Co fixnout a odstranit

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 08:47

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:46:02, on 4.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16470)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1194 ... 1e4c6419f2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchab.com/?aff=7&uid=3fe10e65 ... 1c2320d43a
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (file missing)
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (file missing)
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Global Startup: Vyhledat aktualizace.lnk = C:\Program Files (x86)\Common Files\PCTV Systems\WebUpdater\WebUpdater.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{FA226787-1039-4D14-8EE7-07D39403362B}: NameServer = 192.168.0.1
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs:
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8289 bytes
Tady je můj log z HJT prosím o radu co fixnout a vyčistit :).
Děkuji všem za rady.

Reklama

Příspěvekod **memphisto** » 04 dub 2013 09:45

Odinstaluj SweetIM

v logu fixni:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1194 ... 1e4c6419f2
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchab.com/?aff=7&uid=3fe10e65 ... 1c2320d43a
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (file missing)
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (file missing)
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 10:24

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
http://www.malwarebytes.org

Verze: v2013.04.04.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
*******:: DELL [administrátor]

Ochrana: Povolena

4.4.2013 10:18:40
MBAM-log-2013-04-04 (10-23-49).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 234780
Uplynulý čas: 4 minut, 34 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F} (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Špatný: (http://searchab.com/?aff=7&uid=3fe10e65 ... 1c2320d43a) Dobrý: (http://www.google.com) -> Nebyla provedena žádná instrukce.

Nalezené složky: 2
C:\ProgramData\MagniPic (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.
C:\ProgramData\MagniPic\data (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 4
C:\ProgramData\MagniPic\510d4adee9dbb.tlb (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.
C:\ProgramData\MagniPic\510d4adee9dbb.dll (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.
C:\ProgramData\MagniPic\settings.ini (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.
C:\ProgramData\MagniPic\data\MagniPic.dat (PUP.Adware.Magnipic) -> Nebyla provedena žádná instrukce.

(konec)

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 10:26

# AdwCleaner v2.200 - Log vytvooen 04/04/2013 v 10:25:17
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : ******* - DELL
# Spuštin systém : Normální
# Spuštino z : C:\Users\Mufíček\Desktop\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Nalezeno : C:\ProgramData\Ask
Složka Nalezeno : C:\ProgramData\Babylon
Složka Nalezeno : C:\ProgramData\clsoft ltd
Složka Nalezeno : C:\ProgramData\InstallMate
Složka Nalezeno : C:\ProgramData\MagniPic
Složka Nalezeno : C:\ProgramData\RightClick
Složka Nalezeno : C:\ProgramData\Tarma Installer
Složka Nalezeno : C:\Users\MUFEK~1\AppData\Local\Temp\CT3176921
Složka Nalezeno : C:\Users\Mufíček\AppData\Local\Conduit
Složka Nalezeno : C:\Users\Mufíček\AppData\Local\PackageAware
Složka Nalezeno : C:\Users\Mufíček\AppData\LocalLow\Conduit
Složka Nalezeno : C:\Users\Mufíček\AppData\Roaming\Babylon
Složka Nalezeno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\extensions\{88ac3cb6-596b-4217-964c-b6757ef9602d}
Složka Nalezeno : C:\Users\Mufíček\AppData\Roaming\NCdownloader
Soubor Nalezeno : C:\END
Soubor Nalezeno : C:\Users\MUFEK~1\AppData\Local\Temp\Uninstall.exe
Soubor Nalezeno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\Askcom.xml
Soubor Nalezeno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\Conduit.xml
Soubor Nalezeno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\Searchab.xml
Soubor Nalezeno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\SweetIm.xml

***** [Registry] *****

Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Klíe Nalezeno : HKCU\Software\1ClickDownload
Klíe Nalezeno : HKCU\Software\AppDataLow\SProtector
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKCU\Software\StartSearch
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Nalezeno : HKLM\Software\Babylon
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Nalezeno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Klíe Nalezeno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Klíe Nalezeno : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Klíe Nalezeno : HKLM\Software\SP Global
Klíe Nalezeno : HKLM\Software\SProtector
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKU\S-1-5-21-393715830-4062545900-1420739240-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.8112.16470

[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://searchab.com/?aff=7&uid=3fe10e65 ... 1c2320d43a

-\\ Mozilla Firefox v20.0 (cs)

Soubor : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\prefs.js

Nalezeno : user_pref("aol_toolbar.default.homepage.check", false);
Nalezeno : user_pref("aol_toolbar.default.search.check", false);
Nalezeno : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Nalezeno : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Nalezeno : user_pref("extensions.pcln.preftree.treestate", "{\"folders\":[\"aol_toolbar\"],\"item\":\"sweetim\"[...]
Nalezeno : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Nalezeno : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Nalezeno : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Nalezeno : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Nalezeno : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Nalezeno : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Nalezeno : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Nalezeno : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v [Nemohu získat verzi]

Soubor : C:\Users\Mufíček\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [6861 octets] - [04/04/2013 10:25:17]

########## EOF - C:\AdwCleaner[R1].txt - [6921 octets] ##########

Příspěvekod **memphisto** » 04 dub 2013 10:47

V Mbam i AdwCleaner nech vše smazat a dodej logy

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 10:59

# AdwCleaner v2.200 - Log vytvooen 04/04/2013 v 10:53:48
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : Mufíček - DELL
# Spuštin systém : Normální
# Spuštino z : C:\Users\Mufíček\Desktop\adwcleaner.exe
# Volba [Vymazat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Vymazáno : C:\ProgramData\Ask
Složka Vymazáno : C:\ProgramData\Babylon
Složka Vymazáno : C:\ProgramData\clsoft ltd
Složka Vymazáno : C:\ProgramData\InstallMate
Složka Vymazáno : C:\ProgramData\MagniPic
Složka Vymazáno : C:\ProgramData\RightClick
Složka Vymazáno : C:\ProgramData\Tarma Installer
Složka Vymazáno : C:\Users\MUFEK~1\AppData\Local\Temp\CT3176921
Složka Vymazáno : C:\Users\Mufíček\AppData\Local\Conduit
Složka Vymazáno : C:\Users\Mufíček\AppData\Local\PackageAware
Složka Vymazáno : C:\Users\Mufíček\AppData\LocalLow\Conduit
Složka Vymazáno : C:\Users\Mufíček\AppData\Roaming\Babylon
Složka Vymazáno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\extensions\{88ac3cb6-596b-4217-964c-b6757ef9602d}
Složka Vymazáno : C:\Users\Mufíček\AppData\Roaming\NCdownloader
Soubor Vymazáno : C:\END
Soubor Vymazáno : C:\Users\MUFEK~1\AppData\Local\Temp\Uninstall.exe
Soubor Vymazáno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\Askcom.xml
Soubor Vymazáno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\Conduit.xml
Soubor Vymazáno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\Searchab.xml
Soubor Vymazáno : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\searchplugins\SweetIm.xml

