Prosim o kontrolu logu

Luschak · Příspěvekod **Luschak** » 28 dub 2014 18:30

Zdravicko chlapi, ci damy.

Mam problem s Firefoxem. Nebyl jsem doma cca tyden a segra mi dala nakej sajrajt do prohlizece -> Viz screeny. Nemuzu prijit na to, jak se toho zbavit, dokonce jsem i preinstaloval firefox a nic. Projel jsem PC Nodem, Spybotem a nic. Nainstaloval Ad-Block znovu a nic. Fakt nevim jak se toho mam zbavit. Nevi nekdo? Mam to skoro na vsech webech. Mam to i kvuli tomu posunuty.
Odkazali me sem do HijackThis sekce.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:27:54, on 28.4.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Windows\SysWOW64\WScript.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
D:\Hry\Battle.net\Battle.net.4403\Battle.net.exe
D:\Download\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [MSStp] C:\Windows\system32\msstp.vbe
O4 - HKLM\..\Run: [msleubSrv] "C:\Windows\system32\msleub.vbe" msxratgf msgfaxvh
O4 - HKLM\..\Run: [mncxtbrSrv] C:\Windows\inf\mncxtbr.vbe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Luke\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files (x86)\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9082 bytes

Reklama

Příspěvekod **jaro3** » 28 dub 2014 19:17

Samá nákaza...

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

Luschak · Příspěvekod **Luschak** » 28 dub 2014 20:07

# AdwCleaner v3.205 - Report created 28/04/2014 at 20:06:21
# Updated 28/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Luke - LUKE-PC
# Running from : C:\Users\Luke\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Users\Luke\AppData\Roaming\Mozilla\Firefox\Profiles\s8mjbs50.default\searchplugins\conduit-search.xml
File Found : C:\Users\Luke\daemonprocess.txt
Folder Found : C:\Users\Luke\.android
Folder Found : C:\Users\Luke\AppData\Local\genienext
Folder Found : C:\Users\Luke\AppData\Local\Mobogenie
Folder Found : C:\Users\Luke\AppData\Roaming\newnext.me
Folder Found : C:\Users\Luke\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Luke\Documents\Mobogenie
Folder Found : C:\Windows\SysWOW64\AI_RecycleBin

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041

-\\ Mozilla Firefox v28.0 (cs)

[ File : C:\Users\Luke\AppData\Roaming\Mozilla\Firefox\Profiles\s8mjbs50.default\prefs.js ]

Line Found : user_pref("extensions.ruw3i.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"mindri.com\")>-1||url.indexOf(\"=apapamam\")>-1[...]

*************************

AdwCleaner[R0].txt - [1829 octets] - [28/04/2014 20:06:21]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1889 octets] ##########

Luschak · Příspěvekod **Luschak** » 28 dub 2014 20:20

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 28.4.2014
Scan Time: 20:19:38
Logfile: adw.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.28.08
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Luke

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 251105
Time Elapsed: 4 min, 41 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 1
Trojan.Agent.VBSGen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|msleubSrv, "C:\Windows\system32\msleub.vbe" msxratgf msgfaxvh, , [eace290654274ee8d34bb8cd4cb6a35d]

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 4
Trojan.Agent.VBS, C:\Windows\SysWOW64\msstp.vbe, , [d7e1da55a3d843f32f6aa4dbfb071fe1],
Trojan.Script, C:\Windows\SysWOW64\msgfaxvh.vbe, , [3484f13ec3b830064bdc8bfd05fdfd03],
Trojan.Script, C:\Windows\SysWOW64\msleub.vbe, , [8f29a08ff982b3834addb6d2e1213bc5],
Trojan.Script, C:\Windows\SysWOW64\msxratgf.vbe, , [68501a1599e2c6704ed9b1d721e150b0],

Physical Sectors: 0
(No malicious items detected)

(end)

Příspěvekod **jaro3** » 29 dub 2014 10:02

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Luschak · Příspěvekod **Luschak** » 29 dub 2014 18:42

# AdwCleaner v3.205 - Report created 29/04/2014 at 18:38:54
# Updated 28/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Luke - LUKE-PC
# Running from : C:\Users\Luke\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041

-\\ Mozilla Firefox v28.0 (cs)

[ File : C:\Users\Luke\AppData\Roaming\Mozilla\Firefox\Profiles\s8mjbs50.default\prefs.js ]

Line Deleted : user_pref("extensions.ruw3i.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"mindri.com\")>-1||url.indexOf(\"=apapamam\")>-1[...]

*************************

AdwCleaner[R0].txt - [1973 octets] - [28/04/2014 20:06:21]
AdwCleaner[R1].txt - [1101 octets] - [29/04/2014 18:38:21]
AdwCleaner[S0].txt - [1949 octets] - [28/04/2014 20:07:59]
AdwCleaner[S1].txt - [1025 octets] - [29/04/2014 18:38:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1085 octets] ##########

