Security Shield 2012 - jak se ho zbavit?

[pompeus50]

Dobrý den
Mám problém s notebookem,zničeho nic mě ho napadl SS2012 zjístil jsem že je to vir.
Nemůžu kvůli němu na internet. Jak se ho mám zbavit?
Děkuji

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

[pompeus50]

Ahoj
Projel jsem AFT Cleanerem a i Malwarem a vyskočila mi scan
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 214877
Uplynulý čas: 7 minut, 9 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Internet už jede,tak děkuji

[jaro3]

Vlož log z HJT:
viewtopic.php?f=70&t=5119

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[pompeus50]

Ahoj
Tak se mi ta sv*ně asi vrátila. Zničeho nic se mi do nooteboku nainstaloval LIVE SECURITY PLATINUM a opět nejde internet! Při odinstalaci se spustí rádoby kontrola! Je pod C/Programdata v nějaké nesmyslné složce.
Potřebuju poradit co stím protože když chci spustit TDSSKiller nebo ComboFix či jinou aplikaci ten vir aplikaci zakaže a nespustí se

[memphisto]

nouzový režim

[pompeus50]

Děkuji

Šel mi udělat jen scan z TDSSKiller. ComboFix se mi jen rozbalil a nic

22:20:30.0341 1380 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
22:20:31.0012 1380 ============================================================
22:20:31.0012 1380 Current date / time: 2012/02/25 22:20:31.0012
22:20:31.0012 1380 SystemInfo:
22:20:31.0012 1380
22:20:31.0012 1380 OS Version: 6.0.6002 ServicePack: 2.0
22:20:31.0012 1380 Product type: Workstation
22:20:31.0012 1380 ComputerName: JITKA-PC
22:20:31.0183 1380 UserName: Jitka
22:20:31.0183 1380 Windows directory: C:\Windows
22:20:31.0183 1380 System windows directory: C:\Windows
22:20:31.0183 1380 Running under WOW64
22:20:31.0183 1380 Processor architecture: Intel x64
22:20:31.0183 1380 Number of processors: 2
22:20:31.0183 1380 Page size: 0x1000
22:20:31.0183 1380 Boot type: Safe boot
22:20:31.0199 1380 ============================================================
22:21:46.0485 1380 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:21:46.0500 1380 ============================================================
22:21:46.0500 1380 \Device\Harddisk0\DR0:
22:21:46.0500 1380 MBR partitions:
22:21:46.0500 1380 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x23FF2800
22:21:46.0500 1380 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23FF3000, BlocksNum 0x143A000
22:21:46.0500 1380 ============================================================
22:21:46.0532 1380 C: <-> \Device\Harddisk0\DR0\Partition0
22:21:46.0703 1380 D: <-> \Device\Harddisk0\DR0\Partition1
22:21:46.0703 1380 ============================================================
22:21:46.0703 1380 Initialize success
22:21:46.0703 1380 ============================================================
22:22:19.0370 1612 ============================================================
22:22:19.0370 1612 Scan started
22:22:19.0370 1612 Mode: Manual;
22:22:19.0370 1612 ============================================================
22:22:21.0538 1612 Accelerometer (5c368f4b04ed2a923e6afca2d37baff5) C:\Windows\system32\DRIVERS\Accelerometer.sys
22:22:21.0538 1612 Accelerometer - ok
22:22:21.0585 1612 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
22:22:21.0585 1612 ACPI - ok
22:22:21.0632 1612 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
22:22:21.0632 1612 adfs - ok
22:22:21.0710 1612 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:22:21.0725 1612 AdobeARMservice - ok
22:22:21.0819 1612 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
22:22:21.0835 1612 adp94xx - ok
22:22:21.0928 1612 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
22:22:21.0975 1612 adpahci - ok
22:22:22.0022 1612 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
22:22:22.0100 1612 adpu160m - ok
22:22:22.0115 1612 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
22:22:22.0115 1612 adpu320 - ok
22:22:22.0147 1612 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
22:22:22.0147 1612 AeLookupSvc - ok
22:22:22.0240 1612 AESTAud (f8e805622f8a26b254155819a1f72e4b) C:\Windows\system32\drivers\AESTAu64.sys
22:22:22.0240 1612 AESTAud - ok
22:22:22.0474 1612 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Program Files\IDT\WDM\AESTSr64.exe
22:22:22.0474 1612 AESTFilters - ok
22:22:22.0521 1612 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
22:22:22.0537 1612 AFD - ok
22:22:22.0568 1612 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
22:22:22.0568 1612 agp440 - ok
22:22:22.0583 1612 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
22:22:22.0583 1612 aic78xx - ok
22:22:22.0615 1612 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
22:22:22.0615 1612 ALG - ok
22:22:22.0630 1612 aliide (e0ca5bb8e6c79533dc6b1da7361a201e) C:\Windows\system32\drivers\aliide.sys
22:22:22.0630 1612 aliide - ok
22:22:22.0755 1612 ALSysIO - ok
22:22:22.0786 1612 amdide (7034f8d1b9703d711d3f92c95deb377d) C:\Windows\system32\drivers\amdide.sys
22:22:22.0786 1612 amdide - ok
22:22:22.0817 1612 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
22:22:22.0817 1612 AmdK8 - ok
22:22:22.0833 1612 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
22:22:22.0833 1612 Appinfo - ok
22:22:22.0927 1612 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:22:22.0927 1612 Apple Mobile Device - ok
22:22:22.0942 1612 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
22:22:22.0942 1612 arc - ok
22:22:22.0973 1612 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
22:22:22.0973 1612 arcsas - ok
22:22:22.0989 1612 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
22:22:22.0989 1612 AsyncMac - ok
22:22:23.0005 1612 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys
22:22:23.0005 1612 atapi - ok
22:22:23.0083 1612 Ati External Event Utility (e9198bcaba0f7062d857b1afd2212023) C:\Windows\system32\Ati2evxx.exe
22:22:23.0114 1612 Ati External Event Utility - ok
22:22:23.0348 1612 atikmdag (fe9940c40472db2041bbb15b54298408) C:\Windows\system32\DRIVERS\atikmdag.sys
22:22:23.0457 1612 atikmdag - ok