***** [Registry] *****

Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Vymazáno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Klíe Vymazáno : HKCU\Software\1ClickDownload
Klíe Vymazáno : HKCU\Software\AppDataLow\SProtector
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKCU\Software\StartSearch
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klíe Vymazáno : HKLM\Software\Babylon
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Vymazáno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Klíe Vymazáno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Klíe Vymazáno : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Klíe Vymazáno : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Klíe Vymazáno : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Klíe Vymazáno : HKLM\Software\SP Global
Klíe Vymazáno : HKLM\Software\SProtector
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.8112.16470

Zaminino : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://searchab.com/?aff=7&uid=3fe10e65 ... 1c2320d43a --> hxxp://www.google.com

-\\ Mozilla Firefox v20.0 (cs)

Soubor : C:\Users\Mufíček\AppData\Roaming\Mozilla\Firefox\Profiles\ii1nn44e.default\prefs.js

Vymazáno : user_pref("aol_toolbar.default.homepage.check", false);
Vymazáno : user_pref("aol_toolbar.default.search.check", false);
Vymazáno : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Vymazáno : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Vymazáno : user_pref("extensions.pcln.preftree.treestate", "{\"folders\":[\"aol_toolbar\"],\"item\":\"sweetim\"[...]
Vymazáno : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Vymazáno : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Vymazáno : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Vymazáno : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Vymazáno : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Vymazáno : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Vymazáno : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Vymazáno : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v [Nemohu získat verzi]

Soubor : C:\Users\Mufíček\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

*************************

AdwCleaner[S1].txt - [6740 octets] - [04/04/2013 10:53:48]