Luschak · Příspěvekod **Luschak** » 29 dub 2014 18:50

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Ultimate x64
Ran by Luke on Łt 29.04.2014 at 18:48:30,14
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

~~~ FireFox

Successfully deleted the following from C:\Users\Luke\AppData\Roaming\mozilla\firefox\profiles\s8mjbs50.default\prefs.js

user_pref("extensions.ruw3i.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"mindri.com\")>-1||url.
Emptied folder: C:\Users\Luke\AppData\Roaming\mozilla\firefox\profiles\s8mjbs50.default\minidumps [38 files]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 29.04.2014 at 18:50:06,78
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Luschak · Příspěvekod **Luschak** » 29 dub 2014 18:56

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 29.4.2014
Scan Time: 18:53:56
Logfile: adws.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.29.04
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Luke

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 251415
Time Elapsed: 3 min, 39 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

Luschak · Příspěvekod **Luschak** » 29 dub 2014 19:02

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Luke [Práva správce]
Mód : Kontrola -- Datum : 04/29/2014 18:59:19
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Run : Skytel (Skytel.exe [7]) -> NALEZENO
[PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyEnable (1) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) KINGSTON SH103S3120G ATA Device +++++
--- User ---
[MBR] 08d9422817e13fc8d1110bd0b8f97fe8
[BSP] 29f60f1a125b5197e555d8f8ce9d8acf : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 114370 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD3200AAKS-00L9A0 ATA Device +++++
--- User ---
[MBR] c4e32d34b850da9136051f22bb8f0025
[BSP] 75d7f39217f57af6b58d4383a6d82f51 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 305242 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04292014_185919.txt >>

Příspěvekod **Orcus** » 29 dub 2014 21:57

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

@echo off
del /q /a /f %systemroot%\system32\drivers\etc\hosts 2>nul
echo 127.0.0.1 localhost>>%systemroot%\system32\drivers\etc\hosts
exit

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:zev souboru: zde napiš: FixHosts.bat
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Poklepáním na soubor ho spusť.

====================================================

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

====================================================

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.

Luschak · Příspěvekod **Luschak** » 06 kvě 2014 12:35

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Luke [Práva správce]
Mód : Kontrola -- Datum : 05/06/2014 12:33:27
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyEnable (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
[Address] EAT @explorer.exe (AsyncGetClassBits) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F70B0)
[Address] EAT @explorer.exe (AsyncInstallDistributionUnit) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F7210)
[Address] EAT @explorer.exe (BindAsyncMoniker) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1F90)
[Address] EAT @explorer.exe (CDLGetLongPathNameA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F78D0)
[Address] EAT @explorer.exe (CDLGetLongPathNameW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F78E8)
[Address] EAT @explorer.exe (CORPolicyProvider) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1674)
[Address] EAT @explorer.exe (CoGetClassObjectFromURL) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F73FC)
[Address] EAT @explorer.exe (CoInstall) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F7460)
[Address] EAT @explorer.exe (CoInternetCanonicalizeIUri) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A5660)
[Address] EAT @explorer.exe (CoInternetCombineIUri) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A80A0)
[Address] EAT @explorer.exe (CoInternetCombineUrl) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1946A4)
[Address] EAT @explorer.exe (CoInternetCombineUrlEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1943C0)
[Address] EAT @explorer.exe (CoInternetCompareUrl) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E5280)
[Address] EAT @explorer.exe (CoInternetCreateSecurityManager) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE161EE0)
[Address] EAT @explorer.exe (CoInternetCreateZoneManager) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE170810)
[Address] EAT @explorer.exe (CoInternetFeatureSettingsChanged) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE220284)
[Address] EAT @explorer.exe (CoInternetGetProtocolFlags) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E537C)
[Address] EAT @explorer.exe (CoInternetGetSecurityUrl) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E53D0)
[Address] EAT @explorer.exe (CoInternetGetSecurityUrlEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A9CD0)
[Address] EAT @explorer.exe (CoInternetGetSession) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE162460)
[Address] EAT @explorer.exe (CoInternetIsFeatureEnabled) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A8DC0)
[Address] EAT @explorer.exe (CoInternetIsFeatureEnabledForIUri) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A51B8)
[Address] EAT @explorer.exe (CoInternetIsFeatureEnabledForUrl) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A1820)
[Address] EAT @explorer.exe (CoInternetIsFeatureZoneElevationEnabled) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E586C)
[Address] EAT @explorer.exe (CoInternetParseIUri) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1956A8)
[Address] EAT @explorer.exe (CoInternetParseUrl) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE171490)
[Address] EAT @explorer.exe (CoInternetQueryInfo) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A7C50)
[Address] EAT @explorer.exe (CoInternetSetFeatureEnabled) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E5AF4)
[Address] EAT @explorer.exe (CompareSecurityIds) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE17D1A4)
[Address] EAT @explorer.exe (CompatFlagsFromClsid) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A4044)
[Address] EAT @explorer.exe (CopyBindInfo) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F3020)
[Address] EAT @explorer.exe (CopyStgMedium) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE16BA0C)
[Address] EAT @explorer.exe (CreateAsyncBindCtx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1B86C0)
[Address] EAT @explorer.exe (CreateAsyncBindCtxEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A3D14)
[Address] EAT @explorer.exe (CreateFormatEnumerator) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1868E0)
[Address] EAT @explorer.exe (CreateIUriBuilder) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE163660)
[Address] EAT @explorer.exe (CreateURLMoniker) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1BCCF4)
[Address] EAT @explorer.exe (CreateURLMonikerEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1678D0)
[Address] EAT @explorer.exe (CreateURLMonikerEx2) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A40F0)
[Address] EAT @explorer.exe (CreateUri) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1616F0)
[Address] EAT @explorer.exe (CreateUriFromMultiByteString) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1EE4)
[Address] EAT @explorer.exe (CreateUriPriv) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1EF8)
[Address] EAT @explorer.exe (CreateUriWithFragment) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1F40)
[Address] EAT @explorer.exe (DllCanUnloadNow) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE161600)
[Address] EAT @explorer.exe (DllGetClassObject) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1AAB3C)
[Address] EAT @explorer.exe (DllInstall) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E2458)
[Address] EAT @explorer.exe (DllRegisterServer) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E2464)
[Address] EAT @explorer.exe (DllRegisterServerEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1BE070)
[Address] EAT @explorer.exe (DllUnregisterServer) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E2470)
[Address] EAT @explorer.exe (Extract) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F7F74)
[Address] EAT @explorer.exe (FaultInIEFeature) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F8FE8)
[Address] EAT @explorer.exe (FileBearsMarkOfTheWeb) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE196B60)
[Address] EAT @explorer.exe (FindMediaType) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E2E9C)
