pomaly ntb, nejde facebook, sekaji se videa,...

[Helllboy]

Dobrý večer,
mám podezření na nějakého červíka, který mi zpomaluje ntb. Pomalu startuje, všechno mu trvá, ventilátory hučí jako blázen, i když se nic neděje, nejede mi facebook, internet je celkově pomalý apod.
Z toho důvodu jsem přešel z eset smart security 6 (měl jsem docela problém se ho zbavit) + spybot search and destroy na avira free antivirus + spyware terminator 2012 + comodo firewall, nicméně žádný virus mi nikdo nenašel. Pravidelně PC čistím ccleanerem a občas i advanced systemcare.
Posílám log, kdyby se mi na to nějaká hodná duše podívala, byl bych moc vděčný.
Děkuji

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:29:18, on 16.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files\My Lockbox\mylbx.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\PROGRAM FILES (X86)\RALINK CORPORATION\RALINK BLUETOOTH STACK\BTTRAY.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\David\Downloads\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 9782 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Helllboy]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.09.16.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
David :: DAVID-NTB [administrátor]

16.9.2013 22:07:31
mbam-log-2013-09-16 (22-07-31).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 217623
Uplynulý čas: 9 minut, 42 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

# AdwCleaner v3.004 - Report created 16/09/2013 at 22:22:27
# Updated 15/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : David - DAVID-NTB
# Running from : C:\Users\David\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Google Chrome v29.0.1547.66

[ File : C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1083 octets] - [14/09/2013 13:52:41]
AdwCleaner[R1].txt - [1144 octets] - [14/09/2013 14:39:01]
AdwCleaner[R2].txt - [954 octets] - [14/09/2013 20:34:19]
AdwCleaner[R3].txt - [903 octets] - [16/09/2013 22:22:27]
AdwCleaner[S0].txt - [1211 octets] - [14/09/2013 14:40:46]

########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [1022 octets] ##########

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Helllboy]

# AdwCleaner v3.004 - Report created 17/09/2013 at 10:13:07
# Updated 15/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : David - DAVID-NTB
# Running from : C:\Users\David\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Google Chrome v29.0.1547.66

[ File : C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1083 octets] - [14/09/2013 13:52:41]
AdwCleaner[R1].txt - [1144 octets] - [14/09/2013 14:39:01]
AdwCleaner[R2].txt - [954 octets] - [14/09/2013 20:34:19]
AdwCleaner[R3].txt - [1102 octets] - [16/09/2013 22:22:27]
AdwCleaner[R4].txt - [1162 octets] - [17/09/2013 10:11:58]
AdwCleaner[S0].txt - [1211 octets] - [14/09/2013 14:40:46]
AdwCleaner[S1].txt - [1086 octets] - [17/09/2013 10:13:07]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1146 octets] ##########


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.1 (09.15.2013:1)
OS: Windows 7 Home Premium x64
Ran by David on Łt 17.09.2013 at 10:25:23,12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APNSetup1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APNSetup1_RASMANCS



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 17.09.2013 at 11:12:19,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



RogueKiller V8.6.11 _x64_ [Sep 11 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : David [Práva správce]
Mód : Kontrola -- Datum : 09/17/2013 11:21:19
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST750LM0 22 HN-M750MBB SATA Disk Device +++++
--- User ---
[MBR] 7f31d0ac6ecf140652a2ea5fccbf5ee6
[BSP] 6e8098f660bf7375a8ed88b909e4b57a : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 99900 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 204802048 | Size: 615402 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_09172013_112119.txt >>

[memphisto]

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.


Spyware Terminátora a Spybota odinstaluj. TO je soft k ničemu...

[Helllboy]