########## EOF - C:\AdwCleaner[S1].txt - [6800 octets] ##########

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 11:01

V tom Mbam to nemůžu najít :O

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 11:37

11:33:33.0977 1660 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:33:34.0217 1660 ============================================================
11:33:34.0217 1660 Current date / time: 2013/04/04 11:33:34.0217
11:33:34.0217 1660 SystemInfo:
11:33:34.0217 1660
11:33:34.0217 1660 OS Version: 6.1.7601 ServicePack: 1.0
11:33:34.0217 1660 Product type: Workstation
11:33:34.0217 1660 ComputerName: DELL
11:33:34.0217 1660 UserName: *******
11:33:34.0217 1660 Windows directory: C:\Windows
11:33:34.0217 1660 System windows directory: C:\Windows
11:33:34.0217 1660 Running under WOW64
11:33:34.0217 1660 Processor architecture: Intel x64
11:33:34.0217 1660 Number of processors: 2
11:33:34.0217 1660 Page size: 0x1000
11:33:34.0217 1660 Boot type: Normal boot
11:33:34.0217 1660 ============================================================
11:33:35.0844 1660 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:33:35.0851 1660 Drive \Device\Harddisk1\DR1 - Size: 0xEFC00000 (3.75 Gb), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:33:35.0856 1660 ============================================================
11:33:35.0856 1660 \Device\Harddisk0\DR0:
11:33:35.0867 1660 MBR partitions:
11:33:35.0867 1660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
11:33:35.0867 1660 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x129B4800
11:33:35.0867 1660 \Device\Harddisk1\DR1:
11:33:35.0869 1660 MBR partitions:
11:33:35.0869 1660 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x3E, BlocksNum 0x77C5AA
11:33:35.0869 1660 ============================================================
11:33:35.0949 1660 C: <-> \Device\Harddisk0\DR0\Partition2
11:33:35.0949 1660 ============================================================
11:33:35.0950 1660 Initialize success
11:33:35.0950 1660 ============================================================
11:33:52.0100 0496 ============================================================
11:33:52.0100 0496 Scan started
11:33:52.0100 0496 Mode: Manual;
11:33:52.0100 0496 ============================================================
11:33:53.0840 0496 ================ Scan system memory ========================
11:33:53.0840 0496 System memory - ok
11:33:53.0841 0496 ================ Scan services =============================
11:33:54.0006 0496 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
11:33:54.0009 0496 1394ohci - ok
11:33:54.0074 0496 [ C31715C4BCB01B73F6B9F4F445C6BD25 ] AbilisT C:\Windows\system32\Drivers\AbilisBdaTuner.sys
11:33:54.0077 0496 AbilisT - ok
11:33:54.0127 0496 [ 1CFFE9C06E66A57DAE1452E449A58240 ] Accelerometer C:\Windows\system32\drivers\Accelerometer.sys
11:33:54.0129 0496 Accelerometer - ok
11:33:54.0179 0496 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:33:54.0184 0496 ACPI - ok
11:33:54.0231 0496 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:33:54.0233 0496 AcpiPmi - ok
11:33:54.0405 0496 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:33:54.0407 0496 AdobeARMservice - ok
11:33:54.0580 0496 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:33:54.0584 0496 AdobeFlashPlayerUpdateSvc - ok
11:33:54.0641 0496 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:33:54.0648 0496 adp94xx - ok
11:33:54.0722 0496 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:33:54.0727 0496 adpahci - ok
11:33:54.0755 0496 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:33:54.0758 0496 adpu320 - ok
11:33:54.0787 0496 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:33:54.0789 0496 AeLookupSvc - ok
11:33:54.0854 0496 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:33:54.0871 0496 AFD - ok
11:33:54.0946 0496 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
11:33:54.0981 0496 AgereSoftModem - ok
11:33:55.0026 0496 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:33:55.0028 0496 agp440 - ok
11:33:55.0043 0496 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:33:55.0045 0496 ALG - ok
11:33:55.0055 0496 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:33:55.0056 0496 aliide - ok
11:33:55.0062 0496 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:33:55.0063 0496 amdide - ok
11:33:55.0111 0496 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:33:55.0113 0496 AmdK8 - ok
11:33:55.0158 0496 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
11:33:55.0160 0496 AmdPPM - ok
11:33:55.0219 0496 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:33:55.0222 0496 amdsata - ok
11:33:55.0237 0496 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:33:55.0240 0496 amdsbs - ok
11:33:55.0282 0496 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:33:55.0283 0496 amdxata - ok
11:33:55.0337 0496 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:33:55.0339 0496 AppID - ok
11:33:55.0363 0496 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:33:55.0365 0496 AppIDSvc - ok
11:33:55.0419 0496 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:33:55.0421 0496 Appinfo - ok
11:33:55.0464 0496 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
11:33:55.0466 0496 arc - ok
11:33:55.0473 0496 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:33:55.0475 0496 arcsas - ok
11:33:55.0601 0496 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:33:55.0636 0496 aspnet_state - ok
11:33:55.0683 0496 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:33:55.0684 0496 AsyncMac - ok
11:33:55.0696 0496 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:33:55.0696 0496 atapi - ok
11:33:55.0727 0496 [ F1AC6C48F5DDA6AE94A8AF696E09733D ] ATSwpWDF C:\Windows\system32\Drivers\ATSwpWDF.sys
11:33:55.0762 0496 ATSwpWDF - ok
11:33:55.0843 0496 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:33:55.0877 0496 AudioEndpointBuilder - ok
11:33:55.0901 0496 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:33:55.0905 0496 AudioSrv - ok
11:33:55.0954 0496 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:33:55.0956 0496 AxInstSV - ok
11:33:56.0014 0496 [ 9F4320BA8E7CE2342517B182A2F2C0E6 ] azvusb C:\Windows\system32\DRIVERS\azvusb.sys
11:33:56.0016 0496 azvusb - ok
11:33:56.0078 0496 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:33:56.0086 0496 b06bdrv - ok
11:33:56.0137 0496 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:33:56.0142 0496 b57nd60a - ok
11:33:56.0290 0496 [ FB4FDA64F2E8552EAEB5986C3F34462C ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
11:33:56.0360 0496 BCM43XX - ok
11:33:56.0425 0496 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:33:56.0427 0496 BDESVC - ok
11:33:56.0486 0496 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:33:56.0488 0496 Beep - ok
11:33:56.0551 0496 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:33:56.0559 0496 BFE - ok
11:33:56.0605 0496 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
11:33:56.0647 0496 BITS - ok
11:33:56.0695 0496 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:33:56.0697 0496 blbdrive - ok
11:33:56.0758 0496 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:33:56.0760 0496 bowser - ok
11:33:56.0819 0496 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:33:56.0820 0496 BrFiltLo - ok
11:33:56.0826 0496 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:33:56.0828 0496 BrFiltUp - ok
11:33:56.0852 0496 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:33:56.0855 0496 Browser - ok
