A log z Malwarebytes?
====================================================
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Smazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
====================================================
Stáhni si Junkware Removal Tool
na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Prosím o kontrolu logu - policejní vir ? Vyřešeno
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
No stáhnul jsem si ten antimalwarový program, ale když jsem po něm po scanu chtěl log, přestal odpovídat. To se mi stalo 3x za sebou. Vždy, když jsem po něm chtěl log, spadnul. Co s ním mám teda dělat ?
Úprava : Přidal jsem věty : To se mi stalo 3x za sebou. Vždy, když jsem po něm chtěl log, spadnul.
Úprava : Přidal jsem věty : To se mi stalo 3x za sebou. Vždy, když jsem po něm chtěl log, spadnul.
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
A ještě ke svému dotazu přidávám log z JRT. Jinak jsem už přemazal nepotřebné soubory ADW cleanerem, ale pořád nevím, jak dostat log z Malwarebytes.
LOG Z JRT:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows Vista (TM) Home Basic x86
Ran by MSI on ne 15.06.2014 at 19:57:05,88
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011221158}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{20DC247F-F942-4F3C-8338-5927C50442A2}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\adtrustmedia"
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Users\MSI\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\MSI\appdata\locallow\boost_interprocess"
Successfully deleted: [Folder] "C:\Program Files\adtrustmedia"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{00219251-1B7A-4B70-8003-F69CCE27EA00}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{05EA3CE1-736A-4FA8-B64F-FDDE7F96DD27}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{0F281D6C-3F09-44F8-87C6-7A0F5736CD23}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{0F51EF69-C9DC-4AF0-82BE-C594FD7C965C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{1563B2B1-6B49-4C33-B5AF-6FE77B3710A8}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{22EA5774-278D-4DC4-BAD5-1C91B4D983A4}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{2C753CC0-C6E9-4648-A569-B78C473073A2}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{3D12782C-6BF6-4962-87F5-A97860BB2688}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{3DA041F1-44A2-4C46-8C03-834CFE10779C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{480CD702-8E46-4D1F-A398-75270C7BC82A}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{516F636B-9422-4623-8833-0A725C57510C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{5AC6C6C4-B2EE-46A0-8963-1CB3213C986A}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{61AD3559-F74C-46DA-A3B7-DF9AADAFB5AE}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{6AD51670-83F2-44AF-9AA8-EFDA0B768322}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{6EC69152-D22A-4E17-B21A-ECE46664F229}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{8A410EB1-F8FA-4E4D-A982-912CF6A78EF7}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{8EC5FB57-8EAD-4439-BD23-CFCC25BB17EA}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{9CB6654F-AFB2-40AF-800B-02EC8AE7B76F}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{A1587E89-A61F-479C-B28B-30C17EE17215}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{A390706E-8E8E-4BBB-A974-2F06EB57E62C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{AB05558E-8541-47D1-83E3-01F3D9C50BC2}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{AB74AD78-BD34-4FBD-B11E-D43B77AF6CCB}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{B66CC910-B5F6-41DC-AD31-0C6C97E36265}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{B7841FBE-C4B6-4739-9205-707725C8D74E}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{C22AA7D9-ACBD-49A8-9E18-3E0B6776CC03}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{C87E9F8C-6BAF-46E7-B903-DB09868D2F0D}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{D7997B92-49C9-4263-B57D-D4FB3220DCBC}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{D81C3DEC-2FF3-4140-A5BD-3AB984F0C026}
~~~ FireFox
Successfully deleted: [File] C:\user.js
Failed to delete: [File] "C:\Program Files\Mozilla Firefox\searchplugins\fcmdsrchstonicla.xml"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 15.06.2014 at 20:08:15,40
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
LOG Z JRT:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows Vista (TM) Home Basic x86
Ran by MSI on ne 15.06.2014 at 19:57:05,88
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011221158}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{20DC247F-F942-4F3C-8338-5927C50442A2}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\adtrustmedia"
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Users\MSI\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\MSI\appdata\locallow\boost_interprocess"
Successfully deleted: [Folder] "C:\Program Files\adtrustmedia"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{00219251-1B7A-4B70-8003-F69CCE27EA00}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{05EA3CE1-736A-4FA8-B64F-FDDE7F96DD27}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{0F281D6C-3F09-44F8-87C6-7A0F5736CD23}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{0F51EF69-C9DC-4AF0-82BE-C594FD7C965C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{1563B2B1-6B49-4C33-B5AF-6FE77B3710A8}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{22EA5774-278D-4DC4-BAD5-1C91B4D983A4}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{2C753CC0-C6E9-4648-A569-B78C473073A2}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{3D12782C-6BF6-4962-87F5-A97860BB2688}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{3DA041F1-44A2-4C46-8C03-834CFE10779C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{480CD702-8E46-4D1F-A398-75270C7BC82A}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{516F636B-9422-4623-8833-0A725C57510C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{5AC6C6C4-B2EE-46A0-8963-1CB3213C986A}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{61AD3559-F74C-46DA-A3B7-DF9AADAFB5AE}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{6AD51670-83F2-44AF-9AA8-EFDA0B768322}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{6EC69152-D22A-4E17-B21A-ECE46664F229}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{8A410EB1-F8FA-4E4D-A982-912CF6A78EF7}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{8EC5FB57-8EAD-4439-BD23-CFCC25BB17EA}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{9CB6654F-AFB2-40AF-800B-02EC8AE7B76F}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{A1587E89-A61F-479C-B28B-30C17EE17215}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{A390706E-8E8E-4BBB-A974-2F06EB57E62C}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{AB05558E-8541-47D1-83E3-01F3D9C50BC2}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{AB74AD78-BD34-4FBD-B11E-D43B77AF6CCB}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{B66CC910-B5F6-41DC-AD31-0C6C97E36265}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{B7841FBE-C4B6-4739-9205-707725C8D74E}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{C22AA7D9-ACBD-49A8-9E18-3E0B6776CC03}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{C87E9F8C-6BAF-46E7-B903-DB09868D2F0D}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{D7997B92-49C9-4263-B57D-D4FB3220DCBC}
Successfully deleted: [Empty Folder] C:\Users\MSI\appdata\local\{D81C3DEC-2FF3-4140-A5BD-3AB984F0C026}
~~~ FireFox
Successfully deleted: [File] C:\user.js
Failed to delete: [File] "C:\Program Files\Mozilla Firefox\searchplugins\fcmdsrchstonicla.xml"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 15.06.2014 at 20:08:15,40
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
Malwarebytes' Anti-Malware - spusť v nouz. režimu.
+
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
+
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
Log z Rogue Killera je níže a teď jdu ještě spustit ten Malwarebytes' Anti-Malware.¨
Log z Rogue Killer :
RogueKiller V9.0.2.0 [Jun 3 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : MSI [Práva správce]
Mód : Kontrola -- Datum : 06/16/2014 19:59:24
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[Suspicious.Path] HKEY_USERS\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\Microsoft\Windows\CurrentVersion\Run | AVG-Secure-Search-Update_1213b : C:\Users\MSI\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=83d9068e6d00f3c1b00a18d05724e5c5-ad1491be2ce6c122f6b66faa90e70c2decf7d34c /CMPID=1213b -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\FairplayKD -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\FairplayKD -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\FairplayKD -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost
¤¤¤ Antirootkit : 122 ¤¤¤
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x85f781f8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddGadgetMessageHandler : C:\Windows\system32\DUser.dll @ 0x74a0152c
[EAT:Addr] (explorer.exe) MSIMG32.dll - AttachWndProcA : C:\Windows\system32\DUser.dll @ 0x74a0c80a
[EAT:Addr] (explorer.exe) MSIMG32.dll - AttachWndProcW : C:\Windows\system32\DUser.dll @ 0x749fdd2c
[EAT:Addr] (explorer.exe) MSIMG32.dll - AutoTrace : C:\Windows\system32\DUser.dll @ 0x74a07041
[EAT:Addr] (explorer.exe) MSIMG32.dll - BeginTransition : C:\Windows\system32\DUser.dll @ 0x74a0c9a7
[EAT:Addr] (explorer.exe) MSIMG32.dll - BuildAnimation : C:\Windows\system32\DUser.dll @ 0x74a01135
[EAT:Addr] (explorer.exe) MSIMG32.dll - BuildDropTarget : C:\Windows\system32\DUser.dll @ 0x74a07131
[EAT:Addr] (explorer.exe) MSIMG32.dll - BuildInterpolation : C:\Windows\system32\DUser.dll @ 0x74a0118c
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreateAction : C:\Windows\system32\DUser.dll @ 0x749f7339
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreateGadget : C:\Windows\system32\DUser.dll @ 0x749f5197
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreateTransition : C:\Windows\system32\DUser.dll @ 0x74a0c83a
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserBuildGadget : C:\Windows\system32\DUser.dll @ 0x74a0b7e8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserCastClass : C:\Windows\system32\DUser.dll @ 0x74a0c776
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserCastDirect : C:\Windows\system32\DUser.dll @ 0x74a0c7b9
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserCastHandle : C:\Windows\system32\DUser.dll @ 0x74a0b81e
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserDeleteGadget : C:\Windows\system32\DUser.dll @ 0x74a0b9c1
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserFindClass : C:\Windows\system32\DUser.dll @ 0x74a0c6e7
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserFlushDeferredMessages : C:\Windows\system32\DUser.dll @ 0x74a00020
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserFlushMessages : C:\Windows\system32\DUser.dll @ 0x74a00096
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetAlphaPRID : C:\Windows\system32\DUser.dll @ 0x74a078fd
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetGutsData : C:\Windows\system32\DUser.dll @ 0x74a0c7c9
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetRectPRID : C:\Windows\system32\DUser.dll @ 0x74a07908
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetRotatePRID : C:\Windows\system32\DUser.dll @ 0x74a07913
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetScalePRID : C:\Windows\system32\DUser.dll @ 0x74a0791e
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserInstanceOf : C:\Windows\system32\DUser.dll @ 0x74a0c735
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserPostEvent : C:\Windows\system32\DUser.dll @ 0x749f630f
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserPostMethod : C:\Windows\system32\DUser.dll @ 0x74a0b639
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserRegisterGuts : C:\Windows\system32\DUser.dll @ 0x749fa5b1
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserRegisterStub : C:\Windows\system32\DUser.dll @ 0x749f9f93
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserRegisterSuper : C:\Windows\system32\DUser.dll @ 0x749fb046
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserSendEvent : C:\Windows\system32\DUser.dll @ 0x749f3258
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserSendMethod : C:\Windows\system32\DUser.dll @ 0x74a0b5b0
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserStopAnimation : C:\Windows\system32\DUser.dll @ 0x74a084e4
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeleteHandle : C:\Windows\system32\DUser.dll @ 0x749f3ef8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DetachWndProc : C:\Windows\system32\DUser.dll @ 0x749f657d
[EAT:Addr] (explorer.exe) MSIMG32.dll - DllMain : C:\Windows\system32\DUser.dll @ 0x749f76f9
[EAT:Addr] (explorer.exe) MSIMG32.dll - DrawGadgetTree : C:\Windows\system32\DUser.dll @ 0x74a0c646
[EAT:Addr] (explorer.exe) MSIMG32.dll - EndTransition : C:\Windows\system32\DUser.dll @ 0x74a0ca90
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumGadgets : C:\Windows\system32\DUser.dll @ 0x74a0c30f
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindGadgetFromPoint : C:\Windows\system32\DUser.dll @ 0x749f6da8
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindGadgetMessages : C:\Windows\system32\DUser.dll @ 0x74a0c19d
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindStdColor : C:\Windows\system32\DUser.dll @ 0x749fdc66
[EAT:Addr] (explorer.exe) MSIMG32.dll - FireGadgetMessages : C:\Windows\system32\DUser.dll @ 0x74a0c06b
[EAT:Addr] (explorer.exe) MSIMG32.dll - ForwardGadgetMessage : C:\Windows\system32\DUser.dll @ 0x74a01cb5
