Kontrola logu ( Zatížený procesor ) Vyřešeno

[Voldacz]

Ahoj poslední dobou mám hodně zatížený procesor a dával jsem to už do jiné sekce ale přesměrovali mě sem tak prosím o pomoc


Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\TeamViewer\Version6\TeamViewer.exe
C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
C:\Program Files\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Skype\Phone\Skype.exe
E:\HRY\STEAM\Steam.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Voldacz\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Users\Voldacz\AppData\Local\Temp\_setup.exe
C:\Users\Voldacz\Desktop\OpenOffice.org 3\program\soffice.exe
C:\Users\Voldacz\Desktop\OpenOffice.org 3\program\soffice.bin
C:\Users\Voldacz\AppData\Local\Temp\nsvDD06.tmp\nsDE8D.tmp
C:\Windows\system32\conhost.exe
C:\Users\Voldacz\AppData\Local\Temp\{EC6AAAF6-FE8C-479D-9090-BC8A4A5FFC6E}\cgminer-2.11.3-win32\cgminer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\Java\jre7\bin\javaw.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Voldacz\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1197 ... FF9B97A237
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Splashtop Connect SearchHook - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files\Splashtop\Splashtop Connect IE\AddressBarSearch.dll
O2 - BHO: Splashtop Connect VisualBookmark - {0E5680D1-BF44-4929-94AF-FD30D784AD1D} - C:\Program Files\Splashtop\Splashtop Connect IE\STC.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - C:\PROGRA~1\STARDO~1\SDIEInt.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [STCAgent] "C:\Program Files\Splashtop\Splashtop Connect IE\STCAgent.exe"
O4 - HKLM\..\Run: [ZyngaGamesAgent] "C:\Program Files\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "E:\HRY\STEAM\steam.exe" -silent
O4 - HKCU\..\Run: [Pando Media Booster] "C:\Program Files\Pando Networks\Media Booster\PMB.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Voldacz\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [software helper] "C:\Users\Voldacz\AppData\Local\Temp\{EC6AAAF6-FE8C-479D-9090-BC8A4A5FFC6E}\hstart.exe" /NOCONSOLE "C:\Users\Voldacz\AppData\Local\Temp\_setup.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 3.3.lnk = Voldacz\Desktop\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Download with Star Downloader - C:\PROGRA~1\STARDO~1\sdie.htm
O8 - Extra context menu item: Enqueue in Star Downloader - C:\PROGRA~1\STARDO~1\sdieenq.htm
O8 - Extra context menu item: Leech with Star Downloader - C:\PROGRA~1\STARDO~1\leechie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: BrowserProtect - Unknown owner - C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Splashtop Connect Service (SCBackService) - Splashtop Inc. - C:\Program Files\Splashtop\Splashtop Connect\BackService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Splashtop Connect Firefox Software Updater Service (WCUService_STC_FF) - Splashtop Inc. - C:\Program Files\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
O23 - Service: Splashtop Connect IE Software Updater Service (WCUService_STC_IE) - Splashtop Inc. - C:\Program Files\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe

--
End of file - 10576 bytes

[Reklama]

[Žbeky]

Logy dodávej celé

Fixni:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1197 ... FF9B97A237
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - C:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - HKLM\..\Run: [ZyngaGamesAgent] "C:\Program Files\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Voldacz\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [software helper] "C:\Users\Voldacz\AppData\Local\Temp\{EC6AAAF6-FE8C-479D-9090-BC8A4A5FFC6E}\hstart.exe" /NOCONSOLE "C:\Users\Voldacz\AppData\Local\Temp\_setup.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 3.3.lnk = Voldacz\Desktop\OpenOffice.org 3\program\quickstart.exe
O20 - AppInit_DLLs: c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Voldacz]

AdwCleaner:

# AdwCleaner v2.200 - Log vytvooen 16/04/2013 v 20:39:40
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Windows 7 Ultimate (32 bits)
# Uživatel : Voldacz - VOLDACZ
# Spuštin systém : Normální
# Spuštino z : C:\Users\Voldacz\Downloads\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****

Nalezeno : BrowserProtect

***** [Soubory / Složky] *****

Složka Nalezeno : C:\ProgramData\Babylon
Složka Nalezeno : C:\ProgramData\boost_interprocess
Složka Nalezeno : C:\ProgramData\BrowserProtect
Složka Nalezeno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcgmidjhhnnjikpigolabhacfngibde
Složka Nalezeno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Složka Nalezeno : C:\Users\Voldacz\AppData\Roaming\BabSolution
Složka Nalezeno : C:\Users\Voldacz\AppData\Roaming\Babylon
Složka Nalezeno : C:\Users\Voldacz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
Soubor Nalezeno : C:\Users\Administrator1\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Nalezeno : C:\Users\Administrator1\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Nalezeno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Nalezeno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Nalezeno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
Soubor Nalezeno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
Soubor Nalezeno : C:\Users\Voldacz\AppData\Roaming\Mozilla\Firefox\Profiles\y7fxewgb.default\bprotector_extensions.sqlite
Soubor Nalezeno : C:\Users\Voldacz\AppData\Roaming\Mozilla\Firefox\Profiles\y7fxewgb.default\bprotector_prefs.js

***** [Registry] *****

Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{0F3DC9E0-C459-4A40-BCF8-747BD9322E10}]
Hodnota Nalezeno : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Klíe Nalezeno : HKCU\Software\5855d8d1b26eba45
Klíe Nalezeno : HKCU\Software\APN PIP
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Nalezeno : HKCU\Software\BabylonToolbar
Klíe Nalezeno : HKCU\Software\Conduit
Klíe Nalezeno : HKCU\Software\DataMngr
Klíe Nalezeno : HKCU\Software\DataMngr_Toolbar
Klíe Nalezeno : HKCU\Software\Google\Chrome\Extensions\ihcgmidjhhnnjikpigolabhacfngibde
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Nalezeno : HKLM\SOFTWARE\5855d8d1b26eba45
Klíe Nalezeno : HKLM\Software\Babylon
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{0F3DC9E0-C459-4A40-BCF8-747BD9322E10}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Nalezeno : HKLM\Software\DataMngr
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\ihcgmidjhhnnjikpigolabhacfngibde
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Klíe Nalezeno : HKLM\Software\PIP
Klíe Nalezeno : HKU\S-1-5-21-2296173991-3406249303-2536867189-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.7930.16406

[HKCU\Software\Microsoft\Internet Explorer\Main - bProtector Start Page] = hxxp://www.delta-search.com/?affID=1197 ... FF9B97A237

-\\ Mozilla Firefox v19.0.2 (cs)

Soubor : C:\Users\Voldacz\AppData\Roaming\Mozilla\Firefox\Profiles\y7fxewgb.default\prefs.js

Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119721&babsrc=HP_ss&mntr[...]
Nalezeno : user_pref("avg.install.userSPSettings", "Delta Search");
Nalezeno : user_pref("browser.newtab.url", "hxxp://www.delta-search.com/?affID=119721&babsrc=NT_ss&mntrId=3C680[...]
Nalezeno : user_pref("browser.search.selectedEngine", "Delta Search");

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Preferences

Nalezeno [l.23] : icon_url = "hxxp://search.conduit.com/fav.ico",
Nalezeno [l.26] : keyword = "search.conduit.com",
Nalezeno [l.29] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=&ctid=CT2438727",
Nalezeno [l.1976] : homepage = "hxxp://www.delta-search.com/?affID=119721&babsrc=HP_ss&mntrId=3C6800FF9B97A237",
Nalezeno [l.2245] : urls_to_restore_on_startup ="session": {"restore_on_startup": 4, [ "hxxp://www.delta-search.com/?affID=119721&babsrc=HP_ss&mntrId=3C6800FF9B97A237" ]},

Soubor : C:\Users\Administrator1\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

-\\ Opera v12.14.1738.0

Soubor : C:\Users\Voldacz\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [6200 octets] - [16/04/2013 20:39:40]

########## EOF - C:\AdwCleaner[R1].txt - [6260 octets] ##########



Anti-Malware:

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.04.16.09

Windows 7 x86 NTFS
Internet Explorer 9.0.7930.16406
Voldacz :: VOLDACZ [administrator]

Protection: Enabled

16.4.2013 20:33:22
MBAM-log-2013-04-16 (20-38-24).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 250770
Time elapsed: 4 minute(s), 32 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\Users\Voldacz\Downloads\Game Cam Pro 1.3.0.3.rar (Trojan.Downloader) -> No action taken.
C:\Users\Voldacz\Downloads\GameCam_v2.2+crack.rar (Adware.AdRotator) -> No action taken.
C:\Users\Public\Desktop\MP3 Downloader.lnk (Rogue.Link) -> No action taken.

