PC-HELP.CZ

České diskuzní fórum o počítačích
https://pc-help.cnews.cz/

Můj první Log

https://pc-help.cnews.cz/viewtopic.php?f=70&t=135446

Stránka 1 z 2

Můj první Log

Napsal: 03 črc 2014 09:08
od fiddel
AdWCleaner
-------------------------
# AdwCleaner v3.214 - Report created 03/07/2014 at 08:41:41
# Updated 29/06/2014 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : Vojtěch - VOJTĚCH-PC
# Running from : C:\Users\Vojtěch\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Trymedia
Folder Found : C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\cmaiofennmphjldldcpphcechfnnohja
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\Trymedia Systems

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16555


-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\Vojtěch\AppData\Roaming\Mozilla\Firefox\Profiles\boqllsxu.default\prefs.js ]

Line Found : user_pref("extensions.trusted-ads.ExLst", "{\"u\":{\"v\":\"1.88\",\"d\":\"070114\"},\"h\":{\"pogo.com\":{\"p\":[{\"e\":\"/.*/\",\"r\":[\"/connect\\\\.facebook\\\\.net\\\\/en_US\\\\/all\\\\.js$/i\"]}]}[...]
Line Found : user_pref("extensions.trusted-ads.list_api", "{\"r\":[\"hxxp://a1supplements.com/\",\"hxxp://aactionair.net/\",\"hxxp://airservicesrefrigeration.com/\",\"hxxp://ajperri.com/\",\"hxxp://all-statehvac.c[...]
Line Found : user_pref("extensions.trusted-ads.serpInject", "{\"u\":{\"v\":\"2.72\",\"d\":\"061714\"},\"l\":\"hxxp://search.adtrustmedia.com/search_safecontent.php\",\"e\":[{\"u\":\"hxxp://ads.adtrustmedia.com/con[...]
Line Found : user_pref("extensions.trusted-ads.serp_mywebsearch", "\"%2F*!%20serp-mywebsearch%20-%20v0.1.10%20-%202014-04-07%2018%3A21%3A58%20*%2F%0D%0Avar%20u%20%3D%20%7B%7D%3B%0A%0Avar%20Util%20%3D%20%7B%0A%09de[...]

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found [Extension] : cmaiofennmphjldldcpphcechfnnohja

*************************

AdwCleaner[R0].txt - [2102 octets] - [03/07/2014 08:41:41]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2162 octets] ##########
-------------------------------------------------------------------------------------------------------------------------------------
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 3.7.2014
Čas skenování: 8:53:54
Protokol: malware.txt
Správce: Ano

Verze: 2.00.2.1012
Databáze malwaru: v2014.07.02.08
Databáze rootkitů: v2014.02.20.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Self-protection: Vypnuto

OS: Windows Vista Service Pack 2
CPU: x86
Souborový systém: NTFS
Uživatel: VojtÄ?ch

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 279788
Uplynulý čas: 10 min, 59 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Varovat
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 2
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\bitstreams, , [f9c767337209ea4c9ccd168325dd847c],

Soubory: 15
PUP.Optional.Bitcoin, C:\Windows\System32\acumncdbuhe.exe, , [d2eebedce9923df944a377227a87d32d],
PUP.Optional.Bitcoin, C:\Windows\System32\acumncpavr.exe, , [0ab65c3ec2b98caa44a33069ab5611ef],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\diablo130302.cl, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\diakgcn121016.cl, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\libcurl-4.dll, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\libeay32.dll, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\libidn-11.dll, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\librtmp.dll, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\libssh2.dll, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\phatk121016.cl, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\poclbm130302.cl, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\scrypt130511.cl, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\ssleay32.dll, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\zlib1.dll, , [f9c767337209ea4c9ccd168325dd847c],
Trojan.Agent.BCM, C:\Windows\inf\mncxfeaxp\bitstreams\fpgaminer_top_fixed7_197MHz.ncd, , [f9c767337209ea4c9ccd168325dd847c],

Fyzické sektory: 0
(No malicious items detected)


(end)
--------------------------------------------------------------------------------------
:roll: :woot:

Re: Můj první Log

Napsal: 03 črc 2014 09:38
od jaro3
A hned takových nákaz..


Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Vlož log z HJT:
viewtopic.php?f=70&t=5119

Re: Můj první Log

Napsal: 03 črc 2014 09:42
od fiddel
Tady je ten z AdwCeaner

# AdwCleaner v3.214 - Report created 03/07/2014 at 09:10:15
# Updated 29/06/2014 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : Vojtěch - VOJTĚCH-PC
# Running from : C:\Users\Vojtěch\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cmaiofennmphjldldcpphcechfnnohja
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Trymedia Systems

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16555


-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\Vojtěch\AppData\Roaming\Mozilla\Firefox\Profiles\boqllsxu.default\prefs.js ]

Line Deleted : user_pref("extensions.trusted-ads.ExLst", "{\"u\":{\"v\":\"1.88\",\"d\":\"070114\"},\"h\":{\"pogo.com\":{\"p\":[{\"e\":\"/.*/\",\"r\":[\"/connect\\\\.facebook\\\\.net\\\\/en_US\\\\/all\\\\.js$/i\"]}]}[...]
Line Deleted : user_pref("extensions.trusted-ads.list_api", "{\"r\":[\"hxxp://a1supplements.com/\",\"hxxp://aactionair.net/\",\"hxxp://airservicesrefrigeration.com/\",\"hxxp://ajperri.com/\",\"hxxp://all-statehvac.c[...]
Line Deleted : user_pref("extensions.trusted-ads.serpInject", "{\"u\":{\"v\":\"2.72\",\"d\":\"061714\"},\"l\":\"hxxp://search.adtrustmedia.com/search_safecontent.php\",\"e\":[{\"u\":\"hxxp://ads.adtrustmedia.com/con[...]
Line Deleted : user_pref("extensions.trusted-ads.serp_mywebsearch", "\"%2F*!%20serp-mywebsearch%20-%20v0.1.10%20-%202014-04-07%2018%3A21%3A58%20*%2F%0D%0Avar%20u%20%3D%20%7B%7D%3B%0A%0Avar%20Util%20%3D%20%7B%0A%09de[...]