[Address] EAT @explorer.exe (FindMediaTypeClass) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE186080)
[Address] EAT @explorer.exe (FindMimeFromData) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A50BC)
[Address] EAT @explorer.exe (GetAddSitesFileUrl) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE2202B0)
[Address] EAT @explorer.exe (GetClassFileOrMime) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1BB8EC)
[Address] EAT @explorer.exe (GetClassURL) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E2074)
[Address] EAT @explorer.exe (GetComponentIDFromCLSSPEC) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F92E8)
[Address] EAT @explorer.exe (GetIDNFlagsForUri) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE17C7F0)
[Address] EAT @explorer.exe (GetIUriPriv) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1F60)
[Address] EAT @explorer.exe (GetIUriPriv2) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1F50)
[Address] EAT @explorer.exe (GetLabelsFromNamedHost) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE228B54)
[Address] EAT @explorer.exe (GetMarkOfTheWeb) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE219390)
[Address] EAT @explorer.exe (GetPortFromUrlScheme) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1E94)
[Address] EAT @explorer.exe (GetPropertyFromName) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1EA4)
[Address] EAT @explorer.exe (GetPropertyName) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1EB4)
[Address] EAT @explorer.exe (GetSoftwareUpdateInfo) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1BE070)
[Address] EAT @explorer.exe (GetUrlmonThreadNotificationHwnd) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1BDEB4)
[Address] EAT @explorer.exe (GetZoneFromAlternateDataStreamEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE166D90)
[Address] EAT @explorer.exe (HlinkGoBack) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE216E78)
[Address] EAT @explorer.exe (HlinkGoForward) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE216F24)
[Address] EAT @explorer.exe (HlinkNavigateMoniker) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE216FD0)
[Address] EAT @explorer.exe (HlinkNavigateString) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE217004)
[Address] EAT @explorer.exe (HlinkSimpleNavigateToMoniker) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE217038)
[Address] EAT @explorer.exe (HlinkSimpleNavigateToString) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE2175E8)
[Address] EAT @explorer.exe (IECompatLogCSSFix) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F12FC)
[Address] EAT @explorer.exe (IEDllLoader) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E26F0)
[Address] EAT @explorer.exe (IEGetUserPrivateNamespaceName) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F3244)
[Address] EAT @explorer.exe (IEInstallScope) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F7554)
[Address] EAT @explorer.exe (IntlPercentEncodeNormalize) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1F70)
[Address] EAT @explorer.exe (IsAsyncMoniker) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A21FC)
[Address] EAT @explorer.exe (IsDWORDProperty) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1EC4)
[Address] EAT @explorer.exe (IsIntranetAvailable) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE220668)
[Address] EAT @explorer.exe (IsJITInProgress) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE17B328)
[Address] EAT @explorer.exe (IsLoggingEnabledA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE21855C)
[Address] EAT @explorer.exe (IsLoggingEnabledW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE218688)
[Address] EAT @explorer.exe (IsStringProperty) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E1ED4)
[Address] EAT @explorer.exe (IsValidURL) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE197610)
[Address] EAT @explorer.exe (MkParseDisplayNameEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1B92F0)
[Address] EAT @explorer.exe (ObtainUserAgentString) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1EDCE0)
[Address] EAT @explorer.exe (PrivateCoInstall) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F7560)
[Address] EAT @explorer.exe (QueryAssociations) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE17E9C0)
[Address] EAT @explorer.exe (QueryClsidAssociation) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F0A8C)
[Address] EAT @explorer.exe (RegisterBindStatusCallback) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE19F600)
[Address] EAT @explorer.exe (RegisterFormatEnumerator) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A1C6C)
[Address] EAT @explorer.exe (RegisterMediaTypeClass) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E20C0)
[Address] EAT @explorer.exe (RegisterMediaTypes) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E2210)
[Address] EAT @explorer.exe (RegisterWebPlatformPermanentSecurityManager) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE198C54)
[Address] EAT @explorer.exe (ReleaseBindInfo) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE167D40)
[Address] EAT @explorer.exe (RevokeBindStatusCallback) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE19FBF0)
[Address] EAT @explorer.exe (RevokeFormatEnumerator) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E22CC)
[Address] EAT @explorer.exe (SetAccessForIEAppContainer) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1F3258)
[Address] EAT @explorer.exe (SetSoftwareUpdateAdvertisementState) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1BE070)
[Address] EAT @explorer.exe (ShouldDisplayPunycodeForUri) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1EDE50)
[Address] EAT @explorer.exe (ShouldShowIntranetWarningSecband) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1A3A3C)
[Address] EAT @explorer.exe (ShowTrustAlertDialog) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE220820)
[Address] EAT @explorer.exe (URLDownloadA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E5CC4)
[Address] EAT @explorer.exe (URLDownloadToCacheFileA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE217D9C)
[Address] EAT @explorer.exe (URLDownloadToCacheFileW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE18A0C4)
[Address] EAT @explorer.exe (URLDownloadToFileA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE217F10)
[Address] EAT @explorer.exe (URLDownloadToFileW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE18EFD0)
[Address] EAT @explorer.exe (URLDownloadW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E5D78)
[Address] EAT @explorer.exe (URLOpenBlockingStreamA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE218058)
[Address] EAT @explorer.exe (URLOpenBlockingStreamW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE218138)
[Address] EAT @explorer.exe (URLOpenPullStreamA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE21821C)
[Address] EAT @explorer.exe (URLOpenPullStreamW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE2182E0)
[Address] EAT @explorer.exe (URLOpenStreamA) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE218408)
[Address] EAT @explorer.exe (URLOpenStreamW) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE2184D0)
[Address] EAT @explorer.exe (UnregisterWebPlatformPermanentSecurityManager) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1BC9B4)
[Address] EAT @explorer.exe (UrlMkBuildVersion) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE1E2804)
[Address] EAT @explorer.exe (UrlMkGetSessionOption) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE173E60)
[Address] EAT @explorer.exe (UrlMkSetSessionOption) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE19D0E4)
[Address] EAT @explorer.exe (UrlmonCleanupCurrentThread) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE18A27C)
[Address] EAT @explorer.exe (WriteHitLogging) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE2185D0)
[Address] EAT @explorer.exe (ZonesReInit) : WS2_32.dll -> HOOKED (C:\Windows\system32\urlmon.dll @ 0xFE219C30)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) KINGSTON SH103S3120G ATA Device +++++
--- User ---
[MBR] 08d9422817e13fc8d1110bd0b8f97fe8
[BSP] 29f60f1a125b5197e555d8f8ce9d8acf : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 114370 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD3200AAKS-00L9A0 ATA Device +++++
--- User ---
[MBR] c4e32d34b850da9136051f22bb8f0025
[BSP] 75d7f39217f57af6b58d4383a6d82f51 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 305242 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_05062014_123327.txt >>

Luschak · Příspěvekod **Luschak** » 06 kvě 2014 12:42

