Prosím o kontrolu logu

Widlajz · Příspěvekod **Widlajz** » 06 kvě 2013 15:15

Dobrý den,

NTB chytil vir Policie ČR, který jsem snad odstranil, o týden později naskočila stránka nenalezena chyba HTTP:404 nebo nějak takhle a s PC nešlo pracovat. Pustil jsem MBAM a odstranil 3 nákazy.
NTB je vcelku zpomalené.

Log z HJT:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:08:27, on 6.5.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16476)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\users\luboš\notepad.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Program Files\TuneUp Utilities 2013\OneClick.exe
C:\windows\system32\wuauclt.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKCU\..\Run: [] c:\users\luboš\notepad.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_0879317fde6173f1\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_0879317fde6173f1\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 7829 bytes

Reklama

Widlajz · Příspěvekod **Widlajz** » 06 kvě 2013 17:41

Zjistil jsem, že pokud NTB připojím k netu a zapnu ho tak vyhodí bílá stránka s chybou http 404 nebo nějak tak a nejde nic dělat.
Po odpojení od internetu a následném restartu PC funguje normálně.
Tady log z MBAM po odstranění 3 virů.

Log z MBAM:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.05.01.05

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Luboš :: PC [administrátor]

6.5.2013 16:16:40
mbam-log-2013-05-06 (16-16-40).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 207384
Uplynulý čas: 9 minut, 50 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.05.01.05

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Luboš :: PC [administrátor]

6.5.2013 16:44:53
MBAM-log-2013-05-06 (19-10-36).txt

Typ: Kompletní kontrola (C:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 395117
Uplynulý čas: 1 hodin, 28 minut, 6 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 1
C:\Users\Luboš\Desktop\DAEMON_Tools_Pro_4.35.0307.0128_Incl_Crack\Advanced SystemCare 3 PRO.rar (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.

(konec)

Příspěvekod **Orcus** » 06 kvě 2013 23:29

Logy nedávej do CODE prosím. Blbě se to luští.

Fixni:

Kód: Vybrat vše

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: (no name) - - (no file)
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)

Znovu spusť MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit

====================================================

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Widlajz · Příspěvekod **Widlajz** » 07 kvě 2013 16:03

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.05.01.05

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Luboš :: PC [administrátor]

7.5.2013 15:44:38
mbam-log-2013-05-07 (15-44-38).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 207343
Uplynulý čas: 9 minut, 31 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Widlajz · Příspěvekod **Widlajz** » 07 kvě 2013 16:04

# AdwCleaner v2.300 - Log vytvooen 07/05/2013 v 15:56:16
# Aktualizováno 28/04/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (32 bits)
# Uživatel : Luboš - PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Luboš\Desktop\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Program Files\DAEMON Tools Toolbar
Složka Nalezeno : C:\Program Files\ICQ6Toolbar
Složka Nalezeno : C:\ProgramData\Ask
Složka Nalezeno : C:\ProgramData\ICQ\ICQToolbar
Složka Nalezeno : C:\Users\LUBO~1\AppData\Local\Temp\boost_interprocess

***** [Registry] *****

Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Klíe Nalezeno : HKU\S-1-5-21-4184103164-3415981377-3494489114-1002\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.8112.16476

[HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Users\Luboš\AppData\Local\Google\Chrome\User Data\Default\Preferences

Nalezeno [l.31] : icon_url = "hxxp://www.ask.com/favicon.ico",
Nalezeno [l.34] : keyword = "ask.com",
Nalezeno [l.38] : search_url = "hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=100000027&locale=en_EU&apn_uid=DAA2DDDF-8BA8-41D4-B68F-F889CAFAD0F5&apn_ptnrs=U3&apn_sauid=36B6268D-1C80-45FA-A393-F34CAF1BB0B9&apn_dtid=OSJ000YYCZ&q={searchTerms}",
Nalezeno [l.39] : suggest_url = "hxxp://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms}"

*************************

AdwCleaner[R1].txt - [3788 octets] - [07/05/2013 15:56:16]

########## EOF - C:\AdwCleaner[R1].txt - [3848 octets] ##########

Příspěvekod **jaro3** » 07 kvě 2013 18:34

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Widlajz · Příspěvekod **Widlajz** » 09 kvě 2013 10:47

# AdwCleaner v2.300 - Log vytvooen 08/05/2013 v 13:00:39
# Aktualizováno 28/04/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (32 bits)
# Uživatel : Luboš - PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Luboš\Desktop\adwcleaner.exe
# Volba [Vymazat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Vymazáno : C:\Program Files\DAEMON Tools Toolbar
Složka Vymazáno : C:\Program Files\ICQ6Toolbar
Složka Vymazáno : C:\ProgramData\Ask
Složka Vymazáno : C:\ProgramData\ICQ\ICQToolbar
Složka Vymazáno : C:\Users\LUBO~1\AppData\Local\Temp\boost_interprocess

***** [Registry] *****

Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.8112.16476

Zaminino : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd --> hxxp://www.google.com

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Users\Luboš\AppData\Local\Google\Chrome\User Data\Default\Preferences

Vymazáno [l.31] : icon_url = "hxxp://www.ask.com/favicon.ico",
Vymazáno [l.34] : keyword = "ask.com",
Vymazáno [l.38] : search_url = "hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=100000027&locale=en[...]
Vymazáno [l.39] : suggest_url = "hxxp://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms[...]

*************************

AdwCleaner[R1].txt - [3917 octets] - [07/05/2013 15:56:16]
AdwCleaner[S1].txt - [3588 octets] - [08/05/2013 13:00:39]

########## EOF - C:\AdwCleaner[S1].txt - [3648 octets] ##########

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Luboš [Práva správce]
Mód : Kontrola -- Datum : 05/09/2013 10:37:30
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[Microsoft][HJNAME] notepad.exe -- c:\Users\Luboš\notepad.exe [-] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[RUN][HJNAME] HKCU\[...]\Run : (c:\Users\Luboš\notepad.exe) [-] -> NALEZENO
[RUN][HJNAME] HKUS\S-1-5-21-4184103164-3415981377-3494489114-1002[...]\Run : (c:\Users\Luboš\notepad.exe) [-] -> NALEZENO
[HJ] HKLM\[...]\System : EnableLUA (0) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS723232L9A360 ATA Device +++++
--- User ---
[MBR] 43af35acb457794a4ef4d73b963681e7
[BSP] 9455e1a5107dc6c427c13e6726e8610c : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 287533 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 589484032 | Size: 15360 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 620941312 | Size: 2043 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[3]_S_05092013_02d1037.txt >>
RKreport[1]_S_05012013_02d1536.txt ; RKreport[2]_D_05012013_02d1536.txt ; RKreport[3]_S_05092013_02d1037.txt

Příspěvekod **jaro3** » 09 kvě 2013 10:50

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání skončeno "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Widlajz · Příspěvekod **Widlajz** » 09 kvě 2013 13:42

