prosim o kontrolu děkuji Vyřešeno

[zikinda]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:42:54, on 17.2.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\NetSoftware\NetSoftware.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IELowutil.exe
C:\Users\nala.nala-PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDRCGUS\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: InternetPanelBHO - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\NetSoftware\IEHelper.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NetSoftware] "C:\Program Files\NetSoftware\Starter.exe" /path="C:\Program Files\NetSoftware"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

--
End of file - 3374 bytes

[Reklama]

[memphisto]

Odinstaluj Ask Toolbar

v logu fixni:
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: InternetPanelBHO - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\NetSoftware\IEHelper.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NetSoftware] "C:\Program Files\NetSoftware\Starter.exe" /path="C:\Program Files\NetSoftware"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[zikinda]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.18.10

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
nala :: NALA-PC [administrátor]

Ochrana: Povolena

18.2.2013 19:38:45
MBAM-log-2013-02-18 (19-45-16).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 204153
Uplynulý čas: 6 minut, 20 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 1
C:\Users\Public\Desktop\MP3 Downloader.lnk (Rogue.Link) -> Nebyla provedena žádná instrukce.

(konec)

[zikinda]

# AdwCleaner v2.112 - Logfile created 02/18/2013 at 19:50:09
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Starter Service Pack 1 (32 bits)
# User : nala - NALA-PC
# Boot Mode : Normal
# Running from : C:\Users\nala.nala-PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDRCGUS\adwcleaner0.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Program Files\Ask.com
Folder Found : C:\ProgramData\Ask
Folder Found : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Found : HKCU\Software\APN
Key Found : HKCU\Software\AppDataLow\Software\AskToolbar
Key Found : HKCU\Software\Ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKLM\Software\APN
Key Found : HKLM\Software\AskToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [4587 octets] - [18/02/2013 19:50:09]

########## EOF - C:\AdwCleaner[R1].txt - [4647 octets] ##########

[Žbeky]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“)
Klikni na „ Delete“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt), jeho obsah sem celý vlož.

Znovu spusť MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

[zikinda]

# AdwCleaner v2.112 - Logfile created 02/18/2013 at 22:15:25
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Starter Service Pack 1 (32 bits)
# User : nala - NALA-PC
# Boot Mode : Normal
# Running from : C:\Users\nala.nala-PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDRCGUS\adwcleaner0.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files\Ask.com
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [4716 octets] - [18/02/2013 19:50:09]
AdwCleaner[R2].txt - [4776 octets] - [18/02/2013 22:15:06]
AdwCleaner[S1].txt - [4671 octets] - [18/02/2013 22:15:25]

########## EOF - C:\AdwCleaner[S1].txt - [4731 octets] ##########

[zikinda]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.18.10

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
nala :: NALA-PC [administrátor]

Ochrana: Povolena

18.2.2013 22:31:54
mbam-log-2013-02-18 (22-31-54).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 203843
Uplynulý čas: 6 minut, 27 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 1
C:\Users\Public\Desktop\MP3 Downloader.lnk (Rogue.Link) -> Přesun do karantény a smazání se zdařilo.

(konec)

[zikinda]

22:46:22.0326 1076 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:46:23.0247 1076 ============================================================
22:46:23.0247 1076 Current date / time: 2013/02/18 22:46:23.0247
22:46:23.0247 1076 SystemInfo:
22:46:23.0247 1076
22:46:23.0247 1076 OS Version: 6.1.7601 ServicePack: 1.0
22:46:23.0247 1076 Product type: Workstation
22:46:23.0247 1076 ComputerName: NALA-PC
22:46:23.0247 1076 UserName: nala
22:46:23.0247 1076 Windows directory: C:\Windows
22:46:23.0247 1076 System windows directory: C:\Windows
22:46:23.0247 1076 Processor architecture: Intel x86
22:46:23.0247 1076 Number of processors: 2
22:46:23.0247 1076 Page size: 0x1000
22:46:23.0247 1076 Boot type: Normal boot

22:48:41.0479 3868 Scan finished
22:48:41.0479 3868 ============================================================
22:48:41.0494 2504 Detected object count: 0
22:48:41.0494 2504 Actual detected object count: 0

[memphisto]

TDDS není celý + chybí ještě Combofix

[zikinda]

