Modrá smrt při zapnutí více záložek prohlížeče Vyřešeno

[jaro3]

Bylo to určitě **tepip.sys a ne tcpip.sys ??

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Reklama]

[MiliNess]

To jaro3: byl to tcpip.sys (v minidumpu)

[jaro3]

aha , tak to asi není nákaza..

[Scanner]

Jestli myslíš jak jsem chtěl zastavit ESET, tak jsem ty soubory snažil ukončit ale napsalo to že nejsem oprávněný at se obrátím na majitele systému. Nevíte nějaký jiný způsob jak to svinstvo dostat pryč. Skoro pokaždé když jsem měl problémy s PC tak za to mohl právě ESET.

[Scanner]

11:11:25.0551 3604 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
11:11:25.0848 3604 ============================================================
11:11:25.0848 3604 Current date / time: 2012/10/26 11:11:25.0848
11:11:25.0848 3604 SystemInfo:
11:11:25.0848 3604
11:11:25.0848 3604 OS Version: 6.1.7601 ServicePack: 1.0
11:11:25.0848 3604 Product type: Workstation
11:11:25.0848 3604 ComputerName: ZKUŘKA-PC
11:11:25.0848 3604 UserName: Zkuřka
11:11:25.0848 3604 Windows directory: C:\Windows
11:11:25.0848 3604 System windows directory: C:\Windows
11:11:25.0848 3604 Running under WOW64
11:11:25.0848 3604 Processor architecture: Intel x64
11:11:25.0848 3604 Number of processors: 4
11:11:25.0848 3604 Page size: 0x1000
11:11:25.0848 3604 Boot type: Normal boot
11:11:25.0848 3604 ============================================================
11:11:26.0721 3604 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
11:11:36.0783 3604 Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x17A85, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
11:11:36.0814 3604 ============================================================
11:11:36.0814 3604 \Device\Harddisk0\DR0:
11:11:36.0892 3604 MBR partitions:
11:11:36.0892 3604 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:11:36.0892 3604 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC800000
11:11:36.0892 3604 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC832800, BlocksNum 0x67ED3800
11:11:36.0892 3604 \Device\Harddisk1\DR1:
11:11:36.0892 3604 MBR partitions:
11:11:36.0892 3604 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
11:11:36.0892 3604 ============================================================
11:11:37.0017 3604 C: <-> \Device\Harddisk0\DR0\Partition2
11:11:37.0048 3604 D: <-> \Device\Harddisk1\DR1\Partition1
11:11:37.0189 3604 E: <-> \Device\Harddisk0\DR0\Partition3
11:11:37.0189 3604 ============================================================
11:11:37.0189 3604 Initialize success
11:11:37.0189 3604 ============================================================
11:11:51.0539 3592 ============================================================
11:11:51.0539 3592 Scan started
11:11:51.0539 3592 Mode: Manual;
11:11:51.0539 3592 ============================================================
11:11:52.0163 3592 ================ Scan system memory ========================
11:11:52.0163 3592 System memory - ok
11:11:52.0163 3592 ================ Scan services =============================
11:11:52.0273 3592 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:11:52.0273 3592 1394ohci - ok
11:11:52.0335 3592 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:11:52.0335 3592 ACPI - ok
11:11:52.0366 3592 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:11:52.0382 3592 AcpiPmi - ok
11:11:52.0507 3592 [ 047BD1EB681453A7FE492A71802AC9F3 ] AdobeActiveFileMonitor10.0 E:\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
11:11:52.0507 3592 AdobeActiveFileMonitor10.0 - ok
11:11:52.0585 3592 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:11:52.0585 3592 AdobeARMservice - ok
11:11:52.0678 3592 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:11:52.0678 3592 AdobeFlashPlayerUpdateSvc - ok
11:11:52.0725 3592 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:11:52.0725 3592 adp94xx - ok
11:11:52.0741 3592 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:11:52.0756 3592 adpahci - ok
11:11:52.0772 3592 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:11:52.0772 3592 adpu320 - ok
11:11:52.0881 3592 [ E410DA575FF48D976B41670C6D262A82 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
11:11:52.0881 3592 AdvancedSystemCareService5 - ok
11:11:52.0897 3592 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:11:52.0912 3592 AeLookupSvc - ok
11:11:52.0943 3592 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:11:52.0943 3592 AFD - ok
11:11:52.0975 3592 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:11:52.0975 3592 agp440 - ok
11:11:52.0990 3592 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:11:52.0990 3592 ALG - ok
11:11:53.0006 3592 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:11:53.0006 3592 aliide - ok
11:11:53.0037 3592 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:11:53.0037 3592 amdide - ok
11:11:53.0068 3592 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:11:53.0068 3592 AmdK8 - ok
11:11:53.0084 3592 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:11:53.0084 3592 AmdPPM - ok
11:11:53.0099 3592 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:11:53.0099 3592 amdsata - ok
11:11:53.0115 3592 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:11:53.0115 3592 amdsbs - ok
11:11:53.0131 3592 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:11:53.0131 3592 amdxata - ok
11:11:53.0162 3592 [ E71711D37C48AC40FD3E2866A5ABBA51 ] anvsnddrv C:\Windows\system32\drivers\anvsnddrv.sys
11:11:53.0162 3592 anvsnddrv - ok
11:11:53.0177 3592 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:11:53.0177 3592 AppID - ok
11:11:53.0209 3592 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:11:53.0209 3592 AppIDSvc - ok
11:11:53.0240 3592 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:11:53.0240 3592 Appinfo - ok
11:11:53.0255 3592 [ 6BE11AD81D4527D299F0CB5F3731AABC ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
11:11:53.0255 3592 AppleCharger - ok
11:11:53.0271 3592 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
11:11:53.0271 3592 AppleChargerSrv - ok
11:11:53.0287 3592 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:11:53.0302 3592 AppMgmt - ok
11:11:53.0318 3592 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
11:11:53.0318 3592 arc - ok
11:11:53.0333 3592 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:11:53.0333 3592 arcsas - ok
11:11:53.0411 3592 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:11:53.0411 3592 aspnet_state - ok
11:11:53.0427 3592 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:11:53.0427 3592 AsyncMac - ok
11:11:53.0458 3592 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:11:53.0458 3592 atapi - ok
11:11:53.0489 3592 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:11:53.0505 3592 AudioEndpointBuilder - ok
11:11:53.0505 3592 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:11:53.0521 3592 AudioSrv - ok
11:11:53.0536 3592 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:11:53.0536 3592 AxInstSV - ok
11:11:53.0567 3592 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:11:53.0567 3592 b06bdrv - ok
11:11:53.0583 3592 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:11:53.0583 3592 b57nd60a - ok
11:11:53.0614 3592 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:11:53.0614 3592 BDESVC - ok
11:11:53.0630 3592 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:11:53.0630 3592 Beep - ok
11:11:53.0645 3592 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:11:53.0645 3592 BFE - ok
11:11:53.0661 3592 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
11:11:53.0677 3592 BITS - ok
11:11:53.0708 3592 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:11:53.0708 3592 blbdrive - ok
11:11:53.0723 3592 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:11:53.0723 3592 bowser - ok
11:11:53.0739 3592 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:11:53.0739 3592 BrFiltLo - ok
11:11:53.0739 3592 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:11:53.0755 3592 BrFiltUp - ok
11:11:53.0755 3592 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:11:53.0755 3592 BridgeMP - ok
11:11:53.0786 3592 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:11:53.0786 3592 Browser - ok
11:11:53.0801 3592 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:11:53.0817 3592 Brserid - ok
11:11:53.0833 3592 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:11:53.0833 3592 BrSerWdm - ok
11:11:53.0833 3592 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:11:53.0833 3592 BrUsbMdm - ok
11:11:53.0848 3592 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:11:53.0848 3592 BrUsbSer - ok
11:11:53.0864 3592 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:11:53.0864 3592 BTHMODEM - ok
11:11:53.0895 3592 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:11:53.0895 3592 bthserv - ok
11:11:53.0895 3592 catchme - ok
11:11:53.0911 3592 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:11:53.0911 3592 cdfs - ok
11:11:53.0942 3592 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:11:53.0942 3592 cdrom - ok
11:11:53.0957 3592 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:11:53.0973 3592 CertPropSvc - ok
11:11:54.0004 3592 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:11:54.0004 3592 circlass - ok
11:11:54.0035 3592 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:11:54.0035 3592 CLFS - ok
11:11:54.0113 3592 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:11:54.0113 3592 clr_optimization_v2.0.50727_32 - ok
11:11:54.0145 3592 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:11:54.0145 3592 clr_optimization_v2.0.50727_64 - ok
11:11:54.0191 3592 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:11:54.0207 3592 clr_optimization_v4.0.30319_32 - ok
11:11:54.0207 3592 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:11:54.0207 3592 clr_optimization_v4.0.30319_64 - ok
11:11:54.0223 3592 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:11:54.0223 3592 CmBatt - ok
11:11:54.0254 3592 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:11:54.0254 3592 cmdide - ok
11:11:54.0269 3592 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
11:11:54.0285 3592 CNG - ok
11:11:54.0301 3592 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:11:54.0316 3592 Compbatt - ok