22:22:23.0582 1612 atksgt (54494b93bb5ad74c807100144ec30d64) C:\Windows\system32\DRIVERS\atksgt.sys
22:22:23.0582 1612 atksgt - ok
22:22:23.0629 1612 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:22:23.0660 1612 AudioEndpointBuilder - ok
22:22:23.0660 1612 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:22:23.0660 1612 AudioSrv - ok
22:22:23.0707 1612 AVerAF15 (dfec23c325ad5e4e66365f8c44fad7ba) C:\Windows\system32\Drivers\AVerAF15.sys
22:22:23.0753 1612 AVerAF15 - ok
22:22:23.0878 1612 BCM43XX (f509c4fd2eba6af4fd8794aeb6f3efb7) C:\Windows\system32\DRIVERS\bcmwl664.sys
22:22:23.0909 1612 BCM43XX - ok
22:22:24.0003 1612 Beep - ok
22:22:24.0112 1612 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
22:22:24.0112 1612 blbdrive - ok
22:22:24.0175 1612 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
22:22:24.0206 1612 Bonjour Service - ok
22:22:24.0221 1612 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
22:22:24.0221 1612 bowser - ok
22:22:24.0253 1612 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
22:22:24.0253 1612 BrFiltLo - ok
22:22:24.0268 1612 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
22:22:24.0268 1612 BrFiltUp - ok
22:22:24.0299 1612 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
22:22:24.0299 1612 Browser - ok
22:22:24.0315 1612 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
22:22:24.0315 1612 Brserid - ok
22:22:24.0331 1612 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
22:22:24.0331 1612 BrSerWdm - ok
22:22:24.0346 1612 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
22:22:24.0362 1612 BrUsbMdm - ok
22:22:24.0362 1612 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
22:22:24.0377 1612 BrUsbSer - ok
22:22:24.0393 1612 BthEnum (09f926a0d9c0bafd8417a4307d2ed13c) C:\Windows\system32\DRIVERS\BthEnum.sys
22:22:24.0393 1612 BthEnum - ok
22:22:24.0409 1612 BTHMODEM (72f70a38bb15252eb7c4da7ba3bd4ed1) C:\Windows\system32\DRIVERS\bthmodem.sys
22:22:24.0424 1612 BTHMODEM - ok
22:22:24.0440 1612 BthPan (befc5311736b475ac5b60c14ff7c775a) C:\Windows\system32\DRIVERS\bthpan.sys
22:22:24.0440 1612 BthPan - ok
22:22:24.0502 1612 BTHPORT (e1466882252ff51edde48c3f7eda2591) C:\Windows\system32\Drivers\BTHport.sys
22:22:24.0518 1612 BTHPORT - ok
22:22:24.0549 1612 BthServ (22e65ffd640f16968f855f5b3528d366) C:\Windows\System32\bthserv.dll
22:22:24.0565 1612 BthServ - ok
22:22:24.0580 1612 BTHUSB (970192cded77a128e7e30722e5ee6b9c) C:\Windows\system32\Drivers\BTHUSB.sys
22:22:24.0580 1612 BTHUSB - ok
22:22:24.0596 1612 btwaudio (0c5d9c8b412be72c4535ec67a24c01db) C:\Windows\system32\drivers\btwaudio.sys
22:22:24.0611 1612 btwaudio - ok
22:22:24.0611 1612 btwavdt (df18e4291c43bed05b1d0c2d5c0e96d6) C:\Windows\system32\drivers\btwavdt.sys
22:22:24.0611 1612 btwavdt - ok
22:22:24.0643 1612 btwrchid (637a44c54520a9958e2e5e3ee9e26c4a) C:\Windows\system32\DRIVERS\btwrchid.sys
22:22:24.0643 1612 btwrchid - ok
22:22:24.0689 1612 catchme - ok
22:22:24.0736 1612 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
22:22:24.0752 1612 cdfs - ok
22:22:24.0799 1612 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
22:22:24.0799 1612 cdrom - ok
22:22:24.0908 1612 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
22:22:24.0923 1612 CertPropSvc - ok
22:22:24.0970 1612 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys
22:22:24.0970 1612 circlass - ok
22:22:25.0033 1612 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
22:22:25.0048 1612 CLFS - ok
22:22:25.0111 1612 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:22:25.0126 1612 clr_optimization_v2.0.50727_32 - ok
22:22:25.0157 1612 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:22:25.0157 1612 clr_optimization_v2.0.50727_64 - ok
22:22:25.0220 1612 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:22:25.0267 1612 clr_optimization_v4.0.30319_32 - ok
22:22:25.0298 1612 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:22:25.0298 1612 clr_optimization_v4.0.30319_64 - ok
22:22:25.0329 1612 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
22:22:25.0329 1612 CmBatt - ok
22:22:25.0345 1612 cmdide (8c6aa24c1d7273a02284588426ab8ce3) C:\Windows\system32\drivers\cmdide.sys
22:22:25.0345 1612 cmdide - ok
22:22:25.0438 1612 Com4QLBEx (12e94e225bd7b05a2bccd5c0b841e921) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
22:22:25.0438 1612 Com4QLBEx - ok
22:22:25.0454 1612 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
22:22:25.0454 1612 Compbatt - ok
22:22:25.0454 1612 COMSysApp - ok
22:22:25.0469 1612 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
22:22:25.0469 1612 crcdisk - ok
22:22:25.0501 1612 CryptSvc (18918613e63f387cde4d95ca7d49dcf7) C:\Windows\system32\cryptsvc.dll
22:22:25.0516 1612 CryptSvc - ok
22:22:25.0563 1612 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
22:22:25.0703 1612 DcomLaunch - ok
22:22:25.0719 1612 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
22:22:25.0719 1612 DfsC - ok
22:22:25.0922 1612 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
22:22:26.0000 1612 DFSR - ok
22:22:26.0171 1612 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
22:22:26.0171 1612 Dhcp - ok
22:22:26.0203 1612 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
22:22:26.0203 1612 disk - ok
22:22:26.0234 1612 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
22:22:26.0249 1612 Dnscache - ok
22:22:26.0265 1612 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
22:22:26.0281 1612 dot3svc - ok
22:22:26.0327 1612 DpHost (087236f57b946424c263fa7b5bc28499) C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
22:22:26.0327 1612 DpHost - ok
22:22:26.0359 1612 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
22:22:26.0359 1612 DPS - ok
22:22:26.0390 1612 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
22:22:26.0390 1612 drmkaud - ok
22:22:26.0468 1612 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
22:22:26.0483 1612 DXGKrnl - ok
22:22:26.0530 1612 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
22:22:26.0530 1612 E1G60 - ok
