Prosím o kontrolu logu - preventivní Vyřešeno

[paveliknecas]

Zdravím, chtěl bych vás požádat, jestli byste mi zkontrolovali log a také poradili s pročištěním, protože se mi pc stále více zasekává a nevím čím to je.

Díky moc

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:06:29, on 12. 6. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\taskhostex.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\Pelico.exe
C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\LeDaemon.exe
C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\VolOSD.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Dolby Tuning and Profile Creator\pcee4.exe
C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe
C:\Program Files\Opera Next\15.0.1147.44\opera.exe
C:\Program Files\Opera Next\15.0.1147.44\opera_crashreporter.exe
C:\Program Files\Opera Next\15.0.1147.44\opera.exe
C:\Program Files\Opera Next\15.0.1147.44\opera.exe
C:\Program Files\Opera Next\15.0.1147.44\opera.exe
C:\Program Files\Opera Next\15.0.1147.44\opera.exe
C:\Program Files\Opera Next\15.0.1147.44\opera.exe
C:\Program Files\Opera Next\15.0.1147.44\opera.exe
C:\WINDOWS\system32\wwahost.exe
C:\Program Files\HJ\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000. ... =12&barid={7DB5FF33-657B-11E2-AFA2-B870F4185BAB}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000. ... =12&barid={7DB5FF33-657B-11E2-AFA2-B870F4185BAB}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe
O4 - HKLM\..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
O4 - HKLM\..\Run: [Lenovo Input Device Main Program] C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\Pelico.exe
O4 - HKLM\..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE 30
O4 - HKLM\..\Run: [CNAP2 Launcher] C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Dolby Tuning and Profile Creator] "C:\Program Files\Dolby Tuning and Profile Creator\pcee4.exe" -autostart
O4 - HKCU\..\Run: [HydraVisionMDEngine] "C:\Program Files\ATI Technologies\HydraVision\HydraMD.exe" -AutoRun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Připojit k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Session Launcher Service (PelService) - Unknown owner - C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 10026 bytes

[Reklama]

[Žbeky]

Fixni:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000. ... =12&barid={7DB5FF33-657B-11E2-AFA2-B870F4185BAB}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000. ... =12&barid={7DB5FF33-657B-11E2-AFA2-B870F4185BAB}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[paveliknecas]

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.06.08.02

Windows 8 x86 NTFS
Internet Explorer 10.0.9200.16599
pavel_000 :: PAVEL-PC [administrátor]

Ochrana: Povolena

12. 6. 2013 20:32:17
mbam-log-2013-06-12 (20-32-17).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 205041
Uplynulý čas: 6 minut, 52 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)






# AdwCleaner v2.303 - Log vytvooen 12/06/2013 v 20:40:22
# Aktualizováno 08/06/2013 Xplode
# Operaení systém : Windows 8 Pro (32 bits)
# Uživatel : pavel_000 - PAVEL-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\pavel_000\Downloads\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****


***** [Soubory / Složky] *****

Složka Nalezeno : C:\ProgramData\boost_interprocess

***** [Registry] *****

Klíe Nalezeno : HKCU\Software\BI
Klíe Nalezeno : HKCU\Software\InstallCore
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKCU\Software\UpdateStar
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Klíe Nalezeno : HKU\S-1-5-21-1576602250-3865505508-3829864999-1001\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v10.0.9200.16537

[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com/?crg=3.1010000. ... =12&barid={7DB5FF33-657B-11E2-AFA2-B870F4185BAB}

-\\ Opera v12.15.1748.0

Soubor : C:\Users\pavel_000\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [1760 octets] - [12/06/2013 20:40:22]

########## EOF - C:\AdwCleaner[R1].txt - [1820 octets] ##########

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[paveliknecas]

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 8 (6.2.9200 ) 32 bits version
Spuštěno v : Normální režim
Uživatel : pavel_000 [Práva správce]
Mód : Kontrola -- Datum : 06/13/2013 15:20:29
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: KINGSTON SV200S364G +++++
--- User ---
[MBR] 87b15e1d89339d6f42b2810c744cbec4
[BSP] b9c1dc1e4e9b15a1a0b22f95cba41f73 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 32 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 67584 | Size: 53734 Mo
2 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 110114816 | Size: 7290 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: HITACHI HTS545032B9A300 +++++
--- User ---
[MBR] b6e73e607037c091f36c4bc68cfb7653
[BSP] 97291d99a3458df727053145deaf6d53 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 305243 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_06132013_02d1520.txt >>
RKreport[1]_S_06132013_02d1520.txt





# AdwCleaner v2.303 - Log vytvooen 13/06/2013 v 15:12:55
# Aktualizováno 08/06/2013 Xplode
# Operaení systém : Windows 8 Pro (32 bits)
# Uživatel : pavel_000 - PAVEL-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\pavel_000\Downloads\adwcleaner.exe
# Volba [Vymazat]


***** [Služby] *****


***** [Soubory / Složky] *****

Složka Vymazáno : C:\ProgramData\boost_interprocess

***** [Registry] *****

Klíe Vymazáno : HKCU\Software\BI
Klíe Vymazáno : HKCU\Software\InstallCore
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Klíe Vymazáno : HKCU\Software\UpdateStar
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Klíe Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v10.0.9200.16537

Zaminino : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com/?crg=3.1010000. ... =12&barid={7DB5FF33-657B-11E2-AFA2-B870F4185BAB} --> hxxp://www.google.com

-\\ Opera v12.15.1748.0

Soubor : C:\Users\pavel_000\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [1889 octets] - [12/06/2013 20:40:22]
AdwCleaner[R2].txt - [1949 octets] - [12/06/2013 20:41:16]
AdwCleaner[S1].txt - [1758 octets] - [13/06/2013 15:12:55]

########## EOF - C:\AdwCleaner[S1].txt - [1818 octets] ##########

[paveliknecas]