11:11:54.0332 3592 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:11:54.0332 3592 CompositeBus - ok
11:11:54.0347 3592 COMSysApp - ok
11:11:54.0363 3592 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:11:54.0363 3592 crcdisk - ok
11:11:54.0394 3592 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:11:54.0394 3592 CryptSvc - ok
11:11:54.0425 3592 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
11:11:54.0441 3592 CSC - ok
11:11:54.0472 3592 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
11:11:54.0472 3592 CscService - ok
11:11:54.0503 3592 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:11:54.0503 3592 DcomLaunch - ok
11:11:54.0535 3592 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:11:54.0535 3592 defragsvc - ok
11:11:54.0566 3592 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:11:54.0566 3592 DfsC - ok
11:11:54.0597 3592 [ 113212D25D0C9BB8901A9833774DA97F ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
11:11:54.0613 3592 dg_ssudbus - ok
11:11:54.0628 3592 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:11:54.0644 3592 Dhcp - ok
11:11:54.0659 3592 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:11:54.0659 3592 discache - ok
11:11:54.0675 3592 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:11:54.0675 3592 Disk - ok
11:11:54.0691 3592 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:11:54.0691 3592 Dnscache - ok
11:11:54.0722 3592 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:11:54.0722 3592 dot3svc - ok
11:11:54.0737 3592 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:11:54.0737 3592 DPS - ok
11:11:54.0753 3592 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:11:54.0753 3592 drmkaud - ok
11:11:54.0784 3592 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:11:54.0784 3592 dtsoftbus01 - ok
11:11:54.0831 3592 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:11:54.0831 3592 DXGKrnl - ok
11:11:54.0831 3592 EagleX64 - ok
11:11:54.0847 3592 [ D00EAE9C735A7DEE8049E50D73D25434 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
11:11:54.0847 3592 eamonm - ok
11:11:54.0862 3592 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:11:54.0862 3592 EapHost - ok
11:11:54.0940 3592 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:11:54.0971 3592 ebdrv - ok
11:11:54.0987 3592 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:11:54.0987 3592 EFS - ok
11:11:55.0018 3592 [ E5EDDE3C8158DD0CBC5812F201DCDED0 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
11:11:55.0018 3592 ehdrv - ok
11:11:55.0081 3592 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:11:55.0081 3592 ehRecvr - ok
11:11:55.0112 3592 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:11:55.0112 3592 ehSched - ok
11:11:55.0174 3592 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
11:11:55.0174 3592 ekrn - ok
11:11:55.0205 3592 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:11:55.0205 3592 elxstor - ok
11:11:55.0221 3592 [ 587F0F4145A1536A6E37EFD769B7665F ] epfw C:\Windows\system32\DRIVERS\epfw.sys
11:11:55.0221 3592 epfw - ok
11:11:55.0237 3592 [ D2F812358EE8EE23CBB5C4DAFFB5B819 ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
11:11:55.0237 3592 EpfwLWF - ok
11:11:55.0252 3592 [ 34BF55D69AB74D14C7E7A17259CB7DF8 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
11:11:55.0252 3592 epfwwfp - ok
11:11:55.0283 3592 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:11:55.0283 3592 ErrDev - ok
11:11:55.0315 3592 [ 84486624268E078255BC7AA47F0960BC ] etdrv C:\Windows\etdrv.sys
11:11:55.0315 3592 etdrv - ok
11:11:55.0346 3592 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:11:55.0346 3592 EventSystem - ok
11:11:55.0361 3592 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:11:55.0361 3592 exfat - ok
11:11:55.0377 3592 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:11:55.0377 3592 fastfat - ok
11:11:55.0408 3592 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:11:55.0424 3592 Fax - ok
11:11:55.0439 3592 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:11:55.0439 3592 fdc - ok
11:11:55.0455 3592 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:11:55.0455 3592 fdPHost - ok
11:11:55.0471 3592 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:11:55.0471 3592 FDResPub - ok
11:11:55.0486 3592 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:11:55.0486 3592 FileInfo - ok
11:11:55.0502 3592 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:11:55.0517 3592 Filetrace - ok
11:11:55.0533 3592 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:11:55.0533 3592 flpydisk - ok
11:11:55.0549 3592 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:11:55.0549 3592 FltMgr - ok
11:11:55.0580 3592 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
11:11:55.0595 3592 FontCache - ok
11:11:55.0627 3592 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:11:55.0627 3592 FontCache3.0.0.0 - ok
11:11:55.0642 3592 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:11:55.0642 3592 FsDepends - ok
11:11:55.0673 3592 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:11:55.0673 3592 Fs_Rec - ok
11:11:55.0689 3592 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:11:55.0689 3592 fvevol - ok
11:11:55.0720 3592 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:11:55.0720 3592 gagp30kx - ok
11:11:55.0751 3592 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
11:11:55.0751 3592 gdrv - ok
11:11:55.0783 3592 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:11:55.0798 3592 gpsvc - ok
11:11:55.0829 3592 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
11:11:55.0829 3592 gusvc - ok
11:11:55.0861 3592 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
11:11:55.0861 3592 GVTDrv64 - ok
11:11:55.0876 3592 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:11:55.0876 3592 hcw85cir - ok
11:11:55.0892 3592 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:11:55.0907 3592 HdAudAddService - ok
11:11:55.0923 3592 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:11:55.0923 3592 HDAudBus - ok
11:11:55.0923 3592 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:11:55.0939 3592 HidBatt - ok
11:11:55.0954 3592 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:11:55.0970 3592 HidBth - ok
11:11:55.0985 3592 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:11:55.0985 3592 HidIr - ok
11:11:56.0032 3592 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
11:11:56.0032 3592 hidserv - ok
11:11:56.0063 3592 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:11:56.0063 3592 HidUsb - ok
11:11:56.0079 3592 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:11:56.0079 3592 hkmsvc - ok
11:11:56.0110 3592 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:11:56.0110 3592 HomeGroupListener - ok
11:11:56.0141 3592 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:11:56.0141 3592 HomeGroupProvider - ok
11:11:56.0173 3592 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:11:56.0173 3592 HpSAMD - ok
11:11:56.0188 3592 [ 4E9CAE3200A46135DE01CE22BAF832BE ] HPSIService C:\Windows\system32\HPSIsvc.exe
11:11:56.0188 3592 HPSIService - ok
11:11:56.0219 3592 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:11:56.0219 3592 HTTP - ok
11:11:56.0251 3592 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:11:56.0251 3592 hwpolicy - ok
11:11:56.0266 3592 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:11:56.0266 3592 i8042prt - ok
11:11:56.0282 3592 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:11:56.0297 3592 iaStorV - ok
11:11:56.0329 3592 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:11:56.0329 3592 IDriverT - ok
11:11:56.0375 3592 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:11:56.0391 3592 idsvc - ok
11:11:56.0407 3592 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:11:56.0407 3592 iirsp - ok
11:11:56.0453 3592 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:11:56.0453 3592 IKEEXT - ok
11:11:56.0469 3592 IntcAzAudAddService - ok
11:11:56.0485 3592 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:11:56.0485 3592 intelide - ok
11:11:56.0500 3592 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:11:56.0500 3592 intelppm - ok
11:11:56.0531 3592 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:11:56.0531 3592 IPBusEnum - ok
11:11:56.0563 3592 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:11:56.0563 3592 IpFilterDriver - ok
11:11:56.0578 3592 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:11:56.0594 3592 iphlpsvc - ok
11:11:56.0594 3592 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:11:56.0594 3592 IPMIDRV - ok
11:11:56.0625 3592 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:11:56.0625 3592 IPNAT - ok
11:11:56.0641 3592 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:11:56.0641 3592 IRENUM - ok
11:11:56.0656 3592 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:11:56.0656 3592 isapnp - ok
11:11:56.0672 3592 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:11:56.0672 3592 iScsiPrt - ok
11:11:56.0703 3592 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:11:56.0703 3592 kbdclass - ok
11:11:56.0719 3592 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:11:56.0719 3592 kbdhid - ok
11:11:56.0734 3592 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:11:56.0734 3592 KeyIso - ok
11:11:56.0765 3592 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:11:56.0765 3592 KSecDD - ok
11:11:56.0781 3592 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:11:56.0781 3592 KSecPkg - ok
11:11:56.0812 3592 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:11:56.0812 3592 ksthunk - ok
11:11:56.0828 3592 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:11:56.0843 3592 KtmRm - ok
11:11:56.0875 3592 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:11:56.0875 3592 LanmanServer - ok
11:11:56.0890 3592 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:11:56.0906 3592 LanmanWorkstation - ok
11:11:56.0921 3592 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:11:56.0921 3592 lltdio - ok
11:11:56.0937 3592 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:11:56.0937 3592 lltdsvc - ok
11:11:56.0953 3592 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:11:56.0953 3592 lmhosts - ok
11:11:56.0999 3592 [ 0803906D607A9B83184447B75B60ECC2 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:11:56.0999 3592 LMS - ok