ComboFix 13-02-18.02 - nala 18.02.2013 23:42:32.1.2 - x86
Spuštěný z: c:\users\nala.nala-PC\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-01-18 do 2013-02-18 )))))))))))))))))))))))))))))))
.
.
2013-02-18 23:07 . 2013-02-18 23:07 -------- d-----w- c:\users\nala\AppData\Local\temp
2013-02-18 23:07 . 2013-02-18 23:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-18 22:31 . 2013-02-18 22:32 60872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5375F166-00D4-4C88-B099-F36C1E56F6F3}\offreg.dll
2013-02-18 18:35 . 2013-02-18 18:35 -------- d-----w- c:\users\nala.nala-PC\AppData\Roaming\Malwarebytes
2013-02-18 18:34 . 2013-02-18 18:34 -------- d-----w- c:\programdata\Malwarebytes
2013-02-18 18:34 . 2013-02-18 18:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-02-18 18:34 . 2012-12-14 15:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-02-18 18:33 . 2013-02-18 18:34 -------- d-----w- c:\users\nala.nala-PC\AppData\Local\Programs
2013-02-13 10:32 . 2013-01-08 22:01 768000 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-13 09:09 . 2013-01-04 03:00 2347008 ----a-w- c:\windows\system32\win32k.sys
2013-02-13 08:59 . 2013-01-05 05:00 3967848 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-02-13 08:59 . 2013-01-05 05:00 3913064 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-13 08:53 . 2013-01-03 05:05 1293672 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-13 08:53 . 2013-01-03 05:04 187752 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 08:44 . 2013-01-04 04:50 169984 ----a-w- c:\windows\system32\winsrv.dll
2013-02-05 19:48 . 2013-01-08 04:57 6991832 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5375F166-00D4-4C88-B099-F36C1E56F6F3}\mpengine.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-08 09:35 . 2012-04-17 19:45 74096 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-08 09:35 . 2012-04-17 19:45 697712 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-12-16 14:13 . 2012-12-21 15:53 295424 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-21 15:53 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-11-23 02:48 . 2013-01-09 13:12 49152 ----a-w- c:\windows\system32\taskhost.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"NetSoftware"="c:\program files\NetSoftware\Starter.exe" [2012-12-04 189952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2013-02-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 09:35]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://centrum.cz/
TCP: DhcpNameServer = 192.168.0.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-02-19 10:54:14
ComboFix-quarantined-files.txt 2013-02-19 09:53
.
Před spuštěním: 3 282 583 552
Po spuštění: 3 572 916 224
.
- - End Of File - - 842F5E38D4C8E598939EB00FFBEBFC91

[zikinda]