22:22:26.0577 1612 eamonm (13533557d01b88c83110d5cf749f14d7) C:\Windows\system32\DRIVERS\eamonm.sys
22:22:26.0593 1612 eamonm - ok
22:22:26.0639 1612 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
22:22:26.0639 1612 EapHost - ok
22:22:26.0671 1612 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
22:22:26.0671 1612 Ecache - ok
22:22:26.0795 1612 ehdrv (e097728129e7b79bf1089d7aef42332b) C:\Windows\system32\DRIVERS\ehdrv.sys
22:22:26.0795 1612 ehdrv - ok
22:22:26.0873 1612 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
22:22:26.0920 1612 ehRecvr - ok
22:22:26.0936 1612 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
22:22:26.0936 1612 ehSched - ok
22:22:27.0014 1612 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
22:22:27.0014 1612 ehstart - ok
22:22:27.0201 1612 ekrn (c7bb95cf9631aa401e4aded1648f6af7) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
22:22:27.0232 1612 ekrn - ok
22:22:27.0341 1612 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
22:22:27.0357 1612 elxstor - ok
22:22:27.0404 1612 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
22:22:27.0419 1612 EMDMgmt - ok
22:22:27.0466 1612 enecir (f218a3a27ed6592c0e22ec3595554447) C:\Windows\system32\DRIVERS\enecir.sys
22:22:27.0466 1612 enecir - ok
22:22:27.0513 1612 epfw (198c6fbc30bbd9632ea051203dccf204) C:\Windows\system32\DRIVERS\epfw.sys
22:22:27.0529 1612 epfw - ok
22:22:27.0560 1612 EpfwLWF (56de463f517710a8aa44eef82c35b3c9) C:\Windows\system32\DRIVERS\EpfwLWF.sys
22:22:27.0560 1612 EpfwLWF - ok
22:22:27.0575 1612 epfwwfp (710b0442bb2f99278d7b8e02a8849c11) C:\Windows\system32\DRIVERS\epfwwfp.sys
22:22:27.0575 1612 epfwwfp - ok
22:22:27.0607 1612 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
22:22:27.0607 1612 ErrDev - ok
22:22:27.0731 1612 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
22:22:27.0731 1612 EventSystem - ok
22:22:27.0794 1612 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
22:22:27.0809 1612 exfat - ok
22:22:27.0809 1612 ezSharedSvc - ok
22:22:27.0856 1612 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
22:22:27.0856 1612 fastfat - ok
22:22:27.0872 1612 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
22:22:27.0872 1612 fdc - ok
22:22:27.0887 1612 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
22:22:27.0887 1612 fdPHost - ok
22:22:27.0919 1612 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
22:22:27.0919 1612 FDResPub - ok
22:22:27.0934 1612 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
22:22:27.0934 1612 FileInfo - ok
22:22:27.0965 1612 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
22:22:27.0965 1612 Filetrace - ok
22:22:27.0981 1612 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:22:27.0981 1612 flpydisk - ok
22:22:28.0012 1612 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
22:22:28.0012 1612 FltMgr - ok
22:22:28.0090 1612 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
22:22:28.0121 1612 FontCache - ok
22:22:28.0215 1612 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:22:28.0215 1612 FontCache3.0.0.0 - ok
22:22:28.0262 1612 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
22:22:28.0277 1612 fssfltr - ok
22:22:28.0402 1612 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
22:22:28.0449 1612 fsssvc - ok
22:22:28.0543 1612 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
22:22:28.0543 1612 Fs_Rec - ok
22:22:28.0574 1612 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
22:22:28.0574 1612 gagp30kx - ok
22:22:28.0621 1612 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:22:28.0621 1612 GEARAspiWDM - ok
22:22:28.0683 1612 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
22:22:28.0699 1612 gpsvc - ok
22:22:28.0730 1612 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
22:22:28.0730 1612 hamachi - ok
22:22:28.0808 1612 HdAudAddService (68e732382b32417ff61fd663259b4b09) C:\Windows\system32\drivers\HdAudio.sys
22:22:28.0839 1612 HdAudAddService - ok
22:22:28.0917 1612 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:22:28.0948 1612 HDAudBus - ok
22:22:28.0964 1612 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
22:22:28.0964 1612 HidBth - ok
22:22:29.0011 1612 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys
22:22:29.0011 1612 HidIr - ok
22:22:29.0104 1612 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\System32\hidserv.dll
22:22:29.0104 1612 hidserv - ok
22:22:29.0120 1612 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
22:22:29.0135 1612 HidUsb - ok
22:22:29.0151 1612 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
22:22:29.0151 1612 hkmsvc - ok
22:22:29.0229 1612 HP Health Check Service (a19b0bb5a7eb6df2dd4a0711d36955ee) c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
22:22:29.0229 1612 HP Health Check Service - ok
22:22:29.0245 1612 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
22:22:29.0245 1612 HpCISSs - ok
22:22:29.0276 1612 hpdskflt (4e0bec0f78096ffd6d3314b497fc49d3) C:\Windows\system32\DRIVERS\hpdskflt.sys
22:22:29.0276 1612 hpdskflt - ok
22:22:29.0307 1612 HpqKbFiltr (0ecc54fd34d6a089c300846b011e81d6) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
22:22:29.0307 1612 HpqKbFiltr - ok
22:22:29.0323 1612 hpqwmiex (188ff0adf66768d53ad94f43972e1e9a) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
22:22:29.0338 1612 hpqwmiex - ok
22:22:29.0354 1612 hpsrv (fc7c13b5a9e9be23b7ae72bbc7fdb278) C:\Windows\system32\Hpservice.exe
22:22:29.0354 1612 hpsrv - ok
22:22:29.0416 1612 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
22:22:29.0432 1612 HTTP - ok
22:22:29.0463 1612 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
22:22:29.0463 1612 i2omp - ok
22:22:29.0479 1612 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
22:22:29.0494 1612 i8042prt - ok
22:22:29.0510 1612 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
22:22:29.0525 1612 iaStorV - ok
22:22:29.0619 1612 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:22:29.0619 1612 IDriverT - ok
22:22:29.0728 1612 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:22:29.0744 1612 idsvc - ok
