Kontrola logu (otravné prokazování že nejsem robot).

ymorduur · Příspěvekod **ymorduur** » 17 srp 2013 20:30

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:28:29, on 17.8.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16502)
Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\ExMgr.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files (x86)\Creative\Software Update 3\SoftAuto.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Miranda IM\miranda32.exe
C:\Program Files (x86)\Origin\OriginClientService.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [SoftAuto.exe] "C:\Program Files (x86)\Creative\Software Update 3\SoftAuto.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ATLMonitorService - Cmedia Electronics Inc - C:\Windows\system\MonitorService.exe
O23 - Service: ATLOISAService - Cmedia Electronics Inc. - C:\Windows\system\ATLOISAService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe
O23 - Service: Creative Centrale Media Server (CTUPnPSv) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Creative Centrale\CTUPnPSv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9544 bytes

Reklama

Příspěvekod **memphisto** » 18 srp 2013 00:44

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

ymorduur · Příspěvekod **ymorduur** » 18 srp 2013 08:37

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.08.17.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
ymorduur :: YMORDUUR-PC [administrátor]

Ochrana: Zakázána

18.8.2013 8:35:51
mbam-log-2013-08-18 (08-35-51).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 211740
Uplynulý čas: 1 minut, 3 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

ymorduur · Příspěvekod **ymorduur** » 18 srp 2013 08:45

# AdwCleaner v2.306 - Log vytvooen 18/08/2013 v 08:44:46
# Aktualizováno 19/07/2013 Xplode
# Operaení systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : ymorduur - YMORDUUR-PC
# Spuštin systém : Normální
# Spuštino z : E:\Downloads\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

***** [Registry] *****

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.8112.16502

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v23.0.1 (cs)

Soubor : C:\Users\ymorduur\AppData\Roaming\Mozilla\Firefox\Profiles\3yt1bihn.default\prefs.js

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [684 octets] - [18/08/2013 08:44:46]

########## EOF - C:\AdwCleaner[R1].txt - [743 octets] ##########

Příspěvekod **jaro3** » 18 srp 2013 10:14

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

ymorduur · Příspěvekod **ymorduur** » 18 srp 2013 17:53

HJT jsem fixnul.
Ten JRT mi nejde (příloha).

RogueKiller V8.6.5 _x64_ [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : ymorduur [Práva správce]
Mód : Kontrola -- Datum : 08/18/2013 17:50:59
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: M4-CT128M4SSD2 ATA Device +++++
--- User ---
[MBR] a44bd3a8eed286ee02681cc869ff3786
[BSP] dbab8437fc36c5a9409b7fdd6bf8847a : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 122002 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: M4-CT128M4SSD2 ATA Device +++++
--- User ---
[MBR] 743f2b6ed458b01d86dc5b6cbc1db557
[BSP] a73daea985c19d9e90653bd8ec76bbc4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: M4-CT128M4SSD2 ATA Device +++++
--- User ---
[MBR] e5b340a0287849046070d796ac3710c9
[BSP] b435ec55ae296de0eedc7f5b69573171 : Empty MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 16065 | Size: 1430138 Mo
1 - [XXXXXX] LINUX-SWP (0x82) [VISIBLE] Offset (sectors): 2928938670 | Size: 133 Mo
2 - [XXXXXX] LINUX (0x83) [VISIBLE] Offset (sectors): 2929211775 | Size: 517 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_08182013_175059.txt >>

Příspěvekod **memphisto** » 18 srp 2013 18:13

PC mám čisté, ale taky musím občas podstupovat tuto ochranu před boty... Mám Starnet...