11:05:34.0902 2336 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:05:35.0151 2336 ============================================================
11:05:35.0151 2336 Current date / time: 2013/02/19 11:05:35.0151
11:05:35.0151 2336 SystemInfo:
11:05:35.0151 2336
11:05:35.0151 2336 OS Version: 6.1.7601 ServicePack: 1.0
11:05:35.0151 2336 Product type: Workstation
11:05:35.0151 2336 ComputerName: NALA-PC
11:05:35.0151 2336 UserName: nala
11:05:35.0151 2336 Windows directory: C:\Windows
11:05:35.0151 2336 System windows directory: C:\Windows
11:05:35.0151 2336 Processor architecture: Intel x86
11:05:35.0151 2336 Number of processors: 2
11:05:35.0151 2336 Page size: 0x1000
11:05:35.0151 2336 Boot type: Normal boot
11:05:35.0151 2336 ============================================================
11:06:06.0866 2336 Drive \Device\Harddisk0\DR0 - Size: 0x3C1FB0000 (15.03 Gb), SectorSize: 0x200, Cylinders: 0x7AA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:06:06.0882 2336 ============================================================
11:06:06.0882 2336 \Device\Harddisk0\DR0:
11:06:06.0882 2336 MBR partitions:
11:06:06.0882 2336 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:06:06.0882 2336 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1DDC800
11:06:06.0882 2336 ============================================================
11:06:06.0882 2336 C: <-> \Device\Harddisk0\DR0\Partition2
11:06:06.0882 2336 ============================================================
11:06:06.0882 2336 Initialize success
11:06:06.0882 2336 ============================================================
11:37:22.0945 2348 ============================================================
11:37:22.0945 2348 Scan started
11:37:22.0945 2348 Mode: Manual;
11:37:22.0945 2348 ============================================================
11:37:29.0278 2348 ================ Scan system memory ========================
11:37:29.0278 2348 System memory - ok
11:37:29.0278 2348 ================ Scan services =============================
11:37:32.0211 2348 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:37:32.0227 2348 1394ohci - ok
11:37:32.0258 2348 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:37:32.0273 2348 ACPI - ok
11:37:32.0289 2348 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:37:32.0289 2348 AcpiPmi - ok
11:37:32.0320 2348 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:37:32.0320 2348 AdobeARMservice - ok
11:37:32.0336 2348 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:37:32.0351 2348 AdobeFlashPlayerUpdateSvc - ok
11:37:32.0383 2348 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:37:32.0398 2348 adp94xx - ok
11:37:33.0303 2348 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:37:33.0303 2348 adpahci - ok
11:37:33.0833 2348 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:37:33.0849 2348 adpu320 - ok
11:37:33.0865 2348 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:37:33.0880 2348 AeLookupSvc - ok
11:37:33.0911 2348 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
11:37:33.0927 2348 AFD - ok
11:37:33.0943 2348 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
11:37:33.0943 2348 agp440 - ok
11:37:33.0958 2348 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:37:33.0958 2348 aic78xx - ok
11:37:33.0974 2348 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
11:37:33.0989 2348 ALG - ok
11:37:34.0005 2348 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
11:37:34.0005 2348 aliide - ok
11:37:34.0021 2348 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:37:34.0036 2348 amdagp - ok
11:37:34.0052 2348 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
11:37:34.0052 2348 amdide - ok
11:37:34.0067 2348 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:37:34.0067 2348 AmdK8 - ok
11:37:34.0099 2348 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
11:37:34.0099 2348 AmdPPM - ok
11:37:34.0114 2348 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:37:34.0130 2348 amdsata - ok
11:37:34.0145 2348 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:37:34.0161 2348 amdsbs - ok
11:37:34.0177 2348 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:37:34.0177 2348 amdxata - ok
11:37:34.0192 2348 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
11:37:34.0192 2348 AppID - ok
11:37:34.0208 2348 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:37:34.0208 2348 AppIDSvc - ok
11:37:34.0223 2348 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
11:37:34.0239 2348 Appinfo - ok
11:37:34.0255 2348 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys
11:37:34.0270 2348 arc - ok
11:37:34.0286 2348 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:37:34.0286 2348 arcsas - ok
11:37:34.0301 2348 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:37:34.0301 2348 AsyncMac - ok
11:37:34.0317 2348 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
11:37:34.0333 2348 atapi - ok
11:37:34.0379 2348 [ 76BAB0C824E2D05B940C4DD40A9B08BF ] athr C:\Windows\system32\DRIVERS\athr.sys
11:37:34.0426 2348 athr - ok
11:37:34.0925 2348 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:37:34.0941 2348 AudioEndpointBuilder - ok
11:37:34.0972 2348 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:37:34.0988 2348 Audiosrv - ok
11:37:35.0003 2348 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:37:35.0003 2348 AxInstSV - ok
11:37:35.0035 2348 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
11:37:35.0050 2348 b06bdrv - ok
11:37:35.0081 2348 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
11:37:35.0081 2348 b57nd60x - ok
11:37:35.0113 2348 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
11:37:35.0113 2348 BDESVC - ok
11:37:35.0128 2348 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
11:37:35.0144 2348 Beep - ok
11:37:35.0175 2348 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
11:37:35.0191 2348 BFE - ok
11:37:35.0237 2348 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\system32\qmgr.dll
11:37:35.0253 2348 BITS - ok
11:37:35.0269 2348 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:37:35.0284 2348 blbdrive - ok
11:37:35.0300 2348 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:37:35.0300 2348 bowser - ok
11:37:35.0315 2348 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:37:35.0315 2348 BrFiltLo - ok
11:37:35.0331 2348 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:37:35.0331 2348 BrFiltUp - ok
11:37:35.0362 2348 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:37:35.0362 2348 BridgeMP - ok
11:37:35.0378 2348 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
11:37:35.0393 2348 Browser - ok
11:37:35.0861 2348 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:37:35.0877 2348 Brserid - ok
11:37:35.0908 2348 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:37:35.0908 2348 BrSerWdm - ok
11:37:35.0924 2348 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:37:35.0924 2348 BrUsbMdm - ok
11:37:35.0939 2348 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:37:35.0939 2348 BrUsbSer - ok
11:37:35.0971 2348 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:37:35.0971 2348 BTHMODEM - ok
11:37:35.0986 2348 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
11:37:36.0002 2348 bthserv - ok
11:37:36.0017 2348 catchme - ok
11:37:36.0033 2348 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:37:36.0033 2348 cdfs - ok
11:37:36.0064 2348 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
11:37:36.0064 2348 cdrom - ok
11:37:36.0080 2348 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
11:37:36.0095 2348 CertPropSvc - ok
11:37:36.0111 2348 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys
11:37:36.0111 2348 circlass - ok
11:37:36.0127 2348 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
11:37:36.0142 2348 CLFS - ok
11:37:36.0173 2348 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:37:36.0173 2348 clr_optimization_v2.0.50727_32 - ok
11:37:36.0205 2348 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:37:36.0205 2348 clr_optimization_v4.0.30319_32 - ok
11:37:36.0220 2348 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:37:36.0220 2348 CmBatt - ok
11:37:36.0251 2348 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:37:36.0251 2348 cmdide - ok
11:37:36.0283 2348 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
11:37:36.0298 2348 CNG - ok
11:37:36.0314 2348 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:37:36.0314 2348 Compbatt - ok
11:37:36.0329 2348 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:37:36.0329 2348 CompositeBus - ok
11:37:36.0345 2348 COMSysApp - ok
11:37:36.0361 2348 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:37:36.0376 2348 crcdisk - ok