22:22:29.0775 1612 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
22:22:29.0775 1612 iirsp - ok
22:22:29.0822 1612 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
22:22:29.0853 1612 IKEEXT - ok
22:22:29.0869 1612 intelide (475490caf376e55e6e8b37bbdfeb2e81) C:\Windows\system32\drivers\intelide.sys
22:22:29.0869 1612 intelide - ok
22:22:29.0900 1612 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
22:22:29.0900 1612 intelppm - ok
22:22:29.0931 1612 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
22:22:29.0947 1612 IPBusEnum - ok
22:22:29.0962 1612 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:22:29.0962 1612 IpFilterDriver - ok
22:22:29.0978 1612 IpInIp - ok
22:22:29.0993 1612 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
22:22:29.0993 1612 IPMIDRV - ok
22:22:30.0025 1612 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
22:22:30.0025 1612 IPNAT - ok
22:22:30.0103 1612 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
22:22:30.0134 1612 iPod Service - ok
22:22:30.0149 1612 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
22:22:30.0149 1612 IRENUM - ok
22:22:30.0165 1612 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
22:22:30.0165 1612 isapnp - ok
22:22:30.0196 1612 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
22:22:30.0212 1612 iScsiPrt - ok
22:22:30.0243 1612 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
22:22:30.0259 1612 iteatapi - ok
22:22:30.0274 1612 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
22:22:30.0274 1612 iteraid - ok
22:22:30.0337 1612 JMCR (54df9eafb54a98e1a2ac3db69c16cf05) C:\Windows\system32\DRIVERS\jmcr.sys
22:22:30.0337 1612 JMCR - ok
22:22:30.0446 1612 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
22:22:30.0446 1612 kbdclass - ok
22:22:30.0477 1612 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
22:22:30.0477 1612 kbdhid - ok
22:22:30.0539 1612 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:22:30.0539 1612 KeyIso - ok
22:22:30.0571 1612 KSecDD (2758d174604f597bbc8a217ff667913d) C:\Windows\system32\Drivers\ksecdd.sys
22:22:30.0602 1612 KSecDD - ok
22:22:30.0617 1612 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
22:22:30.0617 1612 ksthunk - ok
22:22:30.0664 1612 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
22:22:30.0680 1612 KtmRm - ok
22:22:30.0711 1612 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\System32\srvsvc.dll
22:22:30.0742 1612 LanmanServer - ok
22:22:30.0773 1612 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
22:22:30.0773 1612 LanmanWorkstation - ok
22:22:30.0836 1612 LightScribeService (abf90fc5a127f481219b873c1b8dfc1c) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
22:22:30.0898 1612 LightScribeService - ok
22:22:30.0961 1612 lirsgt (8e4ca9afd55ef6b509c80a8715abf8c6) C:\Windows\system32\DRIVERS\lirsgt.sys
22:22:30.0961 1612 lirsgt - ok
22:22:31.0007 1612 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
22:22:31.0007 1612 lltdio - ok
22:22:31.0117 1612 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
22:22:31.0117 1612 lltdsvc - ok
22:22:31.0148 1612 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
22:22:31.0148 1612 lmhosts - ok
22:22:31.0179 1612 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
22:22:31.0179 1612 LSI_FC - ok
22:22:31.0195 1612 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
22:22:31.0195 1612 LSI_SAS - ok
22:22:31.0226 1612 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
22:22:31.0226 1612 LSI_SCSI - ok
22:22:31.0242 1612 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
22:22:31.0242 1612 luafv - ok
22:22:31.0257 1612 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
22:22:31.0257 1612 Mcx2Svc - ok
22:22:31.0288 1612 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
22:22:31.0288 1612 megasas - ok
22:22:31.0335 1612 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
22:22:31.0366 1612 MegaSR - ok
22:22:31.0491 1612 Microsoft SharePoint Workspace Audit Service - ok
22:22:31.0522 1612 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
22:22:31.0522 1612 MMCSS - ok
22:22:31.0538 1612 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
22:22:31.0538 1612 Modem - ok
22:22:31.0554 1612 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
22:22:31.0554 1612 monitor - ok
22:22:31.0569 1612 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
22:22:31.0569 1612 mouclass - ok
22:22:31.0600 1612 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
22:22:31.0600 1612 mouhid - ok
22:22:31.0616 1612 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
22:22:31.0616 1612 MountMgr - ok
22:22:31.0647 1612 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
22:22:31.0663 1612 mpio - ok
22:22:31.0694 1612 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
22:22:31.0694 1612 mpsdrv - ok
22:22:31.0710 1612 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
22:22:31.0710 1612 Mraid35x - ok
22:22:31.0756 1612 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
22:22:31.0756 1612 MRxDAV - ok
22:22:31.0819 1612 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:22:31.0834 1612 mrxsmb - ok
22:22:31.0866 1612 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:22:31.0912 1612 mrxsmb10 - ok
22:22:31.0944 1612 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:22:31.0944 1612 mrxsmb20 - ok
22:22:31.0975 1612 msahci (aa459f2ab3ab603c357ff117cae3d818) C:\Windows\system32\drivers\msahci.sys
22:22:31.0975 1612 msahci - ok
22:22:31.0990 1612 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
22:22:32.0006 1612 msdsm - ok
22:22:32.0037 1612 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
22:22:32.0037 1612 MSDTC - ok
22:22:32.0115 1612 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
22:22:32.0131 1612 Msfs - ok
22:22:32.0131 1612 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
22:22:32.0131 1612 msisadrv - ok
22:22:32.0162 1612 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
22:22:32.0162 1612 MSiSCSI - ok