(end)

[memphisto]

V Mbam i AdwCleaner nech vše smazat a dodej logy

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
- Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Voldacz]

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 32 bits version
Spuštěno v : Normální režim
Uživatel : Voldacz [Práva správce]
Mód : Kontrola -- Datum : 04/17/2013 18:52:05
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[TASK][SUSP PATH] EPUpdater : C:\Users\Voldacz\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [x] -> NALEZENO
[TASK][SUSP PATH] {624DE992-D6B7-4E14-BF17-75112957A1BD} : C:\Users\Voldacz\Desktop\Minecraft.exe [-] -> NALEZENO
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤
-> D:\windows\system32\config\SOFTWARE
-> D:\windows\system32\config\SYSTEM
-> D:\Documents and Settings\Admin\NTUSER.DAT
-> D:\Documents and Settings\Administrator\NTUSER.DAT
-> D:\Documents and Settings\Administrator.PC-747767835537\NTUSER.DAT
-> D:\Documents and Settings\Default User\NTUSER.DAT
-> D:\Documents and Settings\LocalService\NTUSER.DAT
-> D:\Documents and Settings\NetworkService\NTUSER.DAT
-> D:\Documents and Settings\Quest\NTUSER.DAT
-> D:\Documents and Settings\UpdatusUser\NTUSER.DAT

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKX-001CA0 ATA Device +++++
--- User ---
[MBR] 91ace19e8423bc71af30a2ff4594ee9a
[BSP] 8900123f61ef48da699732d7f65390fb : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 199996 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 409593240 | Size: 276932 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_04172013_02d1852.txt >>
RKreport[1]_S_04172013_02d1852.txt

[jaro3]

Tak ještě jednou:

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

+
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání skončeno "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

[Voldacz]

AdwCleaner:

# AdwCleaner v2.200 - Log vytvooen 17/04/2013 v 18:38:58
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Windows 7 Ultimate (32 bits)
# Uživatel : Voldacz - VOLDACZ
# Spuštin systém : Normální
# Spuštino z : C:\Users\Voldacz\Downloads\adwcleaner.exe
# Volba [Vymazat]


***** [Služby] *****


***** [Soubory / Složky] *****

Složka Vymazáno : C:\ProgramData\Babylon
Složka Vymazáno : C:\ProgramData\boost_interprocess
Složka Vymazáno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcgmidjhhnnjikpigolabhacfngibde
Složka Vymazáno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Složka Vymazáno : C:\Users\Voldacz\AppData\Roaming\BabSolution
Složka Vymazáno : C:\Users\Voldacz\AppData\Roaming\Babylon
Složka Vymazáno : C:\Users\Voldacz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Soubor Vymazáno : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
Soubor Vymazáno : C:\Users\Administrator1\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Vymazáno : C:\Users\Administrator1\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Vymazáno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Soubor Vymazáno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Soubor Vymazáno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
Soubor Vymazáno : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
Soubor Vymazáno : C:\Users\Voldacz\AppData\Roaming\Mozilla\Firefox\Profiles\y7fxewgb.default\bprotector_extensions.sqlite
Soubor Vymazáno : C:\Users\Voldacz\AppData\Roaming\Mozilla\Firefox\Profiles\y7fxewgb.default\bprotector_prefs.js
Vymazáno poi restartu : C:\ProgramData\BrowserProtect

***** [Registry] *****

Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{0F3DC9E0-C459-4A40-BCF8-747BD9322E10}]
Hodnota Vymazáno : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Klíe Vymazáno : HKCU\Software\5855d8d1b26eba45
Klíe Vymazáno : HKCU\Software\APN PIP
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Vymazáno : HKCU\Software\BabylonToolbar
Klíe Vymazáno : HKCU\Software\Conduit
Klíe Vymazáno : HKCU\Software\DataMngr
Klíe Vymazáno : HKCU\Software\DataMngr_Toolbar
Klíe Vymazáno : HKCU\Software\Google\Chrome\Extensions\ihcgmidjhhnnjikpigolabhacfngibde
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Vymazáno : HKLM\SOFTWARE\5855d8d1b26eba45
Klíe Vymazáno : HKLM\Software\Babylon
Klíe Vymazáno : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{0F3DC9E0-C459-4A40-BCF8-747BD9322E10}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Vymazáno : HKLM\Software\DataMngr
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\ihcgmidjhhnnjikpigolabhacfngibde
Klíe Vymazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Klíe Vymazáno : HKLM\Software\PIP

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.7930.16406

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v20.0.1 (cs)

Soubor : C:\Users\Voldacz\AppData\Roaming\Mozilla\Firefox\Profiles\y7fxewgb.default\prefs.js

Vymazáno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119721&babsrc=HP_ss&mntr[...]
Vymazáno : user_pref("avg.install.userSPSettings", "Delta Search");
Vymazáno : user_pref("browser.newtab.url", "hxxp://www.delta-search.com/?affID=119721&babsrc=NT_ss&mntrId=3C680[...]
Vymazáno : user_pref("browser.search.selectedEngine", "Delta Search");

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Users\Voldacz\AppData\Local\Google\Chrome\User Data\Default\Preferences

Vymazáno [l.23] : icon_url = "hxxp://search.conduit.com/fav.ico",
Vymazáno [l.26] : keyword = "search.conduit.com",
Vymazáno [l.29] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=&cti[...]
Vymazáno [l.1976] : homepage = "hxxp://www.delta-search.com/?affID=119721&babsrc=HP_ss&mntrId=3C6800FF9B97A237",
Vymazáno [l.2245] : urls_to_restore_on_startup ="session": {"restore_on_startup": 4, [ "hxxp://www.delta-search.com[...]

Soubor : C:\Users\Administrator1\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

-\\ Opera v12.14.1738.0

Soubor : C:\Users\Voldacz\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [6329 octets] - [16/04/2013 20:39:40]
AdwCleaner[R2].txt - [6389 octets] - [17/04/2013 18:36:53]
AdwCleaner[R3].txt - [6481 octets] - [17/04/2013 18:38:48]
AdwCleaner[S1].txt - [349 octets] - [17/04/2013 18:37:39]
AdwCleaner[S2].txt - [6072 octets] - [17/04/2013 18:38:58]

########## EOF - C:\AdwCleaner[S2].txt - [6132 octets] ##########


Rogue:

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 32 bits version
Spuštěno v : Normální režim
Uživatel : Voldacz [Práva správce]
Mód : Kontrola -- Datum : 04/17/2013 18:52:05
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[TASK][SUSP PATH] EPUpdater : C:\Users\Voldacz\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [x] -> NALEZENO
[TASK][SUSP PATH] {624DE992-D6B7-4E14-BF17-75112957A1BD} : C:\Users\Voldacz\Desktop\Minecraft.exe [-] -> NALEZENO
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤
-> D:\windows\system32\config\SOFTWARE
-> D:\windows\system32\config\SYSTEM
-> D:\Documents and Settings\Admin\NTUSER.DAT
-> D:\Documents and Settings\Administrator\NTUSER.DAT
-> D:\Documents and Settings\Administrator.PC-747767835537\NTUSER.DAT
-> D:\Documents and Settings\Default User\NTUSER.DAT
-> D:\Documents and Settings\LocalService\NTUSER.DAT
-> D:\Documents and Settings\NetworkService\NTUSER.DAT
-> D:\Documents and Settings\Quest\NTUSER.DAT
-> D:\Documents and Settings\UpdatusUser\NTUSER.DAT

