0\Partition2
18:34:04.0015 3388 ============================================================
18:34:04.0015 3388 Initialize success
18:34:04.0015 3388 ============================================================
18:34:54.0843 1352 ============================================================
18:34:54.0843 1352 Scan started
18:34:54.0843 1352 Mode: Manual;
18:34:54.0843 1352 ============================================================
18:34:55.0421 1352 ================ Scan system memory ========================
18:34:55.0421 1352 System memory - ok
18:34:55.0421 1352 ================ Scan services =============================
18:34:55.0500 1352 Abiosdsk - ok
18:34:55.0500 1352 abp480n5 - ok
18:34:55.0562 1352 [ FA2FBCDA96D2385F773B059FE5A125A6 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:34:55.0562 1352 ACPI - ok
18:34:55.0578 1352 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:34:55.0578 1352 ACPIEC - ok
18:34:55.0671 1352 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:34:55.0671 1352 AdobeFlashPlayerUpdateSvc - ok
18:34:55.0687 1352 adpu160m - ok
18:34:55.0718 1352 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
18:34:55.0734 1352 aec - ok
18:34:55.0750 1352 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:34:55.0750 1352 AFD - ok
18:34:55.0765 1352 Aha154x - ok
18:34:55.0765 1352 aic78u2 - ok
18:34:55.0781 1352 aic78xx - ok
18:34:55.0812 1352 [ 026DDAA7E6F8D49DF82C7A98BAE5D0D1 ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:34:55.0812 1352 Alerter - ok
18:34:55.0828 1352 [ B3F690BF43F93A012A52F28F234FAA1B ] ALG C:\WINDOWS\System32\alg.exe
18:34:55.0828 1352 ALG - ok
18:34:55.0843 1352 AliIde - ok
18:34:55.0859 1352 amsint - ok
18:34:55.0875 1352 [ 421184F91EAE5C6E78E653C6B32AAE84 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
18:34:55.0890 1352 AppMgmt - ok
18:34:55.0906 1352 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:34:55.0906 1352 Arp1394 - ok
18:34:55.0921 1352 asc - ok
18:34:55.0921 1352 asc3350p - ok
18:34:55.0937 1352 asc3550 - ok
18:34:56.0046 1352 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:34:56.0046 1352 aspnet_state - ok
18:34:56.0078 1352 [ CCDA8D84FD02AEC52E62F296433AE9DC ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
18:34:56.0093 1352 aswFsBlk - ok
18:34:56.0125 1352 [ A65FC444F7660F0CAC9A9E22203FD4BA ] aswFW C:\WINDOWS\system32\drivers\aswFW.sys
18:34:56.0140 1352 aswFW - ok
18:34:56.0156 1352 [ 4691B3FE3717F9D9C64A5282C8543D4D ] aswKbd C:\WINDOWS\system32\drivers\aswKbd.sys
18:34:56.0156 1352 aswKbd - ok
18:34:56.0187 1352 [ A6E20E62871A28A0F1C05B1681848FA7 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
18:34:56.0187 1352 aswMonFlt - ok
18:34:56.0203 1352 [ 7B948E3657BEA62E437BC46CA6EF6012 ] aswNdis C:\WINDOWS\system32\DRIVERS\aswNdis.sys
18:34:56.0203 1352 aswNdis - ok
18:34:56.0234 1352 [ 672A45E2AA1FA8178DB8CF1A39BEFC83 ] aswNdis2 C:\WINDOWS\system32\drivers\aswNdis2.sys
18:34:56.0234 1352 aswNdis2 - ok
18:34:56.0281 1352 [ C1A411B7CCD604554D96EFDAC2F83617 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
18:34:56.0281 1352 AswRdr - ok
18:34:56.0328 1352 [ 657A61979F40D67CA29716149766FFA7 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
18:34:56.0328 1352 aswRvrt - ok
18:34:56.0390 1352 [ 0E604867FC28F00D91CB0B00D2EC830D ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
18:34:56.0390 1352 aswSnx - ok
18:34:56.0453 1352 [ 6FC4AA106AA505394C908D37CCCB9148 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
18:34:56.0468 1352 aswSP - ok
18:34:56.0546 1352 [ 33E21FFB063CA6C7E00D568467DC72E4 ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
18:34:56.0546 1352 aswTdi - ok
18:34:56.0562 1352 [ EDB0C9BA44B748E420CCA989FD8B826E ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
18:34:56.0578 1352 aswVmm - ok
18:34:56.0625 1352 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:34:56.0625 1352 AsyncMac - ok
18:34:56.0671 1352 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:34:56.0671 1352 atapi - ok
18:34:56.0671 1352 Atdisk - ok
18:34:56.0734 1352 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:34:56.0734 1352 Atmarpc - ok
18:34:56.0781 1352 [ 40D78F514C8588EF12EC718D2AF0FC4E ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:34:56.0781 1352 AudioSrv - ok
18:34:56.0828 1352 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:34:56.0828 1352 audstub - ok
18:34:56.0937 1352 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:34:56.0937 1352 avast! Antivirus - ok
18:34:56.0984 1352 [ DA387EDDBA421A7A8132E256343C2799 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
18:34:56.0984 1352 avast! Firewall - ok