15:23:20.0179 0528 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:23:20.0413 0528 ============================================================
15:23:20.0413 0528 Current date / time: 2013/06/13 15:23:20.0413
15:23:20.0413 0528 SystemInfo:
15:23:20.0413 0528
15:23:20.0413 0528 OS Version: 6.2.9200 ServicePack: 0.0
15:23:20.0413 0528 Product type: Workstation
15:23:20.0413 0528 ComputerName: PAVEL-PC
15:23:20.0413 0528 UserName: pavel_000
15:23:20.0413 0528 Windows directory: C:\WINDOWS
15:23:20.0413 0528 System windows directory: C:\WINDOWS
15:23:20.0413 0528 Processor architecture: Intel x86
15:23:20.0413 0528 Number of processors: 2
15:23:20.0413 0528 Page size: 0x1000
15:23:20.0413 0528 Boot type: Normal boot
15:23:20.0413 0528 ============================================================
15:23:22.0144 0528 Drive \Device\Harddisk0\DR0 - Size: 0xEE8156000 (59.63 Gb), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:23:22.0472 0528 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xE980, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xA6, Type 'K0', Flags 0x00000050
15:23:22.0472 0528 ============================================================
15:23:22.0472 0528 \Device\Harddisk0\DR0:
15:23:22.0472 0528 MBR partitions:
15:23:22.0472 0528 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x10000
15:23:22.0472 0528 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x10800, BlocksNum 0x68F3000
15:23:22.0472 0528 \Device\Harddisk1\DR1:
15:23:22.0472 0528 MBR partitions:
15:23:22.0472 0528 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
15:23:22.0472 0528 ============================================================
15:23:22.0472 0528 C: <-> \Device\Harddisk0\DR0\Partition2
15:23:22.0519 0528 H: <-> \Device\Harddisk1\DR1\Partition1
15:23:22.0519 0528 ============================================================
15:23:22.0519 0528 Initialize success
15:23:22.0519 0528 ============================================================
15:23:24.0562 2316 ============================================================
15:23:24.0562 2316 Scan started
15:23:24.0562 2316 Mode: Manual;
15:23:24.0562 2316 ============================================================
15:23:24.0937 2316 ================ Scan system memory ========================
15:23:24.0937 2316 System memory - ok
15:23:24.0937 2316 ================ Scan services =============================
15:23:25.0062 2316 [ E7B9E170EFF01486D3118E372BA0AF21 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
15:23:25.0062 2316 1394ohci - ok
15:23:25.0077 2316 [ 96191579DDB1A201A2FB79C1D05680B4 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
15:23:25.0077 2316 3ware - ok
15:23:25.0093 2316 [ B69DD3D0C195558ED5A4CF69A9D241A4 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
15:23:25.0093 2316 ACPI - ok
15:23:25.0108 2316 [ 3A5DA97644B9E2662CFF186A8798519C ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
15:23:25.0108 2316 acpiex - ok
15:23:25.0124 2316 [ 87C4AE693CA8AB6E2A13B7C7453466DB ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
15:23:25.0124 2316 acpipagr - ok
15:23:25.0140 2316 [ C7D2BA04BA3C6CA702C2615A0C50469C ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
15:23:25.0140 2316 AcpiPmi - ok
15:23:25.0155 2316 [ 38E110C96B2ACAB4D9A701777C9BCD98 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
15:23:25.0155 2316 acpitime - ok
15:23:25.0171 2316 [ 0FF1F2F287E65A66A3B72484B9895785 ] ACPIVPC C:\WINDOWS\System32\drivers\AcpiVpc.sys
15:23:25.0171 2316 ACPIVPC - ok
15:23:25.0186 2316 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:23:25.0186 2316 AdobeARMservice - ok
15:23:25.0202 2316 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:23:25.0202 2316 AdobeFlashPlayerUpdateSvc - ok
15:23:25.0233 2316 [ 2FE756FD6E0336990D0B3652A07EBB9B ] adp94xx C:\WINDOWS\system32\drivers\adp94xx.sys
15:23:25.0233 2316 adp94xx - ok
15:23:25.0264 2316 [ CC579EC50EE5435A4070306C0E4EF9E6 ] adpahci C:\WINDOWS\system32\drivers\adpahci.sys
15:23:25.0264 2316 adpahci - ok
15:23:25.0280 2316 [ 82743090D0259BF9F1373AD48372CBAC ] adpu320 C:\WINDOWS\system32\drivers\adpu320.sys
15:23:25.0280 2316 adpu320 - ok
15:23:25.0311 2316 [ 5D4FC8F08B45241857776E44AC71F0ED ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
15:23:25.0311 2316 AeLookupSvc - ok
15:23:25.0327 2316 [ F12EFEE4DD20519D0DDF8D78704EE4DE ] AFD C:\WINDOWS\system32\drivers\afd.sys
15:23:25.0342 2316 AFD - ok
15:23:25.0342 2316 [ 73BB2C687305C4195ED7511587B041AA ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
15:23:25.0342 2316 agp440 - ok
15:23:25.0358 2316 [ B5A707E902BE5FC9B93C389FBA6EDF9C ] ALG C:\WINDOWS\System32\alg.exe
15:23:25.0358 2316 ALG - ok
15:23:25.0374 2316 [ 8F12F6811F8C4C248E2FAA8779C6FCFE ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
15:23:25.0389 2316 AllUserInstallAgent - ok
15:23:25.0405 2316 [ F9491B157A8CD70557745FA0312C1EEE ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
15:23:25.0405 2316 AMD External Events Utility - ok
15:23:25.0420 2316 AMD FUEL Service - ok
15:23:25.0436 2316 [ E44885EA3E89A54BF14C78892CE85EA0 ] amdagp C:\WINDOWS\system32\drivers\amdagp.sys
15:23:25.0436 2316 amdagp - ok
15:23:25.0452 2316 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\WINDOWS\System32\drivers\amdiox86.sys
15:23:25.0452 2316 amdiox86 - ok
15:23:25.0467 2316 [ FFDBB0DC75CDF6A3CC63B3DF790313EB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
15:23:25.0467 2316 AmdK8 - ok
15:23:25.0670 2316 [ F53B89A4B976B534DAA8AEDAFEAF8EA3 ] amdkmdag C:\WINDOWS\system32\DRIVERS\atikmdag.sys
15:23:25.0810 2316 amdkmdag - ok
15:23:25.0842 2316 [ 3DEA9B1D1B274C739C9367FB1E56185F ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
15:23:25.0842 2316 amdkmdap - ok
15:23:25.0857 2316 [ DF7FE35014C17CC4659C2531F9EA5A36 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
15:23:25.0857 2316 AmdPPM - ok
15:23:25.0873 2316 [ 8D5D89177552EDFD5C9730CCE79F7FCC ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
15:23:25.0873 2316 amdsata - ok
15:23:25.0888 2316 [ 5725597CF5E002FB665C6C69787DAA8A ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
15:23:25.0888 2316 amdsbs - ok
15:23:25.0904 2316 [ FB336B5F110770CF22F6BFEB1906E773 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
15:23:25.0904 2316 amdxata - ok
15:23:25.0904 2316 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
15:23:25.0920 2316 AODDriver4.1 - ok
15:23:25.0935 2316 [ F0A929927ECF6619079DD8F7C0FE208F ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
15:23:25.0935 2316 ApfiltrService - ok
15:23:25.0951 2316 [ CB3613E82A5B058AB6A69846B0DDC6C5 ] AppID C:\WINDOWS\system32\drivers\appid.sys
15:23:25.0951 2316 AppID - ok
15:23:25.0966 2316 [ 721C445A7EE59589B26EE0DC767A7967 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
15:23:25.0966 2316 AppIDSvc - ok
15:23:25.0966 2316 [ 2153ADB83E48B54B384FF9651D695913 ] Appinfo C:\WINDOWS\System32\appinfo.dll
15:23:25.0982 2316 Appinfo - ok
15:23:25.0982 2316 [ 8F0F777B167CADDF9D206180B8558433 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
15:23:25.0998 2316 AppMgmt - ok
15:23:26.0013 2316 [ A0982052EE6B01DC9B0CB7FEFD13040F ] arc C:\WINDOWS\system32\drivers\arc.sys
15:23:26.0013 2316 arc - ok
15:23:26.0029 2316 [ 7E17A734B0D33B8F9287F28F1C583DD7 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
15:23:26.0029 2316 arcsas - ok
15:23:26.0029 2316 [ E12BC771325E70C2A875136B0BAF491E ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:23:26.0044 2316 AsyncMac - ok
15:23:26.0044 2316 [ 48D8C3F2006698691F5AE0BB595FDCC8 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
15:23:26.0044 2316 atapi - ok
15:23:26.0076 2316 [ 2B05DDE0D1B73CDA807E75EBF617290C ] AtiPcie C:\WINDOWS\system32\drivers\AtiPcie.sys
15:23:26.0076 2316 AtiPcie - ok
15:23:26.0091 2316 [ 5FC6CF6B66485CE46F6193080B525F77 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
15:23:26.0091 2316 AudioEndpointBuilder - ok
15:23:26.0107 2316 [ DC3537031AFE485FC8C8DD0005081B10 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
15:23:26.0122 2316 Audiosrv - ok
15:23:26.0138 2316 [ F431DC5D94F4B2FDBC927655D8A9B10E ] Autodesk Content Service C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
15:23:26.0138 2316 Autodesk Content Service - ok
15:23:26.0154 2316 [ 3F642D45EC0BE2E4843C35A2A1AA93D5 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
15:23:26.0154 2316 AxInstSV - ok
15:23:26.0169 2316 [ A96A499B6C931B7242D964D5D695A506 ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
15:23:26.0169 2316 BasicDisplay - ok
15:23:26.0185 2316 [ D313E4D7DF0187CEDA121793F937EA89 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
15:23:26.0185 2316 BasicRender - ok
15:23:26.0294 2316 [ 2884951C74EAC9FE8C7FA4BCE7C920B8 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl63.sys
15:23:26.0356 2316 BCM43XX - ok
15:23:26.0372 2316 [ 30D98AE688C681196D411CA65E5E90D1 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
15:23:26.0388 2316 BDESVC - ok
15:23:26.0403 2316 [ E53DDF8C101E3CB6A0483D592A8CC476 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:23:26.0403 2316 Beep - ok
15:23:26.0419 2316 [ 81158030D8F2DDECF99F420D51AEAC1E ] BFE C:\WINDOWS\System32\bfe.dll
15:23:26.0434 2316 BFE - ok
15:23:26.0450 2316 [ 6723B30920D4371367F468DF6061A7E9 ] BITS C:\WINDOWS\System32\qmgr.dll
15:23:26.0466 2316 BITS - ok
15:23:26.0481 2316 [ D7148E90581185DB2CC6A2EED9C8281C ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
15:23:26.0481 2316 bowser - ok
15:23:26.0497 2316 [ CCD0AAF957BE9FF1EF46E59A2824E992 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
15:23:26.0512 2316 BrokerInfrastructure - ok
15:23:26.0528 2316 [ 771EE7009E428CCC3476838CB22DBA8D ] Browser C:\WINDOWS\System32\browser.dll
15:23:26.0528 2316 Browser - ok
15:23:26.0544 2316 [ 4F7981232826D677FBE4D3D37845ADD7 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
15:23:26.0544 2316 BthAvrcpTg - ok
15:23:26.0559 2316 [ 3EEEA1B69C16A8D159B53896EC78420C ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
15:23:26.0559 2316 BthHFEnum - ok
15:23:26.0575 2316 [ 403C9BA247F4D4C0E4FF6FFA5F096EF6 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
15:23:26.0575 2316 bthhfhid - ok
15:23:26.0590 2316 [ 0C706A8B022A44413F6C36ECEAAA2838 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
15:23:26.0590 2316 BTHMODEM - ok
15:23:26.0606 2316 [ 171AF9795CABEC4985D45640D3A5F8F0 ] bthserv C:\WINDOWS\system32\bthserv.dll
15:23:26.0606 2316 bthserv - ok
15:23:26.0622 2316 [ 00B4FA77732C7823D292ECD672660882 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
15:23:26.0622 2316 cdfs - ok
15:23:26.0637 2316 [ 4E707EC5071DD8F5C29A7410780BD4C3 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
15:23:26.0653 2316 cdrom - ok
15:23:26.0653 2316 [ BAEE72BFBEC7B96AA85F861A6F4FE428 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
15:23:26.0668 2316 CertPropSvc - ok
15:23:26.0684 2316 [ 17BE1CB162768E886B2BBA63F8B89371 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
15:23:26.0684 2316 circlass - ok
15:23:26.0700 2316 [ D5370A0D3A8F7E531FE9BA3E3C81BAC8 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
15:23:26.0715 2316 CLFS - ok
15:23:26.0746 2316 [ 16744C84320D33880E38DF7409585EBF ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
15:23:26.0746 2316 CmBatt - ok