13:22:20.0831 2912 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
13:22:20.0862 2912 ============================================================
13:22:20.0862 2912 Current date / time: 2013/05/09 13:22:20.0862
13:22:20.0862 2912 SystemInfo:
13:22:20.0862 2912
13:22:20.0862 2912 OS Version: 6.1.7601 ServicePack: 1.0
13:22:20.0862 2912 Product type: Workstation
13:22:20.0862 2912 ComputerName: PC
13:22:20.0862 2912 UserName: Luboš
13:22:20.0862 2912 Windows directory: C:\windows
13:22:20.0862 2912 System windows directory: C:\windows
13:22:20.0862 2912 Processor architecture: Intel x86
13:22:20.0862 2912 Number of processors: 2
13:22:20.0862 2912 Page size: 0x1000
13:22:20.0862 2912 Boot type: Normal boot
13:22:20.0862 2912 ============================================================
13:22:22.0562 2912 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:22:22.0562 2912 ============================================================
13:22:22.0562 2912 \Device\Harddisk0\DR0:
13:22:22.0562 2912 MBR partitions:
13:22:22.0562 2912 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
13:22:22.0562 2912 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x23196800
13:22:22.0562 2912 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2322D000, BlocksNum 0x1E00000
13:22:22.0562 2912 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x2502D000, BlocksNum 0x3FD800
13:22:22.0562 2912 ============================================================
13:22:22.0609 2912 C: <-> \Device\Harddisk0\DR0\Partition2
13:22:22.0625 2912 E: <-> \Device\Harddisk0\DR0\Partition4
13:22:22.0625 2912 ============================================================
13:22:22.0625 2912 Initialize success
13:22:22.0625 2912 ============================================================
13:22:24.0450 3912 ============================================================
13:22:24.0450 3912 Scan started
13:22:24.0450 3912 Mode: Manual;
13:22:24.0450 3912 ============================================================
13:22:25.0121 3912 ================ Scan system memory ========================
13:22:25.0121 3912 System memory - ok
13:22:25.0121 3912 ================ Scan services =============================
13:22:25.0370 3912 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:22:25.0370 3912 1394ohci - ok
13:22:25.0433 3912 [ 4DF5E6215A102A192B2B6DBB61F2FBA5 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
13:22:25.0433 3912 Accelerometer - ok
13:22:25.0448 3912 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\windows\system32\drivers\ACPI.sys
13:22:25.0464 3912 ACPI - ok
13:22:25.0479 3912 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:22:25.0479 3912 AcpiPmi - ok
13:22:25.0620 3912 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
13:22:25.0620 3912 AdobeARMservice - ok
13:22:25.0667 3912 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
13:22:25.0682 3912 adp94xx - ok
13:22:25.0729 3912 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
13:22:25.0729 3912 adpahci - ok
13:22:25.0760 3912 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
13:22:25.0776 3912 adpu320 - ok
13:22:25.0807 3912 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:22:25.0807 3912 AeLookupSvc - ok
13:22:25.0979 3912 [ 827DBC22C96EECF6D36A13162FABAFD3 ] AESTFilters C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_0879317fde6173f1\aestsrv.exe
13:22:25.0994 3912 AESTFilters - ok
13:22:26.0057 3912 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\windows\system32\drivers\afd.sys
13:22:26.0057 3912 AFD - ok
13:22:26.0103 3912 [ 6416F9B6B220F0A890525C38235AFAD7 ] AgereModemAudio C:\Program Files\LSI SoftModem\agrsmsvc.exe
13:22:26.0103 3912 AgereModemAudio - ok
13:22:26.0181 3912 [ FAA5A0B80E011464C7654851CE3D7FE7 ] AgereSoftModem C:\windows\system32\DRIVERS\AGRSM.sys
13:22:26.0213 3912 AgereSoftModem - ok
13:22:26.0244 3912 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\windows\system32\drivers\agp440.sys
13:22:26.0244 3912 agp440 - ok
13:22:26.0306 3912 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\windows\system32\DRIVERS\djsvs.sys
13:22:26.0306 3912 aic78xx - ok
13:22:26.0337 3912 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\windows\System32\alg.exe
13:22:26.0337 3912 ALG - ok
13:22:26.0384 3912 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\windows\system32\drivers\aliide.sys
13:22:26.0384 3912 aliide - ok
13:22:26.0447 3912 [ 37BF3486C6EC6EC3B0DE816F0E960031 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
13:22:26.0447 3912 AMD External Events Utility - ok
13:22:26.0462 3912 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\windows\system32\drivers\amdagp.sys
13:22:26.0462 3912 amdagp - ok
13:22:26.0509 3912 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\windows\system32\drivers\amdide.sys
13:22:26.0509 3912 amdide - ok
13:22:26.0540 3912 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
13:22:26.0540 3912 AmdK8 - ok
13:22:26.0571 3912 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
13:22:26.0571 3912 AmdPPM - ok
13:22:26.0587 3912 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\windows\system32\drivers\amdsata.sys
13:22:26.0587 3912 amdsata - ok
13:22:26.0603 3912 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
13:22:26.0618 3912 amdsbs - ok
13:22:26.0649 3912 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:22:26.0649 3912 amdxata - ok
13:22:26.0696 3912 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\windows\system32\drivers\appid.sys
13:22:26.0696 3912 AppID - ok
13:22:26.0712 3912 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:22:26.0712 3912 AppIDSvc - ok
13:22:26.0759 3912 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\windows\System32\appinfo.dll
13:22:26.0759 3912 Appinfo - ok
13:22:26.0790 3912 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\windows\System32\appmgmts.dll
13:22:26.0805 3912 AppMgmt - ok
13:22:26.0852 3912 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\windows\system32\DRIVERS\arc.sys
13:22:26.0852 3912 arc - ok
13:22:26.0883 3912 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
13:22:26.0899 3912 arcsas - ok
13:22:26.0915 3912 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:22:26.0915 3912 AsyncMac - ok
13:22:26.0930 3912 [ 338C86357871C167A96AB976519BF59E ] atapi C:\windows\system32\drivers\atapi.sys
13:22:26.0946 3912 atapi - ok
13:22:26.0993 3912 [ BF10613B3E16C1B4D7DE59DB564314CD ] AtiHdmiService C:\windows\system32\drivers\AtiHdmi.sys
13:22:26.0993 3912 AtiHdmiService - ok
13:22:27.0164 3912 [ 1542104A78F210B2C6062A80374B7973 ] atikmdag C:\windows\system32\DRIVERS\atikmdag.sys
13:22:27.0242 3912 atikmdag - ok
13:22:27.0273 3912 [ B73C832088DD54B55E04FF6F9646AD8C ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys
13:22:27.0273 3912 AtiPcie - ok
13:22:27.0305 3912 [ F0D933B42CD0594048E4D5200AE9E417 ] atksgt C:\windows\system32\DRIVERS\atksgt.sys
13:22:27.0320 3912 atksgt - ok
13:22:27.0367 3912 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:22:27.0367 3912 AudioEndpointBuilder - ok
13:22:27.0398 3912 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\windows\System32\Audiosrv.dll
13:22:27.0398 3912 Audiosrv - ok
13:22:27.0445 3912 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\windows\System32\AxInstSV.dll
13:22:27.0461 3912 AxInstSV - ok
13:22:27.0507 3912 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\windows\system32\DRIVERS\bxvbdx.sys
13:22:27.0523 3912 b06bdrv - ok
13:22:27.0554 3912 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\windows\system32\DRIVERS\b57nd60x.sys
13:22:27.0554 3912 b57nd60x - ok
13:22:27.0679 3912 [ B9E94D37FC08525D893B632A0CA2E18C ] BCM43XX C:\windows\system32\DRIVERS\bcmwl6.sys
13:22:27.0726 3912 BCM43XX - ok
13:22:27.0773 3912 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\windows\System32\bdesvc.dll
13:22:27.0773 3912 BDESVC - ok
13:22:27.0819 3912 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\windows\system32\drivers\Beep.sys
13:22:27.0819 3912 Beep - ok
13:22:27.0897 3912 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\windows\System32\bfe.dll
13:22:27.0913 3912 BFE - ok
13:22:27.0944 3912 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\windows\System32\qmgr.dll
13:22:27.0960 3912 BITS - ok
13:22:27.0991 3912 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
13:22:27.0991 3912 blbdrive - ok
13:22:28.0022 3912 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:22:28.0022 3912 bowser - ok
13:22:28.0053 3912 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
13:22:28.0053 3912 BrFiltLo - ok
13:22:28.0069 3912 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
13:22:28.0069 3912 BrFiltUp - ok
13:22:28.0116 3912 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\windows\System32\browser.dll
13:22:28.0116 3912 Browser - ok
13:22:28.0147 3912 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:22:28.0147 3912 Brserid - ok
13:22:28.0178 3912 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:22:28.0178 3912 BrSerWdm - ok
13:22:28.0209 3912 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:22:28.0209 3912 BrUsbMdm - ok
13:22:28.0225 3912 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:22:28.0225 3912 BrUsbSer - ok
13:22:28.0287 3912 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
13:22:28.0287 3912 BthEnum - ok
13:22:28.0303 3912 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
13:22:28.0303 3912 BTHMODEM - ok
13:22:28.0334 3912 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
13:22:28.0334 3912 BthPan - ok