12:37:25.0307 4084 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:37:30.0727 4084 ============================================================
12:37:30.0727 4084 Current date / time: 2014/05/06 12:37:30.0727
12:37:30.0727 4084 SystemInfo:
12:37:30.0727 4084
12:37:30.0727 4084 OS Version: 6.1.7601 ServicePack: 1.0
12:37:30.0727 4084 Product type: Workstation
12:37:30.0727 4084 ComputerName: LUKE-PC
12:37:30.0727 4084 UserName: Luke
12:37:30.0727 4084 Windows directory: C:\Windows
12:37:30.0727 4084 System windows directory: C:\Windows
12:37:30.0727 4084 Running under WOW64
12:37:30.0727 4084 Processor architecture: Intel x64
12:37:30.0727 4084 Number of processors: 2
12:37:30.0727 4084 Page size: 0x1000
12:37:30.0727 4084 Boot type: Normal boot
12:37:30.0727 4084 ============================================================
12:37:30.0947 4084 Drive \Device\Harddisk0\DR0 - Size: 0x1BF286DE00 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
12:37:30.0967 4084 Drive \Device\Harddisk1\DR1 - Size: 0x4A85C4DE00 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
12:37:30.0967 4084 ============================================================
12:37:30.0967 4084 \Device\Harddisk0\DR0:
12:37:30.0967 4084 MBR partitions:
12:37:30.0967 4084 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:37:30.0967 4084 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61000
12:37:30.0967 4084 \Device\Harddisk1\DR1:
12:37:30.0967 4084 MBR partitions:
12:37:30.0967 4084 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D000
12:37:30.0967 4084 ============================================================
12:37:30.0967 4084 C: <-> \Device\Harddisk0\DR0\Partition2
12:37:30.0977 4084 D: <-> \Device\Harddisk1\DR1\Partition1
12:37:30.0977 4084 ============================================================
12:37:30.0977 4084 Initialize success
12:37:30.0977 4084 ============================================================
12:37:34.0059 2628 ============================================================
12:37:34.0059 2628 Scan started
12:37:34.0059 2628 Mode: Manual;
12:37:34.0059 2628 ============================================================
12:37:34.0219 2628 ================ Scan system memory ========================
12:37:34.0219 2628 System memory - ok
12:37:34.0229 2628 ================ Scan services =============================
12:37:34.0259 2628 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:37:34.0259 2628 1394ohci - ok
12:37:34.0259 2628 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:37:34.0269 2628 ACPI - ok
12:37:34.0269 2628 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:37:34.0269 2628 AcpiPmi - ok
12:37:34.0269 2628 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:37:34.0269 2628 AdobeARMservice - ok
12:37:34.0279 2628 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:37:34.0279 2628 adp94xx - ok
12:37:34.0289 2628 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:37:34.0289 2628 adpahci - ok
12:37:34.0299 2628 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:37:34.0299 2628 adpu320 - ok
12:37:34.0299 2628 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:37:34.0299 2628 AeLookupSvc - ok
12:37:34.0309 2628 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
12:37:34.0319 2628 AFD - ok
12:37:34.0319 2628 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:37:34.0319 2628 agp440 - ok
12:37:34.0319 2628 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:37:34.0319 2628 ALG - ok
12:37:34.0329 2628 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:37:34.0329 2628 aliide - ok
12:37:34.0329 2628 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:37:34.0329 2628 amdide - ok
12:37:34.0329 2628 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:37:34.0329 2628 AmdK8 - ok
12:37:34.0339 2628 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:37:34.0339 2628 AmdPPM - ok
12:37:34.0339 2628 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:37:34.0339 2628 amdsata - ok
12:37:34.0349 2628 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:37:34.0349 2628 amdsbs - ok
12:37:34.0349 2628 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:37:34.0349 2628 amdxata - ok
12:37:34.0359 2628 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:37:34.0359 2628 AppID - ok
12:37:34.0359 2628 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:37:34.0359 2628 AppIDSvc - ok
12:37:34.0359 2628 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
12:37:34.0369 2628 Appinfo - ok
12:37:34.0369 2628 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
12:37:34.0369 2628 AppMgmt - ok
12:37:34.0379 2628 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:37:34.0379 2628 arc - ok
12:37:34.0379 2628 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:37:34.0379 2628 arcsas - ok
12:37:34.0389 2628 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:37:34.0389 2628 aspnet_state - ok
12:37:34.0399 2628 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:37:34.0399 2628 AsyncMac - ok
12:37:34.0399 2628 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:37:34.0399 2628 atapi - ok
12:37:34.0409 2628 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:37:34.0419 2628 AudioEndpointBuilder - ok
12:37:34.0419 2628 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:37:34.0429 2628 AudioSrv - ok
12:37:34.0429 2628 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:37:34.0429 2628 AxInstSV - ok
12:37:34.0439 2628 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:37:34.0439 2628 b06bdrv - ok
12:37:34.0449 2628 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:37:34.0449 2628 b57nd60a - ok
12:37:34.0449 2628 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:37:34.0459 2628 BDESVC - ok
12:37:34.0459 2628 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:37:34.0459 2628 Beep - ok
12:37:34.0469 2628 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:37:34.0479 2628 BFE - ok
12:37:34.0489 2628 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:37:34.0499 2628 BITS - ok
12:37:34.0499 2628 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:37:34.0499 2628 blbdrive - ok
12:37:34.0499 2628 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:37:34.0499 2628 bowser - ok
12:37:34.0509 2628 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:37:34.0509 2628 BrFiltLo - ok
12:37:34.0509 2628 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:37:34.0509 2628 BrFiltUp - ok
12:37:34.0509 2628 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:37:34.0519 2628 Browser - ok
12:37:34.0519 2628 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:37:34.0519 2628 Brserid - ok
12:37:34.0529 2628 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:37:34.0529 2628 BrSerWdm - ok
12:37:34.0529 2628 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:37:34.0529 2628 BrUsbMdm - ok
12:37:34.0529 2628 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:37:34.0529 2628 BrUsbSer - ok
12:37:34.0539 2628 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:37:34.0539 2628 BTHMODEM - ok
12:37:34.0539 2628 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:37:34.0539 2628 bthserv - ok
12:37:34.0549 2628 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:37:34.0549 2628 cdfs - ok
12:37:34.0549 2628 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:37:34.0549 2628 cdrom - ok
12:37:34.0559 2628 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:37:34.0559 2628 CertPropSvc - ok
12:37:34.0559 2628 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:37:34.0559 2628 circlass - ok
12:37:34.0569 2628 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:37:34.0569 2628 CLFS - ok
12:37:34.0579 2628 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:37:34.0579 2628 clr_optimization_v2.0.50727_32 - ok
12:37:34.0579 2628 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:37:34.0579 2628 clr_optimization_v2.0.50727_64 - ok
12:37:34.0589 2628 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:37:34.0589 2628 clr_optimization_v4.0.30319_32 - ok
12:37:34.0599 2628 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:37:34.0599 2628 clr_optimization_v4.0.30319_64 - ok
12:37:34.0599 2628 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:37:34.0599 2628 CmBatt - ok
12:37:34.0599 2628 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:37:34.0599 2628 cmdide - ok
12:37:34.0609 2628 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
12:37:34.0609 2628 CNG - ok
12:37:34.0619 2628 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:37:34.0619 2628 Compbatt - ok
12:37:34.0619 2628 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:37:34.0619 2628 CompositeBus - ok
12:37:34.0619 2628 COMSysApp - ok