11:37:36.0392 2348 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:37:36.0844 2348 CryptSvc - ok
11:37:36.0891 2348 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
11:37:36.0907 2348 DcomLaunch - ok
11:37:36.0922 2348 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
11:37:36.0938 2348 defragsvc - ok
11:37:36.0953 2348 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:37:36.0953 2348 DfsC - ok
11:37:36.0985 2348 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:37:37.0000 2348 Dhcp - ok
11:37:37.0016 2348 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
11:37:37.0016 2348 discache - ok
11:37:37.0031 2348 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys
11:37:37.0031 2348 Disk - ok
11:37:37.0063 2348 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:37:37.0063 2348 Dnscache - ok
11:37:37.0078 2348 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
11:37:37.0094 2348 dot3svc - ok
11:37:37.0125 2348 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
11:37:37.0125 2348 DPS - ok
11:37:37.0141 2348 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:37:37.0141 2348 drmkaud - ok
11:37:37.0187 2348 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:37:37.0219 2348 DXGKrnl - ok
11:37:37.0234 2348 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
11:37:37.0250 2348 EapHost - ok
11:37:37.0406 2348 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
11:37:37.0546 2348 ebdrv - ok
11:37:37.0562 2348 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
11:37:37.0562 2348 EFS - ok
11:37:37.0593 2348 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:37:37.0609 2348 elxstor - ok
11:37:37.0624 2348 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:37:37.0624 2348 ErrDev - ok
11:37:37.0687 2348 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
11:37:37.0702 2348 EventSystem - ok
11:37:37.0718 2348 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
11:37:37.0718 2348 exfat - ok
11:37:37.0749 2348 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:37:37.0749 2348 fastfat - ok
11:37:37.0796 2348 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
11:37:37.0796 2348 Fax - ok
11:37:37.0811 2348 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\drivers\fdc.sys
11:37:37.0827 2348 fdc - ok
11:37:37.0843 2348 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
11:37:37.0843 2348 fdPHost - ok
11:37:37.0858 2348 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
11:37:37.0874 2348 FDResPub - ok
11:37:37.0889 2348 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:37:37.0889 2348 FileInfo - ok
11:37:37.0905 2348 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:37:37.0905 2348 Filetrace - ok
11:37:37.0921 2348 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
11:37:37.0921 2348 flpydisk - ok
11:37:37.0952 2348 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:37:37.0952 2348 FltMgr - ok
11:37:37.0999 2348 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
11:37:38.0045 2348 FontCache - ok
11:37:38.0061 2348 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:37:38.0061 2348 FontCache3.0.0.0 - ok
11:37:38.0077 2348 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:37:38.0077 2348 FsDepends - ok
11:37:38.0092 2348 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:37:38.0092 2348 Fs_Rec - ok
11:37:38.0123 2348 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:37:38.0123 2348 fvevol - ok
11:37:38.0155 2348 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:37:38.0155 2348 gagp30kx - ok
11:37:38.0186 2348 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
11:37:38.0217 2348 gpsvc - ok
11:37:38.0233 2348 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:37:38.0233 2348 hcw85cir - ok
11:37:38.0264 2348 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:37:38.0279 2348 HdAudAddService - ok
11:37:38.0295 2348 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:37:38.0295 2348 HDAudBus - ok
11:37:38.0311 2348 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:37:38.0326 2348 HidBatt - ok
11:37:38.0342 2348 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:37:38.0342 2348 HidBth - ok
11:37:38.0357 2348 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:37:38.0357 2348 HidIr - ok
11:37:38.0373 2348 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
11:37:38.0389 2348 hidserv - ok
11:37:38.0404 2348 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:37:38.0404 2348 HidUsb - ok
11:37:38.0888 2348 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:37:38.0903 2348 hkmsvc - ok
11:37:38.0919 2348 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:37:38.0935 2348 HomeGroupListener - ok
11:37:38.0950 2348 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:37:38.0966 2348 HomeGroupProvider - ok
11:37:38.0981 2348 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:37:38.0997 2348 HpSAMD - ok
11:37:39.0028 2348 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:37:39.0044 2348 HTTP - ok
11:37:39.0059 2348 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:37:39.0059 2348 hwpolicy - ok
11:37:39.0075 2348 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:37:39.0091 2348 i8042prt - ok
11:37:39.0122 2348 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:37:39.0137 2348 iaStorV - ok
11:37:39.0184 2348 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:37:39.0215 2348 idsvc - ok
11:37:39.0434 2348 [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
11:37:39.0637 2348 igfx - ok
11:37:39.0652 2348 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:37:39.0652 2348 iirsp - ok
11:37:39.0699 2348 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
11:37:39.0715 2348 IKEEXT - ok
11:37:39.0730 2348 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
11:37:39.0730 2348 intelide - ok
11:37:39.0746 2348 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:37:39.0761 2348 intelppm - ok
11:37:39.0777 2348 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:37:39.0777 2348 IPBusEnum - ok
11:37:39.0793 2348 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:37:39.0808 2348 IpFilterDriver - ok
11:37:39.0839 2348 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:37:39.0855 2348 iphlpsvc - ok
11:37:39.0871 2348 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:37:39.0886 2348 IPMIDRV - ok
11:37:39.0902 2348 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:37:39.0902 2348 IPNAT - ok
11:37:39.0917 2348 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:37:39.0917 2348 IRENUM - ok
11:37:39.0933 2348 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:37:39.0949 2348 isapnp - ok
11:37:39.0964 2348 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:37:39.0980 2348 iScsiPrt - ok
11:37:39.0995 2348 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:37:39.0995 2348 kbdclass - ok
11:37:40.0011 2348 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:37:40.0011 2348 kbdhid - ok
11:37:40.0042 2348 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
11:37:40.0042 2348 KeyIso - ok
11:37:40.0058 2348 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:37:40.0058 2348 KSecDD - ok
11:37:40.0089 2348 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:37:40.0089 2348 KSecPkg - ok
11:37:40.0120 2348 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
11:37:40.0136 2348 KtmRm - ok
11:37:40.0151 2348 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
11:37:40.0167 2348 LanmanServer - ok
11:37:40.0183 2348 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:37:40.0198 2348 LanmanWorkstation - ok
11:37:40.0229 2348 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:37:40.0229 2348 lltdio - ok
11:37:40.0261 2348 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:37:40.0261 2348 lltdsvc - ok
11:37:40.0292 2348 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
11:37:40.0292 2348 lmhosts - ok
11:37:40.0323 2348 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:37:40.0323 2348 LSI_FC - ok
11:37:40.0729 2348 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:37:40.0744 2348 LSI_SAS - ok
11:37:41.0649 2348 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
11:37:42.0086 2348 LSI_SAS2 - ok
11:37:42.0554 2348 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:37:42.0569 2348 LSI_SCSI - ok
11:37:43.0022 2348 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
11:37:43.0022 2348 luafv - ok
11:37:43.0037 2348 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:37:43.0037 2348 MBAMProtector - ok
11:37:43.0069 2348 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:37:43.0084 2348 MBAMScheduler - ok