13:22:28.0397 3912 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
13:22:28.0397 3912 BTHPORT - ok
13:22:28.0428 3912 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\windows\system32\bthserv.dll
13:22:28.0428 3912 bthserv - ok
13:22:28.0475 3912 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
13:22:28.0475 3912 BTHUSB - ok
13:22:28.0521 3912 [ D57D29132EFE13A83133D9BD449E0CF1 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
13:22:28.0521 3912 btwaudio - ok
13:22:28.0553 3912 [ D282C14A69357D0E1BAFAECC2CA98C3A ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
13:22:28.0553 3912 btwavdt - ok
13:22:28.0631 3912 [ 7D2DD14E60CE4FF3308D66FDA7990546 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
13:22:28.0631 3912 btwdins - ok
13:22:28.0662 3912 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
13:22:28.0662 3912 btwl2cap - ok
13:22:28.0677 3912 [ 02EB4D2B05967DF2D32F29C84AB1FB17 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
13:22:28.0677 3912 btwrchid - ok
13:22:28.0724 3912 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:22:28.0724 3912 cdfs - ok
13:22:28.0771 3912 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
13:22:28.0771 3912 cdrom - ok
13:22:28.0818 3912 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\windows\System32\certprop.dll
13:22:28.0818 3912 CertPropSvc - ok
13:22:28.0849 3912 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\windows\system32\DRIVERS\circlass.sys
13:22:28.0849 3912 circlass - ok
13:22:28.0880 3912 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\windows\system32\CLFS.sys
13:22:28.0880 3912 CLFS - ok
13:22:28.0989 3912 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:22:29.0005 3912 clr_optimization_v2.0.50727_32 - ok
13:22:29.0083 3912 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:22:29.0083 3912 clr_optimization_v4.0.30319_32 - ok
13:22:29.0114 3912 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
13:22:29.0114 3912 CmBatt - ok
13:22:29.0161 3912 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\windows\system32\drivers\cmdide.sys
13:22:29.0161 3912 cmdide - ok
13:22:29.0192 3912 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\windows\system32\Drivers\cng.sys
13:22:29.0208 3912 CNG - ok
13:22:29.0317 3912 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
13:22:29.0317 3912 Com4QLBEx - ok
13:22:29.0364 3912 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
13:22:29.0364 3912 Compbatt - ok
13:22:29.0395 3912 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
13:22:29.0395 3912 CompositeBus - ok
13:22:29.0411 3912 COMSysApp - ok
13:22:29.0442 3912 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
13:22:29.0442 3912 crcdisk - ok
13:22:29.0489 3912 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\windows\system32\cryptsvc.dll
13:22:29.0489 3912 CryptSvc - ok
13:22:29.0551 3912 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\windows\system32\drivers\csc.sys
13:22:29.0551 3912 CSC - ok
13:22:29.0582 3912 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\windows\System32\cscsvc.dll
13:22:29.0598 3912 CscService - ok
13:22:29.0629 3912 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\windows\system32\rpcss.dll
13:22:29.0629 3912 DcomLaunch - ok
13:22:29.0660 3912 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\windows\System32\defragsvc.dll
13:22:29.0676 3912 defragsvc - ok
13:22:29.0723 3912 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:22:29.0723 3912 DfsC - ok
13:22:29.0769 3912 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\windows\system32\dhcpcore.dll
13:22:29.0769 3912 Dhcp - ok
13:22:29.0801 3912 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\windows\system32\drivers\discache.sys
13:22:29.0801 3912 discache - ok
13:22:29.0847 3912 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\windows\system32\DRIVERS\disk.sys
13:22:29.0847 3912 Disk - ok
13:22:29.0894 3912 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\windows\System32\dnsrslvr.dll
13:22:29.0894 3912 Dnscache - ok
13:22:29.0941 3912 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\windows\System32\dot3svc.dll
13:22:29.0957 3912 dot3svc - ok
13:22:29.0988 3912 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\windows\system32\dps.dll
13:22:29.0988 3912 DPS - ok
13:22:30.0019 3912 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:22:30.0019 3912 drmkaud - ok
13:22:30.0066 3912 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:22:30.0081 3912 DXGKrnl - ok
13:22:30.0113 3912 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\windows\System32\eapsvc.dll
13:22:30.0128 3912 EapHost - ok
13:22:30.0237 3912 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\windows\system32\DRIVERS\evbdx.sys
13:22:30.0284 3912 ebdrv - ok
13:22:30.0315 3912 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\windows\System32\lsass.exe
13:22:30.0315 3912 EFS - ok
13:22:30.0503 3912 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:22:30.0518 3912 ehRecvr - ok
13:22:30.0581 3912 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\windows\ehome\ehsched.exe
13:22:30.0581 3912 ehSched - ok
13:22:30.0674 3912 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
13:22:30.0690 3912 elxstor - ok
13:22:30.0705 3912 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\windows\system32\drivers\errdev.sys
13:22:30.0705 3912 ErrDev - ok
13:22:30.0783 3912 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\windows\system32\es.dll
13:22:30.0783 3912 EventSystem - ok
13:22:30.0815 3912 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\windows\system32\drivers\exfat.sys
13:22:30.0815 3912 exfat - ok
13:22:30.0846 3912 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\windows\system32\drivers\fastfat.sys
13:22:30.0846 3912 fastfat - ok
13:22:30.0908 3912 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\windows\system32\fxssvc.exe
13:22:30.0908 3912 Fax - ok
13:22:30.0955 3912 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\windows\system32\DRIVERS\fdc.sys
13:22:30.0955 3912 fdc - ok
13:22:30.0971 3912 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\windows\system32\fdPHost.dll
13:22:30.0971 3912 fdPHost - ok
13:22:30.0986 3912 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\windows\system32\fdrespub.dll
13:22:31.0002 3912 FDResPub - ok
13:22:31.0017 3912 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:22:31.0033 3912 FileInfo - ok
13:22:31.0049 3912 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:22:31.0049 3912 Filetrace - ok
13:22:31.0064 3912 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
13:22:31.0064 3912 flpydisk - ok
13:22:31.0095 3912 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:22:31.0095 3912 FltMgr - ok
13:22:31.0158 3912 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\windows\system32\FntCache.dll
13:22:31.0189 3912 FontCache - ok
13:22:31.0267 3912 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:22:31.0267 3912 FontCache3.0.0.0 - ok
13:22:31.0283 3912 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:22:31.0283 3912 FsDepends - ok
13:22:31.0314 3912 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:22:31.0329 3912 Fs_Rec - ok
13:22:31.0376 3912 [ E306A24D9694C724FA2491278BF50FDB ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:22:31.0376 3912 fvevol - ok
13:22:31.0439 3912 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
13:22:31.0439 3912 gagp30kx - ok
13:22:31.0485 3912 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\windows\System32\gpsvc.dll
13:22:31.0501 3912 gpsvc - ok
13:22:31.0532 3912 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:22:31.0532 3912 hcw85cir - ok
13:22:31.0595 3912 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:22:31.0595 3912 HdAudAddService - ok
13:22:31.0626 3912 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
13:22:31.0626 3912 HDAudBus - ok
13:22:31.0657 3912 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
13:22:31.0657 3912 HidBatt - ok
13:22:31.0673 3912 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
13:22:31.0688 3912 HidBth - ok
13:22:31.0704 3912 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\windows\system32\DRIVERS\hidir.sys
13:22:31.0704 3912 HidIr - ok
13:22:31.0751 3912 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\windows\system32\hidserv.dll
13:22:31.0751 3912 hidserv - ok
13:22:31.0766 3912 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
13:22:31.0782 3912 HidUsb - ok
13:22:31.0813 3912 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\windows\system32\kmsvc.dll
13:22:31.0829 3912 hkmsvc - ok
13:22:31.0844 3912 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:22:31.0860 3912 HomeGroupListener - ok
13:22:31.0907 3912 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:22:31.0907 3912 HomeGroupProvider - ok
13:22:31.0953 3912 [ 0141816A095A3F5A83FFA5B4A47B8023 ] HP Health Check Service C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
13:22:31.0953 3912 HP Health Check Service - ok
13:22:32.0031 3912 [ A54BFE8BC0AD3A8C45AF5B8405B5D6B4 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
13:22:32.0031 3912 HP Power Assistant Service - ok
13:22:32.0063 3912 [ BDDD74DFD3A6877F88A56B3C5721B2DD ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
13:22:32.0078 3912 HP Wireless Assistant Service - ok
13:22:32.0094 3912 [ E1D82F0C8456ABB03B7DF5D623CA47D1 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
13:22:32.0094 3912 hpdskflt - ok
13:22:32.0125 3912 [ 1210960FF8928950D2A786895B0C424A ] HpqKbFiltr C:\windows\system32\DRIVERS\HpqKbFiltr.sys