[pompeus50]

22:22:32.0162 1612 msiserver - ok
22:22:32.0193 1612 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
22:22:32.0193 1612 MSKSSRV - ok
22:22:32.0209 1612 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
22:22:32.0209 1612 MSPCLOCK - ok
22:22:32.0224 1612 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
22:22:32.0224 1612 MSPQM - ok
22:22:32.0271 1612 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
22:22:32.0287 1612 MsRPC - ok
22:22:32.0318 1612 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
22:22:32.0318 1612 mssmbios - ok
22:22:32.0334 1612 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
22:22:32.0334 1612 MSTEE - ok
22:22:32.0349 1612 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
22:22:32.0365 1612 Mup - ok
22:22:32.0396 1612 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
22:22:32.0427 1612 napagent - ok
22:22:32.0458 1612 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
22:22:32.0474 1612 NativeWifiP - ok
22:22:32.0521 1612 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
22:22:32.0552 1612 NDIS - ok
22:22:32.0568 1612 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
22:22:32.0630 1612 NdisTapi - ok
22:22:32.0646 1612 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
22:22:32.0646 1612 Ndisuio - ok
22:22:32.0661 1612 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
22:22:32.0661 1612 NdisWan - ok
22:22:32.0692 1612 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
22:22:32.0692 1612 NDProxy - ok
22:22:32.0708 1612 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
22:22:32.0708 1612 NetBIOS - ok
22:22:32.0739 1612 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
22:22:32.0739 1612 netbt - ok
22:22:32.0848 1612 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:22:32.0848 1612 Netlogon - ok
22:22:32.0911 1612 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
22:22:32.0926 1612 Netman - ok
22:22:32.0958 1612 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
22:22:32.0973 1612 netprofm - ok
22:22:33.0036 1612 NetTcpPortSharing (74751dda198165947fd7454d83f49825) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:22:33.0036 1612 NetTcpPortSharing - ok
22:22:33.0223 1612 NETw3v64 (c86984aee87900c1eeb6942ede3bf4b6) C:\Windows\system32\DRIVERS\NETw3v64.sys
22:22:33.0316 1612 NETw3v64 - ok
22:22:33.0441 1612 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
22:22:33.0441 1612 nfrd960 - ok
22:22:33.0472 1612 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
22:22:33.0472 1612 NlaSvc - ok
22:22:33.0504 1612 nmwcd (88f2f2cb9faee2e14bccf384f4c88061) C:\Windows\system32\drivers\ccdcmbx64.sys
22:22:33.0504 1612 nmwcd - ok
22:22:33.0519 1612 nmwcdc (31c1fac4ae14fb2f8771c59ba3f90bad) C:\Windows\system32\drivers\ccdcmbox64.sys
22:22:33.0519 1612 nmwcdc - ok
22:22:33.0550 1612 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
22:22:33.0550 1612 Npfs - ok
22:22:33.0566 1612 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
22:22:33.0566 1612 nsi - ok
22:22:33.0582 1612 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
22:22:33.0582 1612 nsiproxy - ok
22:22:33.0675 1612 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
22:22:33.0722 1612 Ntfs - ok
22:22:33.0816 1612 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
22:22:33.0816 1612 Null - ok
22:22:33.0847 1612 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
22:22:33.0847 1612 nvraid - ok
22:22:33.0862 1612 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
22:22:33.0862 1612 nvstor - ok
22:22:33.0894 1612 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
22:22:33.0894 1612 nv_agp - ok
22:22:33.0894 1612 NwlnkFlt - ok
22:22:33.0909 1612 NwlnkFwd - ok
22:22:33.0956 1612 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
22:22:33.0956 1612 ohci1394 - ok
22:22:34.0096 1612 ose64 (4965b005492cba7719e82b71e3245495) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:22:34.0096 1612 ose64 - ok
22:22:34.0408 1612 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:22:34.0549 1612 osppsvc - ok
22:22:34.0689 1612 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:22:34.0705 1612 p2pimsvc - ok
22:22:34.0720 1612 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:22:34.0720 1612 p2psvc - ok
22:22:34.0767 1612 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
22:22:34.0767 1612 Parport - ok
22:22:34.0798 1612 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
22:22:34.0798 1612 partmgr - ok
22:22:34.0830 1612 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
22:22:34.0830 1612 PcaSvc - ok
22:22:34.0861 1612 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
22:22:34.0861 1612 pccsmcfd - ok
22:22:34.0892 1612 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
22:22:34.0923 1612 pci - ok
22:22:34.0939 1612 pciide (15e5c3f89a3452efbda3b39816dbc4ee) C:\Windows\system32\drivers\pciide.sys
22:22:34.0939 1612 pciide - ok
22:22:34.0970 1612 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
22:22:34.0986 1612 pcmcia - ok
22:22:35.0001 1612 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
22:22:35.0017 1612 pcouffin - ok
22:22:35.0064 1612 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
22:22:35.0079 1612 PEAUTH - ok
22:22:35.0204 1612 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
22:22:35.0376 1612 PerfHost - ok
22:22:35.0454 1612 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
22:22:35.0485 1612 pla - ok
22:22:35.0547 1612 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
22:22:35.0563 1612 PlugPlay - ok
22:22:35.0625 1612 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:22:35.0625 1612 PNRPAutoReg - ok
22:22:35.0625 1612 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:22:35.0641 1612 PNRPsvc - ok
22:22:35.0688 1612 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
22:22:35.0703 1612 PolicyAgent - ok
22:22:35.0766 1612 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
22:22:35.0766 1612 PptpMiniport - ok
22:22:35.0797 1612 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
22:22:35.0797 1612 Processor - ok
22:22:35.0844 1612 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
22:22:35.0844 1612 ProfSvc - ok
22:22:35.0890 1612 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:22:35.0890 1612 ProtectedStorage - ok
22:22:35.0937 1612 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