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKX-001CA0 ATA Device +++++
--- User ---
[MBR] 91ace19e8423bc71af30a2ff4594ee9a
[BSP] 8900123f61ef48da699732d7f65390fb : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 199996 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 409593240 | Size: 276932 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_04172013_02d1852.txt >>
RKreport[1]_S_04172013_02d1852.txt

MbAM:

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.04.17.07

Windows 7 x86 NTFS
Internet Explorer 9.0.7930.16406
Voldacz :: VOLDACZ [administrator]

Protection: Enabled

17.4.2013 20:31:13
mbam-log-2013-04-17 (20-31-13).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 251235
Time elapsed: 4 minute(s), 8 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

[jaro3]

Přečti pečlivě:

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání skončeno "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller


Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

[Voldacz]

RogueKiller:

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 32 bits version
Spuštěno v : Normální režim
Uživatel : Voldacz [Práva správce]
Mód : Odebrat -- Datum : 04/18/2013 20:14:05
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[TASK][SUSP PATH] EPUpdater : C:\Users\Voldacz\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [x] -> VYMAZÁNO
[TASK][SUSP PATH] {624DE992-D6B7-4E14-BF17-75112957A1BD} : C:\Users\Voldacz\Desktop\Minecraft.exe [-] -> VYMAZÁNO
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤
-> D:\windows\system32\config\SOFTWARE
-> D:\windows\system32\config\SYSTEM
-> D:\Documents and Settings\Admin\NTUSER.DAT
-> D:\Documents and Settings\Administrator\NTUSER.DAT
-> D:\Documents and Settings\Administrator.PC-747767835537\NTUSER.DAT
-> D:\Documents and Settings\Default User\NTUSER.DAT
-> D:\Documents and Settings\LocalService\NTUSER.DAT
-> D:\Documents and Settings\NetworkService\NTUSER.DAT
-> D:\Documents and Settings\Quest\NTUSER.DAT
-> D:\Documents and Settings\UpdatusUser\NTUSER.DAT

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKX-001CA0 ATA Device +++++
--- User ---
[MBR] 91ace19e8423bc71af30a2ff4594ee9a
[BSP] 8900123f61ef48da699732d7f65390fb : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 199996 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 409593240 | Size: 276932 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[3]_D_04182013_02d2014.txt >>
RKreport[1]_S_04172013_02d1852.txt ; RKreport[2]_S_04182013_02d2013.txt ; RKreport[3]_D_04182013_02d2014.txt

[Voldacz]

TDSSKiller : (1)