15:23:26.0778 2316 [ D4EF3370F53CF9647B6D33A512DDC2E9 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
15:23:26.0778 2316 CNG - ok
15:23:26.0793 2316 [ 765969F18ABD50298AA880E803D2096F ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
15:23:26.0793 2316 cnghwassist - ok
15:23:26.0809 2316 [ 38B2B74DD1515CF70E8E33AB3A16CA07 ] CnxtHdAudService C:\WINDOWS\system32\drivers\CHDRT32.sys
15:23:26.0824 2316 CnxtHdAudService - ok
15:23:26.0840 2316 [ 357444DE560252A907F8B687005B3DCA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
15:23:26.0840 2316 CompositeBus - ok
15:23:26.0856 2316 COMSysApp - ok
15:23:26.0856 2316 [ F1B79B7B595B0D7990756C12FA64F00E ] condrv C:\WINDOWS\system32\drivers\condrv.sys
15:23:26.0856 2316 condrv - ok
15:23:26.0871 2316 [ 5F9E0EB816E3D80358A0A4A072E81A24 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
15:23:26.0871 2316 CryptSvc - ok
15:23:26.0887 2316 [ 5531D4CFCBB6CBBD5BFB9E5FD089FADF ] CSC C:\WINDOWS\system32\drivers\csc.sys
15:23:26.0887 2316 CSC - ok
15:23:26.0902 2316 [ A36C84BAC3128A6A3F41136A6ED426B1 ] CscService C:\WINDOWS\System32\cscsvc.dll
15:23:26.0918 2316 CscService - ok
15:23:26.0934 2316 [ C266A8E3D8BC4573B0BE8AA6ADC0AD7E ] dam C:\WINDOWS\system32\drivers\dam.sys
15:23:26.0934 2316 dam - ok
15:23:26.0949 2316 [ BCD3562ACB27B8137BF809F61BA44E80 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:23:26.0965 2316 DcomLaunch - ok
15:23:26.0980 2316 [ 3D36FBE5ABAF0D531085C5D3381DC770 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
15:23:26.0980 2316 defragsvc - ok
15:23:26.0996 2316 [ E5935B79D5AE9288AEB72487E1A1B662 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
15:23:26.0996 2316 DeviceAssociationService - ok
15:23:27.0012 2316 [ 84C433F0FA896BACFAB67D0B22CFA73C ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
15:23:27.0012 2316 DeviceInstall - ok
15:23:27.0027 2316 [ B21FDAC50FCD4CE53C203F097273532A ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
15:23:27.0027 2316 Dfsc - ok
15:23:27.0043 2316 [ 120BFA182545EE73B832595137E080F8 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
15:23:27.0043 2316 Dhcp - ok
15:23:27.0043 2316 [ C0C87CCE88C4532B575AD60A95E7FD57 ] discache C:\WINDOWS\system32\drivers\discache.sys
15:23:27.0043 2316 discache - ok
15:23:27.0058 2316 [ 4E3237D8266580412CCA774321056111 ] disk C:\WINDOWS\system32\drivers\disk.sys
15:23:27.0058 2316 disk - ok
15:23:27.0074 2316 [ 9B20A9DB154249E0E40036BC8BDC3E38 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
15:23:27.0074 2316 dmvsc - ok
15:23:27.0074 2316 [ 090D65A0A412F9056F16297D5A5B830F ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:23:27.0074 2316 Dnscache - ok
15:23:27.0090 2316 [ 7F0C01E0C0BB063136DF09845FFC4CE1 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
15:23:27.0090 2316 dot3svc - ok
15:23:27.0105 2316 [ 07D96198AFB530CF4A0A9B5C0E49073F ] DPS C:\WINDOWS\system32\dps.dll
15:23:27.0121 2316 DPS - ok
15:23:27.0121 2316 [ 50B8D915F3514EC8BE7DF0D2EDEC44BA ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:23:27.0121 2316 drmkaud - ok
15:23:27.0136 2316 [ 0EF9D082E38EC861DD4886896666103B ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
15:23:27.0136 2316 DsmSvc - ok
15:23:27.0168 2316 [ A46E69E1AEC3CD106610CCF90A517C4A ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
15:23:27.0183 2316 DXGKrnl - ok
15:23:27.0183 2316 [ 59ECF01342E0CDB726C7948E36A43309 ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:23:27.0183 2316 EapHost - ok
15:23:27.0199 2316 [ 0118D8C2B0B04F6B6FE620EADDA53449 ] EFS C:\WINDOWS\System32\lsass.exe
15:23:27.0199 2316 EFS - ok
15:23:27.0214 2316 [ BC7119CF5B5BC9F54C8FAE221C3227F2 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
15:23:27.0214 2316 EhStorClass - ok
15:23:27.0214 2316 [ 1A5945FA87A05A97A1175657B7BA4EDB ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
15:23:27.0214 2316 EhStorTcgDrv - ok
15:23:27.0230 2316 [ 8B22B788A329645F08AB4F86B9580AF3 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
15:23:27.0230 2316 ErrDev - ok
15:23:27.0246 2316 [ 39FB0D2C74D4201F01BA30D06162525A ] EventSystem C:\WINDOWS\system32\es.dll
15:23:27.0261 2316 EventSystem - ok
15:23:27.0261 2316 [ B60B2A0E110D640440263268FC02C726 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
15:23:27.0261 2316 exfat - ok
15:23:27.0277 2316 [ C8B18803E1521225BDBA86B5F7D2E9FC ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
15:23:27.0277 2316 fastfat - ok
15:23:27.0292 2316 [ 22A38E2F78153AB500482FD0D4A9DB65 ] Fax C:\WINDOWS\system32\fxssvc.exe
15:23:27.0292 2316 Fax - ok
15:23:27.0308 2316 [ 9709867A1354A4D10046ADE31DA67511 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
15:23:27.0308 2316 fdc - ok
15:23:27.0308 2316 [ E099DF1CE3285FCA613AF84D792DBC15 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
15:23:27.0324 2316 fdPHost - ok
15:23:27.0324 2316 [ 141B98F42D71B4F5CFB0D8D4769FBA0C ] FDResPub C:\WINDOWS\system32\fdrespub.dll
15:23:27.0324 2316 FDResPub - ok
15:23:27.0339 2316 [ 2754F16876B03037CCA6FBD8C20E1686 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
15:23:27.0339 2316 fhsvc - ok
15:23:27.0339 2316 [ 1018AE04A4D36BA60247C2C22D7BA7D1 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
15:23:27.0339 2316 FileInfo - ok
15:23:27.0355 2316 [ 3A2F87EF4400B5E542E2C2BA8FAB4222 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
15:23:27.0355 2316 Filetrace - ok
15:23:27.0370 2316 [ 65570FE2FE17C5D3DF2132DA0FBE760B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:23:27.0386 2316 FLEXnet Licensing Service - ok
15:23:27.0386 2316 [ F37314C92AB8C876DB478A36A6D9FF0E ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
15:23:27.0386 2316 flpydisk - ok
15:23:27.0402 2316 [ 13C0B6F6EFD0D5C6871C07B56CB5403D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:23:27.0417 2316 FltMgr - ok
15:23:27.0433 2316 [ 89FB9BDDCEC278661EAF57639F9920D7 ] FontCache C:\WINDOWS\system32\FntCache.dll
15:23:27.0433 2316 FontCache - ok
15:23:27.0448 2316 [ 2AAF650823623D89B5FE5C399FC5D1BD ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:23:27.0448 2316 FontCache3.0.0.0 - ok
15:23:27.0464 2316 [ 16D4CC9AE485BC60B6AE026FF2497DE8 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
15:23:27.0464 2316 FsDepends - ok
15:23:27.0464 2316 [ 28E64CAC27FE3A7CA34E2F93E9A8092A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:23:27.0464 2316 Fs_Rec - ok
15:23:27.0480 2316 [ 42F4C92E85B2D5972CEBB28B8CCE6F9D ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
15:23:27.0480 2316 fvevol - ok
15:23:27.0495 2316 [ 05F58A34B5E1EB3274AE7B0875A143EF ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
15:23:27.0495 2316 FxPPM - ok
15:23:27.0511 2316 [ B5AD0B13AD7FD1C749FC45D81392B9DF ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
15:23:27.0511 2316 gagp30kx - ok
15:23:27.0511 2316 [ A9608FF3B1B577BFC969A7B6797B1FC1 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
15:23:27.0511 2316 gencounter - ok
15:23:27.0526 2316 [ 1E9080CAE8013BCB687547E238E54561 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
15:23:27.0526 2316 GPIOClx0101 - ok
15:23:27.0542 2316 [ B13CCD3028A44C6E16E03A3E1AD95FA4 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
15:23:27.0573 2316 gpsvc - ok
15:23:27.0573 2316 [ 7A63087EDE3504684055A57A45E2AFF9 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
15:23:27.0589 2316 HdAudAddService - ok
15:23:27.0604 2316 [ 4A219AB84D6936C2A61FF44D32EF378D ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
15:23:27.0604 2316 HDAudBus - ok
15:23:27.0620 2316 [ 8CBCFA78D2B43CCC23BF5A4C09A700CA ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
15:23:27.0620 2316 HidBatt - ok
15:23:27.0636 2316 [ 9133AFFBA020B97100703DB8E598C73F ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
15:23:27.0636 2316 HidBth - ok
15:23:27.0636 2316 [ 804019176228EBE260A821C5688CAFD2 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
15:23:27.0651 2316 hidi2c - ok
15:23:27.0651 2316 [ 11A4D12F4CADD18CDA334C2756FE450A ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
15:23:27.0651 2316 HidIr - ok
15:23:27.0667 2316 [ C0A9999E5B4C1953C6B07CD9105B41FD ] hidserv C:\WINDOWS\system32\hidserv.dll
15:23:27.0667 2316 hidserv - ok
15:23:27.0682 2316 [ 48ADFEFD445291AE7D619B3F4638B092 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
15:23:27.0682 2316 HidUsb - ok
15:23:27.0698 2316 [ 40AAA716A3F2E494E7F533C45DA3E7E8 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
15:23:27.0698 2316 hkmsvc - ok
15:23:27.0714 2316 [ F4847FFB1D1FD522B4B3848A6A97BE47 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
15:23:27.0714 2316 HomeGroupListener - ok
15:23:27.0729 2316 [ EFC6EEA348478FBAFCF2B2D03DE0B127 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
15:23:27.0729 2316 HomeGroupProvider - ok
15:23:27.0745 2316 [ D7544353157E11864C00A48BC90EF183 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
15:23:27.0745 2316 HpSAMD - ok
15:23:27.0760 2316 [ 8FE9867871C32E9B9A3276C61A0FACC0 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
15:23:27.0760 2316 HTTP - ok
15:23:27.0776 2316 [ 4A3E6732E5BEF6DF531A217B5EBB5C54 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
15:23:27.0776 2316 hwpolicy - ok
15:23:27.0776 2316 [ 0F819743721DFB5906734243ED0CE935 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
15:23:27.0776 2316 hyperkbd - ok
15:23:27.0792 2316 [ A14A2EBA22929901F64B496C1D555982 ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
15:23:27.0792 2316 HyperVideo - ok
15:23:27.0807 2316 [ 11EDC37780E8A2F8E311D73F7658A4D7 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
15:23:27.0807 2316 i8042prt - ok
15:23:27.0823 2316 [ C444F83C318BE18719DC1FDAEFF10898 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
15:23:27.0823 2316 iaStorV - ok
15:23:27.0823 2316 [ 7BB542C7156FA72CC83C1177BB190F94 ] iirsp C:\WINDOWS\system32\drivers\iirsp.sys
15:23:27.0838 2316 iirsp - ok
15:23:27.0854 2316 [ 2412FB8F2F3C48B93DC0179560EB029B ] IKEEXT C:\WINDOWS\System32\ikeext.dll
15:23:27.0854 2316 IKEEXT - ok
15:23:27.0870 2316 [ A43BC9416741ABEA2B8DF60D2C0EA6A2 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
15:23:27.0870 2316 intelide - ok
15:23:27.0885 2316 [ BE23B0DF1401DC890B5CEFA369B1BD8E ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
15:23:27.0885 2316 intelppm - ok
15:23:27.0901 2316 [ AB308167857138B84E4DECDF2000DD27 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:23:27.0901 2316 IpFilterDriver - ok
15:23:27.0916 2316 [ 933DBF31E0632B96B74D1A1230AA2199 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
15:23:27.0916 2316 iphlpsvc - ok
15:23:27.0932 2316 [ 7E4FEE6D5C5BC52199C481DAC564FE43 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
15:23:27.0932 2316 IPMIDRV - ok
15:23:27.0948 2316 [ 57B0C0D982013C72911A3F5CBA795034 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
15:23:27.0948 2316 IPNAT - ok
15:23:27.0963 2316 [ 9D6DB34476AC6448B3CA59D8676F7CE6 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
15:23:27.0963 2316 IRENUM - ok
15:23:27.0979 2316 [ 2E1347C9CC7DDB43183AF725135ACF0D ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
15:23:27.0979 2316 isapnp - ok
15:23:27.0979 2316 [ 6AC2FF3AF40AE6AC39B097A07225B95B ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
15:23:27.0979 2316 iScsiPrt - ok
15:23:27.0994 2316 [ 4533BE9F8D67BDCF5FECA87DCC345448 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