22:22:35.0953 1612 PSched - ok
22:22:36.0031 1612 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
22:22:36.0062 1612 ql2300 - ok
22:22:36.0078 1612 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
22:22:36.0093 1612 ql40xx - ok
22:22:36.0140 1612 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
22:22:36.0140 1612 QWAVE - ok
22:22:36.0156 1612 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
22:22:36.0156 1612 QWAVEdrv - ok
22:22:36.0234 1612 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
22:22:36.0249 1612 RasAcd - ok
22:22:36.0265 1612 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
22:22:36.0265 1612 RasAuto - ok
22:22:36.0296 1612 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:22:36.0312 1612 Rasl2tp - ok
22:22:36.0327 1612 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
22:22:36.0343 1612 RasMan - ok
22:22:36.0374 1612 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
22:22:36.0374 1612 RasPppoe - ok
22:22:36.0405 1612 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
22:22:36.0405 1612 RasSstp - ok
22:22:36.0436 1612 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
22:22:36.0436 1612 rdbss - ok
22:22:36.0452 1612 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:22:36.0452 1612 RDPCDD - ok
22:22:36.0514 1612 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
22:22:36.0514 1612 rdpdr - ok
22:22:36.0577 1612 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
22:22:36.0577 1612 RDPENCDD - ok
22:22:36.0639 1612 RDPWD (5c141fc457f1ac833664789235aca673) C:\Windows\system32\drivers\RDPWD.sys
22:22:36.0655 1612 RDPWD - ok
22:22:36.0748 1612 Recovery Service for Windows (bc0a4d47472b042537f4e57b950415fa) C:\Program Files (x86)\SMINST\BLService.exe
22:22:36.0764 1612 Recovery Service for Windows - ok
22:22:36.0858 1612 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
22:22:36.0858 1612 RemoteAccess - ok
22:22:36.0889 1612 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
22:22:36.0889 1612 RemoteRegistry - ok
22:22:36.0920 1612 RFCOMM (cd71e053d7260e4102d99a28f9196070) C:\Windows\system32\DRIVERS\rfcomm.sys
22:22:36.0951 1612 RFCOMM - ok
22:22:37.0029 1612 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
22:22:37.0029 1612 RichVideo - ok
22:22:37.0060 1612 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
22:22:37.0060 1612 RpcLocator - ok
22:22:37.0123 1612 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
22:22:37.0123 1612 RpcSs - ok
22:22:37.0154 1612 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
22:22:37.0154 1612 rspndr - ok
22:22:37.0185 1612 RTL8169 (8b91737da75add21cb1554b38089196a) C:\Windows\system32\DRIVERS\Rtlh64.sys
22:22:37.0201 1612 RTL8169 - ok
22:22:37.0248 1612 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:22:37.0248 1612 SamSs - ok
22:22:37.0294 1612 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
22:22:37.0294 1612 sbp2port - ok
22:22:37.0310 1612 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
22:22:37.0326 1612 SCardSvr - ok
22:22:37.0388 1612 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
22:22:37.0419 1612 Schedule - ok
22:22:37.0528 1612 scmsupp - ok
22:22:37.0606 1612 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
22:22:37.0606 1612 SCPolicySvc - ok
22:22:37.0638 1612 sdbus (b42ee50f7d24f837f925332eb349eca5) C:\Windows\system32\DRIVERS\sdbus.sys
22:22:37.0638 1612 sdbus - ok
22:22:37.0747 1612 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
22:22:37.0747 1612 SDRSVC - ok
22:22:37.0856 1612 SeaPort (16a252022535b680046f6e34e136d378) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
22:22:37.0872 1612 SeaPort - ok
22:22:37.0903 1612 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:22:37.0903 1612 secdrv - ok
22:22:37.0934 1612 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
22:22:37.0950 1612 seclogon - ok
22:22:37.0981 1612 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\system32\sens.dll
22:22:37.0981 1612 SENS - ok
22:22:37.0996 1612 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
22:22:37.0996 1612 Serenum - ok
22:22:38.0012 1612 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
22:22:38.0012 1612 Serial - ok
22:22:38.0043 1612 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
22:22:38.0106 1612 sermouse - ok
22:22:38.0184 1612 ServiceLayer (8c1f87f5fdd92229d1754b98f073913f) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
22:22:38.0215 1612 ServiceLayer - ok
22:22:38.0246 1612 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
22:22:38.0246 1612 SessionEnv - ok
22:22:38.0277 1612 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
22:22:38.0277 1612 sffdisk - ok
22:22:38.0293 1612 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
22:22:38.0293 1612 sffp_mmc - ok
22:22:38.0308 1612 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
22:22:38.0308 1612 sffp_sd - ok
22:22:38.0324 1612 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
22:22:38.0324 1612 sfloppy - ok
22:22:38.0449 1612 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
22:22:38.0449 1612 ShellHWDetection - ok
22:22:38.0464 1612 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
22:22:38.0464 1612 SiSRaid2 - ok
22:22:38.0480 1612 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
22:22:38.0496 1612 SiSRaid4 - ok
22:22:38.0636 1612 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
22:22:38.0698 1612 slsvc - ok
22:22:38.0870 1612 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
22:22:38.0870 1612 SLUINotify - ok
22:22:38.0901 1612 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
22:22:38.0901 1612 Smb - ok
22:22:38.0932 1612 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
22:22:38.0948 1612 SNMPTRAP - ok
22:22:38.0964 1612 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
22:22:38.0964 1612 spldr - ok
22:22:39.0026 1612 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
22:22:39.0026 1612 Spooler - ok
22:22:39.0104 1612 sptd (88e5162e58c8919cc873f5d8946197cf) C:\Windows\system32\Drivers\sptd.sys
22:22:39.0104 1612 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 88e5162e58c8919cc873f5d8946197cf
22:22:39.0104 1612 sptd ( LockedFile.Multi.Generic ) - warning
22:22:39.0104 1612 sptd - detected LockedFile.Multi.Generic (1)
22:22:39.0151 1612 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
