Prosím o kontrolu logu Vyřešeno

[vašekp]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:43:27, on 7. 12. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Users\Vašek\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Vašek\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Vašek\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [FLV Player] C:\Users\Vašek\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: @oem17.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Unknown owner - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11373 bytes

[Reklama]

[jaro3]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

[vašekp]

# AdwCleaner v3.014 - Report created 08/12/2013 at 13:23:40
# Updated 01/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Vašek - IDEA-PC
# Running from : C:\Users\Vašek\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\Vašek\AppData\Roaming\BabMaint.exe
File Found : C:\Users\Vašek\Desktop\Check for Updates.lnk
File Found : C:\windows\System32\roboot64.exe
File Found : C:\windows\System32\Tasks\BitGuard
File Found : C:\windows\System32\Tasks\EPUpdater
File Found : C:\windows\System32\Tasks\Scheduled Update for Ask Toolbar
Folder Found C:\Program Files (x86)\Ask.com
Folder Found C:\Program Files (x86)\FilesFrog Update Checker
Folder Found C:\ProgramData\AlawarWrapper
Folder Found C:\ProgramData\Ask
Folder Found C:\ProgramData\Babylon
Folder Found C:\Users\Michal\AppData\LocalLow\AskToolbar
Folder Found C:\Users\Naďa\AppData\LocalLow\AskToolbar
Folder Found C:\Users\Naďa\AppData\Roaming\Systweak
Folder Found C:\Users\Vašek\AppData\Local\webplayer
Folder Found C:\Users\Vašek\AppData\LocalLow\AskToolbar
Folder Found C:\Users\Vašek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Found C:\Users\Vašek\AppData\Roaming\Systweak
Folder Found C:\windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}

***** [ Shortcuts ] *****

Shortcut Found : C:\Users\Vašek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player\Uninstall.lnk ( _?=C:\Users\Vašek\AppData\Local\WebPlayer\FLV Player )

***** [ Registry ] *****

Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll
Key Found : HKCU\Software\59e8f8fe239e945
Key Found : HKCU\Software\APN
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Webplayer
Key Found : [x64] HKCU\Software\APN
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Webplayer
Key Found : HKLM\SOFTWARE\59e8f8fe239e945
Key Found : HKLM\Software\APN
Key Found : HKLM\Software\AskToolbar
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Found : HKLM\Software\systweak
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Vašek\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Naďa\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6000 octets] - [08/12/2013 13:21:05]
AdwCleaner[R1].txt - [5884 octets] - [08/12/2013 13:23:40]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [5944 octets] ##########

[vašekp]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.08.01

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16540
Vašek :: IDEA-PC [administrátor]

Ochrana: Povolena

8. 12. 2013 13:28:18
mbam-log-2013-12-08 (13-28-18).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 327578
Uplynulý čas: 4 minut, 59 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Máš nějaké problémy?

[vašekp]

# AdwCleaner v3.014 - Report created 09/12/2013 at 20:48:09
# Updated 01/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Vašek - IDEA-PC
# Running from : C:\Users\Vašek\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\AlawarWrapper
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\FilesFrog Update Checker
Folder Deleted : C:\windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Folder Deleted : C:\Users\Vašek\AppData\Local\webplayer
Folder Deleted : C:\Users\Vašek\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Vašek\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Vašek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Naďa\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Naďa\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Michal\AppData\LocalLow\AskToolbar
File Deleted : C:\windows\System32\roboot64.exe
File Deleted : C:\Users\Vašek\AppData\Roaming\BabMaint.exe
File Deleted : C:\Users\Vašek\Desktop\Check for Updates.lnk
File Deleted : C:\windows\System32\Tasks\BitGuard
File Deleted : C:\windows\System32\Tasks\EPUpdater
File Deleted : C:\windows\System32\Tasks\Scheduled Update for Ask Toolbar

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Vašek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player\Uninstall.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Key Deleted : HKCU\Software\59e8f8fe239e945
Key Deleted : HKLM\SOFTWARE\59e8f8fe239e945
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\Webplayer
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\systweak
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Vašek\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Naďa\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6000 octets] - [08/12/2013 13:21:05]
AdwCleaner[R1].txt - [6060 octets] - [08/12/2013 13:23:40]
AdwCleaner[R2].txt - [6120 octets] - [09/12/2013 20:45:25]
AdwCleaner[S0].txt - [5801 octets] - [09/12/2013 20:48:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5861 octets] ##########

[vašekp]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8 x64
Ran by Vaçek on po 09. 12. 2013 at 21:03:24,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-961389813-253083461-155772885-1003\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{67B44C5E-413A-4002-8FE8-E160BF0F99DC}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\windows\syswow64\ai_recyclebin"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 09. 12. 2013 at 21:10:12,27
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[vašekp]

RogueKiller V8.7.11 _x64_ [Nov 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Vašek [Práva správce]
Mód : Kontrola -- Datum : 12/09/2013 21:17:06
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[SUSP UNIC] szndesktop.exe -- C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe [7] -> SMAZÁNO [TermProc]
[SUSP UNIC] listicka-x64.exe -- C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe [7] -> SMAZÁNO [TermThr]