11:33:56.0869 0496 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:33:56.0874 0496 Brserid - ok
11:33:56.0879 0496 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:33:56.0880 0496 BrSerWdm - ok
11:33:56.0893 0496 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:33:56.0895 0496 BrUsbMdm - ok
11:33:56.0904 0496 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:33:56.0906 0496 BrUsbSer - ok
11:33:57.0040 0496 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:33:57.0067 0496 BthEnum - ok
11:33:57.0158 0496 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:33:57.0159 0496 BTHMODEM - ok
11:33:57.0190 0496 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:33:57.0194 0496 BthPan - ok
11:33:57.0245 0496 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:33:57.0253 0496 BTHPORT - ok
11:33:57.0282 0496 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:33:57.0284 0496 bthserv - ok
11:33:57.0318 0496 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:33:57.0320 0496 BTHUSB - ok
11:33:57.0370 0496 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:33:57.0372 0496 cdfs - ok
11:33:57.0439 0496 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:33:57.0442 0496 cdrom - ok
11:33:57.0494 0496 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:33:57.0496 0496 CertPropSvc - ok
11:33:57.0541 0496 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
11:33:57.0543 0496 circlass - ok
11:33:57.0603 0496 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:33:57.0609 0496 CLFS - ok
11:33:57.0662 0496 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:33:57.0666 0496 clr_optimization_v2.0.50727_32 - ok
11:33:57.0707 0496 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:33:57.0719 0496 clr_optimization_v2.0.50727_64 - ok
11:33:57.0803 0496 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:33:57.0868 0496 clr_optimization_v4.0.30319_32 - ok
11:33:57.0891 0496 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:33:57.0909 0496 clr_optimization_v4.0.30319_64 - ok
11:33:57.0958 0496 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:33:57.0959 0496 CmBatt - ok
11:33:57.0971 0496 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:33:57.0972 0496 cmdide - ok
11:33:58.0046 0496 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
11:33:58.0052 0496 CNG - ok
11:33:58.0082 0496 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:33:58.0083 0496 Compbatt - ok
11:33:58.0094 0496 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:33:58.0096 0496 CompositeBus - ok
11:33:58.0101 0496 COMSysApp - ok
11:33:58.0127 0496 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:33:58.0129 0496 crcdisk - ok
11:33:58.0198 0496 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:33:58.0202 0496 CryptSvc - ok
11:33:58.0260 0496 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:33:58.0267 0496 DcomLaunch - ok
11:33:58.0333 0496 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:33:58.0339 0496 defragsvc - ok
11:33:58.0354 0496 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:33:58.0356 0496 DfsC - ok
11:33:58.0405 0496 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:33:58.0410 0496 Dhcp - ok
11:33:58.0426 0496 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:33:58.0428 0496 discache - ok
11:33:58.0503 0496 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
11:33:58.0505 0496 Disk - ok
11:33:58.0564 0496 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:33:58.0568 0496 Dnscache - ok
11:33:58.0604 0496 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:33:58.0608 0496 dot3svc - ok
11:33:58.0623 0496 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:33:58.0626 0496 DPS - ok
11:33:58.0674 0496 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:33:58.0676 0496 drmkaud - ok
11:33:58.0716 0496 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:33:58.0750 0496 DXGKrnl - ok
11:33:58.0811 0496 [ 416A2007878ED1D6FC5DDDB9E1F6DB3E ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys
11:33:58.0816 0496 e1express - ok
11:33:58.0840 0496 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:33:58.0843 0496 EapHost - ok
11:33:58.0937 0496 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:33:59.0040 0496 ebdrv - ok
11:33:59.0061 0496 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:33:59.0063 0496 EFS - ok
11:33:59.0160 0496 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:33:59.0177 0496 ehRecvr - ok
11:33:59.0189 0496 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:33:59.0192 0496 ehSched - ok
11:33:59.0248 0496 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:33:59.0256 0496 elxstor - ok
11:33:59.0270 0496 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:33:59.0272 0496 ErrDev - ok
11:33:59.0308 0496 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:33:59.0325 0496 EventSystem - ok
11:33:59.0376 0496 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:33:59.0379 0496 exfat - ok
11:33:59.0403 0496 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:33:59.0406 0496 fastfat - ok
11:33:59.0478 0496 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:33:59.0495 0496 Fax - ok
11:33:59.0505 0496 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
11:33:59.0507 0496 fdc - ok
11:33:59.0519 0496 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:33:59.0520 0496 fdPHost - ok
11:33:59.0534 0496 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:33:59.0536 0496 FDResPub - ok
11:33:59.0551 0496 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:33:59.0553 0496 FileInfo - ok
11:33:59.0558 0496 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:33:59.0560 0496 Filetrace - ok
11:33:59.0573 0496 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
11:33:59.0575 0496 flpydisk - ok
11:33:59.0583 0496 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:33:59.0588 0496 FltMgr - ok
11:33:59.0679 0496 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
11:33:59.0714 0496 FontCache - ok
11:33:59.0762 0496 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:33:59.0764 0496 FontCache3.0.0.0 - ok
11:33:59.0768 0496 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:33:59.0770 0496 FsDepends - ok
11:33:59.0790 0496 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:33:59.0791 0496 Fs_Rec - ok
11:33:59.0816 0496 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:33:59.0820 0496 fvevol - ok
11:33:59.0851 0496 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:33:59.0853 0496 gagp30kx - ok
11:33:59.0893 0496 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:33:59.0918 0496 gpsvc - ok
11:33:59.0931 0496 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:33:59.0932 0496 hcw85cir - ok
11:33:59.0985 0496 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:33:59.0992 0496 HdAudAddService - ok
11:34:00.0004 0496 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:34:00.0007 0496 HDAudBus - ok
11:34:00.0018 0496 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:34:00.0019 0496 HidBatt - ok
11:34:00.0034 0496 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:34:00.0037 0496 HidBth - ok
11:34:00.0047 0496 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
11:34:00.0049 0496 HidIr - ok
11:34:00.0065 0496 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
11:34:00.0066 0496 hidserv - ok
11:34:00.0120 0496 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:34:00.0122 0496 HidUsb - ok
11:34:00.0267 0496 [ 1256F6834307B38594CEB034BAF52568 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
11:34:00.0268 0496 HiPatchService - ok