[Scanner]

11:11:57.0031 3592 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:11:57.0031 3592 LSI_FC - ok
11:11:57.0046 3592 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:11:57.0046 3592 LSI_SAS - ok
11:11:57.0062 3592 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:11:57.0062 3592 LSI_SAS2 - ok
11:11:57.0062 3592 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:11:57.0077 3592 LSI_SCSI - ok
11:11:57.0093 3592 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:11:57.0093 3592 luafv - ok
11:11:57.0109 3592 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:11:57.0109 3592 MBAMProtector - ok
11:11:57.0171 3592 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:11:57.0171 3592 MBAMScheduler - ok
11:11:57.0202 3592 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:11:57.0218 3592 MBAMService - ok
11:11:57.0233 3592 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:11:57.0233 3592 Mcx2Svc - ok
11:11:57.0265 3592 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:11:57.0265 3592 megasas - ok
11:11:57.0280 3592 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:11:57.0296 3592 MegaSR - ok
11:11:57.0327 3592 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
11:11:57.0327 3592 MEIx64 - ok
11:11:57.0343 3592 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:11:57.0343 3592 MMCSS - ok
11:11:57.0358 3592 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:11:57.0358 3592 Modem - ok
11:11:57.0374 3592 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:11:57.0374 3592 monitor - ok
11:11:57.0405 3592 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:11:57.0405 3592 mouclass - ok
11:11:57.0421 3592 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:11:57.0421 3592 mouhid - ok
11:11:57.0436 3592 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:11:57.0436 3592 mountmgr - ok
11:11:57.0452 3592 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:11:57.0467 3592 mpio - ok
11:11:57.0467 3592 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:11:57.0467 3592 mpsdrv - ok
11:11:57.0514 3592 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:11:57.0545 3592 MpsSvc - ok
11:11:57.0577 3592 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:11:57.0577 3592 MRxDAV - ok
11:11:57.0608 3592 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:11:57.0608 3592 mrxsmb - ok
11:11:57.0623 3592 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:11:57.0623 3592 mrxsmb10 - ok
11:11:57.0639 3592 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:11:57.0639 3592 mrxsmb20 - ok
11:11:57.0670 3592 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:11:57.0670 3592 msahci - ok
11:11:57.0701 3592 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:11:57.0701 3592 msdsm - ok
11:11:57.0733 3592 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:11:57.0733 3592 MSDTC - ok
11:11:57.0764 3592 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:11:57.0764 3592 Msfs - ok
11:11:57.0779 3592 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:11:57.0779 3592 mshidkmdf - ok
11:11:57.0795 3592 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:11:57.0795 3592 msisadrv - ok
11:11:57.0826 3592 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:11:57.0826 3592 MSiSCSI - ok
11:11:57.0826 3592 msiserver - ok
11:11:57.0842 3592 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:11:57.0842 3592 MSKSSRV - ok
11:11:57.0857 3592 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:11:57.0857 3592 MSPCLOCK - ok
11:11:57.0873 3592 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:11:57.0873 3592 MSPQM - ok
11:11:57.0904 3592 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:11:57.0904 3592 MsRPC - ok
11:11:57.0935 3592 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:11:57.0935 3592 mssmbios - ok
11:11:57.0951 3592 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:11:57.0951 3592 MSTEE - ok
11:11:57.0967 3592 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:11:57.0967 3592 MTConfig - ok
11:11:57.0982 3592 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:11:57.0982 3592 Mup - ok
11:11:58.0029 3592 [ 09818558C2579B45D78AB18A759B0CA8 ] mvusbews C:\Windows\system32\Drivers\mvusbews.sys
11:11:58.0029 3592 mvusbews - ok
11:11:58.0060 3592 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:11:58.0060 3592 napagent - ok
11:11:58.0076 3592 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:11:58.0076 3592 NativeWifiP - ok
11:11:58.0107 3592 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:11:58.0123 3592 NDIS - ok
11:11:58.0138 3592 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:11:58.0138 3592 NdisCap - ok
11:11:58.0138 3592 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:11:58.0138 3592 NdisTapi - ok
11:11:58.0154 3592 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:11:58.0154 3592 Ndisuio - ok
11:11:58.0201 3592 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:11:58.0201 3592 NdisWan - ok
11:11:58.0216 3592 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:11:58.0216 3592 NDProxy - ok
11:11:58.0247 3592 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:11:58.0247 3592 NetBIOS - ok
11:11:58.0263 3592 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:11:58.0279 3592 NetBT - ok
11:11:58.0279 3592 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
11:11:58.0279 3592 Netlogon - ok
11:11:58.0310 3592 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:11:58.0325 3592 Netman - ok
11:11:58.0341 3592 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:11:58.0357 3592 NetMsmqActivator - ok
11:11:58.0357 3592 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:11:58.0357 3592 NetPipeActivator - ok
11:11:58.0372 3592 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:11:58.0388 3592 netprofm - ok
11:11:58.0388 3592 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:11:58.0388 3592 NetTcpActivator - ok
11:11:58.0388 3592 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:11:58.0388 3592 NetTcpPortSharing - ok
11:11:58.0403 3592 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:11:58.0403 3592 nfrd960 - ok
11:11:58.0419 3592 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:11:58.0435 3592 NlaSvc - ok
11:11:58.0435 3592 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:11:58.0435 3592 Npfs - ok
11:11:58.0450 3592 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:11:58.0450 3592 nsi - ok
11:11:58.0466 3592 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:11:58.0466 3592 nsiproxy - ok
11:11:58.0513 3592 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:11:58.0528 3592 Ntfs - ok
11:11:58.0544 3592 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:11:58.0544 3592 Null - ok
11:11:58.0575 3592 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
11:11:58.0575 3592 NVHDA - ok
11:11:58.0762 3592 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:11:58.0809 3592 nvlddmkm - ok
11:11:58.0825 3592 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:11:58.0825 3592 nvraid - ok
11:11:58.0840 3592 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:11:58.0840 3592 nvstor - ok
11:11:58.0871 3592 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
11:11:58.0887 3592 nvsvc - ok
11:11:58.0949 3592 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
11:11:58.0949 3592 nvUpdatusService - ok
11:11:58.0981 3592 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:11:58.0981 3592 nv_agp - ok
11:11:59.0012 3592 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:11:59.0012 3592 ohci1394 - ok
11:11:59.0027 3592 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:11:59.0027 3592 ose - ok
11:11:59.0137 3592 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:11:59.0168 3592 osppsvc - ok
11:11:59.0199 3592 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:11:59.0199 3592 p2pimsvc - ok
11:11:59.0215 3592 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:11:59.0215 3592 p2psvc - ok
11:11:59.0246 3592 [ 3A6DCEB1848470320E4A3C12D7A35B1C ] PAC207 C:\Windows\system32\DRIVERS\PFC027.SYS
11:11:59.0246 3592 PAC207 - ok
11:11:59.0261 3592 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:11:59.0261 3592 Parport - ok
11:11:59.0277 3592 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:11:59.0293 3592 partmgr - ok
11:11:59.0293 3592 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:11:59.0293 3592 PcaSvc - ok
11:11:59.0308 3592 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
11:11:59.0308 3592 pci - ok
11:11:59.0324 3592 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
11:11:59.0324 3592 pciide - ok
11:11:59.0339 3592 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:11:59.0339 3592 pcmcia - ok
11:11:59.0355 3592 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:11:59.0355 3592 pcw - ok
11:11:59.0371 3592 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:11:59.0386 3592 PEAUTH - ok
11:11:59.0417 3592 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:11:59.0433 3592 PeerDistSvc - ok
11:11:59.0511 3592 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:11:59.0511 3592 PerfHost - ok
11:11:59.0558 3592 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
11:11:59.0573 3592 pla - ok
11:11:59.0605 3592 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:11:59.0605 3592 PlugPlay - ok
11:11:59.0636 3592 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:11:59.0636 3592 PNRPAutoReg - ok
11:11:59.0651 3592 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:11:59.0651 3592 PNRPsvc - ok
11:11:59.0667 3592 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:11:59.0667 3592 PolicyAgent - ok
11:11:59.0698 3592 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:11:59.0698 3592 Power - ok
11:11:59.0729 3592 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:11:59.0729 3592 PptpMiniport - ok