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[RUN][SUSP UNIC] HKCU\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> NALEZENO
[RUN][SUSP UNIC] HKCU\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> NALEZENO
[RUN][SUSP UNIC] HKCU\[...]\Run : FLV Player (C:\Users\Vašek\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [x][x]) -> NALEZENO
[RUN][SUSP UNIC] HKUS\S-1-5-21-961389813-253083461-155772885-1003\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> NALEZENO
[RUN][SUSP UNIC] HKUS\S-1-5-21-961389813-253083461-155772885-1003\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> NALEZENO
[RUN][SUSP UNIC] HKUS\S-1-5-21-961389813-253083461-155772885-1003\[...]\Run : FLV Player (C:\Users\Vašek\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [x][x]) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 1 ¤¤¤
[V2][SUSP PATH] OFFICE2010ACT : C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [-] -> NALEZENO

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] 0d0554b7e271cd04c71ddd2179a073a0
[BSP] c365b41ed4c8bb6b2eb13c424f809152 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_12092013_211706.txt >>

[vašekp]

Mám jediný problém. Po zapnutí se nedá asi 5 minut připojit k síti, pokud zapnu noťas, počkám, tak potom po kliknutí na připojit k síti už je všechno v pořádku. Nevím kterou funkci, která by připojení k síti po startu blokovala, vypnout.

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[vašekp]

RogueKiller V8.7.11 _x64_ [Nov 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Vašek [Práva správce]
Mód : Odebrat -- Datum : 12/10/2013 21:26:23
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 3 ¤¤¤
[SUSP UNIC][DLL] explorer.exe -- C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\15871libfoxloader-x64.dll [x] -> ODEBRÁNO
[SUSP UNIC] szndesktop.exe -- C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe [7] -> SMAZÁNO [TermProc]
[SUSP UNIC] listicka-x64.exe -- C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe [7] -> SMAZÁNO [TermThr]

¤¤¤ ¤¤¤ Záznamy Registrů: : 12 ¤¤¤
[RUN][SUSP UNIC] HKCU\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> VYMAZÁNO
[RUN][SUSP UNIC] HKCU\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> VYMAZÁNO
[RUN][SUSP UNIC] HKCU\[...]\Run : FLV Player (C:\Users\Vašek\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [x][x]) -> VYMAZÁNO
[RUN][SUSP UNIC] HKUS\S-1-5-21-961389813-253083461-155772885-1003\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> [0x2] Systém nemůže nalézt uvedený soubor.
[RUN][SUSP UNIC] HKUS\S-1-5-21-961389813-253083461-155772885-1003\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Vašek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> [0x2] Systém nemůže nalézt uvedený soubor.
[RUN][SUSP UNIC] HKUS\S-1-5-21-961389813-253083461-155772885-1003\[...]\Run : FLV Player (C:\Users\Vašek\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [x][x]) -> [0x2] Systém nemůže nalézt uvedený soubor.
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 1 ¤¤¤
[V2][SUSP PATH] OFFICE2010ACT : C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [-] -> VYMAZÁNO

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] 0d0554b7e271cd04c71ddd2179a073a0
[BSP] c365b41ed4c8bb6b2eb13c424f809152 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_12102013_212623.txt >>
RKreport[0]_S_12092013_211706.txt;RKreport[0]_S_12102013_212552.txt

[vašekp]