15:23:27.0994 2316 kbdclass - ok
15:23:28.0010 2316 [ 8F73A6DAEF7F7D102FBBA6F3EBC47F97 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
15:23:28.0010 2316 kbdhid - ok
15:23:28.0026 2316 [ F7E302012680B0617C904B58594E0376 ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
15:23:28.0026 2316 kdnic - ok
15:23:28.0026 2316 [ 0118D8C2B0B04F6B6FE620EADDA53449 ] KeyIso C:\WINDOWS\system32\lsass.exe
15:23:28.0026 2316 KeyIso - ok
15:23:28.0041 2316 [ 137AB78B8510F9E432C4793C0CF4CD80 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
15:23:28.0041 2316 KSecDD - ok
15:23:28.0057 2316 [ 90226157B0130F9F11A3890BAE6F07AA ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
15:23:28.0057 2316 KSecPkg - ok
15:23:28.0072 2316 [ C2ADC979C11A858949ECC1B9233B884C ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
15:23:28.0072 2316 KtmRm - ok
15:23:28.0088 2316 [ ACD4A3BA32DE011B1D717EB14CB377DE ] L1C C:\WINDOWS\system32\DRIVERS\L1C63x86.sys
15:23:28.0088 2316 L1C - ok
15:23:28.0104 2316 [ 57BA03D561180AFABCB812A57704BFA7 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
15:23:28.0104 2316 LanmanServer - ok
15:23:28.0104 2316 [ 7867CD2CC05D8B1377DC7FEE93716015 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
15:23:28.0119 2316 LanmanWorkstation - ok
15:23:28.0119 2316 [ 240B446E7D20F48D1CD2E9F9E68C0FF4 ] LECs6022 C:\WINDOWS\System32\drivers\LECs6022.sys
15:23:28.0135 2316 LECs6022 - ok
15:23:28.0135 2316 [ A79697FA4F442B0B3678E6181490C8E8 ] LEMo6022 C:\WINDOWS\System32\drivers\LEMo6022.sys
15:23:28.0135 2316 LEMo6022 - ok
15:23:28.0150 2316 [ 4379CD66C1C26472CD73370DA3CB691A ] LEub6022 C:\WINDOWS\System32\drivers\LEub6022.sys
15:23:28.0150 2316 LEub6022 - ok
15:23:28.0166 2316 [ AD581D8BA8C2CE46933D44392BA35C24 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
15:23:28.0166 2316 lltdio - ok
15:23:28.0166 2316 [ BCDCFD2C2115334419EF025C533AB6C5 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
15:23:28.0182 2316 lltdsvc - ok
15:23:28.0182 2316 [ FBA8BDF947B5289E85324F00043CC5D8 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
15:23:28.0182 2316 lmhosts - ok
15:23:28.0197 2316 [ 6B01CB678E1E390CEA9514D4774EFB51 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
15:23:28.0197 2316 LSI_SAS - ok
15:23:28.0213 2316 [ 4C3AFBA9ED36535313054AC26532E9DE ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
15:23:28.0213 2316 LSI_SAS2 - ok
15:23:28.0228 2316 [ 0715DC27611C202D04BC0365D666DD27 ] LSI_SCSI C:\WINDOWS\system32\drivers\lsi_scsi.sys
15:23:28.0228 2316 LSI_SCSI - ok
15:23:28.0244 2316 [ DB6B9554AA4F83212E80D5107D8C53EE ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
15:23:28.0244 2316 LSI_SSS - ok
15:23:28.0260 2316 [ 7607DE91C0BFB0FC7210349F16737D16 ] LSM C:\WINDOWS\System32\lsm.dll
15:23:28.0260 2316 LSM - ok
15:23:28.0275 2316 [ F731770C339FEB6563397D410793A756 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
15:23:28.0275 2316 luafv - ok
15:23:28.0275 2316 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
15:23:28.0275 2316 MBAMProtector - ok
15:23:28.0291 2316 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:23:28.0291 2316 MBAMScheduler - ok
15:23:28.0306 2316 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:23:28.0322 2316 MBAMService - ok
15:23:28.0322 2316 [ 125C3C5A315500A1AD54F0B4766AF815 ] megasas C:\WINDOWS\system32\drivers\megasas.sys
15:23:28.0322 2316 megasas - ok
15:23:28.0338 2316 [ 05457CC7F5586C6E8D02FFA7F23FCEDF ] MegaSR C:\WINDOWS\system32\drivers\MegaSR.sys
15:23:28.0338 2316 MegaSR - ok
15:23:28.0353 2316 [ CAAAB04E7775D8F11E166482F3596539 ] MMCSS C:\WINDOWS\system32\mmcss.dll
15:23:28.0353 2316 MMCSS - ok
15:23:28.0353 2316 [ 049E433162AFE9B08C05D81D2C62CD61 ] Modem C:\WINDOWS\system32\drivers\modem.sys
15:23:28.0353 2316 Modem - ok
15:23:28.0369 2316 [ 81F2FEE55660E51820C93A388AE8FEB9 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
15:23:28.0369 2316 monitor - ok
15:23:28.0384 2316 [ 9D3F069A705325E7B7CEA36BFB65E616 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
15:23:28.0384 2316 mouclass - ok
15:23:28.0384 2316 [ 3C3C50AA12E2E48A9FEAA4BF5AA789A0 ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
15:23:28.0384 2316 mouhid - ok
15:23:28.0400 2316 [ 13D8E3077EF0AE583F4634236D9A0992 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
15:23:28.0400 2316 mountmgr - ok
15:23:28.0416 2316 [ A69630D039C38018689190234F866D77 ] MpKslc252dcf5 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1FE07FF0-B007-4BD7-B8CD-01ED1A38C75D}\MpKslc252dcf5.sys
15:23:28.0416 2316 MpKslc252dcf5 - ok
15:23:28.0431 2316 [ 3343B276F4AD3BBF44C46AB2A1E8A23A ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
15:23:28.0431 2316 mpsdrv - ok
15:23:28.0447 2316 [ 1A9FED739F0BBD20451519C30D183AC8 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
15:23:28.0447 2316 MpsSvc - ok
15:23:28.0462 2316 [ 329E3ACBFC616666D3D04C6FDC1B71E0 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
15:23:28.0462 2316 MRxDAV - ok
15:23:28.0478 2316 [ 5FAC7AC77D9ADD42579EDF678F08DF9F ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:23:28.0478 2316 mrxsmb - ok
15:23:28.0494 2316 [ B9F3DA35CDE171B5CBA70319AD7D5E59 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
15:23:28.0494 2316 mrxsmb10 - ok
15:23:28.0509 2316 [ 96E88C54A0CF32A74483819DA7DA3A15 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
15:23:28.0509 2316 mrxsmb20 - ok
15:23:28.0509 2316 [ 61E23CF0A54EDBAE5CFE3322E960ECC9 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
15:23:28.0509 2316 MsBridge - ok
15:23:28.0525 2316 [ 37594E0C3119827CA7F8D16D187239E0 ] MSDTC C:\WINDOWS\System32\msdtc.exe
15:23:28.0525 2316 MSDTC - ok
15:23:28.0556 2316 [ 651DEF4337DD77E6A607CEE49D3C4B30 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:23:28.0556 2316 Msfs - ok
15:23:28.0556 2316 [ 8F47F5F31F001C4F97840DB723618DD0 ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
15:23:28.0556 2316 msgpiowin32 - ok
15:23:28.0572 2316 [ 26BBD77D23FFABB14C3291A1B8555EA5 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
15:23:28.0572 2316 mshidkmdf - ok
15:23:28.0572 2316 [ 51808FEF911B77758A6CF7CEB469AF9E ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
15:23:28.0572 2316 mshidumdf - ok
15:23:28.0587 2316 [ F103DF830D370B7535FDA3D477C8D8A0 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
15:23:28.0587 2316 msisadrv - ok
15:23:28.0603 2316 [ 2C777DD7FD2340F9F9F8BD76B9810956 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
15:23:28.0603 2316 MSiSCSI - ok
15:23:28.0603 2316 msiserver - ok
15:23:28.0618 2316 [ 3FCF6AA904516872CF70ED248F86889B ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:23:28.0618 2316 MSKSSRV - ok
15:23:28.0618 2316 [ 10C229EAC28FDB8550EE93D955932F83 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
15:23:28.0634 2316 MsLldp - ok
15:23:28.0634 2316 [ BA786F089895196E18120F66F996A3D2 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:23:28.0634 2316 MSPCLOCK - ok
15:23:28.0634 2316 [ 362950A5F7B1794DA9CB985AF7BBCC4B ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:23:28.0650 2316 MSPQM - ok
15:23:28.0650 2316 [ 79A14AB6C6A5B01E9CE99937D1304D13 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
15:23:28.0665 2316 MsRPC - ok
15:23:28.0665 2316 [ A819A3006C27870AF05E408AD06FACFF ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
15:23:28.0665 2316 mssmbios - ok
15:23:28.0681 2316 [ FB1D61A2998A5C4456C6B73DD41D5352 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
15:23:28.0681 2316 MSTEE - ok
15:23:28.0681 2316 [ 3CC687876469F0FD3B2D936FA7A6EC59 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
15:23:28.0681 2316 MTConfig - ok
15:23:28.0696 2316 [ 6779B2A319A563C68B56DE8491E9EA76 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
15:23:28.0696 2316 Mup - ok
15:23:28.0712 2316 [ 1DEF95DC467131BF4AB52A8F72C42D89 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
15:23:28.0712 2316 mvumis - ok
15:23:28.0712 2316 [ 34FEF8CBBD7C4FACDD6AB68E39E02062 ] napagent C:\WINDOWS\system32\qagentRT.dll
15:23:28.0728 2316 napagent - ok
15:23:28.0743 2316 [ D48E3B33BD911BA28413A4337456724F ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
15:23:28.0743 2316 NativeWifiP - ok
15:23:28.0759 2316 [ 4B947B7F1ADCF1AE86B0EB717D55CE0C ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
15:23:28.0759 2316 NcaSvc - ok
15:23:28.0759 2316 [ 466C47B1335533884C06CA88D073B759 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
15:23:28.0774 2316 NcdAutoSetup - ok
15:23:28.0790 2316 [ 714F5CAA4510805BD29DF7BE4587F770 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
15:23:28.0790 2316 NDIS - ok
15:23:28.0806 2316 [ 9B8BC481DEEAA07C51DA214D2CEF2FC9 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
15:23:28.0821 2316 NdisCap - ok
15:23:28.0821 2316 [ 1EA68DB9E05248EF9B940D6D0A0725B3 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
15:23:28.0837 2316 NdisImPlatform - ok
15:23:28.0837 2316 [ 71F6E2AF63B0E52B36CEE7F0AE076A18 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:23:28.0837 2316 NdisTapi - ok
15:23:28.0852 2316 [ DDC67239BFE82DC5A878039B464B1968 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:23:28.0852 2316 Ndisuio - ok
15:23:28.0868 2316 [ 556DB924D61BC4A5E0F95D383E9B1009 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:23:28.0868 2316 NdisWan - ok
15:23:28.0868 2316 [ 556DB924D61BC4A5E0F95D383E9B1009 ] NDISWANLEGACY C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:23:28.0868 2316 NDISWANLEGACY - ok
15:23:28.0884 2316 [ B8C10B9DE50120E8CA3E995F94CA80D7 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:23:28.0899 2316 NDProxy - ok
15:23:28.0915 2316 [ 583F95CEFCD5D896B5531BD338030401 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
15:23:28.0915 2316 Ndu - ok
15:23:28.0930 2316 [ 4CA677A214248DB8227F8035B546F7D0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:23:28.0930 2316 NetBIOS - ok
15:23:28.0946 2316 [ 303A053C25E468B9925C22288BEF8484 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:23:28.0946 2316 NetBT - ok
15:23:28.0962 2316 [ 0118D8C2B0B04F6B6FE620EADDA53449 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:23:28.0977 2316 Netlogon - ok
15:23:28.0993 2316 [ A54157CE7FF480834897CC0FA6DDF620 ] Netman C:\WINDOWS\System32\netman.dll
15:23:28.0993 2316 Netman - ok
15:23:29.0024 2316 [ 58E8D9AD811E1BAEA04EAFB7D987FEA9 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
15:23:29.0024 2316 netprofm - ok
15:23:29.0040 2316 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:23:29.0055 2316 NetTcpPortSharing - ok
15:23:29.0071 2316 [ 4B539272E9F5C3B8D9714D137FD340A6 ] nfrd960 C:\WINDOWS\system32\drivers\nfrd960.sys
15:23:29.0071 2316 nfrd960 - ok
15:23:29.0086 2316 [ 6906D71601703792F395CF8497209FDD ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
15:23:29.0086 2316 NlaSvc - ok
15:23:29.0102 2316 [ EAC569A77BE92B247FCA51E498B17DF1 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:23:29.0102 2316 Npfs - ok
15:23:29.0118 2316 [ 6E994702ED294CDBED7621590EC75735 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
15:23:29.0118 2316 npsvctrig - ok
15:23:29.0133 2316 [ 61C583D971CC3411CCD3D58704E9301B ] nsi C:\WINDOWS\system32\nsisvc.dll
15:23:29.0133 2316 nsi - ok
15:23:29.0149 2316 [ 9588CCD14571FA22F8F2ECCF198AB448 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
15:23:29.0149 2316 nsiproxy - ok