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja

*************************

AdwCleaner[R0].txt - [2242 octets] - [03/07/2014 08:41:41]
AdwCleaner[S0].txt - [2187 octets] - [03/07/2014 09:10:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2247 octets] ##########
---------------------------------------------------------------------------------------------------------------------------------------------------------
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows Vista (TM) Home Premium x86
Ran by VojtŘch on źt 03.07.2014 at 9:43:06,14
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\adtrustmedia"
Successfully deleted: [Folder] "C:\Program Files\adtrustmedia"



~~~ FireFox

Successfully deleted the following from C:\Users\VojtŘch\AppData\Roaming\mozilla\firefox\profiles\boqllsxu.default\prefs.js

user_pref("extensions.trusted-ads.ExLst", "{\"u\":{\"v\":\"1.88\",\"d\":\"070114\"},\"h\":{\"pogo.com\":{\"p\":[{\"e\":\"/.*/\",\"r\":[\"/connect\\\\.facebook\\\\.net\\\\/en_U
user_pref("extensions.trusted-ads.TrustAd", "{\"r\":[{\"t\":\"FQDN\",\"r\":\"trustedads.adtrustmedia.com\",\"c\":[{\"i\":\"1\",\"s\":[\"www.publipt.com\",\"www.ibi4ubannerx.co
user_pref("extensions.trusted-ads.serpInject", "{\"u\":{\"v\":\"2.72\",\"d\":\"061714\"},\"l\":\"hxxp://search.adtrustmedia.com/search_safecontent.php\",\"e\":[{\"u\":\"hxxp:/
user_pref("extensions.trusted-ads.serp_mywebsearch", "\"%2F*!%20serp-mywebsearch%20-%20v0.1.10%20-%202014-04-07%2018%3A21%3A58%20*%2F%0D%0Avar%20u%20%3D%20%7B%7D%3B%0A%0Avar%2
Emptied folder: C:\Users\VojtŘch\AppData\Roaming\mozilla\firefox\profiles\boqllsxu.default\minidumps [71 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 03.07.2014 at 9:48:26,49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Můj první Log

Napsal: 03 črc 2014 18:29
od jaro3
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Re: Můj první Log

Napsal: 03 črc 2014 22:35
od fiddel
Krok 5 v Hijack


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:31:35, on 3.7.2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16555)

FIREFOX: 30.0 (cs)
Boot mode: Normal

Running processes:
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Vojtěch\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [GarenaPlus] "C:\Program Files\Garena Plus\GarenaMessenger.exe" -autolaunch
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{C85C1DFD-3CE2-43AF-955F-118F543AA396}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CCS\Services\Tcpip\..\{E74506E1-91C5-4442-8710-BB89C1465AE4}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SmartFaceVWatchSrv - Toshiba - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: Notebook Performance Tuning Service (TempoMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TempoSVC.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 5826 bytes

Re: Můj první Log

Napsal: 03 črc 2014 22:37
od fiddel
jaro3 píše:
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.


Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 3.7.2014
Čas skenování: 22:17:00
Protokol: stopmal.txt
Správce: Ano

Verze: 2.00.2.1012
Databáze malwaru: v2014.07.03.06
Databáze rootkitů: v2014.07.03.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Self-protection: Vypnuto

OS: Windows Vista Service Pack 2
CPU: x86
Souborový systém: NTFS
Uživatel: VojtÄ?ch

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 280370
Uplynulý čas: 10 min, 54 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Varovat
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 0
(No malicious items detected)

Soubory: 0
(No malicious items detected)

Fyzické sektory: 0
(No malicious items detected)


(end)

Re: Můj první Log

Napsal: 04 črc 2014 10:13
od jaro3
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Re: Můj první Log

Napsal: 04 črc 2014 11:35
od fiddel
RogueKiller V9.1.0.0 [Jun 23 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : Vojtěch [Práva správce]
Mód : Kontrola -- Datum : 07/04/2014 11:33:51

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 9 ¤¤¤
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{E74506E1-91C5-4442-8710-BB89C1465AE4} | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{E74506E1-91C5-4442-8710-BB89C1465AE4} | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet003\Services\Tcpip\Parameters\Interfaces\{E74506E1-91C5-4442-8710-BB89C1465AE4} | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-817904551-3804443581-2873670297-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-817904551-3804443581-2873670297-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost

¤¤¤ Antirootkit : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK3252GSX ATA Device +++++
--- User ---
[MBR] e04db79f89d4d860d11f79838d6961f3
[BSP] bf2346142b5d0b1c4197500ee8e63228 : HP MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 3074048 | Size: 153000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 316418048 | Size: 150743 MB
User = LL1 ... OK
User = LL2 ... OK

Re: Můj první Log

Napsal: 04 črc 2014 12:23
od Orcus
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva" a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

====================================================

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.

Re: Můj první Log

Napsal: 04 črc 2014 13:29
od fiddel
13:02:53.0584 0x10cc TDSS rootkit removing tool 3.0.0.39 Jun 5 2014 20:35:54
13:02:57.0632 0x10cc ============================================================
13:02:57.0632 0x10cc Current date / time: 2014/07/04 13:02:57.0632
13:02:57.0633 0x10cc SystemInfo:
13:02:57.0633 0x10cc
13:02:57.0633 0x10cc OS Version: 6.0.6002 ServicePack: 2.0
13:02:57.0633 0x10cc Product type: Workstation
13:02:57.0633 0x10cc ComputerName: VOJTĚCH-PC
13:02:57.0633 0x10cc UserName: Vojtěch
13:02:57.0633 0x10cc Windows directory: C:\Windows
13:02:57.0633 0x10cc System windows directory: C:\Windows
13:02:57.0634 0x10cc Processor architecture: Intel x86
13:02:57.0634 0x10cc Number of processors: 2
13:02:57.0634 0x10cc Page size: 0x1000
13:02:57.0634 0x10cc Boot type: Normal boot
13:02:57.0634 0x10cc ============================================================
13:02:59.0929 0x10cc KLMD registered as C:\Windows\system32\drivers\48003583.sys
13:03:00.0183 0x10cc System UUID: {045FDFBF-B455-7850-DDCA-2FFB7EA7E1E1}
13:03:01.0113 0x10cc Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:03:01.0131 0x10cc ============================================================
13:03:01.0131 0x10cc \Device\Harddisk0\DR0:
13:03:01.0131 0x10cc MBR partitions:
13:03:01.0131 0x10cc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x12AD4000
13:03:01.0131 0x10cc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x12DC2800, BlocksNum 0x1266B800
13:03:01.0131 0x10cc ============================================================
13:03:01.0171 0x10cc C: <-> \Device\Harddisk0\DR0\Partition1
13:03:01.0320 0x10cc E: <-> \Device\Harddisk0\DR0\Partition2
13:03:01.0320 0x10cc ============================================================
13:03:01.0320 0x10cc Initialize success
13:03:01.0321 0x10cc ============================================================
13:03:07.0276 0x1284 ============================================================
13:03:07.0276 0x1284 Scan started
13:03:07.0277 0x1284 Mode: Manual;
13:03:07.0277 0x1284 ============================================================
13:03:07.0277 0x1284 KSN ping started
13:03:21.0210 0x1284 KSN ping finished: true
13:03:22.0352 0x1284 ================ Scan system memory ========================
13:03:22.0352 0x1284 System memory - ok
13:03:22.0352 0x1284 ================ Scan services =============================
13:03:23.0097 0x1284 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
13:03:23.0109 0x1284 ACPI - ok
13:03:23.0216 0x1284 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
13:03:23.0225 0x1284 adp94xx - ok
13:03:23.0260 0x1284 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
13:03:23.0267 0x1284 adpahci - ok
13:03:23.0291 0x1284 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
13:03:23.0294 0x1284 adpu160m - ok
13:03:23.0336 0x1284 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
13:03:23.0340 0x1284 adpu320 - ok
13:03:23.0371 0x1284 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:03:23.0373 0x1284 AeLookupSvc - ok
13:03:23.0417 0x1284 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
13:03:23.0423 0x1284 AFD - ok
13:03:23.0592 0x1284 [ 5D97943C128ED756D1B0A08302C1B1F8, BE7C390B12EB38B0174C55F5459ECA44DC0521277475EF8E6C59E0DE407096EA ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
13:03:23.0612 0x1284 AgereSoftModem - ok
13:03:23.0646 0x1284 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:03:23.0648 0x1284 agp440 - ok
13:03:23.0688 0x1284 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
13:03:23.0691 0x1284 aic78xx - ok
13:03:23.0722 0x1284 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
13:03:23.0736 0x1284 ALG - ok
13:03:23.0759 0x1284 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
13:03:23.0760 0x1284 aliide - ok
13:03:23.0777 0x1284 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
13:03:23.0780 0x1284 amdagp - ok
13:03:23.0794 0x1284 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
13:03:23.0795 0x1284 amdide - ok
13:03:23.0832 0x1284 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
13:03:23.0834 0x1284 AmdK7 - ok
13:03:23.0852 0x1284 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
13:03:23.0854 0x1284 AmdK8 - ok
13:03:23.0911 0x1284 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
13:03:23.0913 0x1284 Appinfo - ok
13:03:23.0970 0x1284 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
13:03:23.0973 0x1284 arc - ok
13:03:24.0022 0x1284 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
13:03:24.0025 0x1284 arcsas - ok
13:03:24.0194 0x1284 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
13:03:24.0213 0x1284 aspnet_state - ok
13:03:24.0240 0x1284 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:03:24.0241 0x1284 AsyncMac - ok
13:03:24.0278 0x1284 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
13:03:24.0280 0x1284 atapi - ok
13:03:24.0424 0x1284 [ 69660AF85F35A658D258FC8567318328, DCDC7A31B1E4D9371904CB4A829454196E7BDBB61C0E645481BCD65D86C9E205 ] athr C:\Windows\system32\DRIVERS\athr.sys