[zikinda]

11:37:43.0131 2348 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:37:43.0162 2348 MBAMService - ok
11:37:43.0178 2348 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys
11:37:43.0178 2348 megasas - ok
11:37:43.0193 2348 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
11:37:43.0209 2348 MegaSR - ok
11:37:43.0225 2348 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
11:37:43.0240 2348 MMCSS - ok
11:37:43.0256 2348 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
11:37:43.0256 2348 Modem - ok
11:37:43.0271 2348 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:37:43.0271 2348 monitor - ok
11:37:43.0287 2348 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:37:43.0303 2348 mouclass - ok
11:37:43.0318 2348 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\drivers\mouhid.sys
11:37:43.0318 2348 mouhid - ok
11:37:43.0334 2348 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:37:43.0349 2348 mountmgr - ok
11:37:43.0365 2348 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
11:37:43.0365 2348 mpio - ok
11:37:43.0381 2348 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:37:43.0396 2348 mpsdrv - ok
11:37:43.0427 2348 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:37:43.0459 2348 MpsSvc - ok
11:37:43.0474 2348 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:37:43.0474 2348 MRxDAV - ok
11:37:43.0505 2348 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:37:43.0505 2348 mrxsmb - ok
11:37:43.0521 2348 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:37:43.0537 2348 mrxsmb10 - ok
11:37:43.0552 2348 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:37:43.0568 2348 mrxsmb20 - ok
11:37:43.0583 2348 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
11:37:43.0583 2348 msahci - ok
11:37:43.0599 2348 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:37:43.0599 2348 msdsm - ok
11:37:43.0630 2348 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
11:37:43.0630 2348 MSDTC - ok
11:37:43.0661 2348 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:37:43.0677 2348 Msfs - ok
11:37:43.0693 2348 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:37:43.0693 2348 mshidkmdf - ok
11:37:43.0708 2348 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:37:43.0724 2348 msisadrv - ok
11:37:43.0739 2348 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:37:43.0755 2348 MSiSCSI - ok
11:37:43.0755 2348 msiserver - ok
11:37:43.0786 2348 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:37:43.0786 2348 MSKSSRV - ok
11:37:43.0802 2348 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:37:43.0802 2348 MSPCLOCK - ok
11:37:43.0817 2348 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:37:43.0817 2348 MSPQM - ok
11:37:43.0849 2348 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:37:43.0849 2348 MsRPC - ok
11:37:43.0880 2348 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:37:43.0880 2348 mssmbios - ok
11:37:43.0895 2348 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:37:43.0895 2348 MSTEE - ok
11:37:43.0911 2348 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:37:43.0911 2348 MTConfig - ok
11:37:43.0942 2348 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
11:37:43.0942 2348 Mup - ok
11:37:43.0973 2348 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
11:37:43.0989 2348 napagent - ok
11:37:44.0005 2348 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:37:44.0020 2348 NativeWifiP - ok
11:37:44.0067 2348 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:37:44.0098 2348 NDIS - ok
11:37:44.0114 2348 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:37:44.0114 2348 NdisCap - ok
11:37:44.0129 2348 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:37:44.0129 2348 NdisTapi - ok
11:37:44.0145 2348 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:37:44.0161 2348 Ndisuio - ok
11:37:44.0176 2348 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:37:44.0176 2348 NdisWan - ok
11:37:44.0192 2348 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:37:44.0192 2348 NDProxy - ok
11:37:44.0223 2348 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:37:44.0223 2348 NetBIOS - ok
11:37:44.0239 2348 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:37:44.0254 2348 NetBT - ok
11:37:44.0270 2348 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
11:37:44.0270 2348 Netlogon - ok
11:37:44.0301 2348 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
11:37:44.0317 2348 Netman - ok
11:37:44.0332 2348 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
11:37:44.0363 2348 netprofm - ok
11:37:44.0379 2348 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:37:44.0379 2348 NetTcpPortSharing - ok
11:37:44.0395 2348 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:37:44.0410 2348 nfrd960 - ok
11:37:44.0426 2348 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:37:44.0441 2348 NlaSvc - ok
11:37:44.0457 2348 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:37:44.0473 2348 Npfs - ok
11:37:44.0488 2348 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
11:37:44.0488 2348 nsi - ok
11:37:44.0504 2348 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:37:44.0504 2348 nsiproxy - ok
11:37:44.0582 2348 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:37:44.0629 2348 Ntfs - ok
11:37:44.0644 2348 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
11:37:44.0644 2348 Null - ok
11:37:44.0675 2348 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:37:44.0675 2348 nvraid - ok
11:37:44.0707 2348 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:37:44.0707 2348 nvstor - ok
11:37:44.0722 2348 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:37:44.0738 2348 nv_agp - ok
11:37:44.0753 2348 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:37:44.0753 2348 ohci1394 - ok
11:37:44.0785 2348 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:37:44.0800 2348 p2pimsvc - ok
11:37:44.0816 2348 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
11:37:44.0847 2348 p2psvc - ok
11:37:44.0863 2348 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\drivers\parport.sys
11:37:44.0863 2348 Parport - ok
11:37:44.0878 2348 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:37:44.0894 2348 partmgr - ok
11:37:44.0909 2348 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:37:44.0909 2348 Parvdm - ok