[paveliknecas]

15:23:29.0196 2316 [ 99C73E3FE9B36275BD91D2009F2BA2E0 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:23:29.0227 2316 Ntfs - ok
15:23:29.0242 2316 [ 0F965AF67042AF539274738FFD0C8C71 ] Null C:\WINDOWS\system32\drivers\Null.sys
15:23:29.0242 2316 Null - ok
15:23:29.0242 2316 [ BD23FF50A9A59AAF48052F5E7D0682B0 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
15:23:29.0258 2316 nvraid - ok
15:23:29.0274 2316 [ 108DD54A5B1E73F583AF7DC94CCE52B8 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
15:23:29.0274 2316 nvstor - ok
15:23:29.0289 2316 [ 5ED87C9C51CFE59B1DDFF8290719E0E4 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
15:23:29.0289 2316 nv_agp - ok
15:23:29.0305 2316 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:23:29.0305 2316 ose - ok
15:23:29.0336 2316 [ BB3916021D0AC8D33C02C1161B7A2621 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
15:23:29.0336 2316 p2pimsvc - ok
15:23:29.0367 2316 [ 433A776514D8A57DA92467991AE2FEFF ] p2psvc C:\WINDOWS\system32\p2psvc.dll
15:23:29.0383 2316 p2psvc - ok
15:23:29.0398 2316 [ 8BCE63AF5B52642E832630F862DE96EF ] Parport C:\WINDOWS\System32\drivers\parport.sys
15:23:29.0398 2316 Parport - ok
15:23:29.0414 2316 [ 7289BE4566F0E5126868EB6E4292CC3C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
15:23:29.0414 2316 partmgr - ok
15:23:29.0430 2316 [ 49A439FEAB060F74B8EC7DBF44D4A7BA ] Parvdm C:\WINDOWS\System32\drivers\parvdm.sys
15:23:29.0430 2316 Parvdm - ok
15:23:29.0445 2316 [ B06FF821B79BED0912579A48140A4C46 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
15:23:29.0461 2316 PcaSvc - ok
15:23:29.0476 2316 [ EA828C84C8948D0E4994C1E0A45EB05F ] pci C:\WINDOWS\system32\drivers\pci.sys
15:23:29.0476 2316 pci - ok
15:23:29.0492 2316 [ B4444133ED61F87FD49A2ADD28285115 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
15:23:29.0492 2316 pciide - ok
15:23:29.0508 2316 [ 6E11FDE71F2015007CDD4AE9D2D700C9 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
15:23:29.0508 2316 pcmcia - ok
15:23:29.0523 2316 [ 8A56B080B12950D448D556FE4BA6C68C ] pcw C:\WINDOWS\system32\drivers\pcw.sys
15:23:29.0523 2316 pcw - ok
15:23:29.0539 2316 [ 58F99F74C33B7615ABEECF70BAD5FE1E ] pdc C:\WINDOWS\system32\drivers\pdc.sys
15:23:29.0554 2316 pdc - ok
15:23:29.0570 2316 [ 8C7EE53A9F6A5F01E77DBB81654E5B66 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
15:23:29.0586 2316 PEAUTH - ok
15:23:29.0632 2316 [ D90D72035BA6DB320C9700E16552D0FE ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
15:23:29.0679 2316 PeerDistSvc - ok
15:23:29.0695 2316 [ D87D76C2C01E48F925AB32938916C0A5 ] pelmouse C:\WINDOWS\system32\DRIVERS\pelmouse.sys
15:23:29.0695 2316 pelmouse - ok
15:23:29.0710 2316 [ A1B34DD18E8C985D6147C4D7A268EDB6 ] PelService C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
15:23:29.0710 2316 PelService - ok
15:23:29.0726 2316 [ E6A382B4C0FF76CE2851A862BB8D0F70 ] pelusblf C:\WINDOWS\system32\DRIVERS\pelusblf.sys
15:23:29.0726 2316 pelusblf - ok
15:23:29.0742 2316 [ F43803A9961C592BE0A57F7BDE0AB51F ] pelvendr C:\WINDOWS\system32\DRIVERS\pelvendr.sys
15:23:29.0742 2316 pelvendr - ok
15:23:29.0804 2316 [ CCF3E6C601D71A4CBB4C08B5591E5D26 ] pla C:\WINDOWS\system32\pla.dll
15:23:29.0835 2316 pla - ok
15:23:29.0851 2316 [ 84C433F0FA896BACFAB67D0B22CFA73C ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
15:23:29.0866 2316 PlugPlay - ok
15:23:29.0882 2316 [ 7BB1FAB338641C440FDCDEB8B243648A ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
15:23:29.0882 2316 PNRPAutoReg - ok
15:23:29.0898 2316 [ BB3916021D0AC8D33C02C1161B7A2621 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
15:23:29.0913 2316 PNRPsvc - ok
15:23:29.0929 2316 [ 9DC57EB201F2F77E874084176EAD5BCF ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
15:23:29.0944 2316 PolicyAgent - ok
15:23:29.0960 2316 [ 556848D77F36645260DE452513A54F5D ] Power C:\WINDOWS\system32\umpo.dll
15:23:29.0960 2316 Power - ok
15:23:29.0976 2316 [ 03D522782A0BB5108C8A43A10EE51CB0 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:23:29.0976 2316 PptpMiniport - ok
15:23:30.0038 2316 [ C5E38D8CACF357148BECFA9941B7F22C ] PrintNotify C:\Windows\system32\spool\DRIVERS\W32X86\3\PrintConfig.dll
15:23:30.0085 2316 PrintNotify - ok
15:23:30.0100 2316 [ BD23C45A654066374E3EC7F4EF8FC9B6 ] Processor C:\WINDOWS\System32\drivers\processr.sys
15:23:30.0100 2316 Processor - ok
15:23:30.0116 2316 [ FEE5D89ABE17FBD24FE8A6FD91543316 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
15:23:30.0116 2316 ProfSvc - ok
15:23:30.0132 2316 [ 42E46DC7767F5AB664E3F6B36D9764AD ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
15:23:30.0132 2316 Psched - ok
15:23:30.0147 2316 [ 9D8D860A9CF57A47E0041C9BDA415130 ] QWAVE C:\WINDOWS\system32\qwave.dll
15:23:30.0163 2316 QWAVE - ok
15:23:30.0178 2316 [ 29E548E1C511BFBE56FA6438488DE0E0 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
15:23:30.0178 2316 QWAVEdrv - ok
15:23:30.0194 2316 [ C07E9331431C78D41F30E62A15E1D324 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:23:30.0194 2316 RasAcd - ok
15:23:30.0194 2316 [ F63755B2DCE1BE7927F5CEAB7991EFED ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
15:23:30.0194 2316 RasAgileVpn - ok
15:23:30.0210 2316 [ 63A57B7DDF705E4D7D6B0FF86BDBBF96 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:23:30.0225 2316 RasAuto - ok
15:23:30.0241 2316 [ 6E0649D7325D85C47C844EB3267E4625 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:23:30.0241 2316 Rasl2tp - ok
15:23:30.0256 2316 [ FA17FE26953E6B0DE7A5A966253869E9 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:23:30.0272 2316 RasMan - ok
15:23:30.0272 2316 [ 5BA6DB7AD04A8EADE0A41E6C8427582B ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:23:30.0288 2316 RasPppoe - ok
15:23:30.0288 2316 [ 3A421DDA09E3BF96E9D698D13FDC139E ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
15:23:30.0303 2316 RasSstp - ok
15:23:30.0319 2316 [ ED1CBB55D5946520994FCD8CA9596D9D ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:23:30.0319 2316 rdbss - ok
15:23:30.0334 2316 [ 4FB0345ADE5C2E15EA1A22F173E71D37 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
15:23:30.0334 2316 rdpbus - ok
15:23:30.0350 2316 [ 2CAD2A13569741C67CD9C52F97E0F992 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
15:23:30.0350 2316 RDPDR - ok
15:23:30.0381 2316 [ 40083918DB637FCB8A2C2453A2284603 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
15:23:30.0381 2316 RdpVideoMiniport - ok
15:23:30.0397 2316 [ EA0E833A1418C28E6085DFFA68731EA5 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:23:30.0397 2316 RDPWD - ok
15:23:30.0412 2316 [ 38A8012D03150D6852B9CDDB24280F1A ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
15:23:30.0412 2316 rdyboost - ok
15:23:30.0428 2316 [ 9F38A0A16958C33552C92EAE5AFC9E5F ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:23:30.0444 2316 RemoteAccess - ok
15:23:30.0444 2316 [ 8331C0CF128BD1A56440B2E82AAA5EB5 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
15:23:30.0459 2316 RemoteRegistry - ok
15:23:30.0475 2316 [ 5AF682962162FCDB85B56CB8A0DB5E6B ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
15:23:30.0475 2316 RpcEptMapper - ok
15:23:30.0490 2316 [ A8DDFFFBA3F655C82AB5D4A249E4D414 ] RpcLocator C:\WINDOWS\system32\locator.exe
15:23:30.0490 2316 RpcLocator - ok
15:23:30.0522 2316 [ BCD3562ACB27B8137BF809F61BA44E80 ] RpcSs C:\WINDOWS\system32\rpcss.dll
15:23:30.0537 2316 RpcSs - ok
15:23:30.0537 2316 [ C7BD738B9BF45E797A6089AF946BAC47 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
15:23:30.0537 2316 rspndr - ok
15:23:30.0553 2316 [ A633399432491BB173BB3CF3B41B9C55 ] RSUSBSTOR C:\WINDOWS\System32\Drivers\RtsUStor.sys
15:23:30.0568 2316 RSUSBSTOR - ok
15:23:30.0568 2316 [ E21867D4A8FF3824150E56979E333610 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
15:23:30.0568 2316 s3cap - ok
15:23:30.0584 2316 [ 0118D8C2B0B04F6B6FE620EADDA53449 ] SamSs C:\WINDOWS\system32\lsass.exe
15:23:30.0584 2316 SamSs - ok
15:23:30.0600 2316 [ 434F805B0B3840A52C19C96A7BB64AA3 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
15:23:30.0600 2316 sbp2port - ok
15:23:30.0615 2316 [ B1B737661EF9D779FEE8866CC38F7B98 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
15:23:30.0631 2316 SCardSvr - ok
15:23:30.0646 2316 [ 3F21FBE0550B41240B6A864F6C8C15E4 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
15:23:30.0646 2316 scfilter - ok
15:23:30.0662 2316 [ F1866E47D02F60A62C78870F80E09E49 ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:23:30.0693 2316 Schedule - ok
15:23:30.0693 2316 [ BAEE72BFBEC7B96AA85F861A6F4FE428 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
15:23:30.0709 2316 SCPolicySvc - ok
15:23:30.0724 2316 [ 725EF6FE7EDB150BF25B3D8EA7819FD4 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
15:23:30.0724 2316 sdbus - ok
15:23:30.0740 2316 [ B433671D5A6D36D35141A56B6E75D086 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
15:23:30.0740 2316 SDRSVC - ok
15:23:30.0756 2316 [ 29A975CB4DDA873C80B0AAA91FFA74B8 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
15:23:30.0756 2316 sdstor - ok
15:23:30.0771 2316 [ A8CC993CED4DF9710ADAABC9DA66B660 ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
15:23:30.0771 2316 secdrv - ok
15:23:30.0787 2316 [ B83564D1603B821CCD82CC335C87AD97 ] seclogon C:\WINDOWS\system32\seclogon.dll
15:23:30.0787 2316 seclogon - ok
15:23:30.0802 2316 [ 64355214ECE4573F553353597779EF11 ] SENS C:\WINDOWS\System32\sens.dll
15:23:30.0802 2316 SENS - ok
15:23:30.0818 2316 [ 7E4F0DCAF6739C830B8043CCBF79ABBF ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
15:23:30.0834 2316 SensrSvc - ok
15:23:30.0834 2316 [ 3DE395F302C4DCD3D4792EB786A7B402 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
15:23:30.0834 2316 SerCx - ok
15:23:30.0849 2316 [ C706C88BAEE6B23C86C791EF47D901D4 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
15:23:30.0849 2316 Serenum - ok
15:23:30.0865 2316 [ F492965E2EDDB1BCA2E000A1085BE082 ] Serial C:\WINDOWS\System32\drivers\serial.sys
15:23:30.0865 2316 Serial - ok
15:23:30.0880 2316 [ 409C91880A6A70FDD33CFEDC43D0F808 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
15:23:30.0880 2316 sermouse - ok
15:23:30.0927 2316 [ E19B1B639B5017BF6224744565B08E38 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
15:23:30.0943 2316 SessionEnv - ok
15:23:30.0958 2316 [ BDF7F7AC3700DAF0A19D19C008D408C0 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
15:23:30.0958 2316 sfloppy - ok
15:23:30.0974 2316 [ 578AA5D3C4A4C1052C9B13B4FA748B00 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:23:30.0990 2316 SharedAccess - ok