12:37:34.0629 2628 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:37:34.0629 2628 crcdisk - ok
12:37:34.0629 2628 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:37:34.0629 2628 CryptSvc - ok
12:37:34.0639 2628 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
12:37:34.0639 2628 CSC - ok
12:37:34.0649 2628 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
12:37:34.0659 2628 CscService - ok
12:37:34.0669 2628 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:37:34.0669 2628 DcomLaunch - ok
12:37:34.0679 2628 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:37:34.0679 2628 defragsvc - ok
12:37:34.0679 2628 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:37:34.0679 2628 DfsC - ok
12:37:34.0689 2628 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:37:34.0689 2628 Dhcp - ok
12:37:34.0699 2628 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:37:34.0699 2628 discache - ok
12:37:34.0699 2628 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:37:34.0699 2628 Disk - ok
12:37:34.0699 2628 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:37:34.0709 2628 Dnscache - ok
12:37:34.0709 2628 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:37:34.0709 2628 dot3svc - ok
12:37:34.0719 2628 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:37:34.0719 2628 DPS - ok
12:37:34.0719 2628 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:37:34.0719 2628 drmkaud - ok
12:37:34.0739 2628 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:37:34.0739 2628 DXGKrnl - ok
12:37:34.0739 2628 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:37:34.0749 2628 EapHost - ok
12:37:34.0779 2628 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:37:34.0789 2628 ebdrv - ok
12:37:34.0799 2628 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
12:37:34.0799 2628 EFS - ok
12:37:34.0809 2628 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:37:34.0809 2628 ehRecvr - ok
12:37:34.0809 2628 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:37:34.0819 2628 ehSched - ok
12:37:34.0819 2628 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:37:34.0829 2628 elxstor - ok
12:37:34.0829 2628 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:37:34.0829 2628 ErrDev - ok
12:37:34.0839 2628 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:37:34.0839 2628 EventSystem - ok
12:37:34.0849 2628 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:37:34.0849 2628 exfat - ok
12:37:34.0849 2628 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:37:34.0849 2628 fastfat - ok
12:37:34.0859 2628 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:37:34.0859 2628 Fax - ok
12:37:34.0869 2628 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:37:34.0869 2628 fdc - ok
12:37:34.0869 2628 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:37:34.0869 2628 fdPHost - ok
12:37:34.0879 2628 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:37:34.0879 2628 FDResPub - ok
12:37:34.0879 2628 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:37:34.0879 2628 FileInfo - ok
12:37:34.0879 2628 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:37:34.0879 2628 Filetrace - ok
12:37:34.0889 2628 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:37:34.0889 2628 flpydisk - ok
12:37:34.0889 2628 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:37:34.0889 2628 FltMgr - ok
12:37:34.0909 2628 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
12:37:34.0919 2628 FontCache - ok
12:37:34.0919 2628 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:37:34.0919 2628 FontCache3.0.0.0 - ok
12:37:34.0929 2628 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:37:34.0929 2628 FsDepends - ok
12:37:34.0929 2628 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:37:34.0929 2628 Fs_Rec - ok
12:37:34.0929 2628 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:37:34.0939 2628 fvevol - ok
12:37:34.0939 2628 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:37:34.0939 2628 gagp30kx - ok
12:37:34.0939 2628 [ 6275303610285B57361F03A375062FBA ] gdrv C:\Windows\gdrv.sys
12:37:34.0939 2628 gdrv - ok
12:37:34.0949 2628 [ 604937407A431016577DDDB4E1DD2A85 ] GEST Service C:\Program Files (x86)\GIGABYTE\EnergySaver\GSvr.exe
12:37:34.0949 2628 GEST Service - ok
12:37:34.0959 2628 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:37:34.0969 2628 gpsvc - ok
12:37:34.0969 2628 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
12:37:34.0969 2628 hamachi - ok
12:37:34.0969 2628 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:37:34.0969 2628 hcw85cir - ok
12:37:34.0979 2628 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:37:34.0979 2628 HdAudAddService - ok
12:37:34.0989 2628 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:37:34.0989 2628 HDAudBus - ok
12:37:34.0989 2628 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:37:34.0989 2628 HidBatt - ok
12:37:34.0989 2628 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:37:34.0989 2628 HidBth - ok
12:37:34.0999 2628 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:37:34.0999 2628 HidIr - ok
12:37:35.0009 2628 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:37:35.0009 2628 hidserv - ok
12:37:35.0009 2628 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
12:37:35.0019 2628 HidUsb - ok
12:37:35.0019 2628 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:37:35.0019 2628 hkmsvc - ok
12:37:35.0029 2628 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:37:35.0029 2628 HomeGroupListener - ok
12:37:35.0029 2628 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:37:35.0039 2628 HomeGroupProvider - ok
12:37:35.0039 2628 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:37:35.0039 2628 HpSAMD - ok
12:37:35.0049 2628 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:37:35.0049 2628 HTTP - ok
12:37:35.0059 2628 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:37:35.0059 2628 hwpolicy - ok
12:37:35.0059 2628 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:37:35.0059 2628 i8042prt - ok
12:37:35.0069 2628 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:37:35.0069 2628 iaStorV - ok
12:37:35.0079 2628 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:37:35.0079 2628 idsvc - ok
12:37:35.0089 2628 IEEtwCollectorService - ok
12:37:35.0089 2628 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:37:35.0089 2628 iirsp - ok
12:37:35.0099 2628 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
12:37:35.0109 2628 IKEEXT - ok
12:37:35.0129 2628 [ 4A725CDDE1A0C3D1B1EACA0D9D0D95D0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:37:35.0129 2628 IntcAzAudAddService - ok
12:37:35.0139 2628 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:37:35.0139 2628 intelide - ok
12:37:35.0139 2628 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:37:35.0139 2628 intelppm - ok
12:37:35.0139 2628 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:37:35.0149 2628 IPBusEnum - ok
12:37:35.0149 2628 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:37:35.0149 2628 IpFilterDriver - ok
12:37:35.0159 2628 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:37:35.0159 2628 iphlpsvc - ok
12:37:35.0169 2628 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:37:35.0169 2628 IPMIDRV - ok
12:37:35.0169 2628 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:37:35.0169 2628 IPNAT - ok
12:37:35.0169 2628 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:37:35.0179 2628 IRENUM - ok
12:37:35.0179 2628 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:37:35.0179 2628 isapnp - ok
12:37:35.0179 2628 [ 96BB922A0981BC7432C8CF52B5410FE6 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:37:35.0189 2628 iScsiPrt - ok
12:37:35.0189 2628 [ 3CE8227864A5C4574F5FD99658D69885 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
12:37:35.0189 2628 JRAID - ok
12:37:35.0189 2628 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:37:35.0189 2628 kbdclass - ok
12:37:35.0199 2628 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:37:35.0199 2628 kbdhid - ok
12:37:35.0199 2628 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
12:37:35.0199 2628 KeyIso - ok
12:37:35.0209 2628 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:37:35.0209 2628 KSecDD - ok
12:37:35.0209 2628 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:37:35.0209 2628 KSecPkg - ok
12:37:35.0209 2628 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:37:35.0209 2628 ksthunk - ok
12:37:35.0219 2628 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:37:35.0229 2628 KtmRm - ok
12:37:35.0229 2628 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:37:35.0229 2628 LanmanServer - ok
12:37:35.0239 2628 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:37:35.0239 2628 LanmanWorkstation - ok