18:34:57.0015 1352 [ F96038AA1EC4013A93D2420FC689D1E9 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
18:34:57.0015 1352 b57w2k - ok
18:34:57.0078 1352 [ B89BCF0A25AEB3B47030AC83287F894A ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
18:34:57.0093 1352 BCM43XX - ok
18:34:57.0140 1352 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:34:57.0140 1352 Beep - ok
18:34:57.0203 1352 [ E774A26610EC92674273486612C11CFC ] BITS C:\WINDOWS\system32\qmgr.dll
18:34:57.0203 1352 BITS - ok
18:34:57.0250 1352 [ F219E27E88107A50544153898DD8178E ] Browser C:\WINDOWS\System32\browser.dll
18:34:57.0265 1352 Browser - ok
18:34:57.0312 1352 [ ECDC40CC54603C711E1A7A1C9255184A ] btaudio C:\WINDOWS\system32\drivers\btaudio.sys
18:34:57.0312 1352 btaudio - ok
18:34:57.0359 1352 [ 58A49BD10E08D3D4333A60DEDCB1CED8 ] BTDriver C:\WINDOWS\system32\DRIVERS\btport.sys
18:34:57.0359 1352 BTDriver - ok
18:34:57.0390 1352 [ 885B6D0F826A216EEE4C3AD883809012 ] BTKRNL C:\WINDOWS\system32\DRIVERS\btkrnl.sys
18:34:57.0390 1352 BTKRNL - ok
18:34:57.0500 1352 [ 49E9ED37FAEC5E8C03E81FD73D3884D6 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
18:34:57.0500 1352 btwdins - ok
18:34:57.0531 1352 [ E48668B4A6A5CF68B33AECAD18EE8E1E ] btwhid C:\WINDOWS\system32\DRIVERS\btwhid.sys
18:34:57.0531 1352 btwhid - ok
18:34:57.0562 1352 [ 57E91E9925976BBC98984EEBAAF1D84C ] BTWUSB C:\WINDOWS\system32\Drivers\btwusb.sys
18:34:57.0562 1352 BTWUSB - ok
18:34:57.0593 1352 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:34:57.0593 1352 cbidf2k - ok
18:34:57.0625 1352 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:34:57.0625 1352 CCDECODE - ok
18:34:57.0640 1352 cd20xrnt - ok
18:34:57.0671 1352 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:34:57.0671 1352 Cdaudio - ok
18:34:57.0718 1352 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:34:57.0718 1352 Cdfs - ok
18:34:57.0734 1352 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:34:57.0734 1352 Cdrom - ok
18:34:57.0781 1352 [ DAF1A8193B6CAF0FB858CADCC5C4AF4A ] Changer C:\WINDOWS\system32\drivers\Changer.sys
18:34:57.0781 1352 Changer - ok
18:34:57.0796 1352 [ 9E21229E04E1D301BB40222FE4641CB2 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:34:57.0796 1352 CiSvc - ok
18:34:57.0828 1352 [ D3DC45553C8025338E08A60E95B1B91D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:34:57.0828 1352 ClipSrv - ok
18:34:57.0859 1352 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:34:57.0859 1352 clr_optimization_v2.0.50727_32 - ok
18:34:57.0890 1352 [ 4266BE808F85826AEDF3C64C1E240203 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:34:57.0890 1352 CmBatt - ok
18:34:57.0906 1352 CmdIde - ok
18:34:57.0953 1352 [ DF1B1A24BF52D0EBC01ED4ECE8979F50 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:34:57.0953 1352 Compbatt - ok
18:34:57.0953 1352 COMSysApp - ok
18:34:57.0968 1352 Cpqarray - ok
18:34:58.0015 1352 [ 70D2A1756F4B2067658A186C963FCABD ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:34:58.0015 1352 CryptSvc - ok
18:34:58.0031 1352 dac2w2k - ok
18:34:58.0031 1352 dac960nt - ok
18:34:58.0093 1352 [ 2B269C916766BDB43404F043B763427D ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:34:58.0109 1352 DcomLaunch - ok
18:34:58.0140 1352 [ 06A30F453CA4CB1431037E4813F697CB ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:34:58.0140 1352 Dhcp - ok
18:34:58.0156 1352 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:34:58.0156 1352 Disk - ok
18:34:58.0203 1352 [ 060DB81DFB79C8244EB65D10B6C7873F ] DKbFltr C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
18:34:58.0203 1352 DKbFltr - ok
18:34:58.0218 1352 dmadmin - ok
18:34:58.0250 1352 [ E1968EDEC81C430108FEB23AB07BDB14 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:34:58.0265 1352 dmboot - ok
18:34:58.0281 1352 [ 1B1520A82E396E46B9AE9FA6B03FF6C6 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:34:58.0296 1352 dmio - ok
18:34:58.0343 1352 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:34:58.0343 1352 dmload - ok
18:34:58.0375 1352 [ 7B3CA72885923EB947221F17F3E3AC59 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:34:58.0375 1352 dmserver - ok
18:34:58.0421 1352 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:34:58.0421 1352 DMusic - ok
18:34:58.0468 1352 [ 0EEF8922D46D4846B472B1F6FD0541BC ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:34:58.0468 1352 Dnscache - ok
18:34:58.0484 1352 dpti2o - ok
18:34:58.0531 1352 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:34:58.0531 1352 drmkaud - ok
18:34:58.0609 1352 [ D33EC04D1F0B5F388DE86CCC3333A59F ] eLockService C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe
18:34:58.0609 1352 eLockService - ok