13:03:24.0478 0x1284 athr - ok
13:03:24.0629 0x1284 [ 54D715AF597C06E87418C50F481BDD2C, F653C6BFF234756E207A660FD49F7B250F4C80DACE93FEC2BF901665EE00CFEB ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
13:03:24.0643 0x1284 Ati External Event Utility - ok
13:03:24.0955 0x1284 [ BE4D8FDC6B2598C46B2B5E6E4FBAAFC5, FBC65B623DB48EAA3206FEC22011A3867547228DC0D2E441EA556A1F6EF079AD ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:03:25.0042 0x1284 atikmdag - ok
13:03:25.0138 0x1284 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:03:25.0149 0x1284 AudioEndpointBuilder - ok
13:03:25.0164 0x1284 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
13:03:25.0171 0x1284 Audiosrv - ok
13:03:25.0339 0x1284 [ 32A5DEFDDC3562BF89D73586F5915B34, 69C501A39EEBB7FD3BAB0F21184288E585750643A0B7D15CB4CC1FCAA0B6ADC5 ] Autodesk Licensing Service C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
13:03:25.0342 0x1284 Autodesk Licensing Service - ok
13:03:25.0399 0x1284 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
13:03:25.0400 0x1284 Beep - ok
13:03:25.0460 0x1284 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
13:03:25.0473 0x1284 BFE - ok
13:03:25.0539 0x1284 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
13:03:25.0581 0x1284 BITS - ok
13:03:25.0639 0x1284 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
13:03:25.0641 0x1284 blbdrive - ok
13:03:25.0692 0x1284 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:03:25.0694 0x1284 bowser - ok
13:03:25.0738 0x1284 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
13:03:25.0739 0x1284 BrFiltLo - ok
13:03:25.0763 0x1284 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
13:03:25.0764 0x1284 BrFiltUp - ok
13:03:25.0806 0x1284 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
13:03:25.0811 0x1284 Browser - ok
13:03:25.0861 0x1284 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
13:03:25.0864 0x1284 Brserid - ok
13:03:25.0893 0x1284 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
13:03:25.0896 0x1284 BrSerWdm - ok
13:03:25.0924 0x1284 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
13:03:25.0948 0x1284 BrUsbMdm - ok
13:03:25.0977 0x1284 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
13:03:25.0979 0x1284 BrUsbSer - ok
13:03:26.0002 0x1284 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
13:03:26.0004 0x1284 BTHMODEM - ok
13:03:26.0049 0x1284 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:03:26.0052 0x1284 cdfs - ok
13:03:26.0101 0x1284 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:03:26.0104 0x1284 cdrom - ok
13:03:26.0154 0x1284 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
13:03:26.0158 0x1284 CertPropSvc - ok
13:03:26.0210 0x1284 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
13:03:26.0213 0x1284 circlass - ok
13:03:26.0269 0x1284 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
13:03:26.0281 0x1284 CLFS - ok
13:03:26.0385 0x1284 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:03:26.0389 0x1284 clr_optimization_v2.0.50727_32 - ok
13:03:26.0433 0x1284 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:03:26.0439 0x1284 clr_optimization_v4.0.30319_32 - ok
13:03:26.0487 0x1284 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:03:26.0489 0x1284 CmBatt - ok
13:03:26.0523 0x1284 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:03:26.0525 0x1284 cmdide - ok
13:03:26.0553 0x1284 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:03:26.0556 0x1284 Compbatt - ok
13:03:26.0565 0x1284 COMSysApp - ok
13:03:26.0666 0x1284 [ D10D01B2DFCD8D2F32A32ED29E8DA1C2, D5F89AFF51D690494A70F0E17CB5609DB81F7C9BACD2952D411C7959E90BEEE3 ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
13:03:26.0668 0x1284 ConfigFree Service - ok
13:03:26.0675 0x1284 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
13:03:26.0676 0x1284 crcdisk - ok
13:03:26.0699 0x1284 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
13:03:26.0700 0x1284 Crusoe - ok
13:03:26.0773 0x1284 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:03:26.0777 0x1284 CryptSvc - ok
13:03:26.0841 0x1284 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:03:26.0861 0x1284 DcomLaunch - ok
13:03:26.0896 0x1284 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:03:26.0898 0x1284 DfsC - ok
13:03:27.0154 0x1284 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
13:03:27.0212 0x1284 DFSR - ok
13:03:27.0289 0x1284 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
13:03:27.0297 0x1284 Dhcp - ok
13:03:27.0339 0x1284 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
13:03:27.0341 0x1284 disk - ok
13:03:27.0391 0x1284 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:03:27.0395 0x1284 Dnscache - ok
13:03:27.0455 0x1284 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
13:03:27.0461 0x1284 dot3svc - ok
13:03:27.0496 0x1284 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
13:03:27.0501 0x1284 DPS - ok
13:03:27.0540 0x1284 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:03:27.0541 0x1284 drmkaud - ok
13:03:27.0637 0x1284 [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:03:27.0654 0x1284 DXGKrnl - ok
13:03:27.0698 0x1284 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
13:03:27.0702 0x1284 E1G60 - ok
13:03:27.0755 0x1284 [ CECB58460674339202F79BA1345D8527, 1032E726D64C3432704FE90A7B63A37E854A83389AD3A997C0916628C452F71F ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
13:03:27.0761 0x1284 eamonm - ok
13:03:27.0793 0x1284 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
13:03:27.0797 0x1284 EapHost - ok
13:03:27.0853 0x1284 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
13:03:27.0857 0x1284 Ecache - ok
13:03:27.0901 0x1284 [ C79916F203E1A2CBBE99F22D6E5D21DA, 84749E7067927AD437D38BEFEA12B40C3E849216F26338F707694918206C4C2A ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
13:03:27.0905 0x1284 ehdrv - ok
13:03:27.0981 0x1284 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:03:27.0994 0x1284 ehRecvr - ok
13:03:28.0040 0x1284 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
13:03:28.0045 0x1284 ehSched - ok
13:03:28.0095 0x1284 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
13:03:28.0131 0x1284 ehstart - ok
13:03:28.0433 0x1284 [ F1DB56A7C59278DC68DE7DBFE9F6C73B, B3E07DCF52D227BD4C22EDE5B895BC338A8F1EA4C86C1358EAC065454D80E76C ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
13:03:28.0492 0x1284 ekrn - ok
13:03:28.0573 0x1284 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:03:28.0580 0x1284 elxstor - ok
13:03:28.0684 0x1284 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
13:03:28.0711 0x1284 EMDMgmt - ok
13:03:28.0758 0x1284 [ 4B6B2C930CD076F8BDEE683512EE05E8, 37C1182044047FBB98E208C8CFF36BDB47F1617A57F7F7B2331E0F7BDD0A653D ] epfw C:\Windows\system32\DRIVERS\epfw.sys
13:03:28.0762 0x1284 epfw - ok
13:03:28.0815 0x1284 [ BDC856F11F2A8F4C9B4A59B29A33569B, ADD91A760F57C73FE6574EABBCB2F3F897A45C8DD0DE26BBFF2CCD5891FDBA6C ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
13:03:28.0816 0x1284 EpfwLWF - ok
13:03:28.0852 0x1284 [ 6EB4485DDAFCA013D35ED4E158ADE05B, FCB62340EF7E4472BDA04C97FB9DD68E79A06606CFB6C1CE93DDFFFDE1E44D06 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
13:03:28.0854 0x1284 epfwwfp - ok
13:03:28.0903 0x1284 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:03:28.0904 0x1284 ErrDev - ok
13:03:29.0015 0x1284 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
13:03:29.0038 0x1284 EventSystem - ok
13:03:29.0080 0x1284 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
13:03:29.0084 0x1284 exfat - ok
13:03:29.0122 0x1284 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:03:29.0127 0x1284 fastfat - ok
13:03:29.0191 0x1284 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:03:29.0192 0x1284 fdc - ok
13:03:29.0227 0x1284 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
13:03:29.0229 0x1284 fdPHost - ok
13:03:29.0246 0x1284 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
13:03:29.0267 0x1284 FDResPub - ok
13:03:29.0289 0x1284 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:03:29.0292 0x1284 FileInfo - ok
13:03:29.0320 0x1284 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:03:29.0322 0x1284 Filetrace - ok
13:03:29.0354 0x1284 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:03:29.0356 0x1284 flpydisk - ok
13:03:29.0402 0x1284 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:03:29.0408 0x1284 FltMgr - ok
13:03:29.0503 0x1284 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
13:03:29.0548 0x1284 FontCache - ok
13:03:29.0596 0x1284 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:03:29.0599 0x1284 FontCache3.0.0.0 - ok
13:03:29.0632 0x1284 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:03:29.0634 0x1284 Fs_Rec - ok
13:03:29.0674 0x1284 [ CBC22823628544735625B280665E434E, 6B5A3FE469CACE241F3332E6E6B3D0ACB3C2EB3DF0297C744F5A155992F0B411 ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
13:03:29.0675 0x1284 FwLnk - ok
13:03:29.0734 0x1284 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:03:29.0738 0x1284 gagp30kx - ok
13:03:29.0764 0x1284 GGSAFERDriver - ok
13:03:29.0828 0x1284 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
13:03:29.0861 0x1284 gpsvc - ok
13:03:29.0948 0x1284 [ 751C1D2CA2ABF4A9F5A6B8D7D45B907C, 8F62DF65DB30770448E297D000B570683DEA454A5D84B5BCB1478D91030212DB ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
13:03:29.0955 0x1284 gusvc - ok
13:03:30.0007 0x1284 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:03:30.0016 0x1284 HdAudAddService - ok
13:03:30.0064 0x1284 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:03:30.0077 0x1284 HDAudBus - ok
13:03:30.0102 0x1284 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:03:30.0103 0x1284 HidBth - ok
13:03:30.0129 0x1284 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
13:03:30.0130 0x1284 HidIr - ok
13:03:30.0167 0x1284 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
13:03:30.0179 0x1284 hidserv - ok
13:03:30.0213 0x1284 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:03:30.0214 0x1284 HidUsb - ok
13:03:30.0247 0x1284 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
13:03:30.0251 0x1284 hkmsvc - ok