13:22:32.0125 3912 HpqKbFiltr - ok
13:22:32.0203 3912 [ FDF273A845F1FFCCEADF363AAF47582F ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
13:22:32.0219 3912 hpqwmiex - ok
13:22:32.0250 3912 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:22:32.0265 3912 HpSAMD - ok
13:22:32.0281 3912 [ D1F817E61D52816996B8F1EBA9A38276 ] hpsrv C:\windows\system32\Hpservice.exe
13:22:32.0281 3912 hpsrv - ok
13:22:32.0359 3912 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\windows\system32\drivers\HTTP.sys
13:22:32.0375 3912 HTTP - ok
13:22:32.0390 3912 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:22:32.0390 3912 hwpolicy - ok
13:22:32.0437 3912 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
13:22:32.0437 3912 i8042prt - ok
13:22:32.0468 3912 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:22:32.0468 3912 iaStorV - ok
13:22:32.0531 3912 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:22:32.0546 3912 idsvc - ok
13:22:32.0733 3912 [ AD626F6964F4D364D226C39E06872DD3 ] igfx C:\windows\system32\DRIVERS\igdkmd32.sys
13:22:32.0796 3912 igfx - ok
13:22:32.0905 3912 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
13:22:32.0905 3912 iirsp - ok
13:22:32.0967 3912 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\windows\System32\ikeext.dll
13:22:32.0983 3912 IKEEXT - ok
13:22:33.0030 3912 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\windows\system32\drivers\intelide.sys
13:22:33.0030 3912 intelide - ok
13:22:33.0092 3912 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:22:33.0092 3912 intelppm - ok
13:22:33.0123 3912 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:22:33.0123 3912 IPBusEnum - ok
13:22:33.0155 3912 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:22:33.0155 3912 IpFilterDriver - ok
13:22:33.0201 3912 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:22:33.0217 3912 iphlpsvc - ok
13:22:33.0248 3912 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:22:33.0248 3912 IPMIDRV - ok
13:22:33.0264 3912 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:22:33.0279 3912 IPNAT - ok
13:22:33.0311 3912 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\windows\system32\drivers\irenum.sys
13:22:33.0311 3912 IRENUM - ok
13:22:33.0342 3912 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\windows\system32\drivers\isapnp.sys
13:22:33.0357 3912 isapnp - ok
13:22:33.0373 3912 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:22:33.0373 3912 iScsiPrt - ok
13:22:33.0404 3912 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\windows\system32\drivers\kbdclass.sys
13:22:33.0404 3912 kbdclass - ok
13:22:33.0435 3912 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
13:22:33.0435 3912 kbdhid - ok
13:22:33.0451 3912 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\windows\system32\lsass.exe
13:22:33.0451 3912 KeyIso - ok
13:22:33.0498 3912 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:22:33.0498 3912 KSecDD - ok
13:22:33.0529 3912 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:22:33.0529 3912 KSecPkg - ok
13:22:33.0576 3912 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\windows\system32\msdtckrm.dll
13:22:33.0576 3912 KtmRm - ok
13:22:33.0623 3912 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\windows\system32\srvsvc.dll
13:22:33.0638 3912 LanmanServer - ok
13:22:33.0654 3912 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:22:33.0654 3912 LanmanWorkstation - ok
13:22:33.0716 3912 [ F8A7212D0864EF5E9185FB95E6623F4D ] lirsgt C:\windows\system32\DRIVERS\lirsgt.sys
13:22:33.0732 3912 lirsgt - ok
13:22:33.0779 3912 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:22:33.0779 3912 lltdio - ok
13:22:33.0810 3912 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\windows\System32\lltdsvc.dll
13:22:33.0825 3912 lltdsvc - ok
13:22:33.0841 3912 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\windows\System32\lmhsvc.dll
13:22:33.0841 3912 lmhosts - ok
13:22:33.0888 3912 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
13:22:33.0888 3912 LSI_FC - ok
13:22:33.0919 3912 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
13:22:33.0919 3912 LSI_SAS - ok
13:22:33.0950 3912 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
13:22:33.0950 3912 LSI_SAS2 - ok
13:22:33.0981 3912 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
13:22:33.0981 3912 LSI_SCSI - ok
13:22:34.0013 3912 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\windows\system32\drivers\luafv.sys
13:22:34.0013 3912 luafv - ok
13:22:34.0044 3912 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:22:34.0059 3912 Mcx2Svc - ok
13:22:34.0075 3912 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\windows\system32\DRIVERS\megasas.sys
13:22:34.0075 3912 megasas - ok
13:22:34.0106 3912 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
13:22:34.0106 3912 MegaSR - ok
13:22:34.0153 3912 [ 64B96DE8C492BD435372D9130A535F1D ] MfeAVFK C:\windows\system32\drivers\MfeAVFK.sys
13:22:34.0153 3912 MfeAVFK - ok
13:22:34.0169 3912 [ 078E87A89D36CC3516F19D5FB518BDDC ] MfeBOPK C:\windows\system32\drivers\MfeBOPK.sys
13:22:34.0169 3912 MfeBOPK - ok
13:22:34.0215 3912 [ 168C565101FD5B9DB694EFDEC91FAFA9 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
13:22:34.0215 3912 mfehidk - ok
13:22:34.0231 3912 [ E0842F67DC9BC4D21D1E319610EBE9E5 ] MfeRKDK C:\windows\system32\drivers\MfeRKDK.sys
13:22:34.0231 3912 MfeRKDK - ok
13:22:34.0247 3912 [ 43A7ACBBD70ECD62F0B63486C72089A3 ] mfetdik C:\windows\system32\drivers\mfetdik.sys
13:22:34.0262 3912 mfetdik - ok
13:22:34.0278 3912 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\windows\system32\mmcss.dll
13:22:34.0293 3912 MMCSS - ok
13:22:34.0325 3912 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\windows\system32\drivers\modem.sys
13:22:34.0325 3912 Modem - ok
13:22:34.0340 3912 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:22:34.0340 3912 monitor - ok
13:22:34.0387 3912 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
13:22:34.0387 3912 mouclass - ok
13:22:34.0403 3912 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
13:22:34.0403 3912 mouhid - ok
13:22:34.0449 3912 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:22:34.0449 3912 mountmgr - ok
13:22:34.0481 3912 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\windows\system32\drivers\mpio.sys
13:22:34.0481 3912 mpio - ok
13:22:34.0512 3912 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:22:34.0512 3912 mpsdrv - ok
13:22:34.0574 3912 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\windows\system32\mpssvc.dll
13:22:34.0590 3912 MpsSvc - ok
13:22:34.0621 3912 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:22:34.0621 3912 MRxDAV - ok
13:22:34.0683 3912 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:22:34.0683 3912 mrxsmb - ok
13:22:34.0715 3912 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:22:34.0715 3912 mrxsmb10 - ok
13:22:34.0730 3912 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:22:34.0746 3912 mrxsmb20 - ok
13:22:34.0777 3912 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\windows\system32\drivers\msahci.sys
13:22:34.0777 3912 msahci - ok
13:22:34.0793 3912 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:22:34.0793 3912 msdsm - ok
13:22:34.0824 3912 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\windows\System32\msdtc.exe
13:22:34.0824 3912 MSDTC - ok
13:22:34.0886 3912 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\windows\system32\drivers\Msfs.sys
13:22:34.0886 3912 Msfs - ok
13:22:34.0917 3912 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:22:34.0917 3912 mshidkmdf - ok
13:22:34.0964 3912 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:22:34.0964 3912 msisadrv - ok
13:22:35.0011 3912 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:22:35.0011 3912 MSiSCSI - ok
13:22:35.0027 3912 msiserver - ok
13:22:35.0058 3912 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:22:35.0058 3912 MSKSSRV - ok
13:22:35.0073 3912 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:22:35.0089 3912 MSPCLOCK - ok
13:22:35.0105 3912 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:22:35.0105 3912 MSPQM - ok
13:22:35.0136 3912 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:22:35.0136 3912 MsRPC - ok
13:22:35.0151 3912 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
13:22:35.0151 3912 mssmbios - ok
13:22:35.0167 3912 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:22:35.0167 3912 MSTEE - ok
13:22:35.0214 3912 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
13:22:35.0214 3912 MTConfig - ok
13:22:35.0229 3912 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\windows\system32\Drivers\mup.sys
13:22:35.0229 3912 Mup - ok
13:22:35.0276 3912 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\windows\system32\qagentRT.dll
13:22:35.0292 3912 napagent - ok
13:22:35.0323 3912 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:22:35.0323 3912 NativeWifiP - ok
13:22:35.0401 3912 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\windows\system32\drivers\ndis.sys
13:22:35.0401 3912 NDIS - ok
13:22:35.0448 3912 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:22:35.0448 3912 NdisCap - ok
13:22:35.0479 3912 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:22:35.0479 3912 NdisTapi - ok
13:22:35.0510 3912 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:22:35.0526 3912 Ndisuio - ok
13:22:35.0557 3912 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:22:35.0557 3912 NdisWan - ok
13:22:35.0588 3912 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:22:35.0588 3912 NDProxy - ok