15:23:31.0005 2316 [ C416B8E2EF38D100DA19C4DA8A3E8A17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:23:31.0021 2316 ShellHWDetection - ok
15:23:31.0036 2316 [ A5A3C56B5E46F77E6992A3772F8E4C8D ] sisagp C:\WINDOWS\system32\drivers\sisagp.sys
15:23:31.0036 2316 sisagp - ok
15:23:31.0052 2316 [ 39763193254A265FDA6F08EF375549DF ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
15:23:31.0052 2316 SiSRaid2 - ok
15:23:31.0068 2316 [ 2A95CC135283B3C56B783171532B62D0 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
15:23:31.0068 2316 SiSRaid4 - ok
15:23:31.0083 2316 [ 1FA732F662375B134B510B44686BABD2 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
15:23:31.0099 2316 SNMPTRAP - ok
15:23:31.0114 2316 [ 5C9F014F1D52160CEC897C7A684673AA ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
15:23:31.0114 2316 spaceport - ok
15:23:31.0130 2316 [ C8E9372645392E23CF36B4C1686B1509 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
15:23:31.0130 2316 SpbCx - ok
15:23:31.0146 2316 [ D246A6F32CD74A0AE1F00EF7C73A1DBC ] Spooler C:\WINDOWS\System32\spoolsv.exe
15:23:31.0161 2316 Spooler - ok
15:23:31.0255 2316 [ ED4B93745C905B985BBE197970FFBF2E ] sppsvc C:\WINDOWS\system32\sppsvc.exe
15:23:31.0317 2316 sppsvc - ok
15:23:31.0333 2316 [ 8B20E19AF56E21E9549D4CA496BB78D6 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:23:31.0348 2316 srv - ok
15:23:31.0364 2316 [ DD81ABA1081A9A4E2999568C0DB61A49 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
15:23:31.0364 2316 srv2 - ok
15:23:31.0380 2316 [ C4006F04178E58192FFD0A82A5E5E897 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
15:23:31.0395 2316 srvnet - ok
15:23:31.0411 2316 [ 9B4B2E29751312BF65CBE301AFB746A1 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:23:31.0411 2316 SSDPSRV - ok
15:23:31.0426 2316 [ F23D18AF0C34B5167BA72F9B95EEAB06 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
15:23:31.0426 2316 SstpSvc - ok
15:23:31.0442 2316 [ CC17B7A7C4DD72BE2B10DAF254147A2B ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
15:23:31.0442 2316 stexstor - ok
15:23:31.0489 2316 [ B9A28B6DA5EFEE202FAD396FEDFE73D8 ] StiSvc C:\WINDOWS\System32\wiaservc.dll
15:23:31.0504 2316 StiSvc - ok
15:23:31.0520 2316 [ EC9B71B41184284E65F496B39C572F30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
15:23:31.0520 2316 storahci - ok
15:23:31.0536 2316 [ B00DA575ADF228C1D33269CDE92A68EC ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
15:23:31.0536 2316 storflt - ok
15:23:31.0551 2316 [ 9AA77CAD9ADF035109B9E65EB3F8D61A ] StorSvc C:\WINDOWS\system32\storsvc.dll
15:23:31.0551 2316 StorSvc - ok
15:23:31.0567 2316 [ 5C538C4975B53C31500BC535FF436CDC ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
15:23:31.0567 2316 storvsc - ok
15:23:31.0567 2316 [ 8DF8D4AEADF32F5D4C6FFA9936E16A10 ] svsvc C:\WINDOWS\system32\svsvc.dll
15:23:31.0582 2316 svsvc - ok
15:23:31.0598 2316 [ 8DCA45AD5E2D83E00A1952BE2B541A27 ] swenum C:\WINDOWS\System32\drivers\swenum.sys
15:23:31.0598 2316 swenum - ok
15:23:31.0614 2316 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:23:31.0629 2316 SwitchBoard - ok
15:23:31.0645 2316 [ B53421FCD315F35837A07716E9F7A1E7 ] swprv C:\WINDOWS\System32\swprv.dll
15:23:31.0660 2316 swprv - ok
15:23:31.0692 2316 [ 3F2E97730BE6855F51E2512B377E346E ] SysMain C:\WINDOWS\system32\sysmain.dll
15:23:31.0723 2316 SysMain - ok
15:23:31.0738 2316 [ 20A4983586DC02E81D4CC17A3D0399DF ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
15:23:31.0738 2316 SystemEventsBroker - ok
15:23:31.0754 2316 [ 3705A5E2A2834EA94EF073D87AF88D8F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
15:23:31.0754 2316 TabletInputService - ok
15:23:31.0770 2316 [ 4A10477302BB35A17ED818CD8720478A ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:23:31.0785 2316 TapiSrv - ok
15:23:31.0832 2316 [ 04FF6793A4083FA17B224D316A5B0BF8 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
15:23:31.0863 2316 Tcpip - ok
15:23:31.0910 2316 [ 04FF6793A4083FA17B224D316A5B0BF8 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:23:31.0926 2316 TCPIP6 - ok
15:23:31.0957 2316 [ D40FB114D559FDDE599293E1B5107644 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
15:23:31.0957 2316 tcpipreg - ok
15:23:31.0972 2316 [ 0886D9F1B5A5334FBB143A260E4BFB5C ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
15:23:31.0972 2316 tdx - ok
15:23:31.0988 2316 [ 0E099CC6D72DD47CAB9CC3D5DDF0A93E ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
15:23:31.0988 2316 terminpt - ok
15:23:32.0004 2316 [ 10DA7F780EF287FEA7D70C1633C68F0B ] TermService C:\WINDOWS\System32\termsrv.dll
15:23:32.0035 2316 TermService - ok
15:23:32.0035 2316 [ 14378287DC6D4CF1E3279AA9EBD70665 ] Themes C:\WINDOWS\system32\themeservice.dll
15:23:32.0050 2316 Themes - ok
15:23:32.0050 2316 [ CAAAB04E7775D8F11E166482F3596539 ] THREADORDER C:\WINDOWS\system32\mmcss.dll
15:23:32.0066 2316 THREADORDER - ok
15:23:32.0082 2316 [ BAD3F8C116412AF06DEE2883333BAB9E ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
15:23:32.0082 2316 TimeBroker - ok
15:23:32.0097 2316 [ A3E6E1E7DA37D0C919D2A0EA1C18A9F9 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
15:23:32.0097 2316 TPM - ok
15:23:32.0113 2316 [ 7B19BA44B3A44494DBA300206FABA998 ] TrkWks C:\WINDOWS\System32\trkwks.dll
15:23:32.0128 2316 TrkWks - ok
15:23:32.0128 2316 [ FD9F6ED4C26CA21B8DD2994F14BD98FC ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
15:23:32.0128 2316 TrustedInstaller - ok
15:23:32.0160 2316 [ B9E622309DE8C780E6818531586F2221 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
15:23:32.0160 2316 TsUsbFlt - ok
15:23:32.0160 2316 [ 074440A1C04913F7DF81839565A47917 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
15:23:32.0175 2316 TsUsbGD - ok
15:23:32.0175 2316 [ 62EE13D4EE7DB793C13F33F51A21170E ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
15:23:32.0191 2316 tunnel - ok
15:23:32.0191 2316 [ E0750A399E378C8433165C843FD7F732 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
15:23:32.0191 2316 uagp35 - ok
15:23:32.0206 2316 [ B3B9DDEEFC3B823B3067DCADCD80014D ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
15:23:32.0206 2316 UASPStor - ok
15:23:32.0222 2316 [ B4475F3B30A06B0E977F44AA3745765C ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
15:23:32.0238 2316 UCX01000 - ok
15:23:32.0253 2316 [ 942D7B29F95DC6C5D14B8758044627C1 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
15:23:32.0253 2316 udfs - ok
15:23:32.0284 2316 [ 3F7B87F8E850907783AC681AF542601D ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
15:23:32.0284 2316 UI0Detect - ok
15:23:32.0300 2316 [ C4FE9CC8AA769B1D140C07308574969D ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
15:23:32.0300 2316 uliagpkx - ok
15:23:32.0316 2316 [ D54E16CE5FF8493E611CFF34F96F5A00 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
15:23:32.0316 2316 umbus - ok
15:23:32.0316 2316 [ 4F92FB5D2353C1B75F0C3138C1822FC3 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
15:23:32.0331 2316 UmPass - ok
15:23:32.0347 2316 [ CC0CC034C75F8D445B7E561BA018E166 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
15:23:32.0347 2316 UmRdpService - ok
15:23:32.0362 2316 [ 4359A695FB0CF5C0C78A7FD2DACABC00 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:23:32.0378 2316 upnphost - ok
15:23:32.0394 2316 [ ABFF3E6009343A2613D31FDC241A6D6E ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
15:23:32.0394 2316 usbccgp - ok
15:23:32.0409 2316 [ 614BDD1AB210F6DCE5EDFE0624717C94 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
15:23:32.0409 2316 usbcir - ok
15:23:32.0425 2316 [ E7614B639357ADCB056D5FAAB9E2FB00 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
15:23:32.0425 2316 usbehci - ok
15:23:32.0440 2316 [ 2877CEFF58FB587EC22F331E2D6AF05B ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys
15:23:32.0456 2316 usbfilter - ok
15:23:32.0472 2316 [ A091EDE464BB2406BB78DAE7B35B590C ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
15:23:32.0472 2316 usbhub - ok
15:23:32.0487 2316 [ DD0AA53DFBCE547020AB57A107B2B7A7 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
15:23:32.0503 2316 USBHUB3 - ok
15:23:32.0518 2316 [ D3641BCE4BE9858423CF0FA843A77AC1 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
15:23:32.0518 2316 usbohci - ok
15:23:32.0518 2316 [ 81F2E53B5945995FD5D459180EB21AE7 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
15:23:32.0534 2316 usbprint - ok
15:23:32.0534 2316 [ 727CE341DF7EFDC94F2868393549F497 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
15:23:32.0550 2316 USBSTOR - ok
15:23:32.0565 2316 [ 599D7D0A2DD4F5517DA1ADEAAF0B468F ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
15:23:32.0565 2316 usbuhci - ok
15:23:32.0581 2316 [ 670994311A3E0B3E99CE0DC70DA8909F ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
15:23:32.0581 2316 usbvideo - ok
15:23:32.0596 2316 [ 3C4D95B57D60FC6871FCE49ADE7CA2EF ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
15:23:32.0612 2316 USBXHCI - ok
15:23:32.0628 2316 [ 0118D8C2B0B04F6B6FE620EADDA53449 ] VaultSvc C:\WINDOWS\system32\lsass.exe
15:23:32.0628 2316 VaultSvc - ok
15:23:32.0628 2316 [ 0AA85E1C967652071D283147AC4B17CD ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
15:23:32.0643 2316 vdrvroot - ok
15:23:32.0659 2316 [ 9B2590EB5A93BA2E5C27B98C2EED81B0 ] vds C:\WINDOWS\System32\vds.exe
15:23:32.0674 2316 vds - ok
15:23:32.0690 2316 [ F70882757673FA7D4E466D811E1AC029 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
15:23:32.0690 2316 VerifierExt - ok
15:23:32.0706 2316 [ 01F65399F930E5F26D39F18C1F665B03 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
15:23:32.0721 2316 vhdmp - ok
15:23:32.0721 2316 [ 91A67D2DDDD75D173A6590B75E305E3C ] viaagp C:\WINDOWS\system32\drivers\viaagp.sys
15:23:32.0721 2316 viaagp - ok
15:23:32.0737 2316 [ 05DD6EA970A2493D8BFCE2CFCF2F445C ] ViaC7 C:\WINDOWS\System32\drivers\viac7.sys
15:23:32.0737 2316 ViaC7 - ok
15:23:32.0752 2316 [ 11283532CE62BA51557D00E09262ED78 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
15:23:32.0752 2316 viaide - ok
15:23:32.0768 2316 [ 2E4777120FC246CCF76A69C7BB4AEF57 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
15:23:32.0768 2316 vmbus - ok
15:23:32.0784 2316 [ FA7B57977E55B60409FD9E36FC57395C ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
15:23:32.0784 2316 VMBusHID - ok
15:23:32.0799 2316 [ 57AE02EE534B4BF0E09462C6C2665D55 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
15:23:32.0815 2316 vmicheartbeat - ok