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetActionTimeslice : C:\Windows\system32\DUser.dll @ 0x74a0cb05
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetDebug : C:\Windows\system32\DUser.dll @ 0x74a0705d
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadget : C:\Windows\system32\DUser.dll @ 0x74a0c527
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetAnimation : C:\Windows\system32\DUser.dll @ 0x749f7083
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetBufferInfo : C:\Windows\system32\DUser.dll @ 0x74a02d45
Log z Rogue Killer :
RogueKiller V9.0.2.0 [Jun 3 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : MSI [Práva správce]
Mód : Kontrola -- Datum : 06/16/2014 19:59:24
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[Suspicious.Path] HKEY_USERS\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\Microsoft\Windows\CurrentVersion\Run | AVG-Secure-Search-Update_1213b : C:\Users\MSI\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=83d9068e6d00f3c1b00a18d05724e5c5-ad1491be2ce6c122f6b66faa90e70c2decf7d34c /CMPID=1213b -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\FairplayKD -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\FairplayKD -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\FairplayKD -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-3456991112-1896531325-1040802734-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost
¤¤¤ Antirootkit : 122 ¤¤¤
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x85f781f8
[IRP:Addr] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x85f781f8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddGadgetMessageHandler : C:\Windows\system32\DUser.dll @ 0x74a0152c
[EAT:Addr] (explorer.exe) MSIMG32.dll - AttachWndProcA : C:\Windows\system32\DUser.dll @ 0x74a0c80a
[EAT:Addr] (explorer.exe) MSIMG32.dll - AttachWndProcW : C:\Windows\system32\DUser.dll @ 0x749fdd2c
[EAT:Addr] (explorer.exe) MSIMG32.dll - AutoTrace : C:\Windows\system32\DUser.dll @ 0x74a07041
[EAT:Addr] (explorer.exe) MSIMG32.dll - BeginTransition : C:\Windows\system32\DUser.dll @ 0x74a0c9a7
[EAT:Addr] (explorer.exe) MSIMG32.dll - BuildAnimation : C:\Windows\system32\DUser.dll @ 0x74a01135
[EAT:Addr] (explorer.exe) MSIMG32.dll - BuildDropTarget : C:\Windows\system32\DUser.dll @ 0x74a07131
[EAT:Addr] (explorer.exe) MSIMG32.dll - BuildInterpolation : C:\Windows\system32\DUser.dll @ 0x74a0118c
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreateAction : C:\Windows\system32\DUser.dll @ 0x749f7339
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreateGadget : C:\Windows\system32\DUser.dll @ 0x749f5197
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreateTransition : C:\Windows\system32\DUser.dll @ 0x74a0c83a
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserBuildGadget : C:\Windows\system32\DUser.dll @ 0x74a0b7e8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserCastClass : C:\Windows\system32\DUser.dll @ 0x74a0c776
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserCastDirect : C:\Windows\system32\DUser.dll @ 0x74a0c7b9
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserCastHandle : C:\Windows\system32\DUser.dll @ 0x74a0b81e
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserDeleteGadget : C:\Windows\system32\DUser.dll @ 0x74a0b9c1
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserFindClass : C:\Windows\system32\DUser.dll @ 0x74a0c6e7
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserFlushDeferredMessages : C:\Windows\system32\DUser.dll @ 0x74a00020
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserFlushMessages : C:\Windows\system32\DUser.dll @ 0x74a00096
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetAlphaPRID : C:\Windows\system32\DUser.dll @ 0x74a078fd
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetGutsData : C:\Windows\system32\DUser.dll @ 0x74a0c7c9
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetRectPRID : C:\Windows\system32\DUser.dll @ 0x74a07908
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetRotatePRID : C:\Windows\system32\DUser.dll @ 0x74a07913
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserGetScalePRID : C:\Windows\system32\DUser.dll @ 0x74a0791e
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserInstanceOf : C:\Windows\system32\DUser.dll @ 0x74a0c735
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserPostEvent : C:\Windows\system32\DUser.dll @ 0x749f630f
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserPostMethod : C:\Windows\system32\DUser.dll @ 0x74a0b639
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserRegisterGuts : C:\Windows\system32\DUser.dll @ 0x749fa5b1
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserRegisterStub : C:\Windows\system32\DUser.dll @ 0x749f9f93
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserRegisterSuper : C:\Windows\system32\DUser.dll @ 0x749fb046
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserSendEvent : C:\Windows\system32\DUser.dll @ 0x749f3258
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserSendMethod : C:\Windows\system32\DUser.dll @ 0x74a0b5b0
[EAT:Addr] (explorer.exe) MSIMG32.dll - DUserStopAnimation : C:\Windows\system32\DUser.dll @ 0x74a084e4
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeleteHandle : C:\Windows\system32\DUser.dll @ 0x749f3ef8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DetachWndProc : C:\Windows\system32\DUser.dll @ 0x749f657d
[EAT:Addr] (explorer.exe) MSIMG32.dll - DllMain : C:\Windows\system32\DUser.dll @ 0x749f76f9
[EAT:Addr] (explorer.exe) MSIMG32.dll - DrawGadgetTree : C:\Windows\system32\DUser.dll @ 0x74a0c646
[EAT:Addr] (explorer.exe) MSIMG32.dll - EndTransition : C:\Windows\system32\DUser.dll @ 0x74a0ca90
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumGadgets : C:\Windows\system32\DUser.dll @ 0x74a0c30f
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindGadgetFromPoint : C:\Windows\system32\DUser.dll @ 0x749f6da8
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindGadgetMessages : C:\Windows\system32\DUser.dll @ 0x74a0c19d
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindStdColor : C:\Windows\system32\DUser.dll @ 0x749fdc66
[EAT:Addr] (explorer.exe) MSIMG32.dll - FireGadgetMessages : C:\Windows\system32\DUser.dll @ 0x74a0c06b
[EAT:Addr] (explorer.exe) MSIMG32.dll - ForwardGadgetMessage : C:\Windows\system32\DUser.dll @ 0x74a01cb5
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetActionTimeslice : C:\Windows\system32\DUser.dll @ 0x74a0cb05
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetDebug : C:\Windows\system32\DUser.dll @ 0x74a0705d
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadget : C:\Windows\system32\DUser.dll @ 0x74a0c527
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetAnimation : C:\Windows\system32\DUser.dll @ 0x749f7083
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetBufferInfo : C:\Windows\system32\DUser.dll @ 0x74a02d45
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetCenterPoint : C:\Windows\system32\DUser.dll @ 0x74a0be6f
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetFocus : C:\Windows\system32\DUser.dll @ 0x749fce28
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetMessageFilter : C:\Windows\system32\DUser.dll @ 0x74a0c5ba
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetProperty : C:\Windows\system32\DUser.dll @ 0x749f7135
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRect : C:\Windows\system32\DUser.dll @ 0x749f2d8e
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRgn : C:\Windows\system32\DUser.dll @ 0x749f540a
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRootInfo : C:\Windows\system32\DUser.dll @ 0x74a0bfbb
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRotation : C:\Windows\system32\DUser.dll @ 0x74a0bd35
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetScale : C:\Windows\system32\DUser.dll @ 0x74a0bbe9
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetSize : C:\Windows\system32\DUser.dll @ 0x74a0c3ca
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetStyle : C:\Windows\system32\DUser.dll @ 0x74a0232c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetTicket : C:\Windows\system32\DUser.dll @ 0x749fc94f
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetMessageExA : C:\Windows\system32\DUser.dll @ 0x749ff459
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetMessageExW : C:\Windows\system32\DUser.dll @ 0x74a0b6c3
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorBrushF : C:\Windows\system32\DUser.dll @ 0x74a0cbea
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorBrushI : C:\Windows\system32\DUser.dll @ 0x749f2c3b
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorF : C:\Windows\system32\DUser.dll @ 0x74a0ce45
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorI : C:\Windows\system32\DUser.dll @ 0x749ffaf7
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorName : C:\Windows\system32\DUser.dll @ 0x74a0cd46
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorPenF : C:\Windows\system32\DUser.dll @ 0x74a0ccd2
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorPenI : C:\Windows\system32\DUser.dll @ 0x74a0cc5e
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdPalette : C:\Windows\system32\DUser.dll @ 0x74a0b82e
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetTransitionInterface : C:\Windows\system32\DUser.dll @ 0x74a0c933
[EAT:Addr] (explorer.exe) MSIMG32.dll - InitGadgetComponent : C:\Windows\system32\DUser.dll @ 0x74a0b8be
[EAT:Addr] (explorer.exe) MSIMG32.dll - InitGadgets : C:\Windows\system32\DUser.dll @ 0x749fe373
[EAT:Addr] (explorer.exe) MSIMG32.dll - InvalidateGadget : C:\Windows\system32\DUser.dll @ 0x749f3de5
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsGadgetParentChainStyle : C:\Windows\system32\DUser.dll @ 0x74a0ba7f
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsInsideContext : C:\Windows\system32\DUser.dll @ 0x74a0b56c
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsStartDelete : C:\Windows\system32\DUser.dll @ 0x74a0121d
[EAT:Addr] (explorer.exe) MSIMG32.dll - LookupGadgetTicket : C:\Windows\system32\DUser.dll @ 0x74a0cdbc
[EAT:Addr] (explorer.exe) MSIMG32.dll - MapGadgetPoints : C:\Windows\system32\DUser.dll @ 0x74a03861
[EAT:Addr] (explorer.exe) MSIMG32.dll - PeekMessageExA : C:\Windows\system32\DUser.dll @ 0x74a0b710
[EAT:Addr] (explorer.exe) MSIMG32.dll - PeekMessageExW : C:\Windows\system32\DUser.dll @ 0x74a0b75e
[EAT:Addr] (explorer.exe) MSIMG32.dll - PlayTransition : C:\Windows\system32\DUser.dll @ 0x74a0c8b0
[EAT:Addr] (explorer.exe) MSIMG32.dll - PrintTransition : C:\Windows\system32\DUser.dll @ 0x74a0ca1c
[EAT:Addr] (explorer.exe) MSIMG32.dll - RegisterGadgetMessage : C:\Windows\system32\DUser.dll @ 0x749f7ba3
[EAT:Addr] (explorer.exe) MSIMG32.dll - RegisterGadgetMessageString : C:\Windows\system32\DUser.dll @ 0x74a0c149
[EAT:Addr] (explorer.exe) MSIMG32.dll - RegisterGadgetProperty : C:\Windows\system32\DUser.dll @ 0x749f7d5d
[EAT:Addr] (explorer.exe) MSIMG32.dll - RemoveGadgetMessageHandler : C:\Windows\system32\DUser.dll @ 0x74a0c21a
[EAT:Addr] (explorer.exe) MSIMG32.dll - RemoveGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74a00dee
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetActionTimeslice : C:\Windows\system32\DUser.dll @ 0x74a0cb82
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetBufferInfo : C:\Windows\system32\DUser.dll @ 0x74a02c09
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetCenterPoint : C:\Windows\system32\DUser.dll @ 0x74a0bf0a
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFillF : C:\Windows\system32\DUser.dll @ 0x74a0bb47
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFillI : C:\Windows\system32\DUser.dll @ 0x74a02149
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFocus : C:\Windows\system32\DUser.dll @ 0x749fcebb
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFocusEx : C:\Windows\system32\DUser.dll @ 0x74a03188
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetMessageFilter : C:\Windows\system32\DUser.dll @ 0x749f5a70
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetOrder : C:\Windows\system32\DUser.dll @ 0x74a0c45d
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetParent : C:\Windows\system32\DUser.dll @ 0x749f55f8
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74a01284
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetRect : C:\Windows\system32\DUser.dll @ 0x749f5305
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetRootInfo : C:\Windows\system32\DUser.dll @ 0x749fe857
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetRotation : C:\Windows\system32\DUser.dll @ 0x74a0bdc9
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetScale : C:\Windows\system32\DUser.dll @ 0x74a0bc84
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetStyle : C:\Windows\system32\DUser.dll @ 0x749f4c48
[EAT:Addr] (explorer.exe) MSIMG32.dll - UninitGadgetComponent : C:\Windows\system32\DUser.dll @ 0x74a0b93f
[EAT:Addr] (explorer.exe) MSIMG32.dll - UnregisterGadgetMessage : C:\Windows\system32\DUser.dll @ 0x74a0c171
[EAT:Addr] (explorer.exe) MSIMG32.dll - UnregisterGadgetMessageString : C:\Windows\system32\DUser.dll @ 0x74a0c149
[EAT:Addr] (explorer.exe) MSIMG32.dll - UnregisterGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74a0c2e3
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilBuildFont : C:\Windows\system32\DUser.dll @ 0x74a0b83a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilDrawBlendRect : C:\Windows\system32\DUser.dll @ 0x74a0b84a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilDrawOutlineRect : C:\Windows\system32\DUser.dll @ 0x74a0b85a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilGetColor : C:\Windows\system32\DUser.dll @ 0x74a0b86a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilSetBackground : C:\Windows\system32\DUser.dll @ 0x74a0cd78