16:33:23.0458 1812 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:33:25.0461 1812 ============================================================
16:33:25.0461 1812 Current date / time: 2013/09/17 16:33:25.0461
16:33:25.0461 1812 SystemInfo:
16:33:25.0461 1812
16:33:25.0461 1812 OS Version: 6.1.7601 ServicePack: 1.0
16:33:25.0461 1812 Product type: Workstation
16:33:25.0461 1812 ComputerName: DAVID-NTB
16:33:25.0461 1812 UserName: David
16:33:25.0461 1812 Windows directory: C:\Windows
16:33:25.0461 1812 System windows directory: C:\Windows
16:33:25.0462 1812 Running under WOW64
16:33:25.0462 1812 Processor architecture: Intel x64
16:33:25.0462 1812 Number of processors: 2
16:33:25.0462 1812 Page size: 0x1000
16:33:25.0462 1812 Boot type: Normal boot
16:33:25.0462 1812 ============================================================
16:33:25.0977 1812 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:33:25.0984 1812 ============================================================
16:33:25.0984 1812 \Device\Harddisk0\DR0:
16:33:25.0984 1812 MBR partitions:
16:33:25.0984 1812 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:33:25.0984 1812 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000
16:33:25.0984 1812 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x4B1F5000
16:33:25.0984 1812 ============================================================
16:33:26.0018 1812 C: <-> \Device\Harddisk0\DR0\Partition2
16:33:26.0110 1812 D: <-> \Device\Harddisk0\DR0\Partition3
16:33:26.0111 1812 ============================================================
16:33:26.0111 1812 Initialize success
16:33:26.0111 1812 ============================================================
16:33:34.0061 0712 ============================================================
16:33:34.0062 0712 Scan started
16:33:34.0062 0712 Mode: Manual;
16:33:34.0062 0712 ============================================================
16:33:34.0405 0712 ================ Scan system memory ========================
16:33:34.0405 0712 System memory - ok
16:33:34.0405 0712 ================ Scan services =============================
16:33:34.0554 0712 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:33:34.0557 0712 1394ohci - ok
16:33:34.0599 0712 [ 955EB2514DBEB55D755D8CC4B32A6B55 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
16:33:34.0600 0712 Accelerometer - ok
16:33:34.0643 0712 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:33:34.0646 0712 ACPI - ok
16:33:34.0689 0712 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:33:34.0691 0712 AcpiPmi - ok
16:33:34.0761 0712 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:33:34.0763 0712 AdobeARMservice - ok
16:33:34.0804 0712 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:33:34.0808 0712 adp94xx - ok
16:33:34.0832 0712 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:33:34.0836 0712 adpahci - ok
16:33:34.0864 0712 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:33:34.0867 0712 adpu320 - ok
16:33:34.0948 0712 [ 9243229DFCCC99B5441750EBA49F1B14 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
16:33:34.0952 0712 AdvancedSystemCareService6 - ok
16:33:34.0982 0712 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:33:34.0985 0712 AeLookupSvc - ok
16:33:35.0012 0712 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:33:35.0016 0712 AFD - ok
16:33:35.0037 0712 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:33:35.0038 0712 agp440 - ok
16:33:35.0079 0712 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:33:35.0081 0712 ALG - ok
16:33:35.0106 0712 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:33:35.0107 0712 aliide - ok
16:33:35.0147 0712 [ C197E293D99A4D2D0FFCD30EF920C978 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:33:35.0149 0712 AMD External Events Utility - ok
16:33:35.0179 0712 [ AD8D779A1EE0F7F6B11EA4916CC92D65 ] amdhub30 C:\Windows\system32\DRIVERS\amdhub30.sys
16:33:35.0181 0712 amdhub30 - ok
16:33:35.0217 0712 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:33:35.0218 0712 amdide - ok
16:33:35.0247 0712 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:33:35.0248 0712 AmdK8 - ok
16:33:35.0437 0712 [ A2297EF87C0E10D953CD18CD45F36F03 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:33:35.0506 0712 amdkmdag - ok
16:33:35.0551 0712 [ F53BE6AD7F7D6D271F13EAC77BDA0B6F ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:33:35.0555 0712 amdkmdap - ok
16:33:35.0585 0712 [ 554FB0F28C411FB1EAFD4EA46A8CAAA4 ] amdkmpfd C:\Windows\system32\DRIVERS\amdkmpfd.sys
16:33:35.0587 0712 amdkmpfd - ok
16:33:35.0628 0712 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:33:35.0630 0712 AmdPPM - ok
16:33:35.0678 0712 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:33:35.0681 0712 amdsata - ok
16:33:35.0698 0712 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:33:35.0701 0712 amdsbs - ok
16:33:35.0716 0712 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:33:35.0718 0712 amdxata - ok
16:33:35.0746 0712 [ B9032F3857207F37029375374AC4BE4A ] amdxhc C:\Windows\system32\DRIVERS\amdxhc.sys
16:33:35.0749 0712 amdxhc - ok
16:33:35.0775 0712 [ 352476C98EF3952563A14F767491BBA9 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
16:33:35.0776 0712 amd_sata - ok
16:33:35.0792 0712 [ F4805C309FE48D6939147FE5CCDB1AD4 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
16:33:35.0793 0712 amd_xata - ok
16:33:35.0843 0712 [ 746497D339C854053193119D119799BA ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
16:33:35.0846 0712 AntiVirSchedulerService - ok
16:33:35.0872 0712 [ A2D4915D1CCD0338AB85F14D1C22FD0C ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
16:33:35.0874 0712 AntiVirService - ok
16:33:35.0906 0712 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:33:35.0908 0712 AppID - ok
16:33:35.0932 0712 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:33:35.0934 0712 AppIDSvc - ok
16:33:35.0962 0712 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
16:33:35.0964 0712 Appinfo - ok
16:33:35.0998 0712 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:33:35.0999 0712 arc - ok
16:33:36.0005 0712 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:33:36.0007 0712 arcsas - ok
16:33:36.0107 0712 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:33:36.0109 0712 aspnet_state - ok
16:33:36.0123 0712 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:33:36.0124 0712 AsyncMac - ok
16:33:36.0143 0712 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:33:36.0145 0712 atapi - ok
16:33:36.0177 0712 [ 24464B908E143D2561E9E452FEE97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:33:36.0178 0712 AtiHDAudioService - ok
16:33:36.0218 0712 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:33:36.0226 0712 AudioEndpointBuilder - ok
16:33:36.0236 0712 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:33:36.0242 0712 AudioSrv - ok
16:33:36.0262 0712 [ 0D5C96FD25D6455D97A5C4D7706DFAB1 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
16:33:36.0264 0712 avgntflt - ok
16:33:36.0293 0712 [ E26B3C8E9C3DDE047B32C5719955D715 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
16:33:36.0295 0712 avipbb - ok
16:33:36.0309 0712 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
16:33:36.0311 0712 avkmgr - ok
16:33:36.0337 0712 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:33:36.0340 0712 AxInstSV - ok
16:33:36.0379 0712 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:33:36.0383 0712 b06bdrv - ok
16:33:36.0405 0712 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:33:36.0408 0712 b57nd60a - ok
16:33:36.0439 0712 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:33:36.0442 0712 BDESVC - ok
16:33:36.0461 0712 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:33:36.0462 0712 Beep - ok
16:33:36.0503 0712 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:33:36.0511 0712 BFE - ok
16:33:36.0546 0712 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:33:36.0561 0712 BITS - ok
16:33:36.0571 0712 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:33:36.0573 0712 blbdrive - ok
16:33:36.0642 0712 [ 00EAE93627CCB2BC07795A3087916A5D ] BlueSoleilCS C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
16:33:36.0652 0712 BlueSoleilCS - ok
16:33:36.0677 0712 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:33:36.0678 0712 bowser - ok
16:33:36.0697 0712 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:33:36.0699 0712 BrFiltLo - ok
16:33:36.0718 0712 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:33:36.0719 0712 BrFiltUp - ok
16:33:36.0741 0712 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:33:36.0745 0712 Browser - ok
16:33:36.0764 0712 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:33:36.0768 0712 Brserid - ok
16:33:36.0785 0712 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:33:36.0787 0712 BrSerWdm - ok
16:33:36.0804 0712 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:33:36.0805 0712 BrUsbMdm - ok
16:33:36.0820 0712 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:33:36.0822 0712 BrUsbSer - ok
16:33:36.0851 0712 [ 3D8A3CC74E86F8D61D418D74A0194E5F ] BsHelpCS C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
16:33:36.0853 0712 BsHelpCS - ok
16:33:36.0882 0712 [ 34AAF6FD68B8403E76F0D08A8C1C1DA3 ] BtAudioBusSrv C:\Windows\system32\Drivers\BtAudioBus.sys