15:23:32.0830 2316 [ 57AE02EE534B4BF0E09462C6C2665D55 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
15:23:32.0830 2316 vmickvpexchange - ok
15:23:32.0846 2316 [ 57AE02EE534B4BF0E09462C6C2665D55 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
15:23:32.0846 2316 vmicrdv - ok
15:23:32.0862 2316 [ 57AE02EE534B4BF0E09462C6C2665D55 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
15:23:32.0877 2316 vmicshutdown - ok
15:23:32.0893 2316 [ 57AE02EE534B4BF0E09462C6C2665D55 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
15:23:32.0893 2316 vmictimesync - ok
15:23:32.0908 2316 [ 57AE02EE534B4BF0E09462C6C2665D55 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
15:23:32.0908 2316 vmicvss - ok
15:23:32.0924 2316 [ 7E8BCEEA56197925D944CA7D230596F7 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
15:23:32.0924 2316 volmgr - ok
15:23:32.0955 2316 [ 9C21037D3983D9B93190D2AA16570395 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
15:23:32.0955 2316 volmgrx - ok
15:23:32.0986 2316 [ 8E15C3D58A8ADE841060661DBA6E7A9B ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
15:23:32.0986 2316 volsnap - ok
15:23:33.0002 2316 [ C5B79DA9C82C01EEFAABA713A858649E ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
15:23:33.0002 2316 vsmraid - ok
15:23:33.0033 2316 [ 39FA161A2CD3DFA1062AD2A0F9B91F00 ] VSS C:\WINDOWS\system32\vssvc.exe
15:23:33.0064 2316 VSS - ok
15:23:33.0080 2316 [ AB5F5CC034E31E496606E666657F3CC2 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
15:23:33.0080 2316 VSTXRAID - ok
15:23:33.0096 2316 [ 23044877230094EE20D057BC63ED19F0 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
15:23:33.0096 2316 vwifibus - ok
15:23:33.0096 2316 [ 7139B7012EF75A82CA11177D4BF1CD37 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
15:23:33.0111 2316 vwififlt - ok
15:23:33.0111 2316 [ 3C93AA2C5AC6030706757DCEAF57CD64 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
15:23:33.0111 2316 vwifimp - ok
15:23:33.0142 2316 [ 56A40C6DFB12E33B88887C4F9D5917FF ] W32Time C:\WINDOWS\system32\w32time.dll
15:23:33.0142 2316 W32Time - ok
15:23:33.0158 2316 [ B4254668F5806AAA051A320FE88146F6 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
15:23:33.0158 2316 WacomPen - ok
15:23:33.0174 2316 [ 44D1EF3CDB0B286FD73A7C0144CC6B1E ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:23:33.0174 2316 Wanarp - ok
15:23:33.0189 2316 [ 44D1EF3CDB0B286FD73A7C0144CC6B1E ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:23:33.0189 2316 Wanarpv6 - ok
15:23:33.0236 2316 [ 09EA8F80C26FEAAE7D34AC82A871A909 ] wbengine C:\WINDOWS\system32\wbengine.exe
15:23:33.0267 2316 wbengine - ok
15:23:33.0283 2316 [ D7AB5A0119A208B53784863DF403C2F2 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
15:23:33.0283 2316 WbioSrvc - ok
15:23:33.0298 2316 [ AB66316B4ED378A2CBEA61D6C5844A98 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
15:23:33.0314 2316 Wcmsvc - ok
15:23:33.0330 2316 [ 2569DC92526501CA292A1985F54D174B ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
15:23:33.0345 2316 wcncsvc - ok
15:23:33.0361 2316 [ 1B0A5043CC13F7DEB9873CC464FB11C7 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
15:23:33.0361 2316 WcsPlugInService - ok
15:23:33.0376 2316 [ 9BF0CE1E215789664EB563A52EC0B83B ] Wd C:\WINDOWS\system32\drivers\wd.sys
15:23:33.0376 2316 Wd - ok
15:23:33.0392 2316 [ 4B4BCF47C86C10322046952D6B4B80E0 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
15:23:33.0392 2316 WdBoot - ok
15:23:33.0408 2316 [ CEA67D4279BF8A268062F08330179738 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
15:23:33.0423 2316 Wdf01000 - ok
15:23:33.0439 2316 [ 5CA29AF6E4C46E73311E68FB63066B09 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
15:23:33.0439 2316 WdFilter - ok
15:23:33.0454 2316 [ 2FC34E39DD120AB985DF1F63B10A4B4D ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
15:23:33.0454 2316 WdiServiceHost - ok
15:23:33.0470 2316 [ 2FC34E39DD120AB985DF1F63B10A4B4D ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
15:23:33.0470 2316 WdiSystemHost - ok
15:23:33.0486 2316 [ FD800739494EE57DC7849BD64BDA1EEC ] WebClient C:\WINDOWS\System32\webclnt.dll
15:23:33.0501 2316 WebClient - ok
15:23:33.0517 2316 [ 476746404FC104242EE8F049F2A6FA4A ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
15:23:33.0532 2316 Wecsvc - ok
15:23:33.0532 2316 [ B8A6C4812FD65EF95EB0F723A48C2462 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
15:23:33.0548 2316 wercplsupport - ok
15:23:33.0548 2316 [ B40442F17F77B11F5F1BA961BB806E2B ] WerSvc C:\WINDOWS\System32\WerSvc.dll
15:23:33.0564 2316 WerSvc - ok
15:23:33.0579 2316 [ B7ADB3799F1B6D8172DFDCE1DA8937F5 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
15:23:33.0579 2316 WFPLWFS - ok
15:23:33.0579 2316 [ 1764AA30CDF8AF8995D4A3CEADF6AB0D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
15:23:33.0595 2316 WiaRpc - ok
15:23:33.0610 2316 [ 8B7BBA41B67E92B73BAFEBDF570B3703 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
15:23:33.0610 2316 WIMMount - ok
15:23:33.0610 2316 [ 5595EDBDA4FD99C82119046C0BDC3BE2 ] WinDefend C:\Program Files\Windows Defender\MsMpEng.exe
15:23:33.0610 2316 WinDefend - ok
15:23:33.0657 2316 [ 7A4797475ABAD6ECF1BCB08637922ECA ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
15:23:33.0673 2316 WinHttpAutoProxySvc - ok
15:23:33.0688 2316 [ 62B866B25BA8A3FCAEC457738DDA726E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:23:33.0688 2316 winmgmt - ok
15:23:33.0751 2316 [ EE08CA40473062F2962F1ED25C85306C ] WinRM C:\WINDOWS\system32\WsmSvc.dll
15:23:33.0782 2316 WinRM - ok
15:23:33.0813 2316 [ 30122927052480564DB0695B0CEADE62 ] WinUSB C:\WINDOWS\system32\DRIVERS\WinUSB.sys
15:23:33.0813 2316 WinUSB - ok
15:23:33.0844 2316 [ 70752CC656FE991392C1FD262D386863 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
15:23:33.0876 2316 WlanSvc - ok
15:23:33.0922 2316 [ 7194769CA375358E5BD89929C2C47B4C ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
15:23:33.0938 2316 wlidsvc - ok
15:23:33.0954 2316 [ F8A31500A1B7EFDB95E5103A7C7275C1 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
15:23:33.0954 2316 WmiAcpi - ok
15:23:33.0985 2316 [ 8899BED47FE375EE665AD1821598E471 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
15:23:33.0985 2316 wmiApSrv - ok
15:23:34.0016 2316 [ 207CB1C1770997621C1798E78EADCBBD ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:23:34.0032 2316 WMPNetworkSvc - ok
15:23:34.0047 2316 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
15:23:34.0047 2316 WMZuneComm - ok
15:23:34.0063 2316 [ 9C3F5C7B716247756575235A3218FD38 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
15:23:34.0078 2316 wpcfltr - ok
15:23:34.0078 2316 [ 32B4145D0513E913C13A73C3E640C931 ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
15:23:34.0094 2316 WPCSvc - ok
15:23:34.0110 2316 [ 27AD1D070DFF4F508F063779CC8882C4 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
15:23:34.0110 2316 WPDBusEnum - ok
15:23:34.0125 2316 [ E5DCECD5A6A21AE48E94F6C9DC0E093C ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
15:23:34.0125 2316 WpdUpFltr - ok
15:23:34.0141 2316 [ 7CB94AFFC7F56C8E645381DB9C23F845 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
15:23:34.0141 2316 ws2ifsl - ok
15:23:34.0141 2316 [ 463628A91197979E29B3794D8CCB7600 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
15:23:34.0156 2316 wscsvc - ok
15:23:34.0172 2316 [ 4759B8765D7759F896D1D2385F923AFC ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
15:23:34.0172 2316 WSDPrintDevice - ok
15:23:34.0172 2316 [ E0ED42D4E7E96AA3FA0E9B78C85655F3 ] WSDScan C:\WINDOWS\system32\DRIVERS\WSDScan.sys
15:23:34.0188 2316 WSDScan - ok
15:23:34.0188 2316 WSearch - ok
15:23:34.0250 2316 [ 0636D43456AD9CC717FE1890AB467EEC ] WSService C:\WINDOWS\System32\WSService.dll
15:23:34.0281 2316 WSService - ok
15:23:34.0344 2316 [ 450AA34207AABE2C3EB857F1D8296E24 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
15:23:34.0406 2316 wuauserv - ok
15:23:34.0422 2316 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
15:23:34.0422 2316 WudfPf - ok
15:23:34.0437 2316 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
15:23:34.0437 2316 WUDFRd - ok
15:23:34.0453 2316 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFSensorLP C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:23:34.0453 2316 WUDFSensorLP - ok
15:23:34.0468 2316 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
15:23:34.0484 2316 wudfsvc - ok
15:23:34.0484 2316 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:23:34.0500 2316 WUDFWpdFs - ok
15:23:34.0515 2316 [ 5DB9AC725AF17FAEC17DC7A0ACC99152 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
15:23:34.0531 2316 WwanSvc - ok
15:23:34.0671 2316 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
15:23:34.0749 2316 ZuneNetworkSvc - ok
15:23:34.0765 2316 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
15:23:34.0780 2316 ZuneWlanCfgSvc - ok
15:23:34.0812 2316 ================ Scan global ===============================
15:23:34.0812 2316 [ 8D41654D0A9E15635ACF5E18FF470AB1 ] C:\WINDOWS\system32\basesrv.dll
15:23:34.0827 2316 [ 1EEFCA33A6329CE675FEFFBC563140A9 ] C:\WINDOWS\system32\winsrv.dll
15:23:34.0843 2316 [ 78A87B9D36AAD6AFD6A24915389E1221 ] C:\WINDOWS\system32\sxssrv.dll
15:23:34.0858 2316 [ 6528BAACA25356FE226904DD36C82BA7 ] C:\WINDOWS\system32\services.exe
15:23:34.0874 2316 [Global] - ok
15:23:34.0874 2316 ================ Scan MBR ==================================
15:23:34.0874 2316 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:23:35.0170 2316 \Device\Harddisk0\DR0 - ok
15:23:35.0186 2316 [ EFA978CACFC94837A0424E0BAF924522 ] \Device\Harddisk1\DR1
15:23:35.0545 2316 \Device\Harddisk1\DR1 - ok
15:23:35.0545 2316 ================ Scan VBR ==================================
15:23:35.0560 2316 [ 7BF30B6231E05E8B28AE2A18CC1A6C4C ] \Device\Harddisk0\DR0\Partition1
15:23:35.0560 2316 \Device\Harddisk0\DR0\Partition1 - ok
15:23:35.0560 2316 [ 81E5F3505F239BD619385C6365759436 ] \Device\Harddisk0\DR0\Partition2
15:23:35.0560 2316 \Device\Harddisk0\DR0\Partition2 - ok
15:23:35.0576 2316 [ 4A110298C10AD2DA2952EAFC0A47BE15 ] \Device\Harddisk1\DR1\Partition1
15:23:35.0576 2316 \Device\Harddisk1\DR1\Partition1 - ok
15:23:35.0576 2316 ============================================================
15:23:35.0576 2316 Scan finished
15:23:35.0576 2316 ============================================================
15:23:35.0592 0952 Detected object count: 0
15:23:35.0592 0952 Actual detected object count: 0
15:23:43.0844 2240 Deinitialize success