11:37:44.0925 2348 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:37:44.0941 2348 PcaSvc - ok
11:37:44.0956 2348 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
11:37:44.0972 2348 pci - ok
11:37:44.0987 2348 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
11:37:44.0987 2348 pciide - ok
11:37:45.0019 2348 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:37:45.0019 2348 pcmcia - ok
11:37:45.0034 2348 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
11:37:45.0050 2348 pcw - ok
11:37:45.0081 2348 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:37:45.0112 2348 PEAUTH - ok
11:37:45.0206 2348 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
11:37:45.0284 2348 pla - ok
11:37:45.0315 2348 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:37:45.0331 2348 PlugPlay - ok
11:37:45.0346 2348 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:37:45.0346 2348 PNRPAutoReg - ok
11:37:45.0377 2348 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:37:45.0393 2348 PNRPsvc - ok
11:37:45.0424 2348 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:37:45.0440 2348 PolicyAgent - ok
11:37:45.0471 2348 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
11:37:45.0487 2348 Power - ok
11:37:45.0502 2348 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:37:45.0502 2348 PptpMiniport - ok
11:37:45.0518 2348 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\drivers\processr.sys
11:37:45.0518 2348 Processor - ok
11:37:45.0549 2348 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
11:37:45.0565 2348 ProfSvc - ok
11:37:45.0580 2348 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:37:45.0580 2348 ProtectedStorage - ok
11:37:45.0596 2348 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:37:45.0611 2348 Psched - ok
11:37:45.0674 2348 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:37:45.0736 2348 ql2300 - ok
11:37:45.0767 2348 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:37:45.0767 2348 ql40xx - ok
11:37:45.0799 2348 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
11:37:45.0814 2348 QWAVE - ok
11:37:45.0830 2348 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:37:45.0830 2348 QWAVEdrv - ok
11:37:45.0845 2348 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:37:45.0845 2348 RasAcd - ok
11:37:45.0861 2348 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:37:45.0861 2348 RasAgileVpn - ok
11:37:45.0877 2348 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
11:37:45.0892 2348 RasAuto - ok
11:37:45.0908 2348 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:37:45.0923 2348 Rasl2tp - ok
11:37:45.0939 2348 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
11:37:45.0955 2348 RasMan - ok
11:37:45.0986 2348 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:37:45.0986 2348 RasPppoe - ok
11:37:46.0001 2348 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:37:46.0001 2348 RasSstp - ok
11:37:46.0033 2348 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:37:46.0048 2348 rdbss - ok
11:37:46.0064 2348 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
11:37:46.0064 2348 rdpbus - ok
11:37:46.0079 2348 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:37:46.0079 2348 RDPCDD - ok
11:37:46.0111 2348 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:37:46.0111 2348 RDPENCDD - ok
11:37:46.0126 2348 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:37:46.0126 2348 RDPREFMP - ok
11:37:46.0157 2348 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:37:46.0173 2348 RDPWD - ok
11:37:46.0189 2348 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:37:46.0189 2348 rdyboost - ok
11:37:46.0220 2348 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
11:37:46.0220 2348 RemoteAccess - ok
11:37:46.0235 2348 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:37:46.0251 2348 RemoteRegistry - ok
11:37:46.0267 2348 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:37:46.0282 2348 RpcEptMapper - ok
11:37:46.0298 2348 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
11:37:46.0298 2348 RpcLocator - ok
11:37:46.0329 2348 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
11:37:46.0345 2348 RpcSs - ok
11:37:46.0360 2348 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:37:46.0360 2348 rspndr - ok
11:37:46.0376 2348 [ 7DFD48E24479B68B258D8770121155A0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
11:37:46.0391 2348 RTL8167 - ok
11:37:47.0281 2348 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
11:37:47.0281 2348 SamSs - ok
11:37:47.0312 2348 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:37:47.0312 2348 sbp2port - ok
11:37:47.0327 2348 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:37:47.0343 2348 SCardSvr - ok
11:37:47.0359 2348 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:37:47.0359 2348 scfilter - ok
11:37:47.0405 2348 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
11:37:47.0421 2348 Schedule - ok
11:37:47.0437 2348 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:37:47.0452 2348 SCPolicySvc - ok
11:37:47.0468 2348 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:37:47.0483 2348 SDRSVC - ok
11:37:47.0499 2348 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:37:47.0499 2348 secdrv - ok
11:37:47.0515 2348 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
11:37:47.0515 2348 seclogon - ok
11:37:47.0530 2348 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
11:37:47.0546 2348 SENS - ok
11:37:47.0561 2348 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:37:47.0561 2348 Serenum - ok
11:37:47.0577 2348 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\drivers\serial.sys
11:37:47.0593 2348 Serial - ok
11:37:47.0608 2348 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:37:47.0608 2348 sermouse - ok
11:37:47.0655 2348 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
11:37:47.0671 2348 SessionEnv - ok
11:37:47.0686 2348 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:37:47.0686 2348 sffdisk - ok
11:37:47.0702 2348 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:37:47.0702 2348 sffp_mmc - ok
11:37:47.0717 2348 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:37:47.0717 2348 sffp_sd - ok
11:37:47.0733 2348 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:37:47.0733 2348 sfloppy - ok