16:33:36.0883 0712 BtAudioBusSrv - ok
16:33:36.0918 0712 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
16:33:36.0919 0712 BthEnum - ok
16:33:36.0930 0712 [ 9C09D5F1257F1748A4EAB0E8584FAF61 ] BthL2caScoIfSrv C:\Windows\system32\Drivers\BtL2caScoIf.sys
16:33:36.0932 0712 BthL2caScoIfSrv - ok
16:33:36.0947 0712 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:33:36.0949 0712 BTHMODEM - ok
16:33:36.0979 0712 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
16:33:36.0981 0712 BthPan - ok
16:33:37.0003 0712 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
16:33:37.0007 0712 BTHPORT - ok
16:33:37.0037 0712 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:33:37.0039 0712 bthserv - ok
16:33:37.0059 0712 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
16:33:37.0061 0712 BTHUSB - ok
16:33:37.0093 0712 [ 84E24744627E1547B02699D1DAE4BF0E ] btUrbFilterDrv C:\Windows\system32\Drivers\IvtUrbBtFlt.sys
16:33:37.0095 0712 btUrbFilterDrv - ok
16:33:37.0118 0712 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:33:37.0119 0712 cdfs - ok
16:33:37.0147 0712 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
16:33:37.0150 0712 cdrom - ok
16:33:37.0187 0712 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:33:37.0190 0712 CertPropSvc - ok
16:33:37.0212 0712 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:33:37.0214 0712 circlass - ok
16:33:37.0239 0712 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:33:37.0243 0712 CLFS - ok
16:33:37.0301 0712 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:33:37.0323 0712 clr_optimization_v2.0.50727_32 - ok
16:33:37.0381 0712 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:33:37.0389 0712 clr_optimization_v2.0.50727_64 - ok
16:33:37.0438 0712 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:33:37.0440 0712 clr_optimization_v4.0.30319_32 - ok
16:33:37.0460 0712 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:33:37.0462 0712 clr_optimization_v4.0.30319_64 - ok
16:33:37.0494 0712 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:33:37.0496 0712 CmBatt - ok
16:33:37.0682 0712 [ D996E50B7CE4B9740697A21F9B25409C ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
16:33:37.0721 0712 cmdAgent - ok
16:33:37.0767 0712 [ 61B161931BE763DE43FF9E61E7F2B553 ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
16:33:37.0768 0712 cmderd - ok
16:33:37.0808 0712 [ DE55A7F8A567924997EE76C3D886ED48 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
16:33:37.0813 0712 cmdGuard - ok
16:33:37.0845 0712 [ 019C060753B4CB99BACF06569F03FF7F ] cmdHlp C:\Windows\system32\DRIVERS\cmdhlp.sys
16:33:37.0847 0712 cmdHlp - ok
16:33:37.0869 0712 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:33:37.0870 0712 cmdide - ok
16:33:37.0900 0712 [ BB2B324DAD05112164F86D85CC4B8880 ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
16:33:37.0902 0712 cmdvirth - ok
16:33:37.0934 0712 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
16:33:37.0938 0712 CNG - ok
16:33:37.0972 0712 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:33:37.0973 0712 Compbatt - ok
16:33:37.0994 0712 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:33:37.0995 0712 CompositeBus - ok
16:33:38.0001 0712 COMSysApp - ok
16:33:38.0027 0712 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:33:38.0029 0712 crcdisk - ok
16:33:38.0062 0712 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:33:38.0066 0712 CryptSvc - ok
16:33:38.0104 0712 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:33:38.0116 0712 DcomLaunch - ok
16:33:38.0153 0712 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:33:38.0158 0712 defragsvc - ok
16:33:38.0183 0712 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:33:38.0185 0712 DfsC - ok
16:33:38.0216 0712 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:33:38.0222 0712 Dhcp - ok
16:33:38.0250 0712 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:33:38.0252 0712 discache - ok
16:33:38.0261 0712 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:33:38.0263 0712 Disk - ok
16:33:38.0288 0712 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:33:38.0293 0712 Dnscache - ok
16:33:38.0317 0712 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:33:38.0322 0712 dot3svc - ok
16:33:38.0346 0712 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:33:38.0353 0712 DPS - ok
16:33:38.0374 0712 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:33:38.0376 0712 drmkaud - ok
16:33:38.0409 0712 [ 1A986E433B8EB2375F55961D993746B3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:33:38.0418 0712 DXGKrnl - ok
16:33:38.0450 0712 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:33:38.0455 0712 EapHost - ok
16:33:38.0551 0712 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:33:38.0571 0712 ebdrv - ok
16:33:38.0611 0712 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:33:38.0616 0712 EFS - ok
16:33:38.0645 0712 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:33:38.0650 0712 elxstor - ok
16:33:38.0682 0712 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:33:38.0683 0712 ErrDev - ok
16:33:38.0733 0712 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:33:38.0738 0712 EventSystem - ok
16:33:38.0772 0712 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:33:38.0775 0712 exfat - ok
16:33:38.0787 0712 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:33:38.0789 0712 fastfat - ok
16:33:38.0824 0712 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:33:38.0835 0712 Fax - ok
16:33:38.0846 0712 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:33:38.0848 0712 fdc - ok
16:33:38.0882 0712 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:33:38.0886 0712 fdPHost - ok
16:33:38.0895 0712 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:33:38.0901 0712 FDResPub - ok
16:33:38.0922 0712 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:33:38.0923 0712 FileInfo - ok
16:33:38.0942 0712 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:33:38.0943 0712 Filetrace - ok
16:33:38.0961 0712 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:33:38.0962 0712 flpydisk - ok
16:33:38.0999 0712 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:33:39.0002 0712 FltMgr - ok
16:33:39.0044 0712 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
16:33:39.0059 0712 FontCache - ok
16:33:39.0099 0712 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:33:39.0100 0712 FontCache3.0.0.0 - ok
16:33:39.0120 0712 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:33:39.0121 0712 FsDepends - ok
16:33:39.0150 0712 [ 8197C85348A33BCCFE80DD6E2DB53903 ] FSProFilter C:\Windows\system32\Drivers\FSPFltd.sys
16:33:39.0151 0712 FSProFilter - ok
16:33:39.0176 0712 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:33:39.0177 0712 Fs_Rec - ok
16:33:39.0198 0712 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:33:39.0200 0712 fvevol - ok
16:33:39.0219 0712 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:33:39.0221 0712 gagp30kx - ok
16:33:39.0226 0712 GGSAFERDriver - ok
16:33:39.0273 0712 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:33:39.0284 0712 gpsvc - ok
16:33:39.0330 0712 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:39.0332 0712 gupdate - ok
16:33:39.0339 0712 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:39.0341 0712 gupdatem - ok
16:33:39.0357 0712 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:33:39.0358 0712 hcw85cir - ok
16:33:39.0393 0712 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:33:39.0397 0712 HdAudAddService - ok
16:33:39.0421 0712 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:33:39.0423 0712 HDAudBus - ok
16:33:39.0448 0712 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:33:39.0450 0712 HidBatt - ok
16:33:39.0466 0712 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:33:39.0468 0712 HidBth - ok
16:33:39.0488 0712 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:33:39.0489 0712 HidIr - ok
16:33:39.0512 0712 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:33:39.0518 0712 hidserv - ok
16:33:39.0536 0712 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:33:39.0537 0712 HidUsb - ok
16:33:39.0565 0712 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:33:39.0571 0712 hkmsvc - ok
16:33:39.0609 0712 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:33:39.0616 0712 HomeGroupListener - ok
16:33:39.0648 0712 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:33:39.0655 0712 HomeGroupProvider - ok
16:33:39.0733 0712 [ 44AD1D87919994161131D5FB16C5B551 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
16:33:39.0735 0712 HP Power Assistant Service - ok
16:33:39.0803 0712 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
16:33:39.0804 0712 HP Support Assistant Service - ok
16:33:39.0872 0712 [ 6F36B2B1A5286044EF8EEEDBDAB2BDD2 ] hpCMSrv C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
16:33:39.0882 0712 hpCMSrv - ok
16:33:39.0913 0712 [ 6D12992650D5538D97E7C3751261ACB2 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
16:33:39.0914 0712 hpdskflt - ok
16:33:39.0949 0712 [ 3F26E373A2B7456764FBE7F449E0858B ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
16:33:39.0953 0712 hpHotkeyMonitor - ok
16:33:39.0987 0712 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