12:37:35.0249 2628 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
12:37:35.0249 2628 LGBusEnum - ok
12:37:35.0249 2628 [ 94AF1384A67B9FCF5651E70BC9D4C526 ] LGSHidFilt C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
12:37:35.0249 2628 LGSHidFilt - ok
12:37:35.0249 2628 [ 8F4DA100274CF85D94FBA8CA76125255 ] LGSUsbFilt C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys
12:37:35.0249 2628 LGSUsbFilt - ok
12:37:35.0259 2628 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
12:37:35.0259 2628 LGVirHid - ok
12:37:35.0259 2628 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:37:35.0259 2628 lltdio - ok
12:37:35.0269 2628 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:37:35.0269 2628 lltdsvc - ok
12:37:35.0269 2628 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:37:35.0279 2628 lmhosts - ok
12:37:35.0279 2628 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:37:35.0279 2628 LSI_FC - ok
12:37:35.0279 2628 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:37:35.0289 2628 LSI_SAS - ok
12:37:35.0289 2628 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:37:35.0289 2628 LSI_SAS2 - ok
12:37:35.0289 2628 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:37:35.0289 2628 LSI_SCSI - ok
12:37:35.0299 2628 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:37:35.0299 2628 luafv - ok
12:37:35.0299 2628 [ FD5465B876D55534117963FAAA4B9DFC ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
12:37:35.0299 2628 MBAMProtector - ok
12:37:35.0319 2628 [ 0E08BDD7326E657D59DB40BAD23D8169 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
12:37:35.0329 2628 MBAMScheduler - ok
12:37:35.0339 2628 [ A8E7F3DB083EB0839DFC1C763CDD2594 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
12:37:35.0339 2628 MBAMService - ok
12:37:35.0349 2628 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:37:35.0349 2628 Mcx2Svc - ok
12:37:35.0349 2628 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:37:35.0349 2628 megasas - ok
12:37:35.0359 2628 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:37:35.0359 2628 MegaSR - ok
12:37:35.0359 2628 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
12:37:35.0359 2628 Microsoft Office Groove Audit Service - ok
12:37:35.0369 2628 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:37:35.0369 2628 MMCSS - ok
12:37:35.0369 2628 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:37:35.0369 2628 Modem - ok
12:37:35.0369 2628 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:37:35.0379 2628 monitor - ok
12:37:35.0379 2628 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:37:35.0379 2628 mouclass - ok
12:37:35.0379 2628 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:37:35.0379 2628 mouhid - ok
12:37:35.0389 2628 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:37:35.0389 2628 mountmgr - ok
12:37:35.0389 2628 [ AEE4E9CC59CDEB55B1ECB0E596E796BE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:37:35.0389 2628 MozillaMaintenance - ok
12:37:35.0399 2628 [ 9EB89625A82AC961F25E7C865947BF9A ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
12:37:35.0399 2628 MpFilter - ok
12:37:35.0399 2628 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:37:35.0399 2628 mpio - ok
12:37:35.0409 2628 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:37:35.0409 2628 mpsdrv - ok
12:37:35.0419 2628 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:37:35.0419 2628 MpsSvc - ok
12:37:35.0429 2628 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:37:35.0429 2628 MRxDAV - ok
12:37:35.0429 2628 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:37:35.0429 2628 mrxsmb - ok
12:37:35.0439 2628 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:37:35.0439 2628 mrxsmb10 - ok
12:37:35.0439 2628 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:37:35.0439 2628 mrxsmb20 - ok
12:37:35.0449 2628 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:37:35.0449 2628 msahci - ok
12:37:35.0449 2628 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:37:35.0449 2628 msdsm - ok
12:37:35.0459 2628 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:37:35.0459 2628 MSDTC - ok
12:37:35.0459 2628 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:37:35.0459 2628 Msfs - ok
12:37:35.0469 2628 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:37:35.0469 2628 mshidkmdf - ok
12:37:35.0469 2628 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:37:35.0469 2628 msisadrv - ok
12:37:35.0469 2628 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:37:35.0479 2628 MSiSCSI - ok
12:37:35.0479 2628 msiserver - ok
12:37:35.0479 2628 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:37:35.0479 2628 MSKSSRV - ok
12:37:35.0489 2628 [ 89F2AEDC2788696702141AB82C3E7866 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
12:37:35.0489 2628 MsMpSvc - ok
12:37:35.0489 2628 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:37:35.0489 2628 MSPCLOCK - ok
12:37:35.0489 2628 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:37:35.0489 2628 MSPQM - ok
12:37:35.0499 2628 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:37:35.0499 2628 MsRPC - ok
12:37:35.0509 2628 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:37:35.0509 2628 mssmbios - ok
12:37:35.0509 2628 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:37:35.0509 2628 MSTEE - ok
12:37:35.0509 2628 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:37:35.0509 2628 MTConfig - ok
12:37:35.0509 2628 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:37:35.0519 2628 Mup - ok
12:37:35.0519 2628 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:37:35.0529 2628 napagent - ok
12:37:35.0529 2628 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:37:35.0529 2628 NativeWifiP - ok
12:37:35.0549 2628 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:37:35.0549 2628 NDIS - ok
12:37:35.0549 2628 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:37:35.0549 2628 NdisCap - ok
12:37:35.0559 2628 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:37:35.0559 2628 NdisTapi - ok
12:37:35.0559 2628 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:37:35.0559 2628 Ndisuio - ok
12:37:35.0559 2628 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:37:35.0569 2628 NdisWan - ok
12:37:35.0569 2628 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:37:35.0569 2628 NDProxy - ok
12:37:35.0569 2628 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:37:35.0569 2628 NetBIOS - ok
12:37:35.0579 2628 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:37:35.0579 2628 NetBT - ok
12:37:35.0579 2628 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
12:37:35.0579 2628 Netlogon - ok
12:37:35.0589 2628 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:37:35.0589 2628 Netman - ok
12:37:35.0599 2628 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:35.0599 2628 NetMsmqActivator - ok
12:37:35.0599 2628 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:35.0599 2628 NetPipeActivator - ok
12:37:35.0609 2628 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:37:35.0609 2628 netprofm - ok
12:37:35.0619 2628 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:35.0619 2628 NetTcpActivator - ok
12:37:35.0619 2628 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:35.0619 2628 NetTcpPortSharing - ok
12:37:35.0629 2628 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:37:35.0629 2628 nfrd960 - ok
12:37:35.0629 2628 [ C3E0696C3B42F694C5822776AA6FFFDF ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:37:35.0629 2628 NisDrv - ok
12:37:35.0639 2628 [ DCEE3592299B2229A0DB98CB415059A2 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
12:37:35.0639 2628 NisSrv - ok
12:37:35.0639 2628 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:37:35.0649 2628 NlaSvc - ok
12:37:35.0649 2628 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:37:35.0649 2628 Npfs - ok
12:37:35.0649 2628 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:37:35.0649 2628 nsi - ok
12:37:35.0659 2628 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:37:35.0659 2628 nsiproxy - ok
12:37:35.0679 2628 [ 1A29A59A4C5BA6F8C85062A613B7E2B2 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:37:35.0679 2628 Ntfs - ok
12:37:35.0689 2628 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:37:35.0689 2628 Null - ok
12:37:35.0799 2628 [ 52B33E12FF8C9E219CAEC1BB4A5F5E4C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:37:35.0849 2628 nvlddmkm - ok
12:37:35.0869 2628 [ D2FE0376285A783693469422678E878B ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
12:37:35.0869 2628 NvNetworkService - ok
12:37:35.0879 2628 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:37:35.0879 2628 nvraid - ok
12:37:35.0879 2628 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:37:35.0879 2628 nvstor - ok