20:16:11.0829 5344 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:16:12.0134 5344 ============================================================
20:16:12.0134 5344 Current date / time: 2013/04/18 20:16:12.0134
20:16:12.0134 5344 SystemInfo:
20:16:12.0134 5344
20:16:12.0134 5344 OS Version: 6.1.7600 ServicePack: 0.0
20:16:12.0134 5344 Product type: Workstation
20:16:12.0134 5344 ComputerName: VOLDACZ
20:16:12.0134 5344 UserName: Voldacz
20:16:12.0134 5344 Windows directory: C:\Windows
20:16:12.0134 5344 System windows directory: C:\Windows
20:16:12.0134 5344 Processor architecture: Intel x86
20:16:12.0134 5344 Number of processors: 2
20:16:12.0134 5344 Page size: 0x1000
20:16:12.0134 5344 Boot type: Normal boot
20:16:12.0134 5344 ============================================================
20:16:12.0816 5344 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:16:12.0827 5344 ============================================================
20:16:12.0827 5344 \Device\Harddisk0\DR0:
20:16:12.0827 5344 MBR partitions:
20:16:12.0828 5344 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1869E559
20:16:12.0843 5344 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1869E5D7, BlocksNum 0xEA60903
20:16:12.0860 5344 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x270FEF19, BlocksNum 0x13281E67
20:16:12.0860 5344 ============================================================
20:16:12.0889 5344 C: <-> \Device\Harddisk0\DR0\Partition2
20:16:12.0917 5344 D: <-> \Device\Harddisk0\DR0\Partition1
20:16:12.0952 5344 E: <-> \Device\Harddisk0\DR0\Partition3
20:16:12.0952 5344 ============================================================
20:16:12.0952 5344 Initialize success
20:16:12.0952 5344 ============================================================
20:16:17.0441 6092 ============================================================
20:16:17.0441 6092 Scan started
20:16:17.0441 6092 Mode: Manual;
20:16:17.0441 6092 ============================================================
20:16:18.0071 6092 ================ Scan system memory ========================
20:16:18.0071 6092 System memory - ok
20:16:18.0071 6092 ================ Scan services =============================
20:16:18.0218 6092 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:16:18.0219 6092 1394ohci - ok
20:16:18.0259 6092 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:16:18.0261 6092 ACPI - ok
20:16:18.0287 6092 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:16:18.0287 6092 AcpiPmi - ok
20:16:18.0352 6092 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:16:18.0353 6092 AdobeARMservice - ok
20:16:18.0401 6092 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:16:18.0403 6092 AdobeFlashPlayerUpdateSvc - ok
20:16:18.0454 6092 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:16:18.0458 6092 adp94xx - ok
20:16:18.0473 6092 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:16:18.0476 6092 adpahci - ok
20:16:18.0492 6092 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:16:18.0494 6092 adpu320 - ok
20:16:18.0520 6092 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:16:18.0521 6092 AeLookupSvc - ok
20:16:18.0576 6092 [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD C:\Windows\system32\drivers\afd.sys
20:16:18.0580 6092 AFD - ok
20:16:18.0607 6092 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:16:18.0608 6092 agp440 - ok
20:16:18.0638 6092 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:16:18.0639 6092 aic78xx - ok
20:16:18.0663 6092 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:16:18.0665 6092 ALG - ok
20:16:18.0681 6092 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
20:16:18.0682 6092 aliide - ok
20:16:18.0698 6092 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:16:18.0699 6092 amdagp - ok
20:16:18.0713 6092 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
20:16:18.0714 6092 amdide - ok
20:16:18.0733 6092 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:16:18.0734 6092 AmdK8 - ok
20:16:18.0768 6092 [ AD8FA28D8ED0D0A689A0559085CE0F18 ] AmdLLD C:\Windows\system32\DRIVERS\AmdLLD.sys
20:16:18.0769 6092 AmdLLD - ok
20:16:18.0773 6092 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:16:18.0774 6092 AmdPPM - ok
20:16:18.0807 6092 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:16:18.0808 6092 amdsata - ok
20:16:18.0834 6092 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:16:18.0836 6092 amdsbs - ok
20:16:18.0865 6092 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:16:18.0866 6092 amdxata - ok
20:16:18.0883 6092 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
20:16:18.0884 6092 AppID - ok
20:16:18.0900 6092 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:16:18.0901 6092 AppIDSvc - ok
20:16:18.0915 6092 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
20:16:18.0916 6092 Appinfo - ok
20:16:18.0942 6092 [ F5F0F78286A849BC0E45E0E99065B04F ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
20:16:18.0943 6092 AppleCharger - ok
20:16:18.0957 6092 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
20:16:18.0958 6092 AppleChargerSrv - ok
20:16:18.0988 6092 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:16:18.0991 6092 AppMgmt - ok
20:16:19.0008 6092 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:16:19.0009 6092 arc - ok
20:16:19.0022 6092 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:16:19.0024 6092 arcsas - ok
20:16:19.0109 6092 [ 2FE0D5DB69014980A970D3BF9A85D2B1 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:16:19.0126 6092 aspnet_state - ok
20:16:19.0148 6092 [ CCDA8D84FD02AEC52E62F296433AE9DC ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:16:19.0149 6092 aswFsBlk - ok
20:16:19.0204 6092 [ 4691B3FE3717F9D9C64A5282C8543D4D ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
20:16:19.0205 6092 aswKbd - ok
20:16:19.0225 6092 [ A6E20E62871A28A0F1C05B1681848FA7 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:16:19.0227 6092 aswMonFlt - ok
20:16:19.0240 6092 [ 6844738D52970A0F482768EEA941C78E ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
20:16:19.0241 6092 aswRdr - ok
20:16:19.0271 6092 [ 657A61979F40D67CA29716149766FFA7 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
20:16:19.0272 6092 aswRvrt - ok
20:16:19.0291 6092 [ 0E604867FC28F00D91CB0B00D2EC830D ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:16:19.0298 6092 aswSnx - ok
20:16:19.0313 6092 [ 6FC4AA106AA505394C908D37CCCB9148 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:16:19.0317 6092 aswSP - ok
20:16:19.0351 6092 [ 33E21FFB063CA6C7E00D568467DC72E4 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:16:19.0352 6092 aswTdi - ok
20:16:19.0376 6092 [ EDB0C9BA44B748E420CCA989FD8B826E ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
20:16:19.0378 6092 aswVmm - ok
20:16:19.0401 6092 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:16:19.0402 6092 AsyncMac - ok
20:16:19.0433 6092 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
20:16:19.0433 6092 atapi - ok
20:16:19.0462 6092 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:16:19.0467 6092 AudioEndpointBuilder - ok
20:16:19.0479 6092 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:16:19.0483 6092 Audiosrv - ok
20:16:19.0535 6092 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:16:19.0536 6092 avast! Antivirus - ok
20:16:19.0556 6092 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:16:19.0558 6092 AxInstSV - ok
20:16:19.0592 6092 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:16:19.0596 6092 b06bdrv - ok
20:16:19.0612 6092 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:16:19.0615 6092 b57nd60x - ok
20:16:19.0624 6092 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:16:19.0626 6092 BDESVC - ok
20:16:19.0635 6092 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:16:19.0636 6092 Beep - ok
20:16:19.0664 6092 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\Windows\System32\bfe.dll
20:16:19.0668 6092 BFE - ok
20:16:19.0698 6092 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\Windows\System32\qmgr.dll
20:16:19.0710 6092 BITS - ok
20:16:19.0722 6092 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:16:19.0723 6092 blbdrive - ok
20:16:19.0748 6092 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:16:19.0749 6092 bowser - ok
20:16:19.0761 6092 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:16:19.0762 6092 BrFiltLo - ok
20:16:19.0771 6092 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:16:19.0771 6092 BrFiltUp - ok
20:16:19.0804 6092 [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser C:\Windows\System32\browser.dll
20:16:19.0807 6092 Browser - ok
20:16:19.0825 6092 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:16:19.0828 6092 Brserid - ok
20:16:19.0837 6092 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:16:19.0838 6092 BrSerWdm - ok
20:16:19.0852 6092 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:16:19.0853 6092 BrUsbMdm - ok
20:16:19.0861 6092 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:16:19.0862 6092 BrUsbSer - ok
20:16:19.0874 6092 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:16:19.0875 6092 BTHMODEM - ok
20:16:19.0905 6092 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:16:19.0907 6092 bthserv - ok
20:16:19.0943 6092 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:16:19.0944 6092 cdfs - ok
20:16:20.0006 6092 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:16:20.0007 6092 cdrom - ok
20:16:20.0087 6092 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
20:16:20.0089 6092 CertPropSvc - ok
20:16:20.0115 6092 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:16:20.0116 6092 circlass - ok
20:16:20.0145 6092 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:16:20.0148 6092 CLFS - ok
20:16:20.0194 6092 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:16:20.0196 6092 clr_optimization_v2.0.50727_32 - ok
20:16:20.0228 6092 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:16:20.0258 6092 clr_optimization_v4.0.30319_32 - ok
20:16:20.0273 6092 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:16:20.0274 6092 CmBatt - ok
20:16:20.0305 6092 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:16:20.0306 6092 cmdide - ok
20:16:20.0335 6092 [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG C:\Windows\system32\Drivers\cng.sys