16:33:39.0988 0712 HpqKbFiltr - ok
16:33:40.0020 0712 [ 514455F6586473791C5C6B25BA4E1BAB ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
16:33:40.0027 0712 hpqwmiex - ok
16:33:40.0049 0712 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:33:40.0051 0712 HpSAMD - ok
16:33:40.0056 0712 [ CA5BAD272333EA803A03C1FBB076B894 ] hpsrv C:\Windows\system32\Hpservice.exe
16:33:40.0060 0712 hpsrv - ok
16:33:40.0104 0712 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:33:40.0109 0712 HTTP - ok
16:33:40.0140 0712 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:33:40.0142 0712 hwpolicy - ok
16:33:40.0168 0712 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:33:40.0169 0712 i8042prt - ok
16:33:40.0193 0712 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:33:40.0198 0712 iaStorV - ok
16:33:40.0250 0712 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:33:40.0260 0712 idsvc - ok
16:33:40.0290 0712 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:33:40.0291 0712 iirsp - ok
16:33:40.0337 0712 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:33:40.0349 0712 IKEEXT - ok
16:33:40.0391 0712 [ 90E3AA0093BDD43C6EAD3985F039F1D8 ] inspect C:\Windows\system32\DRIVERS\inspect.sys
16:33:40.0392 0712 inspect - ok
16:33:40.0420 0712 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:33:40.0421 0712 intelide - ok
16:33:40.0437 0712 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:33:40.0439 0712 intelppm - ok
16:33:40.0473 0712 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:33:40.0478 0712 IPBusEnum - ok
16:33:40.0507 0712 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:33:40.0508 0712 IpFilterDriver - ok
16:33:40.0542 0712 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:33:40.0551 0712 iphlpsvc - ok
16:33:40.0590 0712 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:33:40.0592 0712 IPMIDRV - ok
16:33:40.0611 0712 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:33:40.0613 0712 IPNAT - ok
16:33:40.0647 0712 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:33:40.0649 0712 IRENUM - ok
16:33:40.0670 0712 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:33:40.0672 0712 isapnp - ok
16:33:40.0698 0712 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:33:40.0701 0712 iScsiPrt - ok
16:33:40.0728 0712 [ 3FE43C2F5B5C08657A1B547AFBE2118E ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
16:33:40.0731 0712 JMCR - ok
16:33:40.0754 0712 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
16:33:40.0756 0712 kbdclass - ok
16:33:40.0769 0712 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
16:33:40.0771 0712 kbdhid - ok
16:33:40.0786 0712 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:33:40.0790 0712 KeyIso - ok
16:33:40.0815 0712 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:33:40.0817 0712 KSecDD - ok
16:33:40.0853 0712 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:33:40.0856 0712 KSecPkg - ok
16:33:40.0888 0712 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:33:40.0889 0712 ksthunk - ok
16:33:40.0925 0712 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:33:40.0942 0712 KtmRm - ok
16:33:40.0979 0712 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:33:40.0989 0712 LanmanServer - ok
16:33:41.0023 0712 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:33:41.0033 0712 LanmanWorkstation - ok
16:33:41.0042 0712 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:33:41.0045 0712 lltdio - ok
16:33:41.0078 0712 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:33:41.0111 0712 lltdsvc - ok
16:33:41.0124 0712 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:33:41.0130 0712 lmhosts - ok
16:33:41.0157 0712 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:33:41.0159 0712 LSI_FC - ok
16:33:41.0165 0712 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:33:41.0168 0712 LSI_SAS - ok
16:33:41.0174 0712 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:33:41.0177 0712 LSI_SAS2 - ok
16:33:41.0185 0712 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:33:41.0187 0712 LSI_SCSI - ok
16:33:41.0211 0712 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:33:41.0213 0712 luafv - ok
16:33:41.0219 0712 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:33:41.0222 0712 megasas - ok
16:33:41.0240 0712 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:33:41.0243 0712 MegaSR - ok
16:33:41.0273 0712 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:33:41.0279 0712 MMCSS - ok
16:33:41.0303 0712 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:33:41.0305 0712 Modem - ok
16:33:41.0311 0712 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:33:41.0313 0712 monitor - ok
16:33:41.0338 0712 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:33:41.0340 0712 mouclass - ok
16:33:41.0361 0712 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:33:41.0363 0712 mouhid - ok
16:33:41.0388 0712 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:33:41.0390 0712 mountmgr - ok
16:33:41.0435 0712 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:33:41.0438 0712 mpio - ok
16:33:41.0462 0712 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:33:41.0464 0712 mpsdrv - ok
16:33:41.0498 0712 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:33:41.0511 0712 MpsSvc - ok
16:33:41.0543 0712 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:33:41.0545 0712 MRxDAV - ok
16:33:41.0569 0712 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:33:41.0571 0712 mrxsmb - ok
16:33:41.0591 0712 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:33:41.0594 0712 mrxsmb10 - ok
16:33:41.0615 0712 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:33:41.0617 0712 mrxsmb20 - ok
16:33:41.0649 0712 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:33:41.0650 0712 msahci - ok
16:33:41.0667 0712 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:33:41.0669 0712 msdsm - ok
16:33:41.0689 0712 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:33:41.0702 0712 MSDTC - ok
16:33:41.0744 0712 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:33:41.0745 0712 Msfs - ok
16:33:41.0768 0712 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:33:41.0769 0712 mshidkmdf - ok
16:33:41.0792 0712 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:33:41.0794 0712 msisadrv - ok
16:33:41.0829 0712 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:33:41.0846 0712 MSiSCSI - ok
16:33:41.0852 0712 msiserver - ok
16:33:41.0864 0712 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:33:41.0866 0712 MSKSSRV - ok
16:33:41.0878 0712 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:33:41.0880 0712 MSPCLOCK - ok
16:33:41.0902 0712 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:33:41.0903 0712 MSPQM - ok
16:33:41.0931 0712 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:33:41.0935 0712 MsRPC - ok
16:33:41.0949 0712 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:33:41.0951 0712 mssmbios - ok
16:33:41.0967 0712 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:33:41.0969 0712 MSTEE - ok
16:33:41.0982 0712 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:33:41.0984 0712 MTConfig - ok
16:33:41.0999 0712 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:33:42.0001 0712 Mup - ok
16:33:42.0039 0712 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:33:42.0049 0712 napagent - ok
16:33:42.0080 0712 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:33:42.0084 0712 NativeWifiP - ok
16:33:42.0130 0712 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:33:42.0137 0712 NDIS - ok
16:33:42.0154 0712 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:33:42.0155 0712 NdisCap - ok
16:33:42.0162 0712 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:33:42.0164 0712 NdisTapi - ok
16:33:42.0192 0712 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:33:42.0194 0712 Ndisuio - ok
16:33:42.0220 0712 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:33:42.0222 0712 NdisWan - ok
16:33:42.0254 0712 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:33:42.0256 0712 NDProxy - ok
16:33:42.0266 0712 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:33:42.0268 0712 NetBIOS - ok
16:33:42.0292 0712 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:33:42.0295 0712 NetBT - ok
16:33:42.0316 0712 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:33:42.0321 0712 Netlogon - ok
16:33:42.0360 0712 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:33:42.0369 0712 Netman - ok
16:33:42.0394 0712 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:33:42.0397 0712 NetMsmqActivator - ok
16:33:42.0402 0712 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:33:42.0405 0712 NetPipeActivator - ok
16:33:42.0431 0712 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:33:42.0440 0712 netprofm - ok
16:33:42.0507 0712 [ 2EED549279D7FBD10B846B5397573967 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
16:33:42.0523 0712 netr28x - ok
16:33:42.0531 0712 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:33:42.0534 0712 NetTcpActivator - ok
16:33:42.0540 0712 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:33:42.0544 0712 NetTcpPortSharing - ok
16:33:42.0571 0712 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:33:42.0572 0712 nfrd960 - ok