[EAT:Addr] (explorer.exe) MSIMG32.dll - WaitMessageEx : C:\Windows\system32\DUser.dll @ 0x74a0b7ac
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: FUJITSU MHZ2320BH G2 ATA Device +++++
--- User ---
[MBR] f90c62dcc2c48a3920dc3cf73778707a
[BSP] b0c0300068a71f90a344666429b28507 : Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 100006 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 204812685 | Size: 205236 MB
User = LL1 ... OK
User = LL2 ... OK
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetFocus : C:\Windows\system32\DUser.dll @ 0x749fce28
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetMessageFilter : C:\Windows\system32\DUser.dll @ 0x74a0c5ba
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetProperty : C:\Windows\system32\DUser.dll @ 0x749f7135
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRect : C:\Windows\system32\DUser.dll @ 0x749f2d8e
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRgn : C:\Windows\system32\DUser.dll @ 0x749f540a
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRootInfo : C:\Windows\system32\DUser.dll @ 0x74a0bfbb
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetRotation : C:\Windows\system32\DUser.dll @ 0x74a0bd35
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetScale : C:\Windows\system32\DUser.dll @ 0x74a0bbe9
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetSize : C:\Windows\system32\DUser.dll @ 0x74a0c3ca
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetStyle : C:\Windows\system32\DUser.dll @ 0x74a0232c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetGadgetTicket : C:\Windows\system32\DUser.dll @ 0x749fc94f
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetMessageExA : C:\Windows\system32\DUser.dll @ 0x749ff459
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetMessageExW : C:\Windows\system32\DUser.dll @ 0x74a0b6c3
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorBrushF : C:\Windows\system32\DUser.dll @ 0x74a0cbea
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorBrushI : C:\Windows\system32\DUser.dll @ 0x749f2c3b
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorF : C:\Windows\system32\DUser.dll @ 0x74a0ce45
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorI : C:\Windows\system32\DUser.dll @ 0x749ffaf7
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorName : C:\Windows\system32\DUser.dll @ 0x74a0cd46
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorPenF : C:\Windows\system32\DUser.dll @ 0x74a0ccd2
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdColorPenI : C:\Windows\system32\DUser.dll @ 0x74a0cc5e
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetStdPalette : C:\Windows\system32\DUser.dll @ 0x74a0b82e
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetTransitionInterface : C:\Windows\system32\DUser.dll @ 0x74a0c933
[EAT:Addr] (explorer.exe) MSIMG32.dll - InitGadgetComponent : C:\Windows\system32\DUser.dll @ 0x74a0b8be
[EAT:Addr] (explorer.exe) MSIMG32.dll - InitGadgets : C:\Windows\system32\DUser.dll @ 0x749fe373
[EAT:Addr] (explorer.exe) MSIMG32.dll - InvalidateGadget : C:\Windows\system32\DUser.dll @ 0x749f3de5
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsGadgetParentChainStyle : C:\Windows\system32\DUser.dll @ 0x74a0ba7f
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsInsideContext : C:\Windows\system32\DUser.dll @ 0x74a0b56c
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsStartDelete : C:\Windows\system32\DUser.dll @ 0x74a0121d
[EAT:Addr] (explorer.exe) MSIMG32.dll - LookupGadgetTicket : C:\Windows\system32\DUser.dll @ 0x74a0cdbc
[EAT:Addr] (explorer.exe) MSIMG32.dll - MapGadgetPoints : C:\Windows\system32\DUser.dll @ 0x74a03861
[EAT:Addr] (explorer.exe) MSIMG32.dll - PeekMessageExA : C:\Windows\system32\DUser.dll @ 0x74a0b710
[EAT:Addr] (explorer.exe) MSIMG32.dll - PeekMessageExW : C:\Windows\system32\DUser.dll @ 0x74a0b75e
[EAT:Addr] (explorer.exe) MSIMG32.dll - PlayTransition : C:\Windows\system32\DUser.dll @ 0x74a0c8b0
[EAT:Addr] (explorer.exe) MSIMG32.dll - PrintTransition : C:\Windows\system32\DUser.dll @ 0x74a0ca1c
[EAT:Addr] (explorer.exe) MSIMG32.dll - RegisterGadgetMessage : C:\Windows\system32\DUser.dll @ 0x749f7ba3
[EAT:Addr] (explorer.exe) MSIMG32.dll - RegisterGadgetMessageString : C:\Windows\system32\DUser.dll @ 0x74a0c149
[EAT:Addr] (explorer.exe) MSIMG32.dll - RegisterGadgetProperty : C:\Windows\system32\DUser.dll @ 0x749f7d5d
[EAT:Addr] (explorer.exe) MSIMG32.dll - RemoveGadgetMessageHandler : C:\Windows\system32\DUser.dll @ 0x74a0c21a
[EAT:Addr] (explorer.exe) MSIMG32.dll - RemoveGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74a00dee
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetActionTimeslice : C:\Windows\system32\DUser.dll @ 0x74a0cb82
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetBufferInfo : C:\Windows\system32\DUser.dll @ 0x74a02c09
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetCenterPoint : C:\Windows\system32\DUser.dll @ 0x74a0bf0a
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFillF : C:\Windows\system32\DUser.dll @ 0x74a0bb47
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFillI : C:\Windows\system32\DUser.dll @ 0x74a02149
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFocus : C:\Windows\system32\DUser.dll @ 0x749fcebb
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetFocusEx : C:\Windows\system32\DUser.dll @ 0x74a03188
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetMessageFilter : C:\Windows\system32\DUser.dll @ 0x749f5a70
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetOrder : C:\Windows\system32\DUser.dll @ 0x74a0c45d
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetParent : C:\Windows\system32\DUser.dll @ 0x749f55f8
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74a01284
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetRect : C:\Windows\system32\DUser.dll @ 0x749f5305
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetRootInfo : C:\Windows\system32\DUser.dll @ 0x749fe857
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetRotation : C:\Windows\system32\DUser.dll @ 0x74a0bdc9
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetScale : C:\Windows\system32\DUser.dll @ 0x74a0bc84
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetGadgetStyle : C:\Windows\system32\DUser.dll @ 0x749f4c48
[EAT:Addr] (explorer.exe) MSIMG32.dll - UninitGadgetComponent : C:\Windows\system32\DUser.dll @ 0x74a0b93f
[EAT:Addr] (explorer.exe) MSIMG32.dll - UnregisterGadgetMessage : C:\Windows\system32\DUser.dll @ 0x74a0c171
[EAT:Addr] (explorer.exe) MSIMG32.dll - UnregisterGadgetMessageString : C:\Windows\system32\DUser.dll @ 0x74a0c149
[EAT:Addr] (explorer.exe) MSIMG32.dll - UnregisterGadgetProperty : C:\Windows\system32\DUser.dll @ 0x74a0c2e3
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilBuildFont : C:\Windows\system32\DUser.dll @ 0x74a0b83a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilDrawBlendRect : C:\Windows\system32\DUser.dll @ 0x74a0b84a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilDrawOutlineRect : C:\Windows\system32\DUser.dll @ 0x74a0b85a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilGetColor : C:\Windows\system32\DUser.dll @ 0x74a0b86a
[EAT:Addr] (explorer.exe) MSIMG32.dll - UtilSetBackground : C:\Windows\system32\DUser.dll @ 0x74a0cd78
[EAT:Addr] (explorer.exe) MSIMG32.dll - WaitMessageEx : C:\Windows\system32\DUser.dll @ 0x74a0b7ac
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: FUJITSU MHZ2320BH G2 ATA Device +++++
--- User ---
[MBR] f90c62dcc2c48a3920dc3cf73778707a
[BSP] b0c0300068a71f90a344666429b28507 : Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 100006 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 204812685 | Size: 205236 MB
User = LL1 ... OK
User = LL2 ... OK
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
Log z Malware Bytes :
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 16.6.2014
Scan Time: 20:14:02
Logfile: MALWAREBYTESLOG.txt
Administrator: No
Version: 2.00.2.1012
Malware Database: v2014.06.16.07
Rootkit Database: v2014.06.02.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: MSI
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 283550
Time Elapsed: 14 min, 22 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 8
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{11111111-1111-1111-1111-110011221158}, , [ff28dd9cabd03006c6e2b2a00ef4758b],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\bbylntlbr.xtrnl, , [9c8b94e5d2a93402659d4137b74b48b8],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\bbylntlbr.xtrnl.1, , [ce596d0c483383b3837f7602966cba46],
PUP.Optional.InboxToolBar.A, HKLM\SOFTWARE\CLASSES\Inbox.WS.com IE Toolbar, , [190eee8b6813fc3a1b3db0c8a9597b85],
PUP.Optional.TornTV.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [ef38b7c21665261068f4c8f5d32f25db],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [4ddae396e299b77fd3899f4e21e25fa1],
PUP.Optional.FunWebProducts.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Fun Web Products, , [9b8c9cdd413aae88e23d634408fa24dc],
PUP.Optional.FunWebProducts.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\FunWebProducts, , [76b1caafc6b5af87c65a7c2b28da4ab6],
Registry Values: 0
(No malicious items detected)
Registry Data: 1
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si= ... id=3219&q=%s, Good: (http://www.google.com), Bad: (http://search.certified-toolbar.com?si= ... id=3219&q=%s),,[6abd6613c0bb7eb80424007a838143bd]
Folders: 2
PUP.Optional.WeatherAlerts, C:\Users\MSI\AppData\Local\WeatherAlerts, , [b1760a6fe4974cea6fdbbbd1fd05748c],
PUP.Optional.CrossRider.A, C:\Users\MSI\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lmnbobhffedhdhfpcjkjphcfpeeiocdn_0, , [59cef980d0aba78f80542175fc0643bd],
Files: 7
Trojan.Agent.ED, C:\ProgramData\Readers Digest\etmdim.dll, , [35f285f42e4d7eb8cafb467c35cb56aa],
PUP.Optional.Spigot.A, C:\ProgramData\YTD CENZURA & Converter\ytd_installer.exe, , [79ae1a5fcab152e4fd909591649c7987],
PUP.Optional.SweetIM, C:\Windows\Installer\1a3d98a.msi, , [b1761168b7c44de98997c1dc62a23ac6],
PUP.Optional.SweetIM, C:\Windows\Installer\1a3d990.msi, , [1413c8b1abd02610bf61782512f2c739],
PUP.Optional.SweetIM, C:\Windows\Installer\1a3d996.msi, , [a97e2752eb9088ae43ddc5d806fedf21],
PUP.Optional.FaceMoods.A, C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrchstonicla.xml, , [2cfb40399be040f60df8267def138080],
PUP.Optional.CrossRider.A, C:\Users\MSI\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lmnbobhffedhdhfpcjkjphcfpeeiocdn_0\161, , [59cef980d0aba78f80542175fc0643bd],
Physical Sectors: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 16.6.2014
Scan Time: 20:14:02
Logfile: MALWAREBYTESLOG.txt
Administrator: No
Version: 2.00.2.1012
Malware Database: v2014.06.16.07
Rootkit Database: v2014.06.02.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: MSI
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 283550
Time Elapsed: 14 min, 22 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 8
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{11111111-1111-1111-1111-110011221158}, , [ff28dd9cabd03006c6e2b2a00ef4758b],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\bbylntlbr.xtrnl, , [9c8b94e5d2a93402659d4137b74b48b8],
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\bbylntlbr.xtrnl.1, , [ce596d0c483383b3837f7602966cba46],
PUP.Optional.InboxToolBar.A, HKLM\SOFTWARE\CLASSES\Inbox.WS.com IE Toolbar, , [190eee8b6813fc3a1b3db0c8a9597b85],
PUP.Optional.TornTV.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [ef38b7c21665261068f4c8f5d32f25db],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [4ddae396e299b77fd3899f4e21e25fa1],
PUP.Optional.FunWebProducts.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Fun Web Products, , [9b8c9cdd413aae88e23d634408fa24dc],
PUP.Optional.FunWebProducts.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\FunWebProducts, , [76b1caafc6b5af87c65a7c2b28da4ab6],
Registry Values: 0
(No malicious items detected)
Registry Data: 1
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-3456991112-1896531325-1040802734-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si= ... id=3219&q=%s, Good: (http://www.google.com), Bad: (http://search.certified-toolbar.com?si= ... id=3219&q=%s),,[6abd6613c0bb7eb80424007a838143bd]
Folders: 2
PUP.Optional.WeatherAlerts, C:\Users\MSI\AppData\Local\WeatherAlerts, , [b1760a6fe4974cea6fdbbbd1fd05748c],
PUP.Optional.CrossRider.A, C:\Users\MSI\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lmnbobhffedhdhfpcjkjphcfpeeiocdn_0, , [59cef980d0aba78f80542175fc0643bd],
Files: 7
Trojan.Agent.ED, C:\ProgramData\Readers Digest\etmdim.dll, , [35f285f42e4d7eb8cafb467c35cb56aa],
PUP.Optional.Spigot.A, C:\ProgramData\YTD CENZURA & Converter\ytd_installer.exe, , [79ae1a5fcab152e4fd909591649c7987],
PUP.Optional.SweetIM, C:\Windows\Installer\1a3d98a.msi, , [b1761168b7c44de98997c1dc62a23ac6],
PUP.Optional.SweetIM, C:\Windows\Installer\1a3d990.msi, , [1413c8b1abd02610bf61782512f2c739],
PUP.Optional.SweetIM, C:\Windows\Installer\1a3d996.msi, , [a97e2752eb9088ae43ddc5d806fedf21],
PUP.Optional.FaceMoods.A, C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrchstonicla.xml, , [2cfb40399be040f60df8267def138080],
PUP.Optional.CrossRider.A, C:\Users\MSI\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lmnbobhffedhdhfpcjkjphcfpeeiocdn_0\161, , [59cef980d0aba78f80542175fc0643bd],
Physical Sectors: 0
(No malicious items detected)
(end)
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
Ten log z adwcleaneru po výmazu si sem nedal.