22:22:39.0166 1612 srv - ok
22:22:39.0198 1612 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
22:22:39.0291 1612 srv2 - ok
22:22:39.0322 1612 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
22:22:39.0322 1612 srvnet - ok
22:22:39.0416 1612 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
22:22:39.0416 1612 SSDPSRV - ok
22:22:39.0447 1612 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
22:22:39.0447 1612 SstpSvc - ok
22:22:39.0650 1612 STacSV (e82994866a370a480607637f28b82835) C:\Program Files\IDT\WDM\STacSV64.exe
22:22:39.0666 1612 STacSV - ok
22:22:39.0790 1612 StarWindServiceAE (b1691af4a072cb674d600db16dd7308e) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
22:22:39.0806 1612 StarWindServiceAE - ok
22:22:39.0884 1612 STHDA (3ad0ed8b19cd76d2254de5fb298e3c26) C:\Windows\system32\DRIVERS\stwrt64.sys
22:22:39.0884 1612 STHDA - ok
22:22:39.0946 1612 StillCam (14b4db4381e4a55f570d8bb699b791d6) C:\Windows\system32\DRIVERS\serscan.sys
22:22:39.0946 1612 StillCam - ok
22:22:40.0024 1612 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
22:22:40.0040 1612 stisvc - ok
22:22:40.0071 1612 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
22:22:40.0071 1612 swenum - ok
22:22:40.0180 1612 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:22:40.0196 1612 SwitchBoard - ok
22:22:40.0243 1612 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
22:22:40.0258 1612 swprv - ok
22:22:40.0274 1612 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
22:22:40.0274 1612 Symc8xx - ok
22:22:40.0305 1612 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
22:22:40.0305 1612 Sym_hi - ok
22:22:40.0321 1612 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
22:22:40.0336 1612 Sym_u3 - ok
22:22:40.0414 1612 SynTP (ac3cc98b1bdb6540021d3ffb105ac2b9) C:\Windows\system32\DRIVERS\SynTP.sys
22:22:40.0414 1612 SynTP - ok
22:22:40.0492 1612 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
22:22:40.0508 1612 SysMain - ok
22:22:40.0617 1612 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
22:22:40.0617 1612 TabletInputService - ok
22:22:40.0664 1612 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
22:22:40.0680 1612 TapiSrv - ok
22:22:40.0695 1612 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
22:22:40.0695 1612 TBS - ok
22:22:40.0820 1612 Tcpip (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\drivers\tcpip.sys
22:22:40.0851 1612 Tcpip - ok
22:22:41.0038 1612 Tcpip6 (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\DRIVERS\tcpip.sys
22:22:41.0038 1612 Tcpip6 - ok
22:22:41.0132 1612 tcpipreg (c7e72a4071ee0200e3c075dacfb2b334) C:\Windows\system32\drivers\tcpipreg.sys
22:22:41.0132 1612 tcpipreg - ok
22:22:41.0163 1612 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
22:22:41.0163 1612 TDPIPE - ok
22:22:41.0179 1612 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
22:22:41.0179 1612 TDTCP - ok
22:22:41.0226 1612 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
22:22:41.0226 1612 tdx - ok
22:22:41.0257 1612 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
22:22:41.0257 1612 TermDD - ok
22:22:41.0304 1612 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
22:22:41.0319 1612 TermService - ok
22:22:41.0366 1612 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
22:22:41.0366 1612 Themes - ok
22:22:41.0382 1612 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
22:22:41.0382 1612 THREADORDER - ok
22:22:41.0413 1612 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
22:22:41.0413 1612 TrkWks - ok
22:22:41.0444 1612 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
22:22:41.0444 1612 TrustedInstaller - ok
22:22:41.0491 1612 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:22:41.0491 1612 tssecsrv - ok
22:22:41.0506 1612 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
22:22:41.0506 1612 tunmp - ok
22:22:41.0538 1612 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
22:22:41.0538 1612 tunnel - ok
22:22:41.0647 1612 TVCapSvc (1c31169dddc70c1605f703da701eaeea) C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
22:22:41.0662 1612 TVCapSvc - ok
22:22:41.0678 1612 TVSched (290b8c381dbc15d3dbcbd2bdb6b0ba12) C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
22:22:41.0678 1612 TVSched - ok
22:22:41.0725 1612 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
22:22:41.0725 1612 uagp35 - ok
22:22:41.0787 1612 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
22:22:41.0803 1612 udfs - ok
22:22:41.0818 1612 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
22:22:41.0818 1612 UI0Detect - ok
22:22:41.0865 1612 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
22:22:41.0865 1612 uliagpkx - ok
22:22:41.0928 1612 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
22:22:41.0928 1612 uliahci - ok
22:22:42.0021 1612 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
22:22:42.0037 1612 UlSata - ok
22:22:42.0068 1612 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
22:22:42.0068 1612 ulsata2 - ok
22:22:42.0084 1612 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
22:22:42.0084 1612 umbus - ok
22:22:42.0115 1612 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
22:22:42.0130 1612 upnphost - ok
22:22:42.0162 1612 upperdev (fbd861e69e1f583bec906fcd04e4f84e) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
22:22:42.0162 1612 upperdev - ok
22:22:42.0208 1612 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
22:22:42.0224 1612 USBAAPL64 - ok
22:22:42.0271 1612 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
22:22:42.0271 1612 usbccgp - ok
22:22:42.0302 1612 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
22:22:42.0302 1612 usbcir - ok
22:22:42.0318 1612 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
22:22:42.0318 1612 usbehci - ok
22:22:42.0364 1612 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
22:22:42.0364 1612 usbhub - ok
22:22:42.0380 1612 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
22:22:42.0380 1612 usbohci - ok
22:22:42.0396 1612 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys
22:22:42.0396 1612 usbprint - ok
22:22:42.0427 1612 usbser (f7386007fb19e7685fc7b298560aa81f) C:\Windows\system32\drivers\usbser.sys
22:22:42.0427 1612 usbser - ok
22:22:42.0458 1612 UsbserFilt (0fbb0080b287bbcbf5c7076e3d74a35c) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