21:47:31.0069 7076 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:47:31.0069 7076 UEFI system
21:47:32.0850 7076 ============================================================
21:47:32.0850 7076 Current date / time: 2013/12/10 21:47:32.0850
21:47:32.0850 7076 SystemInfo:
21:47:32.0850 7076
21:47:32.0850 7076 OS Version: 6.2.9200 ServicePack: 0.0
21:47:32.0850 7076 Product type: Workstation
21:47:32.0850 7076 ComputerName: IDEA-PC
21:47:32.0850 7076 UserName: Vašek
21:47:32.0850 7076 Windows directory: C:\windows
21:47:32.0850 7076 System windows directory: C:\windows
21:47:32.0850 7076 Running under WOW64
21:47:32.0850 7076 Processor architecture: Intel x64
21:47:32.0850 7076 Number of processors: 4
21:47:32.0850 7076 Page size: 0x1000
21:47:32.0850 7076 Boot type: Normal boot
21:47:32.0850 7076 ============================================================
21:47:33.0850 7076 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:47:33.0850 7076 ============================================================
21:47:33.0850 7076 \Device\Harddisk0\DR0:
21:47:33.0850 7076 GPT partitions:
21:47:33.0850 7076 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {EEA9EDE4-BB38-4757-AACE-AB6D1A82C0B4}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1F4000
21:47:33.0850 7076 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {E268E0B6-C67D-47A5-A4CA-AF271300232E}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
21:47:33.0850 7076 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {CF93875C-3A87-4A29-93EB-2A7184F5EFD5}, Name: Basic data partition, StartLBA 0x276800, BlocksNum 0x1F4000
21:47:33.0850 7076 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {951631C2-4DA5-40BA-B94B-0621149F28F9}, Name: Microsoft reserved partition, StartLBA 0x46A800, BlocksNum 0x40000
21:47:33.0850 7076 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {3F43F7F2-AEA7-4E28-BA11-F7C8F33568D7}, Name: Basic data partition, StartLBA 0x4AA800, BlocksNum 0x6E85C000
21:47:33.0850 7076 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {BF98CBBD-B540-4FE9-B76B-4CB06D1F9187}, Name: Basic data partition, StartLBA 0x6ED06800, BlocksNum 0x3200000
21:47:33.0850 7076 \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {162F9B86-CBA9-42ED-ACDE-AF43803854D3}, Name: Basic data partition, StartLBA 0x71F06800, BlocksNum 0x2800000
21:47:33.0850 7076 MBR partitions:
21:47:33.0850 7076 ============================================================
21:47:33.0881 7076 C: <-> \Device\Harddisk0\DR0\Partition5
21:47:33.0928 7076 D: <-> \Device\Harddisk0\DR0\Partition6
21:47:33.0928 7076 ============================================================
21:47:33.0928 7076 Initialize success
21:47:33.0928 7076 ============================================================
21:47:37.0272 5828 ============================================================
21:47:37.0272 5828 Scan started
21:47:37.0272 5828 Mode: Manual;
21:47:37.0272 5828 ============================================================
21:47:37.0741 5828 ================ Scan system memory ========================
21:47:37.0741 5828 System memory - ok
21:47:37.0741 5828 ================ Scan services =============================
21:47:37.0929 5828 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\windows\System32\drivers\1394ohci.sys
21:47:37.0929 5828 1394ohci - ok
21:47:37.0944 5828 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\windows\system32\drivers\3ware.sys
21:47:37.0960 5828 3ware - ok
21:47:37.0991 5828 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\windows\system32\drivers\ACPI.sys
21:47:37.0991 5828 ACPI - ok
21:47:38.0007 5828 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\windows\system32\Drivers\acpiex.sys
21:47:38.0022 5828 acpiex - ok
21:47:38.0038 5828 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\windows\System32\drivers\acpipagr.sys
21:47:38.0038 5828 acpipagr - ok
21:47:38.0054 5828 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\windows\System32\drivers\acpipmi.sys
21:47:38.0069 5828 AcpiPmi - ok
21:47:38.0085 5828 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\windows\System32\drivers\acpitime.sys
21:47:38.0085 5828 acpitime - ok
21:47:38.0116 5828 [ 3B42D95D20CD2AACDB0564471AE43ED7 ] ACPIVPC C:\windows\System32\drivers\AcpiVpc.sys
21:47:38.0116 5828 ACPIVPC - ok
21:47:38.0147 5828 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\windows\system32\drivers\adp94xx.sys
21:47:38.0147 5828 adp94xx - ok
21:47:38.0163 5828 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\windows\system32\drivers\adpahci.sys
21:47:38.0163 5828 adpahci - ok
21:47:38.0179 5828 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\windows\system32\drivers\adpu320.sys
21:47:38.0179 5828 adpu320 - ok
21:47:38.0226 5828 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\windows\System32\aelupsvc.dll
21:47:38.0226 5828 AeLookupSvc - ok
21:47:38.0272 5828 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\windows\system32\drivers\afd.sys
21:47:38.0288 5828 AFD - ok
21:47:38.0319 5828 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\windows\system32\drivers\agp440.sys
21:47:38.0319 5828 agp440 - ok
21:47:38.0351 5828 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\windows\System32\alg.exe
21:47:38.0351 5828 ALG - ok
21:47:38.0382 5828 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\windows\system32\AUInstallAgent.dll
21:47:38.0382 5828 AllUserInstallAgent - ok
21:47:38.0413 5828 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\windows\System32\drivers\amdk8.sys