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
Log z Adw cleaneru po výmazu:
# AdwCleaner v3.212 - Report created 17/06/2014 at 17:46:30
# Updated 05/06/2014 by Xplode
# Operating System : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
# Username : MSI - MSI-PC
# Running from : C:\Users\MSI\Desktop\adwcleaner_3.212.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
File Deleted : C:\Windows\System32\Tasks\ProtectedSearch
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16555
-\\ Mozilla Firefox v30.0 (cs)
[ File : C:\Users\MSI\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]
[ File : C:\Users\MSI\AppData\Roaming\Mozilla\Firefox\Profiles\wpf3fmif.default\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ File : C:\Users\MSI\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [61644 octets] - [15/06/2014 14:09:27]
AdwCleaner[R1].txt - [61705 octets] - [15/06/2014 14:11:32]
AdwCleaner[R2].txt - [61617 octets] - [15/06/2014 19:40:17]
AdwCleaner[R3].txt - [57470 octets] - [15/06/2014 19:43:03]
AdwCleaner[R4].txt - [1408 octets] - [17/06/2014 17:45:03]
AdwCleaner[S0].txt - [4240 octets] - [15/06/2014 19:42:33]
AdwCleaner[S1].txt - [57074 octets] - [15/06/2014 19:43:45]
AdwCleaner[S2].txt - [1331 octets] - [17/06/2014 17:46:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1391 octets] ##########
# AdwCleaner v3.212 - Report created 17/06/2014 at 17:46:30
# Updated 05/06/2014 by Xplode
# Operating System : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
# Username : MSI - MSI-PC
# Running from : C:\Users\MSI\Desktop\adwcleaner_3.212.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
File Deleted : C:\Windows\System32\Tasks\ProtectedSearch
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16555
-\\ Mozilla Firefox v30.0 (cs)
[ File : C:\Users\MSI\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]
[ File : C:\Users\MSI\AppData\Roaming\Mozilla\Firefox\Profiles\wpf3fmif.default\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ File : C:\Users\MSI\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [61644 octets] - [15/06/2014 14:09:27]
AdwCleaner[R1].txt - [61705 octets] - [15/06/2014 14:11:32]
AdwCleaner[R2].txt - [61617 octets] - [15/06/2014 19:40:17]
AdwCleaner[R3].txt - [57470 octets] - [15/06/2014 19:43:03]
AdwCleaner[R4].txt - [1408 octets] - [17/06/2014 17:45:03]
AdwCleaner[S0].txt - [4240 octets] - [15/06/2014 19:42:33]
AdwCleaner[S1].txt - [57074 octets] - [15/06/2014 19:43:45]
AdwCleaner[S2].txt - [1331 octets] - [17/06/2014 17:46:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1391 octets] ##########
Naposledy upravil(a) zvoltejmeno dne 17 čer 2014 18:08, celkem upraveno 2 x.
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
...
Naposledy upravil(a) zvoltejmeno dne 17 čer 2014 18:09, celkem upraveno 1 x.
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
Mně TDSS Killer napsal, že nic nenašel žádný ,,threats".
Tady je log:
17:57:02.0517 0x0ecc TDSS rootkit removing tool 3.0.0.39 Jun 5 2014 20:35:54
17:57:07.0693 0x0ecc ============================================================
17:57:07.0693 0x0ecc Current date / time: 2014/06/17 17:57:07.0693
17:57:07.0693 0x0ecc SystemInfo:
17:57:07.0694 0x0ecc
17:57:07.0694 0x0ecc OS Version: 6.0.6002 ServicePack: 2.0
17:57:07.0694 0x0ecc Product type: Workstation
17:57:07.0694 0x0ecc ComputerName: MSI-PC
17:57:07.0695 0x0ecc UserName: MSI
17:57:07.0695 0x0ecc Windows directory: C:\Windows
17:57:07.0695 0x0ecc System windows directory: C:\Windows
17:57:07.0695 0x0ecc Processor architecture: Intel x86
17:57:07.0695 0x0ecc Number of processors: 2
17:57:07.0695 0x0ecc Page size: 0x1000
17:57:07.0695 0x0ecc Boot type: Normal boot
17:57:07.0695 0x0ecc ============================================================
17:57:10.0743 0x0ecc KLMD registered as C:\Windows\system32\drivers\86091036.sys
17:57:11.0443 0x0ecc System UUID: {C6601F00-D608-615D-F247-6460E74F9987}
17:57:13.0301 0x0ecc Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:57:13.0304 0x0ecc ============================================================
17:57:13.0304 0x0ecc \Device\Harddisk0\DR0:
17:57:13.0304 0x0ecc MBR partitions:
17:57:13.0304 0x0ecc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC35314E
17:57:13.0304 0x0ecc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC35318D, BlocksNum 0x190DA534
17:57:13.0304 0x0ecc ============================================================
17:57:13.0352 0x0ecc C: <-> \Device\Harddisk0\DR0\Partition1
17:57:13.0460 0x0ecc D: <-> \Device\Harddisk0\DR0\Partition2
17:57:13.0461 0x0ecc ============================================================
17:57:13.0461 0x0ecc Initialize success
17:57:13.0461 0x0ecc ============================================================
17:57:17.0200 0x12c4 ============================================================
17:57:17.0200 0x12c4 Scan started
17:57:17.0200 0x12c4 Mode: Manual;
17:57:17.0200 0x12c4 ============================================================
17:57:17.0200 0x12c4 KSN ping started
17:57:31.0003 0x12c4 KSN ping finished: true
17:57:32.0697 0x12c4 ================ Scan system memory ========================
17:57:32.0697 0x12c4 System memory - ok
17:57:32.0698 0x12c4 ================ Scan services =============================
17:57:33.0069 0x12c4 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
17:57:33.0084 0x12c4 ACPI - ok
17:57:33.0257 0x12c4 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A, F419E159D3E428A3929A1A983142E7B0783D3F104EE9587585418E51011E4B8F ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:57:33.0259 0x12c4 AdobeARMservice - ok
17:57:33.0344 0x12c4 [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:57:33.0358 0x12c4 AdobeFlashPlayerUpdateSvc - ok
17:57:33.0444 0x12c4 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:57:33.0467 0x12c4 adp94xx - ok
17:57:33.0525 0x12c4 [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:57:33.0541 0x12c4 adpahci - ok
17:57:33.0605 0x12c4 [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
17:57:33.0611 0x12c4 adpu160m - ok
17:57:33.0646 0x12c4 [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:57:33.0655 0x12c4 adpu320 - ok
17:57:33.0732 0x12c4 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:57:33.0736 0x12c4 AeLookupSvc - ok
17:57:33.0809 0x12c4 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
17:57:33.0827 0x12c4 AFD - ok
17:57:33.0881 0x12c4 [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:57:33.0885 0x12c4 agp440 - ok
17:57:33.0930 0x12c4 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
17:57:33.0935 0x12c4 aic78xx - ok
17:57:34.0000 0x12c4 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
17:57:34.0005 0x12c4 ALG - ok
17:57:34.0037 0x12c4 [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys
17:57:34.0039 0x12c4 aliide - ok
17:57:34.0071 0x12c4 [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
17:57:34.0075 0x12c4 amdagp - ok
17:57:34.0114 0x12c4 [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys
17:57:34.0116 0x12c4 amdide - ok
17:57:34.0163 0x12c4 [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
17:57:34.0166 0x12c4 AmdK7 - ok
17:57:34.0203 0x12c4 [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:57:34.0213 0x12c4 AmdK8 - ok
17:57:34.0260 0x12c4 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
17:57:34.0264 0x12c4 Appinfo - ok
17:57:34.0321 0x12c4 [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
17:57:34.0326 0x12c4 arc - ok
17:57:34.0366 0x12c4 [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:57:34.0371 0x12c4 arcsas - ok
17:57:34.0595 0x12c4 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:57:34.0599 0x12c4 aspnet_state - ok
17:57:34.0659 0x12c4 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:57:34.0661 0x12c4 AsyncMac - ok
17:57:34.0688 0x12c4 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
17:57:34.0690 0x12c4 atapi - ok
17:57:34.0766 0x12c4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:57:34.0788 0x12c4 AudioEndpointBuilder - ok
17:57:34.0814 0x12c4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:57:34.0832 0x12c4 Audiosrv - ok
17:57:34.0978 0x12c4 [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.exe
17:57:34.0989 0x12c4 BBSvc - ok
17:57:35.0084 0x12c4 [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.exe
17:57:35.0098 0x12c4 BBUpdate - ok
17:57:35.0159 0x12c4 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
17:57:35.0173 0x12c4 Beep - ok
17:57:35.0260 0x12c4 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
17:57:35.0316 0x12c4 BFE - ok
17:57:35.0414 0x12c4 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
17:57:35.0459 0x12c4 BITS - ok
17:57:35.0466 0x12c4 blbdrive - ok
17:57:35.0530 0x12c4 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:57:35.0534 0x12c4 bowser - ok
17:57:35.0563 0x12c4 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
17:57:35.0564 0x12c4 BrFiltLo - ok
17:57:35.0580 0x12c4 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
17:57:35.0581 0x12c4 BrFiltUp - ok
17:57:35.0627 0x12c4 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
17:57:35.0635 0x12c4 Browser - ok
17:57:35.0664 0x12c4 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
17:57:35.0670 0x12c4 Brserid - ok
17:57:35.0697 0x12c4 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
17:57:35.0702 0x12c4 BrSerWdm - ok
17:57:35.0726 0x12c4 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
17:57:35.0728 0x12c4 BrUsbMdm - ok
17:57:35.0758 0x12c4 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
17:57:35.0760 0x12c4 BrUsbSer - ok
17:57:35.0779 0x12c4 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:57:35.0782 0x12c4 BTHMODEM - ok
17:57:35.0823 0x12c4 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:57:35.0829 0x12c4 cdfs - ok
17:57:35.0871 0x12c4 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:57:35.0877 0x12c4 cdrom - ok
17:57:35.0937 0x12c4 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
17:57:35.0942 0x12c4 CertPropSvc - ok
17:57:36.0001 0x12c4 [ 2A3A6EEF9E5479CF662B088EEBEDE8D8, 1DF8FFBBF07C09F8A1FFAD846B7CC2A58707DB7DF39420FB1F51A5C8B0B5D24A ] CFRMD C:\Windows\system32\DRIVERS\CFRMD.sys
17:57:36.0004 0x12c4 CFRMD - ok
17:57:36.0042 0x12c4 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:57:36.0046 0x12c4 circlass - ok
17:57:36.0114 0x12c4 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
17:57:36.0129 0x12c4 CLFS - ok
17:57:36.0193 0x12c4 [ 8186146DDCC0852DDB7A8A6994E4A628, 85EF8826164ED30FA1D82668B07F6858A2B9A9CCC79A727A659B5B2F8EC8FF7F ] CLPSLauncher C:\Program Files\Common Files\COMODO\launcher_service.exe
17:57:36.0198 0x12c4 CLPSLauncher - ok
17:57:36.0253 0x12c4 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:57:36.0258 0x12c4 clr_optimization_v2.0.50727_32 - ok
17:57:36.0324 0x12c4 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:57:36.0332 0x12c4 clr_optimization_v4.0.30319_32 - ok
17:57:36.0377 0x12c4 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:57:36.0379 0x12c4 CmBatt - ok
17:57:36.0914 0x12c4 [ 171A952CAE560BAC80671D4121E31897, 7394AA8E0EA2886355C8E00DBB681ABFB2B30D5A2C6CF39EDBD51A7CE3CDF866 ] CmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
17:57:37.0057 0x12c4 CmdAgent - ok
17:57:37.0132 0x12c4 [ E1888A90F975E88CE856B6398057FC0D, 938AC92022ECAB145FCE91F8236F27EA4A8A72FB2AC42EE75163266A16D4E044 ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
17:57:37.0133 0x12c4 cmderd - ok
17:57:37.0276 0x12c4 [ 73A0016D264742EC62D00B8B101FFB52, 9740E02B03B70C315C3F15C192EC4BEA1F1D7F42620215505F0470D92B2D3F0F ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
17:57:37.0309 0x12c4 cmdGuard - ok
17:57:37.0386 0x12c4 [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:57:37.0389 0x12c4 cmdide - ok
17:57:37.0847 0x12c4 [ A665EF912EEFD99EA557C6AB35CA1021, D8B53E70DF25E036F02D3707CF18ED2980F42A99D655230A9F7804E5F5D4BAB4 ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
17:57:37.0905 0x12c4 cmdvirth - ok
17:57:38.0529 0x12c4 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:57:38.0532 0x12c4 Compbatt - ok