20:16:20.0338 6092 CNG - ok
20:16:20.0349 6092 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:16:20.0350 6092 Compbatt - ok
20:16:20.0380 6092 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:16:20.0381 6092 CompositeBus - ok
20:16:20.0385 6092 COMSysApp - ok
20:16:20.0401 6092 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:16:20.0402 6092 crcdisk - ok
20:16:20.0438 6092 [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:16:20.0441 6092 CryptSvc - ok
20:16:20.0459 6092 [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC C:\Windows\system32\drivers\csc.sys
20:16:20.0463 6092 CSC - ok
20:16:20.0489 6092 [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService C:\Windows\System32\cscsvc.dll
20:16:20.0495 6092 CscService - ok
20:16:20.0522 6092 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
20:16:20.0530 6092 DcomLaunch - ok
20:16:20.0554 6092 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:16:20.0558 6092 defragsvc - ok
20:16:20.0587 6092 [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:16:20.0588 6092 DfsC - ok
20:16:20.0617 6092 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:16:20.0621 6092 Dhcp - ok
20:16:20.0642 6092 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:16:20.0643 6092 discache - ok
20:16:20.0665 6092 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:16:20.0666 6092 Disk - ok
20:16:20.0692 6092 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:16:20.0695 6092 Dnscache - ok
20:16:20.0711 6092 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
20:16:20.0716 6092 dot3svc - ok
20:16:20.0730 6092 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
20:16:20.0733 6092 DPS - ok
20:16:20.0767 6092 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:16:20.0768 6092 drmkaud - ok
20:16:20.0811 6092 [ 651554E483712B708EDE864D0CA1AA73 ] DrvAgent32 C:\Windows\system32\Drivers\DrvAgent32.sys
20:16:20.0812 6092 DrvAgent32 - ok
20:16:20.0851 6092 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
20:16:20.0854 6092 dtsoftbus01 - ok
20:16:20.0886 6092 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:16:20.0892 6092 DXGKrnl - ok
20:16:20.0907 6092 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:16:20.0910 6092 EapHost - ok
20:16:20.0999 6092 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:16:21.0014 6092 ebdrv - ok
20:16:21.0038 6092 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS C:\Windows\System32\lsass.exe
20:16:21.0040 6092 EFS - ok
20:16:21.0110 6092 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:16:21.0115 6092 ehRecvr - ok
20:16:21.0132 6092 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:16:21.0134 6092 ehSched - ok
20:16:21.0154 6092 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:16:21.0158 6092 elxstor - ok
20:16:21.0182 6092 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:16:21.0183 6092 ErrDev - ok
20:16:21.0232 6092 [ 3AF0AE042AFE486B22644CD3FBEBF2E2 ] etdrv C:\Windows\etdrv.sys
20:16:21.0233 6092 etdrv - ok
20:16:21.0261 6092 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:16:21.0266 6092 EventSystem - ok
20:16:21.0289 6092 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:16:21.0290 6092 exfat - ok
20:16:21.0303 6092 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:16:21.0305 6092 fastfat - ok
20:16:21.0341 6092 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
20:16:21.0347 6092 Fax - ok
20:16:21.0361 6092 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:16:21.0362 6092 fdc - ok
20:16:21.0383 6092 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:16:21.0386 6092 fdPHost - ok
20:16:21.0394 6092 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:16:21.0396 6092 FDResPub - ok
20:16:21.0405 6092 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:16:21.0406 6092 FileInfo - ok
20:16:21.0420 6092 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:16:21.0421 6092 Filetrace - ok
20:16:21.0425 6092 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:16:21.0426 6092 flpydisk - ok
20:16:21.0443 6092 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:16:21.0445 6092 FltMgr - ok
20:16:21.0482 6092 [ 3E0024DFD52E042A4F65D7C1F31FB792 ] FontCache C:\Windows\system32\FntCache.dll
20:16:21.0491 6092 FontCache - ok
20:16:21.0540 6092 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:16:21.0541 6092 FontCache3.0.0.0 - ok
20:16:21.0552 6092 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:16:21.0553 6092 FsDepends - ok
20:16:21.0578 6092 [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:16:21.0579 6092 Fs_Rec - ok
20:16:21.0602 6092 [ 4732E596BB1C50D9F9188C5074EE7782 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:16:21.0604 6092 fvevol - ok
20:16:21.0630 6092 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:16:21.0631 6092 gagp30kx - ok
20:16:21.0669 6092 [ D556CB79967E92B5CC69686D16C1D846 ] gdrv C:\Windows\gdrv.sys
20:16:21.0670 6092 gdrv - ok
20:16:21.0696 6092 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
20:16:21.0706 6092 gpsvc - ok
20:16:21.0747 6092 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:16:21.0750 6092 gupdate - ok
20:16:21.0755 6092 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:16:21.0756 6092 gupdatem - ok
20:16:21.0794 6092 [ 689A8EEF2A2D62B28A0A578A6196531C ] GVTDrv C:\Windows\system32\Drivers\GVTDrv.sys
20:16:21.0795 6092 GVTDrv - ok
20:16:21.0834 6092 [ 833051C6C6C42117191935F734CFBD97 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
20:16:21.0835 6092 hamachi - ok
20:16:21.0913 6092 [ 6D12BDA1715C38BE1746B195B1E4337E ] Hamachi2Svc C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
20:16:21.0925 6092 Hamachi2Svc - ok
20:16:21.0943 6092 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:16:21.0943 6092 hcw85cir - ok
20:16:21.0983 6092 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:16:21.0985 6092 HdAudAddService - ok
20:16:22.0011 6092 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:16:22.0012 6092 HDAudBus - ok
20:16:22.0024 6092 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:16:22.0025 6092 HidBatt - ok
20:16:22.0037 6092 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:16:22.0038 6092 HidBth - ok
20:16:22.0050 6092 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:16:22.0050 6092 HidIr - ok
20:16:22.0076 6092 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:16:22.0078 6092 hidserv - ok
20:16:22.0110 6092 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:16:22.0111 6092 HidUsb - ok
20:16:22.0131 6092 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:16:22.0135 6092 hkmsvc - ok
20:16:22.0148 6092 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:16:22.0152 6092 HomeGroupListener - ok
20:16:22.0173 6092 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:16:22.0177 6092 HomeGroupProvider - ok
20:16:22.0197 6092 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:16:22.0198 6092 HpSAMD - ok
20:16:22.0227 6092 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:16:22.0231 6092 HTTP - ok
20:16:22.0237 6092 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:16:22.0237 6092 hwpolicy - ok
20:16:22.0259 6092 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:16:22.0260 6092 i8042prt - ok
20:16:22.0288 6092 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:16:22.0291 6092 iaStorV - ok
20:16:22.0331 6092 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:16:22.0333 6092 IDriverT - ok
20:16:22.0380 6092 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:16:22.0394 6092 idsvc - ok
20:16:22.0408 6092 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:16:22.0409 6092 iirsp - ok
20:16:22.0442 6092 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
20:16:22.0449 6092 IKEEXT - ok
20:16:22.0534 6092 [ F179FEB1B15AAD94C6BF082C0356DF16 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
20:16:22.0561 6092 IntcAzAudAddService - ok
20:16:22.0570 6092 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
20:16:22.0571 6092 intelide - ok
20:16:22.0584 6092 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:16:22.0585 6092 intelppm - ok
20:16:22.0595 6092 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:16:22.0599 6092 IPBusEnum - ok
20:16:22.0616 6092 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:16:22.0617 6092 IpFilterDriver - ok
20:16:22.0646 6092 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:16:22.0655 6092 iphlpsvc - ok
20:16:22.0684 6092 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:16:22.0685 6092 IPMIDRV - ok
20:16:22.0701 6092 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:16:22.0703 6092 IPNAT - ok
20:16:22.0720 6092 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:16:22.0721 6092 IRENUM - ok
20:16:22.0749 6092 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:16:22.0750 6092 isapnp - ok
20:16:22.0778 6092 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:16:22.0781 6092 iScsiPrt - ok
20:16:22.0808 6092 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:16:22.0809 6092 kbdclass - ok
20:16:22.0843 6092 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:16:22.0844 6092 kbdhid - ok
20:16:22.0863 6092 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso C:\Windows\system32\lsass.exe
20:16:22.0867 6092 KeyIso - ok
20:16:22.0891 6092 [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:16:22.0893 6092 KSecDD - ok
20:16:22.0904 6092 [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:16:22.0906 6092 KSecPkg - ok
20:16:22.0932 6092 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:16:22.0940 6092 KtmRm - ok
20:16:22.0974 6092 [ 25046613DFA30A7361996F15901CA0DE ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
20:16:22.0975 6092 L1C - ok
20:16:23.0003 6092 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\Windows\system32\srvsvc.dll
20:16:23.0010 6092 LanmanServer - ok
20:16:23.0031 6092 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:16:23.0037 6092 LanmanWorkstation - ok
20:16:23.0070 6092 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:16:23.0071 6092 lltdio - ok
20:16:23.0095 6092 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:16:23.0099 6092 lltdsvc - ok
20:16:23.0115 6092 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:16:23.0117 6092 lmhosts - ok