16:33:42.0606 0712 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:33:42.0615 0712 NlaSvc - ok
16:33:42.0631 0712 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:33:42.0633 0712 Npfs - ok
16:33:42.0665 0712 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:33:42.0671 0712 nsi - ok
16:33:42.0678 0712 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:33:42.0680 0712 nsiproxy - ok
16:33:42.0736 0712 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:33:42.0748 0712 Ntfs - ok
16:33:42.0769 0712 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:33:42.0770 0712 Null - ok
16:33:42.0807 0712 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:33:42.0810 0712 nvraid - ok
16:33:42.0826 0712 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:33:42.0829 0712 nvstor - ok
16:33:42.0848 0712 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:33:42.0850 0712 nv_agp - ok
16:33:42.0948 0712 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:33:42.0953 0712 odserv - ok
16:33:42.0969 0712 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:33:42.0971 0712 ohci1394 - ok
16:33:42.0994 0712 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:33:42.0996 0712 ose - ok
16:33:43.0029 0712 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:33:43.0038 0712 p2pimsvc - ok
16:33:43.0080 0712 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:33:43.0092 0712 p2psvc - ok
16:33:43.0119 0712 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:33:43.0122 0712 Parport - ok
16:33:43.0151 0712 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:33:43.0153 0712 partmgr - ok
16:33:43.0167 0712 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:33:43.0175 0712 PcaSvc - ok
16:33:43.0199 0712 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:33:43.0202 0712 pci - ok
16:33:43.0232 0712 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:33:43.0234 0712 pciide - ok
16:33:43.0253 0712 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:33:43.0256 0712 pcmcia - ok
16:33:43.0276 0712 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:33:43.0278 0712 pcw - ok
16:33:43.0313 0712 [ BAF3216DDAA12E66EBBB31760E02BC14 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
16:33:43.0335 0712 PdiService - ok
16:33:43.0363 0712 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:33:43.0369 0712 PEAUTH - ok
16:33:43.0433 0712 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:33:43.0439 0712 PerfHost - ok
16:33:43.0502 0712 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:33:43.0522 0712 pla - ok
16:33:43.0558 0712 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:33:43.0570 0712 PlugPlay - ok
16:33:43.0587 0712 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:33:43.0595 0712 PNRPAutoReg - ok
16:33:43.0617 0712 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:33:43.0625 0712 PNRPsvc - ok
16:33:43.0664 0712 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:33:43.0673 0712 PolicyAgent - ok
16:33:43.0705 0712 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll
16:33:43.0714 0712 Power - ok
16:33:43.0733 0712 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:33:43.0735 0712 PptpMiniport - ok
16:33:43.0779 0712 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:33:43.0780 0712 Processor - ok
16:33:43.0808 0712 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:33:43.0817 0712 ProfSvc - ok
16:33:43.0836 0712 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:33:43.0841 0712 ProtectedStorage - ok
16:33:43.0863 0712 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:33:43.0866 0712 Psched - ok
16:33:43.0923 0712 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:33:43.0934 0712 ql2300 - ok
16:33:43.0943 0712 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:33:43.0946 0712 ql40xx - ok
16:33:43.0984 0712 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:33:43.0992 0712 QWAVE - ok
16:33:44.0009 0712 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:33:44.0011 0712 QWAVEdrv - ok
16:33:44.0043 0712 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:33:44.0044 0712 RasAcd - ok
16:33:44.0065 0712 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:33:44.0066 0712 RasAgileVpn - ok
16:33:44.0083 0712 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:33:44.0090 0712 RasAuto - ok
16:33:44.0117 0712 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:33:44.0120 0712 Rasl2tp - ok
16:33:44.0144 0712 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:33:44.0154 0712 RasMan - ok
16:33:44.0182 0712 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:33:44.0185 0712 RasPppoe - ok
16:33:44.0192 0712 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:33:44.0194 0712 RasSstp - ok
16:33:44.0224 0712 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:33:44.0228 0712 rdbss - ok
16:33:44.0251 0712 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:33:44.0253 0712 rdpbus - ok
16:33:44.0269 0712 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:33:44.0270 0712 RDPCDD - ok
16:33:44.0290 0712 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:33:44.0292 0712 RDPENCDD - ok
16:33:44.0313 0712 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:33:44.0315 0712 RDPREFMP - ok
16:33:44.0358 0712 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:33:44.0359 0712 RdpVideoMiniport - ok
16:33:44.0398 0712 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:33:44.0401 0712 RDPWD - ok
16:33:44.0439 0712 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:33:44.0442 0712 rdyboost - ok
16:33:44.0484 0712 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:33:44.0490 0712 RemoteAccess - ok
16:33:44.0525 0712 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:33:44.0533 0712 RemoteRegistry - ok
16:33:44.0555 0712 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
16:33:44.0558 0712 RFCOMM - ok
16:33:44.0574 0712 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:33:44.0581 0712 RpcEptMapper - ok
16:33:44.0598 0712 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:33:44.0603 0712 RpcLocator - ok
16:33:44.0637 0712 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:33:44.0647 0712 RpcSs - ok
16:33:44.0682 0712 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:33:44.0684 0712 rspndr - ok
16:33:44.0719 0712 [ 642FE16CC7DE75870729C5C800E507D7 ] rtbth C:\Windows\system32\DRIVERS\rtbth.sys
16:33:44.0725 0712 rtbth - ok
16:33:44.0772 0712 [ BD9BA262CF26EFE9A9867EBE32D12164 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:33:44.0779 0712 RTL8167 - ok
16:33:44.0838 0712 [ 496043BAD6FBFAAF5280C9EB41920684 ] RTLE8023x64 C:\Windows\system32\DRIVERS\Rtenic64.sys
16:33:44.0842 0712 RTLE8023x64 - ok
16:33:44.0868 0712 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:33:44.0872 0712 SamSs - ok
16:33:44.0898 0712 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:33:44.0900 0712 sbp2port - ok
16:33:44.0932 0712 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:33:44.0940 0712 SCardSvr - ok
16:33:44.0964 0712 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:33:44.0966 0712 scfilter - ok
16:33:45.0014 0712 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:33:45.0032 0712 Schedule - ok
16:33:45.0063 0712 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:33:45.0065 0712 SCPolicySvc - ok
16:33:45.0082 0712 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
16:33:45.0084 0712 sdbus - ok
16:33:45.0123 0712 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:33:45.0132 0712 SDRSVC - ok
16:33:45.0160 0712 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:33:45.0162 0712 secdrv - ok
16:33:45.0185 0712 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:33:45.0192 0712 seclogon - ok
16:33:45.0219 0712 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:33:45.0227 0712 SENS - ok
16:33:45.0241 0712 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:33:45.0249 0712 SensrSvc - ok
16:33:45.0264 0712 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:33:45.0266 0712 Serenum - ok
16:33:45.0288 0712 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:33:45.0290 0712 Serial - ok
16:33:45.0310 0712 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:33:45.0312 0712 sermouse - ok
16:33:45.0351 0712 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:33:45.0360 0712 SessionEnv - ok
16:33:45.0383 0712 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:33:45.0385 0712 sffdisk - ok
16:33:45.0407 0712 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:33:45.0408 0712 sffp_mmc - ok
16:33:45.0422 0712 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:33:45.0424 0712 sffp_sd - ok
16:33:45.0444 0712 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:33:45.0446 0712 sfloppy - ok
16:33:45.0501 0712 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:33:45.0509 0712 SharedAccess - ok
16:33:45.0559 0712 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:33:45.0570 0712 ShellHWDetection - ok
16:33:45.0587 0712 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:33:45.0590 0712 SiSRaid2 - ok
16:33:45.0598 0712 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:33:45.0601 0712 SiSRaid4 - ok
16:33:45.0634 0712 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