17:57:38.0550 0x12c4 COMSysApp - ok
17:57:38.0766 0x12c4 cpuz137 - ok
17:57:38.0821 0x12c4 [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:57:38.0822 0x12c4 crcdisk - ok
17:57:38.0846 0x12c4 [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
17:57:38.0848 0x12c4 Crusoe - ok
17:57:38.0908 0x12c4 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:57:38.0926 0x12c4 CryptSvc - ok
17:57:39.0010 0x12c4 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:57:39.0067 0x12c4 DcomLaunch - ok
17:57:39.0115 0x12c4 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:57:39.0126 0x12c4 DfsC - ok
17:57:39.0365 0x12c4 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
17:57:39.0475 0x12c4 DFSR - ok
17:57:39.0555 0x12c4 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
17:57:39.0564 0x12c4 Dhcp - ok
17:57:39.0585 0x12c4 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
17:57:39.0587 0x12c4 disk - ok
17:57:39.0642 0x12c4 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:57:39.0651 0x12c4 Dnscache - ok
17:57:39.0693 0x12c4 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
17:57:39.0707 0x12c4 dot3svc - ok
17:57:39.0767 0x12c4 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
17:57:39.0779 0x12c4 DPS - ok
17:57:40.0185 0x12c4 [ 803569711F5976AD4A1469A091617946, 9FCFAE663992126B43EF9C729172A27D0B10CA758251D687430361D3A08BB4E2 ] DragonUpdater C:\Program Files\Comodo\Dragon\dragon_updater.exe
17:57:40.0242 0x12c4 DragonUpdater - ok
17:57:40.0303 0x12c4 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:57:40.0304 0x12c4 drmkaud - ok
17:57:40.0427 0x12c4 [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:57:40.0445 0x12c4 DXGKrnl - ok
17:57:40.0495 0x12c4 [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
17:57:40.0500 0x12c4 E1G60 - ok
17:57:40.0520 0x12c4 EagleXNt - ok
17:57:40.0560 0x12c4 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
17:57:40.0564 0x12c4 EapHost - ok
17:57:40.0608 0x12c4 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
17:57:40.0617 0x12c4 Ecache - ok
17:57:40.0657 0x12c4 [ B8EAC99B14772BDC36CA963AED109FA2, 332484E0F0E5D2C4F45A9D840B2946D247B0AA03697E1A1196F04A330A37FEDE ] ElRawDisk C:\Windows\system32\drivers\dddsk.sys
17:57:40.0660 0x12c4 ElRawDisk - ok
17:57:40.0752 0x12c4 [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:57:40.0770 0x12c4 elxstor - ok
17:57:40.0973 0x12c4 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
17:57:41.0011 0x12c4 EMDMgmt - ok
17:57:41.0044 0x12c4 [ 4CD6B056C5FD9E97C06FE74C81479517, 8A5663F8B9FBB43D352D46AC279E26A54CFD424F549B5E736A8FECAB945C862F ] enecir C:\Windows\system32\DRIVERS\enecir.sys
17:57:41.0049 0x12c4 enecir - ok
17:57:41.0189 0x12c4 [ 3152CAFA9F55E5363DA4CBC7DAE2BD1B, C28585DDE73B8F00D9CD9D7D8C5050BBD1BF0F800064CACC483CA4F1DF50DEC9 ] English20 C:\ProgramData\Readers Digest\Eng20s.exe
17:57:41.0248 0x12c4 English20 - ok
17:57:41.0359 0x12c4 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
17:57:41.0370 0x12c4 EventSystem - ok
17:57:41.0439 0x12c4 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7, 9AAF39AA22372FB8582C1422581C08E61444BF843E1CE2E199EB00FBEA6F9C06 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
17:57:41.0444 0x12c4 ew_hwusbdev - ok
17:57:41.0485 0x12c4 [ 61A973F60E94A551BA7B15F3460444FB, FC2FB69978D99D75673AFE9F08176F3139DCBAEDE4D339BD09DA29CD3EC01005 ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
17:57:41.0486 0x12c4 ew_usbenumfilter - ok
17:57:41.0563 0x12c4 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
17:57:41.0569 0x12c4 exfat - ok
17:57:41.0632 0x12c4 FairplayKD - ok
17:57:41.0692 0x12c4 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:57:41.0703 0x12c4 fastfat - ok
17:57:41.0734 0x12c4 [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:57:41.0737 0x12c4 fdc - ok
17:57:41.0781 0x12c4 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
17:57:41.0785 0x12c4 fdPHost - ok
17:57:41.0810 0x12c4 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
17:57:41.0815 0x12c4 FDResPub - ok
17:57:41.0873 0x12c4 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:57:41.0877 0x12c4 FileInfo - ok
17:57:41.0922 0x12c4 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:57:41.0924 0x12c4 Filetrace - ok
17:57:41.0945 0x12c4 [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:57:41.0946 0x12c4 flpydisk - ok
17:57:42.0013 0x12c4 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:57:42.0025 0x12c4 FltMgr - ok
17:57:42.0149 0x12c4 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
17:57:42.0214 0x12c4 FontCache - ok
17:57:42.0316 0x12c4 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:57:42.0318 0x12c4 FontCache3.0.0.0 - ok
17:57:42.0367 0x12c4 [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
17:57:42.0369 0x12c4 fssfltr - ok
17:57:42.0523 0x12c4 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
17:57:42.0563 0x12c4 fsssvc - ok
17:57:42.0596 0x12c4 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:57:42.0615 0x12c4 Fs_Rec - ok
17:57:42.0644 0x12c4 [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:57:42.0646 0x12c4 gagp30kx - ok
17:57:42.0800 0x12c4 [ 39B47A50DC3D5E898298468307765710, 06268FF65CF69E2B0822477C2D1DA44721B1ADBE4F06C0D3AC0B70C2A18D8DC6 ] GeekBuddyRSP C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
17:57:42.0862 0x12c4 GeekBuddyRSP - ok
17:57:42.0940 0x12c4 [ 77EBF3E9386DAA51551AF429052D88D0,
Tady je log:
17:57:02.0517 0x0ecc TDSS rootkit removing tool 3.0.0.39 Jun 5 2014 20:35:54
17:57:07.0693 0x0ecc ============================================================
17:57:07.0693 0x0ecc Current date / time: 2014/06/17 17:57:07.0693
17:57:07.0693 0x0ecc SystemInfo:
17:57:07.0694 0x0ecc
17:57:07.0694 0x0ecc OS Version: 6.0.6002 ServicePack: 2.0
17:57:07.0694 0x0ecc Product type: Workstation
17:57:07.0694 0x0ecc ComputerName: MSI-PC
17:57:07.0695 0x0ecc UserName: MSI
17:57:07.0695 0x0ecc Windows directory: C:\Windows
17:57:07.0695 0x0ecc System windows directory: C:\Windows
17:57:07.0695 0x0ecc Processor architecture: Intel x86
17:57:07.0695 0x0ecc Number of processors: 2
17:57:07.0695 0x0ecc Page size: 0x1000
17:57:07.0695 0x0ecc Boot type: Normal boot
17:57:07.0695 0x0ecc ============================================================
17:57:10.0743 0x0ecc KLMD registered as C:\Windows\system32\drivers\86091036.sys
17:57:11.0443 0x0ecc System UUID: {C6601F00-D608-615D-F247-6460E74F9987}
17:57:13.0301 0x0ecc Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:57:13.0304 0x0ecc ============================================================
17:57:13.0304 0x0ecc \Device\Harddisk0\DR0:
17:57:13.0304 0x0ecc MBR partitions:
17:57:13.0304 0x0ecc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC35314E
17:57:13.0304 0x0ecc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC35318D, BlocksNum 0x190DA534
17:57:13.0304 0x0ecc ============================================================
17:57:13.0352 0x0ecc C: <-> \Device\Harddisk0\DR0\Partition1
17:57:13.0460 0x0ecc D: <-> \Device\Harddisk0\DR0\Partition2
17:57:13.0461 0x0ecc ============================================================
17:57:13.0461 0x0ecc Initialize success
17:57:13.0461 0x0ecc ============================================================
17:57:17.0200 0x12c4 ============================================================
17:57:17.0200 0x12c4 Scan started
17:57:17.0200 0x12c4 Mode: Manual;
17:57:17.0200 0x12c4 ============================================================
17:57:17.0200 0x12c4 KSN ping started
17:57:31.0003 0x12c4 KSN ping finished: true
17:57:32.0697 0x12c4 ================ Scan system memory ========================
17:57:32.0697 0x12c4 System memory - ok
17:57:32.0698 0x12c4 ================ Scan services =============================
17:57:33.0069 0x12c4 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
17:57:33.0084 0x12c4 ACPI - ok
17:57:33.0257 0x12c4 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A, F419E159D3E428A3929A1A983142E7B0783D3F104EE9587585418E51011E4B8F ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:57:33.0259 0x12c4 AdobeARMservice - ok
17:57:33.0344 0x12c4 [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:57:33.0358 0x12c4 AdobeFlashPlayerUpdateSvc - ok
17:57:33.0444 0x12c4 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:57:33.0467 0x12c4 adp94xx - ok
17:57:33.0525 0x12c4 [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:57:33.0541 0x12c4 adpahci - ok
17:57:33.0605 0x12c4 [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
17:57:33.0611 0x12c4 adpu160m - ok
17:57:33.0646 0x12c4 [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:57:33.0655 0x12c4 adpu320 - ok
17:57:33.0732 0x12c4 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:57:33.0736 0x12c4 AeLookupSvc - ok
17:57:33.0809 0x12c4 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
17:57:33.0827 0x12c4 AFD - ok
17:57:33.0881 0x12c4 [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:57:33.0885 0x12c4 agp440 - ok
17:57:33.0930 0x12c4 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
17:57:33.0935 0x12c4 aic78xx - ok
17:57:34.0000 0x12c4 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
17:57:34.0005 0x12c4 ALG - ok
17:57:34.0037 0x12c4 [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys
17:57:34.0039 0x12c4 aliide - ok
17:57:34.0071 0x12c4 [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
17:57:34.0075 0x12c4 amdagp - ok
17:57:34.0114 0x12c4 [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys
17:57:34.0116 0x12c4 amdide - ok
17:57:34.0163 0x12c4 [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
17:57:34.0166 0x12c4 AmdK7 - ok
17:57:34.0203 0x12c4 [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:57:34.0213 0x12c4 AmdK8 - ok
17:57:34.0260 0x12c4 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
17:57:34.0264 0x12c4 Appinfo - ok
17:57:34.0321 0x12c4 [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
17:57:34.0326 0x12c4 arc - ok
17:57:34.0366 0x12c4 [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:57:34.0371 0x12c4 arcsas - ok
17:57:34.0595 0x12c4 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:57:34.0599 0x12c4 aspnet_state - ok
17:57:34.0659 0x12c4 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:57:34.0661 0x12c4 AsyncMac - ok
17:57:34.0688 0x12c4 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
17:57:34.0690 0x12c4 atapi - ok
17:57:34.0766 0x12c4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:57:34.0788 0x12c4 AudioEndpointBuilder - ok
17:57:34.0814 0x12c4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:57:34.0832 0x12c4 Audiosrv - ok
17:57:34.0978 0x12c4 [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.exe
17:57:34.0989 0x12c4 BBSvc - ok
17:57:35.0084 0x12c4 [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.exe
17:57:35.0098 0x12c4 BBUpdate - ok
17:57:35.0159 0x12c4 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
17:57:35.0173 0x12c4 Beep - ok
17:57:35.0260 0x12c4 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
17:57:35.0316 0x12c4 BFE - ok
17:57:35.0414 0x12c4 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
17:57:35.0459 0x12c4 BITS - ok
17:57:35.0466 0x12c4 blbdrive - ok
17:57:35.0530 0x12c4 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:57:35.0534 0x12c4 bowser - ok
17:57:35.0563 0x12c4 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
17:57:35.0564 0x12c4 BrFiltLo - ok
17:57:35.0580 0x12c4 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
17:57:35.0581 0x12c4 BrFiltUp - ok
17:57:35.0627 0x12c4 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
17:57:35.0635 0x12c4 Browser - ok
17:57:35.0664 0x12c4 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
17:57:35.0670 0x12c4 Brserid - ok
17:57:35.0697 0x12c4 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
17:57:35.0702 0x12c4 BrSerWdm - ok
17:57:35.0726 0x12c4 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
17:57:35.0728 0x12c4 BrUsbMdm - ok
17:57:35.0758 0x12c4 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
17:57:35.0760 0x12c4 BrUsbSer - ok