11:11:59.0745 3592 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:11:59.0745 3592 Processor - ok
11:11:59.0745 3592 prodrv06 - ok
11:11:59.0776 3592 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
11:11:59.0776 3592 ProfSvc - ok
11:11:59.0776 3592 prohlp02 - ok
11:11:59.0776 3592 prosync1 - ok
11:11:59.0792 3592 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:11:59.0792 3592 ProtectedStorage - ok
11:11:59.0823 3592 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:11:59.0823 3592 Psched - ok
11:11:59.0854 3592 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
11:11:59.0854 3592 PxHlpa64 - ok
11:11:59.0885 3592 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:11:59.0901 3592 ql2300 - ok
11:11:59.0917 3592 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:11:59.0917 3592 ql40xx - ok
11:11:59.0948 3592 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:11:59.0948 3592 QWAVE - ok
11:11:59.0963 3592 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:11:59.0963 3592 QWAVEdrv - ok
11:11:59.0979 3592 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:11:59.0979 3592 RasAcd - ok
11:12:00.0010 3592 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:12:00.0010 3592 RasAgileVpn - ok
11:12:00.0026 3592 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:12:00.0026 3592 RasAuto - ok
11:12:00.0057 3592 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:12:00.0057 3592 Rasl2tp - ok
11:12:00.0073 3592 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
11:12:00.0073 3592 RasMan - ok
11:12:00.0088 3592 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:12:00.0088 3592 RasPppoe - ok
11:12:00.0119 3592 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:12:00.0119 3592 RasSstp - ok
11:12:00.0135 3592 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:12:00.0135 3592 rdbss - ok
11:12:00.0151 3592 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:12:00.0151 3592 rdpbus - ok
11:12:00.0166 3592 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:12:00.0166 3592 RDPCDD - ok
11:12:00.0197 3592 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:12:00.0197 3592 RDPDR - ok
11:12:00.0213 3592 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:12:00.0213 3592 RDPENCDD - ok
11:12:00.0229 3592 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:12:00.0229 3592 RDPREFMP - ok
11:12:00.0260 3592 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:12:00.0260 3592 RdpVideoMiniport - ok
11:12:00.0291 3592 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:12:00.0291 3592 RDPWD - ok
11:12:00.0307 3592 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:12:00.0307 3592 rdyboost - ok
11:12:00.0353 3592 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:12:00.0353 3592 RemoteAccess - ok
11:12:00.0385 3592 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:12:00.0385 3592 RemoteRegistry - ok
11:12:00.0400 3592 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:12:00.0400 3592 RpcEptMapper - ok
11:12:00.0400 3592 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:12:00.0416 3592 RpcLocator - ok
11:12:00.0447 3592 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
11:12:00.0447 3592 RpcSs - ok
11:12:00.0478 3592 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:12:00.0478 3592 rspndr - ok
11:12:00.0509 3592 [ 3713DACCA1025B05A6343104112708D9 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:12:00.0509 3592 RTL8167 - ok
11:12:00.0541 3592 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
11:12:00.0541 3592 s3cap - ok
11:12:00.0556 3592 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
11:12:00.0556 3592 SamSs - ok
11:12:00.0572 3592 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:12:00.0572 3592 sbp2port - ok
11:12:00.0587 3592 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:12:00.0603 3592 SCardSvr - ok
11:12:00.0634 3592 [ 8475E746EB72D04F1015E6F091F50E09 ] SCBackService C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe
11:12:00.0650 3592 SCBackService - ok
11:12:00.0665 3592 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:12:00.0665 3592 scfilter - ok
11:12:00.0712 3592 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
11:12:00.0728 3592 Schedule - ok
11:12:00.0743 3592 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:12:00.0743 3592 SCPolicySvc - ok
11:12:00.0775 3592 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:12:00.0775 3592 SDRSVC - ok
11:12:00.0806 3592 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:12:00.0806 3592 secdrv - ok
11:12:00.0806 3592 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
11:12:00.0821 3592 seclogon - ok
11:12:00.0837 3592 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
11:12:00.0837 3592 SENS - ok
11:12:00.0853 3592 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:12:00.0853 3592 SensrSvc - ok
11:12:00.0868 3592 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:12:00.0868 3592 Serenum - ok
11:12:00.0884 3592 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:12:00.0884 3592 Serial - ok
11:12:00.0899 3592 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:12:00.0899 3592 sermouse - ok
11:12:00.0931 3592 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:12:00.0931 3592 SessionEnv - ok
11:12:00.0962 3592 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:12:00.0962 3592 sffdisk - ok
11:12:00.0977 3592 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:12:00.0977 3592 sffp_mmc - ok
11:12:00.0993 3592 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:12:00.0993 3592 sffp_sd - ok
11:12:00.0993 3592 sfhlp01 - ok
11:12:01.0009 3592 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:12:01.0024 3592 sfloppy - ok
11:12:01.0071 3592 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:12:01.0071 3592 SharedAccess - ok
11:12:01.0102 3592 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:12:01.0118 3592 ShellHWDetection - ok
11:12:01.0118 3592 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:12:01.0133 3592 SiSRaid2 - ok
11:12:01.0133 3592 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:12:01.0149 3592 SiSRaid4 - ok
11:12:01.0165 3592 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:12:01.0165 3592 Smb - ok
11:12:01.0180 3592 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:12:01.0180 3592 SNMPTRAP - ok
11:12:01.0196 3592 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:12:01.0196 3592 spldr - ok
11:12:01.0243 3592 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
11:12:01.0243 3592 Spooler - ok
11:12:01.0321 3592 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
11:12:01.0352 3592 sppsvc - ok
11:12:01.0367 3592 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:12:01.0367 3592 sppuinotify - ok
11:12:01.0399 3592 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
11:12:01.0414 3592 srv - ok
11:12:01.0430 3592 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:12:01.0430 3592 srv2 - ok
11:12:01.0445 3592 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:12:01.0445 3592 srvnet - ok
11:12:01.0477 3592 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:12:01.0477 3592 SSDPSRV - ok
11:12:01.0492 3592 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:12:01.0492 3592 SstpSvc - ok
11:12:01.0523 3592 [ 78CD64791F8634CF7B582FD085E57C4B ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
11:12:01.0523 3592 ssudmdm - ok
11:12:01.0539 3592 [ 72B4D23F932FC4A92B404BF9FD1D2331 ] ssudobex C:\Windows\system32\DRIVERS\ssudobex.sys
11:12:01.0539 3592 ssudobex - ok
11:12:01.0586 3592 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:12:01.0586 3592 Stereo Service - ok
11:12:01.0617 3592 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:12:01.0617 3592 stexstor - ok
11:12:01.0648 3592 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
11:12:01.0648 3592 stisvc - ok
11:12:01.0679 3592 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
11:12:01.0679 3592 storflt - ok
11:12:01.0695 3592 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:12:01.0695 3592 storvsc - ok
11:12:01.0711 3592 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
11:12:01.0711 3592 swenum - ok
11:12:01.0742 3592 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:12:01.0757 3592 swprv - ok
11:12:01.0773 3592 Synth3dVsc - ok
11:12:01.0820 3592 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
11:12:01.0851 3592 SysMain - ok
11:12:01.0867 3592 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:12:01.0867 3592 TabletInputService - ok
11:12:01.0882 3592 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:12:01.0882 3592 TapiSrv - ok
11:12:01.0898 3592 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:12:01.0898 3592 TBS - ok
11:12:01.0960 3592 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:12:01.0976 3592 Tcpip - ok
11:12:01.0991 3592 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:12:02.0007 3592 TCPIP6 - ok
11:12:02.0023 3592 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:12:02.0023 3592 tcpipreg - ok
11:12:02.0054 3592 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:12:02.0054 3592 TDPIPE - ok
11:12:02.0085 3592 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:12:02.0085 3592 TDTCP - ok
11:12:02.0101 3592 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:12:02.0101 3592 tdx - ok
11:12:02.0116 3592 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:12:02.0116 3592 TermDD - ok
11:12:02.0163 3592 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
11:12:02.0163 3592 TermService - ok
11:12:02.0179 3592 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:12:02.0194 3592 Themes - ok
11:12:02.0210 3592 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:12:02.0210 3592 THREADORDER - ok
11:12:02.0225 3592 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:12:02.0225 3592 TrkWks - ok