20:16:23.0160 6092 [ 0803906D607A9B83184447B75B60ECC2 ] LMS C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
20:16:23.0163 6092 LMS - ok
20:16:23.0180 6092 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:16:23.0181 6092 LSI_FC - ok
20:16:23.0192 6092 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:16:23.0194 6092 LSI_SAS - ok
20:16:23.0211 6092 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:16:23.0212 6092 LSI_SAS2 - ok
20:16:23.0232 6092 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:16:23.0234 6092 LSI_SCSI - ok
20:16:23.0246 6092 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:16:23.0247 6092 luafv - ok
20:16:23.0280 6092 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:16:23.0281 6092 MBAMProtector - ok
20:16:23.0381 6092 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:16:23.0384 6092 MBAMScheduler - ok
20:16:23.0419 6092 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:16:23.0425 6092 MBAMService - ok
20:16:23.0454 6092 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:16:23.0458 6092 Mcx2Svc - ok
20:16:23.0477 6092 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:16:23.0478 6092 megasas - ok
20:16:23.0492 6092 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:16:23.0495 6092 MegaSR - ok
20:16:23.0521 6092 [ CFCB18986426A2D8E66F1992636221D0 ] MEI C:\Windows\system32\DRIVERS\HECI.sys
20:16:23.0522 6092 MEI - ok
20:16:23.0533 6092 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:16:23.0537 6092 MMCSS - ok
20:16:23.0548 6092 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:16:23.0549 6092 Modem - ok
20:16:23.0634 6092 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:16:23.0635 6092 monitor - ok
20:16:23.0703 6092 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:16:23.0704 6092 mouclass - ok
20:16:23.0736 6092 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:16:23.0737 6092 mouhid - ok
20:16:23.0766 6092 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:16:23.0768 6092 mountmgr - ok
20:16:23.0812 6092 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:16:23.0813 6092 MozillaMaintenance - ok
20:16:23.0831 6092 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\drivers\mpio.sys
20:16:23.0833 6092 mpio - ok
20:16:23.0848 6092 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:16:23.0850 6092 mpsdrv - ok
20:16:23.0888 6092 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\Windows\system32\mpssvc.dll
20:16:23.0896 6092 MpsSvc - ok
20:16:23.0907 6092 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:16:23.0909 6092 MRxDAV - ok
20:16:23.0936 6092 [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:16:23.0938 6092 mrxsmb - ok
20:16:23.0970 6092 [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:16:23.0972 6092 mrxsmb10 - ok
20:16:23.0996 6092 [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:16:23.0998 6092 mrxsmb20 - ok
20:16:24.0015 6092 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\drivers\msahci.sys
20:16:24.0016 6092 msahci - ok
20:16:24.0038 6092 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:16:24.0040 6092 msdsm - ok
20:16:24.0055 6092 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:16:24.0060 6092 MSDTC - ok
20:16:24.0075 6092 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:16:24.0075 6092 Msfs - ok
20:16:24.0080 6092 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:16:24.0081 6092 mshidkmdf - ok
20:16:24.0107 6092 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:16:24.0107 6092 msisadrv - ok
20:16:24.0123 6092 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:16:24.0128 6092 MSiSCSI - ok
20:16:24.0132 6092 msiserver - ok
20:16:24.0157 6092 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:16:24.0158 6092 MSKSSRV - ok
20:16:24.0177 6092 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:16:24.0178 6092 MSPCLOCK - ok
20:16:24.0189 6092 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:16:24.0189 6092 MSPQM - ok
20:16:24.0203 6092 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:16:24.0205 6092 MsRPC - ok
20:16:24.0234 6092 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:16:24.0235 6092 mssmbios - ok
20:16:24.0247 6092 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:16:24.0248 6092 MSTEE - ok
20:16:24.0264 6092 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:16:24.0265 6092 MTConfig - ok
20:16:24.0277 6092 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:16:24.0278 6092 Mup - ok
20:16:24.0304 6092 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
20:16:24.0311 6092 napagent - ok
20:16:24.0346 6092 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:16:24.0348 6092 NativeWifiP - ok
20:16:24.0423 6092 [ 6D8FCDD5BB3B676EF58FA234073492C6 ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
20:16:24.0429 6092 NBService - ok
20:16:24.0456 6092 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:16:24.0462 6092 NDIS - ok
20:16:24.0470 6092 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:16:24.0471 6092 NdisCap - ok
20:16:24.0494 6092 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:16:24.0494 6092 NdisTapi - ok
20:16:24.0517 6092 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:16:24.0518 6092 Ndisuio - ok
20:16:24.0526 6092 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:16:24.0527 6092 NdisWan - ok
20:16:24.0539 6092 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:16:24.0540 6092 NDProxy - ok
20:16:24.0546 6092 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:16:24.0547 6092 NetBIOS - ok
20:16:24.0560 6092 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:16:24.0562 6092 NetBT - ok
20:16:24.0580 6092 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon C:\Windows\system32\lsass.exe
20:16:24.0582 6092 Netlogon - ok
20:16:24.0605 6092 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:16:24.0611 6092 Netman - ok
20:16:24.0648 6092 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:16:24.0666 6092 NetMsmqActivator - ok
20:16:24.0681 6092 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:16:24.0683 6092 NetPipeActivator - ok
20:16:24.0699 6092 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:16:24.0705 6092 netprofm - ok
20:16:24.0718 6092 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:16:24.0719 6092 NetTcpActivator - ok
20:16:24.0723 6092 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:16:24.0724 6092 NetTcpPortSharing - ok
20:16:24.0746 6092 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:16:24.0747 6092 nfrd960 - ok
20:16:24.0760 6092 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
20:16:24.0764 6092 NlaSvc - ok
20:16:24.0817 6092 [ E32686B4E27D11F83E3F2844E104C66C ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
20:16:24.0820 6092 NMIndexingService - ok
20:16:24.0828 6092 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:16:24.0829 6092 Npfs - ok
20:16:24.0836 6092 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:16:24.0841 6092 nsi - ok
20:16:24.0847 6092 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:16:24.0848 6092 nsiproxy - ok
20:16:24.0893 6092 [ A458A5F7FD79C477D40ED42CF5A230CB ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:16:24.0902 6092 Ntfs - ok
20:16:24.0913 6092 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:16:24.0914 6092 Null - ok
20:16:24.0946 6092 [ 93C0F383B39B1F5FE7203E3270D4CF52 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
20:16:24.0948 6092 NVHDA - ok
20:16:25.0151 6092 [ B69E6F70CE1151C8D62ABC9DEF64DFBE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:16:25.0198 6092 nvlddmkm - ok
20:16:25.0245 6092 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:16:25.0246 6092 nvraid - ok
20:16:25.0279 6092 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:16:25.0281 6092 nvstor - ok
20:16:25.0320 6092 [ E4284FCF99FEA13A7E1836F87AE356F6 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:16:25.0329 6092 nvsvc - ok
20:16:25.0409 6092 [ 03E60E0BFA53ED15DC984FA34B44BB0F ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:16:25.0419 6092 nvUpdatusService - ok
20:16:25.0444 6092 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:16:25.0446 6092 nv_agp - ok
20:16:25.0472 6092 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:16:25.0473 6092 ohci1394 - ok
20:16:25.0504 6092 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:16:25.0510 6092 p2pimsvc - ok
20:16:25.0522 6092 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:16:25.0529 6092 p2psvc - ok
20:16:25.0555 6092 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:16:25.0556 6092 Parport - ok
20:16:25.0583 6092 [ 66D3415C159741ADE7038A277EFFF99F ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:16:25.0583 6092 partmgr - ok
20:16:25.0598 6092 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:16:25.0598 6092 Parvdm - ok
20:16:25.0617 6092 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:16:25.0622 6092 PcaSvc - ok
20:16:25.0644 6092 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\drivers\pci.sys
20:16:25.0646 6092 pci - ok
20:16:25.0660 6092 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
20:16:25.0661 6092 pciide - ok
20:16:25.0678 6092 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:16:25.0680 6092 pcmcia - ok
20:16:25.0694 6092 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:16:25.0695 6092 pcw - ok
20:16:25.0717 6092 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:16:25.0723 6092 PEAUTH - ok
20:16:25.0754 6092 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:16:25.0766 6092 PeerDistSvc - ok
20:16:25.0806 6092 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
20:16:25.0841 6092 pla - ok
20:16:25.0877 6092 [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:16:25.0885 6092 PlugPlay - ok
20:16:25.0922 6092 [ 3A2E85F7D90D15460C337CE80C2E3B29 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
20:16:25.0927 6092 PnkBstrA - ok
20:16:25.0943 6092 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:16:25.0948 6092 PNRPAutoReg - ok
20:16:25.0970 6092 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:16:25.0977 6092 PNRPsvc - ok
20:16:25.0999 6092 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:16:26.0006 6092 PolicyAgent - ok
20:16:26.0027 6092 [ DBFF83F709A91049621C1D35DD45C92C ] Power