18:34:58.0656 1352 [ D6F7428B201E33BC80066B47144CB568 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:34:58.0656 1352 ERSvc - ok
18:34:58.0703 1352 [ 4F9F7B567970B524F31D9970A23F7C24 ] Eventlog C:\WINDOWS\system32\services.exe
18:34:58.0703 1352 Eventlog - ok
18:34:58.0734 1352 [ 398314DF0B21338C4996B469101750D1 ] EventSystem C:\WINDOWS\system32\es.dll
18:34:58.0750 1352 EventSystem - ok
18:34:58.0765 1352 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:34:58.0765 1352 Fastfat - ok
18:34:58.0812 1352 [ E26EDC7AFA8DA3C528055EABC82C8C79 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:34:58.0828 1352 FastUserSwitchingCompatibility - ok
18:34:58.0859 1352 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
18:34:58.0859 1352 Fdc - ok
18:34:58.0890 1352 [ 266DAB58619B17BDF37FABBD48D875CA ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:34:58.0890 1352 Fips - ok
18:34:58.0937 1352 [ 5575EE5823DE1558F8486EB4E33FFA99 ] FlashUSB C:\WINDOWS\system32\DRIVERS\FlashUSB.sys
18:34:58.0937 1352 FlashUSB - ok
18:34:58.0984 1352 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
18:34:58.0984 1352 Flpydisk - ok
18:34:59.0015 1352 [ 3D234FB6D6EE875EB009864A299BEA29 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
18:34:59.0015 1352 FltMgr - ok
18:34:59.0078 1352 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:34:59.0078 1352 FontCache3.0.0.0 - ok
18:34:59.0109 1352 [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
18:34:59.0109 1352 fssfltr - ok
18:34:59.0203 1352 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
18:34:59.0218 1352 fsssvc - ok
18:34:59.0250 1352 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:34:59.0265 1352 Fs_Rec - ok
18:34:59.0281 1352 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:34:59.0281 1352 Ftdisk - ok
18:34:59.0328 1352 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:34:59.0328 1352 Gpc - ok
18:34:59.0375 1352 [ 20A940D96E69BE65F9B6E4695BAAC6DC ] GT72NDISIPXP C:\WINDOWS\system32\DRIVERS\Gt51Ip.sys
18:34:59.0375 1352 GT72NDISIPXP - ok
18:34:59.0421 1352 [ 1678D49EA3E76CCABDE89D7B26D5061C ] GT72UBUS C:\WINDOWS\system32\DRIVERS\gt72ubus.sys
18:34:59.0421 1352 GT72UBUS - ok
18:34:59.0468 1352 [ 4A58B52E866BC50F81F63FE181384982 ] GTDetectSc C:\Program Files\Option\Option 225 Driver Installation\GTDetectSc.exe
18:34:59.0468 1352 GTDetectSc - ok
18:34:59.0500 1352 [ 346DDAEFA04E49AD804EE12D4BAA0ED3 ] GTPTSER C:\WINDOWS\system32\DRIVERS\gtptser.sys
18:34:59.0500 1352 GTPTSER - ok
18:34:59.0578 1352 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
18:34:59.0578 1352 gupdate - ok
18:34:59.0578 1352 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
18:34:59.0578 1352 gupdatem - ok
18:34:59.0640 1352 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:34:59.0656 1352 gusvc - ok
18:34:59.0671 1352 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:34:59.0671 1352 HDAudBus - ok
18:34:59.0750 1352 [ F59152272782FED8A8197FA788287F68 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:34:59.0750 1352 helpsvc - ok
18:34:59.0796 1352 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:34:59.0796 1352 HidUsb - ok
18:34:59.0812 1352 hpn - ok
18:34:59.0828 1352 [ 6A5C4732D6803F84E2987EDD8E4359CE ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
18:34:59.0828 1352 HSFHWAZL - ok
18:34:59.0875 1352 [ 21C31273C6CC4826E74BE8AE3B09D4A8 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
18:34:59.0890 1352 HSF_DPV - ok
18:34:59.0937 1352 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:34:59.0937 1352 HTTP - ok
18:34:59.0968 1352 [ DA826826C5C9116F47E0CD0CA8CC7C11 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:34:59.0984 1352 HTTPFilter - ok
18:35:00.0031 1352 [ 2310CA92D37D97C9231ADF1796B47B9D ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
18:35:00.0031 1352 hwdatacard - ok
18:35:00.0062 1352 [ 8F09F91B5C91363B77BCD15599570F2C ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
18:35:00.0062 1352 i2omgmt - ok
18:35:00.0078 1352 i2omp - ok
18:35:00.0125 1352 [ 0F42DE9909B5DBF2C48DD1A79D491AF5 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:35:00.0125 1352 i8042prt - ok
18:35:00.0375 1352 [ 28423512370705AEDA6A652FEDB25468 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:35:00.0421 1352 ialm - ok
18:35:00.0484 1352 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:35:00.0484 1352 idsvc - ok
18:35:00.0515 1352 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:35:00.0515 1352 Imapi - ok
18:35:00.0546 1352 [ CF9D286B34CB4912F3B28B4972D5CB33 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:35:00.0562 1352 ImapiService - ok
18:35:00.0562 1352 ini910u - ok