11:12:02.0272 3592 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:12:02.0272 3592 TrustedInstaller - ok
11:12:02.0303 3592 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:12:02.0303 3592 tssecsrv - ok
11:12:02.0319 3592 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:12:02.0319 3592 TsUsbFlt - ok
11:12:02.0319 3592 tsusbhub - ok
11:12:02.0366 3592 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:12:02.0366 3592 tunnel - ok
11:12:02.0381 3592 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:12:02.0381 3592 uagp35 - ok
11:12:02.0397 3592 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:12:02.0413 3592 udfs - ok
11:12:02.0413 3592 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:12:02.0413 3592 UI0Detect - ok
11:12:02.0428 3592 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:12:02.0428 3592 uliagpkx - ok
11:12:02.0459 3592 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
11:12:02.0459 3592 umbus - ok
11:12:02.0475 3592 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:12:02.0475 3592 UmPass - ok
11:12:02.0491 3592 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
11:12:02.0491 3592 UmRdpService - ok
11:12:02.0584 3592 [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
11:12:02.0600 3592 UNS - ok
11:12:02.0631 3592 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:12:02.0631 3592 upnphost - ok
11:12:02.0662 3592 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:12:02.0662 3592 usbccgp - ok
11:12:02.0693 3592 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:12:02.0693 3592 usbcir - ok
11:12:02.0693 3592 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:12:02.0693 3592 usbehci - ok
11:12:02.0709 3592 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:12:02.0725 3592 usbhub - ok
11:12:02.0725 3592 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:12:02.0725 3592 usbohci - ok
11:12:02.0756 3592 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:12:02.0756 3592 usbprint - ok
11:12:02.0787 3592 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:12:02.0787 3592 usbscan - ok
11:12:02.0803 3592 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:12:02.0803 3592 USBSTOR - ok
11:12:02.0818 3592 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:12:02.0818 3592 usbuhci - ok
11:12:02.0834 3592 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:12:02.0834 3592 UxSms - ok
11:12:02.0849 3592 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
11:12:02.0849 3592 VaultSvc - ok
11:12:02.0865 3592 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:12:02.0865 3592 vdrvroot - ok
11:12:02.0927 3592 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
11:12:02.0927 3592 vds - ok
11:12:02.0959 3592 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:12:02.0990 3592 vga - ok
11:12:03.0021 3592 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:12:03.0021 3592 VgaSave - ok
11:12:03.0021 3592 VGPU - ok
11:12:03.0052 3592 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:12:03.0052 3592 vhdmp - ok
11:12:03.0068 3592 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:12:03.0068 3592 viaide - ok
11:12:03.0083 3592 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:12:03.0083 3592 vmbus - ok
11:12:03.0115 3592 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
11:12:03.0115 3592 VMBusHID - ok
11:12:03.0130 3592 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:12:03.0130 3592 volmgr - ok
11:12:03.0161 3592 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:12:03.0161 3592 volmgrx - ok
11:12:03.0193 3592 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:12:03.0208 3592 volsnap - ok
11:12:03.0224 3592 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:12:03.0224 3592 vsmraid - ok
11:12:03.0271 3592 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
11:12:03.0286 3592 VSS - ok
11:12:03.0302 3592 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:12:03.0302 3592 vwifibus - ok
11:12:03.0333 3592 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:12:03.0349 3592 W32Time - ok
11:12:03.0364 3592 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:12:03.0364 3592 WacomPen - ok
11:12:03.0395 3592 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:12:03.0395 3592 WANARP - ok
11:12:03.0395 3592 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:12:03.0395 3592 Wanarpv6 - ok
11:12:03.0442 3592 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:12:03.0458 3592 WatAdminSvc - ok
11:12:03.0489 3592 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
11:12:03.0520 3592 wbengine - ok
11:12:03.0520 3592 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:12:03.0536 3592 WbioSrvc - ok
11:12:03.0567 3592 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:12:03.0567 3592 wcncsvc - ok
11:12:03.0598 3592 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:12:03.0598 3592 WcsPlugInService - ok
11:12:03.0629 3592 [ E47E66538692B1CFD6CC8021546FCC83 ] WCUService_STC_FF C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
11:12:03.0645 3592 WCUService_STC_FF - ok
11:12:03.0676 3592 [ 147C60622CB53E901EFD8BB6D44A4C46 ] WCUService_STC_IE C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
11:12:03.0676 3592 WCUService_STC_IE - ok
11:12:03.0692 3592 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:12:03.0692 3592 Wd - ok
11:12:03.0723 3592 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:12:03.0723 3592 Wdf01000 - ok
11:12:03.0739 3592 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:12:03.0739 3592 WdiServiceHost - ok
11:12:03.0754 3592 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:12:03.0754 3592 WdiSystemHost - ok
11:12:03.0785 3592 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:12:03.0785 3592 WebClient - ok
11:12:03.0785 3592 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:12:03.0801 3592 Wecsvc - ok
11:12:03.0817 3592 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:12:03.0817 3592 wercplsupport - ok
11:12:03.0817 3592 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:12:03.0817 3592 WerSvc - ok
11:12:03.0832 3592 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:12:03.0832 3592 WfpLwf - ok
11:12:03.0848 3592 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:12:03.0848 3592 WIMMount - ok
11:12:03.0863 3592 WinDefend - ok
11:12:03.0879 3592 WinHttpAutoProxySvc - ok
11:12:03.0910 3592 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:12:03.0926 3592 Winmgmt - ok
11:12:04.0004 3592 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
11:12:04.0019 3592 WinRM - ok
11:12:04.0051 3592 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:12:04.0051 3592 WinUsb - ok
11:12:04.0097 3592 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:12:04.0097 3592 Wlansvc - ok
11:12:04.0191 3592 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:12:04.0222 3592 wlidsvc - ok
11:12:04.0238 3592 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:12:04.0238 3592 WmiAcpi - ok
11:12:04.0269 3592 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:12:04.0269 3592 wmiApSrv - ok
11:12:04.0300 3592 WMPNetworkSvc - ok
11:12:04.0316 3592 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:12:04.0316 3592 WPCSvc - ok
11:12:04.0347 3592 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:12:04.0347 3592 WPDBusEnum - ok
11:12:04.0378 3592 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:12:04.0378 3592 ws2ifsl - ok
11:12:04.0394 3592 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
11:12:04.0394 3592 wscsvc - ok
11:12:04.0394 3592 WSearch - ok
11:12:04.0456 3592 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:12:04.0487 3592 wuauserv - ok
11:12:04.0487 3592 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:12:04.0503 3592 WudfPf - ok
11:12:04.0534 3592 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:12:04.0534 3592 WUDFRd - ok
11:12:04.0550 3592 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:12:04.0550 3592 wudfsvc - ok
11:12:04.0565 3592 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
11:12:04.0581 3592 WwanSvc - ok
11:12:04.0581 3592 ================ Scan global ===============================
11:12:04.0628 3592 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:12:04.0659 3592 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
11:12:04.0659 3592 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
11:12:04.0690 3592 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:12:04.0721 3592 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:12:04.0721 3592 [Global] - ok
11:12:04.0721 3592 ================ Scan MBR ==================================
11:12:04.0737 3592 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:12:05.0018 3592 \Device\Harddisk0\DR0 - ok
11:12:05.0033 3592 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
11:12:05.0033 3592 \Device\Harddisk1\DR1 - ok
11:12:05.0033 3592 ================ Scan VBR ==================================
11:12:05.0033 3592 [ CF9625E951001332ABF56DBBB62D89C6 ] \Device\Harddisk0\DR0\Partition1
11:12:05.0033 3592 \Device\Harddisk0\DR0\Partition1 - ok
11:12:05.0033 3592 [ B496271A9A298FEABB8E421A6BF0C4D0 ] \Device\Harddisk0\DR0\Partition2
11:12:05.0049 3592 \Device\Harddisk0\DR0\Partition2 - ok
11:12:05.0065 3592 [ DE3DD553294920A7F5A9A411ADBA9BAD ] \Device\Harddisk0\DR0\Partition3
11:12:05.0065 3592 \Device\Harddisk0\DR0\Partition3 - ok
11:12:05.0065 3592 [ 7F9B532A8D326026771FB9ADCD2D6B83 ] \Device\Harddisk1\DR1\Partition1
11:12:05.0065 3592 \Device\Harddisk1\DR1\Partition1 - ok
11:12:05.0065 3592 ============================================================
11:12:05.0065 3592 Scan finished
11:12:05.0065 3592 ============================================================
11:12:05.0065 3556 Detected object count: 0
11:12:05.0065 3556 Actual detected object count: 0
11:12:17.0202 3492 Deinitialize success