[Voldacz]

(2)

C:\Windows\system32\umpo.dll
20:16:26.0034 6092 Power - ok
20:16:26.0067 6092 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:16:26.0069 6092 PptpMiniport - ok
20:16:26.0084 6092 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:16:26.0085 6092 Processor - ok
20:16:26.0116 6092 [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc C:\Windows\system32\profsvc.dll
20:16:26.0122 6092 ProfSvc - ok
20:16:26.0130 6092 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:16:26.0133 6092 ProtectedStorage - ok
20:16:26.0147 6092 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:16:26.0148 6092 Psched - ok
20:16:26.0181 6092 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:16:26.0192 6092 ql2300 - ok
20:16:26.0208 6092 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:16:26.0209 6092 ql40xx - ok
20:16:26.0239 6092 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:16:26.0247 6092 QWAVE - ok
20:16:26.0259 6092 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:16:26.0260 6092 QWAVEdrv - ok
20:16:26.0269 6092 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:16:26.0270 6092 RasAcd - ok
20:16:26.0295 6092 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:16:26.0296 6092 RasAgileVpn - ok
20:16:26.0308 6092 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:16:26.0314 6092 RasAuto - ok
20:16:26.0327 6092 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:16:26.0328 6092 Rasl2tp - ok
20:16:26.0349 6092 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
20:16:26.0358 6092 RasMan - ok
20:16:26.0372 6092 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:16:26.0373 6092 RasPppoe - ok
20:16:26.0378 6092 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:16:26.0379 6092 RasSstp - ok
20:16:26.0392 6092 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:16:26.0395 6092 rdbss - ok
20:16:26.0409 6092 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:16:26.0411 6092 rdpbus - ok
20:16:26.0421 6092 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:16:26.0422 6092 RDPCDD - ok
20:16:26.0437 6092 [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:16:26.0439 6092 RDPDR - ok
20:16:26.0447 6092 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:16:26.0449 6092 RDPENCDD - ok
20:16:26.0467 6092 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:16:26.0468 6092 RDPREFMP - ok
20:16:26.0499 6092 [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:16:26.0501 6092 RDPWD - ok
20:16:26.0512 6092 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:16:26.0514 6092 rdyboost - ok
20:16:26.0535 6092 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:16:26.0540 6092 RemoteAccess - ok
20:16:26.0572 6092 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:16:26.0578 6092 RemoteRegistry - ok
20:16:26.0599 6092 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:16:26.0605 6092 RpcEptMapper - ok
20:16:26.0622 6092 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:16:26.0625 6092 RpcLocator - ok
20:16:26.0647 6092 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
20:16:26.0655 6092 RpcSs - ok
20:16:26.0664 6092 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:16:26.0666 6092 rspndr - ok
20:16:26.0689 6092 [ 5423D8437051E89DD34749F242C98648 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:16:26.0690 6092 s3cap - ok
20:16:26.0696 6092 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs C:\Windows\system32\lsass.exe
20:16:26.0700 6092 SamSs - ok
20:16:26.0734 6092 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:16:26.0736 6092 sbp2port - ok
20:16:26.0767 6092 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:16:26.0774 6092 SCardSvr - ok
20:16:26.0847 6092 [ 8475E746EB72D04F1015E6F091F50E09 ] SCBackService C:\Program Files\Splashtop\Splashtop Connect\BackService.exe
20:16:26.0851 6092 SCBackService - ok
20:16:26.0858 6092 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:16:26.0859 6092 scfilter - ok
20:16:26.0899 6092 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\Windows\system32\schedsvc.dll
20:16:26.0925 6092 Schedule - ok
20:16:26.0953 6092 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:16:26.0955 6092 SCPolicySvc - ok
20:16:26.0960 6092 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:16:26.0967 6092 SDRSVC - ok
20:16:26.0996 6092 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:16:26.0997 6092 secdrv - ok
20:16:27.0007 6092 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:16:27.0012 6092 seclogon - ok
20:16:27.0027 6092 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:16:27.0032 6092 SENS - ok
20:16:27.0044 6092 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:16:27.0051 6092 SensrSvc - ok
20:16:27.0076 6092 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:16:27.0077 6092 Serenum - ok
20:16:27.0091 6092 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:16:27.0092 6092 Serial - ok
20:16:27.0127 6092 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:16:27.0128 6092 sermouse - ok
20:16:27.0143 6092 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
20:16:27.0147 6092 SessionEnv - ok
20:16:27.0168 6092 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:16:27.0169 6092 sffdisk - ok
20:16:27.0182 6092 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:16:27.0182 6092 sffp_mmc - ok
20:16:27.0196 6092 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:16:27.0196 6092 sffp_sd - ok
20:16:27.0208 6092 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:16:27.0208 6092 sfloppy - ok
20:16:27.0235 6092 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:16:27.0240 6092 SharedAccess - ok
20:16:27.0265 6092 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:16:27.0270 6092 ShellHWDetection - ok
20:16:27.0295 6092 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:16:27.0296 6092 sisagp - ok
20:16:27.0317 6092 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:16:27.0317 6092 SiSRaid2 - ok
20:16:27.0334 6092 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:16:27.0335 6092 SiSRaid4 - ok
20:16:27.0373 6092 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:16:27.0375 6092 SkypeUpdate - ok
20:16:27.0399 6092 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:16:27.0401 6092 Smb - ok
20:16:27.0425 6092 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:16:27.0430 6092 SNMPTRAP - ok
20:16:27.0447 6092 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:16:27.0449 6092 spldr - ok
20:16:27.0481 6092 [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler C:\Windows\System32\spoolsv.exe
20:16:27.0490 6092 Spooler - ok
20:16:27.0556 6092 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
20:16:27.0625 6092 sppsvc - ok
20:16:27.0639 6092 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:16:27.0643 6092 sppuinotify - ok
20:16:27.0673 6092 [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:16:27.0675 6092 srv - ok
20:16:27.0705 6092 [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:16:27.0707 6092 srv2 - ok
20:16:27.0731 6092 [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:16:27.0732 6092 srvnet - ok
20:16:27.0744 6092 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:16:27.0749 6092 SSDPSRV - ok
20:16:27.0758 6092 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:16:27.0762 6092 SstpSvc - ok
20:16:27.0793 6092 Steam Client Service - ok
20:16:27.0859 6092 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:16:27.0863 6092 Stereo Service - ok
20:16:27.0891 6092 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:16:27.0892 6092 stexstor - ok
20:16:27.0924 6092 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
20:16:27.0932 6092 StiSvc - ok
20:16:27.0957 6092 [ 957E346CA948668F2496A6CCF6FF82CC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:16:27.0959 6092 storflt - ok
20:16:27.0991 6092 [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:16:27.0992 6092 storvsc - ok
20:16:28.0013 6092 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
20:16:28.0014 6092 swenum - ok
20:16:28.0039 6092 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:16:28.0048 6092 swprv - ok
20:16:28.0078 6092 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
20:16:28.0091 6092 SysMain - ok
20:16:28.0105 6092 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:16:28.0110 6092 TabletInputService - ok
20:16:28.0150 6092 [ B7AEE68D2E867CBF69B649B18FCEDBBB ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
20:16:28.0151 6092 tap0901t - ok
20:16:28.0165 6092 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
20:16:28.0173 6092 TapiSrv - ok
20:16:28.0185 6092 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:16:28.0190 6092 TBS - ok
20:16:28.0230 6092 [ BBCEAEFF1FD72A026F827CBB2F4AA8AD ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:16:28.0239 6092 Tcpip - ok
20:16:28.0272 6092 [ BBCEAEFF1FD72A026F827CBB2F4AA8AD ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:16:28.0281 6092 TCPIP6 - ok
20:16:28.0302 6092 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:16:28.0303 6092 tcpipreg - ok
20:16:28.0313 6092 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:16:28.0314 6092 TDPIPE - ok
20:16:28.0338 6092 [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:16:28.0339 6092 TDTCP - ok
20:16:28.0350 6092 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:16:28.0352 6092 tdx - ok
20:16:28.0428 6092 [ 84E77606305186233C57CA8008B2411B ] TeamViewer6 C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
20:16:28.0470 6092 TeamViewer6 - ok
20:16:28.0478 6092 [ 9101FFFCFCCD1A30E870A5B8A9091B10 ] teamviewervpn C:\Windows\system32\DRIVERS\teamviewervpn.sys
20:16:28.0480 6092 teamviewervpn - ok
20:16:28.0490 6092 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:16:28.0491 6092 TermDD - ok
20:16:28.0517 6092 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
20:16:28.0526 6092 TermService - ok
20:16:28.0537 6092 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:16:28.0542 6092 Themes - ok
20:16:28.0550 6092 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:16:28.0553 6092 THREADORDER - ok
20:16:28.0570 6092 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:16:28.0576 6092 TrkWks - ok