[Helllboy]

16:33:45.0636 0712 SkypeUpdate - ok
16:33:45.0654 0712 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:33:45.0656 0712 Smb - ok
16:33:45.0698 0712 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:33:45.0705 0712 SNMPTRAP - ok
16:33:45.0748 0712 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:33:45.0750 0712 spldr - ok
16:33:45.0789 0712 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:33:45.0800 0712 Spooler - ok
16:33:45.0883 0712 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:33:45.0913 0712 sppsvc - ok
16:33:45.0960 0712 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:33:45.0968 0712 sppuinotify - ok
16:33:46.0016 0712 [ E3E187646E491A8175F759A465A9B767 ] SPUVCbv C:\Windows\system32\Drivers\SPUVCbv_x64.sys
16:33:46.0024 0712 SPUVCbv - ok
16:33:46.0063 0712 [ B9657A0AFF28C1CB114ACC0CB93EE4BB ] sp_rsdrv2 C:\Windows\system32\DRIVERS\stflt.sys
16:33:46.0065 0712 sp_rsdrv2 - ok
16:33:46.0098 0712 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:33:46.0102 0712 srv - ok
16:33:46.0135 0712 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:33:46.0140 0712 srv2 - ok
16:33:46.0161 0712 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:33:46.0164 0712 srvnet - ok
16:33:46.0195 0712 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:33:46.0205 0712 SSDPSRV - ok
16:33:46.0213 0712 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:33:46.0222 0712 SstpSvc - ok
16:33:46.0292 0712 [ ABF26F3260ADC9C6490C7D3E3429B130 ] ST2012_Svc C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
16:33:46.0299 0712 ST2012_Svc - ok
16:33:46.0393 0712 [ 634C0CDC3F63AED52982A15C21FA9939 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
16:33:46.0396 0712 STacSV - ok
16:33:46.0435 0712 [ 3DBF9D2E5DE3A72B37AB27ABB79FEE69 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:33:46.0471 0712 Steam Client Service - ok
16:33:46.0497 0712 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:33:46.0500 0712 stexstor - ok
16:33:46.0537 0712 [ 54A0E8D8118455AB2BF4B42DA46ECC02 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
16:33:46.0543 0712 STHDA - ok
16:33:46.0576 0712 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:33:46.0591 0712 stisvc - ok
16:33:46.0623 0712 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:33:46.0625 0712 swenum - ok
16:33:46.0652 0712 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:33:46.0667 0712 swprv - ok
16:33:46.0701 0712 [ 34D5CB94656B443D50B3FF1A450A559C ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:33:46.0706 0712 SynTP - ok
16:33:46.0775 0712 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:33:46.0804 0712 SysMain - ok
16:33:46.0838 0712 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:33:46.0849 0712 TabletInputService - ok
16:33:46.0878 0712 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
16:33:46.0881 0712 tap0901t - ok
16:33:46.0917 0712 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:33:46.0931 0712 TapiSrv - ok
16:33:46.0962 0712 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:33:46.0970 0712 TBS - ok
16:33:47.0037 0712 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:33:47.0051 0712 Tcpip - ok
16:33:47.0081 0712 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:33:47.0095 0712 TCPIP6 - ok
16:33:47.0140 0712 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:33:47.0142 0712 tcpipreg - ok
16:33:47.0172 0712 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:33:47.0174 0712 TDPIPE - ok
16:33:47.0192 0712 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:33:47.0194 0712 TDTCP - ok
16:33:47.0219 0712 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:33:47.0222 0712 tdx - ok
16:33:47.0249 0712 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:33:47.0251 0712 TermDD - ok
16:33:47.0303 0712 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:33:47.0318 0712 TermService - ok
16:33:47.0352 0712 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:33:47.0361 0712 Themes - ok
16:33:47.0396 0712 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:33:47.0401 0712 THREADORDER - ok
16:33:47.0415 0712 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:33:47.0427 0712 TrkWks - ok
16:33:47.0488 0712 [ B66EE1D68197DFB9AA24F961E68ACDCC ] trufos C:\Windows\system32\drivers\trufos.sys
16:33:47.0492 0712 trufos - ok
16:33:47.0551 0712 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:33:47.0553 0712 TrustedInstaller - ok
16:33:47.0594 0712 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:33:47.0596 0712 tssecsrv - ok
16:33:47.0632 0712 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:33:47.0634 0712 TsUsbFlt - ok
16:33:47.0671 0712 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:33:47.0674 0712 tunnel - ok
16:33:47.0741 0712 [ 97D6177C2DCCDA2BA25F053B3C75D74E ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
16:33:47.0747 0712 TunngleService - ok
16:33:47.0775 0712 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:33:47.0777 0712 uagp35 - ok
16:33:47.0806 0712 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:33:47.0809 0712 udfs - ok
16:33:47.0850 0712 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:33:47.0858 0712 UI0Detect - ok
16:33:47.0888 0712 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:33:47.0890 0712 uliagpkx - ok
16:33:47.0924 0712 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
16:33:47.0926 0712 umbus - ok
16:33:47.0946 0712 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:33:47.0948 0712 UmPass - ok
16:33:47.0972 0712 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:33:47.0984 0712 upnphost - ok
16:33:48.0012 0712 [ 2B26FCB7C634C49313FD72120FB9946E ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:33:48.0015 0712 usbccgp - ok
16:33:48.0032 0712 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:33:48.0034 0712 usbcir - ok
16:33:48.0050 0712 [ AA68C758B3F225618A5FD1ED40C383C4 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:33:48.0052 0712 usbehci - ok
16:33:48.0088 0712 [ 33A58C5630200E17B51C8D73DD64181B ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
16:33:48.0090 0712 usbfilter - ok
16:33:48.0118 0712 [ 66E1EF753543785D7E2C44719B2C5DAD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:33:48.0122 0712 usbhub - ok
16:33:48.0145 0712 [ B26ACA4784AD1295C25A7501FD4AB79E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
16:33:48.0146 0712 usbohci - ok
16:33:48.0168 0712 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:33:48.0170 0712 usbprint - ok
16:33:48.0211 0712 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:33:48.0213 0712 usbscan - ok
16:33:48.0237 0712 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:33:48.0239 0712 USBSTOR - ok
16:33:48.0260 0712 [ 35944CFF264134FFD2E7EED0F8B81A56 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:33:48.0262 0712 usbuhci - ok
16:33:48.0310 0712 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:33:48.0312 0712 usbvideo - ok
16:33:48.0345 0712 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:33:48.0353 0712 UxSms - ok
16:33:48.0384 0712 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:33:48.0389 0712 VaultSvc - ok
16:33:48.0412 0712 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:33:48.0414 0712 vdrvroot - ok
16:33:48.0452 0712 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:33:48.0466 0712 vds - ok
16:33:48.0497 0712 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:33:48.0499 0712 vga - ok
16:33:48.0521 0712 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:33:48.0523 0712 VgaSave - ok
16:33:48.0548 0712 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:33:48.0551 0712 vhdmp - ok
16:33:48.0583 0712 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:33:48.0585 0712 viaide - ok
16:33:48.0606 0712 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:33:48.0609 0712 volmgr - ok
16:33:48.0645 0712 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:33:48.0649 0712 volmgrx - ok
16:33:48.0688 0712 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:33:48.0692 0712 volsnap - ok
16:33:48.0718 0712 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:33:48.0721 0712 vsmraid - ok
16:33:48.0782 0712 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:33:48.0808 0712 VSS - ok
16:33:48.0821 0712 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:33:48.0823 0712 vwifibus - ok
16:33:48.0838 0712 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:33:48.0840 0712 vwififlt - ok
16:33:48.0848 0712 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:33:48.0851 0712 vwifimp - ok
16:33:48.0884 0712 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:33:48.0896 0712 W32Time - ok
16:33:48.0930 0712 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:33:48.0932 0712 WacomPen - ok
16:33:48.0957 0712 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:33:48.0960 0712 WANARP - ok
16:33:48.0966 0712 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:33:48.0970 0712 Wanarpv6 - ok
16:33:49.0033 0712 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:33:49.0068 0712 WatAdminSvc - ok
16:33:49.0137 0712 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:33:49.0161 0712 wbengine - ok
16:33:49.0192 0712 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:33:49.0201 0712 WbioSrvc - ok
16:33:49.0239 0712 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:33:49.0251 0712 wcncsvc - ok
16:33:49.0270 0712 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:33:49.0279 0712 WcsPlugInService - ok
16:33:49.0306 0712 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:33:49.0308 0712 Wd - ok
16:33:49.0355 0712 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:33:49.0362 0712 Wdf01000 - ok
16:33:49.0385 0712 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:33:49.0394 0712 WdiServiceHost - ok
16:33:49.0401 0712 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:33:49.0411 0712 WdiSystemHost - ok
16:33:49.0441 0712 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:33:49.0452 0712 WebClient - ok
16:33:49.0469 0712 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:33:49.0486 0712 Wecsvc - ok
16:33:49.0535 0712 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:33:49.0543 0712 wercplsupport - ok
16:33:49.0569 0712 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:33:49.0578 0712 WerSvc - ok
16:33:49.0606 0712 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:33:49.0608 0712 WfpLwf - ok
16:33:49.0628 0712 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:33:49.0630 0712 WIMMount - ok
16:33:49.0662 0712 WinDefend - ok
16:33:49.0679 0712 WinHttpAutoProxySvc - ok
16:33:49.0739 0712 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:33:49.0742 0712 Winmgmt - ok
16:33:49.0818 0712 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:33:49.0846 0712 WinRM - ok
16:33:49.0906 0712 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:33:49.0922 0712 Wlansvc - ok
16:33:49.0946 0712 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:33:49.0948 0712 WmiAcpi - ok
16:33:49.0985 0712 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:33:49.0989 0712 wmiApSrv - ok
16:33:50.0017 0712 WMPNetworkSvc - ok
16:33:50.0037 0712 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:33:50.0045 0712 WPCSvc - ok
16:33:50.0073 0712 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:33:50.0083 0712 WPDBusEnum - ok
16:33:50.0106 0712 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:33:50.0108 0712 ws2ifsl - ok
16:33:50.0137 0712 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
16:33:50.0147 0712 wscsvc - ok
16:33:50.0155 0712 WSearch - ok
16:33:50.0248 0712 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:33:50.0280 0712 wuauserv - ok
16:33:50.0312 0712 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:33:50.0314 0712 WudfPf - ok
16:33:50.0330 0712 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:33:50.0333 0712 WUDFRd - ok
16:33:50.0367 0712 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:33:50.0378 0712 wudfsvc - ok
16:33:50.0413 0712 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
16:33:50.0425 0712 WwanSvc - ok
16:33:50.0458 0712 ================ Scan global ===============================
16:33:50.0500 0712 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:33:50.0532 0712 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
16:33:50.0548 0712 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
16:33:50.0581 0712 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:33:50.0620 0712 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:33:50.0630 0712 [Global] - ok
16:33:50.0631 0712 ================ Scan MBR ==================================
16:33:50.0638 0712 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:33:50.0758 0712 \Device\Harddisk0\DR0 - ok
16:33:50.0758 0712 ================ Scan VBR ==================================
16:33:50.0761 0712 [ F6BF2D5583ABC8D9B7E903DA793CA049 ] \Device\Harddisk0\DR0\Partition1
16:33:50.0762 0712 \Device\Harddisk0\DR0\Partition1 - ok
16:33:50.0771 0712 [ 5F0FBDF39923A2CEE96722F45A3E8D0D ] \Device\Harddisk0\DR0\Partition2
16:33:50.0772 0712 \Device\Harddisk0\DR0\Partition2 - ok
16:33:50.0783 0712 [ 03479817879B7CE6B292EA8F7CD4A046 ] \Device\Harddisk0\DR0\Partition3
16:33:50.0785 0712 \Device\Harddisk0\DR0\Partition3 - ok
16:33:50.0785 0712 ============================================================
16:33:50.0785 0712 Scan finished
16:33:50.0785 0712 ============================================================
16:33:50.0796 5352 Detected object count: 0
16:33:50.0796 5352 Actual detected object count: 0
16:33:57.0165 1492 Deinitialize success