[Scanner]

ComboFix 12-10-25.02 - Zkuřka 26.10.2012 11:16:38.11.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4079.2651 [GMT 2:00]
Spuštěný z: c:\users\Zku°ka\Desktop\ComboFix.exe
AV: ESET Smart Security 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Zkuřka\AppData\Roaming\Microsoft\twunk_16.exe
c:\windows\PFRO.log
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_nvsvc
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-26 do 2012-10-26 )))))))))))))))))))))))))))))))
.
.
2012-10-26 09:37 . 2012-10-26 09:37 -------- d-----w- c:\users\ZKUKA~2\AppData\Local\temp
2012-10-26 09:37 . 2012-10-26 09:37 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-10-26 09:37 . 2012-10-26 09:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-25 12:47 . 2012-10-25 12:48 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-10-24 12:55 . 2012-10-24 12:55 3584 ----a-w- c:\windows\system32\drivers\it-IT\tsusbflt.sys.mui
2012-10-24 12:55 . 2012-10-24 12:55 3584 ----a-w- c:\windows\system32\drivers\de-DE\tsusbflt.sys.mui
2012-10-24 12:55 . 2012-10-24 12:55 3072 ----a-w- c:\windows\system32\drivers\ja-JP\tsusbflt.sys.mui
2012-10-24 12:49 . 2012-10-24 12:49 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2012-10-24 12:49 . 2012-10-24 12:49 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2012-10-24 12:49 . 2012-10-24 12:49 340992 ----a-w- c:\windows\system32\schannel.dll
2012-10-24 12:49 . 2012-10-24 12:49 307200 ----a-w- c:\windows\system32\ncrypt.dll
2012-10-24 12:49 . 2012-10-24 12:49 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2012-10-24 12:49 . 2012-10-24 12:49 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2012-10-24 12:49 . 2012-10-24 12:49 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2012-10-24 12:49 . 2012-10-24 12:49 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-10-24 12:49 . 2012-10-24 12:49 1448448 ----a-w- c:\windows\system32\lsasrv.dll
2012-10-24 12:12 . 2012-10-24 12:12 -------- d-----w- c:\program files (x86)\IObit
2012-10-24 12:09 . 2012-10-26 07:36 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\dclogs
2012-10-24 12:08 . 2012-10-26 07:45 -------- d-----w- c:\users\Zkuřka\AppData\Local\Adobe
2012-10-24 11:55 . 2012-10-24 11:55 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\Apple Computer
2012-10-23 12:48 . 2012-06-13 05:00 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2012-10-23 12:48 . 2012-06-13 05:00 726160 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2012-10-23 05:45 . 2012-09-24 21:16 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-22 11:08 . 2012-10-22 11:08 -------- d-----w- c:\programdata\Trymedia
2012-10-20 08:39 . 2012-10-20 08:39 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2012-10-20 08:39 . 2012-10-20 08:39 -------- d-----w- c:\users\Zkuřka\SystemRequirementsLab
2012-10-10 19:23 . 2012-10-10 19:23 1867112 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-10-10 19:23 . 2012-10-10 19:23 18252136 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-10-10 19:23 . 2012-10-10 19:23 6127464 ----a-w- c:\windows\SysWow64\nvopencl.dll
2012-10-10 19:23 . 2012-10-10 19:23 2574696 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-10-10 19:23 . 2012-10-10 19:23 25256296 ----a-w- c:\windows\system32\nvcompiler.dll
2012-10-10 19:23 . 2012-10-10 19:23 7414632 ----a-w- c:\windows\system32\nvopencl.dll
2012-10-10 19:23 . 2012-10-10 19:23 9146728 ----a-w- c:\windows\system32\nvcuda.dll
2012-10-10 19:23 . 2012-10-10 19:23 7697768 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-10-10 19:23 . 2012-10-10 19:23 2218344 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-10-10 19:23 . 2012-10-10 19:23 12501352 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-10-10 19:22 . 2012-10-10 19:22 2428776 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-10-10 19:22 . 2012-10-10 19:22 26331496 ----a-w- c:\windows\system32\nvoglv64.dll
2012-10-10 19:22 . 2012-10-10 19:22 15309160 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-10-10 19:22 . 2012-10-10 19:22 2747240 ----a-w- c:\windows\system32\nvcuvid.dll
2012-10-10 19:22 . 2012-10-10 19:22 19906920 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-10-10 19:22 . 2012-10-10 19:22 13443944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-10-10 19:22 . 2012-10-10 19:22 17559912 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-10-10 14:43 . 2012-08-11 00:56 715776 ----a-w- c:\windows\system32\kerberos.dll
2012-10-10 14:43 . 2012-08-10 23:56 542208 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-10 12:27 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-10 12:27 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-10 12:27 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-10 12:27 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-10 12:27 . 2012-08-24 16:57 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-07 10:53 . 2012-10-07 10:53 -------- d-----w- c:\users\Zkuřka\AppData\Local\{F23D62F0-D787-4D6F-9083-7A6C21479AC4}
2012-10-05 12:03 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-10-02 11:15 . 2012-10-02 11:15 430952 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-09-27 14:37 . 2012-09-27 14:37 -------- d-----w- c:\programdata\Ahead
2012-09-26 16:19 . 2012-09-26 16:19 -------- d-----w- C:\temp
2012-09-26 16:18 . 2012-10-10 19:23 1482600 ----a-w- c:\windows\system32\nvdispgenco64.dll
2012-09-26 16:18 . 2012-07-03 15:25 31080 ----a-w- c:\windows\system32\nvhdap64.dll
2012-09-26 16:18 . 2012-07-03 15:25 189288 ----a-w- c:\windows\system32\drivers\nvhda64v.sys
2012-09-26 14:57 . 2012-09-26 15:02 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\Origin
2012-09-26 14:54 . 2012-09-29 20:40 -------- d-----w- c:\programdata\Origin
2012-09-26 14:39 . 2012-09-26 14:39 -------- d-sh--w- c:\programdata\DSS
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-24 12:49 . 2012-10-24 12:49 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2012-10-10 19:29 . 2012-01-17 18:59 65309168 ----a-w- c:\windows\system32\MRT.exe
2012-10-10 19:23 . 2012-02-09 20:43 2731880 ----a-w- c:\windows\system32\nvapi64.dll
2012-10-10 19:23 . 2012-02-09 20:43 14922600 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-10-10 19:22 . 2012-02-09 20:43 1760104 ----a-w- c:\windows\system32\nvdispco64.dll
2012-10-09 15:16 . 2012-04-12 07:45 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-09 15:16 . 2012-01-17 18:15 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-02 19:51 . 2010-10-08 08:04 3293544 ----a-w- c:\windows\system32\nvsvc64.dll
2012-10-02 19:51 . 2010-10-08 08:04 6200680 ----a-w- c:\windows\system32\nvcpl.dll
2012-10-02 19:50 . 2012-07-12 13:50 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-10-02 19:50 . 2010-10-08 08:04 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-10-02 19:50 . 2010-10-08 08:04 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2012-10-02 19:50 . 2010-10-08 08:04 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-09-29 17:54 . 2012-05-13 09:49 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-21 17:07 . 2012-09-21 17:07 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-09-21 17:07 . 2012-09-21 17:07 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-09-21 17:07 . 2012-09-21 17:07 816640 ----a-w- c:\windows\system32\jscript.dll
2012-09-21 17:07 . 2012-09-21 17:07 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-09-21 17:07 . 2012-09-21 17:07 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-09-21 17:07 . 2012-09-21 17:07 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-09-21 17:07 . 2012-09-21 17:07 248320 ----a-w- c:\windows\system32\ieui.dll
2012-09-21 17:07 . 2012-09-21 17:07 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-09-21 17:07 . 2012-09-21 17:07 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-09-21 17:07 . 2012-09-21 17:07 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-09-21 17:07 . 2012-09-21 17:07 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-09-21 17:07 . 2012-09-21 17:07 17810944 ----a-w- c:\windows\system32\mshtml.dll
2012-09-21 17:07 . 2012-09-21 17:07 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-09-21 17:07 . 2012-09-21 17:07 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-09-21 17:07 . 2012-09-21 17:07 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-09-21 17:07 . 2012-09-21 17:07 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-09-21 17:07 . 2012-09-21 17:07 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-09-21 17:07 . 2012-09-21 17:07 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-09-21 17:07 . 2012-09-21 17:07 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-09-21 17:07 . 2012-09-21 17:07 237056 ----a-w- c:\windows\system32\url.dll
2012-09-21 17:07 . 2012-09-21 17:07 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-09-21 17:07 . 2012-09-21 17:07 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-09-12 13:44 . 2012-05-04 08:39 821736 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-09-12 13:44 . 2012-02-05 10:14 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-03 11:26 . 2012-04-15 18:28 627600 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-30 13:18 . 2012-08-30 13:18 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-08-30 13:18 . 2012-08-30 13:18 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2012-08-22 18:12 . 2012-09-12 10:53 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-08-22 18:12 . 2012-09-12 10:53 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12 . 2012-09-12 10:53 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-08-22 18:12 . 2012-09-12 10:53 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-08-20 17:38 . 2012-10-10 12:26 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-08-15 16:52 . 2012-08-15 16:52 4472832 ----a-w- c:\windows\SysWow64\GPhotos.scr
2012-08-02 17:58 . 2012-09-12 10:53 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-08-02 16:57 . 2012-09-12 10:53 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="e:\daemon tools lite\DTLite.exe" [2012-04-17 3671872]
"Skype"="c:\program files (x86)\skype\phone\skype.exe" [2012-07-13 17418928]
"Facebook Update"="c:\users\zkuřka\appdata\local\facebook\update\facebookupdate.exe" [2012-07-11 138096]
"Advanced SystemCare 5"="c:\program files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" [2011-12-29 620376]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\malwarebytes' anti-malware\mbamgui.exe" [2012-09-29 766536]
"Adobe ARM"="c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe" [2012-07-27 919008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-09 250808]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-02-15 99384]
R3 EagleX64;EagleX64; [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys [2012-07-12 25640]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-07-12 30528]
R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys [2010-04-28 20480]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-10-24 19456]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-02-15 203320]
R3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudobex.sys [2012-02-15 203320]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-10-24 57856]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-17 1255736]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-06 283200]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;e:\adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-09-14 169624]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-29 497496]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2010-04-29 127800]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
S2 SCBackService;Splashtop Connect Service;c:\program files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-05 2655768]
S2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
S2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
S3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS [2006-12-05 572416]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-06-13 726160]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-12 15:16]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 190.52.56.251:8080
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - e:\micros~1\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-Twain Working Group - c:\users\zkuřka\appdata\roaming\microsoft\twunk_16.exe
Wow6432Node-HKLM-Run-ZyngaGamesAgent - c:\program files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
AddRemove-Mafia Game - c:\windows\system32\MafiaSetup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"=hex:51,66,7a,6c,4c,1d,38,12,df,c1,0b,
27,57,07,ba,54,e4,0e,43,d0,22,fb,89,5b
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{AA58ED58-01DD-4D91-8333-CF10577473F7}"=hex:51,66,7a,6c,4c,1d,38,12,36,ee,4b,
ae,ef,4f,ff,08,fc,25,8c,50,52,2a,37,e3
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:90,6b,b3,7a,dc,b1,cd,01
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"qgif4.dll"=multi:"2011-10-10T17:42\00gif\00\00"
"qico4.dll"=multi:"2011-10-10T17:42\00ico\00\00"
"qjpeg4.dll"=multi:"2011-10-10T17:42\00jpeg\00jpg\00\00"
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QTextCodecFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"2011-10-10T17:42\00GB18030\00GBK\00GB2312\00CP936\00MS936\00windows-936\00MIB: 114\00MIB: 113\00MIB: 2025\00\00"
"qkrcodecs4.dll"=multi:"2011-10-10T17:42\00EUC-KR\00cp949\00MIB: 38\00MIB: -949\00\00"
"qtwcodecs4.dll"=multi:"2011-10-10T17:42\00Big5\00Big5-HKSCS\00Big5-ETen\00CP950\00MIB: 2026\00MIB: 2101\00\00"
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpcodecs4.dll"=multi:"40602\000\00Windows msvc release full-config\002011-10-10T17:42\00\00"
"qjpcodecsd4.dll"=multi:"40703\001\00Windows msvc debug full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qkrcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qtwcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"Microsoft.VC80.CRT.manifest"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"msvcr80.dll"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"qgif4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qico4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpeg4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Celkový čas: 2012-10-26 11:46:16 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-26 09:46
.
Před spuštěním: Volných bajtů: 23 508 779 008
Po spuštění: Volných bajtů: 22 806 151 168
.
- - End Of File - - D2DDA079DC0D7EE023B46B230DA2F40F