21:47:38.0413 5828 AmdK8 - ok
21:47:38.0429 5828 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\windows\System32\drivers\amdppm.sys
21:47:38.0429 5828 AmdPPM - ok
21:47:38.0444 5828 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\windows\system32\drivers\amdsata.sys
21:47:38.0460 5828 amdsata - ok
21:47:38.0460 5828 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
21:47:38.0476 5828 amdsbs - ok
21:47:38.0491 5828 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\windows\system32\drivers\amdxata.sys
21:47:38.0491 5828 amdxata - ok
21:47:38.0491 5828 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\windows\system32\drivers\appid.sys
21:47:38.0491 5828 AppID - ok
21:47:38.0507 5828 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\windows\System32\appidsvc.dll
21:47:38.0507 5828 AppIDSvc - ok
21:47:38.0538 5828 [ 4F750B7EFCB6520AE01E01D082D7D476 ] Appinfo C:\windows\System32\appinfo.dll
21:47:38.0554 5828 Appinfo - ok
21:47:38.0569 5828 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\windows\system32\drivers\arc.sys
21:47:38.0569 5828 arc - ok
21:47:38.0601 5828 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\windows\system32\drivers\arcsas.sys
21:47:38.0601 5828 arcsas - ok
21:47:38.0616 5828 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
21:47:38.0616 5828 AsyncMac - ok
21:47:38.0632 5828 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\windows\system32\drivers\atapi.sys
21:47:38.0632 5828 atapi - ok
21:47:38.0663 5828 [ BCD7A47EF587DC00DD61D12D9C2D1E44 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
21:47:38.0694 5828 AudioEndpointBuilder - ok
21:47:38.0741 5828 [ 810F30FF8490ED5ED510621DF10DE320 ] Audiosrv C:\windows\System32\Audiosrv.dll
21:47:38.0772 5828 Audiosrv - ok
21:47:38.0788 5828 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\windows\System32\AxInstSV.dll
21:47:38.0788 5828 AxInstSV - ok
21:47:38.0819 5828 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
21:47:38.0835 5828 b06bdrv - ok
21:47:38.0851 5828 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\windows\System32\drivers\BasicDisplay.sys
21:47:38.0851 5828 BasicDisplay - ok
21:47:38.0866 5828 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\windows\System32\drivers\BasicRender.sys
21:47:38.0866 5828 BasicRender - ok
21:47:38.0898 5828 [ BAA00D80B2CFADFFAC8E552D06D4A1A2 ] bcbtums C:\windows\system32\drivers\bcbtums.sys
21:47:38.0898 5828 bcbtums - ok
21:47:39.0054 5828 [ 73D175B291DDE56AE609BA1422E236CC ] BCM43XX C:\windows\system32\DRIVERS\bcmwl63a.sys
21:47:39.0163 5828 BCM43XX - ok
21:47:39.0210 5828 [ B84DDDB667E1D5957050A458E9EE99C8 ] BcmBtRSupport C:\windows\system32\BtwRSupportService.exe
21:47:39.0241 5828 BcmBtRSupport - ok
21:47:39.0288 5828 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\windows\System32\bdesvc.dll
21:47:39.0366 5828 BDESVC - ok
21:47:39.0382 5828 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\windows\system32\drivers\Beep.sys
21:47:39.0382 5828 Beep - ok
21:47:39.0429 5828 [ 9E6A544F465C582AB42444A217CF04DC ] BFE C:\windows\System32\bfe.dll
21:47:39.0476 5828 BFE - ok
21:47:39.0523 5828 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\windows\System32\qmgr.dll
21:47:39.0538 5828 BITS - ok
21:47:39.0569 5828 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\windows\system32\DRIVERS\bowser.sys
21:47:39.0569 5828 bowser - ok
21:47:39.0616 5828 [ 038FA1B55531E7020DB705B42FCCE373 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
21:47:39.0648 5828 BrokerInfrastructure - ok
21:47:39.0679 5828 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\windows\System32\browser.dll
21:47:39.0694 5828 Browser - ok
21:47:39.0726 5828 [ F17DEEAC7D51D44CF1BFF8DD4F0A2B6D ] BthAvrcpTg C:\windows\System32\drivers\BthAvrcpTg.sys
21:47:39.0726 5828 BthAvrcpTg - ok
21:47:39.0741 5828 [ A8B20D852B07AE19A13B5D47EC4E4C3B ] BthEnum C:\windows\System32\drivers\BthEnum.sys
21:47:39.0757 5828 BthEnum - ok
21:47:39.0773 5828 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\windows\System32\drivers\bthhfenum.sys
21:47:39.0773 5828 BthHFEnum - ok
21:47:39.0788 5828 [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid C:\windows\System32\drivers\BthHFHid.sys
21:47:39.0788 5828 bthhfhid - ok
21:47:39.0835 5828 [ 42201C346F0B8C458E1E9CDE04D68A2C ] BthLEEnum C:\windows\system32\DRIVERS\BthLEEnum.sys
21:47:39.0851 5828 BthLEEnum - ok
21:47:39.0898 5828 [ EB4CBCB3288233CD964716D0A5E1CFC5 ] BTHMODEM C:\windows\System32\drivers\bthmodem.sys
21:47:39.0898 5828 BTHMODEM - ok
21:47:39.0913 5828 [ 091BB978E9504D0AD14586929431A957 ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
21:47:39.0913 5828 BthPan - ok
21:47:39.0976 5828 [ 13795CAA34239D97A7211E7F9D96E012 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
21:47:39.0991 5828 BTHPORT - ok
21:47:40.0038 5828 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\windows\system32\bthserv.dll
21:47:40.0038 5828 bthserv - ok
21:47:40.0085 5828 [ 1F715957F5236D30B6020A19A4271F6A ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
21:47:40.0101 5828 BTHUSB - ok
21:47:40.0132 5828 [ 79A17D36CCFDB421050F946FC3B533A2 ] btwampfl C:\windows\system32\drivers\btwampfl.sys
21:47:40.0132 5828 btwampfl - ok
21:47:40.0163 5828 [ 220B09B63C1FF7869ACDB8E574DDFC63 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
21:47:40.0163 5828 btwaudio - ok
21:47:40.0179 5828 [ F707AF3B94BE7AD7AA5F8886CCCADF80 ] btwavdt C:\windows\System32\drivers\btwavdt.sys
21:47:40.0179 5828 btwavdt - ok
21:47:40.0288 5828 [ B0AAB7F9638D1315760F5C48A24CFEAB ] btwdins C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