22:22:42.0458 1612 UsbserFilt - ok
22:22:42.0489 1612 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:22:42.0489 1612 USBSTOR - ok
22:22:42.0505 1612 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
22:22:42.0505 1612 usbuhci - ok
22:22:42.0536 1612 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
22:22:42.0536 1612 usbvideo - ok
22:22:42.0567 1612 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
22:22:42.0567 1612 UxSms - ok
22:22:42.0614 1612 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
22:22:42.0630 1612 vds - ok
22:22:42.0692 1612 vfsFPService (4b6f9959f8df8fadc8170cd8a6bce5c2) C:\Windows\system32\vfsFPService.exe
22:22:42.0723 1612 vfsFPService - ok
22:22:42.0770 1612 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
22:22:42.0770 1612 vga - ok
22:22:42.0786 1612 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
22:22:42.0786 1612 VgaSave - ok
22:22:42.0801 1612 viaide (4f964e6828156f0ef3fa8d3a9a7895de) C:\Windows\system32\drivers\viaide.sys
22:22:42.0801 1612 viaide - ok
22:22:42.0832 1612 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
22:22:42.0832 1612 volmgr - ok
22:22:42.0879 1612 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
22:22:42.0895 1612 volmgrx - ok
22:22:42.0926 1612 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
22:22:42.0942 1612 volsnap - ok
22:22:42.0957 1612 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
22:22:42.0957 1612 vsmraid - ok
22:22:43.0051 1612 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
22:22:43.0113 1612 VSS - ok
22:22:43.0285 1612 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
22:22:43.0300 1612 W32Time - ok
22:22:43.0347 1612 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
22:22:43.0347 1612 WacomPen - ok
22:22:43.0394 1612 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
22:22:43.0394 1612 Wanarp - ok
22:22:43.0394 1612 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
22:22:43.0394 1612 Wanarpv6 - ok
22:22:43.0456 1612 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
22:22:43.0472 1612 wcncsvc - ok
22:22:43.0488 1612 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
22:22:43.0488 1612 WcsPlugInService - ok
22:22:43.0503 1612 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
22:22:43.0503 1612 Wd - ok
22:22:43.0566 1612 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
22:22:43.0612 1612 Wdf01000 - ok
22:22:43.0628 1612 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
22:22:43.0628 1612 WdiServiceHost - ok
22:22:43.0628 1612 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
22:22:43.0628 1612 WdiSystemHost - ok
22:22:43.0675 1612 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
22:22:43.0675 1612 WebClient - ok
22:22:43.0722 1612 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
22:22:43.0722 1612 Wecsvc - ok
22:22:43.0753 1612 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
22:22:43.0768 1612 wercplsupport - ok
22:22:43.0784 1612 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
22:22:43.0800 1612 WerSvc - ok
22:22:43.0800 1612 WinHttpAutoProxySvc - ok
22:22:43.0862 1612 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
22:22:43.0878 1612 Winmgmt - ok
22:22:43.0987 1612 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
22:22:44.0034 1612 WinRM - ok
22:22:44.0221 1612 WinUSB (7f2f9e48566b2087f2aaad258cb2a8d4) C:\Windows\system32\DRIVERS\WinUSB.sys
22:22:44.0221 1612 WinUSB - ok
22:22:44.0283 1612 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
22:22:44.0299 1612 Wlansvc - ok
22:22:44.0455 1612 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:22:44.0502 1612 wlidsvc - ok
22:22:44.0611 1612 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:22:44.0611 1612 WmiAcpi - ok
22:22:44.0673 1612 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
22:22:44.0673 1612 wmiApSrv - ok
22:22:44.0720 1612 WMPNetworkSvc - ok
22:22:44.0751 1612 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
22:22:44.0767 1612 WPCSvc - ok
22:22:44.0798 1612 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
22:22:44.0798 1612 WPDBusEnum - ok
22:22:44.0829 1612 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
22:22:44.0829 1612 WpdUsb - ok
22:22:44.0954 1612 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:22:44.0985 1612 WPFFontCache_v0400 - ok
22:22:45.0016 1612 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
22:22:45.0016 1612 ws2ifsl - ok
22:22:45.0048 1612 WSDPrintDevice (de5f5212ab34221dd1618b5fefe8db6c) C:\Windows\system32\DRIVERS\WSDPrint.sys
22:22:45.0048 1612 WSDPrintDevice - ok
22:22:45.0048 1612 WSearch - ok
22:22:45.0094 1612 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
22:22:45.0094 1612 WudfPf - ok
22:22:45.0126 1612 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:22:45.0141 1612 WUDFRd - ok
22:22:45.0157 1612 wudfsvc (3dcc7bf5afa921b479e622bd999121f3) C:\Windows\System32\WUDFSvc.dll
22:22:45.0172 1612 wudfsvc - ok
22:22:45.0204 1612 yukonx64 (07f7285220307aafb755d890295f0f9a) C:\Windows\system32\DRIVERS\yk60x64.sys
22:22:45.0204 1612 yukonx64 - ok
22:22:45.0297 1612 {55662437-DA8C-40c0-AADA-2C816A897A49} (1cacfef9e5dd866c5b79a135ee729e18) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
22:22:45.0297 1612 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
22:22:45.0328 1612 MBR (0x1B8) (588ae8f0c685c02ba11f30d9cd7e61a0) \Device\Harddisk0\DR0
22:22:45.0500 1612 \Device\Harddisk0\DR0 - ok
22:22:45.0500 1612 Boot (0x1200) (0dbb67326a319635211b003b2c8af8c1) \Device\Harddisk0\DR0\Partition0
22:22:45.0500 1612 \Device\Harddisk0\DR0\Partition0 - ok
22:22:45.0531 1612 Boot (0x1200) (b3722b9783c028d6bf347f8864ceeb92) \Device\Harddisk0\DR0\Partition1
22:22:45.0531 1612 \Device\Harddisk0\DR0\Partition1 - ok
22:22:45.0531 1612 ============================================================
22:22:45.0531 1612 Scan finished
22:22:45.0531 1612 ============================================================
22:22:45.0531 1604 Detected object count: 1
22:22:45.0531 1604 Actual detected object count: 1

[jaro3]

Ještě Combofix.

[pompeus50]

Jak jsem už psal ComboFix se mi jen rozbalí,ale log neudělá.
Jinak vapadá to že havěť je pryč

[jaro3]

To byh neřekl , něco tam možná ještě zůstalo.
V nouz. režimu nejde?
Máš ho na ploše?

[pompeus50]

Ano je na ploše. Zkoušel jsem jak v nouzovém tak i normálním. A nic