11:34:00.0295 0496 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:34:00.0297 0496 hkmsvc - ok
11:34:00.0328 0496 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:34:00.0332 0496 HomeGroupListener - ok
11:34:00.0364 0496 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:34:00.0368 0496 HomeGroupProvider - ok
11:34:00.0421 0496 [ 05712FDDBD45A5864EB326FAABC6A4E3 ] hpdskflt C:\Windows\system32\drivers\hpdskflt.sys
11:34:00.0422 0496 hpdskflt - ok
11:34:00.0477 0496 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:34:00.0480 0496 HpSAMD - ok
11:34:00.0510 0496 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:34:00.0528 0496 HTTP - ok
11:34:00.0533 0496 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:34:00.0534 0496 hwpolicy - ok
11:34:00.0539 0496 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:34:00.0541 0496 i8042prt - ok
11:34:00.0606 0496 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:34:00.0613 0496 iaStorV - ok
11:34:00.0669 0496 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:34:00.0694 0496 idsvc - ok
11:34:00.0875 0496 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:34:01.0026 0496 igfx - ok
11:34:01.0081 0496 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:34:01.0083 0496 iirsp - ok
11:34:01.0127 0496 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:34:01.0153 0496 IKEEXT - ok
11:34:01.0167 0496 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:34:01.0169 0496 intelide - ok
11:34:01.0200 0496 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:34:01.0203 0496 intelppm - ok
11:34:01.0242 0496 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:34:01.0244 0496 IPBusEnum - ok
11:34:01.0261 0496 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:34:01.0263 0496 IpFilterDriver - ok
11:34:01.0291 0496 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:34:01.0300 0496 iphlpsvc - ok
11:34:01.0319 0496 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:34:01.0321 0496 IPMIDRV - ok
11:34:01.0383 0496 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:34:01.0386 0496 IPNAT - ok
11:34:01.0435 0496 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:34:01.0436 0496 IRENUM - ok
11:34:01.0491 0496 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:34:01.0492 0496 isapnp - ok
11:34:01.0523 0496 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:34:01.0528 0496 iScsiPrt - ok
11:34:01.0533 0496 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:34:01.0535 0496 kbdclass - ok
11:34:01.0560 0496 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:34:01.0562 0496 kbdhid - ok
11:34:01.0593 0496 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:34:01.0594 0496 KeyIso - ok
11:34:01.0627 0496 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:34:01.0629 0496 KSecDD - ok
11:34:01.0646 0496 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:34:01.0648 0496 KSecPkg - ok
11:34:01.0658 0496 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:34:01.0659 0496 ksthunk - ok
11:34:01.0690 0496 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:34:01.0708 0496 KtmRm - ok
11:34:01.0767 0496 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:34:01.0776 0496 LanmanServer - ok
11:34:01.0836 0496 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:34:01.0840 0496 LanmanWorkstation - ok
11:34:01.0892 0496 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:34:01.0894 0496 lltdio - ok
11:34:01.0958 0496 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:34:01.0964 0496 lltdsvc - ok
11:34:01.0977 0496 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:34:01.0979 0496 lmhosts - ok
11:34:02.0026 0496 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:34:02.0029 0496 LSI_FC - ok
11:34:02.0052 0496 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:34:02.0054 0496 LSI_SAS - ok
11:34:02.0068 0496 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
11:34:02.0070 0496 LSI_SAS2 - ok
11:34:02.0100 0496 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:34:02.0102 0496 LSI_SCSI - ok
11:34:02.0135 0496 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:34:02.0138 0496 luafv - ok
11:34:02.0206 0496 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:34:02.0208 0496 MBAMProtector - ok
11:34:02.0265 0496 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:34:02.0270 0496 MBAMScheduler - ok
11:34:02.0350 0496 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:34:02.0368 0496 MBAMService - ok
11:34:02.0422 0496 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:34:02.0424 0496 Mcx2Svc - ok
11:34:02.0448 0496 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
11:34:02.0450 0496 megasas - ok
11:34:02.0508 0496 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
11:34:02.0513 0496 MegaSR - ok
11:34:02.0534 0496 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:34:02.0537 0496 MMCSS - ok
11:34:02.0548 0496 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:34:02.0549 0496 Modem - ok
11:34:02.0572 0496 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:34:02.0574 0496 monitor - ok
11:34:02.0587 0496 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:34:02.0588 0496 mouclass - ok
11:34:02.0634 0496 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:34:02.0636 0496 mouhid - ok
11:34:02.0642 0496 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:34:02.0644 0496 mountmgr - ok
11:34:02.0726 0496 [ 1C9B83F6A2D1F414F0ACD28D75605607 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:34:02.0728 0496 MozillaMaintenance - ok
11:34:02.0744 0496 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:34:02.0748 0496 mpio - ok
11:34:02.0753 0496 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:34:02.0754 0496 mpsdrv - ok
11:34:02.0794 0496 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:34:02.0820 0496 MpsSvc - ok
11:34:02.0827 0496 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:34:02.0829 0496 MRxDAV - ok
11:34:02.0855 0496 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:34:02.0859 0496 mrxsmb - ok
11:34:02.0879 0496 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:34:02.0884 0496 mrxsmb10 - ok
11:34:02.0901 0496 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:34:02.0903 0496 mrxsmb20 - ok
11:34:02.0933 0496 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:34:02.0935 0496 msahci - ok
11:34:02.0946 0496 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:34:02.0949 0496 msdsm - ok
11:34:02.0970 0496 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:34:02.0973 0496 MSDTC - ok
11:34:02.0995 0496 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:34:02.0997 0496 Msfs - ok
11:34:03.0006 0496 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:34:03.0007 0496 mshidkmdf - ok
11:34:03.0011 0496 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:34:03.0013 0496 msisadrv - ok
11:34:03.0076 0496 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:34:03.0080 0496 MSiSCSI - ok
11:34:03.0084 0496 msiserver - ok
11:34:03.0129 0496 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:34:03.0130 0496 MSKSSRV - ok
11:34:03.0136 0496 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:34:03.0137 0496 MSPCLOCK - ok
11:34:03.0143 0496 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:34:03.0144 0496 MSPQM - ok
11:34:03.0162 0496 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:34:03.0178 0496 MsRPC - ok
11:34:03.0185 0496 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:34:03.0187 0496 mssmbios - ok