13:03:30.0276 0x1284 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
13:03:30.0278 0x1284 HpCISSs - ok
13:03:30.0358 0x1284 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:03:30.0367 0x1284 HTTP - ok
13:03:30.0404 0x1284 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
13:03:30.0406 0x1284 i2omp - ok
13:03:30.0464 0x1284 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:03:30.0466 0x1284 i8042prt - ok
13:03:30.0541 0x1284 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
13:03:30.0549 0x1284 iaStorV - ok
13:03:30.0725 0x1284 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:03:30.0744 0x1284 idsvc - ok
13:03:30.0766 0x1284 igfx - ok
13:03:30.0795 0x1284 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:03:30.0796 0x1284 iirsp - ok
13:03:30.0839 0x1284 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
13:03:30.0855 0x1284 IKEEXT - ok
13:03:30.0972 0x1284 [ B9CBD3DEA7CA02868621173BF7A2AF9F, FC3A84A8D3878B14F3070299B8B878C71A66CE400507FBA3FCF23FC732DFB90D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
13:03:31.0015 0x1284 IntcAzAudAddService - ok
13:03:31.0077 0x1284 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
13:03:31.0078 0x1284 intelide - ok
13:03:31.0105 0x1284 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:03:31.0106 0x1284 intelppm - ok
13:03:31.0161 0x1284 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:03:31.0164 0x1284 IPBusEnum - ok
13:03:31.0191 0x1284 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:03:31.0193 0x1284 IpFilterDriver - ok
13:03:31.0226 0x1284 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:03:31.0246 0x1284 iphlpsvc - ok
13:03:31.0251 0x1284 IpInIp - ok
13:03:31.0283 0x1284 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
13:03:31.0285 0x1284 IPMIDRV - ok
13:03:31.0307 0x1284 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
13:03:31.0310 0x1284 IPNAT - ok
13:03:31.0329 0x1284 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:03:31.0330 0x1284 IRENUM - ok
13:03:31.0339 0x1284 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:03:31.0341 0x1284 isapnp - ok
13:03:31.0379 0x1284 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:03:31.0383 0x1284 iScsiPrt - ok
13:03:31.0408 0x1284 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
13:03:31.0409 0x1284 iteatapi - ok
13:03:31.0441 0x1284 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
13:03:31.0442 0x1284 iteraid - ok
13:03:31.0478 0x1284 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:03:31.0479 0x1284 kbdclass - ok
13:03:31.0507 0x1284 [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
13:03:31.0509 0x1284 kbdhid - ok
13:03:31.0551 0x1284 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
13:03:31.0553 0x1284 KeyIso - ok
13:03:31.0591 0x1284 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:03:31.0603 0x1284 KSecDD - ok
13:03:31.0646 0x1284 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
13:03:31.0660 0x1284 KtmRm - ok
13:03:31.0696 0x1284 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
13:03:31.0702 0x1284 LanmanServer - ok
13:03:31.0743 0x1284 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:03:31.0751 0x1284 LanmanWorkstation - ok
13:03:31.0790 0x1284 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:03:31.0793 0x1284 lltdio - ok
13:03:31.0839 0x1284 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:03:31.0847 0x1284 lltdsvc - ok
13:03:31.0869 0x1284 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:03:31.0886 0x1284 lmhosts - ok
13:03:31.0909 0x1284 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:03:31.0913 0x1284 LSI_FC - ok
13:03:31.0929 0x1284 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:03:31.0931 0x1284 LSI_SAS - ok
13:03:31.0969 0x1284 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:03:31.0972 0x1284 LSI_SCSI - ok
13:03:31.0996 0x1284 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
13:03:31.0999 0x1284 luafv - ok
13:03:32.0045 0x1284 [ 8683C1B450F4B3872839308D836E0F92, C6CEEEA780D2191AEAC2537FD96324FF5501D92CE46313FB95ABB51765D919ED ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
13:03:32.0046 0x1284 MBAMProtector - ok
13:03:32.0301 0x1284 [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
13:03:32.0342 0x1284 MBAMScheduler - ok
13:03:32.0417 0x1284 [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
13:03:32.0436 0x1284 MBAMService - ok
13:03:32.0498 0x1284 [ 799613BA73D25641402AA81B6403EFF8, 55FFF9248C0798346888071A60BF42C809C5D4C7BBA92C97B617F7B6681E00F3 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
13:03:32.0500 0x1284 MBAMWebAccessControl - ok
13:03:32.0561 0x1284 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:03:32.0578 0x1284 Mcx2Svc - ok
13:03:32.0617 0x1284 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
13:03:32.0619 0x1284 megasas - ok
13:03:32.0651 0x1284 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
13:03:32.0660 0x1284 MegaSR - ok
13:03:32.0687 0x1284 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
13:03:32.0691 0x1284 MMCSS - ok
13:03:32.0718 0x1284 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
13:03:32.0720 0x1284 Modem - ok
13:03:32.0749 0x1284 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:03:32.0751 0x1284 monitor - ok
13:03:32.0765 0x1284 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:03:32.0767 0x1284 mouclass - ok
13:03:32.0781 0x1284 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:03:32.0783 0x1284 mouhid - ok
13:03:32.0804 0x1284 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
13:03:32.0806 0x1284 MountMgr - ok
13:03:32.0854 0x1284 [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:03:32.0858 0x1284 MozillaMaintenance - ok
13:03:32.0891 0x1284 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
13:03:32.0895 0x1284 mpio - ok
13:03:32.0918 0x1284 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:03:32.0920 0x1284 mpsdrv - ok
13:03:32.0970 0x1284 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:03:32.0997 0x1284 MpsSvc - ok
13:03:33.0023 0x1284 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
13:03:33.0024 0x1284 Mraid35x - ok
13:03:33.0065 0x1284 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:03:33.0067 0x1284 MRxDAV - ok
13:03:33.0114 0x1284 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:03:33.0116 0x1284 mrxsmb - ok
13:03:33.0167 0x1284 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:03:33.0173 0x1284 mrxsmb10 - ok
13:03:33.0199 0x1284 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:03:33.0201 0x1284 mrxsmb20 - ok
13:03:33.0260 0x1284 [ F70590424EEFBF5C27A40C67AFDB8383, 1F2AC1DA12F7E6F09D8F6622EF1366ABD4B86EBE51DD1915E803D56A568A3412 ] msahci C:\Windows\system32\drivers\msahci.sys
13:03:33.0261 0x1284 msahci - ok
13:03:33.0303 0x1284 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:03:33.0307 0x1284 msdsm - ok
13:03:33.0328 0x1284 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
13:03:33.0334 0x1284 MSDTC - ok
13:03:33.0357 0x1284 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:03:33.0359 0x1284 Msfs - ok
13:03:33.0397 0x1284 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:03:33.0398 0x1284 msisadrv - ok
13:03:33.0445 0x1284 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:03:33.0469 0x1284 MSiSCSI - ok
13:03:33.0475 0x1284 msiserver - ok
13:03:33.0514 0x1284 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:03:33.0516 0x1284 MSKSSRV - ok
13:03:33.0559 0x1284 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:03:33.0560 0x1284 MSPCLOCK - ok
13:03:33.0607 0x1284 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:03:33.0608 0x1284 MSPQM - ok
13:03:33.0648 0x1284 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:03:33.0654 0x1284 MsRPC - ok
13:03:33.0714 0x1284 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:03:33.0716 0x1284 mssmbios - ok
13:03:33.0764 0x1284 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:03:33.0766 0x1284 MSTEE - ok
13:03:33.0828 0x1284 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
13:03:33.0832 0x1284 Mup - ok
13:03:33.0963 0x1284 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
13:03:33.0983 0x1284 napagent - ok
13:03:34.0038 0x1284 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:03:34.0045 0x1284 NativeWifiP - ok
13:03:34.0117 0x1284 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:03:34.0128 0x1284 NDIS - ok
13:03:34.0155 0x1284 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:03:34.0156 0x1284 NdisTapi - ok
13:03:34.0196 0x1284 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:03:34.0197 0x1284 Ndisuio - ok
13:03:34.0238 0x1284 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:03:34.0241 0x1284 NdisWan - ok
13:03:34.0275 0x1284 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:03:34.0276 0x1284 NDProxy - ok
13:03:34.0318 0x1284 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:03:34.0319 0x1284 NetBIOS - ok
13:03:34.0419 0x1284 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
13:03:34.0423 0x1284 netbt - ok
13:03:34.0451 0x1284 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
13:03:34.0453 0x1284 Netlogon - ok
13:03:34.0575 0x1284 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
13:03:34.0611 0x1284 Netman - ok
13:03:34.0660 0x1284 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:34.0665 0x1284 NetMsmqActivator - ok
13:03:34.0715 0x1284 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:34.0719 0x1284 NetPipeActivator - ok
13:03:34.0746 0x1284 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
13:03:34.0756 0x1284 netprofm - ok
13:03:34.0766 0x1284 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:34.0771 0x1284 NetTcpActivator - ok
13:03:34.0781 0x1284 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:34.0786 0x1284 NetTcpPortSharing - ok
13:03:34.0874 0x1284 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:03:34.0876 0x1284 nfrd960 - ok
13:03:34.0948 0x1284 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
13:03:34.0957 0x1284 NlaSvc - ok
13:03:34.0986 0x1284 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:03:35.0013 0x1284 Npfs - ok
13:03:35.0042 0x1284 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
13:03:35.0046 0x1284 nsi - ok
13:03:35.0057 0x1284 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:03:35.0059 0x1284 nsiproxy - ok