12:37:36.0039 2628 [ 4F0E2990DB12849D428DE7B0AC5D92B9 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
12:37:36.0109 2628 NvStreamSvc - ok
12:37:36.0129 2628 [ 2B47EDD27365F9F5D8E87648BECF52C4 ] nvsvc C:\Windows\system32\nvvsvc.exe
12:37:36.0129 2628 nvsvc - ok
12:37:36.0139 2628 [ 939C0FAE9CC0CDD69E6508BDE4C11FE5 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
12:37:36.0139 2628 nvvad_WaveExtensible - ok
12:37:36.0139 2628 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:37:36.0139 2628 nv_agp - ok
12:37:36.0149 2628 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:37:36.0149 2628 odserv - ok
12:37:36.0149 2628 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:37:36.0149 2628 ohci1394 - ok
12:37:36.0159 2628 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:37:36.0159 2628 ose - ok
12:37:36.0159 2628 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:37:36.0169 2628 p2pimsvc - ok
12:37:36.0179 2628 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:37:36.0179 2628 p2psvc - ok
12:37:36.0179 2628 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:37:36.0179 2628 Parport - ok
12:37:36.0189 2628 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:37:36.0189 2628 partmgr - ok
12:37:36.0189 2628 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:37:36.0199 2628 PcaSvc - ok
12:37:36.0199 2628 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:37:36.0199 2628 pci - ok
12:37:36.0199 2628 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:37:36.0199 2628 pciide - ok
12:37:36.0209 2628 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:37:36.0209 2628 pcmcia - ok
12:37:36.0209 2628 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:37:36.0209 2628 pcw - ok
12:37:36.0219 2628 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:37:36.0229 2628 PEAUTH - ok
12:37:36.0239 2628 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:37:36.0249 2628 PeerDistSvc - ok
12:37:36.0269 2628 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:37:36.0269 2628 PerfHost - ok
12:37:36.0289 2628 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:37:36.0309 2628 pla - ok
12:37:36.0309 2628 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:37:36.0319 2628 PlugPlay - ok
12:37:36.0319 2628 PnkBstrA - ok
12:37:36.0329 2628 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:37:36.0329 2628 PNRPAutoReg - ok
12:37:36.0329 2628 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:37:36.0339 2628 PNRPsvc - ok
12:37:36.0339 2628 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:37:36.0349 2628 PolicyAgent - ok
12:37:36.0349 2628 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:37:36.0359 2628 Power - ok
12:37:36.0359 2628 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:37:36.0359 2628 PptpMiniport - ok
12:37:36.0359 2628 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:37:36.0359 2628 Processor - ok
12:37:36.0369 2628 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:37:36.0369 2628 ProfSvc - ok
12:37:36.0379 2628 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
12:37:36.0379 2628 ProtectedStorage - ok
12:37:36.0379 2628 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:37:36.0379 2628 Psched - ok
12:37:36.0399 2628 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:37:36.0409 2628 ql2300 - ok
12:37:36.0409 2628 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:37:36.0409 2628 ql40xx - ok
12:37:36.0419 2628 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:37:36.0419 2628 QWAVE - ok
12:37:36.0419 2628 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:37:36.0419 2628 QWAVEdrv - ok
12:37:36.0429 2628 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:37:36.0429 2628 RasAcd - ok
12:37:36.0429 2628 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:37:36.0429 2628 RasAgileVpn - ok
12:37:36.0429 2628 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:37:36.0439 2628 RasAuto - ok
12:37:36.0439 2628 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:37:36.0439 2628 Rasl2tp - ok
12:37:36.0449 2628 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:37:36.0449 2628 RasMan - ok
12:37:36.0459 2628 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:37:36.0459 2628 RasPppoe - ok
12:37:36.0459 2628 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:37:36.0459 2628 RasSstp - ok
12:37:36.0469 2628 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:37:36.0469 2628 rdbss - ok
12:37:36.0469 2628 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:37:36.0469 2628 rdpbus - ok
12:37:36.0469 2628 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:37:36.0469 2628 RDPCDD - ok
12:37:36.0479 2628 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:37:36.0479 2628 RDPDR - ok
12:37:36.0479 2628 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:37:36.0479 2628 RDPENCDD - ok
12:37:36.0489 2628 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:37:36.0489 2628 RDPREFMP - ok
12:37:36.0489 2628 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:37:36.0489 2628 RdpVideoMiniport - ok
12:37:36.0499 2628 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:37:36.0499 2628 RDPWD - ok
12:37:36.0499 2628 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:37:36.0509 2628 rdyboost - ok
12:37:36.0509 2628 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:37:36.0509 2628 RemoteAccess - ok
12:37:36.0519 2628 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:37:36.0519 2628 RemoteRegistry - ok
12:37:36.0519 2628 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:37:36.0519 2628 RpcEptMapper - ok
12:37:36.0529 2628 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:37:36.0529 2628 RpcLocator - ok
12:37:36.0539 2628 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:37:36.0539 2628 RpcSs - ok
12:37:36.0539 2628 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:37:36.0539 2628 rspndr - ok
12:37:36.0549 2628 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:37:36.0559 2628 RTL8167 - ok
12:37:36.0559 2628 [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
12:37:36.0559 2628 RtNdPt60 - ok
12:37:36.0559 2628 [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] RTTEAMPT C:\Windows\system32\DRIVERS\RtTeam60.sys
12:37:36.0559 2628 RTTEAMPT - ok
12:37:36.0569 2628 [ ED0624ED83121E1BC141F49B1316CAA0 ] RTVLANPT C:\Windows\system32\DRIVERS\RtVlan620.sys
12:37:36.0569 2628 RTVLANPT - ok
12:37:36.0569 2628 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
12:37:36.0569 2628 s3cap - ok
12:37:36.0569 2628 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
12:37:36.0569 2628 SamSs - ok
12:37:36.0579 2628 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:37:36.0579 2628 sbp2port - ok
12:37:36.0579 2628 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:37:36.0579 2628 SCardSvr - ok
12:37:36.0589 2628 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:37:36.0589 2628 scfilter - ok
12:37:36.0599 2628 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:37:36.0609 2628 Schedule - ok
12:37:36.0609 2628 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:37:36.0619 2628 SCPolicySvc - ok
12:37:36.0619 2628 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:37:36.0619 2628 SDRSVC - ok
12:37:36.0659 2628 [ 98EF79CC2B07398AC525F9EA1AE0366F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
12:37:36.0679 2628 SDScannerService - ok
12:37:36.0689 2628 [ 14BF6B3AB327D519ED007CDDC56F6900 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
12:37:36.0699 2628 SDUpdateService - ok
12:37:36.0699 2628 [ 820EBE67AB99F033FDE25B2692157991 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
12:37:36.0699 2628 SDWSCService - ok
12:37:36.0699 2628 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:37:36.0699 2628 secdrv - ok
12:37:36.0709 2628 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:37:36.0709 2628 seclogon - ok
12:37:36.0709 2628 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
12:37:36.0709 2628 SENS - ok
12:37:36.0719 2628 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:37:36.0719 2628 SensrSvc - ok
12:37:36.0719 2628 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:37:36.0719 2628 Serenum - ok
12:37:36.0729 2628 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:37:36.0729 2628 Serial - ok
12:37:36.0729 2628 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:37:36.0729 2628 sermouse - ok
12:37:36.0739 2628 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:37:36.0739 2628 SessionEnv - ok
12:37:36.0739 2628 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:37:36.0739 2628 sffdisk - ok
12:37:36.0739 2628 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:37:36.0749 2628 sffp_mmc - ok