21:47:40.0319 5828 btwdins - ok
21:47:40.0335 5828 [ C3C8974D99F976C927165363855690CD ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
21:47:40.0335 5828 btwl2cap - ok
21:47:40.0351 5828 [ 54DCF9127FD6548F9C04B40635C59F77 ] btwrchid C:\windows\System32\drivers\btwrchid.sys
21:47:40.0351 5828 btwrchid - ok
21:47:40.0398 5828 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
21:47:40.0398 5828 cdfs - ok
21:47:40.0429 5828 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\windows\System32\drivers\cdrom.sys
21:47:40.0429 5828 cdrom - ok
21:47:40.0476 5828 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\windows\System32\certprop.dll
21:47:40.0476 5828 CertPropSvc - ok
21:47:40.0491 5828 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\windows\System32\drivers\circlass.sys
21:47:40.0491 5828 circlass - ok
21:47:40.0523 5828 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\windows\system32\drivers\CLFS.sys
21:47:40.0523 5828 CLFS - ok
21:47:40.0538 5828 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\windows\System32\drivers\CmBatt.sys
21:47:40.0538 5828 CmBatt - ok
21:47:40.0585 5828 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\windows\system32\Drivers\cng.sys
21:47:40.0585 5828 CNG - ok
21:47:40.0632 5828 [ 1F925AA990A6A446E8BA926B2D0A5201 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
21:47:40.0648 5828 CnxtHdAudService - ok
21:47:40.0679 5828 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\windows\System32\drivers\CompositeBus.sys
21:47:40.0679 5828 CompositeBus - ok
21:47:40.0679 5828 COMSysApp - ok
21:47:40.0694 5828 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\windows\system32\drivers\condrv.sys
21:47:40.0694 5828 condrv - ok
21:47:40.0788 5828 [ 815F3180B5117E42E422188E9CCC89C6 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
21:47:40.0788 5828 cphs - ok
21:47:40.0819 5828 cpuz136 - ok
21:47:40.0851 5828 [ 5CE2742F063731EC10C1B2EE386A2C08 ] CryptSvc C:\windows\system32\cryptsvc.dll
21:47:40.0882 5828 CryptSvc - ok
21:47:40.0913 5828 [ 48AED45DF009081AF3F5144F7D624674 ] CxAudMsg C:\windows\system32\CxAudMsg64.exe
21:47:40.0929 5828 CxAudMsg - ok
21:47:40.0960 5828 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\windows\system32\drivers\dam.sys
21:47:40.0960 5828 dam - ok
21:47:41.0007 5828 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\windows\system32\rpcss.dll
21:47:41.0038 5828 DcomLaunch - ok
21:47:41.0069 5828 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\windows\System32\defragsvc.dll
21:47:41.0069 5828 defragsvc - ok
21:47:41.0101 5828 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\windows\system32\das.dll
21:47:41.0116 5828 DeviceAssociationService - ok
21:47:41.0132 5828 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\windows\system32\umpnpmgr.dll
21:47:41.0148 5828 DeviceInstall - ok
21:47:41.0179 5828 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\windows\system32\Drivers\dfsc.sys
21:47:41.0179 5828 Dfsc - ok
21:47:41.0226 5828 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\windows\system32\dhcpcore.dll
21:47:41.0257 5828 Dhcp - ok
21:47:41.0257 5828 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\windows\system32\drivers\discache.sys
21:47:41.0257 5828 discache - ok
21:47:41.0273 5828 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\windows\system32\drivers\disk.sys
21:47:41.0273 5828 disk - ok
21:47:41.0273 5828 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\windows\System32\drivers\dmvsc.sys
21:47:41.0273 5828 dmvsc - ok
21:47:41.0304 5828 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\windows\System32\dnsrslvr.dll
21:47:41.0304 5828 Dnscache - ok
21:47:41.0335 5828 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\windows\System32\dot3svc.dll
21:47:41.0351 5828 dot3svc - ok
21:47:41.0351 5828 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\windows\system32\dps.dll
21:47:41.0351 5828 DPS - ok
21:47:41.0398 5828 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\windows\system32\drivers\drmkaud.sys
21:47:41.0398 5828 drmkaud - ok
21:47:41.0445 5828 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\windows\System32\DeviceSetupManager.dll
21:47:41.0445 5828 DsmSvc - ok
21:47:41.0476 5828 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\windows\System32\drivers\dtsoftbus01.sys
21:47:41.0491 5828 dtsoftbus01 - ok
21:47:41.0569 5828 [ AC47D05143E1E4D49D451E2A1784B2CB ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
21:47:41.0585 5828 DXGKrnl - ok
21:47:41.0632 5828 [ 651FBD69A9713D623D456A240F96179C ] e1iexpress C:\windows\system32\DRIVERS\e1i63x64.sys
21:47:41.0632 5828 e1iexpress - ok
21:47:41.0632 5828 EagleX64 - ok
21:47:41.0663 5828 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\windows\System32\eapsvc.dll
21:47:41.0663 5828 Eaphost - ok
21:47:41.0757 5828 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\windows\system32\drivers\evbda.sys
21:47:41.0788 5828 ebdrv - ok
21:47:41.0820 5828 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\windows\System32\lsass.exe
21:47:41.0820 5828 EFS - ok
21:47:41.0835 5828 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\windows\system32\drivers\EhStorClass.sys
21:47:41.0835 5828 EhStorClass - ok
21:47:41.0851 5828 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\windows\system32\drivers\EhStorTcgDrv.sys
21:47:41.0851 5828 EhStorTcgDrv - ok
21:47:41.0866 5828 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\windows\System32\drivers\errdev.sys