11:34:03.0199 0496 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:34:03.0200 0496 MSTEE - ok
11:34:03.0210 0496 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:34:03.0211 0496 MTConfig - ok
11:34:03.0217 0496 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:34:03.0218 0496 Mup - ok
11:34:03.0265 0496 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:34:03.0299 0496 napagent - ok
11:34:03.0383 0496 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:34:03.0388 0496 NativeWifiP - ok
11:34:03.0436 0496 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:34:03.0462 0496 NDIS - ok
11:34:03.0512 0496 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:34:03.0514 0496 NdisCap - ok
11:34:03.0542 0496 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:34:03.0543 0496 NdisTapi - ok
11:34:03.0548 0496 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:34:03.0550 0496 Ndisuio - ok
11:34:03.0556 0496 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:34:03.0558 0496 NdisWan - ok
11:34:03.0563 0496 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:34:03.0566 0496 NDProxy - ok
11:34:03.0571 0496 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:34:03.0572 0496 NetBIOS - ok
11:34:03.0581 0496 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:34:03.0586 0496 NetBT - ok
11:34:03.0596 0496 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
11:34:03.0597 0496 Netlogon - ok
11:34:03.0665 0496 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:34:03.0682 0496 Netman - ok
11:34:03.0713 0496 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:03.0737 0496 NetMsmqActivator - ok
11:34:03.0742 0496 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:03.0743 0496 NetPipeActivator - ok
11:34:03.0765 0496 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:34:03.0773 0496 netprofm - ok
11:34:03.0779 0496 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:03.0780 0496 NetTcpActivator - ok
11:34:03.0796 0496 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:03.0797 0496 NetTcpPortSharing - ok
11:34:03.0860 0496 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:34:03.0862 0496 nfrd960 - ok
11:34:03.0912 0496 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:34:03.0917 0496 NlaSvc - ok
11:34:03.0930 0496 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:34:03.0932 0496 Npfs - ok
11:34:03.0959 0496 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:34:03.0961 0496 nsi - ok
11:34:03.0965 0496 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:34:03.0967 0496 nsiproxy - ok
11:34:04.0033 0496 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:34:04.0077 0496 Ntfs - ok
11:34:04.0092 0496 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:34:04.0093 0496 Null - ok
11:34:04.0455 0496 [ D52CB937D5C23935F732B5D0BBAFF2D7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:34:04.0751 0496 nvlddmkm - ok
11:34:04.0814 0496 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:34:04.0817 0496 nvraid - ok
11:34:04.0851 0496 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:34:04.0854 0496 nvstor - ok
11:34:04.0900 0496 [ 3227EB0ECFBB7CB7F667AC2FFFCDC751 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:34:04.0926 0496 nvsvc - ok
11:34:04.0986 0496 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:34:04.0989 0496 nv_agp - ok
11:34:05.0001 0496 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:34:05.0004 0496 ohci1394 - ok
11:34:05.0036 0496 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:34:05.0053 0496 p2pimsvc - ok
11:34:05.0082 0496 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:34:05.0089 0496 p2psvc - ok
11:34:05.0140 0496 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
11:34:05.0142 0496 Parport - ok
11:34:05.0166 0496 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:34:05.0169 0496 partmgr - ok
11:34:05.0176 0496 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:34:05.0180 0496 PcaSvc - ok
11:34:05.0195 0496 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
11:34:05.0198 0496 pci - ok
11:34:05.0228 0496 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
11:34:05.0230 0496 pciide - ok
11:34:05.0243 0496 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:34:05.0247 0496 pcmcia - ok
11:34:05.0252 0496 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:34:05.0254 0496 pcw - ok
11:34:05.0284 0496 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:34:05.0318 0496 PEAUTH - ok
11:34:05.0409 0496 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:34:05.0411 0496 PerfHost - ok
11:34:05.0469 0496 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
11:34:05.0503 0496 pla - ok
11:34:05.0571 0496 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:34:05.0578 0496 PlugPlay - ok
11:34:05.0594 0496 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:34:05.0597 0496 PNRPAutoReg - ok
11:34:05.0605 0496 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:34:05.0608 0496 PNRPsvc - ok
11:34:05.0644 0496 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:34:05.0652 0496 PolicyAgent - ok
11:34:05.0675 0496 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:34:05.0680 0496 Power - ok
11:34:05.0742 0496 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:34:05.0745 0496 PptpMiniport - ok
11:34:05.0757 0496 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
11:34:05.0759 0496 Processor - ok
11:34:05.0790 0496 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
11:34:05.0794 0496 ProfSvc - ok
11:34:05.0811 0496 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:34:05.0813 0496 ProtectedStorage - ok
11:34:05.0875 0496 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:34:05.0877 0496 Psched - ok
11:34:05.0922 0496 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:34:05.0965 0496 ql2300 - ok
11:34:05.0977 0496 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:34:05.0980 0496 ql40xx - ok
11:34:06.0014 0496 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:34:06.0019 0496 QWAVE - ok
11:34:06.0035 0496 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:34:06.0037 0496 QWAVEdrv - ok
11:34:06.0054 0496 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:34:06.0055 0496 RasAcd - ok
11:34:06.0102 0496 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:34:06.0103 0496 RasAgileVpn - ok
11:34:06.0120 0496 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:34:06.0123 0496 RasAuto - ok
11:34:06.0129 0496 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:34:06.0132 0496 Rasl2tp - ok
11:34:06.0145 0496 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
11:34:06.0152 0496 RasMan - ok
11:34:06.0157 0496 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:34:06.0159 0496 RasPppoe - ok
11:34:06.0164 0496 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:34:06.0166 0496 RasSstp - ok
11:34:06.0198 0496 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:34:06.0204 0496 rdbss - ok
11:34:06.0215 0496 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
11:34:06.0216 0496 rdpbus - ok
11:34:06.0227 0496 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:34:06.0228 0496 RDPCDD - ok
11:34:06.0279 0496 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:34:06.0280 0496 RDPENCDD - ok
11:34:06.0292 0496 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:34:06.0293 0496 RDPREFMP - ok
11:34:06.0323 0496 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:34:06.0328 0496 RDPWD - ok
11:34:06.0356 0496 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:34:06.0360 0496 rdyboost - ok