13:03:35.0142 0x1284 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:03:35.0171 0x1284 Ntfs - ok
13:03:35.0254 0x1284 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
13:03:35.0255 0x1284 ntrigdigi - ok
13:03:35.0308 0x1284 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
13:03:35.0309 0x1284 Null - ok
13:03:35.0342 0x1284 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:03:35.0345 0x1284 nvraid - ok
13:03:35.0380 0x1284 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:03:35.0382 0x1284 nvstor - ok
13:03:35.0404 0x1284 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:03:35.0407 0x1284 nv_agp - ok
13:03:35.0438 0x1284 NwlnkFlt - ok
13:03:35.0445 0x1284 NwlnkFwd - ok
13:03:35.0557 0x1284 [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

Re: Můj první Log

Napsal: 04 črc 2014 13:30
od fiddel
13:03:35.0566 0x1284 odserv - ok
13:03:35.0611 0x1284 [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:03:35.0613 0x1284 ohci1394 - ok
13:03:35.0644 0x1284 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:03:35.0648 0x1284 ose - ok
13:03:35.0764 0x1284 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
13:03:35.0789 0x1284 p2pimsvc - ok
13:03:35.0818 0x1284 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
13:03:35.0839 0x1284 p2psvc - ok
13:03:35.0873 0x1284 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
13:03:35.0876 0x1284 Parport - ok
13:03:35.0933 0x1284 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:03:35.0934 0x1284 partmgr - ok
13:03:35.0972 0x1284 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
13:03:35.0973 0x1284 Parvdm - ok
13:03:36.0028 0x1284 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
13:03:36.0061 0x1284 PcaSvc - ok
13:03:36.0091 0x1284 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
13:03:36.0095 0x1284 pci - ok
13:03:36.0130 0x1284 [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide C:\Windows\system32\drivers\pciide.sys
13:03:36.0131 0x1284 pciide - ok
13:03:36.0163 0x1284 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:03:36.0167 0x1284 pcmcia - ok
13:03:36.0297 0x1284 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:03:36.0316 0x1284 PEAUTH - ok
13:03:36.0529 0x1284 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
13:03:36.0617 0x1284 pla - ok
13:03:36.0671 0x1284 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:03:36.0684 0x1284 PlugPlay - ok
13:03:36.0727 0x1284 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
13:03:36.0742 0x1284 PNRPAutoReg - ok
13:03:36.0767 0x1284 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
13:03:36.0783 0x1284 PNRPsvc - ok
13:03:36.0843 0x1284 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:03:36.0859 0x1284 PolicyAgent - ok
13:03:36.0898 0x1284 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:03:36.0900 0x1284 PptpMiniport - ok
13:03:36.0929 0x1284 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
13:03:36.0931 0x1284 Processor - ok
13:03:36.0977 0x1284 [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
13:03:36.0984 0x1284 ProfSvc - ok
13:03:36.0995 0x1284 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
13:03:36.0997 0x1284 ProtectedStorage - ok
13:03:37.0031 0x1284 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
13:03:37.0033 0x1284 PSched - ok
13:03:37.0047 0x1284 [ 49452BFCEC22F36A7A9B9C2181BC3042, C01A2005E9897B142FF9BC6155770F70C19725C425E48D14239195E81E2E42D0 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
13:03:37.0048 0x1284 PxHelp20 - ok
13:03:37.0122 0x1284 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:03:37.0154 0x1284 ql2300 - ok
13:03:37.0187 0x1284 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:03:37.0191 0x1284 ql40xx - ok
13:03:37.0245 0x1284 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
13:03:37.0261 0x1284 QWAVE - ok
13:03:37.0303 0x1284 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:03:37.0304 0x1284 QWAVEdrv - ok
13:03:37.0316 0x1284 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:03:37.0317 0x1284 RasAcd - ok
13:03:37.0337 0x1284 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
13:03:37.0341 0x1284 RasAuto - ok
13:03:37.0354 0x1284 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:03:37.0357 0x1284 Rasl2tp - ok
13:03:37.0408 0x1284 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
13:03:37.0428 0x1284 RasMan - ok
13:03:37.0455 0x1284 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:03:37.0457 0x1284 RasPppoe - ok
13:03:37.0482 0x1284 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:03:37.0484 0x1284 RasSstp - ok
13:03:37.0577 0x1284 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:03:37.0582 0x1284 rdbss - ok
13:03:37.0612 0x1284 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:03:37.0612 0x1284 RDPCDD - ok
13:03:37.0672 0x1284 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
13:03:37.0679 0x1284 rdpdr - ok
13:03:37.0704 0x1284 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:03:37.0705 0x1284 RDPENCDD - ok
13:03:37.0761 0x1284 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:03:37.0776 0x1284 RDPWD - ok
13:03:37.0821 0x1284 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
13:03:37.0825 0x1284 RemoteAccess - ok
13:03:37.0856 0x1284 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:03:37.0863 0x1284 RemoteRegistry - ok
13:03:37.0896 0x1284 [ C2EF513BBE069F0D4EE0938A76F975D3, DDF90CDBCF3422BA9A39C5B372E617CE0047EC8D99148795E12204AC75BA7CE2 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
13:03:37.0898 0x1284 rimmptsk - ok
13:03:37.0917 0x1284 [ C398BCA91216755B098679A8DA8A2300, 1FDDC3D927509AB10C3B0B7900DCE78DEC6B1C3CAE80F78EFCFBB628673B2143 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
13:03:37.0920 0x1284 rimsptsk - ok
13:03:37.0943 0x1284 [ 2A2554CB24506E0A0508FC395C4A1B42, B989AE65727C971D508E7284707258FCCC9213B510F4C2A257D3069A3DABE20B ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
13:03:37.0945 0x1284 rismxdp - ok
13:03:37.0995 0x1284 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
13:03:37.0998 0x1284 RpcLocator - ok
13:03:38.0051 0x1284 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
13:03:38.0072 0x1284 RpcSs - ok
13:03:38.0131 0x1284 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:03:38.0133 0x1284 rspndr - ok
13:03:38.0170 0x1284 [ 7157E70A90CCE49DEB8885D23A073A39, B0EB23C0EDBA8BE4851F14483EC6E5C0CC66DAC2A14A815AACB6A7D9158C3168 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
13:03:38.0173 0x1284 RTL8169 - ok
13:03:38.0184 0x1284 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
13:03:38.0186 0x1284 SamSs - ok
13:03:38.0213 0x1284 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:03:38.0215 0x1284 sbp2port - ok
13:03:38.0306 0x1284 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:03:38.0338 0x1284 SCardSvr - ok
13:03:38.0396 0x1284 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
13:03:38.0428 0x1284 Schedule - ok
13:03:38.0454 0x1284 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
13:03:38.0456 0x1284 SCPolicySvc - ok
13:03:38.0500 0x1284 [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
13:03:38.0503 0x1284 sdbus - ok
13:03:38.0548 0x1284 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:03:38.0555 0x1284 SDRSVC - ok
13:03:38.0581 0x1284 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:03:38.0583 0x1284 secdrv - ok
13:03:38.0599 0x1284 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
13:03:38.0603 0x1284 seclogon - ok
13:03:38.0616 0x1284 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
13:03:38.0621 0x1284 SENS - ok
13:03:38.0640 0x1284 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
13:03:38.0642 0x1284 Serenum - ok
13:03:38.0670 0x1284 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
13:03:38.0673 0x1284 Serial - ok
13:03:38.0697 0x1284 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:03:38.0699 0x1284 sermouse - ok
13:03:38.0939 0x1284 [ FEEE59526B59849231A744FC9C5F0945, A82B91B05E3316CF1DB14E1EC53290E81A3342835872BDE1C148FE9A6C46093A ] Service KMSELDI C:\Program Files\KMSpico\Service_KMS.exe
13:03:38.0968 0x1284 Service KMSELDI - ok
13:03:39.0047 0x1284 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
13:03:39.0081 0x1284 SessionEnv - ok
13:03:39.0103 0x1284 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
13:03:39.0104 0x1284 sffdisk - ok
13:03:39.0137 0x1284 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:03:39.0139 0x1284 sffp_mmc - ok
13:03:39.0207 0x1284 [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
13:03:39.0208 0x1284 sffp_sd - ok
13:03:39.0245 0x1284 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:03:39.0246 0x1284 sfloppy - ok
13:03:39.0369 0x1284 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:03:39.0402 0x1284 SharedAccess - ok
13:03:39.0449 0x1284 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:03:39.0465 0x1284 ShellHWDetection - ok
13:03:39.0512 0x1284 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
13:03:39.0516 0x1284 sisagp - ok
13:03:39.0548 0x1284 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
13:03:39.0551 0x1284 SiSRaid2 - ok
13:03:39.0582 0x1284 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:03:39.0587 0x1284 SiSRaid4 - ok
13:03:39.0670 0x1284 [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
13:03:39.0679 0x1284 SkypeUpdate - ok
13:03:40.0154 0x1284 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
13:03:40.0307 0x1284 slsvc - ok
13:03:40.0339 0x1284 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
13:03:40.0343 0x1284 SLUINotify - ok
13:03:40.0417 0x1284 [ 3566310DF25EA5C3B2E9F50F5B50EAC1, FB27E0AF4DFB2AA373C94370A1241C2D9D2CE93A52E69D8D259A023FC907ED39 ] SmartFaceVWatchSrv C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
13:03:40.0419 0x1284 SmartFaceVWatchSrv - ok
13:03:40.0468 0x1284 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:03:40.0470 0x1284 Smb - ok
13:03:40.0502 0x1284 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:03:40.0506 0x1284 SNMPTRAP - ok
13:03:40.0547 0x1284 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
13:03:40.0554 0x1284 spldr - ok
13:03:40.0593 0x1284 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
13:03:40.0600 0x1284 Spooler - ok