21:47:41.0866 5828 ErrDev - ok
21:47:41.0898 5828 [ 14D498FB39BB60D1A36160F22BB4CA8E ] ETD C:\windows\system32\DRIVERS\ETD.sys
21:47:41.0898 5828 ETD - ok
21:47:41.0945 5828 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\windows\system32\es.dll
21:47:41.0960 5828 EventSystem - ok
21:47:41.0976 5828 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\windows\system32\drivers\exfat.sys
21:47:41.0976 5828 exfat - ok
21:47:41.0991 5828 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\windows\system32\drivers\fastfat.sys
21:47:42.0007 5828 fastfat - ok
21:47:42.0038 5828 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\windows\system32\fxssvc.exe
21:47:42.0054 5828 Fax - ok
21:47:42.0085 5828 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\windows\System32\drivers\fdc.sys
21:47:42.0085 5828 fdc - ok
21:47:42.0101 5828 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\windows\system32\fdPHost.dll
21:47:42.0101 5828 fdPHost - ok
21:47:42.0116 5828 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\windows\system32\fdrespub.dll
21:47:42.0116 5828 FDResPub - ok
21:47:42.0148 5828 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\windows\system32\fhsvc.dll
21:47:42.0163 5828 fhsvc - ok
21:47:42.0179 5828 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
21:47:42.0195 5828 FileInfo - ok
21:47:42.0195 5828 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\windows\system32\drivers\filetrace.sys
21:47:42.0195 5828 Filetrace - ok
21:47:42.0210 5828 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\windows\System32\drivers\flpydisk.sys
21:47:42.0210 5828 flpydisk - ok
21:47:42.0226 5828 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\windows\system32\drivers\fltmgr.sys
21:47:42.0226 5828 FltMgr - ok
21:47:42.0288 5828 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\windows\system32\FntCache.dll
21:47:42.0320 5828 FontCache - ok
21:47:42.0413 5828 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:47:42.0413 5828 FontCache3.0.0.0 - ok
21:47:42.0460 5828 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\windows\system32\drivers\FsDepends.sys
21:47:42.0460 5828 FsDepends - ok
21:47:42.0460 5828 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
21:47:42.0476 5828 Fs_Rec - ok
21:47:42.0523 5828 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
21:47:42.0523 5828 fvevol - ok
21:47:42.0554 5828 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\windows\System32\drivers\fxppm.sys
21:47:42.0554 5828 FxPPM - ok
21:47:42.0570 5828 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
21:47:42.0570 5828 gagp30kx - ok
21:47:42.0616 5828 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\windows\System32\drivers\vmgencounter.sys
21:47:42.0616 5828 gencounter - ok
21:47:42.0632 5828 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\windows\system32\Drivers\msgpioclx.sys
21:47:42.0632 5828 GPIOClx0101 - ok
21:47:42.0695 5828 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\windows\System32\gpsvc.dll
21:47:42.0726 5828 gpsvc - ok
21:47:42.0820 5828 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:47:42.0835 5828 gupdate - ok
21:47:42.0835 5828 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:47:42.0835 5828 gupdatem - ok
21:47:42.0882 5828 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:47:42.0882 5828 gusvc - ok
21:47:42.0929 5828 [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:47:42.0945 5828 HdAudAddService - ok
21:47:42.0976 5828 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\windows\System32\drivers\HDAudBus.sys
21:47:42.0976 5828 HDAudBus - ok
21:47:43.0023 5828 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\windows\System32\drivers\HidBatt.sys
21:47:43.0023 5828 HidBatt - ok
21:47:43.0070 5828 [ 085F150D002B7F0153D3C06DDF33A143 ] HidBth C:\windows\System32\drivers\hidbth.sys
21:47:43.0085 5828 HidBth - ok
21:47:43.0101 5828 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\windows\System32\drivers\hidi2c.sys
21:47:43.0101 5828 hidi2c - ok
21:47:43.0117 5828 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\windows\System32\drivers\hidir.sys
21:47:43.0117 5828 HidIr - ok
21:47:43.0148 5828 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\windows\system32\hidserv.dll
21:47:43.0148 5828 hidserv - ok
21:47:43.0163 5828 [ 012C354B4AB48E9A7A657DF39E3A2073 ] HidUsb C:\windows\System32\drivers\hidusb.sys
21:47:43.0163 5828 HidUsb - ok
21:47:43.0195 5828 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\windows\system32\kmsvc.dll
21:47:43.0195 5828 hkmsvc - ok
21:47:43.0242 5828 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:47:43.0273 5828 HomeGroupListener - ok
21:47:43.0304 5828 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:47:43.0320 5828 HomeGroupProvider - ok
21:47:43.0335 5828 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
21:47:43.0351 5828 HpSAMD - ok
21:47:43.0382 5828 [ F4A91D985EB9D1D2717D538F3424603C ] HTTP C:\windows\system32\drivers\HTTP.sys
21:47:43.0413 5828 HTTP - ok
21:47:43.0429 5828 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
21:47:43.0429 5828 hwpolicy - ok
21:47:43.0445 5828 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\windows\System32\drivers\hyperkbd.sys
21:47:43.0445 5828 hyperkbd - ok
21:47:43.0460 5828 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\windows\system32\DRIVERS\HyperVideo.sys
21:47:43.0460 5828 HyperVideo - ok
21:47:43.0460 5828 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\windows\System32\drivers\i8042prt.sys
21:47:43.0460 5828 i8042prt - ok