17:57:35.0779 0x12c4 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:57:35.0782 0x12c4 BTHMODEM - ok
17:57:35.0823 0x12c4 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:57:35.0829 0x12c4 cdfs - ok
17:57:35.0871 0x12c4 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:57:35.0877 0x12c4 cdrom - ok
17:57:35.0937 0x12c4 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
17:57:35.0942 0x12c4 CertPropSvc - ok
17:57:36.0001 0x12c4 [ 2A3A6EEF9E5479CF662B088EEBEDE8D8, 1DF8FFBBF07C09F8A1FFAD846B7CC2A58707DB7DF39420FB1F51A5C8B0B5D24A ] CFRMD C:\Windows\system32\DRIVERS\CFRMD.sys
17:57:36.0004 0x12c4 CFRMD - ok
17:57:36.0042 0x12c4 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:57:36.0046 0x12c4 circlass - ok
17:57:36.0114 0x12c4 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
17:57:36.0129 0x12c4 CLFS - ok
17:57:36.0193 0x12c4 [ 8186146DDCC0852DDB7A8A6994E4A628, 85EF8826164ED30FA1D82668B07F6858A2B9A9CCC79A727A659B5B2F8EC8FF7F ] CLPSLauncher C:\Program Files\Common Files\COMODO\launcher_service.exe
17:57:36.0198 0x12c4 CLPSLauncher - ok
17:57:36.0253 0x12c4 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:57:36.0258 0x12c4 clr_optimization_v2.0.50727_32 - ok
17:57:36.0324 0x12c4 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:57:36.0332 0x12c4 clr_optimization_v4.0.30319_32 - ok
17:57:36.0377 0x12c4 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:57:36.0379 0x12c4 CmBatt - ok
17:57:36.0914 0x12c4 [ 171A952CAE560BAC80671D4121E31897, 7394AA8E0EA2886355C8E00DBB681ABFB2B30D5A2C6CF39EDBD51A7CE3CDF866 ] CmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
17:57:37.0057 0x12c4 CmdAgent - ok
17:57:37.0132 0x12c4 [ E1888A90F975E88CE856B6398057FC0D, 938AC92022ECAB145FCE91F8236F27EA4A8A72FB2AC42EE75163266A16D4E044 ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
17:57:37.0133 0x12c4 cmderd - ok
17:57:37.0276 0x12c4 [ 73A0016D264742EC62D00B8B101FFB52, 9740E02B03B70C315C3F15C192EC4BEA1F1D7F42620215505F0470D92B2D3F0F ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
17:57:37.0309 0x12c4 cmdGuard - ok
17:57:37.0386 0x12c4 [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:57:37.0389 0x12c4 cmdide - ok
17:57:37.0847 0x12c4 [ A665EF912EEFD99EA557C6AB35CA1021, D8B53E70DF25E036F02D3707CF18ED2980F42A99D655230A9F7804E5F5D4BAB4 ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
17:57:37.0905 0x12c4 cmdvirth - ok
17:57:38.0529 0x12c4 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:57:38.0532 0x12c4 Compbatt - ok
17:57:38.0550 0x12c4 COMSysApp - ok
17:57:38.0766 0x12c4 cpuz137 - ok
17:57:38.0821 0x12c4 [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:57:38.0822 0x12c4 crcdisk - ok
17:57:38.0846 0x12c4 [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
17:57:38.0848 0x12c4 Crusoe - ok
17:57:38.0908 0x12c4 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:57:38.0926 0x12c4 CryptSvc - ok
17:57:39.0010 0x12c4 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:57:39.0067 0x12c4 DcomLaunch - ok
17:57:39.0115 0x12c4 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:57:39.0126 0x12c4 DfsC - ok
17:57:39.0365 0x12c4 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
17:57:39.0475 0x12c4 DFSR - ok
17:57:39.0555 0x12c4 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
17:57:39.0564 0x12c4 Dhcp - ok
17:57:39.0585 0x12c4 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
17:57:39.0587 0x12c4 disk - ok
17:57:39.0642 0x12c4 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:57:39.0651 0x12c4 Dnscache - ok
17:57:39.0693 0x12c4 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
17:57:39.0707 0x12c4 dot3svc - ok
17:57:39.0767 0x12c4 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
17:57:39.0779 0x12c4 DPS - ok
17:57:40.0185 0x12c4 [ 803569711F5976AD4A1469A091617946, 9FCFAE663992126B43EF9C729172A27D0B10CA758251D687430361D3A08BB4E2 ] DragonUpdater C:\Program Files\Comodo\Dragon\dragon_updater.exe
17:57:40.0242 0x12c4 DragonUpdater - ok
17:57:40.0303 0x12c4 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:57:40.0304 0x12c4 drmkaud - ok
17:57:40.0427 0x12c4 [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:57:40.0445 0x12c4 DXGKrnl - ok
17:57:40.0495 0x12c4 [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
17:57:40.0500 0x12c4 E1G60 - ok
17:57:40.0520 0x12c4 EagleXNt - ok
17:57:40.0560 0x12c4 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
17:57:40.0564 0x12c4 EapHost - ok
17:57:40.0608 0x12c4 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
17:57:40.0617 0x12c4 Ecache - ok
17:57:40.0657 0x12c4 [ B8EAC99B14772BDC36CA963AED109FA2, 332484E0F0E5D2C4F45A9D840B2946D247B0AA03697E1A1196F04A330A37FEDE ] ElRawDisk C:\Windows\system32\drivers\dddsk.sys
17:57:40.0660 0x12c4 ElRawDisk - ok
17:57:40.0752 0x12c4 [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:57:40.0770 0x12c4 elxstor - ok
17:57:40.0973 0x12c4 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
17:57:41.0011 0x12c4 EMDMgmt - ok
17:57:41.0044 0x12c4 [ 4CD6B056C5FD9E97C06FE74C81479517, 8A5663F8B9FBB43D352D46AC279E26A54CFD424F549B5E736A8FECAB945C862F ] enecir C:\Windows\system32\DRIVERS\enecir.sys
17:57:41.0049 0x12c4 enecir - ok
17:57:41.0189 0x12c4 [ 3152CAFA9F55E5363DA4CBC7DAE2BD1B, C28585DDE73B8F00D9CD9D7D8C5050BBD1BF0F800064CACC483CA4F1DF50DEC9 ] English20 C:\ProgramData\Readers Digest\Eng20s.exe
17:57:41.0248 0x12c4 English20 - ok
17:57:41.0359 0x12c4 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
17:57:41.0370 0x12c4 EventSystem - ok
17:57:41.0439 0x12c4 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7, 9AAF39AA22372FB8582C1422581C08E61444BF843E1CE2E199EB00FBEA6F9C06 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
17:57:41.0444 0x12c4 ew_hwusbdev - ok
17:57:41.0485 0x12c4 [ 61A973F60E94A551BA7B15F3460444FB, FC2FB69978D99D75673AFE9F08176F3139DCBAEDE4D339BD09DA29CD3EC01005 ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
17:57:41.0486 0x12c4 ew_usbenumfilter - ok
17:57:41.0563 0x12c4 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
17:57:41.0569 0x12c4 exfat - ok
17:57:41.0632 0x12c4 FairplayKD - ok
17:57:41.0692 0x12c4 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:57:41.0703 0x12c4 fastfat - ok
17:57:41.0734 0x12c4 [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:57:41.0737 0x12c4 fdc - ok
17:57:41.0781 0x12c4 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
17:57:41.0785 0x12c4 fdPHost - ok
17:57:41.0810 0x12c4 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
17:57:41.0815 0x12c4 FDResPub - ok
17:57:41.0873 0x12c4 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:57:41.0877 0x12c4 FileInfo - ok
17:57:41.0922 0x12c4 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:57:41.0924 0x12c4 Filetrace - ok
17:57:41.0945 0x12c4 [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:57:41.0946 0x12c4 flpydisk - ok
17:57:42.0013 0x12c4 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:57:42.0025 0x12c4 FltMgr - ok
17:57:42.0149 0x12c4 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
17:57:42.0214 0x12c4 FontCache - ok
17:57:42.0316 0x12c4 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:57:42.0318 0x12c4 FontCache3.0.0.0 - ok
17:57:42.0367 0x12c4 [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
17:57:42.0369 0x12c4 fssfltr - ok
17:57:42.0523 0x12c4 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
17:57:42.0563 0x12c4 fsssvc - ok
17:57:42.0596 0x12c4 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:57:42.0615 0x12c4 Fs_Rec - ok
17:57:42.0644 0x12c4 [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:57:42.0646 0x12c4 gagp30kx - ok
17:57:42.0800 0x12c4 [ 39B47A50DC3D5E898298468307765710, 06268FF65CF69E2B0822477C2D1DA44721B1ADBE4F06C0D3AC0B70C2A18D8DC6 ] GeekBuddyRSP C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
17:57:42.0862 0x12c4 GeekBuddyRSP - ok
17:57:42.0940 0x12c4 [ 77EBF3E9386DAA51551AF429052D88D0,
-
zvoltejmeno
- Level 1
- Příspěvky: 58
- Registrován: listopad 11
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu - policejní vir ?
94C3294BB9E14B07448734AE65B37801D3FF15BEC987D182A929A017FEF7B276 ] giveio C:\Windows\system32\giveio.sys
17:57:42.0942 0x12c4 giveio - ok
17:57:43.0012 0x12c4 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
17:57:43.0057 0x12c4 gpsvc - ok
17:57:43.0126 0x12c4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:57:43.0129 0x12c4 gupdate - ok
17:57:43.0148 0x12c4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:57:43.0152 0x12c4 gupdatem - ok
17:57:43.0188 0x12c4 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:57:43.0194 0x12c4 gusvc - ok
17:57:43.0254 0x12c4 [ 833051C6C6C42117191935F734CFBD97, 5EB5672ABC7994A4AFF855A572158B8BE4FC6E541CFD4B9BE4FF2739A9A6AFB8 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
17:57:43.0257 0x12c4 hamachi - ok
17:57:43.0474 0x12c4 [ 96EB4401E2CA9A3B079B05B1FDF9F2B8, AB9B48B49C51335AB405C7C6D094A9072BF3DDA46EFAB57CB4F6655CA86596D5 ] Hamachi2Svc C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
17:57:43.0565 0x12c4 Hamachi2Svc - ok
17:57:43.0634 0x12c4 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:57:43.0767 0x12c4 HdAudAddService - ok
17:57:43.0832 0x12c4 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:57:43.0888 0x12c4 HDAudBus - ok
17:57:43.0927 0x12c4 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:57:43.0930 0x12c4 HidBth - ok
17:57:43.0966 0x12c4 [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:57:43.0969 0x12c4 HidIr - ok
17:57:44.0021 0x12c4 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
17:57:44.0026 0x12c4 hidserv - ok
17:57:44.0056 0x12c4 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:57:44.0058 0x12c4 HidUsb - ok
17:57:44.0108 0x12c4 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
17:57:44.0138 0x12c4 hkmsvc - ok
17:57:44.0181 0x12c4 [ B00D5692DDF7B39F818870849805AEB2, 7380585B4688EDBE78FC1CE640BC893CC192B04D74DEAA0EED1E78437996BEF5 ] HMD C:\Windows\system32\DRIVERS\hmd.sys
17:57:44.0183 0x12c4 HMD - ok
17:57:44.0202 0x12c4 [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
17:57:44.0206 0x12c4 HpCISSs - ok
17:57:44.0282 0x12c4 [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:57:44.0349 0x12c4 HTTP - ok
17:57:44.0404 0x12c4 [ B73B6816BE98F6CAE539EB458626C411, B706F31DDF2052B34A187EFF5820D2AD5180DE003FC0353A39E86FC0F1904F3C ] huawei_cdcacm C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
17:57:44.0411 0x12c4 huawei_cdcacm - ok
17:57:44.0454 0x12c4 [ BAEE880B51DF1A39D38F363523CD7E17, A97E94431C86AF99F125BA6326DBAA972031E5F5094891EF028705218084A879 ] huawei_cdcecm C:\Windows\system32\DRIVERS\ew_jucdcecm.sys
17:57:44.0459 0x12c4 huawei_cdcecm - ok
17:57:44.0496 0x12c4 [ 12CA899F967E6B6F14E080705DF68932, 8C524F5AA0499A3BB0749D45B59F3F03A73004A9583396CA3470DF1C0F1E3281 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
17:57:44.0502 0x12c4 huawei_enumerator - ok
17:57:44.0526 0x12c4 [ AB58FF5B1A2B23C751E29975081E8015, A3A58EA423A3BFBF5BCD8D87AA6939EC02D641C259C38D6DB728BD2EF52D5567 ] huawei_ext_ctrl C:\Windows\system32\DRIVERS\ew_juextctrl.sys
17:57:44.0529 0x12c4 huawei_ext_ctrl - ok
17:57:44.0589 0x12c4 [ 8ABB5F714050209E5C7537DE18F7FB7B, 8AAA8F5BDF167F62958F98E0750940AFFD9D01D1879BF8E17DE034E2991FDA8C ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:57:44.0603 0x12c4 hwdatacard - ok
17:57:44.0655 0x12c4 [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
17:57:44.0659 0x12c4 i2omp - ok
17:57:44.0726 0x12c4 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:57:44.0730 0x12c4 i8042prt - ok
17:57:44.0772 0x12c4 [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
17:57:44.0786 0x12c4 iaStorV - ok
17:57:44.0947 0x12c4 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:57:44.0995 0x12c4 idsvc - ok
17:57:45.0029 0x12c4 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:57:45.0033 0x12c4 iirsp - ok
17:57:45.0132 0x12c4 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
17:57:45.0165 0x12c4 IKEEXT - ok
17:57:45.0426 0x12c4 [ 98FB74EC7F46E25EC082F1925EEF39CD, 421523EAF0A546A06779C4026912562C5DB5A3EF16F91ADAA8ED26FA37274534 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:57:45.0581 0x12c4 IntcAzAudAddService - ok