11:37:47.0764 2348 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:37:47.0780 2348 SharedAccess - ok
11:37:47.0811 2348 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:37:47.0827 2348 ShellHWDetection - ok
11:37:47.0842 2348 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:37:47.0842 2348 sisagp - ok
11:37:47.0858 2348 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:37:47.0858 2348 SiSRaid2 - ok
11:37:47.0873 2348 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:37:47.0889 2348 SiSRaid4 - ok
11:37:47.0905 2348 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:37:47.0905 2348 Smb - ok
11:37:47.0936 2348 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:37:47.0951 2348 SNMPTRAP - ok
11:37:47.0967 2348 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
11:37:47.0967 2348 spldr - ok
11:37:47.0998 2348 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
11:37:48.0014 2348 Spooler - ok
11:37:48.0170 2348 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
11:37:48.0217 2348 sppsvc - ok
11:37:48.0232 2348 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:37:48.0248 2348 sppuinotify - ok
11:37:48.0263 2348 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:37:48.0279 2348 srv - ok
11:37:48.0310 2348 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:37:48.0326 2348 srv2 - ok
11:37:48.0341 2348 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:37:48.0341 2348 srvnet - ok
11:37:48.0373 2348 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:37:48.0373 2348 SSDPSRV - ok
11:37:48.0388 2348 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:37:48.0404 2348 SstpSvc - ok
11:37:48.0419 2348 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:37:48.0435 2348 stexstor - ok
11:37:48.0466 2348 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
11:37:48.0497 2348 StiSvc - ok
11:37:48.0513 2348 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:37:48.0513 2348 swenum - ok
11:37:48.0544 2348 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
11:37:48.0560 2348 swprv - ok
11:37:48.0622 2348 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
11:37:48.0669 2348 SysMain - ok
11:37:48.0700 2348 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:37:48.0716 2348 TabletInputService - ok
11:37:48.0747 2348 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
11:37:48.0763 2348 TapiSrv - ok
11:37:48.0778 2348 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
11:37:48.0778 2348 TBS - ok
11:37:48.0856 2348 [ 7C0507D2391AF5933600CBCED799F277 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:37:48.0903 2348 Tcpip - ok
11:37:48.0965 2348 [ 7C0507D2391AF5933600CBCED799F277 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:37:48.0981 2348 TCPIP6 - ok
11:37:48.0997 2348 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:37:49.0012 2348 tcpipreg - ok
11:37:49.0028 2348 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:37:49.0043 2348 TDPIPE - ok
11:37:49.0059 2348 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:37:49.0059 2348 TDTCP - ok
11:37:49.0075 2348 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:37:49.0075 2348 tdx - ok
11:37:49.0090 2348 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:37:49.0106 2348 TermDD - ok
11:37:49.0137 2348 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
11:37:49.0153 2348 TermService - ok
11:37:49.0168 2348 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
11:37:49.0168 2348 Themes - ok
11:37:49.0184 2348 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
11:37:49.0199 2348 THREADORDER - ok
11:37:49.0215 2348 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
11:37:49.0231 2348 TrkWks - ok
11:37:49.0246 2348 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:37:49.0262 2348 TrustedInstaller - ok
11:37:49.0277 2348 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:37:49.0293 2348 tssecsrv - ok
11:37:49.0309 2348 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:37:49.0309 2348 TsUsbFlt - ok
11:37:49.0324 2348 [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:37:49.0324 2348 TsUsbGD - ok
11:37:49.0340 2348 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:37:49.0355 2348 tunnel - ok
11:37:49.0371 2348 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:37:49.0371 2348 uagp35 - ok
11:37:49.0402 2348 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:37:49.0402 2348 udfs - ok
11:37:49.0433 2348 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:37:49.0449 2348 UI0Detect - ok
11:37:49.0465 2348 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:37:49.0465 2348 uliagpkx - ok
11:37:49.0480 2348 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:37:49.0496 2348 umbus - ok
11:37:49.0511 2348 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\drivers\umpass.sys
11:37:49.0511 2348 UmPass - ok
11:37:49.0543 2348 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
11:37:49.0558 2348 upnphost - ok
11:37:49.0574 2348 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:37:49.0589 2348 usbccgp - ok
11:37:49.0605 2348 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:37:49.0605 2348 usbcir - ok
11:37:49.0621 2348 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:37:49.0621 2348 usbehci - ok
11:37:49.0652 2348 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:37:49.0667 2348 usbhub - ok
11:37:49.0683 2348 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:37:49.0683 2348 usbohci - ok
11:37:49.0699 2348 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\drivers\usbprint.sys
11:37:49.0699 2348 usbprint - ok
11:37:49.0714 2348 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:37:49.0730 2348 USBSTOR - ok
11:37:49.0745 2348 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:37:49.0745 2348 usbuhci - ok
11:37:49.0761 2348 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:37:49.0777 2348 usbvideo - ok
11:37:49.0792 2348 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
11:37:49.0808 2348 UxSms - ok
11:37:49.0808 2348 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
11:37:49.0823 2348 VaultSvc - ok
11:37:49.0839 2348 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:37:49.0839 2348 vdrvroot - ok
11:37:49.0870 2348 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
11:37:49.0901 2348 vds - ok
11:37:49.0917 2348 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:37:49.0917 2348 vga - ok