12:37:36.0749 2628 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:37:36.0749 2628 sffp_sd - ok
12:37:36.0749 2628 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:37:36.0749 2628 sfloppy - ok
12:37:36.0759 2628 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:37:36.0759 2628 SharedAccess - ok
12:37:36.0769 2628 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:37:36.0769 2628 ShellHWDetection - ok
12:37:36.0779 2628 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:37:36.0779 2628 SiSRaid2 - ok
12:37:36.0779 2628 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:37:36.0779 2628 SiSRaid4 - ok
12:37:36.0779 2628 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:37:36.0779 2628 SkypeUpdate - ok
12:37:36.0789 2628 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:37:36.0789 2628 Smb - ok
12:37:36.0799 2628 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:37:36.0799 2628 SNMPTRAP - ok
12:37:36.0799 2628 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:37:36.0799 2628 spldr - ok
12:37:36.0809 2628 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:37:36.0809 2628 Spooler - ok
12:37:36.0849 2628 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:37:36.0859 2628 sppsvc - ok
12:37:36.0869 2628 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:37:36.0869 2628 sppuinotify - ok
12:37:36.0879 2628 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:37:36.0879 2628 srv - ok
12:37:36.0889 2628 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:37:36.0889 2628 srv2 - ok
12:37:36.0889 2628 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:37:36.0889 2628 srvnet - ok
12:37:36.0899 2628 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:37:36.0899 2628 SSDPSRV - ok
12:37:36.0909 2628 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:37:36.0909 2628 SstpSvc - ok
12:37:36.0919 2628 [ 8934225956FC9E7ABE6832D023EDE113 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:37:36.0919 2628 Steam Client Service - ok
12:37:36.0929 2628 [ B5D2F4BF587FD60AF75B09EFC1AD0E0A ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
12:37:36.0929 2628 Stereo Service - ok
12:37:36.0929 2628 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:37:36.0929 2628 stexstor - ok
12:37:36.0939 2628 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:37:36.0949 2628 stisvc - ok
12:37:36.0949 2628 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
12:37:36.0949 2628 storflt - ok
12:37:36.0949 2628 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:37:36.0949 2628 storvsc - ok
12:37:36.0959 2628 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:37:36.0959 2628 swenum - ok
12:37:36.0959 2628 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:37:36.0969 2628 swprv - ok
12:37:36.0969 2628 Synth3dVsc - ok
12:37:36.0989 2628 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:37:37.0009 2628 SysMain - ok
12:37:37.0009 2628 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:37:37.0019 2628 TabletInputService - ok
12:37:37.0019 2628 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
12:37:37.0019 2628 tap0901t - ok
12:37:37.0029 2628 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:37:37.0029 2628 TapiSrv - ok
12:37:37.0039 2628 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:37:37.0039 2628 TBS - ok
12:37:37.0059 2628 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:37:37.0059 2628 Tcpip - ok
12:37:37.0089 2628 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:37:37.0089 2628 TCPIP6 - ok
12:37:37.0099 2628 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:37:37.0099 2628 tcpipreg - ok
12:37:37.0099 2628 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:37:37.0099 2628 TDPIPE - ok
12:37:37.0109 2628 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:37:37.0109 2628 TDTCP - ok
12:37:37.0109 2628 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:37:37.0109 2628 tdx - ok
12:37:37.0119 2628 [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] TEAM C:\Windows\system32\DRIVERS\RtTeam60.sys
12:37:37.0119 2628 TEAM - ok
12:37:37.0159 2628 [ 2B29FD3AF7B4FEB272CD1F6EEC8FE4BA ] TeamViewer9 C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
12:37:37.0179 2628 TeamViewer9 - ok
12:37:37.0189 2628 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:37:37.0189 2628 TermDD - ok
12:37:37.0199 2628 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:37:37.0199 2628 TermService - ok
12:37:37.0209 2628 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:37:37.0209 2628 Themes - ok
12:37:37.0209 2628 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:37:37.0219 2628 THREADORDER - ok
12:37:37.0219 2628 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:37:37.0219 2628 TrkWks - ok
12:37:37.0229 2628 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:37:37.0229 2628 TrustedInstaller - ok
12:37:37.0229 2628 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:37:37.0229 2628 tssecsrv - ok
12:37:37.0239 2628 [ E9981ECE8D894CEF7038FD1D040EB426 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:37:37.0239 2628 TsUsbFlt - ok
12:37:37.0239 2628 tsusbhub - ok
12:37:37.0239 2628 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:37:37.0239 2628 tunnel - ok
12:37:37.0259 2628 [ 9B67EEB5ECCA7E7A57942D967DD59089 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
12:37:37.0259 2628 TunngleService - ok
12:37:37.0259 2628 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:37:37.0259 2628 uagp35 - ok
12:37:37.0269 2628 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:37:37.0269 2628 udfs - ok
12:37:37.0279 2628 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:37:37.0279 2628 UI0Detect - ok
12:37:37.0279 2628 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:37:37.0279 2628 uliagpkx - ok
12:37:37.0279 2628 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
12:37:37.0279 2628 umbus - ok
12:37:37.0289 2628 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:37:37.0289 2628 UmPass - ok
12:37:37.0289 2628 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
12:37:37.0299 2628 UmRdpService - ok
12:37:37.0299 2628 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:37:37.0309 2628 upnphost - ok
12:37:37.0309 2628 [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:37:37.0309 2628 usbaudio - ok
12:37:37.0319 2628 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:37:37.0319 2628 usbccgp - ok
12:37:37.0319 2628 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:37:37.0319 2628 usbcir - ok
12:37:37.0319 2628 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:37:37.0319 2628 usbehci - ok
12:37:37.0329 2628 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:37:37.0329 2628 usbhub - ok
12:37:37.0339 2628 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:37:37.0339 2628 usbohci - ok
12:37:37.0339 2628 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:37:37.0339 2628 usbprint - ok
12:37:37.0339 2628 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:37:37.0339 2628 USBSTOR - ok
12:37:37.0349 2628 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:37:37.0349 2628 usbuhci - ok
12:37:37.0349 2628 [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:37:37.0349 2628 usbvideo - ok
12:37:37.0359 2628 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:37:37.0359 2628 UxSms - ok
12:37:37.0359 2628 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
12:37:37.0359 2628 VaultSvc - ok
12:37:37.0369 2628 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:37:37.0369 2628 vdrvroot - ok
12:37:37.0369 2628 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:37:37.0379 2628 vds - ok
12:37:37.0379 2628 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:37:37.0379 2628 vga - ok
12:37:37.0379 2628 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:37:37.0379 2628 VgaSave - ok
12:37:37.0389 2628 VGPU - ok
12:37:37.0389 2628 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:37:37.0389 2628 vhdmp - ok
12:37:37.0399 2628 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:37:37.0399 2628 viaide - ok
12:37:37.0399 2628 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:37:37.0399 2628 vmbus - ok
12:37:37.0409 2628 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
12:37:37.0409 2628 VMBusHID - ok
12:37:37.0409 2628 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:37:37.0409 2628 volmgr - ok
12:37:37.0419 2628 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:37:37.0419 2628 volmgrx - ok
12:37:37.0419 2628 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:37:37.0429 2628 volsnap - ok
12:37:37.0429 2628 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys

Prosim o kontrolu logu

Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Re: Prosim o kontrolu logu

Kdo je online