21:47:43.0507 5828 [ 6C024B3AE192D72B216166802AF345DD ] iaStorA C:\windows\system32\drivers\iaStorA.sys
21:47:43.0507 5828 iaStorA - ok
21:47:43.0523 5828 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
21:47:43.0538 5828 iaStorV - ok
21:47:43.0663 5828 [ 348214F96642FD4FEF630DE021BA3540 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
21:47:43.0773 5828 igfx - ok
21:47:43.0789 5828 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\windows\system32\drivers\iirsp.sys
21:47:43.0804 5828 iirsp - ok
21:47:43.0851 5828 [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT C:\windows\System32\ikeext.dll
21:47:43.0898 5828 IKEEXT - ok
21:47:43.0945 5828 [ F5495B38BFB9149925F54F65AB40EFBF ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
21:47:43.0945 5828 IntcDAud - ok
21:47:44.0039 5828 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:47:44.0054 5828 Intel(R) Capability Licensing Service Interface - ok
21:47:44.0070 5828 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\windows\system32\drivers\intelide.sys
21:47:44.0070 5828 intelide - ok
21:47:44.0101 5828 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\windows\System32\drivers\intelppm.sys
21:47:44.0101 5828 intelppm - ok
21:47:44.0132 5828 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
21:47:44.0132 5828 IpFilterDriver - ok
21:47:44.0179 5828 [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc C:\windows\System32\iphlpsvc.dll
21:47:44.0195 5828 iphlpsvc - ok
21:47:44.0210 5828 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\windows\System32\drivers\IPMIDrv.sys
21:47:44.0210 5828 IPMIDRV - ok
21:47:44.0242 5828 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\windows\system32\drivers\ipnat.sys
21:47:44.0242 5828 IPNAT - ok
21:47:44.0257 5828 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\windows\system32\drivers\irenum.sys
21:47:44.0257 5828 IRENUM - ok
21:47:44.0273 5828 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\windows\system32\drivers\isapnp.sys
21:47:44.0273 5828 isapnp - ok
21:47:44.0304 5828 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\windows\System32\drivers\msiscsi.sys
21:47:44.0304 5828 iScsiPrt - ok
21:47:44.0382 5828 [ 78ABBE558F57144047F10A0F50FE4B2F ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:47:44.0382 5828 jhi_service - ok
21:47:44.0398 5828 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\windows\System32\drivers\kbdclass.sys
21:47:44.0398 5828 kbdclass - ok
21:47:44.0414 5828 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\windows\System32\drivers\kbdhid.sys
21:47:44.0414 5828 kbdhid - ok
21:47:44.0429 5828 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\windows\system32\DRIVERS\kdnic.sys
21:47:44.0429 5828 kdnic - ok
21:47:44.0445 5828 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\windows\system32\lsass.exe
21:47:44.0445 5828 KeyIso - ok
21:47:44.0476 5828 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
21:47:44.0492 5828 KSecDD - ok
21:47:44.0523 5828 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
21:47:44.0523 5828 KSecPkg - ok
21:47:44.0539 5828 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
21:47:44.0539 5828 ksthunk - ok
21:47:44.0586 5828 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\windows\system32\msdtckrm.dll
21:47:44.0601 5828 KtmRm - ok
21:47:44.0617 5828 [ CBD16721541EE334F6D623CE0B4003BF ] L1C C:\windows\system32\DRIVERS\L1C63x64.sys
21:47:44.0632 5828 L1C - ok
21:47:44.0664 5828 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\windows\system32\srvsvc.dll
21:47:44.0664 5828 LanmanServer - ok
21:47:44.0711 5828 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:47:44.0726 5828 LanmanWorkstation - ok
21:47:44.0742 5828 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys
21:47:44.0742 5828 LHDmgr - ok
21:47:44.0757 5828 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
21:47:44.0757 5828 lltdio - ok
21:47:44.0789 5828 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\windows\System32\lltdsvc.dll
21:47:44.0789 5828 lltdsvc - ok
21:47:44.0804 5828 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\windows\System32\lmhsvc.dll
21:47:44.0804 5828 lmhosts - ok
21:47:44.0836 5828 [ 2C24DC448DBE8DB9BE1441B824C57E79 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:47:44.0836 5828 LMS - ok
21:47:44.0976 5828 [ 649982D990F825800FAA8BDAD98A1C30 ] LSCWinService C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
21:47:44.0992 5828 LSCWinService - ok
21:47:45.0023 5828 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
21:47:45.0023 5828 LSI_SAS - ok
21:47:45.0054 5828 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
21:47:45.0054 5828 LSI_SAS2 - ok
21:47:45.0070 5828 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
21:47:45.0070 5828 LSI_SCSI - ok
21:47:45.0086 5828 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\windows\system32\drivers\lsi_sss.sys
21:47:45.0086 5828 LSI_SSS - ok
21:47:45.0132 5828 [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM C:\windows\System32\lsm.dll
21:47:45.0132 5828 LSM - ok
21:47:45.0164 5828 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\windows\system32\drivers\luafv.sys
21:47:45.0164 5828 luafv - ok
21:47:45.0195 5828 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
21:47:45.0195 5828 MBAMProtector - ok
21:47:45.0226 5828 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:47:45.0242 5828 MBAMScheduler - ok
21:47:45.0273 5828 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:47:45.0289 5828 MBAMService - ok