[Helllboy]

udělalo mi to ještě druhý txt soubor:
16:34:06.0873 4156 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:34:07.0081 4156 ============================================================
16:34:07.0081 4156 Current date / time: 2013/09/17 16:34:07.0081
16:34:07.0081 4156 SystemInfo:
16:34:07.0081 4156
16:34:07.0082 4156 OS Version: 6.1.7601 ServicePack: 1.0
16:34:07.0082 4156 Product type: Workstation
16:34:07.0082 4156 ComputerName: DAVID-NTB
16:34:07.0082 4156 UserName: David
16:34:07.0082 4156 Windows directory: C:\Windows
16:34:07.0082 4156 System windows directory: C:\Windows
16:34:07.0082 4156 Running under WOW64
16:34:07.0082 4156 Processor architecture: Intel x64
16:34:07.0082 4156 Number of processors: 2
16:34:07.0082 4156 Page size: 0x1000
16:34:07.0082 4156 Boot type: Normal boot
16:34:07.0082 4156 ============================================================
16:34:07.0455 4156 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:34:07.0462 4156 ============================================================
16:34:07.0462 4156 \Device\Harddisk0\DR0:
16:34:07.0462 4156 MBR partitions:
16:34:07.0462 4156 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:34:07.0462 4156 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000
16:34:07.0462 4156 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x4B1F5000
16:34:07.0462 4156 ============================================================
16:34:07.0475 4156 C: <-> \Device\Harddisk0\DR0\Partition2
16:34:07.0511 4156 D: <-> \Device\Harddisk0\DR0\Partition3
16:34:07.0511 4156 ============================================================
16:34:07.0512 4156 Initialize success
16:34:07.0512 4156 ============================================================
16:34:21.0891 1004 Deinitialize success