[Scanner]

Jinak v HJT nic fixovat nemám?

[Orcus]

Odinstaluj:
Google Toolbar

v HJT Fixni:

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - E:\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

Pře argentinskou proxynu jedeš naschvál? Jestli ne, tak fixni taky:

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 190.52.56.251:8080

[Scanner]

Odinstalováno a fixnuty i proxy. Co mám dělat dál když ten ESET nejde prostě odinstalovat.

[Žbeky]

Smažem ho

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

SecCenter::
AV: ESET Smart Security 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

DirLook::
c:\users\Zkuřka\AppData\Local\{F23D62F0-D787-4D6F-9083-7A6C21479AC4}

File::
c:\windows\system32\DRIVERS\epfwwfp.sys
c:\windows\system32\DRIVERS\eamonm.sys
c:\windows\system32\DRIVERS\ehdrv.sys

Folder::
c:\program files\ESET

Driver::
EagleX64
epfwwfp
eamonm
ehdrv
ekrn

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"=-

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Scanner]

Luxusní ESET je pryč. Ten ComboFix my pořád nabízel aktualizace tak jsem je rušil.
Co teď? Nemůžu být přece bez antiviru.

ComboFix 12-10-25.02 - Zkuřka 27.10.2012 14:39:44.12.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4079.2518 [GMT 2:00]
Spuštěný z: c:\users\Zkuřka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Zkuřka\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\DRIVERS\eamonm.sys"
"c:\windows\system32\DRIVERS\ehdrv.sys"
"c:\windows\system32\DRIVERS\epfwwfp.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ESET
c:\program files\ESET\ESET Smart Security\callmsi.exe
c:\program files\ESET\ESET Smart Security\DMON.dll
c:\program files\ESET\ESET Smart Security\Drivers\eamonm\eamonm.cat
c:\program files\ESET\ESET Smart Security\Drivers\eamonm\eamonm.inf
c:\program files\ESET\ESET Smart Security\Drivers\eamonm\eamonm.sys
c:\program files\ESET\ESET Smart Security\Drivers\ehdrv\ehdrv.cat
c:\program files\ESET\ESET Smart Security\Drivers\ehdrv\ehdrv.inf
c:\program files\ESET\ESET Smart Security\Drivers\ehdrv\ehdrv.sys
c:\program files\ESET\ESET Smart Security\Drivers\epfw\epfw.cat
c:\program files\ESET\ESET Smart Security\Drivers\epfw\epfw.inf
c:\program files\ESET\ESET Smart Security\Drivers\epfw\epfw.sys
c:\program files\ESET\ESET Smart Security\Drivers\epfwlwf\EpfwLwf.cat
c:\program files\ESET\ESET Smart Security\Drivers\epfwlwf\EpfwLwf.inf
c:\program files\ESET\ESET Smart Security\Drivers\epfwlwf\EpfwLwf.sys
c:\program files\ESET\ESET Smart Security\Drivers\epfwwfp\epfwwfp.cat
c:\program files\ESET\ESET Smart Security\Drivers\epfwwfp\EpfwWfp.inf
c:\program files\ESET\ESET Smart Security\Drivers\epfwwfp\EpfwWfp.sys
c:\program files\ESET\ESET Smart Security\ecls.exe
c:\program files\ESET\ESET Smart Security\eclsLang.dll
c:\program files\ESET\ESET Smart Security\ecmd.exe
c:\program files\ESET\ESET Smart Security\eeclnt.exe
c:\program files\ESET\ESET Smart Security\egui.exe
c:\program files\ESET\ESET Smart Security\eguiAmon.dll
c:\program files\ESET\ESET Smart Security\eguiAmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiDmon.dll
c:\program files\ESET\ESET Smart Security\eguiDmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiEmon.dll
c:\program files\ESET\ESET Smart Security\eguiEmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiEpfw.dll
c:\program files\ESET\ESET Smart Security\eguiEpfwLang.dll
c:\program files\ESET\ESET Smart Security\eguiHips.dll
c:\program files\ESET\ESET Smart Security\eguiHipsLang.dll
c:\program files\ESET\ESET Smart Security\eguiLang.dll
c:\program files\ESET\ESET Smart Security\eguiMailPlugins.dll
c:\program files\ESET\ESET Smart Security\eguiMailPluginsLang.dll
c:\program files\ESET\ESET Smart Security\eguiParental.dll
c:\program files\ESET\ESET Smart Security\eguiParentalLang.dll
c:\program files\ESET\ESET Smart Security\eguiProduct.dll
c:\program files\ESET\ESET Smart Security\eguiProductRcd.dll
c:\program files\ESET\ESET Smart Security\eguiScan.dll
c:\program files\ESET\ESET Smart Security\eguiScanLang.dll
c:\program files\ESET\ESET Smart Security\eguiSmon.dll
c:\program files\ESET\ESET Smart Security\eguiSmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiUpdate.dll
c:\program files\ESET\ESET Smart Security\eguiUpdateLang.dll
c:\program files\ESET\ESET Smart Security\eh64.exe
c:\program files\ESET\ESET Smart Security\ekrnDmonLang.dll
c:\program files\ESET\ESET Smart Security\ekrnEpfwLang.dll
c:\program files\ESET\ESET Smart Security\ekrnHipsLang.dll
c:\program files\ESET\ESET Smart Security\ekrnLang.dll
c:\program files\ESET\ESET Smart Security\ekrnMailPluginsLang.dll
c:\program files\ESET\ESET Smart Security\ekrnParentalLang.dll
c:\program files\ESET\ESET Smart Security\ekrnScanLang.dll
c:\program files\ESET\ESET Smart Security\ekrnSmonLang.dll
c:\program files\ESET\ESET Smart Security\ekrnUpdateLang.dll
c:\program files\ESET\ESET Smart Security\em000_32.dat
c:\program files\ESET\ESET Smart Security\em000_64.dat
c:\program files\ESET\ESET Smart Security\em001_32.dat
c:\program files\ESET\ESET Smart Security\em002_32.dat
c:\program files\ESET\ESET Smart Security\em003_32.dat
c:\program files\ESET\ESET Smart Security\em004_32.dat
c:\program files\ESET\ESET Smart Security\em005_32.dat
c:\program files\ESET\ESET Smart Security\em006_32.dat
c:\program files\ESET\ESET Smart Security\em006_64.dat
c:\program files\ESET\ESET Smart Security\em008_32.dat
c:\program files\ESET\ESET Smart Security\em008_64.dat
c:\program files\ESET\ESET Smart Security\em009_32.dat
c:\program files\ESET\ESET Smart Security\em009_64.dat
c:\program files\ESET\ESET Smart Security\em010_32.dat
c:\program files\ESET\ESET Smart Security\em013_32.dat
c:\program files\ESET\ESET Smart Security\em013_64.dat
c:\program files\ESET\ESET Smart Security\em015_32.dat
c:\program files\ESET\ESET Smart Security\em015_64.dat
c:\program files\ESET\ESET Smart Security\em017_32.dat
c:\program files\ESET\ESET Smart Security\em017_64.dat
c:\program files\ESET\ESET Smart Security\em018_32.dat
c:\program files\ESET\ESET Smart Security\em018_64.dat
c:\program files\ESET\ESET Smart Security\em019_32.dat
c:\program files\ESET\ESET Smart Security\em020_32.dat
c:\program files\ESET\ESET Smart Security\em021_32.dat
c:\program files\ESET\ESET Smart Security\em022_32.dat
c:\program files\ESET\ESET Smart Security\em023_32.dat
c:\program files\ESET\ESET Smart Security\eplgHooks.dll
c:\program files\ESET\ESET Smart Security\eplgOE.dll
c:\program files\ESET\ESET Smart Security\eplgOEEmon.dll
c:\program files\ESET\ESET Smart Security\eplgOELang.dll
c:\program files\ESET\ESET Smart Security\eplgOESmon.dll
c:\program files\ESET\ESET Smart Security\eplgOESmonLang.dll
c:\program files\ESET\ESET Smart Security\eplgOutlook.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookEmon.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookEmonLang.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookLang.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookSmon.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookSmonLang.dll
c:\program files\ESET\ESET Smart Security\eplgTbLang.dll
c:\program files\ESET\ESET Smart Security\eplgTbSmonLang.dll
c:\program files\ESET\ESET Smart Security\eset.chm
c:\program files\ESET\ESET Smart Security\eula.rtf
c:\program files\ESET\ESET Smart Security\mfc80u.dll
c:\program files\ESET\ESET Smart Security\Microsoft.VC80.CRT.manifest
c:\program files\ESET\ESET Smart Security\Microsoft.VC80.MFC.manifest
c:\program files\ESET\ESET Smart Security\Microsoft.VC80.MFCLOC.manifest
c:\program files\ESET\ESET Smart Security\Mozilla Thunderbird\Components\eplgTb.dll
c:\program files\ESET\ESET Smart Security\Mozilla Thunderbird\chrome.manifest
c:\program files\ESET\ESET Smart Security\Mozilla Thunderbird\install.rdf
c:\program files\ESET\ESET Smart Security\msvcp80.dll
c:\program files\ESET\ESET Smart Security\msvcr80.dll
c:\program files\ESET\ESET Smart Security\shellExt.dll
c:\program files\ESET\ESET Smart Security\ShellExtLang.dll
c:\program files\ESET\ESET Smart Security\SysInspector.exe
c:\program files\ESET\ESET Smart Security\SysInspectorLang.dll
c:\program files\ESET\ESET Smart Security\SysRescue.exe
c:\program files\ESET\ESET Smart Security\SysRescueLang.dll
c:\program files\ESET\ESET Smart Security\updater.dll
c:\program files\ESET\ESET Smart Security\x86\DMON.dll
c:\program files\ESET\ESET Smart Security\x86\ekrn.exe
c:\program files\ESET\ESET Smart Security\x86\ekrnAmon.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnDmon.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnEmon.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnEpfw.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnHips.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnMailPlugins.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnParental.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnScan.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnSmon.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnSmonEngine.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnUpdate.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOE.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOEEmon.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOESmon.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOutlook.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOutlookEmon.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOutlookSmon.dll
c:\program files\ESET\ESET Smart Security\x86\eplgTbEmon.dll
c:\program files\ESET\ESET Smart Security\x86\eplgTbSmon.dll
c:\program files\ESET\ESET Smart Security\x86\Microsoft.VC80.CRT.manifest
c:\program files\ESET\ESET Smart Security\x86\msvcp80.dll
c:\program files\ESET\ESET Smart Security\x86\msvcr80.dll
c:\program files\ESET\ESET Smart Security\x86\shellExt.dll
c:\program files\ESET\ESET Smart Security\x86\updater.dll
c:\windows\system32\DRIVERS\eamonm.sys
c:\windows\system32\DRIVERS\ehdrv.sys
c:\windows\system32\DRIVERS\epfwwfp.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_EAGLEX64
-------\Legacy_EAMONM
-------\Legacy_EHDRV
-------\Legacy_EPFWWFP
-------\Service_EagleX64
-------\Service_eamonm
-------\Service_ehdrv
-------\Service_ekrn
-------\Service_epfwwfp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-27 do 2012-10-27 )))))))))))))))))))))))))))))))
.
.
2012-10-27 12:59 . 2012-10-27 12:59 -------- d-----w- c:\users\ZKUKA~2\AppData\Local\temp
2012-10-27 12:59 . 2012-10-27 12:59 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-10-27 12:59 . 2012-10-27 12:59 -------- d-----w- c:\users\Scanner\AppData\Local\temp
2012-10-27 12:59 . 2012-10-27 12:59 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-10-27 12:59 . 2012-10-27 12:59 -------- d-----w- c:\users\Kurivoj\AppData\Local\temp
2012-10-27 12:59 . 2012-10-27 12:59 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-25 12:47 . 2012-10-26 10:10 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-10-24 12:55 . 2012-10-24 12:55 3584 ----a-w- c:\windows\system32\drivers\it-IT\tsusbflt.sys.mui
2012-10-24 12:55 . 2012-10-24 12:55 3584 ----a-w- c:\windows\system32\drivers\de-DE\tsusbflt.sys.mui
2012-10-24 12:55 . 2012-10-24 12:55 3072 ----a-w- c:\windows\system32\drivers\ja-JP\tsusbflt.sys.mui
2012-10-24 12:49 . 2012-10-24 12:49 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2012-10-24 12:49 . 2012-10-24 12:49 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2012-10-24 12:49 . 2012-10-24 12:49 340992 ----a-w- c:\windows\system32\schannel.dll
2012-10-24 12:49 . 2012-10-24 12:49 307200 ----a-w- c:\windows\system32\ncrypt.dll
2012-10-24 12:49 . 2012-10-24 12:49 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2012-10-24 12:49 . 2012-10-24 12:49 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2012-10-24 12:49 . 2012-10-24 12:49 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2012-10-24 12:49 . 2012-10-24 12:49 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-10-24 12:49 . 2012-10-24 12:49 1448448 ----a-w- c:\windows\system32\lsasrv.dll
2012-10-24 12:12 . 2012-10-24 12:12 -------- d-----w- c:\program files (x86)\IObit