13:03:40.0651 0x1284 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
13:03:40.0660 0x1284 srv - ok
13:03:40.0697 0x1284 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:03:40.0702 0x1284 srv2 - ok
13:03:40.0750 0x1284 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:03:40.0754 0x1284 srvnet - ok
13:03:40.0797 0x1284 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:03:40.0813 0x1284 SSDPSRV - ok
13:03:40.0837 0x1284 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:03:40.0847 0x1284 SstpSvc - ok
13:03:40.0926 0x1284 [ A87A39F9B42D82F5D60D36BB1D3CC9D3, F609CC721B898B5053FE34B24C94970453BD57441F9A2C93D4F77CB297D56169 ] Steam Client Service C:\Program Files\Common Files\Steam\SteamService.exe
13:03:40.0945 0x1284 Steam Client Service - ok
13:03:41.0037 0x1284 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
13:03:41.0073 0x1284 stisvc - ok
13:03:41.0096 0x1284 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:03:41.0098 0x1284 swenum - ok
13:03:41.0285 0x1284 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:03:41.0303 0x1284 SwitchBoard - ok
13:03:41.0363 0x1284 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
13:03:41.0388 0x1284 swprv - ok
13:03:41.0425 0x1284 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
13:03:41.0428 0x1284 Symc8xx - ok
13:03:41.0456 0x1284 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
13:03:41.0458 0x1284 Sym_hi - ok
13:03:41.0489 0x1284 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
13:03:41.0491 0x1284 Sym_u3 - ok
13:03:41.0525 0x1284 [ 55F6E55CC2430CA8713387106FA79817, 721C86B806AEFBD4D7B368AE6E7A689A0F4B3B378B701D29D3DFE459066188F3 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
13:03:41.0535 0x1284 SynTP - ok
13:03:41.0656 0x1284 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
13:03:41.0704 0x1284 SysMain - ok
13:03:41.0745 0x1284 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:03:41.0765 0x1284 TabletInputService - ok
13:03:41.0815 0x1284 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:03:41.0834 0x1284 TapiSrv - ok
13:03:41.0858 0x1284 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
13:03:41.0868 0x1284 TBS - ok
13:03:41.0984 0x1284 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:03:42.0003 0x1284 Tcpip - ok
13:03:42.0094 0x1284 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
13:03:42.0114 0x1284 Tcpip6 - ok
13:03:42.0151 0x1284 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:03:42.0152 0x1284 tcpipreg - ok
13:03:42.0205 0x1284 [ 1825BCEB47BF41C5A9F0E44DE82FC27A, 6E5F2654852060A61728686A1877A1EA93645EEED0D2612842D951B4E83750A3 ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
13:03:42.0206 0x1284 tdcmdpst - ok
13:03:42.0250 0x1284 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:03:42.0251 0x1284 TDPIPE - ok
13:03:42.0285 0x1284 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:03:42.0286 0x1284 TDTCP - ok
13:03:42.0319 0x1284 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:03:42.0322 0x1284 tdx - ok
13:03:42.0755 0x1284 [ CC907C2FB839D3F92690A25FF8E463BE, 3CEE9BEA1ACB1086389AA4817D996431716EFEB4432EC4D59EEF1BA710C15B8C ] TeamViewer9 C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
13:03:42.0941 0x1284 TeamViewer9 - ok
13:03:43.0040 0x1284 [ CE0B5D587839614A16480D7B8395FFE9, 1DDFC77899D42BBE4F6C7EE6D5C96AE5C6A625BF41F6594C2B6CBE73B17DA959 ] TempoMonitoringService C:\Program Files\Toshiba TEMPRO\TempoSVC.exe
13:03:43.0048 0x1284 TempoMonitoringService - ok
13:03:43.0067 0x1284 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:03:43.0068 0x1284 TermDD - ok
13:03:43.0120 0x1284 [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll
13:03:43.0140 0x1284 TermService - ok
13:03:43.0166 0x1284 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
13:03:43.0173 0x1284 Themes - ok
13:03:43.0187 0x1284 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
13:03:43.0190 0x1284 THREADORDER - ok
13:03:43.0221 0x1284 [ C5AC715B65B01788ABC22D10749DDDD8, 3237B8CBEA645F550CE588511BC7085358B3D1358D46AF5EED65F3BAC5174195 ] TODDSrv C:\Windows\system32\TODDSrv.exe
13:03:43.0228 0x1284 TODDSrv - ok
13:03:43.0313 0x1284 [ DA6903958CBDC091FFCBBCA70CCFF34C, 4B663ACC6BEBE5CB8DE910E640004017F8FF533F589263456E6031408FEAFA15 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
13:03:43.0329 0x1284 TosCoSrv - ok
13:03:43.0387 0x1284 [ 8E10E654E354CF330ED75882769A0107, 45130BC46D36FF9377FF8AD895B155AEDA22F0E14CB2FDDC1B4EB5AA6C3112EB ] TOSHIBA Bluetooth Service c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
13:03:43.0392 0x1284 TOSHIBA Bluetooth Service - ok
13:03:43.0411 0x1284 [ 22690DFFC7F2A18279A7A0489AA02BAC, 703B10A17AF6871439143AF9E419D780779BD4ED54D32FA7751A5630C4CCFC0C ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
13:03:43.0416 0x1284 TOSHIBA SMART Log Service - ok
13:03:43.0423 0x1284 Tosrfcom - ok
13:03:43.0441 0x1284 [ 5C4103544612E5011EF46301B93D1AA6, B26BBDE22AB60A7B692A8D6F11F40343146D0D3FD0099E3E0DB8ECCF87ECD2B3 ] tosrfec C:\Windows\system32\DRIVERS\tosrfec.sys
13:03:43.0442 0x1284 tosrfec - ok
13:03:43.0492 0x1284 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
13:03:43.0498 0x1284 TrkWks - ok
13:03:43.0561 0x1284 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:03:43.0577 0x1284 TrustedInstaller - ok
13:03:43.0612 0x1284 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:03:43.0613 0x1284 tssecsrv - ok
13:03:43.0636 0x1284 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
13:03:43.0637 0x1284 tunmp - ok
13:03:43.0672 0x1284 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:03:43.0674 0x1284 tunnel - ok
13:03:43.0697 0x1284 [ 792A8B80F8188ABA4B2BE271583F3E46, BFE96D13926F3CB7D807CEBB5E190736B742EB5C93F7FED08AA5D145F4B6A874 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
13:03:43.0698 0x1284 TVALZ - ok
13:03:43.0720 0x1284 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:03:43.0722 0x1284 uagp35 - ok
13:03:43.0793 0x1284 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:03:43.0798 0x1284 udfs - ok
13:03:43.0853 0x1284 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:03:43.0856 0x1284 UI0Detect - ok
13:03:43.0933 0x1284 [ 332D341D92B933600D41953B08360DFB, 213A5C84ABB0D627C05B355084A26A5081645D4EC398FF19EF6BBCB690B10055 ] UleadBurningHelper C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
13:03:43.0949 0x1284 UleadBurningHelper - ok
13:03:43.0991 0x1284 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:03:43.0994 0x1284 uliagpkx - ok
13:03:44.0030 0x1284 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
13:03:44.0037 0x1284 uliahci - ok
13:03:44.0062 0x1284 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
13:03:44.0065 0x1284 UlSata - ok
13:03:44.0092 0x1284 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
13:03:44.0096 0x1284 ulsata2 - ok
13:03:44.0123 0x1284 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:03:44.0125 0x1284 umbus - ok
13:03:44.0193 0x1284 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
13:03:44.0220 0x1284 upnphost - ok
13:03:44.0281 0x1284 [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:03:44.0284 0x1284 usbaudio - ok
13:03:44.0333 0x1284 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:03:44.0337 0x1284 usbccgp - ok
13:03:44.0386 0x1284 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:03:44.0389 0x1284 usbcir - ok
13:03:44.0419 0x1284 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:03:44.0422 0x1284 usbehci - ok
13:03:44.0448 0x1284 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:03:44.0456 0x1284 usbhub - ok
13:03:44.0480 0x1284 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:03:44.0482 0x1284 usbohci - ok
13:03:44.0515 0x1284 [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint C:\Windows\system32\drivers\usbprint.sys
13:03:44.0517 0x1284 usbprint - ok
13:03:44.0577 0x1284 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:03:44.0580 0x1284 USBSTOR - ok
13:03:44.0631 0x1284 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:03:44.0633 0x1284 usbuhci - ok
13:03:44.0711 0x1284 [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
13:03:44.0716 0x1284 usbvideo - ok
13:03:44.0752 0x1284 [ 228F444F9AF0D3B9ECA9FC3F4FEB12F2, D29C9A0ED5602BCD529A0D7F538DFA8771B1CAC6F433AA686C3A4917DC596369 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
13:03:44.0754 0x1284 usb_rndisx - ok
13:03:44.0789 0x1284 [ 8C5094A8AB24DE7496C7C19942F2DF04, B6F0CF09FD307793EE799221FA8BF1DC3C772748B2B6CA40EC8127A6E1462787 ] UVCFTR C:\Windows\system32\Drivers\UVCFTR_S.SYS
13:03:44.0790 0x1284 UVCFTR - ok
13:03:44.0850 0x1284 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
13:03:44.0856 0x1284 UxSms - ok
13:03:44.0932 0x1284 [ 45826DFB364133677B3C7ED01ED6BE1D, 0A9B51770BA69C73DB8FC81D50017E7CCF59DD05D3024D4C9F8CE03076CA8A7B ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
13:03:44.0940 0x1284 VBoxDrv - ok
13:03:44.0972 0x1284 [ F8857EBB92B79D35CD04D8D71BA2FF04, 45BE62C04EF888A6D5C27444F05C8163A75F3DE3A869CAF2757D4FC9D1D401BA ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
13:03:44.0978 0x1284 VBoxNetAdp - ok
13:03:45.0004 0x1284 [ EBD7F7F3D1E444C7A51F1A677E5E5C83, C6D7D5A3EB3E58C898E55DF12AE99D0CB55E1F0E46B2227E78755EB288E2F835 ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
13:03:45.0010 0x1284 VBoxNetFlt - ok
13:03:45.0046 0x1284 [ CE66AA98D12EC5F08E9F8201948CE054, AE1627740DB2DC11FFEE987BFEC9A96D0B2595BCF535BD06835748C6693D9482 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
13:03:45.0049 0x1284 VBoxUSBMon - ok
13:03:45.0171 0x1284 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
13:03:45.0193 0x1284 vds - ok
13:03:45.0229 0x1284 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:03:45.0231 0x1284 vga - ok
13:03:45.0256 0x1284 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:03:45.0259 0x1284 VgaSave - ok
13:03:45.0280 0x1284 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
13:03:45.0284 0x1284 viaagp - ok
13:03:45.0314 0x1284 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
13:03:45.0317 0x1284 ViaC7 - ok
13:03:45.0350 0x1284 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
13:03:45.0352 0x1284 viaide - ok
13:03:45.0383 0x1284 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:03:45.0387 0x1284 volmgr - ok