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání skončeno "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Máš win8?

[paveliknecas]

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 8 (6.2.9200 ) 32 bits version
Spuštěno v : Normální režim
Uživatel : pavel_000 [Práva správce]
Mód : Odebrat -- Datum : 06/13/2013 15:46:48
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: KINGSTON SV200S364G +++++
--- User ---
[MBR] 87b15e1d89339d6f42b2810c744cbec4
[BSP] b9c1dc1e4e9b15a1a0b22f95cba41f73 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 32 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 67584 | Size: 53734 Mo
2 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 110114816 | Size: 7290 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: HITACHI HTS545032B9A300 +++++
--- User ---
[MBR] b6e73e607037c091f36c4bc68cfb7653
[BSP] 97291d99a3458df727053145deaf6d53 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 305243 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[2]_D_06132013_02d1546.txt >>
RKreport[1]_S_06132013_02d1545.txt ; RKreport[2]_D_06132013_02d1546.txt






jo jo mám Win 8 32 bit

[Orcus]

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com

Zbav se toho nelegálního programu, jinak čistíme zbytečně a budem stále a znova.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Pokud budou problémy , spusť v nouz. režimu.

[paveliknecas]

ComboFix 13-06-13.01 - pavel_000 . 06. 2013 8:32.1.2 - x86
Microsoft Windows 8 Pro 6.2.9200.0.1250.420.1029.18.2812.1958 [GMT 2:00]
Spuštěný z: c:\users\pavel_000\Desktop\ComboFix.exe
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-05-15 do 2013-06-15 )))))))))))))))))))))))))))))))
.
.
2013-06-15 06:30 . 2013-06-15 06:30 29904 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{77ACA110-20C5-4308-981A-BFA0DABDBFEC}\MpKsl0708af58.sys
2013-06-15 06:02 . 2013-05-13 06:19 7016152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{77ACA110-20C5-4308-981A-BFA0DABDBFEC}\mpengine.dll
2013-06-13 14:39 . 2013-06-13 14:39 -------- d-----w- c:\users\pavel_000\AppData\Local\ElevatedDiagnostics
2013-06-13 14:18 . 2013-06-13 14:18 -------- d-----w- c:\programdata\ATI
2013-06-13 14:15 . 2013-06-13 14:15 -------- d-----w- c:\programdata\Package Cache
2013-06-13 14:15 . 2013-06-13 14:15 -------- d-----w- c:\program files\ATI
2013-06-13 13:14 . 2013-06-13 13:55 -------- d-----w- c:\programdata\boost_interprocess
2013-06-12 19:19 . 2013-06-12 19:19 -------- d-----w- c:\users\pavel_000\AppData\Local\AMD
2013-06-12 17:10 . 2013-06-04 22:09 78200 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-12 17:10 . 2013-06-04 22:09 693112 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-12 17:06 . 2012-06-19 04:07 44712 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2013-06-12 17:06 . 2013-06-12 17:06 -------- dc----w- c:\windows\system32\DRVSTORE
2013-06-12 17:04 . 2012-07-15 23:46 15016 ----a-w- c:\windows\system32\drivers\AtiPcie.sys
2013-06-12 16:33 . 2013-06-12 16:33 -------- d--h--w- c:\programdata\Common Files
2013-06-12 14:01 . 2013-06-12 14:01 388096 ----a-r- c:\users\pavel_000\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-06-12 14:01 . 2013-06-12 14:01 -------- d-----w- c:\program files\HJ
2013-06-12 13:30 . 2013-05-04 05:45 5575424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-06-12 13:27 . 2013-05-10 02:21 16642560 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-06-12 13:26 . 2013-05-04 04:57 10788864 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll
2013-06-12 13:26 . 2013-05-04 04:56 975360 ----a-w- c:\windows\system32\AppXDeploymentServer.dll
2013-06-12 13:26 . 2013-05-04 04:57 1049600 ----a-w- c:\windows\system32\sysmain.dll
2013-06-12 13:26 . 2013-05-04 04:58 2561536 ----a-w- c:\windows\system32\wuaueng.dll
2013-06-12 13:24 . 2013-05-23 23:27 1075200 ----a-w- c:\windows\system32\gdi32.dll
2013-06-12 13:24 . 2013-05-15 02:24 793088 ----a-w- c:\windows\system32\autochk.exe
2013-06-12 13:24 . 2013-05-15 02:24 482816 ----a-w- c:\windows\system32\untfs.dll
2013-06-12 13:24 . 2013-05-04 05:14 1801472 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-06-12 13:23 . 2013-04-27 03:21 503808 ----a-w- c:\windows\system32\win32spl.dll
2013-06-11 15:09 . 2010-06-02 02:55 239960 ----a-w- c:\windows\system32\xactengine3_7.dll
2013-06-11 15:09 . 2010-05-26 09:41 1868128 ----a-w- c:\windows\system32\d3dcsx_43.dll
2013-06-07 16:13 . 2013-06-07 16:13 -------- d-----w- c:\users\pavel_000\AppData\Roaming\Opera Software
2013-06-07 16:13 . 2013-06-07 16:13 -------- d-----w- c:\users\pavel_000\AppData\Local\Opera Software
2013-06-01 08:53 . 2013-06-01 08:53 -------- d-----w- c:\windows\ServiceProfiles\LocalService\winhttp
2013-05-29 13:44 . 2013-06-13 14:49 -------- d-----w- c:\program files\Opera Next
2013-05-20 18:25 . 2013-05-20 18:25 5079256 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\CMigrate.exe
2013-05-20 18:25 . 2013-05-20 18:25 4843712 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\Csi.dll
2013-05-20 18:25 . 2013-05-20 18:25 25367232 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\MSO.DLL
2013-05-20 13:26 . 2013-04-16 01:15 1229576 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-05-20 13:26 . 2013-03-06 05:25 104680 ----a-w- c:\windows\system32\consent.exe
2013-05-20 13:25 . 2013-03-06 05:02 52224 ----a-w- c:\windows\system32\appinfo.dll
2013-05-20 13:21 . 2013-03-15 00:16 640000 ----a-w- c:\windows\system32\drivers\http.sys
2013-05-20 13:21 . 2013-03-22 03:49 2382336 ----a-w- c:\windows\system32\esent.dll
2013-05-18 05:24 . 2013-05-18 05:24 3033280 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\1029\MSOINTL.DLL
2013-05-16 20:13 . 2013-05-16 20:13 3600480 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\1033\MSOINTL.DLL
2013-05-16 20:13 . 2013-05-16 20:13 61042368 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\MSORES.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-09 18:38 . 2012-07-26 06:53 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-04 17:34 . 2013-03-13 15:50 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-05-02 15:28 . 2013-01-19 21:11 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:56 . 2013-05-20 13:21 444416 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-08 21:51 . 2013-05-20 13:28 324096 ----a-w- c:\windows\system32\schannel.dll
2013-04-08 21:51 . 2013-05-20 13:28 942080 ----a-w- c:\windows\system32\schedsvc.dll
2013-04-04 12:50 . 2013-01-29 15:02 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2013-05-20 18:38 1725128 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2013-05-20 18:38 1725128 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2013-05-20 18:38 1725128 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2013-02-04 894344]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"EnergyUtility"="c:\program files\Lenovo\Energy Management\utility.exe" [2009-12-17 4114368]
"Energy Management"="c:\program files\Lenovo\Energy Management\Energy Management.exe" [2009-12-17 6223808]
"cAudioFilterAgent"="c:\program files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe" [2010-03-10 496184]
"Lenovo Input Device Main Program"="c:\program files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\Pelico.exe" [2012-09-25 77824]
"Daemon for Mouse Suite"="c:\program files\Lenovo\Lenovo Mouse Suite\ICO.EXE" [2012-07-10 69632]
"CNAP2 Launcher"="c:\windows\system32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE" [2010-01-11 226784]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" [2013-05-11 3478600]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-22 402432]
"Dolby Tuning and Profile Creator"="c:\program files\Dolby Tuning and Profile Creator\pcee4.exe" [2011-02-03 506712]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-06-04 676608]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2013-02-04 894344]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"PromptOnSecureDesktop"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"EnableUIADesktopToggle"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2013-05-11 10:37 3478600 ----a-w- c:\program files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-04-04 21:06 958576 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
2012-09-20 06:27 444904 ------w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
2013-02-04 23:18 894344 ----a-w- c:\program files\Autodesk\Autodesk Sync\AdSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher]
2011-08-05 11:29 159456 ----a-w- c:\program files\Zune\ZuneLauncher.exe
.
R2 PelService;Session Launcher Service;c:\program files\Lenovo\Lenovo Mouse Suite\PelService.exe [2010-04-22 184320]
R3 amdiox86;AMD IO Driver;c:\windows\System32\drivers\amdiox86.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys [2010-03-24 191008]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe [2012-09-20 23040]
R3 WSDScan;Podpora skenování WSD;c:\windows\system32\DRIVERS\WSDScan.sys [2012-10-11 17920]
S1 MpKsl0708af58;MpKsl0708af58;c:\programdata\Microsoft\Windows Defender\Definition Updates\{77ACA110-20C5-4308-981A-BFA0DABDBFEC}\MpKsl0708af58.sys [2013-06-15 29904]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-11-16 217088]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-06-04 291840]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2012-04-09 48256]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys [2010-01-20 23136]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x86.sys [2012-06-22 93848]
S3 LECs6022;LECs6022 Low Filter Driver;c:\windows\System32\drivers\LECs6022.sys [2010-11-04 11904]
S3 LEMo6022;LEMo6022 Mouse Suite Driver;c:\windows\System32\drivers\LEMo6022.sys [2012-06-06 19968]
S3 LEub6022;LEub6022 Low Filter Driver;c:\windows\System32\drivers\LEub6022.sys [2011-01-05 12544]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
S3 pelvendr;Mouse Suite I/O Driver;c:\windows\system32\DRIVERS\pelvendr.sys [2009-11-02 10240]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2012-06-19 44712]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
DcomLaunch REG_MULTI_SZ Power BrokerInfrastructure LSM PlugPlay DeviceInstall DcomLaunch
LocalServiceAndNoImpersonation REG_MULTI_SZ TimeBroker SSDPSRV upnphost SCardSvr BthHFSrv QWAVE fdrespub wcncsvc WSService SensrSvc
LocalServiceNoNetwork REG_MULTI_SZ DPS PLA BFE mpssvc NcdAutoSetup WwanSvc
ICService REG_MULTI_SZ vmicheartbeat vmicrdv
print REG_MULTI_SZ PrintNotify
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
wlidsvc
SystemEventsBroker
DsmSvc
NcaSvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalSystemNetworkRestricted
svsvc
AllUserInstallAgent
fhsvc
vmickvpexchange
vmicshutdown
vmicvss
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
bthserv
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalServiceNetworkRestricted
AppIDSvc
wcmsvc
vmictimesync
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
2013-03-06 05:03 17561600 ----a-w- c:\windows\System32\shell32.dll
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-19 12:11]
.
.
------- Doplňkový sken -------
.
mStart Page = hxxp://www.google.com
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.254
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
SafeBoot-Wdf01000.sys
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BFE\Parameters\Policy\Persistent\Provider]
@DACL=(02 0000)
@SACL=(02 0000)
"{decc16ca-3f33-4346-be1e-8fb4ae0f3d62}"=hex:01,10,08,00,cc,cc,cc,cc,f0,00,00,
00,00,00,00,00,00,00,02,00,00,00,00,00,d0,00,00,00,04,00,02,00,00,00,00,00,\
"{4b153735-1049-4480-aab4-d1b9bdc03710}"=hex:01,10,08,00,cc,cc,cc,cc,f0,00,00,
00,00,00,00,00,00,00,02,00,00,00,00,00,d0,00,00,00,04,00,02,00,00,00,00,00,\
"{1bebc969-61a5-4732-a177-847a0817862a}"=hex:01,10,08,00,cc,cc,cc,cc,58,02,00,
00,00,00,00,00,00,00,02,00,00,00,00,00,d0,00,00,00,04,00,02,00,68,01,00,00,\
"{aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}"=hex:01,10,08,00,cc,cc,cc,cc,50,02,00,
00,00,00,00,00,00,00,02,00,00,00,00,00,c8,00,00,00,04,00,02,00,68,01,00,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BFE\Parameters\Policy\Persistent\SubLayer]
@DACL=(02 0000)
@SACL=(02 0000)
"{b3cdd441-af90-41ba-a745-7c6008ff2300}"=hex:01,10,08,00,cc,cc,cc,cc,c0,00,00,
00,00,00,00,00,00,00,02,00,02,00,00,00,a0,00,00,00,04,00,02,00,00,00,00,00,\
"{b3cdd441-af90-41ba-a745-7c6008ff2301}"=hex:01,10,08,00,cc,cc,cc,cc,c0,00,00,
00,00,00,00,00,00,00,02,00,02,00,00,00,a0,00,00,00,04,00,02,00,00,00,00,00,\
"{b3cdd441-af90-41ba-a745-7c6008ff2302}"=hex:01,10,08,00,cc,cc,cc,cc,28,02,00,
00,00,00,00,00,00,00,02,00,02,00,00,00,a0,00,00,00,04,00,02,00,68,01,00,00,\
"{9ba30013-c84e-47e5-ac6e-1e1aed72fa69}"=hex:01,10,08,00,cc,cc,cc,cc,28,02,00,
00,00,00,00,00,00,00,02,00,02,00,00,00,a0,00,00,00,04,00,02,00,68,01,00,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Security\DS\ObjectNames]
@DACL=(02 0000)
@SACL=
"Directory Service Object"=dword:00001e00
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Security\LSA\ObjectNames]
@DACL=(02 0000)
@SACL=
"UserAccountObject"=dword:00001630
"PolicyObject"=dword:00001600
"TrustedDomainObject"=dword:00001620
"AdtSecurity"=dword:00001f00
"SecretObject"=dword:00001610
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Security\SC Manager\ObjectNames]
@DACL=(02 0000)
@SACL=
"SERVICE Object"=dword:00001c10
"SC_MANAGER Object"=dword:00001c00
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Security\Security\ObjectNames]
@DACL=(02 0000)
@SACL=
"Device"=dword:00001100
"WindowStation"=dword:00001a00
"Section"=dword:000011a0
"Event"=dword:00001120
"Desktop"=dword:00001a10
"WaitablePort"=dword:00001170
"Directory"=dword:00001110
"Thread"=dword:000011d0
"EventPair"=dword:00001130
"NamedPipe"=dword:00001140
"Port"=dword:00001170
"File"=dword:00001140
"KeyedEvent"=dword:00001640
"Profile"=dword:00001190
"Channel"=dword:00001400
"WMI Namespace"=dword:00004200
"Timer"=dword:000011e0
"Token"=dword:000011f0
"Job"=dword:00001410
"IoCompletion"=dword:00001300
"Process"=dword:00001180
"Mutant"=dword:00001160
"Type"=dword:00001200
"Semaphore"=dword:000011b0
"ALPC Port"=dword:00001170
"SymbolicLink"=dword:000011c0
"MailSlot"=dword:00001140
"Key"=dword:00001150
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Security\Security Account Manager\ObjectNames]
@DACL=(02 0000)
@SACL=
"SAM_USER"=dword:00001540
"SAM_ALIAS"=dword:00001530
"SAM_GROUP"=dword:00001520
"SAM_DOMAIN"=dword:00001510
"SAM_SERVER"=dword:00001500
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Security\Spooler\ObjectNames]
@DACL=(02 0000)
@SACL=
"Document"=dword:00001b20
"Server"=dword:00001b00
"Printer"=dword:00001b10
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Security\TCP/IP\ObjectNames]
@DACL=(02 0000)
@SACL=
"InternetPort"=dword:00001f80
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\iphlpsvc\Parameters\Isatap\{8B068E8A-D03B-4C72-A611-712149D2C1BA}]
@DACL=(02 0000)
"InterfaceName"="isatap.{06739808-4456-42F3-958C-BBFE79556468}"
"ReusableType"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\iphlpsvc\Parameters\Isatap\{AC062E17-B64F-4E7B-AD31-F07542BC0658}]
@DACL=(02 0000)
"InterfaceName"="Reusable ISATAP Interface {AC062E17-B64F-4E7B-AD31-F07542BC0658}"
"ReusableType"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\iphlpsvc\Parameters\Teredo\{088B0652-D48B-42B6-BCC8-078B29DFCF11}]
@DACL=(02 0000)
"InterfaceName"="Teredo Tunneling Pseudo-Interface"
"ReusableType"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\iphlpsvc\Teredo\PreviousState\00-27-22-55-2a-5e]
@DACL=(02 0000)
"UPnPState"=dword:00000000
"ClientLocalPort"=dword:0000e852
"AddressCreationTimestamp"=hex(b):c6,13,cc,07,03,00,00,00
"TeredoAddress"="2001:0:5ef5:79fd:144e:17ad:ad8a:631e"
.
Celkový čas: 2013-06-15 08:43:04
ComboFix-quarantined-files.txt 2013-06-15 06:43
.
Před spuštěním: 20 294 889 472 bytes free
Po spuštění: 20 213 911 552 bytes free
.
- - End Of File - - 86407E00153C0808A28C6B54EB3150B3
A36C5E4F47E84449FF07ED3517B43A31

[Žbeky]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC na plochu, spusť jej a klikni na Clean up!

+ Nový log z HJT

Jak se chová PC?