11:37:49.0933 2348 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:37:49.0933 2348 VgaSave - ok
11:37:49.0964 2348 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:37:49.0964 2348 vhdmp - ok
11:37:49.0979 2348 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:37:49.0995 2348 viaagp - ok
11:37:50.0011 2348 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:37:50.0011 2348 ViaC7 - ok
11:37:50.0026 2348 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
11:37:50.0026 2348 viaide - ok
11:37:50.0042 2348 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:37:50.0057 2348 volmgr - ok
11:37:50.0073 2348 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:37:50.0089 2348 volmgrx - ok
11:37:50.0120 2348 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:37:50.0120 2348 volsnap - ok
11:37:50.0151 2348 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:37:50.0151 2348 vsmraid - ok
11:37:50.0213 2348 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
11:37:50.0229 2348 VSS - ok
11:37:50.0245 2348 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:37:50.0245 2348 vwifibus - ok
11:37:50.0260 2348 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:37:50.0276 2348 vwififlt - ok
11:37:50.0291 2348 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:37:50.0291 2348 vwifimp - ok
11:37:50.0323 2348 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
11:37:50.0338 2348 W32Time - ok
11:37:50.0354 2348 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:37:50.0354 2348 WacomPen - ok
11:37:50.0385 2348 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:37:50.0385 2348 WANARP - ok
11:37:50.0401 2348 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:37:50.0401 2348 Wanarpv6 - ok
11:37:50.0479 2348 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
11:37:50.0541 2348 wbengine - ok
11:37:50.0572 2348 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:37:50.0588 2348 WbioSrvc - ok
11:37:50.0619 2348 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:37:50.0635 2348 wcncsvc - ok
11:37:50.0650 2348 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:37:50.0666 2348 WcsPlugInService - ok
11:37:50.0681 2348 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\drivers\wd.sys
11:37:50.0681 2348 Wd - ok
11:37:50.0713 2348 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:37:50.0728 2348 Wdf01000 - ok
11:37:50.0744 2348 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:37:50.0759 2348 WdiServiceHost - ok
11:37:50.0775 2348 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:37:50.0791 2348 WdiSystemHost - ok
11:37:50.0806 2348 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
11:37:50.0822 2348 WebClient - ok
11:37:50.0837 2348 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:37:50.0853 2348 Wecsvc - ok
11:37:50.0869 2348 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:37:50.0884 2348 wercplsupport - ok
11:37:50.0900 2348 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
11:37:50.0931 2348 WerSvc - ok
11:37:50.0947 2348 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:37:50.0947 2348 WfpLwf - ok
11:37:50.0962 2348 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:37:50.0962 2348 WIMMount - ok
11:37:51.0009 2348 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:37:51.0040 2348 WinDefend - ok
11:37:51.0056 2348 WinHttpAutoProxySvc - ok
11:37:51.0087 2348 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:37:51.0103 2348 Winmgmt - ok
11:37:51.0165 2348 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
11:37:51.0181 2348 WinRM - ok
11:37:51.0243 2348 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:37:51.0274 2348 Wlansvc - ok
11:37:51.0305 2348 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:37:51.0305 2348 WmiAcpi - ok
11:37:51.0337 2348 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:37:51.0337 2348 wmiApSrv - ok
11:37:51.0399 2348 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:37:51.0446 2348 WMPNetworkSvc - ok
11:37:51.0461 2348 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:37:51.0477 2348 WPCSvc - ok
11:37:51.0493 2348 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:37:51.0508 2348 WPDBusEnum - ok
11:37:51.0524 2348 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:37:51.0524 2348 ws2ifsl - ok
11:37:51.0555 2348 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
11:37:51.0555 2348 wscsvc - ok
11:37:51.0571 2348 WSearch - ok
11:37:51.0680 2348 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:37:51.0773 2348 wuauserv - ok
11:37:51.0789 2348 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:37:51.0805 2348 WudfPf - ok
11:37:51.0820 2348 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:37:51.0836 2348 WUDFRd - ok
11:37:51.0851 2348 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:37:51.0867 2348 wudfsvc - ok
11:37:51.0883 2348 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
11:37:51.0898 2348 WwanSvc - ok
11:37:51.0945 2348 ================ Scan global ===============================
11:37:51.0945 2348 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
11:37:51.0976 2348 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
11:37:51.0992 2348 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
11:37:52.0007 2348 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
11:37:52.0039 2348 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
11:37:52.0054 2348 [Global] - ok
11:37:52.0054 2348 ================ Scan MBR ==================================
11:37:52.0070 2348 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:37:52.0553 2348 \Device\Harddisk0\DR0 - ok
11:37:52.0553 2348 ================ Scan VBR ==================================
11:37:52.0569 2348 [ 4FFD5D843C4BCC6DEFFE2B782ADD401A ] \Device\Harddisk0\DR0\Partition1
11:37:52.0569 2348 \Device\Harddisk0\DR0\Partition1 - ok
11:37:52.0585 2348 [ CFF32E4F12D42C546AC82442CED927C4 ] \Device\Harddisk0\DR0\Partition2
11:37:52.0585 2348 \Device\Harddisk0\DR0\Partition2 - ok
11:37:52.0585 2348 ============================================================
11:37:52.0585 2348 Scan finished
11:37:52.0585 2348 ============================================================
11:37:52.0616 3736 Detected object count: 0
11:37:52.0616 3736 Actual detected object count: 0
11:38:01.0773 4088 Deinitialize success