13:03:45.0469 0x1284 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:03:45.0475 0x1284 volmgrx - ok
13:03:45.0549 0x1284 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:03:45.0554 0x1284 volsnap - ok
13:03:45.0599 0x1284 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:03:45.0602 0x1284 vsmraid - ok
13:03:45.0696 0x1284 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
13:03:45.0720 0x1284 VSS - ok
13:03:45.0790 0x1284 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
13:03:45.0808 0x1284 W32Time - ok
13:03:45.0838 0x1284 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:03:45.0839 0x1284 WacomPen - ok
13:03:45.0856 0x1284 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
13:03:45.0858 0x1284 Wanarp - ok
13:03:45.0873 0x1284 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:03:45.0875 0x1284 Wanarpv6 - ok
13:03:45.0960 0x1284 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:03:45.0976 0x1284 wcncsvc - ok
13:03:46.0011 0x1284 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:03:46.0015 0x1284 WcsPlugInService - ok
13:03:46.0033 0x1284 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
13:03:46.0034 0x1284 Wd - ok
13:03:46.0088 0x1284 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:03:46.0100 0x1284 Wdf01000 - ok
13:03:46.0127 0x1284 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:03:46.0141 0x1284 WdiServiceHost - ok
13:03:46.0147 0x1284 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:03:46.0153 0x1284 WdiSystemHost - ok
13:03:46.0188 0x1284 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
13:03:46.0197 0x1284 WebClient - ok
13:03:46.0242 0x1284 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:03:46.0249 0x1284 Wecsvc - ok
13:03:46.0284 0x1284 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:03:46.0289 0x1284 wercplsupport - ok
13:03:46.0315 0x1284 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
13:03:46.0327 0x1284 WerSvc - ok
13:03:46.0400 0x1284 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
13:03:46.0409 0x1284 WinDefend - ok
13:03:46.0435 0x1284 WinHttpAutoProxySvc - ok
13:03:46.0493 0x1284 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:03:46.0498 0x1284 Winmgmt - ok
13:03:46.0633 0x1284 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
13:03:46.0697 0x1284 WinRM - ok
13:03:46.0756 0x1284 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:03:46.0774 0x1284 Wlansvc - ok
13:03:46.0814 0x1284 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:03:46.0815 0x1284 WmiAcpi - ok
13:03:46.0856 0x1284 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:03:46.0861 0x1284 wmiApSrv - ok
13:03:46.0949 0x1284 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
13:03:46.0977 0x1284 WMPNetworkSvc - ok
13:03:47.0013 0x1284 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:03:47.0022 0x1284 WPCSvc - ok
13:03:47.0055 0x1284 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:03:47.0060 0x1284 WPDBusEnum - ok
13:03:47.0110 0x1284 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
13:03:47.0111 0x1284 WpdUsb - ok
13:03:47.0335 0x1284 [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:03:47.0365 0x1284 WPFFontCache_v0400 - ok
13:03:47.0391 0x1284 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:03:47.0393 0x1284 ws2ifsl - ok
13:03:47.0431 0x1284 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
13:03:47.0436 0x1284 wscsvc - ok
13:03:47.0441 0x1284 WSearch - ok
13:03:47.0764 0x1284 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
13:03:47.0807 0x1284 wuauserv - ok
13:03:47.0870 0x1284 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:03:47.0873 0x1284 WudfPf - ok
13:03:47.0906 0x1284 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:03:47.0910 0x1284 WUDFRd - ok
13:03:47.0941 0x1284 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:03:47.0946 0x1284 wudfsvc - ok
13:03:47.0962 0x1284 ================ Scan global ===============================
13:03:47.0989 0x1284 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
13:03:48.0075 0x1284 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
13:03:48.0105 0x1284 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
13:03:48.0180 0x1284 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
13:03:48.0191 0x1284 [ Global ] - ok
13:03:48.0191 0x1284 ================ Scan MBR ==================================
13:03:48.0205 0x1284 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
13:03:49.0000 0x1284 \Device\Harddisk0\DR0 - ok
13:03:49.0001 0x1284 ================ Scan VBR ==================================
13:03:49.0020 0x1284 [ B123E4B30D15DE1760F67F3BCFF1CCF7 ] \Device\Harddisk0\DR0\Partition1
13:03:49.0107 0x1284 \Device\Harddisk0\DR0\Partition1 - ok
13:03:49.0128 0x1284 [ BC1BF7C4596B7A310EA0D534D9F95009 ] \Device\Harddisk0\DR0\Partition2
13:03:49.0220 0x1284 \Device\Harddisk0\DR0\Partition2 - ok
13:03:49.0221 0x1284 ================ Scan generic autorun ======================
13:03:49.0349 0x1284 [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe
13:03:49.0375 0x1284 Windows Defender - ok
13:03:49.0525 0x1284 [ 320681DF28D82CDCA7E3EED0846625DB, 7F709ADFB0FE36BEC857A928E9CB29BB5B6C0BAD98824D0302C7BB7185100CB9 ] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
13:03:49.0537 0x1284 AdobeAAMUpdater-1.0 - ok
13:03:49.0735 0x1284 [ 3EE19173AC7BB16AD239B195D97C13B0, A9E5FC90F20DC7500A186C9D184ED55BC04038FFC6D97714E64C660EAE808A98 ] C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
13:03:49.0769 0x1284 AdobeCS6ServiceManager - ok
13:03:50.0497 0x1284 [ 0F01BAC5042F046553D2EC0EE5E52B81, A6C694F037CDFF7FB6A39AB48174B6071CF091A94FB916BB107AE3EC12AD8D35 ] C:\Program Files\ESET\ESET Smart Security\egui.exe
13:03:50.0602 0x1284 egui - ok
13:03:50.0867 0x1284 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
13:03:50.0891 0x1284 Sidebar - ok
13:03:50.0899 0x1284 WindowsWelcomeCenter - ok
13:03:50.0942 0x1284 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
13:03:50.0966 0x1284 Sidebar - ok
13:03:50.0973 0x1284 WindowsWelcomeCenter - ok
13:03:50.0974 0x1284 GarenaPlus - ok
13:03:50.0977 0x1284 Waiting for KSN requests completion. In queue: 30
13:03:51.0977 0x1284 Waiting for KSN requests completion. In queue: 30
13:03:52.0977 0x1284 Waiting for KSN requests completion. In queue: 30
13:03:54.0095 0x1284 AV detected via SS2: ESET Smart Security 7.0, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.317.0 ), 0x41000 ( enabled : updated )
13:03:54.0100 0x1284 FW detected via SS2: ESET Personální firewall, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.317.0 ), 0x41010 ( enabled )
13:03:56.0936 0x1284 ============================================================
13:03:56.0936 0x1284 Scan finished
13:03:56.0936 0x1284 ============================================================
13:03:56.0949 0x121c Detected object count: 0
13:03:56.0949 0x121c Actual detected object count: 0
13:04:21.0227 0x0af4 Deinitialize success

Re: Můj první Log

Napsal: 04 črc 2014 13:39
od fiddel
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva" a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller


RogueKiller V9.1.0.0 [Jun 23 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : Vojtěch [Práva správce]
Mód : Kontrola -- Datum : 07/04/2014 13:36:33

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{E74506E1-91C5-4442-8710-BB89C1465AE4} | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{E74506E1-91C5-4442-8710-BB89C1465AE4} | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet003\Services\Tcpip\Parameters\Interfaces\{E74506E1-91C5-4442-8710-BB89C1465AE4} | DhcpNameServer : 172.27.1.1 192.168.1.254 -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 118 ¤¤¤
[EAT:Addr] (explorer.exe) comctl32.dll - AddGadgetMessageHandler : C:\Windows\system32\DUser.dll @ 0x7477152c
[EAT:Addr] (explorer.exe) comctl32.dll - AttachWndProcA : C:\Windows\system32\DUser.dll @ 0x7477c80a
[EAT:Addr] (explorer.exe) comctl32.dll - AttachWndProcW : C:\Windows\system32\DUser.dll @ 0x7476dd2c
[EAT:Addr] (explorer.exe) comctl32.dll - AutoTrace : C:\Windows\system32\DUser.dll @ 0x74777041
[EAT:Addr] (explorer.exe) comctl32.dll - BeginTransition : C:\Windows\system32\DUser.dll @ 0x7477c9a7
[EAT:Addr] (explorer.exe) comctl32.dll - BuildAnimation : C:\Windows\system32\DUser.dll @ 0x74771135
[EAT:Addr] (explorer.exe) comctl32.dll - BuildDropTarget : C:\Windows\system32\DUser.dll @ 0x74777131
[EAT:Addr] (explorer.exe) comctl32.dll - BuildInterpolation : C:\Windows\system32\DUser.dll @ 0x7477118c
[EAT:Addr] (explorer.exe) comctl32.dll - CreateAction : C:\Windows\system32\DUser.dll @ 0x74767339
[EAT:Addr] (explorer.exe) comctl32.dll - CreateGadget : C:\Windows\system32\DUser.dll @ 0x74765197
[EAT:Addr] (explorer.exe) comctl32.dll - CreateTransition : C:\Windows\system32\DUser.dll @ 0x7477c83a
[EAT:Addr] (explorer.exe) comctl32.dll - DUserBuildGadget : C:\Windows\system32\DUser.dll @ 0x7477b7e8
[EAT:Addr] (explorer.exe) comctl32.dll - DUserCastClass : C:\Windows\system32\DUser.dll @ 0x7477c776
[EAT:Addr] (explorer.exe) comctl32.dll - DUserCastDirect : C:\Windows\system32\DUser.dll @ 0x7477c7b9
[EAT:Addr] (explorer.exe) comctl32.dll - DUserCastHandle : C:\Windows\system32\DUser.dll @ 0x7477b81e
[EAT:Addr] (explorer.exe) comctl32.dll - DUserDeleteGadget : C:\Windows\system32\DUser.dll @ 0x7477b9c1
[EAT:Addr] (explorer.exe) comctl32.dll - DUserFindClass : C:\Windows\system32\DUser.dll @ 0x7477c6e7
[EAT:Addr] (explorer.exe) comctl32.dll - DUserFlushDeferredMessages : C:\Windows\system32\DUser.dll @ 0x74770020
[EAT:Addr] (explorer.exe) comctl32.dll - DUserFlushMessages : C:\Windows\system32\DUser.dll @ 0x74770096
[EAT:Addr] (explorer.exe) comctl32.dll - DUserGetAlphaPRID : C:\Windows\system32\DUser.dll @ 0x747778fd
[EAT:Addr] (explorer.exe) comctl32.dll - DUserGetGutsData : C:\Windows\system32\DUser.dll @ 0x7477c7c9
[EAT:Addr] (explorer.exe) comctl32.dll - DUserGetRectPRID : C:\Windows\system32\DUser.dll @ 0x74777908
[EAT:Addr] (explorer.exe) comctl32.dll - DUserGetRotatePRID : C:\Windows\system32\DUser.dll @ 0x74777913
[EAT:Addr] (explorer.exe) comctl32.dll - DUserGetScalePRID : C:\Windows\system32\DUser.dll @ 0x7477791e
[EAT:Addr] (explorer.exe) comctl32.dll - DUserInstanceOf : C:\Windows\system32\DUser.dll @ 0x7477c735