18:35:00.0609 1352 [ F8F75594C17FE7BCE1B4045BB7199868 ] int15 C:\WINDOWS\system32\drivers\int15.sys
18:35:00.0609 1352 int15 - ok
18:35:00.0781 1352 [ 12F4D2AA29745DC2A403FF42E75CF7FA ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:35:00.0812 1352 IntcAzAudAddService - ok
18:35:00.0828 1352 IntelIde - ok
18:35:00.0859 1352 [ 10A3AC0F0DF720AD3C3FD13861D50EB9 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:35:00.0859 1352 intelppm - ok
18:35:00.0890 1352 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
18:35:00.0906 1352 Ip6Fw - ok
18:35:00.0921 1352 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:35:00.0921 1352 IpFilterDriver - ok
18:35:00.0953 1352 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:35:00.0953 1352 IpInIp - ok
18:35:01.0000 1352 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:35:01.0000 1352 IpNat - ok
18:35:01.0031 1352 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:35:01.0031 1352 IPSec - ok
18:35:01.0078 1352 [ 86C204836FEEC22510D434982D4221B8 ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
18:35:01.0078 1352 irda - ok
18:35:01.0125 1352 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:35:01.0125 1352 IRENUM - ok
18:35:01.0140 1352 [ E16AC23F81CFE1223AB470F9982DE89D ] Irmon C:\WINDOWS\System32\irmon.dll
18:35:01.0140 1352 Irmon - ok
18:35:01.0203 1352 [ 1091528512E4DD7ED5FDDCC4DF1C53D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:35:01.0203 1352 isapnp - ok
18:35:01.0296 1352 [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
18:35:01.0296 1352 JavaQuickStarterService - ok
18:35:01.0312 1352 [ 6F877BF8DC01A550CD666F3BEDB2213C ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:35:01.0328 1352 Kbdclass - ok
18:35:01.0359 1352 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:35:01.0375 1352 kmixer - ok
18:35:01.0406 1352 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:35:01.0406 1352 KSecDD - ok
18:35:01.0437 1352 [ 9757F6E16FD1EAB54D6EB9D5EB3CBCB5 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:35:01.0453 1352 lanmanserver - ok
18:35:01.0484 1352 [ 6BF7BAF420DD4422D2C35DFB3E51A29C ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:35:01.0500 1352 lanmanworkstation - ok
18:35:01.0531 1352 [ CC50A66548C2F285BC8A7B0B8AA578E3 ] lbrtfdc C:\WINDOWS\system32\drivers\lbrtfdc.sys
18:35:01.0531 1352 lbrtfdc - ok
18:35:01.0593 1352 [ F9EE6D2AAB0690B34AE35BA9921A1414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:35:01.0593 1352 LmHosts - ok
18:35:01.0625 1352 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
18:35:01.0625 1352 MBAMProtector - ok
18:35:01.0671 1352 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:35:01.0671 1352 MBAMScheduler - ok
18:35:01.0718 1352 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
18:35:01.0718 1352 MBAMService - ok
18:35:01.0843 1352 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
18:35:01.0843 1352 MDM - ok
18:35:01.0875 1352 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
18:35:01.0875 1352 mdmxsdk - ok
18:35:01.0906 1352 [ 8B2FCBD881879B55BE40B41F12FFC431 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:35:01.0906 1352 Messenger - ok
18:35:01.0968 1352 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
18:35:01.0968 1352 Microsoft Office Groove Audit Service - ok
18:35:02.0000 1352 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:35:02.0000 1352 mnmdd - ok
18:35:02.0031 1352 [ 7D137132D6A9B41EF800E59A771ED48C ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:35:02.0031 1352 mnmsrvc - ok
18:35:02.0078 1352 [ 60210DEB037846AFE521EBF349964F6B ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:35:02.0078 1352 Modem - ok
18:35:02.0078 1352 [ B160EC94114715675509115986400FD9 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:35:02.0078 1352 Mouclass - ok
18:35:02.0109 1352 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:35:02.0109 1352 mouhid - ok
18:35:02.0125 1352 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:35:02.0140 1352 MountMgr - ok
18:35:02.0140 1352 mraid35x - ok
18:35:02.0187 1352 [ 29414447EB5BDE2F8397DC965DBB3156 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:35:02.0187 1352 MRxDAV - ok
18:35:02.0234 1352 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:35:02.0250 1352 MRxSmb - ok
18:35:02.0281 1352 [ 944A24032AED84C59455B981F6CA1C1A ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:35:02.0296 1352 MSDTC - ok
18:35:02.0328 1352 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:35:02.0328 1352 Msfs - ok
18:35:02.0343 1352 MSIServer - ok
18:35:02.0359 1352 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:35:02.0375 1352 MSKSSRV - ok
18:35:02.0375 1352 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:35:02.0390 1352 MSPCLOCK - ok