11:34:06.0403 0496 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:34:06.0406 0496 RemoteAccess - ok
11:34:06.0430 0496 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:34:06.0435 0496 RemoteRegistry - ok
11:34:06.0495 0496 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:34:06.0499 0496 RFCOMM - ok
11:34:06.0554 0496 [ F45D6E12EB99A668F52201637C67C8F5 ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys
11:34:06.0556 0496 rimmptsk - ok
11:34:06.0608 0496 [ 82356915157AB59064A24993AE5BE8AA ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys
11:34:06.0610 0496 rimsptsk - ok
11:34:06.0640 0496 [ D018844DC53D8428410A2FEEEEE9373E ] rismcx64 C:\Windows\system32\DRIVERS\rismcx64.sys
11:34:06.0643 0496 rismcx64 - ok
11:34:06.0648 0496 [ C01A92A546854A3E34103B642F0F94A1 ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys
11:34:06.0649 0496 rismxdp - ok
11:34:06.0675 0496 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:34:06.0678 0496 RpcEptMapper - ok
11:34:06.0699 0496 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:34:06.0701 0496 RpcLocator - ok
11:34:06.0722 0496 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
11:34:06.0726 0496 RpcSs - ok
11:34:06.0782 0496 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:34:06.0784 0496 rspndr - ok
11:34:06.0873 0496 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
11:34:06.0875 0496 SamSs - ok
11:34:06.0891 0496 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:34:06.0894 0496 sbp2port - ok
11:34:06.0920 0496 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:34:06.0924 0496 SCardSvr - ok
11:34:06.0929 0496 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:34:06.0930 0496 scfilter - ok
11:34:06.0963 0496 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
11:34:06.0990 0496 Schedule - ok
11:34:07.0014 0496 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:34:07.0015 0496 SCPolicySvc - ok
11:34:07.0042 0496 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:34:07.0045 0496 sdbus - ok
11:34:07.0077 0496 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:34:07.0085 0496 SDRSVC - ok
11:34:07.0112 0496 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:34:07.0113 0496 secdrv - ok
11:34:07.0139 0496 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
11:34:07.0142 0496 seclogon - ok
11:34:07.0163 0496 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
11:34:07.0166 0496 SENS - ok
11:34:07.0179 0496 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:34:07.0181 0496 SensrSvc - ok
11:34:07.0254 0496 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
11:34:07.0255 0496 Serenum - ok
11:34:07.0377 0496 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
11:34:07.0428 0496 Serial - ok
11:34:07.0498 0496 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:34:07.0499 0496 sermouse - ok
11:34:07.0510 0496 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:34:07.0513 0496 SessionEnv - ok
11:34:07.0524 0496 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:34:07.0526 0496 sffdisk - ok
11:34:07.0530 0496 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:34:07.0531 0496 sffp_mmc - ok
11:34:07.0535 0496 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:34:07.0537 0496 sffp_sd - ok
11:34:07.0547 0496 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:34:07.0548 0496 sfloppy - ok
11:34:07.0614 0496 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:34:07.0621 0496 SharedAccess - ok
11:34:07.0652 0496 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:34:07.0669 0496 ShellHWDetection - ok
11:34:07.0731 0496 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:34:07.0733 0496 SiSRaid2 - ok
11:34:07.0744 0496 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:34:07.0746 0496 SiSRaid4 - ok
11:34:07.0956 0496 [ E42D201B0B53A94BD8E5B032EC83D843 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:34:08.0049 0496 Skype C2C Service - ok
11:34:08.0172 0496 [ 011E958267FEB6ED72F1BFA80072943C ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:34:08.0175 0496 SkypeUpdate - ok
11:34:08.0242 0496 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:34:08.0244 0496 Smb - ok
11:34:08.0297 0496 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:34:08.0300 0496 SNMPTRAP - ok
11:34:08.0308 0496 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:34:08.0309 0496 spldr - ok
11:34:08.0344 0496 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
11:34:08.0352 0496 Spooler - ok
11:34:08.0448 0496 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
11:34:08.0525 0496 sppsvc - ok
11:34:08.0537 0496 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:34:08.0541 0496 sppuinotify - ok
11:34:08.0577 0496 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
11:34:08.0584 0496 srv - ok
11:34:08.0606 0496 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:34:08.0612 0496 srv2 - ok
11:34:08.0645 0496 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
11:34:08.0650 0496 SrvHsfHDA - ok
11:34:08.0694 0496 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
11:34:08.0728 0496 SrvHsfV92 - ok
11:34:08.0749 0496 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
11:34:08.0760 0496 SrvHsfWinac - ok
11:34:08.0785 0496 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:34:08.0789 0496 srvnet - ok
11:34:08.0850 0496 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:34:08.0855 0496 SSDPSRV - ok
11:34:08.0860 0496 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:34:08.0876 0496 SstpSvc - ok
11:34:08.0936 0496 [ EF806D212D34B0E173BAEB3564D53E37 ] ss_bbus C:\Windows\system32\DRIVERS\ss_bbus.sys
11:34:08.0939 0496 ss_bbus - ok
11:34:08.0983 0496 [ 08B1B34ABEBEB6AC2DEA06900C56411E ] ss_bmdfl C:\Windows\system32\DRIVERS\ss_bmdfl.sys
11:34:08.0984 0496 ss_bmdfl - ok
11:34:08.0991 0496 [ 71A9DA6BEAA4CB54DFB827FB78600A5D ] ss_bmdm C:\Windows\system32\DRIVERS\ss_bmdm.sys
11:34:08.0996 0496 ss_bmdm - ok
11:34:09.0001 0496 [ 677CDC98F8363ACCAAE783FDE1599C2A ] ss_bserd C:\Windows\system32\DRIVERS\ss_bserd.sys
11:34:09.0004 0496 ss_bserd - ok
11:34:09.0096 0496 Steam Client Service - ok
11:34:09.0190 0496 [ AAAD03FBBD2DB90C90F81B1796436215 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:34:09.0195 0496 Stereo Service - ok
11:34:09.0230 0496 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:34:09.0232 0496 stexstor - ok
11:34:09.0304 0496 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
11:34:09.0321 0496 stisvc - ok
11:34:09.0332 0496 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:34:09.0333 0496 swenum - ok
11:34:09.0368 0496 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:34:09.0386 0496 swprv - ok
11:34:09.0433 0496 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
11:34:09.0476 0496 SysMain - ok
11:34:09.0483 0496 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:34:09.0487 0496 TabletInputService - ok
11:34:09.0496 0496 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:34:09.0502 0496 TapiSrv - ok
11:34:09.0525 0496 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:34:09.0528 0496 TBS - ok
11:34:09.0635 0496 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:34:09.0686 0496 Tcpip - ok
11:34:09.0768 0496 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:34:09.0778 0496 TCPIP6 - ok
11:34:09.0816 0496 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:34:09.0818 0496 tcpipreg - ok
11:34:09.0845 0496 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:34:09.0847 0496 TDPIPE - ok
11:34:09.0875 0496 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:34:09.0877 0496 TDTCP - ok