Widlajz · Příspěvekod **Widlajz** » 09 kvě 2013 13:43

13:22:35.0604 3912 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:22:35.0604 3912 NetBIOS - ok
13:22:35.0651 3912 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:22:35.0651 3912 NetBT - ok
13:22:35.0666 3912 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\windows\system32\lsass.exe
13:22:35.0666 3912 Netlogon - ok
13:22:35.0713 3912 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\windows\System32\netman.dll
13:22:35.0729 3912 Netman - ok
13:22:35.0744 3912 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\windows\System32\netprofm.dll
13:22:35.0760 3912 netprofm - ok
13:22:35.0791 3912 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:22:35.0791 3912 NetTcpPortSharing - ok
13:22:35.0822 3912 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
13:22:35.0822 3912 nfrd960 - ok
13:22:35.0869 3912 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\windows\System32\nlasvc.dll
13:22:35.0885 3912 NlaSvc - ok
13:22:35.0916 3912 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\windows\system32\drivers\Npfs.sys
13:22:35.0916 3912 Npfs - ok
13:22:35.0931 3912 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\windows\system32\nsisvc.dll
13:22:35.0947 3912 nsi - ok
13:22:35.0978 3912 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:22:35.0978 3912 nsiproxy - ok
13:22:36.0056 3912 [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:22:36.0087 3912 Ntfs - ok
13:22:36.0119 3912 [ F9756A98D69098DCA8945D62858A812C ] Null C:\windows\system32\drivers\Null.sys
13:22:36.0119 3912 Null - ok
13:22:36.0181 3912 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\windows\system32\drivers\nvraid.sys
13:22:36.0181 3912 nvraid - ok
13:22:36.0212 3912 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\windows\system32\drivers\nvstor.sys
13:22:36.0212 3912 nvstor - ok
13:22:36.0243 3912 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:22:36.0243 3912 nv_agp - ok
13:22:36.0353 3912 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:22:36.0353 3912 odserv - ok
13:22:36.0384 3912 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:22:36.0384 3912 ohci1394 - ok
13:22:36.0446 3912 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:22:36.0446 3912 ose - ok
13:22:36.0493 3912 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:22:36.0509 3912 p2pimsvc - ok
13:22:36.0524 3912 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\windows\system32\p2psvc.dll
13:22:36.0540 3912 p2psvc - ok
13:22:36.0587 3912 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\windows\system32\DRIVERS\parport.sys
13:22:36.0587 3912 Parport - ok
13:22:36.0618 3912 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\windows\system32\drivers\partmgr.sys
13:22:36.0618 3912 partmgr - ok
13:22:36.0649 3912 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\windows\system32\DRIVERS\parvdm.sys
13:22:36.0649 3912 Parvdm - ok
13:22:36.0696 3912 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\windows\System32\pcasvc.dll
13:22:36.0696 3912 PcaSvc - ok
13:22:36.0743 3912 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\windows\system32\drivers\pci.sys
13:22:36.0743 3912 pci - ok
13:22:36.0758 3912 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\windows\system32\drivers\pciide.sys
13:22:36.0758 3912 pciide - ok
13:22:36.0789 3912 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
13:22:36.0805 3912 pcmcia - ok
13:22:36.0821 3912 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\windows\system32\drivers\pcw.sys
13:22:36.0821 3912 pcw - ok
13:22:36.0852 3912 pdfcDispatcher - ok
13:22:36.0899 3912 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:22:36.0899 3912 PEAUTH - ok
13:22:36.0961 3912 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\windows\system32\peerdistsvc.dll
13:22:36.0992 3912 PeerDistSvc - ok
13:22:37.0101 3912 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\windows\system32\pla.dll
13:22:37.0133 3912 pla - ok
13:22:37.0195 3912 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:22:37.0211 3912 PlugPlay - ok
13:22:37.0242 3912 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:22:37.0242 3912 PNRPAutoReg - ok
13:22:37.0273 3912 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:22:37.0289 3912 PNRPsvc - ok
13:22:37.0320 3912 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:22:37.0335 3912 PolicyAgent - ok
13:22:37.0382 3912 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\windows\system32\umpo.dll
13:22:37.0398 3912 Power - ok
13:22:37.0429 3912 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:22:37.0445 3912 PptpMiniport - ok
13:22:37.0460 3912 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\windows\system32\DRIVERS\processr.sys
13:22:37.0460 3912 Processor - ok
13:22:37.0491 3912 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\windows\system32\profsvc.dll
13:22:37.0491 3912 ProfSvc - ok
13:22:37.0523 3912 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\windows\system32\lsass.exe
13:22:37.0523 3912 ProtectedStorage - ok
13:22:37.0554 3912 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:22:37.0554 3912 Psched - ok
13:22:37.0585 3912 [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20 C:\windows\system32\Drivers\PxHelp20.sys
13:22:37.0585 3912 PxHelp20 - ok
13:22:37.0647 3912 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
13:22:37.0679 3912 ql2300 - ok
13:22:37.0710 3912 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
13:22:37.0710 3912 ql40xx - ok
13:22:37.0741 3912 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\windows\system32\qwave.dll
13:22:37.0757 3912 QWAVE - ok
13:22:37.0788 3912 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:22:37.0803 3912 QWAVEdrv - ok
13:22:37.0819 3912 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:22:37.0819 3912 RasAcd - ok
13:22:37.0850 3912 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:22:37.0850 3912 RasAgileVpn - ok
13:22:37.0866 3912 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\windows\System32\rasauto.dll
13:22:37.0881 3912 RasAuto - ok
13:22:37.0897 3912 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:22:37.0897 3912 Rasl2tp - ok
13:22:37.0944 3912 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\windows\System32\rasmans.dll
13:22:37.0959 3912 RasMan - ok
13:22:37.0991 3912 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:22:37.0991 3912 RasPppoe - ok
13:22:38.0006 3912 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:22:38.0006 3912 RasSstp - ok
13:22:38.0053 3912 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:22:38.0053 3912 rdbss - ok
13:22:38.0084 3912 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
13:22:38.0084 3912 rdpbus - ok
13:22:38.0147 3912 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:22:38.0147 3912 RDPCDD - ok
13:22:38.0178 3912 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\windows\system32\drivers\rdpdr.sys
13:22:38.0193 3912 RDPDR - ok
13:22:38.0225 3912 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:22:38.0225 3912 RDPENCDD - ok
13:22:38.0240 3912 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:22:38.0240 3912 RDPREFMP - ok
13:22:38.0303 3912 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:22:38.0303 3912 RDPWD - ok
13:22:38.0349 3912 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:22:38.0349 3912 rdyboost - ok
13:22:38.0381 3912 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\windows\System32\mprdim.dll
13:22:38.0396 3912 RemoteAccess - ok
13:22:38.0427 3912 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\windows\system32\regsvc.dll
13:22:38.0427 3912 RemoteRegistry - ok
13:22:38.0474 3912 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
13:22:38.0474 3912 RFCOMM - ok
13:22:38.0505 3912 [ AF213955C4D952C914620E8DB0CD0CF7 ] rimspci C:\windows\system32\DRIVERS\rimspe86.sys
13:22:38.0521 3912 rimspci - ok
13:22:38.0552 3912 [ 4DE2FBB92BC44256D65C3CDDCB5A8D46 ] risdpcie C:\windows\system32\DRIVERS\risdpe86.sys
13:22:38.0552 3912 risdpcie - ok
13:22:38.0583 3912 [ 764C1F3453E779724BA647327DE7DDD4 ] rixdpcie C:\windows\system32\DRIVERS\rixdpe86.sys
13:22:38.0583 3912 rixdpcie - ok
13:22:38.0708 3912 [ 85F9924FB26D924C4A10DC620AE2C350 ] RoxMediaDB10 c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
13:22:38.0724 3912 RoxMediaDB10 - ok
13:22:38.0755 3912 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:22:38.0755 3912 RpcEptMapper - ok
13:22:38.0786 3912 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\windows\system32\locator.exe
13:22:38.0802 3912 RpcLocator - ok
13:22:38.0817 3912 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\windows\system32\rpcss.dll
13:22:38.0833 3912 RpcSs - ok
13:22:38.0864 3912 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:22:38.0864 3912 rspndr - ok
13:22:38.0911 3912 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\windows\system32\drivers\vms3cap.sys
13:22:38.0911 3912 s3cap - ok
13:22:38.0942 3912 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\windows\system32\lsass.exe
13:22:38.0942 3912 SamSs - ok
13:22:38.0989 3912 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:22:38.0989 3912 sbp2port - ok
13:22:39.0020 3912 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\windows\System32\SCardSvr.dll
13:22:39.0036 3912 SCardSvr - ok
13:22:39.0067 3912 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:22:39.0067 3912 scfilter - ok