17:57:45.0626 0x12c4 [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide C:\Windows\system32\drivers\intelide.sys
17:57:45.0627 0x12c4 intelide - ok
17:57:45.0659 0x12c4 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:57:45.0661 0x12c4 intelppm - ok
17:57:45.0707 0x12c4 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:57:45.0712 0x12c4 IPBusEnum - ok
17:57:45.0744 0x12c4 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:57:45.0752 0x12c4 IpFilterDriver - ok
17:57:45.0804 0x12c4 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:57:45.0813 0x12c4 iphlpsvc - ok
17:57:45.0819 0x12c4 IpInIp - ok
17:57:45.0842 0x12c4 [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
17:57:45.0845 0x12c4 IPMIDRV - ok
17:57:45.0872 0x12c4 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
17:57:45.0877 0x12c4 IPNAT - ok
17:57:45.0907 0x12c4 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:57:45.0908 0x12c4 IRENUM - ok
17:57:45.0942 0x12c4 [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:57:45.0944 0x12c4 isapnp - ok
17:57:46.0000 0x12c4 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:57:46.0007 0x12c4 iScsiPrt - ok
17:57:46.0031 0x12c4 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
17:57:46.0033 0x12c4 iteatapi - ok
17:57:46.0068 0x12c4 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
17:57:46.0070 0x12c4 iteraid - ok
17:57:46.0118 0x12c4 [ FA4A5B32CAE6074205B26971191EFEE4, 86A097D3E27A9F7D532155FE6BE2D056B72B29C6CCEE046D6471875B08745453 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
17:57:46.0122 0x12c4 JMCR - ok
17:57:46.0149 0x12c4 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:57:46.0151 0x12c4 kbdclass - ok
17:57:46.0196 0x12c4 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:57:46.0197 0x12c4 kbdhid - ok
17:57:46.0253 0x12c4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
17:57:46.0256 0x12c4 KeyIso - ok
17:57:46.0355 0x12c4 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:57:46.0380 0x12c4 KSecDD - ok
17:57:46.0465 0x12c4 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
17:57:46.0499 0x12c4 KtmRm - ok
17:57:46.0542 0x12c4 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
17:57:46.0557 0x12c4 LanmanServer - ok
17:57:46.0624 0x12c4 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:57:46.0653 0x12c4 LanmanWorkstation - ok
17:57:46.0693 0x12c4 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:57:46.0695 0x12c4 lltdio - ok
17:57:46.0741 0x12c4 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:57:46.0750 0x12c4 lltdsvc - ok
17:57:46.0785 0x12c4 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:57:46.0791 0x12c4 lmhosts - ok
17:57:46.0878 0x12c4 [ FF585B29142A433EAA4C76EF4E29CCC7, 683648CFD3F00DDC991E9754FBB5F265F405D6DA0F79150314EBF7DD901524BC ] LMIGuardianSvc C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
17:57:46.0898 0x12c4 LMIGuardianSvc - ok
17:57:46.0941 0x12c4 [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:57:46.0946 0x12c4 LSI_FC - ok
17:57:46.0977 0x12c4 [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:57:46.0980 0x12c4 LSI_SAS - ok
17:57:47.0001 0x12c4 [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:57:47.0004 0x12c4 LSI_SCSI - ok
17:57:47.0033 0x12c4 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
17:57:47.0037 0x12c4 luafv - ok
17:57:47.0239 0x12c4 [ D77A5C1FEE2F46170F52FC13F9C8F0E9, 0D2CC0401A61EC5E3F0C18D69D916B02A82C8FA3759CDECE2186F5420C3A9D23 ] MbnExt C:\Program Files\T-Mobile\Web'n'walk Manager\MbnExt.dll
17:57:47.0266 0x12c4 MbnExt - ok
17:57:47.0348 0x12c4 [ F453D1E6D881E8F8717E20CCD4199E85, 99864785355638479F0A005E5E1D22067A13EC41FDD1BD1E561577F38A134453 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.189\McCHSvc.exe
17:57:47.0355 0x12c4 McComponentHostService - ok
17:57:47.0394 0x12c4 [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
17:57:47.0397 0x12c4 megasas - ok
17:57:47.0473 0x12c4 [ FEF6D2D708CCEEA9FE7A335A745F8F5C, C691BDE66DDE34B22C4F589B43D93D21245C1D54DAE3772FDE0FE7DE3D68E496 ] Micro Star SCM C:\Program Files\System Control Manager\MSIService.exe
17:57:47.0483 0x12c4 Micro Star SCM - ok
17:57:47.0520 0x12c4 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
17:57:47.0530 0x12c4 MMCSS - ok
17:57:47.0587 0x12c4 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
17:57:47.0590 0x12c4 Modem - ok
17:57:47.0653 0x12c4 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:57:47.0667 0x12c4 monitor - ok
17:57:47.0719 0x12c4 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:57:47.0723 0x12c4 mouclass - ok
17:57:47.0750 0x12c4 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:57:47.0753 0x12c4 mouhid - ok
17:57:47.0807 0x12c4 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
17:57:47.0811 0x12c4 MountMgr - ok
17:57:47.0882 0x12c4 [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:57:47.0890 0x12c4 MozillaMaintenance - ok
17:57:47.0969 0x12c4 [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
17:57:47.0975 0x12c4 mpio - ok
17:57:48.0089 0x12c4 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:57:48.0096 0x12c4 mpsdrv - ok
17:57:48.0200 0x12c4 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:57:48.0238 0x12c4 MpsSvc - ok
17:57:48.0286 0x12c4 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
17:57:48.0289 0x12c4 Mraid35x - ok
17:57:48.0344 0x12c4 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:57:48.0361 0x12c4 MRxDAV - ok
17:57:48.0416 0x12c4 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:57:48.0434 0x12c4 mrxsmb - ok
17:57:48.0496 0x12c4 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:57:48.0524 0x12c4 mrxsmb10 - ok
17:57:48.0566 0x12c4 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:57:48.0572 0x12c4 mrxsmb20 - ok
17:57:48.0612 0x12c4 [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci C:\Windows\system32\drivers\msahci.sys
17:57:48.0615 0x12c4 msahci - ok
17:57:48.0656 0x12c4 [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:57:48.0662 0x12c4 msdsm - ok
17:57:48.0728 0x12c4 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
17:57:48.0751 0x12c4 MSDTC - ok
17:57:48.0793 0x12c4 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:57:48.0796 0x12c4 Msfs - ok
17:57:48.0841 0x12c4 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:57:48.0845 0x12c4 msisadrv - ok
17:57:48.0911 0x12c4 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:57:48.0925 0x12c4 MSiSCSI - ok
17:57:48.0935 0x12c4 msiserver - ok
17:57:48.0985 0x12c4 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:57:48.0987 0x12c4 MSKSSRV - ok
17:57:49.0017 0x12c4 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:57:49.0019 0x12c4 MSPCLOCK - ok
17:57:49.0066 0x12c4 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:57:49.0068 0x12c4 MSPQM - ok
17:57:49.0155 0x12c4 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:57:49.0168 0x12c4 MsRPC - ok
17:57:49.0197 0x12c4 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:57:49.0200 0x12c4 mssmbios - ok
17:57:49.0244 0x12c4 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:57:49.0246 0x12c4 MSTEE - ok
17:57:49.0306 0x12c4 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
17:57:49.0311 0x12c4 Mup - ok
17:57:49.0411 0x12c4 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
17:57:49.0456 0x12c4 napagent - ok
17:57:49.0524 0x12c4 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:57:49.0543 0x12c4 NativeWifiP - ok
17:57:49.0634 0x12c4 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:57:49.0663 0x12c4 NDIS - ok
17:57:49.0711 0x12c4 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:57:49.0714 0x12c4 NdisTapi - ok
17:57:49.0771 0x12c4 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:57:49.0774 0x12c4 Ndisuio - ok
17:57:49.0822 0x12c4 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:57:49.0843 0x12c4 NdisWan - ok
17:57:49.0885 0x12c4 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:57:49.0890 0x12c4 NDProxy - ok
17:57:49.0912 0x12c4 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:57:49.0916 0x12c4 NetBIOS - ok
17:57:49.0973 0x12c4 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
17:57:49.0986 0x12c4 netbt - ok
17:57:50.0010 0x12c4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
17:57:50.0015 0x12c4 Netlogon - ok
17:57:50.0081 0x12c4 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
17:57:50.0106 0x12c4 Netman - ok
17:57:50.0164 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0174 0x12c4 NetMsmqActivator - ok
17:57:50.0190 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0200 0x12c4 NetPipeActivator - ok
17:57:50.0263 0x12c4 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
17:57:50.0284 0x12c4 netprofm - ok
17:57:50.0344 0x12c4 [ 418279DEBE43E05A6551268CD7301D6D, 8CD877F2406D16F29685A2D74D457EBEDB4FD5C8D56AFE428ACD02AD4FC122A7 ] netr28 C:\Windows\system32\DRIVERS\netr28.sys
17:57:50.0384 0x12c4 netr28 - ok
17:57:50.0401 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0411 0x12c4 NetTcpActivator - ok
17:57:50.0428 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0438 0x12c4 NetTcpPortSharing - ok
17:57:50.0520 0x12c4 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:57:50.0522 0x12c4 nfrd960 - ok
17:57:50.0589 0x12c4 [ 9F967A6DB0E6E0E01F898C26FEDD418B, 01B010AAB0F7AD389A1AF72468389E37F9504C6C9EB7DA8DE18EDCFF0F9C9733 ] nhcDriverDevice C:\Windows\system32\drivers\nhcDriver.sys
17:57:50.0596 0x12c4 nhcDriverDevice - ok
17:57:50.0649 0x12c4 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
17:57:50.0666 0x12c4 NlaSvc - ok
17:57:50.0714 0x12c4 [ B0A67DE1A128389AEA4D42C5A56215FD, BE70916D507622991408C8256934819B8096A7FDAF2C7BA362AD5786E30F647C ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
17:57:50.0717 0x12c4 nmwcd - ok
17:57:50.0774 0x12c4 [ 025C54F9F8C8BC1894EA38529C742C54, 176CF78E6202B020551E25AC9D05C6BF7782A8D24A93C545CEAD9B16437A528C ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
17:57:50.0776 0x12c4 nmwcdc - ok
17:57:50.0838 0x12c4 [ B9730495E0CF674680121E34BD95A73B,
17:57:42.0942 0x12c4 giveio - ok
17:57:43.0012 0x12c4 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
17:57:43.0057 0x12c4 gpsvc - ok
17:57:43.0126 0x12c4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:57:43.0129 0x12c4 gupdate - ok
17:57:43.0148 0x12c4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:57:43.0152 0x12c4 gupdatem - ok
17:57:43.0188 0x12c4 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:57:43.0194 0x12c4 gusvc - ok
17:57:43.0254 0x12c4 [ 833051C6C6C42117191935F734CFBD97, 5EB5672ABC7994A4AFF855A572158B8BE4FC6E541CFD4B9BE4FF2739A9A6AFB8 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
17:57:43.0257 0x12c4 hamachi - ok
17:57:43.0474 0x12c4 [ 96EB4401E2CA9A3B079B05B1FDF9F2B8, AB9B48B49C51335AB405C7C6D094A9072BF3DDA46EFAB57CB4F6655CA86596D5 ] Hamachi2Svc C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
17:57:43.0565 0x12c4 Hamachi2Svc - ok
17:57:43.0634 0x12c4 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:57:43.0767 0x12c4 HdAudAddService - ok
17:57:43.0832 0x12c4 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:57:43.0888 0x12c4 HDAudBus - ok
17:57:43.0927 0x12c4 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:57:43.0930 0x12c4 HidBth - ok
17:57:43.0966 0x12c4 [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:57:43.0969 0x12c4 HidIr - ok
17:57:44.0021 0x12c4 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
17:57:44.0026 0x12c4 hidserv - ok
17:57:44.0056 0x12c4 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:57:44.0058 0x12c4 HidUsb - ok
17:57:44.0108 0x12c4 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
17:57:44.0138 0x12c4 hkmsvc - ok
17:57:44.0181 0x12c4 [ B00D5692DDF7B39F818870849805AEB2, 7380585B4688EDBE78FC1CE640BC893CC192B04D74DEAA0EED1E78437996BEF5 ] HMD C:\Windows\system32\DRIVERS\hmd.sys
17:57:44.0183 0x12c4 HMD - ok
17:57:44.0202 0x12c4 [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
17:57:44.0206 0x12c4 HpCISSs - ok
17:57:44.0282 0x12c4 [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:57:44.0349 0x12c4 HTTP - ok