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 11:37

11:34:09.0893 0496 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:34:09.0896 0496 tdx - ok
11:34:09.0901 0496 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:34:09.0902 0496 TermDD - ok
11:34:09.0944 0496 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
11:34:09.0953 0496 TermService - ok
11:34:09.0967 0496 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:34:09.0970 0496 Themes - ok
11:34:09.0993 0496 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:34:09.0994 0496 THREADORDER - ok
11:34:10.0049 0496 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
11:34:10.0051 0496 TPM - ok
11:34:10.0066 0496 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:34:10.0070 0496 TrkWks - ok
11:34:10.0112 0496 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:34:10.0115 0496 TrustedInstaller - ok
11:34:10.0129 0496 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:34:10.0130 0496 tssecsrv - ok
11:34:10.0179 0496 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:34:10.0181 0496 TsUsbFlt - ok
11:34:10.0185 0496 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:34:10.0187 0496 TsUsbGD - ok
11:34:10.0211 0496 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:34:10.0213 0496 tunnel - ok
11:34:10.0238 0496 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:34:10.0240 0496 uagp35 - ok
11:34:10.0258 0496 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:34:10.0263 0496 udfs - ok
11:34:10.0285 0496 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:34:10.0288 0496 UI0Detect - ok
11:34:10.0341 0496 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:34:10.0343 0496 uliagpkx - ok
11:34:10.0370 0496 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:34:10.0371 0496 umbus - ok
11:34:10.0396 0496 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
11:34:10.0397 0496 UmPass - ok
11:34:10.0429 0496 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:34:10.0435 0496 upnphost - ok
11:34:10.0462 0496 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
11:34:10.0464 0496 usbccgp - ok
11:34:10.0493 0496 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:34:10.0496 0496 usbcir - ok
11:34:10.0526 0496 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:34:10.0528 0496 usbehci - ok
11:34:10.0587 0496 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:34:10.0592 0496 usbhub - ok
11:34:10.0606 0496 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:34:10.0608 0496 usbohci - ok
11:34:10.0638 0496 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
11:34:10.0639 0496 usbprint - ok
11:34:10.0664 0496 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:34:10.0666 0496 USBSTOR - ok
11:34:10.0678 0496 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:34:10.0680 0496 usbuhci - ok
11:34:10.0703 0496 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:34:10.0705 0496 UxSms - ok
11:34:10.0713 0496 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
11:34:10.0714 0496 VaultSvc - ok
11:34:10.0756 0496 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:34:10.0758 0496 vdrvroot - ok
11:34:10.0780 0496 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
11:34:10.0797 0496 vds - ok
11:34:10.0839 0496 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:34:10.0841 0496 vga - ok
11:34:10.0845 0496 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:34:10.0846 0496 VgaSave - ok
11:34:10.0867 0496 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:34:10.0872 0496 vhdmp - ok
11:34:10.0879 0496 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:34:10.0881 0496 viaide - ok
11:34:10.0886 0496 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:34:10.0888 0496 volmgr - ok
11:34:10.0901 0496 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:34:10.0907 0496 volmgrx - ok
11:34:10.0937 0496 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:34:10.0942 0496 volsnap - ok
11:34:10.0970 0496 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:34:10.0973 0496 vsmraid - ok
11:34:11.0037 0496 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
11:34:11.0079 0496 VSS - ok
11:34:11.0103 0496 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:34:11.0105 0496 vwifibus - ok
11:34:11.0110 0496 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:34:11.0112 0496 vwififlt - ok
11:34:11.0132 0496 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:34:11.0148 0496 W32Time - ok
11:34:11.0163 0496 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:34:11.0165 0496 WacomPen - ok
11:34:11.0199 0496 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:34:11.0201 0496 WANARP - ok
11:34:11.0205 0496 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:34:11.0206 0496 Wanarpv6 - ok
11:34:11.0299 0496 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:34:11.0342 0496 WatAdminSvc - ok
11:34:11.0401 0496 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
11:34:11.0444 0496 wbengine - ok
11:34:11.0458 0496 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:34:11.0463 0496 WbioSrvc - ok
11:34:11.0478 0496 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:34:11.0485 0496 wcncsvc - ok
11:34:11.0490 0496 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:34:11.0493 0496 WcsPlugInService - ok
11:34:11.0522 0496 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
11:34:11.0524 0496 Wd - ok
11:34:11.0573 0496 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:34:11.0598 0496 Wdf01000 - ok
11:34:11.0613 0496 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:34:11.0616 0496 WdiServiceHost - ok
11:34:11.0620 0496 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:34:11.0623 0496 WdiSystemHost - ok
11:34:11.0639 0496 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:34:11.0646 0496 WebClient - ok
11:34:11.0661 0496 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:34:11.0670 0496 Wecsvc - ok
11:34:11.0675 0496 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:34:11.0679 0496 wercplsupport - ok
11:34:11.0723 0496 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:34:11.0726 0496 WerSvc - ok
11:34:11.0775 0496 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:34:11.0776 0496 WfpLwf - ok
11:34:11.0798 0496 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:34:11.0800 0496 WIMMount - ok
11:34:11.0817 0496 WinDefend - ok
11:34:11.0823 0496 WinHttpAutoProxySvc - ok
11:34:11.0880 0496 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:34:11.0884 0496 Winmgmt - ok
11:34:11.0953 0496 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
11:34:12.0004 0496 WinRM - ok
11:34:12.0056 0496 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
11:34:12.0057 0496 WinUsb - ok
11:34:12.0091 0496 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:34:12.0117 0496 Wlansvc - ok
11:34:12.0281 0496 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:34:12.0340 0496 wlidsvc - ok
11:34:12.0383 0496 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:34:12.0385 0496 WmiAcpi - ok
11:34:12.0415 0496 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:34:12.0418 0496 wmiApSrv - ok
11:34:12.0477 0496 WMPNetworkSvc - ok
11:34:12.0501 0496 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:34:12.0515 0496 WPCSvc - ok
11:34:12.0533 0496 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:34:12.0537 0496 WPDBusEnum - ok
11:34:12.0550 0496 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:34:12.0552 0496 ws2ifsl - ok
11:34:12.0568 0496 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
11:34:12.0572 0496 wscsvc - ok
11:34:12.0620 0496 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
11:34:12.0621 0496 WSDPrintDevice - ok
11:34:12.0669 0496 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
11:34:12.0689 0496 WSDScan - ok
11:34:12.0692 0496 WSearch - ok
11:34:12.0791 0496 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:34:12.0852 0496 wuauserv - ok
11:34:12.0865 0496 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:34:12.0867 0496 WudfPf - ok
11:34:12.0918 0496 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:34:12.0922 0496 WUDFRd - ok
11:34:12.0947 0496 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:34:12.0950 0496 wudfsvc - ok
11:34:12.0977 0496 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
11:34:12.0983 0496 WwanSvc - ok
11:34:13.0014 0496 ================ Scan global ===============================
11:34:13.0054 0496 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:34:13.0083 0496 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:34:13.0100 0496 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:34:13.0129 0496 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:34:13.0143 0496 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:34:13.0149 0496 [Global] - ok
11:34:13.0149 0496 ================ Scan MBR ==================================
11:34:13.0163 0496 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:34:13.0340 0496 \Device\Harddisk0\DR0 - ok
11:34:13.0347 0496 [ 23B571400A29918F5392F6E85EEB756E ] \Device\Harddisk1\DR1
11:34:14.0562 0496 \Device\Harddisk1\DR1 - ok
11:34:14.0563 0496 ================ Scan VBR ==================================
11:34:14.0566 0496 [ 5D591D9A003414D760653048776C29EA ] \Device\Harddisk0\DR0\Partition1
11:34:14.0568 0496 \Device\Harddisk0\DR0\Partition1 - ok
11:34:14.0615 0496 [ DE1FAB3CB39CB317F19C0700E62143D2 ] \Device\Harddisk0\DR0\Partition2
11:34:14.0617 0496 \Device\Harddisk0\DR0\Partition2 - ok
11:34:14.0622 0496 [ D071E38EAC1DE8BD8E35A7119CDC5CAE ] \Device\Harddisk1\DR1\Partition1
11:34:14.0623 0496 \Device\Harddisk1\DR1\Partition1 - ok
11:34:14.0624 0496 ============================================================
11:34:14.0624 0496 Scan finished
11:34:14.0624 0496 ============================================================
11:34:14.0651 4008 Detected object count: 0
11:34:14.0651 4008 Actual detected object count: 0

Příspěvekod **jaro3** » 04 dub 2013 11:54

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Sefr123Czech · Příspěvekod **Sefr123Czech** » 04 dub 2013 13:49

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : ******* [Práva správce]
Mód : Kontrola -- Datum : 04/04/2013 13:47:14
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[HJPOL] HKCU\[...]\System : disableregistrytools (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST9160823ASG ATA Device +++++
--- User ---
[MBR] 62b76ab3e5d824c1dc45da48e4dd6257
[BSP] 65d6b42910fe61d652c1f1a16ecd8383 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 200 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 411648 | Size: 152425 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Kingston DataTraveler 2.0 USB Device +++++
--- User ---
[MBR] 34bb6512a2c9f9975ddb44e885b7c329
[BSP] fcfe50cce2f661f64e94ba5509d5ac94 : MBR Code unknown
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 62 | Size: 3832 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[1]_S_04042013_02d1347.txt >>
RKreport[1]_S_04042013_02d1347.txt

Příspěvekod **Žbeky** » 04 dub 2013 19:23

Zavři všechny programy a prohlížeče.
Odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller (Pro Windows Vista nebo WIN7 klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status box zobrazuje "Scan" "
- Klikni na "Delete"
- Počkej, dokud status box zobrazuje "Smazání - Finished"
- Klikni na "Zprávy", zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [1].txt na ploše.
- Zavři RogueKiller

Pak ten combofix

Co fixnout a odstranit

Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Re: Co fixnout a odstranit

Kdo je online