13:22:39.0129 3912 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\windows\system32\schedsvc.dll
13:22:39.0145 3912 Schedule - ok
13:22:39.0176 3912 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\windows\System32\certprop.dll
13:22:39.0176 3912 SCPolicySvc - ok
13:22:39.0207 3912 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\windows\system32\drivers\sdbus.sys
13:22:39.0207 3912 sdbus - ok
13:22:39.0254 3912 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:22:39.0254 3912 SDRSVC - ok
13:22:39.0301 3912 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:22:39.0301 3912 secdrv - ok
13:22:39.0332 3912 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\windows\system32\seclogon.dll
13:22:39.0348 3912 seclogon - ok
13:22:39.0395 3912 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\windows\System32\sens.dll
13:22:39.0395 3912 SENS - ok
13:22:39.0426 3912 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\windows\system32\sensrsvc.dll
13:22:39.0426 3912 SensrSvc - ok
13:22:39.0473 3912 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\windows\system32\DRIVERS\serenum.sys
13:22:39.0473 3912 Serenum - ok
13:22:39.0504 3912 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\windows\system32\DRIVERS\serial.sys
13:22:39.0504 3912 Serial - ok
13:22:39.0519 3912 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
13:22:39.0519 3912 sermouse - ok
13:22:39.0582 3912 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\windows\system32\sessenv.dll
13:22:39.0597 3912 SessionEnv - ok
13:22:39.0629 3912 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:22:39.0629 3912 sffdisk - ok
13:22:39.0644 3912 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:22:39.0644 3912 sffp_mmc - ok
13:22:39.0675 3912 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:22:39.0675 3912 sffp_sd - ok
13:22:39.0691 3912 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
13:22:39.0691 3912 sfloppy - ok
13:22:39.0738 3912 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\windows\System32\ipnathlp.dll
13:22:39.0738 3912 SharedAccess - ok
13:22:39.0785 3912 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:22:39.0785 3912 ShellHWDetection - ok
13:22:39.0816 3912 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\windows\system32\drivers\sisagp.sys
13:22:39.0816 3912 sisagp - ok
13:22:39.0847 3912 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
13:22:39.0847 3912 SiSRaid2 - ok
13:22:39.0878 3912 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
13:22:39.0878 3912 SiSRaid4 - ok
13:22:39.0925 3912 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
13:22:39.0941 3912 SkypeUpdate - ok
13:22:39.0956 3912 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\windows\system32\DRIVERS\smb.sys
13:22:39.0972 3912 Smb - ok
13:22:40.0034 3912 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:22:40.0034 3912 SNMPTRAP - ok
13:22:40.0128 3912 [ 9F528AD364D6D34FB9A9DDD9E0ECA192 ] SNP2UVC C:\windows\system32\DRIVERS\snp2uvc.sys
13:22:40.0143 3912 SNP2UVC - ok
13:22:40.0159 3912 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\windows\system32\drivers\spldr.sys
13:22:40.0159 3912 spldr - ok
13:22:40.0206 3912 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\windows\System32\spoolsv.exe
13:22:40.0221 3912 Spooler - ok
13:22:40.0346 3912 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\windows\system32\sppsvc.exe
13:22:40.0424 3912 sppsvc - ok
13:22:40.0455 3912 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\windows\system32\sppuinotify.dll
13:22:40.0471 3912 sppuinotify - ok
13:22:40.0518 3912 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\windows\system32\DRIVERS\srv.sys
13:22:40.0518 3912 srv - ok
13:22:40.0549 3912 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:22:40.0549 3912 srv2 - ok
13:22:40.0580 3912 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:22:40.0596 3912 srvnet - ok
13:22:40.0627 3912 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:22:40.0643 3912 SSDPSRV - ok
13:22:40.0658 3912 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\windows\system32\sstpsvc.dll
13:22:40.0674 3912 SstpSvc - ok
13:22:40.0830 3912 [ 812D31AF637653FD934994A6F7F294B4 ] STacSV C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_0879317fde6173f1\STacSV.exe
13:22:40.0845 3912 STacSV - ok
13:22:40.0877 3912 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
13:22:40.0877 3912 stexstor - ok
13:22:40.0939 3912 [ F3B3CB52A8DF9AF3922C980BED5ED5FC ] STHDA C:\windows\system32\DRIVERS\stwrt.sys
13:22:40.0939 3912 STHDA - ok
13:22:41.0001 3912 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\windows\System32\wiaservc.dll
13:22:41.0017 3912 StiSvc - ok
13:22:41.0048 3912 [ FF5EB78AF7DFB68C2FB363537AAF753E ] stllssvr c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
13:22:41.0048 3912 stllssvr - ok
13:22:41.0095 3912 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\windows\system32\drivers\vmstorfl.sys
13:22:41.0095 3912 storflt - ok
13:22:41.0126 3912 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\windows\system32\storsvc.dll
13:22:41.0126 3912 StorSvc - ok
13:22:41.0173 3912 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\windows\system32\drivers\storvsc.sys
13:22:41.0173 3912 storvsc - ok
13:22:41.0204 3912 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\windows\system32\drivers\swenum.sys
13:22:41.0204 3912 swenum - ok
13:22:41.0267 3912 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\windows\System32\swprv.dll
13:22:41.0282 3912 swprv - ok
13:22:41.0329 3912 [ 89412D393622B2892015C32BC2C8ABFF ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:22:41.0329 3912 SynTP - ok
13:22:41.0407 3912 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\windows\system32\sysmain.dll
13:22:41.0423 3912 SysMain - ok
13:22:41.0469 3912 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\windows\System32\TabSvc.dll
13:22:41.0469 3912 TabletInputService - ok
13:22:41.0516 3912 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\windows\System32\tapisrv.dll
13:22:41.0532 3912 TapiSrv - ok
13:22:41.0547 3912 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\windows\System32\tbssvc.dll
13:22:41.0547 3912 TBS - ok
13:22:41.0625 3912 [ 7C0507D2391AF5933600CBCED799F277 ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:22:41.0641 3912 Tcpip - ok
13:22:41.0688 3912 [ 7C0507D2391AF5933600CBCED799F277 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:22:41.0719 3912 TCPIP6 - ok
13:22:41.0750 3912 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:22:41.0766 3912 tcpipreg - ok
13:22:41.0813 3912 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:22:41.0813 3912 TDPIPE - ok
13:22:41.0844 3912 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:22:41.0844 3912 TDTCP - ok
13:22:41.0875 3912 [ B459575348C20E8121D6039DA063C704 ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:22:41.0875 3912 tdx - ok
13:22:41.0906 3912 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\windows\system32\drivers\termdd.sys
13:22:41.0906 3912 TermDD - ok
13:22:41.0969 3912 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\windows\System32\termsrv.dll
13:22:41.0984 3912 TermService - ok
13:22:42.0015 3912 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\windows\system32\themeservice.dll
13:22:42.0031 3912 Themes - ok
13:22:42.0047 3912 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\windows\system32\mmcss.dll
13:22:42.0047 3912 THREADORDER - ok
13:22:42.0078 3912 [ 5AD05191DC8B444A7BA4D79B76C42A30 ] TPM C:\windows\system32\drivers\tpm.sys
13:22:42.0078 3912 TPM - ok
13:22:42.0093 3912 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\windows\System32\trkwks.dll
13:22:42.0093 3912 TrkWks - ok
13:22:42.0171 3912 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:22:42.0171 3912 TrustedInstaller - ok
13:22:42.0203 3912 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:22:42.0203 3912 tssecsrv - ok
13:22:42.0249 3912 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:22:42.0249 3912 TsUsbFlt - ok
13:22:42.0296 3912 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:22:42.0296 3912 tunnel - ok
13:22:42.0327 3912 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
13:22:42.0327 3912 uagp35 - ok
13:22:42.0343 3912 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:22:42.0359 3912 udfs - ok
13:22:42.0390 3912 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\windows\system32\UI0Detect.exe
13:22:42.0390 3912 UI0Detect - ok
13:22:42.0452 3912 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:22:42.0452 3912 uliagpkx - ok
13:22:42.0483 3912 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\windows\system32\drivers\umbus.sys
13:22:42.0483 3912 umbus - ok
13:22:42.0530 3912 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\windows\system32\DRIVERS\umpass.sys
13:22:42.0530 3912 UmPass - ok
13:22:42.0577 3912 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\windows\System32\umrdp.dll
13:22:42.0577 3912 UmRdpService - ok
13:22:42.0624 3912 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\windows\System32\upnphost.dll
13:22:42.0639 3912 upnphost - ok
13:22:42.0655 3912 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:22:42.0671 3912 usbccgp - ok
13:22:42.0686 3912 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\windows\system32\drivers\usbcir.sys
13:22:42.0686 3912 usbcir - ok
13:22:42.0717 3912 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
13:22:42.0717 3912 usbehci - ok