[EAT:Addr] (explorer.exe) comctl32.dll - DUserPostEvent : C:\Windows\system32\DUser.dll @ 0x7476630f
[EAT:Addr] (explorer.exe) comctl32.dll - DUserPostMethod : C:\Windows\system32\DUser.dll @ 0x7477b639
[EAT:Addr] (explorer.exe) comctl32.dll - DUserRegisterGuts : C:\Windows\system32\DUser.dll @ 0x7476a5b1
[EAT:Addr] (explorer.exe) comctl32.dll - DUserRegisterStub : C:\Windows\system32\DUser.dll @ 0x74769f93
[EAT:Addr] (explorer.exe) comctl32.dll - DUserRegisterSuper : C:\Windows\system32\DUser.dll @ 0x7476b046
[EAT:Addr] (explorer.exe) comctl32.dll - DUserSendEvent : C:\Windows\system32\DUser.dll @ 0x74763258
[EAT:Addr] (explorer.exe) comctl32.dll - DUserSendMethod : C:\Windows\system32\DUser.dll @ 0x7477b5b0
[EAT:Addr] (explorer.exe) comctl32.dll - DUserStopAnimation : C:\Windows\system32\DUser.dll @ 0x747784e4
[EAT:Addr] (explorer.exe) comctl32.dll - DeleteHandle : C:\Windows\system32\DUser.dll @ 0x74763ef8
[EAT:Addr] (explorer.exe) comctl32.dll - DetachWndProc : C:\Windows\system32\DUser.dll @ 0x7476657d
[EAT:Addr] (explorer.exe) comctl32.dll - DllMain : C:\Windows\system32\DUser.dll @ 0x747676f9
[EAT:Addr] (explorer.exe) comctl32.dll - DrawGadgetTree : C:\Windows\system32\DUser.dll @ 0x7477c646
[EAT:Addr] (explorer.exe) comctl32.dll - EndTransition : C:\Windows\system32\DUser.dll @ 0x7477ca90
[EAT:Addr] (explorer.exe) comctl32.dll - EnumGadgets : C:\Windows\system32\DUser.dll @ 0x7477c30f
[EAT:Addr] (explorer.exe) comctl32.dll - FindGadgetFromPoint : C:\Windows\system32\DUser.dll @ 0x74766da8
[EAT:Addr] (explorer.exe) comctl32.dll - FindGadgetMessages : C:\Windows\system32\DUser.dll @ 0x7477c19d
[EAT:Addr] (explorer.exe) comctl32.dll - FindStdColor : C:\Windows\system32\DUser.dll @ 0x7476dc66
[EAT:Addr] (explorer.exe) comctl32.dll - FireGadgetMessages : C:\Windows\system32\DUser.dll @ 0x7477c06b
[EAT:Addr] (explorer.exe) comctl32.dll - ForwardGadgetMessage : C:\Windows\system32\DUser.dll @ 0x74771cb5
[EAT:Addr] (explorer.exe) comctl32.dll - GetActionTimeslice : C:\Windows\system32\DUser.dll @ 0x7477cb05
[EAT:Addr] (explorer.exe) comctl32.dll - GetDebug : C:\Windows\system32\DUser.dll @ 0x7477705d
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadget : C:\Windows\system32\DUser.dll @ 0x7477c527
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetAnimation : C:\Windows\system32\DUser.dll @ 0x74767083
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetBufferInfo : C:\Windows\system32\DUser.dll @ 0x74772d45
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetCenterPoint : C:\Windows\system32\DUser.dll @ 0x7477be6f
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetFocus : C:\Windows\system32\DUser.dll @ 0x7476ce28
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetMessageFilter : C:\Windows\system32\DUser.dll @ 0x7477c5ba
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74767135
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetRect : C:\Windows\system32\DUser.dll @ 0x74762d8e
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetRgn : C:\Windows\system32\DUser.dll @ 0x7476540a
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetRootInfo : C:\Windows\system32\DUser.dll @ 0x7477bfbb
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetRotation : C:\Windows\system32\DUser.dll @ 0x7477bd35
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetScale : C:\Windows\system32\DUser.dll @ 0x7477bbe9
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetSize : C:\Windows\system32\DUser.dll @ 0x7477c3ca
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetStyle : C:\Windows\system32\DUser.dll @ 0x7477232c
[EAT:Addr] (explorer.exe) comctl32.dll - GetGadgetTicket : C:\Windows\system32\DUser.dll @ 0x7476c94f
[EAT:Addr] (explorer.exe) comctl32.dll - GetMessageExA : C:\Windows\system32\DUser.dll @ 0x7476f459
[EAT:Addr] (explorer.exe) comctl32.dll - GetMessageExW : C:\Windows\system32\DUser.dll @ 0x7477b6c3
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdColorBrushF : C:\Windows\system32\DUser.dll @ 0x7477cbea
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdColorBrushI : C:\Windows\system32\DUser.dll @ 0x74762c3b
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdColorF : C:\Windows\system32\DUser.dll @ 0x7477ce45
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdColorI : C:\Windows\system32\DUser.dll @ 0x7476faf7
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdColorName : C:\Windows\system32\DUser.dll @ 0x7477cd46
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdColorPenF : C:\Windows\system32\DUser.dll @ 0x7477ccd2
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdColorPenI : C:\Windows\system32\DUser.dll @ 0x7477cc5e
[EAT:Addr] (explorer.exe) comctl32.dll - GetStdPalette : C:\Windows\system32\DUser.dll @ 0x7477b82e
[EAT:Addr] (explorer.exe) comctl32.dll - GetTransitionInterface : C:\Windows\system32\DUser.dll @ 0x7477c933
[EAT:Addr] (explorer.exe) comctl32.dll - InitGadgetComponent : C:\Windows\system32\DUser.dll @ 0x7477b8be
[EAT:Addr] (explorer.exe) comctl32.dll - InitGadgets : C:\Windows\system32\DUser.dll @ 0x7476e373
[EAT:Addr] (explorer.exe) comctl32.dll - InvalidateGadget : C:\Windows\system32\DUser.dll @ 0x74763de5
[EAT:Addr] (explorer.exe) comctl32.dll - IsGadgetParentChainStyle : C:\Windows\system32\DUser.dll @ 0x7477ba7f
[EAT:Addr] (explorer.exe) comctl32.dll - IsInsideContext : C:\Windows\system32\DUser.dll @ 0x7477b56c
[EAT:Addr] (explorer.exe) comctl32.dll - IsStartDelete : C:\Windows\system32\DUser.dll @ 0x7477121d
[EAT:Addr] (explorer.exe) comctl32.dll - LookupGadgetTicket : C:\Windows\system32\DUser.dll @ 0x7477cdbc
[EAT:Addr] (explorer.exe) comctl32.dll - MapGadgetPoints : C:\Windows\system32\DUser.dll @ 0x74773861
[EAT:Addr] (explorer.exe) comctl32.dll - PeekMessageExA : C:\Windows\system32\DUser.dll @ 0x7477b710
[EAT:Addr] (explorer.exe) comctl32.dll - PeekMessageExW : C:\Windows\system32\DUser.dll @ 0x7477b75e
[EAT:Addr] (explorer.exe) comctl32.dll - PlayTransition : C:\Windows\system32\DUser.dll @ 0x7477c8b0
[EAT:Addr] (explorer.exe) comctl32.dll - PrintTransition : C:\Windows\system32\DUser.dll @ 0x7477ca1c
[EAT:Addr] (explorer.exe) comctl32.dll - RegisterGadgetMessage : C:\Windows\system32\DUser.dll @ 0x74767ba3
[EAT:Addr] (explorer.exe) comctl32.dll - RegisterGadgetMessageString : C:\Windows\system32\DUser.dll @ 0x7477c149
[EAT:Addr] (explorer.exe) comctl32.dll - RegisterGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74767d5d
[EAT:Addr] (explorer.exe) comctl32.dll - RemoveGadgetMessageHandler : C:\Windows\system32\DUser.dll @ 0x7477c21a
[EAT:Addr] (explorer.exe) comctl32.dll - RemoveGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74770dee
[EAT:Addr] (explorer.exe) comctl32.dll - SetActionTimeslice : C:\Windows\system32\DUser.dll @ 0x7477cb82
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetBufferInfo : C:\Windows\system32\DUser.dll @ 0x74772c09
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetCenterPoint : C:\Windows\system32\DUser.dll @ 0x7477bf0a
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetFillF : C:\Windows\system32\DUser.dll @ 0x7477bb47
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetFillI : C:\Windows\system32\DUser.dll @ 0x74772149
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetFocus : C:\Windows\system32\DUser.dll @ 0x7476cebb
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetFocusEx : C:\Windows\system32\DUser.dll @ 0x74773188
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetMessageFilter : C:\Windows\system32\DUser.dll @ 0x74765a70
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetOrder : C:\Windows\system32\DUser.dll @ 0x7477c45d
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetParent : C:\Windows\system32\DUser.dll @ 0x747655f8
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74771284
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetRect : C:\Windows\system32\DUser.dll @ 0x74765305
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetRootInfo : C:\Windows\system32\DUser.dll @ 0x7476e857
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetRotation : C:\Windows\system32\DUser.dll @ 0x7477bdc9
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetScale : C:\Windows\system32\DUser.dll @ 0x7477bc84
[EAT:Addr] (explorer.exe) comctl32.dll - SetGadgetStyle : C:\Windows\system32\DUser.dll @ 0x74764c48
[EAT:Addr] (explorer.exe) comctl32.dll - UninitGadgetComponent : C:\Windows\system32\DUser.dll @ 0x7477b93f
[EAT:Addr] (explorer.exe) comctl32.dll - UnregisterGadgetMessage : C:\Windows\system32\DUser.dll @ 0x7477c171
[EAT:Addr] (explorer.exe) comctl32.dll - UnregisterGadgetMessageString : C:\Windows\system32\DUser.dll @ 0x7477c149
[EAT:Addr] (explorer.exe) comctl32.dll - UnregisterGadgetProperty : C:\Windows\system32\DUser.dll @ 0x7477c2e3
[EAT:Addr] (explorer.exe) comctl32.dll - UtilBuildFont : C:\Windows\system32\DUser.dll @ 0x7477b83a
[EAT:Addr] (explorer.exe) comctl32.dll - UtilDrawBlendRect : C:\Windows\system32\DUser.dll @ 0x7477b84a
[EAT:Addr] (explorer.exe) comctl32.dll - UtilDrawOutlineRect : C:\Windows\system32\DUser.dll @ 0x7477b85a
[EAT:Addr] (explorer.exe) comctl32.dll - UtilGetColor : C:\Windows\system32\DUser.dll @ 0x7477b86a
[EAT:Addr] (explorer.exe) comctl32.dll - UtilSetBackground : C:\Windows\system32\DUser.dll @ 0x7477cd78
[EAT:Addr] (explorer.exe) comctl32.dll - WaitMessageEx : C:\Windows\system32\DUser.dll @ 0x7477b7ac
[EAT:Addr] (explorer.exe) MLANG.dll - DllCanUnloadNow : C:\Windows\System32\SndVolSSO.dll @ 0x6a52155f
[EAT:Addr] (explorer.exe) MLANG.dll - DllGetClassObject : C:\Windows\System32\SndVolSSO.dll @ 0x6a524852
[EAT:Addr] (explorer.exe) MLANG.dll - DllMain : C:\Windows\System32\SndVolSSO.dll @ 0x6a5212fb

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK3252GSX ATA Device +++++
--- User ---
[MBR] e04db79f89d4d860d11f79838d6961f3
[BSP] bf2346142b5d0b1c4197500ee8e63228 : HP MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 3074048 | Size: 153000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 316418048 | Size: 150743 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_DEL_07042014_125850.log - RKreport_SCN_07042014_113351.log - RKreport_SCN_07042014_125655.log
Časové pásmo: UTC+02:00
Stránka 1 z 2
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/