18:35:02.0406 1352 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:35:02.0406 1352 MSPQM - ok
18:35:02.0437 1352 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:35:02.0437 1352 mssmbios - ok
18:35:02.0484 1352 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
18:35:02.0484 1352 MSTEE - ok
18:35:02.0515 1352 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:35:02.0515 1352 Mup - ok
18:35:02.0546 1352 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:35:02.0562 1352 NABTSFEC - ok
18:35:02.0687 1352 [ 87A00FAEDD703D8D2BDCB29CE5EEEA6B ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
18:35:02.0687 1352 NBService - ok
18:35:02.0734 1352 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:35:02.0734 1352 NDIS - ok
18:35:02.0796 1352 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:35:02.0796 1352 NdisIP - ok
18:35:02.0843 1352 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:35:02.0843 1352 NdisTapi - ok
18:35:02.0890 1352 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:35:02.0890 1352 Ndisuio - ok
18:35:02.0906 1352 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:35:02.0906 1352 NdisWan - ok
18:35:02.0921 1352 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:35:02.0921 1352 NDProxy - ok
18:35:02.0937 1352 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:35:02.0937 1352 NetBIOS - ok
18:35:02.0968 1352 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:35:02.0968 1352 NetBT - ok
18:35:03.0000 1352 [ 818053225BF4AAC5F0F718001E492F70 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:35:03.0000 1352 NetDDE - ok
18:35:03.0015 1352 [ 818053225BF4AAC5F0F718001E492F70 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:35:03.0015 1352 NetDDEdsdm - ok
18:35:03.0062 1352 [ 82A362FE1D4980B71B588D9C10748511 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:35:03.0062 1352 Netlogon - ok
18:35:03.0109 1352 [ 86AD5B0E02F2C968FBB096AB4C555C9C ] Netman C:\WINDOWS\System32\netman.dll
18:35:03.0109 1352 Netman - ok
18:35:03.0156 1352 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:35:03.0156 1352 NetTcpPortSharing - ok
18:35:03.0171 1352 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:35:03.0187 1352 NIC1394 - ok
18:35:03.0234 1352 [ A6E79B60AC73241E5721AB6A573D2B24 ] Nla C:\WINDOWS\System32\mswsock.dll
18:35:03.0250 1352 Nla - ok
18:35:03.0265 1352 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:35:03.0265 1352 Npfs - ok
18:35:03.0312 1352 [ 6216798D29C3BA9D0D6F40BBBAB694A5 ] NSCIRDA C:\WINDOWS\system32\DRIVERS\nscirda.sys
18:35:03.0312 1352 NSCIRDA - ok
18:35:03.0359 1352 [ 19A811EF5F1ED5C926A028CE107FF1AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:35:03.0359 1352 Ntfs - ok
18:35:03.0375 1352 [ 82A362FE1D4980B71B588D9C10748511 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:35:03.0390 1352 NtLmSsp - ok
18:35:03.0421 1352 [ D8D2B13BA93AE830B1A637DF571D1195 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:35:03.0437 1352 NtmsSvc - ok
18:35:03.0468 1352 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:35:03.0468 1352 Null - ok
18:35:03.0515 1352 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:35:03.0515 1352 NwlnkFlt - ok
18:35:03.0515 1352 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:35:03.0515 1352 NwlnkFwd - ok
18:35:03.0609 1352 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:35:03.0609 1352 odserv - ok
18:35:03.0640 1352 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:35:03.0640 1352 ohci1394 - ok
18:35:03.0687 1352 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:35:03.0687 1352 ose - ok
18:35:03.0718 1352 [ 76A18CAA2FEFB28A4CED38D76837E86E ] Parport C:\WINDOWS\system32\drivers\Parport.sys
18:35:03.0718 1352 Parport - ok
18:35:03.0750 1352 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:35:03.0750 1352 PartMgr - ok
18:35:03.0781 1352 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:35:03.0781 1352 ParVdm - ok
18:35:03.0796 1352 [ B7979F37BB7B9DF2230046134955E6E7 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:35:03.0796 1352 PCI - ok
18:35:03.0828 1352 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:35:03.0828 1352 PCIIde - ok
18:35:03.0843 1352 [ 90505755634407D4EF4C6DEA60FC1DF9 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:35:03.0843 1352 Pcmcia - ok
18:35:03.0859 1352 perc2 - ok
18:35:03.0859 1352 perc2hib - ok
18:35:03.0906 1352 [ 4F9F7B567970B524F31D9970A23F7C24 ] PlugPlay C:\WINDOWS\system32\services.exe
18:35:03.0906 1352 PlugPlay - ok
18:35:03.0921 1352 [ 82A362FE1D4980B71B588D9C10748511 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:35:03.0921 1352 PolicyAgent - ok