13:22:42.0749 3912 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
13:22:42.0749 3912 usbhub - ok
13:22:42.0780 3912 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
13:22:42.0780 3912 usbohci - ok
13:22:42.0811 3912 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
13:22:42.0811 3912 usbprint - ok
13:22:42.0842 3912 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
13:22:42.0842 3912 usbscan - ok
13:22:42.0873 3912 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:22:42.0873 3912 USBSTOR - ok
13:22:42.0905 3912 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\windows\system32\drivers\usbuhci.sys
13:22:42.0905 3912 usbuhci - ok
13:22:42.0951 3912 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
13:22:42.0951 3912 usbvideo - ok
13:22:42.0983 3912 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\windows\System32\uxsms.dll
13:22:42.0983 3912 UxSms - ok
13:22:42.0998 3912 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\windows\system32\lsass.exe
13:22:43.0014 3912 VaultSvc - ok
13:22:43.0076 3912 [ 669C5BB0F3FB1342D7E943BA396A13F3 ] vcsFPService C:\windows\system32\vcsFPService.exe
13:22:43.0107 3912 vcsFPService - ok
13:22:43.0123 3912 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:22:43.0139 3912 vdrvroot - ok
13:22:43.0185 3912 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\windows\System32\vds.exe
13:22:43.0201 3912 vds - ok
13:22:43.0232 3912 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:22:43.0232 3912 vga - ok
13:22:43.0263 3912 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\windows\System32\drivers\vga.sys
13:22:43.0263 3912 VgaSave - ok
13:22:43.0295 3912 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:22:43.0310 3912 vhdmp - ok
13:22:43.0341 3912 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\windows\system32\drivers\viaagp.sys
13:22:43.0341 3912 viaagp - ok
13:22:43.0373 3912 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\windows\system32\DRIVERS\viac7.sys
13:22:43.0373 3912 ViaC7 - ok
13:22:43.0404 3912 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\windows\system32\drivers\viaide.sys
13:22:43.0404 3912 viaide - ok
13:22:43.0435 3912 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\windows\system32\drivers\vmbus.sys
13:22:43.0435 3912 vmbus - ok
13:22:43.0466 3912 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\windows\system32\drivers\VMBusHID.sys
13:22:43.0466 3912 VMBusHID - ok
13:22:43.0482 3912 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:22:43.0497 3912 volmgr - ok
13:22:43.0513 3912 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:22:43.0513 3912 volmgrx - ok
13:22:43.0544 3912 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\windows\system32\drivers\volsnap.sys
13:22:43.0560 3912 volsnap - ok
13:22:43.0575 3912 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
13:22:43.0591 3912 vsmraid - ok
13:22:43.0653 3912 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\windows\system32\vssvc.exe
13:22:43.0669 3912 VSS - ok
13:22:43.0700 3912 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:22:43.0700 3912 vwifibus - ok
13:22:43.0747 3912 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:22:43.0747 3912 vwififlt - ok
13:22:43.0778 3912 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\windows\system32\w32time.dll
13:22:43.0794 3912 W32Time - ok
13:22:43.0825 3912 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
13:22:43.0825 3912 WacomPen - ok
13:22:43.0856 3912 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:22:43.0856 3912 WANARP - ok
13:22:43.0856 3912 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:22:43.0872 3912 Wanarpv6 - ok
13:22:43.0950 3912 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:22:43.0965 3912 WatAdminSvc - ok
13:22:44.0059 3912 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\windows\system32\wbengine.exe
13:22:44.0075 3912 wbengine - ok
13:22:44.0121 3912 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:22:44.0137 3912 WbioSrvc - ok
13:22:44.0184 3912 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\windows\System32\wcncsvc.dll
13:22:44.0184 3912 wcncsvc - ok
13:22:44.0215 3912 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:22:44.0231 3912 WcsPlugInService - ok
13:22:44.0246 3912 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\windows\system32\DRIVERS\wd.sys
13:22:44.0246 3912 Wd - ok
13:22:44.0293 3912 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:22:44.0309 3912 Wdf01000 - ok
13:22:44.0324 3912 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\windows\system32\wdi.dll
13:22:44.0340 3912 WdiServiceHost - ok
13:22:44.0340 3912 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\windows\system32\wdi.dll
13:22:44.0355 3912 WdiSystemHost - ok
13:22:44.0402 3912 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\windows\System32\webclnt.dll
13:22:44.0418 3912 WebClient - ok
13:22:44.0418 3912 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\windows\system32\wecsvc.dll
13:22:44.0433 3912 Wecsvc - ok
13:22:44.0465 3912 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\windows\System32\wercplsupport.dll
13:22:44.0465 3912 wercplsupport - ok
13:22:44.0511 3912 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\windows\System32\WerSvc.dll
13:22:44.0511 3912 WerSvc - ok
13:22:44.0574 3912 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:22:44.0574 3912 WfpLwf - ok
13:22:44.0605 3912 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:22:44.0605 3912 WIMMount - ok
13:22:44.0699 3912 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
13:22:44.0714 3912 WinDefend - ok
13:22:44.0730 3912 WinHttpAutoProxySvc - ok
13:22:44.0792 3912 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:22:44.0792 3912 Winmgmt - ok
13:22:44.0855 3912 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\windows\system32\WsmSvc.dll
13:22:44.0886 3912 WinRM - ok
13:22:44.0948 3912 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUSB C:\windows\system32\DRIVERS\WinUSB.sys
13:22:44.0948 3912 WinUSB - ok
13:22:45.0011 3912 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\windows\System32\wlansvc.dll
13:22:45.0026 3912 Wlansvc - ok
13:22:45.0057 3912 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
13:22:45.0057 3912 WmiAcpi - ok
13:22:45.0120 3912 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:22:45.0120 3912 wmiApSrv - ok
13:22:45.0198 3912 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
13:22:45.0229 3912 WMPNetworkSvc - ok
13:22:45.0245 3912 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\windows\System32\wpcsvc.dll
13:22:45.0245 3912 WPCSvc - ok
13:22:45.0291 3912 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:22:45.0291 3912 WPDBusEnum - ok
13:22:45.0323 3912 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:22:45.0338 3912 ws2ifsl - ok
13:22:45.0369 3912 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\windows\System32\wscsvc.dll
13:22:45.0369 3912 wscsvc - ok
13:22:45.0385 3912 WSearch - ok
13:22:45.0494 3912 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\windows\system32\wuaueng.dll
13:22:45.0525 3912 wuauserv - ok
13:22:45.0572 3912 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:22:45.0572 3912 WudfPf - ok
13:22:45.0603 3912 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:22:45.0603 3912 WUDFRd - ok
13:22:45.0635 3912 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:22:45.0635 3912 wudfsvc - ok
13:22:45.0666 3912 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\windows\System32\wwansvc.dll
13:22:45.0681 3912 WwanSvc - ok
13:22:45.0744 3912 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\windows\system32\DRIVERS\yk62x86.sys
13:22:45.0744 3912 yukonw7 - ok
13:22:45.0775 3912 ================ Scan global ===============================
13:22:45.0806 3912 [ DAB748AE0439955ED2FA22357533DDDB ] C:\windows\system32\basesrv.dll
13:22:45.0853 3912 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\windows\system32\winsrv.dll
13:22:45.0869 3912 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\windows\system32\winsrv.dll
13:22:45.0900 3912 [ 364455805E64882844EE9ACB72522830 ] C:\windows\system32\sxssrv.dll
13:22:45.0915 3912 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\windows\system32\services.exe
13:22:45.0931 3912 [Global] - ok
13:22:45.0931 3912 ================ Scan MBR ==================================
13:22:45.0947 3912 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
13:22:46.0290 3912 \Device\Harddisk0\DR0 - ok
13:22:46.0290 3912 ================ Scan VBR ==================================
13:22:46.0305 3912 [ B14362E55D03675A37D10998E76E0C3C ] \Device\Harddisk0\DR0\Partition1
13:22:46.0305 3912 \Device\Harddisk0\DR0\Partition1 - ok
13:22:46.0321 3912 [ D41A73F752D538D7378761781F44190E ] \Device\Harddisk0\DR0\Partition2
13:22:46.0321 3912 \Device\Harddisk0\DR0\Partition2 - ok
13:22:46.0352 3912 [ 9F114574244202DE8F2C425FE3562F6B ] \Device\Harddisk0\DR0\Partition3
13:22:46.0368 3912 \Device\Harddisk0\DR0\Partition3 - ok
13:22:46.0383 3912 [ 70DB9FC7565694EECC6FD3B5AA67BF0A ] \Device\Harddisk0\DR0\Partition4
13:22:46.0383 3912 \Device\Harddisk0\DR0\Partition4 - ok
13:22:46.0383 3912 ============================================================
13:22:46.0383 3912 Scan finished
13:22:46.0383 3912 ============================================================
13:22:46.0415 3232 Detected object count: 0
13:22:46.0415 3232 Actual detected object count: 0
13:23:41.0966 1576 Deinitialize success