2012-10-24 12:09 . 2012-10-26 07:36 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\dclogs
2012-10-24 12:08 . 2012-10-27 07:49 -------- d-----w- c:\users\Zkuřka\AppData\Local\Adobe
2012-10-24 11:55 . 2012-10-24 11:55 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\Apple Computer
2012-10-23 12:48 . 2012-06-13 05:00 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2012-10-23 12:48 . 2012-06-13 05:00 726160 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2012-10-23 05:45 . 2012-09-24 21:16 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-22 11:08 . 2012-10-22 11:08 -------- d-----w- c:\programdata\Trymedia
2012-10-20 08:39 . 2012-10-20 08:39 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2012-10-20 08:39 . 2012-10-20 08:39 -------- d-----w- c:\users\Zkuřka\SystemRequirementsLab
2012-10-10 19:23 . 2012-10-10 19:23 1867112 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-10-10 19:23 . 2012-10-10 19:23 18252136 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-10-10 19:23 . 2012-10-10 19:23 6127464 ----a-w- c:\windows\SysWow64\nvopencl.dll
2012-10-10 19:23 . 2012-10-10 19:23 2574696 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-10-10 19:23 . 2012-10-10 19:23 25256296 ----a-w- c:\windows\system32\nvcompiler.dll
2012-10-10 19:23 . 2012-10-10 19:23 7414632 ----a-w- c:\windows\system32\nvopencl.dll
2012-10-10 19:23 . 2012-10-10 19:23 9146728 ----a-w- c:\windows\system32\nvcuda.dll
2012-10-10 19:23 . 2012-10-10 19:23 7697768 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-10-10 19:23 . 2012-10-10 19:23 2218344 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-10-10 19:23 . 2012-10-10 19:23 12501352 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-10-10 19:22 . 2012-10-10 19:22 2428776 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-10-10 19:22 . 2012-10-10 19:22 26331496 ----a-w- c:\windows\system32\nvoglv64.dll
2012-10-10 19:22 . 2012-10-10 19:22 15309160 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-10-10 19:22 . 2012-10-10 19:22 2747240 ----a-w- c:\windows\system32\nvcuvid.dll
2012-10-10 19:22 . 2012-10-10 19:22 19906920 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-10-10 19:22 . 2012-10-10 19:22 13443944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-10-10 19:22 . 2012-10-10 19:22 17559912 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-10-10 14:43 . 2012-08-11 00:56 715776 ----a-w- c:\windows\system32\kerberos.dll
2012-10-10 14:43 . 2012-08-10 23:56 542208 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-10 12:27 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-10 12:27 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-10 12:27 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-10 12:27 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-10 12:27 . 2012-08-24 16:57 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-07 10:53 . 2012-10-07 10:53 -------- d-----w- c:\users\Zkuřka\AppData\Local\{F23D62F0-D787-4D6F-9083-7A6C21479AC4}
2012-10-05 12:03 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-10-02 11:15 . 2012-10-02 11:15 430952 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-09-27 14:37 . 2012-09-27 14:37 -------- d-----w- c:\programdata\Ahead
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-24 12:49 . 2012-10-24 12:49 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2012-10-10 19:29 . 2012-01-17 18:59 65309168 ----a-w- c:\windows\system32\MRT.exe
2012-10-10 19:23 . 2012-09-26 16:18 1482600 ----a-w- c:\windows\system32\nvdispgenco64.dll
2012-10-10 19:23 . 2012-02-09 20:43 2731880 ----a-w- c:\windows\system32\nvapi64.dll
2012-10-10 19:23 . 2012-02-09 20:43 14922600 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-10-10 19:22 . 2012-02-09 20:43 1760104 ----a-w- c:\windows\system32\nvdispco64.dll
2012-10-09 15:16 . 2012-04-12 07:45 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-09 15:16 . 2012-01-17 18:15 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-02 19:51 . 2010-10-08 08:04 3293544 ----a-w- c:\windows\system32\nvsvc64.dll
2012-10-02 19:51 . 2010-10-08 08:04 6200680 ----a-w- c:\windows\system32\nvcpl.dll
2012-10-02 19:50 . 2012-07-12 13:50 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-10-02 19:50 . 2010-10-08 08:04 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-10-02 19:50 . 2010-10-08 08:04 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2012-10-02 19:50 . 2010-10-08 08:04 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-09-29 17:54 . 2012-05-13 09:49 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-21 17:07 . 2012-09-21 17:07 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-09-21 17:07 . 2012-09-21 17:07 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-09-21 17:07 . 2012-09-21 17:07 816640 ----a-w- c:\windows\system32\jscript.dll
2012-09-21 17:07 . 2012-09-21 17:07 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-09-21 17:07 . 2012-09-21 17:07 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-09-21 17:07 . 2012-09-21 17:07 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-09-21 17:07 . 2012-09-21 17:07 248320 ----a-w- c:\windows\system32\ieui.dll
2012-09-21 17:07 . 2012-09-21 17:07 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-09-21 17:07 . 2012-09-21 17:07 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-09-21 17:07 . 2012-09-21 17:07 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-09-21 17:07 . 2012-09-21 17:07 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-09-21 17:07 . 2012-09-21 17:07 17810944 ----a-w- c:\windows\system32\mshtml.dll
2012-09-21 17:07 . 2012-09-21 17:07 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-09-21 17:07 . 2012-09-21 17:07 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-09-21 17:07 . 2012-09-21 17:07 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-09-21 17:07 . 2012-09-21 17:07 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-09-21 17:07 . 2012-09-21 17:07 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-09-21 17:07 . 2012-09-21 17:07 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-09-21 17:07 . 2012-09-21 17:07 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-09-21 17:07 . 2012-09-21 17:07 237056 ----a-w- c:\windows\system32\url.dll
2012-09-21 17:07 . 2012-09-21 17:07 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-09-21 17:07 . 2012-09-21 17:07 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-09-12 13:44 . 2012-05-04 08:39 821736 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-09-12 13:44 . 2012-02-05 10:14 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-03 11:26 . 2012-04-15 18:28 627600 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-30 13:18 . 2012-08-30 13:18 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-08-30 13:18 . 2012-08-30 13:18 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2012-08-22 18:12 . 2012-09-12 10:53 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-08-22 18:12 . 2012-09-12 10:53 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12 . 2012-09-12 10:53 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-08-22 18:12 . 2012-09-12 10:53 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-08-20 17:38 . 2012-10-10 12:26 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-08-15 16:52 . 2012-08-15 16:52 4472832 ----a-w- c:\windows\SysWow64\GPhotos.scr
2012-08-02 17:58 . 2012-09-12 10:53 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-08-02 16:57 . 2012-09-12 10:53 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
.
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\users\Zkuřka\AppData\Local\{F23D62F0-D787-4D6F-9083-7A6C21479AC4} ----
.
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="e:\daemon tools lite\DTLite.exe" [2012-04-17 3671872]
"Skype"="c:\program files (x86)\skype\phone\skype.exe" [2012-07-13 17418928]
"Facebook Update"="c:\users\zkuřka\appdata\local\facebook\update\facebookupdate.exe" [2012-07-11 138096]
"Advanced SystemCare 5"="c:\program files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" [2011-12-29 620376]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\malwarebytes' anti-malware\mbamgui.exe" [2012-09-29 766536]
"Adobe ARM"="c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe" [2012-07-27 919008]
"ZyngaGamesAgent"="c:\program files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe" [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-09 250808]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-02-15 99384]
R3 etdrv;etdrv;c:\windows\etdrv.sys [2012-07-12 25640]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-07-12 30528]
R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys [2010-04-28 20480]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-10-24 19456]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-02-15 203320]
R3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudobex.sys [2012-02-15 203320]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-10-24 57856]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-17 1255736]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-06 283200]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;e:\adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-09-14 169624]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-29 497496]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2010-04-29 127800]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
S2 SCBackService;Splashtop Connect Service;c:\program files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-05 2655768]
S2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
S2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
S3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS [2006-12-05 572416]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-06-13 726160]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-12 15:16]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - e:\micros~1\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Mafia Game - c:\windows\system32\MafiaSetup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"=hex:51,66,7a,6c,4c,1d,38,12,df,c1,0b,
27,57,07,ba,54,e4,0e,43,d0,22,fb,89,5b
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{AA58ED58-01DD-4D91-8333-CF10577473F7}"=hex:51,66,7a,6c,4c,1d,38,12,36,ee,4b,
ae,ef,4f,ff,08,fc,25,8c,50,52,2a,37,e3
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:90,6b,b3,7a,dc,b1,cd,01
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"qgif4.dll"=multi:"2011-10-10T17:42\00gif\00\00"
"qico4.dll"=multi:"2011-10-10T17:42\00ico\00\00"
"qjpeg4.dll"=multi:"2011-10-10T17:42\00jpeg\00jpg\00\00"
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QTextCodecFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"2011-10-10T17:42\00GB18030\00GBK\00GB2312\00CP936\00MS936\00windows-936\00MIB: 114\00MIB: 113\00MIB: 2025\00\00"
"qkrcodecs4.dll"=multi:"2011-10-10T17:42\00EUC-KR\00cp949\00MIB: 38\00MIB: -949\00\00"
"qtwcodecs4.dll"=multi:"2011-10-10T17:42\00Big5\00Big5-HKSCS\00Big5-ETen\00CP950\00MIB: 2026\00MIB: 2101\00\00"
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpcodecs4.dll"=multi:"40602\000\00Windows msvc release full-config\002011-10-10T17:42\00\00"
"qjpcodecsd4.dll"=multi:"40703\001\00Windows msvc debug full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qkrcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qtwcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_USERS\S-1-5-21-3808588828-2456027333-2120688298-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"Microsoft.VC80.CRT.manifest"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"msvcr80.dll"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"qgif4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qico4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpeg4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Celkový čas: 2012-10-27 15:08:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-27 13:08
ComboFix2.txt 2012-10-26 09:46
.
Před spuštěním: Volných bajtů: 33 895 370 752
Po spuštění: Volných bajtů: 33 813 561 344
.
- - End Of File - - E74A429EBE5D24C1DA37A61B895CF458