18:35:03.0968 1352 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:35:03.0968 1352 PptpMiniport - ok
18:35:03.0984 1352 [ 82A362FE1D4980B71B588D9C10748511 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:35:03.0984 1352 ProtectedStorage - ok
18:35:04.0000 1352 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:35:04.0000 1352 PSched - ok
18:35:04.0031 1352 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:35:04.0031 1352 Ptilink - ok
18:35:04.0062 1352 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:35:04.0062 1352 PxHelp20 - ok
18:35:04.0078 1352 ql1080 - ok
18:35:04.0078 1352 Ql10wnt - ok
18:35:04.0093 1352 ql12160 - ok
18:35:04.0093 1352 ql1240 - ok
18:35:04.0109 1352 ql1280 - ok
18:35:04.0125 1352 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:35:04.0125 1352 RasAcd - ok
18:35:04.0156 1352 [ E68B6F9A726A444059705AB43B5656D1 ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:35:04.0156 1352 RasAuto - ok
18:35:04.0171 1352 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
18:35:04.0187 1352 Rasirda - ok
18:35:04.0187 1352 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:35:04.0203 1352 Rasl2tp - ok
18:35:04.0234 1352 [ 43A5C7969718EE00940A6D096960DBC8 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:35:04.0250 1352 RasMan - ok
18:35:04.0281 1352 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:35:04.0281 1352 RasPppoe - ok
18:35:04.0312 1352 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:35:04.0312 1352 Raspti - ok
18:35:04.0328 1352 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:35:04.0328 1352 Rdbss - ok
18:35:04.0359 1352 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:35:04.0359 1352 RDPCDD - ok
18:35:04.0406 1352 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:35:04.0406 1352 rdpdr - ok
18:35:04.0453 1352 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:35:04.0453 1352 RDPWD - ok
18:35:04.0484 1352 [ 125ACF258DA9633F748131A0E0185AF3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:35:04.0500 1352 RDSessMgr - ok
18:35:04.0515 1352 [ ABA13D33E1F888C9A68599A48A8840D6 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:35:04.0515 1352 redbook - ok
18:35:04.0562 1352 [ EB5E1A601E5A1908A87E4D5A41803D98 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:35:04.0562 1352 RemoteAccess - ok
18:35:04.0609 1352 [ 5B21208FCF8970BB61FE98E19D828714 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
18:35:04.0609 1352 RemoteRegistry - ok
18:35:04.0656 1352 [ C8A3B668985D61249F2DC71716C58DE8 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:35:04.0656 1352 RpcLocator - ok
18:35:04.0687 1352 [ 2B269C916766BDB43404F043B763427D ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:35:04.0703 1352 RpcSs - ok
18:35:04.0734 1352 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:35:04.0734 1352 RSVP - ok
18:35:04.0765 1352 [ 82A362FE1D4980B71B588D9C10748511 ] SamSs C:\WINDOWS\system32\lsass.exe
18:35:04.0765 1352 SamSs - ok
18:35:04.0812 1352 [ C177354E995CC1AA1F767BCD9980434A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:35:04.0828 1352 SCardSvr - ok
18:35:04.0859 1352 [ 29AC93307C6182DBE336BCA314947F28 ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:35:04.0875 1352 Schedule - ok
18:35:04.0906 1352 [ 02FC71B020EC8700EE8A46C58BC6F276 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
18:35:04.0906 1352 sdbus - ok
18:35:05.0000 1352 [ 271077B91D7AD1B616F8AFDFE8E3F981 ] SeaPort C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
18:35:05.0000 1352 SeaPort - ok
18:35:05.0062 1352 [ C76CB8A133374FAC6805F83FF7B7DA03 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:35:05.0078 1352 seclogon - ok
18:35:05.0093 1352 [ 220AD85BA9C5B3011296354011B901CC ] SENS C:\WINDOWS\system32\sens.dll
18:35:05.0093 1352 SENS - ok
18:35:05.0140 1352 [ C1DDBC85251551A840212999DA3D95F3 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
18:35:05.0156 1352 Serial - ok
18:35:05.0218 1352 [ C3BB6CF8F9EE199005A2AAE2815AD756 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
18:35:05.0234 1352 ServiceLayer - ok
18:35:05.0281 1352 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:35:05.0281 1352 Sfloppy - ok
18:35:05.0328 1352 [ 6A93501BCDEBF159109429B022C0FF83 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:35:05.0343 1352 SharedAccess - ok
18:35:05.0359 1352 [ E26EDC7AFA8DA3C528055EABC82C8C79 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:35:05.0359 1352 ShellHWDetection - ok
18:35:05.0375 1352 Simbad - ok
18:35:05.0406 1352 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:35:05.0406 1352 SLIP - ok
18:35:05.0421 1352 Sparrow - ok
18:35:05.0484 1352 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:35:05.0484 1352 splitter - ok