Widlajz · Příspěvekod **Widlajz** » 09 kvě 2013 13:44

ComboFix 13-05-08.02 - Luboš 09.05.2013 13:26:25.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.1789.1131 [GMT 2:00]
Spuštěný z: c:\users\LuboÜ\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ej4eqej.pad
c:\programdata\qz61q.pad
c:\users\Luboš\mstsc.exe
c:\users\Luboš\notepad.exe
c:\windows\PFRO.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-09 do 2013-05-09 )))))))))))))))))))))))))))))))
.
.
2013-05-09 11:34 . 2013-05-09 11:35 -------- d-----w- c:\users\Luboš\AppData\Local\temp
2013-05-09 11:34 . 2013-05-09 11:34 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-06 12:51 . 2008-05-22 09:15 434 ----a-w- c:\windows\myClean.bat
2013-05-06 12:24 . 2013-05-06 12:24 -------- d-----w- c:\users\Luboš\AppData\Roaming\TuneUp Software
2013-05-06 12:24 . 2013-05-06 13:12 -------- d-----w- c:\program files\TuneUp Utilities 2013
2013-05-06 12:22 . 2013-05-06 12:24 -------- d-----w- c:\programdata\TuneUp Software
2013-05-06 12:22 . 2013-05-06 12:37 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-05-06 12:22 . 2013-05-06 12:22 -------- d--h--w- c:\programdata\Common Files
2013-05-01 13:44 . 2013-05-01 13:44 388096 ----a-r- c:\users\Luboš\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-05-01 13:44 . 2013-05-01 13:44 -------- d-----w- c:\program files\Trend Micro
2013-05-01 13:43 . 2013-05-01 13:43 -------- d-----w- c:\users\Luboš\AppData\Roaming\Malwarebytes
2013-05-01 13:43 . 2013-05-01 13:43 -------- d-----w- c:\programdata\Malwarebytes
2013-05-01 13:43 . 2013-05-01 13:43 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-05-01 13:43 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-05-01 13:42 . 2013-05-01 13:42 -------- d-----w- c:\users\Luboš\AppData\Local\Programs
2013-04-30 14:41 . 2013-04-30 14:41 2660 ----a-w- c:\programdata\ej4eqej.js
2013-04-24 12:01 . 2013-04-12 13:45 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 10:21 . 2013-03-01 03:09 2347008 ----a-w- c:\windows\system32\win32k.sys
2013-04-10 10:21 . 2013-01-24 04:47 196328 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-04-10 10:21 . 2013-03-19 05:04 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-04-10 10:21 . 2013-03-19 05:04 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-04-10 10:21 . 2013-03-19 04:48 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-10 10:21 . 2013-03-19 02:49 69632 ----a-w- c:\windows\system32\smss.exe
2013-04-10 10:21 . 2013-02-15 04:37 3217408 ----a-w- c:\windows\system32\mstscax.dll
2013-04-10 10:21 . 2013-02-15 04:34 131584 ----a-w- c:\windows\system32\aaclient.dll
2013-04-10 10:21 . 2013-02-15 03:25 36864 ----a-w- c:\windows\system32\tsgqec.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-01 13:44 . 2013-05-01 13:44 388096 ----a-r- c:\users\Luboš\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-05-01 13:44 . 2013-05-01 13:44 388096 ----a-r- c:\users\Luboš\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-03-09 07:12 . 2013-03-09 07:12 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-09 07:12 . 2013-02-19 15:46 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-03-09 07:12 . 2012-03-25 13:34 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-12 04:48 . 2013-03-13 10:39 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 10:39 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-12 03:32 . 2013-03-26 10:03 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" [2009-08-20 361528]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-09-10 98304]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-08-05 458844]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-08-22 1549608]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-30 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 4 (0x4)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\users\Luboš\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"HPADVISOR"=c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
"Skype"="c:\program files\Skype\\Phone\Skype.exe" /nosplash /minimized
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"HPPowerAssistant"=c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
"PDF Complete"=c:\program files\PDF Complete\pdfsty.exe
"QlbCtrl.exe"=c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [x]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_0879317fde6173f1\aestsrv.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [x]
S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimspe86.sys [x]
S2 risdpcie;risdpcie;c:\windows\system32\DRIVERS\risdpe86.sys [x]
S2 rixdpcie;rixdpcie;c:\windows\system32\DRIVERS\rixdpe86.sys [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 05464265
*NewlyCreated* - 79024722
*NewlyCreated* - TRUESIGHT
*Deregistered* - 05464265
*Deregistered* - 79024722
*Deregistered* - TrueSight
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-04-12 c:\windows\Tasks\HPCeeScheduleForLuboš.job
- c:\program files\hewlett-packard\sdp\ceement\HPCEE.exe [2009-10-08 21:38]
.
2013-05-09 c:\windows\Tasks\xtgfx.job
- c:\windows\system32\tcpipcfg3.dll [2012-09-23 17:11]
.
.
------- Doplňkový sken -------
.
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-Third Age - Total War 2.0 (Part1of2) - c:\program files\SEGA\Medieval II Total War\Uninstal.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-4184103164-3415981377-3494489114-1002\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-05-09 13:36:48
ComboFix-quarantined-files.txt 2013-05-09 11:36
.
Před spuštěním: Volných bajtů: 53 968 015 360
Po spuštění: Volných bajtů: 53 934 694 400
.
- - End Of File - - 6A22616871F717825E650EB8EB802ED2

Příspěvekod **jaro3** » 09 kvě 2013 19:13

Nedal si log z RK po vymazání..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\windows\myClean.bat
c:\programdata\ej4eqej.js
c:\windows\Tasks\xtgfx.job

Folder::
c:\program files\Skype\Updater

Driver::
SkypeUpdate

DDS::
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Prosím o kontrolu logu Vyřešeno

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Kdo je online