a tady je ten roguekiller:

RogueKiller V8.6.11 _x64_ [Sep 11 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : David [Práva správce]
Mód : Odebrat -- Datum : 09/17/2013 16:31:42
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST750LM0 22 HN-M750MBB SATA Disk Device +++++
--- User ---
[MBR] 7f31d0ac6ecf140652a2ea5fccbf5ee6
[BSP] 6e8098f660bf7375a8ed88b909e4b57a : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 99900 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 204802048 | Size: 615402 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_09172013_163142.txt >>
RKreport[0]_S_09172013_112119.txt;RKreport[0]_S_09172013_163137.txt



spybot jsem už odstranil, ale měl jsem za to, že bych měl mít nějakou antispywarovou ochranu, protože avira free antivirus ji nemá. A když jsme u softu, co si myslíš o advanced systemcare? Nenahradí ho plnohodnotně pouze ccleaner?

[memphisto]

Nepotřebuješ antispyware. Všechny dnešní antiviry už v sobě antispyware štít mají...

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.

[Helllboy]

ComboFix 13-09-17.01 - David 17.09.2013 17:39:00.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3537.2053 [GMT 2:00]
Spuštěný z: c:\users\David\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
FW: COMODO Firewall *Disabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: COMODO Antivirus *Disabled/Outdated* {0C2D2636-923D-EE52-2A83-E643204A8275}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\David\AppData\Local\Google\Chrome\User Data\Default\Preferences
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-17 do 2013-09-17 )))))))))))))))))))))))))))))))
.
.
2013-09-17 15:49 . 2013-09-17 15:49 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-17 08:23 . 2013-09-17 08:23 -------- d-----w- c:\windows\ERUNT
2013-09-16 20:05 . 2013-09-16 20:05 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-09-16 20:05 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-09-16 17:26 . 2013-09-16 17:27 -------- d-----w- c:\program files\Defraggler
2013-09-16 17:09 . 2013-09-16 17:09 -------- d-----w- C:\VTRoot
2013-09-16 16:42 . 2013-09-16 16:42 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2013-09-16 16:30 . 2013-09-16 16:33 -------- d-s---w- c:\programdata\Shared Space
2013-09-16 16:30 . 2013-09-16 16:30 -------- d-----w- c:\program files\COMODO
2013-09-16 16:30 . 2013-09-16 16:56 -------- d-----w- c:\programdata\Comodo
2013-09-16 16:30 . 2013-09-16 16:30 -------- d-----w- c:\programdata\Comodo Downloader
2013-09-16 16:22 . 2013-09-16 16:22 81112 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-09-16 16:22 . 2013-09-16 16:22 -------- d-----w- c:\users\David\AppData\Roaming\Avira
2013-09-16 16:16 . 2013-09-16 16:15 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-09-16 16:16 . 2013-09-16 16:15 132088 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-09-16 16:16 . 2013-09-16 16:15 105344 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-09-16 16:16 . 2013-09-16 16:16 -------- d-----w- c:\programdata\Avira
2013-09-16 16:16 . 2013-09-16 16:16 -------- d-----w- c:\program files (x86)\Avira
2013-09-16 15:27 . 2013-09-16 15:27 -------- d-----w- C:\found.000
2013-09-14 13:17 . 2013-09-14 13:17 -------- d---a-w- c:\windows\rundll16.exe
2013-09-14 13:17 . 2013-09-14 13:17 -------- d---a-w- c:\windows\logo1_.exe
2013-09-14 12:53 . 2013-09-14 12:53 350160 ----a-w- c:\windows\system32\drivers\trufos.sys
2013-09-14 12:53 . 2013-09-14 12:53 572928 ----a-w- c:\windows\SysWow64\msvcp90.dll
2013-09-14 12:53 . 2013-09-14 12:53 655872 ----a-w- c:\windows\SysWow64\msvcr90.dll
2013-09-14 11:43 . 2013-09-14 11:43 -------- d---a-w- c:\windows\VDLL.DLL
2013-09-14 11:43 . 2013-09-14 11:43 -------- d---a-w- c:\windows\SysWow64\runouce.exe
2013-09-14 11:43 . 2013-09-14 11:43 -------- d---a-w- c:\windows\RUNDL132.EXE
2013-09-14 11:43 . 2013-09-14 11:43 -------- d---a-w- c:\windows\logo_1.exe
2013-09-14 11:43 . 2013-09-14 11:43 -------- d-----w- c:\programdata\Oracle
2013-09-14 11:42 . 2013-09-14 11:42 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-09-14 11:42 . 2013-09-14 11:42 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-09-14 11:33 . 2013-09-14 11:33 632064 ----a-w- c:\windows\SysWow64\msvcr80.dll
2013-09-14 11:33 . 2013-09-14 11:33 554240 ----a-w- c:\windows\SysWow64\msvcp80.dll
2013-09-14 11:33 . 2013-09-14 11:33 34048 ----a-w- c:\windows\SysWow64\eEmpty.exe
2013-09-14 11:33 . 2013-09-14 11:33 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2013-09-14 11:32 . 2013-09-14 11:33 -------- d-----w- c:\programdata\MicroWorld
2013-09-14 11:06 . 2013-09-14 21:40 -------- d-----w- c:\users\David\AppData\Local\NPE
2013-09-14 11:06 . 2013-09-14 11:06 -------- d-----w- c:\programdata\Norton
2013-09-14 11:03 . 2013-09-14 11:03 -------- d-----w- c:\users\David\AppData\Roaming\Malwarebytes
2013-09-14 11:03 . 2013-09-14 11:03 -------- d-----w- c:\programdata\Malwarebytes
2013-09-14 11:01 . 2013-09-14 11:01 -------- d-----w- c:\programdata\Kaspersky Lab
2013-09-13 09:08 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{506B387A-FD57-42C0-B275-1A86BC7C46A4}\mpengine.dll
2013-09-11 10:06 . 2013-09-11 10:06 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%
2013-09-10 17:22 . 2013-09-16 22:19 -------- d-----w- c:\users\David\AppData\Roaming\vlc
2013-09-10 17:06 . 2013-09-10 17:06 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-09-10 17:06 . 2013-09-10 17:06 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-09-10 17:05 . 2013-09-10 17:05 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2013-09-05 15:37 . 2013-09-17 14:31 -------- d-----w- c:\programdata\Tunngle
2013-08-31 22:17 . 2013-08-31 22:17 -------- d-----w- c:\users\David\AppData\Roaming\dvdcss
2013-08-27 20:50 . 2013-08-27 20:50 -------- d-----w- C:\Index
2013-08-22 08:59 . 2013-08-22 08:58 82600 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2013-08-22 08:59 . 2013-08-22 08:58 42664 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2013-08-22 08:56 . 2013-08-22 08:55 228008 ----a-w- c:\windows\system32\drivers\amdxhc.sys
2013-08-22 08:56 . 2013-08-22 08:55 107688 ----a-w- c:\windows\system32\drivers\amdhub30.sys
2013-08-21 14:39 . 2013-09-11 10:11 -------- d-----w- c:\windows\system32\MRT
2013-08-21 14:20 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-08-21 14:20 . 2013-07-09 05:51 1217024 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-21 14:20 . 2013-07-09 04:52 663552 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2013-08-21 14:20 . 2013-06-04 06:00 624128 ----a-w- c:\windows\system32\qedit.dll
2013-08-21 14:20 . 2013-06-04 04:53 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2013-08-21 14:20 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-21 14:19 . 2013-04-10 05:48 1732608 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2013-08-21 14:19 . 2013-04-10 05:46 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2013-08-21 14:19 . 2013-04-10 05:46 1393152 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2013-08-21 14:19 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-08-21 14:19 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-08-21 14:19 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-21 14:18 . 2013-04-02 22:51 1643520 ----a-w- c:\windows\system32\DWrite.dll
2013-08-21 14:18 . 2013-04-09 23:34 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-14 11:42 . 2013-03-03 18:39 868264 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-09-14 11:42 . 2013-03-03 18:39 790440 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-09-11 10:10 . 2013-01-12 07:19 79143768 ----a-w- c:\windows\system32\MRT.exe
2013-09-10 17:08 . 2013-09-10 17:08 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-07-08 19:59 . 2013-07-08 19:59 708632 ----a-w- c:\windows\system32\drivers\cmdguard.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-08 630952]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2012-09-05 184736]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-09-16 347192]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [x]
R3 GGSAFERDriver;GGSAFER Driver; [x]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTLE8023x64;Realtek 10/100/1000 PCI-E NIC Family NDIS XP(x64) Driver;c:\windows\system32\DRIVERS\Rtenic64.sys;c:\windows\SYSNATIVE\DRIVERS\Rtenic64.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 FSProFilter;FSPro File Filter;c:\windows\System32\Drivers\FSPFltd.sys;c:\windows\SYSNATIVE\Drivers\FSPFltd.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys;c:\windows\SYSNATIVE\DRIVERS\cmderd.sys [x]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys;c:\windows\SYSNATIVE\DRIVERS\cmdguard.sys [x]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys;c:\windows\SYSNATIVE\DRIVERS\cmdhlp.sys [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BtAudioBusSrv;Ralink Bluetooth Audio Bus Service;c:\windows\system32\Drivers\BtAudioBus.sys;c:\windows\SYSNATIVE\Drivers\BtAudioBus.sys [x]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service;c:\windows\system32\Drivers\BtL2caScoIf.sys;c:\windows\SYSNATIVE\Drivers\BtL2caScoIf.sys [x]
S3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service;c:\windows\system32\Drivers\IvtUrbBtFlt.sys;c:\windows\SYSNATIVE\Drivers\IvtUrbBtFlt.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
S3 rtbth;RTBTH Bluetooth Device Driver;c:\windows\system32\DRIVERS\rtbth.sys;c:\windows\SYSNATIVE\DRIVERS\rtbth.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SPUVCbv;SPUVCb Driver Service;c:\windows\system32\Drivers\SPUVCbv_x64.sys;c:\windows\SYSNATIVE\Drivers\SPUVCbv_x64.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-05 08:03 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-09-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore1ce0b4a8a25503e.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-11 18:57]
.
2013-09-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA1ce0b4a8a76ccd0.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-11 18:57]
.
2013-08-22 c:\windows\Tasks\HPCeeScheduleForDavid.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13 21:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2012-03-14 15232]
"mylbx"="c:\program files\My Lockbox\mylbx.exe" [2012-12-03 2487656]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-04-01 1664000]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3601108238-504179349-2237010369-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:19,52,29,ee,61,d5,26,75,64,44,28,f3,d6,5e,4b,03,e0,a6,af,3e,8c,28,f3,
36,b4,26,13,ce,dc,35,a4,f1,bd,e5,93,fd,a7,76,8b,61,43,2e,ae,15,0a,d0,5f,1f,\
"??"=hex:1d,a3,a2,61,a1,5d,e6,80,c2,bf,af,98,5b,8b,c6,22
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
.
**************************************************************************
.
Celkový čas: 2013-09-17 18:00:38 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-09-17 16:00
.
Před spuštěním: Volných bajtů: 54 117 019 648
Po spuštění: Volných bajtů: 53 593 116 672
.
- - End Of File - - 8F86EE70D8C6B9E1097A1EBA07B2B7BF
A36C5E4F47E84449FF07ED3517B43A31

[jaro3]

Odinstaluj buď COMODO Antivirus (můžeš i firewall) nebo Aviru.

Pak nový Combofix.