18:35:05.0531 1352 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:35:05.0531 1352 Spooler - ok
18:35:05.0609 1352 [ 71E276F6D189413266EA22171806597B ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
18:35:05.0625 1352 sptd - ok
18:35:05.0656 1352 [ A74035EA526DB97D9D50D2143A55F5CF ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:35:05.0671 1352 sr - ok
18:35:05.0703 1352 [ 3CD57F31A64D32FDB28918B16D1E6AAC ] srservice C:\WINDOWS\system32\srsvc.dll
18:35:05.0718 1352 srservice - ok
18:35:05.0750 1352 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:35:05.0750 1352 Srv - ok
18:35:05.0781 1352 [ 88C28F53F53438DAFCD95E99C837C61E ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:35:05.0781 1352 SSDPSRV - ok
18:35:05.0843 1352 [ B824215A934A24928CDDD1EF7E113035 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:35:05.0843 1352 stisvc - ok
18:35:05.0890 1352 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:35:05.0890 1352 streamip - ok
18:35:05.0921 1352 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:35:05.0921 1352 swenum - ok
18:35:05.0968 1352 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:35:05.0968 1352 swmidi - ok
18:35:05.0968 1352 SwPrv - ok
18:35:05.0984 1352 symc810 - ok
18:35:05.0984 1352 symc8xx - ok
18:35:06.0000 1352 sym_hi - ok
18:35:06.0000 1352 sym_u3 - ok
18:35:06.0046 1352 [ CC5DA243CFDAC58FC0408F7CE24084C5 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:35:06.0046 1352 SynTP - ok
18:35:06.0093 1352 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:35:06.0093 1352 sysaudio - ok
18:35:06.0140 1352 [ D9C9ECFF4904E6151525C533AEEDF8F4 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:35:06.0140 1352 SysmonLog - ok
18:35:06.0187 1352 [ 250241D65CCF692AEACC318A266413C2 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:35:06.0203 1352 TapiSrv - ok
18:35:06.0234 1352 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:35:06.0234 1352 Tcpip - ok
18:35:06.0265 1352 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:35:06.0281 1352 TDPIPE - ok
18:35:06.0312 1352 [ 45FE2294261FF05AA986CDC757E7B524 ] TdsNordecr C:\WINDOWS\system32\DRIVERS\nordecr.sys
18:35:06.0312 1352 TdsNordecr - ok
18:35:06.0343 1352 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:35:06.0343 1352 TDTCP - ok
18:35:06.0359 1352 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:35:06.0359 1352 TermDD - ok
18:35:06.0390 1352 [ 2F5919F2F6EE7A845893D9C3AA2BC56A ] TermService C:\WINDOWS\System32\termsrv.dll
18:35:06.0390 1352 TermService - ok
18:35:06.0421 1352 [ E26EDC7AFA8DA3C528055EABC82C8C79 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:35:06.0421 1352 Themes - ok
18:35:06.0484 1352 [ 78213F01CE781F93180BEF5EB5B3AD81 ] tifm21 C:\WINDOWS\system32\drivers\tifm21.sys
18:35:06.0484 1352 tifm21 - ok
18:35:06.0515 1352 [ 535C2FB97336BAFA509F4783DD1E5746 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
18:35:06.0531 1352 TlntSvr - ok
18:35:06.0531 1352 TosIde - ok
18:35:06.0562 1352 [ 4DCE17221B1A87FB47E36842F3E38753 ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:35:06.0562 1352 TrkWks - ok
18:35:06.0609 1352 [ 97DD70FECA64FB4F63DE7BB7E66A80B1 ] tvicport C:\WINDOWS\system32\drivers\tvicport.sys
18:35:06.0625 1352 tvicport - ok
18:35:06.0640 1352 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:35:06.0656 1352 Udfs - ok
18:35:06.0656 1352 ultra - ok
18:35:06.0703 1352 [ CED744117E91BDC0BEB810F7D8608183 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:35:06.0703 1352 Update - ok
18:35:06.0765 1352 [ 0C0C2C77C6B52181369594F2AA36AF40 ] upnphost C:\WINDOWS\System32\upnphost.dll
18:35:06.0765 1352 upnphost - ok
18:35:06.0796 1352 [ 6148A3BA4D9CC628357FC92014FEA30E ] UPS C:\WINDOWS\System32\ups.exe
18:35:06.0812 1352 UPS - ok
18:35:06.0859 1352 [ 45A0D14B26C35497AD93BCE7E15C9941 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
18:35:06.0859 1352 usbaudio - ok
18:35:06.0890 1352 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:35:06.0890 1352 usbccgp - ok
18:35:06.0953 1352 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:35:06.0953 1352 usbehci - ok
18:35:06.0968 1352 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:35:06.0968 1352 usbhub - ok
18:35:07.0015 1352 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:35:07.0015 1352 usbscan - ok
18:35:07.0062 1352 [ 49106EE29074E6A3D3AC9E24C6D791D8 ] usbser C:\WINDOWS\system32\drivers\usbser.sys
18:35:07.0062 1352 usbser - ok
18:35:07.0109 1352 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:35:07.0109 1352 USBSTOR - ok
18:35:07.0125 1352 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:35:07.0125 1352 usbuhci - ok