21:47:45.0320 5828 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\windows\system32\drivers\megasas.sys
21:47:45.0320 5828 megasas - ok
21:47:45.0351 5828 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
21:47:45.0367 5828 MegaSR - ok
21:47:45.0398 5828 [ 2BB3EAE2EA641515D4B205CAB29E1624 ] MEIx64 C:\windows\System32\drivers\HECIx64.sys
21:47:45.0398 5828 MEIx64 - ok
21:47:45.0445 5828 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\windows\system32\mmcss.dll
21:47:45.0445 5828 MMCSS - ok
21:47:45.0461 5828 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\windows\system32\drivers\modem.sys
21:47:45.0476 5828 Modem - ok
21:47:45.0492 5828 [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor C:\windows\System32\drivers\monitor.sys
21:47:45.0492 5828 monitor - ok
21:47:45.0492 5828 [ 618446B98C79776654340CE27C73485E ] mouclass C:\windows\System32\drivers\mouclass.sys
21:47:45.0492 5828 mouclass - ok
21:47:45.0523 5828 [ C0ADEBED913295803B579ED288936CBB ] mouhid C:\windows\System32\drivers\mouhid.sys
21:47:45.0523 5828 mouhid - ok
21:47:45.0523 5828 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\windows\system32\drivers\mountmgr.sys
21:47:45.0523 5828 mountmgr - ok
21:47:45.0554 5828 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
21:47:45.0570 5828 mpsdrv - ok
21:47:45.0601 5828 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\windows\system32\mpssvc.dll
21:47:45.0617 5828 MpsSvc - ok
21:47:45.0633 5828 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
21:47:45.0633 5828 MRxDAV - ok
21:47:45.0679 5828 [ 93179D48066918323628CB016D8C94DC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
21:47:45.0679 5828 mrxsmb - ok
21:47:45.0711 5828 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
21:47:45.0711 5828 mrxsmb10 - ok
21:47:45.0726 5828 [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
21:47:45.0726 5828 mrxsmb20 - ok
21:47:45.0758 5828 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\windows\system32\DRIVERS\bridge.sys
21:47:45.0758 5828 MsBridge - ok
21:47:45.0773 5828 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\windows\System32\msdtc.exe
21:47:45.0773 5828 MSDTC - ok
21:47:45.0773 5828 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\windows\system32\drivers\Msfs.sys
21:47:45.0773 5828 Msfs - ok
21:47:45.0804 5828 [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32 C:\windows\System32\drivers\msgpiowin32.sys
21:47:45.0804 5828 msgpiowin32 - ok
21:47:45.0836 5828 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
21:47:45.0836 5828 mshidkmdf - ok
21:47:45.0867 5828 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\windows\System32\drivers\mshidumdf.sys
21:47:45.0867 5828 mshidumdf - ok
21:47:45.0867 5828 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\windows\system32\drivers\msisadrv.sys
21:47:45.0867 5828 msisadrv - ok
21:47:45.0898 5828 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\windows\system32\iscsiexe.dll
21:47:45.0914 5828 MSiSCSI - ok
21:47:45.0914 5828 msiserver - ok
21:47:45.0929 5828 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
21:47:45.0929 5828 MSKSSRV - ok
21:47:45.0945 5828 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\windows\system32\DRIVERS\mslldp.sys
21:47:45.0945 5828 MsLldp - ok
21:47:45.0961 5828 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
21:47:45.0976 5828 MSPCLOCK - ok
21:47:45.0976 5828 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
21:47:45.0976 5828 MSPQM - ok
21:47:45.0992 5828 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
21:47:45.0992 5828 MsRPC - ok
21:47:46.0008 5828 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\windows\System32\drivers\mssmbios.sys
21:47:46.0008 5828 mssmbios - ok
21:47:46.0023 5828 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
21:47:46.0023 5828 MSTEE - ok
21:47:46.0023 5828 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\windows\System32\drivers\MTConfig.sys
21:47:46.0023 5828 MTConfig - ok
21:47:46.0039 5828 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\windows\system32\Drivers\mup.sys
21:47:46.0039 5828 Mup - ok
21:47:46.0054 5828 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\windows\system32\drivers\mvumis.sys
21:47:46.0054 5828 mvumis - ok
21:47:46.0086 5828 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\windows\system32\qagentRT.dll
21:47:46.0101 5828 napagent - ok
21:47:46.0117 5828 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
21:47:46.0133 5828 NativeWifiP - ok
21:47:46.0148 5828 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\windows\System32\ncasvc.dll
21:47:46.0164 5828 NcaSvc - ok
21:47:46.0164 5828 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\windows\System32\NcdAutoSetup.dll
21:47:46.0164 5828 NcdAutoSetup - ok
21:47:46.0211 5828 [ 03CFE4108D1DE16D6C59455B5C73319C ] NDIS C:\windows\system32\drivers\ndis.sys
21:47:46.0226 5828 NDIS - ok
21:47:46.0242 5828 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
21:47:46.0242 5828 NdisCap - ok
21:47:46.0242 5828 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\windows\system32\DRIVERS\NdisImPlatform.sys
21:47:46.0242 5828 NdisImPlatform - ok
21:47:46.0273 5828 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
21:47:46.0289 5828 NdisTapi - ok
21:47:46.0289 5828 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
21:47:46.0289 5828 Ndisuio - ok
21:47:46.0289 5828 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
21:47:46.0289 5828 NdisWan - ok
21:47:46.0304 5828 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\windows\system32\DRIVERS\ndiswan.sys