20:16:28.0619 6092 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:16:28.0622 6092 TrustedInstaller - ok
20:16:28.0649 6092 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:16:28.0650 6092 tssecsrv - ok
20:16:28.0679 6092 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:16:28.0681 6092 tunnel - ok
20:16:28.0755 6092 [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService C:\Program Files\Tunngle\TnglCtrl.exe
20:16:28.0762 6092 TunngleService - ok
20:16:28.0772 6092 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:16:28.0773 6092 uagp35 - ok
20:16:28.0791 6092 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:16:28.0793 6092 udfs - ok
20:16:28.0820 6092 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:16:28.0826 6092 UI0Detect - ok
20:16:28.0855 6092 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:16:28.0856 6092 uliagpkx - ok
20:16:28.0892 6092 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\drivers\umbus.sys
20:16:28.0893 6092 umbus - ok
20:16:28.0905 6092 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:16:28.0906 6092 UmPass - ok
20:16:28.0937 6092 [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService C:\Windows\System32\umrdp.dll
20:16:28.0944 6092 UmRdpService - ok
20:16:29.0034 6092 [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
20:16:29.0048 6092 UNS - ok
20:16:29.0067 6092 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:16:29.0072 6092 upnphost - ok
20:16:29.0097 6092 [ C31AE588E403042632DC796CF09E30B0 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:16:29.0098 6092 usbccgp - ok
20:16:29.0121 6092 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:16:29.0122 6092 usbcir - ok
20:16:29.0150 6092 [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:16:29.0151 6092 usbehci - ok
20:16:29.0183 6092 [ BDCD7156EC37448F08633FD899823620 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:16:29.0186 6092 usbhub - ok
20:16:29.0216 6092 [ EB2D819A639015253C871CDA09D91D58 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:16:29.0217 6092 usbohci - ok
20:16:29.0239 6092 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:16:29.0240 6092 usbprint - ok
20:16:29.0270 6092 [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
20:16:29.0272 6092 USBSTOR - ok
20:16:29.0295 6092 [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:16:29.0296 6092 usbuhci - ok
20:16:29.0307 6092 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:16:29.0313 6092 UxSms - ok
20:16:29.0321 6092 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc C:\Windows\system32\lsass.exe
20:16:29.0324 6092 VaultSvc - ok
20:16:29.0360 6092 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:16:29.0362 6092 vdrvroot - ok
20:16:29.0386 6092 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
20:16:29.0395 6092 vds - ok
20:16:29.0407 6092 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:16:29.0408 6092 vga - ok
20:16:29.0423 6092 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:16:29.0424 6092 VgaSave - ok
20:16:29.0452 6092 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:16:29.0455 6092 vhdmp - ok
20:16:29.0490 6092 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:16:29.0492 6092 viaagp - ok
20:16:29.0506 6092 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:16:29.0507 6092 ViaC7 - ok
20:16:29.0534 6092 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
20:16:29.0535 6092 viaide - ok
20:16:29.0571 6092 [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:16:29.0573 6092 vmbus - ok
20:16:29.0599 6092 [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:16:29.0600 6092 VMBusHID - ok
20:16:29.0619 6092 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:16:29.0621 6092 volmgr - ok
20:16:29.0638 6092 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:16:29.0641 6092 volmgrx - ok
20:16:29.0658 6092 [ 59F06B4968E58BC83DFC56CA4517960E ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:16:29.0660 6092 volsnap - ok
20:16:29.0681 6092 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:16:29.0683 6092 vsmraid - ok
20:16:29.0724 6092 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
20:16:29.0733 6092 VSS - ok
20:16:29.0741 6092 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:16:29.0742 6092 vwifibus - ok
20:16:29.0770 6092 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:16:29.0775 6092 W32Time - ok
20:16:29.0794 6092 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:16:29.0795 6092 WacomPen - ok
20:16:29.0816 6092 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:16:29.0817 6092 WANARP - ok
20:16:29.0820 6092 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:16:29.0821 6092 Wanarpv6 - ok
20:16:29.0872 6092 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:16:29.0879 6092 WatAdminSvc - ok
20:16:29.0910 6092 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
20:16:29.0920 6092 wbengine - ok
20:16:29.0928 6092 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:16:29.0933 6092 WbioSrvc - ok
20:16:29.0953 6092 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:16:29.0958 6092 wcncsvc - ok
20:16:29.0971 6092 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:16:29.0976 6092 WcsPlugInService - ok
20:16:30.0006 6092 [ E47E66538692B1CFD6CC8021546FCC83 ] WCUService_STC_FF C:\Program Files\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
20:16:30.0008 6092 WCUService_STC_FF - ok
20:16:30.0020 6092 [ 147C60622CB53E901EFD8BB6D44A4C46 ] WCUService_STC_IE C:\Program Files\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
20:16:30.0023 6092 WCUService_STC_IE - ok
20:16:30.0036 6092 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:16:30.0037 6092 Wd - ok
20:16:30.0064 6092 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:16:30.0068 6092 Wdf01000 - ok
20:16:30.0075 6092 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:16:30.0080 6092 WdiServiceHost - ok
20:16:30.0082 6092 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:16:30.0087 6092 WdiSystemHost - ok
20:16:30.0113 6092 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\Windows\System32\webclnt.dll
20:16:30.0118 6092 WebClient - ok
20:16:30.0133 6092 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:16:30.0138 6092 Wecsvc - ok
20:16:30.0151 6092 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:16:30.0155 6092 wercplsupport - ok
20:16:30.0169 6092 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:16:30.0173 6092 WerSvc - ok
20:16:30.0192 6092 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:16:30.0193 6092 WfpLwf - ok
20:16:30.0199 6092 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:16:30.0200 6092 WIMMount - ok
20:16:30.0256 6092 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:16:30.0262 6092 WinDefend - ok
20:16:30.0276 6092 WinHttpAutoProxySvc - ok
20:16:30.0330 6092 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:16:30.0332 6092 Winmgmt - ok
20:16:30.0372 6092 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
20:16:30.0388 6092 WinRM - ok
20:16:30.0432 6092 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:16:30.0458 6092 Wlansvc - ok
20:16:30.0536 6092 [ 5E7C103F8475C4289847D15E129C20F7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:16:30.0550 6092 wlidsvc - ok
20:16:30.0577 6092 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:16:30.0578 6092 WmiAcpi - ok
20:16:30.0603 6092 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:16:30.0605 6092 wmiApSrv - ok
20:16:30.0667 6092 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:16:30.0676 6092 WMPNetworkSvc - ok
20:16:30.0689 6092 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:16:30.0693 6092 WPCSvc - ok
20:16:30.0702 6092 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:16:30.0706 6092 WPDBusEnum - ok
20:16:30.0720 6092 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:16:30.0721 6092 ws2ifsl - ok
20:16:30.0751 6092 [ A661A76333057B383A06E65F0073222F ] wscsvc C:\Windows\System32\wscsvc.dll
20:16:30.0758 6092 wscsvc - ok
20:16:30.0762 6092 WSearch - ok
20:16:30.0827 6092 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
20:16:30.0844 6092 wuauserv - ok
20:16:30.0865 6092 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:16:30.0866 6092 WudfPf - ok
20:16:30.0886 6092 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:16:30.0888 6092 WUDFRd - ok
20:16:30.0928 6092 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:16:30.0935 6092 wudfsvc - ok
20:16:30.0951 6092 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:16:30.0960 6092 WwanSvc - ok
20:16:30.0971 6092 ================ Scan global ===============================
20:16:30.0988 6092 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
20:16:31.0018 6092 [ 8531AAF69394EFB93BC653916C46D245 ] C:\Windows\system32\winsrv.dll
20:16:31.0029 6092 [ 8531AAF69394EFB93BC653916C46D245 ] C:\Windows\system32\winsrv.dll
20:16:31.0066 6092 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:16:31.0083 6092 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:16:31.0087 6092 [Global] - ok
20:16:31.0088 6092 ================ Scan MBR ==================================
20:16:31.0107 6092 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:16:31.0423 6092 \Device\Harddisk0\DR0 - ok
20:16:31.0423 6092 ================ Scan VBR ==================================
20:16:31.0425 6092 [ AF6DCB5376305C9A536208E83D1A937C ] \Device\Harddisk0\DR0\Partition1
20:16:31.0426 6092 \Device\Harddisk0\DR0\Partition1 - ok
20:16:31.0435 6092 [ 6FFF6F4A1243684FE6FF3C676449C2B4 ] \Device\Harddisk0\DR0\Partition2
20:16:31.0436 6092 \Device\Harddisk0\DR0\Partition2 - ok
20:16:31.0452 6092 [ 3E8DCEFB0C93B027FBDFA525FBDC6C00 ] \Device\Harddisk0\DR0\Partition3
20:16:31.0453 6092 \Device\Harddisk0\DR0\Partition3 - ok
20:16:31.0454 6092 ============================================================
20:16:31.0454 6092 Scan finished
20:16:31.0454 6092 ============================================================
20:16:31.0459 5156 Detected object count: 0
20:16:31.0459 5156 Actual detected object count: 0
20:16:36.0290 4628 Deinitialize success

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.