18:35:07.0187 1352 [ 94A0CE966C671C74E903487099E818C8 ] VF0470Vid C:\WINDOWS\system32\DRIVERS\V0470Vid.sys
18:35:07.0187 1352 VF0470Vid - ok
18:35:07.0203 1352 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:35:07.0203 1352 VgaSave - ok
18:35:07.0218 1352 ViaIde - ok
18:35:07.0265 1352 [ CD8CCE067F7E9CBD762C00BDDDECAA34 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:35:07.0265 1352 VolSnap - ok
18:35:07.0296 1352 [ 043539881667BB37B07524032D6FFC3E ] VSS C:\WINDOWS\System32\vssvc.exe
18:35:07.0312 1352 VSS - ok
18:35:07.0328 1352 [ 2CEEBB402187AE56B585701F3D191FB3 ] W32Time C:\WINDOWS\system32\w32time.dll
18:35:07.0343 1352 W32Time - ok
18:35:07.0375 1352 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:35:07.0375 1352 Wanarp - ok
18:35:07.0421 1352 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
18:35:07.0421 1352 Wdf01000 - ok
18:35:07.0453 1352 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:35:07.0453 1352 wdmaud - ok
18:35:07.0500 1352 [ 4BD50644CF52F00091F894AB7541E538 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:35:07.0500 1352 WebClient - ok
18:35:07.0578 1352 [ 307D248F97835B6879BDD361086924FE ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
18:35:07.0578 1352 winachsf - ok
18:35:07.0671 1352 [ E12084EA622BDF2262C637BEF15DD85C ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:35:07.0671 1352 winmgmt - ok
18:35:07.0734 1352 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
18:35:07.0734 1352 WmdmPmSN - ok
18:35:07.0796 1352 [ E428EED87E8055FB995CF0E4D1532D4C ] Wmi C:\WINDOWS\System32\advapi32.dll
18:35:07.0812 1352 Wmi - ok
18:35:07.0859 1352 [ AE2C8544E747C20062DB27456EA2D67A ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:35:07.0859 1352 WmiAcpi - ok
18:35:07.0906 1352 [ BCD21B989F0FD4ACE78287FC01B4693D ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:35:07.0906 1352 WmiApSrv - ok
18:35:07.0984 1352 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
18:35:08.0000 1352 WMPNetworkSvc - ok
18:35:08.0046 1352 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
18:35:08.0046 1352 WpdUsb - ok
18:35:08.0062 1352 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:35:08.0062 1352 WS2IFSL - ok
18:35:08.0109 1352 [ 4ADED1ADEF25041D9827F9A79C0FDA13 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:35:08.0109 1352 wscsvc - ok
18:35:08.0156 1352 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:35:08.0156 1352 WSTCODEC - ok
18:35:08.0187 1352 [ 21F5169CA14E0B25C757644456F637DF ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:35:08.0203 1352 wuauserv - ok
18:35:08.0250 1352 [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:35:08.0250 1352 WudfPf - ok
18:35:08.0296 1352 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:35:08.0296 1352 WudfRd - ok
18:35:08.0343 1352 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
18:35:08.0359 1352 WudfSvc - ok
18:35:08.0390 1352 [ 325CEDEF696EF4B649DDCD3968D085C9 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:35:08.0390 1352 WZCSVC - ok
18:35:08.0421 1352 [ 9B835D4C64860B155A1701D5092EC9E4 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:35:08.0437 1352 xmlprov - ok
18:35:08.0468 1352 [ 40AC8590CC9006DBB99FFCB37879D4C6 ] zntport C:\WINDOWS\system32\drivers\zntport.sys
18:35:08.0484 1352 zntport - ok
18:35:08.0500 1352 ================ Scan global ===============================
18:35:08.0546 1352 [ F642F3368D2839798DA79E7BA9218481 ] C:\WINDOWS\system32\basesrv.dll
18:35:08.0578 1352 [ 5869828D4A83BA8F9519630C40044C87 ] C:\WINDOWS\system32\winsrv.dll
18:35:08.0609 1352 [ 5869828D4A83BA8F9519630C40044C87 ] C:\WINDOWS\system32\winsrv.dll
18:35:08.0640 1352 [ 4F9F7B567970B524F31D9970A23F7C24 ] C:\WINDOWS\system32\services.exe
18:35:08.0640 1352 [Global] - ok
18:35:08.0640 1352 ================ Scan MBR ==================================
18:35:08.0671 1352 [ 3B00EB857BBA060EBA3B17F7019E492F ] \Device\Harddisk0\DR0
18:35:08.0875 1352 \Device\Harddisk0\DR0 - ok
18:35:08.0890 1352 ================ Scan VBR ==================================
18:35:08.0890 1352 [ 547DBCB024D36DE448AAAA6124F86884 ] \Device\Harddisk0\DR0\Partition1
18:35:08.0890 1352 \Device\Harddisk0\DR0\Partition1 - ok
18:35:08.0906 1352 [ 4BB30DA74C6C98EB818B7C9E216C119C ] \Device\Harddisk0\DR0\Partition2
18:35:08.0906 1352 \Device\Harddisk0\DR0\Partition2 - ok
18:35:08.0921 1352 ============================================================
18:35:08.0921 1352 Scan finished
18:35:08.0921 1352 ============================================================
18:35:08.0937 0872 Detected object count: 0
18:35:08.0937 0872 Actual detected object count: 0
18:35:55.0796 2196 Deinitialize success