17:57:44.0404 0x12c4 [ B73B6816BE98F6CAE539EB458626C411, B706F31DDF2052B34A187EFF5820D2AD5180DE003FC0353A39E86FC0F1904F3C ] huawei_cdcacm C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
17:57:44.0411 0x12c4 huawei_cdcacm - ok
17:57:44.0454 0x12c4 [ BAEE880B51DF1A39D38F363523CD7E17, A97E94431C86AF99F125BA6326DBAA972031E5F5094891EF028705218084A879 ] huawei_cdcecm C:\Windows\system32\DRIVERS\ew_jucdcecm.sys
17:57:44.0459 0x12c4 huawei_cdcecm - ok
17:57:44.0496 0x12c4 [ 12CA899F967E6B6F14E080705DF68932, 8C524F5AA0499A3BB0749D45B59F3F03A73004A9583396CA3470DF1C0F1E3281 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
17:57:44.0502 0x12c4 huawei_enumerator - ok
17:57:44.0526 0x12c4 [ AB58FF5B1A2B23C751E29975081E8015, A3A58EA423A3BFBF5BCD8D87AA6939EC02D641C259C38D6DB728BD2EF52D5567 ] huawei_ext_ctrl C:\Windows\system32\DRIVERS\ew_juextctrl.sys
17:57:44.0529 0x12c4 huawei_ext_ctrl - ok
17:57:44.0589 0x12c4 [ 8ABB5F714050209E5C7537DE18F7FB7B, 8AAA8F5BDF167F62958F98E0750940AFFD9D01D1879BF8E17DE034E2991FDA8C ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:57:44.0603 0x12c4 hwdatacard - ok
17:57:44.0655 0x12c4 [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
17:57:44.0659 0x12c4 i2omp - ok
17:57:44.0726 0x12c4 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:57:44.0730 0x12c4 i8042prt - ok
17:57:44.0772 0x12c4 [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
17:57:44.0786 0x12c4 iaStorV - ok
17:57:44.0947 0x12c4 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:57:44.0995 0x12c4 idsvc - ok
17:57:45.0029 0x12c4 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:57:45.0033 0x12c4 iirsp - ok
17:57:45.0132 0x12c4 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
17:57:45.0165 0x12c4 IKEEXT - ok
17:57:45.0426 0x12c4 [ 98FB74EC7F46E25EC082F1925EEF39CD, 421523EAF0A546A06779C4026912562C5DB5A3EF16F91ADAA8ED26FA37274534 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:57:45.0581 0x12c4 IntcAzAudAddService - ok
17:57:45.0626 0x12c4 [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide C:\Windows\system32\drivers\intelide.sys
17:57:45.0627 0x12c4 intelide - ok
17:57:45.0659 0x12c4 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:57:45.0661 0x12c4 intelppm - ok
17:57:45.0707 0x12c4 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:57:45.0712 0x12c4 IPBusEnum - ok
17:57:45.0744 0x12c4 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:57:45.0752 0x12c4 IpFilterDriver - ok
17:57:45.0804 0x12c4 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:57:45.0813 0x12c4 iphlpsvc - ok
17:57:45.0819 0x12c4 IpInIp - ok
17:57:45.0842 0x12c4 [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
17:57:45.0845 0x12c4 IPMIDRV - ok
17:57:45.0872 0x12c4 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
17:57:45.0877 0x12c4 IPNAT - ok
17:57:45.0907 0x12c4 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:57:45.0908 0x12c4 IRENUM - ok
17:57:45.0942 0x12c4 [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:57:45.0944 0x12c4 isapnp - ok
17:57:46.0000 0x12c4 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:57:46.0007 0x12c4 iScsiPrt - ok
17:57:46.0031 0x12c4 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
17:57:46.0033 0x12c4 iteatapi - ok
17:57:46.0068 0x12c4 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
17:57:46.0070 0x12c4 iteraid - ok
17:57:46.0118 0x12c4 [ FA4A5B32CAE6074205B26971191EFEE4, 86A097D3E27A9F7D532155FE6BE2D056B72B29C6CCEE046D6471875B08745453 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
17:57:46.0122 0x12c4 JMCR - ok
17:57:46.0149 0x12c4 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:57:46.0151 0x12c4 kbdclass - ok
17:57:46.0196 0x12c4 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:57:46.0197 0x12c4 kbdhid - ok
17:57:46.0253 0x12c4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
17:57:46.0256 0x12c4 KeyIso - ok
17:57:46.0355 0x12c4 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:57:46.0380 0x12c4 KSecDD - ok
17:57:46.0465 0x12c4 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
17:57:46.0499 0x12c4 KtmRm - ok
17:57:46.0542 0x12c4 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
17:57:46.0557 0x12c4 LanmanServer - ok
17:57:46.0624 0x12c4 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:57:46.0653 0x12c4 LanmanWorkstation - ok
17:57:46.0693 0x12c4 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:57:46.0695 0x12c4 lltdio - ok
17:57:46.0741 0x12c4 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:57:46.0750 0x12c4 lltdsvc - ok
17:57:46.0785 0x12c4 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:57:46.0791 0x12c4 lmhosts - ok
17:57:46.0878 0x12c4 [ FF585B29142A433EAA4C76EF4E29CCC7, 683648CFD3F00DDC991E9754FBB5F265F405D6DA0F79150314EBF7DD901524BC ] LMIGuardianSvc C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
17:57:46.0898 0x12c4 LMIGuardianSvc - ok
17:57:46.0941 0x12c4 [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:57:46.0946 0x12c4 LSI_FC - ok
17:57:46.0977 0x12c4 [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:57:46.0980 0x12c4 LSI_SAS - ok
17:57:47.0001 0x12c4 [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:57:47.0004 0x12c4 LSI_SCSI - ok
17:57:47.0033 0x12c4 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
17:57:47.0037 0x12c4 luafv - ok
17:57:47.0239 0x12c4 [ D77A5C1FEE2F46170F52FC13F9C8F0E9, 0D2CC0401A61EC5E3F0C18D69D916B02A82C8FA3759CDECE2186F5420C3A9D23 ] MbnExt C:\Program Files\T-Mobile\Web'n'walk Manager\MbnExt.dll
17:57:47.0266 0x12c4 MbnExt - ok
17:57:47.0348 0x12c4 [ F453D1E6D881E8F8717E20CCD4199E85, 99864785355638479F0A005E5E1D22067A13EC41FDD1BD1E561577F38A134453 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.189\McCHSvc.exe
17:57:47.0355 0x12c4 McComponentHostService - ok
17:57:47.0394 0x12c4 [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
17:57:47.0397 0x12c4 megasas - ok
17:57:47.0473 0x12c4 [ FEF6D2D708CCEEA9FE7A335A745F8F5C, C691BDE66DDE34B22C4F589B43D93D21245C1D54DAE3772FDE0FE7DE3D68E496 ] Micro Star SCM C:\Program Files\System Control Manager\MSIService.exe
17:57:47.0483 0x12c4 Micro Star SCM - ok
17:57:47.0520 0x12c4 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
17:57:47.0530 0x12c4 MMCSS - ok
17:57:47.0587 0x12c4 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
17:57:47.0590 0x12c4 Modem - ok
17:57:47.0653 0x12c4 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:57:47.0667 0x12c4 monitor - ok
17:57:47.0719 0x12c4 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:57:47.0723 0x12c4 mouclass - ok
17:57:47.0750 0x12c4 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:57:47.0753 0x12c4 mouhid - ok
17:57:47.0807 0x12c4 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
17:57:47.0811 0x12c4 MountMgr - ok
17:57:47.0882 0x12c4 [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:57:47.0890 0x12c4 MozillaMaintenance - ok
17:57:47.0969 0x12c4 [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
17:57:47.0975 0x12c4 mpio - ok
17:57:48.0089 0x12c4 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:57:48.0096 0x12c4 mpsdrv - ok
17:57:48.0200 0x12c4 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:57:48.0238 0x12c4 MpsSvc - ok
17:57:48.0286 0x12c4 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
17:57:48.0289 0x12c4 Mraid35x - ok
17:57:48.0344 0x12c4 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:57:48.0361 0x12c4 MRxDAV - ok
17:57:48.0416 0x12c4 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:57:48.0434 0x12c4 mrxsmb - ok
17:57:48.0496 0x12c4 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:57:48.0524 0x12c4 mrxsmb10 - ok
17:57:48.0566 0x12c4 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:57:48.0572 0x12c4 mrxsmb20 - ok
17:57:48.0612 0x12c4 [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci C:\Windows\system32\drivers\msahci.sys
17:57:48.0615 0x12c4 msahci - ok
17:57:48.0656 0x12c4 [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:57:48.0662 0x12c4 msdsm - ok
17:57:48.0728 0x12c4 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
17:57:48.0751 0x12c4 MSDTC - ok
17:57:48.0793 0x12c4 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:57:48.0796 0x12c4 Msfs - ok
17:57:48.0841 0x12c4 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:57:48.0845 0x12c4 msisadrv - ok
17:57:48.0911 0x12c4 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:57:48.0925 0x12c4 MSiSCSI - ok
17:57:48.0935 0x12c4 msiserver - ok
17:57:48.0985 0x12c4 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:57:48.0987 0x12c4 MSKSSRV - ok
17:57:49.0017 0x12c4 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:57:49.0019 0x12c4 MSPCLOCK - ok
17:57:49.0066 0x12c4 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:57:49.0068 0x12c4 MSPQM - ok
17:57:49.0155 0x12c4 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:57:49.0168 0x12c4 MsRPC - ok
17:57:49.0197 0x12c4 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:57:49.0200 0x12c4 mssmbios - ok
17:57:49.0244 0x12c4 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:57:49.0246 0x12c4 MSTEE - ok
17:57:49.0306 0x12c4 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
17:57:49.0311 0x12c4 Mup - ok
17:57:49.0411 0x12c4 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
17:57:49.0456 0x12c4 napagent - ok
17:57:49.0524 0x12c4 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:57:49.0543 0x12c4 NativeWifiP - ok
17:57:49.0634 0x12c4 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:57:49.0663 0x12c4 NDIS - ok
17:57:49.0711 0x12c4 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:57:49.0714 0x12c4 NdisTapi - ok
17:57:49.0771 0x12c4 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:57:49.0774 0x12c4 Ndisuio - ok
17:57:49.0822 0x12c4 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:57:49.0843 0x12c4 NdisWan - ok
17:57:49.0885 0x12c4 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:57:49.0890 0x12c4 NDProxy - ok
17:57:49.0912 0x12c4 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:57:49.0916 0x12c4 NetBIOS - ok
17:57:49.0973 0x12c4 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
17:57:49.0986 0x12c4 netbt - ok
17:57:50.0010 0x12c4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
17:57:50.0015 0x12c4 Netlogon - ok
17:57:50.0081 0x12c4 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
17:57:50.0106 0x12c4 Netman - ok
17:57:50.0164 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0174 0x12c4 NetMsmqActivator - ok
17:57:50.0190 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0200 0x12c4 NetPipeActivator - ok
17:57:50.0263 0x12c4 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
17:57:50.0284 0x12c4 netprofm - ok
17:57:50.0344 0x12c4 [ 418279DEBE43E05A6551268CD7301D6D, 8CD877F2406D16F29685A2D74D457EBEDB4FD5C8D56AFE428ACD02AD4FC122A7 ] netr28 C:\Windows\system32\DRIVERS\netr28.sys
17:57:50.0384 0x12c4 netr28 - ok
17:57:50.0401 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0411 0x12c4 NetTcpActivator - ok
17:57:50.0428 0x12c4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:57:50.0438 0x12c4 NetTcpPortSharing - ok
17:57:50.0520 0x12c4 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:57:50.0522 0x12c4 nfrd960 - ok
17:57:50.0589 0x12c4 [ 9F967A6DB0E6E0E01F898C26FEDD418B, 01B010AAB0F7AD389A1AF72468389E37F9504C6C9EB7DA8DE18EDCFF0F9C9733 ] nhcDriverDevice C:\Windows\system32\drivers\nhcDriver.sys
17:57:50.0596 0x12c4 nhcDriverDevice - ok
17:57:50.0649 0x12c4 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
17:57:50.0666 0x12c4 NlaSvc - ok
17:57:50.0714 0x12c4 [ B0A67DE1A128389AEA4D42C5A56215FD, BE70916D507622991408C8256934819B8096A7FDAF2C7BA362AD5786E30F647C ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
17:57:50.0717 0x12c4 nmwcd - ok
17:57:50.0774 0x12c4 [ 025C54F9F8C8BC1894EA38529C742C54, 176CF78E6202B020551E25AC9D05C6BF7782A8D24A93C545CEAD9B16437A528C ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
17:57:50.0776 0x12c4 nmwcdc - ok
17:57:50.0838 0x12c4 [ B9730495E0CF674680121E34BD95A73B,
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 121 hostů