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

ymorduur · Příspěvekod **ymorduur** » 18 srp 2013 18:29

RogueKiller V8.6.5 _x64_ [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : ymorduur [Práva správce]
Mód : Odebrat -- Datum : 08/18/2013 18:21:51
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: M4-CT128M4SSD2 ATA Device +++++
--- User ---
[MBR] a44bd3a8eed286ee02681cc869ff3786
[BSP] dbab8437fc36c5a9409b7fdd6bf8847a : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 122002 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: M4-CT128M4SSD2 ATA Device +++++
--- User ---
[MBR] 743f2b6ed458b01d86dc5b6cbc1db557
[BSP] a73daea985c19d9e90653bd8ec76bbc4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: M4-CT128M4SSD2 ATA Device +++++
--- User ---
[MBR] e5b340a0287849046070d796ac3710c9
[BSP] b435ec55ae296de0eedc7f5b69573171 : Empty MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 16065 | Size: 1430138 Mo
1 - [XXXXXX] LINUX-SWP (0x82) [VISIBLE] Offset (sectors): 2928938670 | Size: 133 Mo
2 - [XXXXXX] LINUX (0x83) [VISIBLE] Offset (sectors): 2929211775 | Size: 517 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_08182013_182151.txt >>
RKreport[0]_S_08182013_175059.txt;RKreport[0]_S_08182013_182141.txt

ymorduur · Příspěvekod **ymorduur** » 18 srp 2013 18:30

TDSSKiller
18:24:43.0904 5636 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:24:44.0263 5636 ============================================================
18:24:44.0263 5636 Current date / time: 2013/08/18 18:24:44.0263
18:24:44.0263 5636 SystemInfo:
18:24:44.0263 5636
18:24:44.0263 5636 OS Version: 6.1.7601 ServicePack: 1.0
18:24:44.0263 5636 Product type: Workstation
18:24:44.0263 5636 ComputerName: YMORDUUR-PC
18:24:44.0263 5636 UserName: ymorduur
18:24:44.0263 5636 Windows directory: C:\Windows
18:24:44.0263 5636 System windows directory: C:\Windows
18:24:44.0263 5636 Running under WOW64
18:24:44.0263 5636 Processor architecture: Intel x64
18:24:44.0263 5636 Number of processors: 8
18:24:44.0263 5636 Page size: 0x1000
18:24:44.0263 5636 Boot type: Normal boot
18:24:44.0263 5636 ============================================================
18:24:44.0434 5636 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:24:44.0434 5636 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:24:44.0434 5636 Drive \Device\Harddisk2\DR2 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:24:44.0653 5636 ============================================================
18:24:44.0653 5636 \Device\Harddisk0\DR0:
18:24:44.0653 5636 MBR partitions:
18:24:44.0668 5636 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:24:44.0668 5636 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
18:24:44.0668 5636 \Device\Harddisk1\DR1:
18:24:44.0668 5636 MBR partitions:
18:24:44.0668 5636 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:24:44.0668 5636 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
18:24:44.0668 5636 \Device\Harddisk2\DR2:
18:24:44.0668 5636 MBR partitions:
18:24:44.0668 5636 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3EC1, BlocksNum 0xAE93CFED
18:24:44.0668 5636 ============================================================
18:24:44.0668 5636 C: <-> \Device\Harddisk0\DR0\Partition2
18:24:44.0668 5636 D: <-> \Device\Harddisk0\DR0\Partition1
18:24:44.0699 5636 E: <-> \Device\Harddisk1\DR1\Partition2
18:24:44.0715 5636 F: <-> \Device\Harddisk2\DR2\Partition1
18:24:44.0715 5636 ============================================================
18:24:44.0715 5636 Initialize success
18:24:44.0715 5636 ============================================================
18:24:54.0044 3228 ============================================================
18:24:54.0044 3228 Scan started
18:24:54.0044 3228 Mode: Manual;
18:24:54.0044 3228 ============================================================
18:24:54.0137 3228 ================ Scan system memory ========================
18:24:54.0137 3228 System memory - ok
18:24:54.0137 3228 ================ Scan services =============================
18:24:54.0169 3228 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:24:54.0169 3228 1394ohci - ok
18:24:54.0169 3228 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:24:54.0169 3228 ACPI - ok
18:24:54.0169 3228 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:24:54.0169 3228 AcpiPmi - ok
18:24:54.0184 3228 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:24:54.0184 3228 AdobeARMservice - ok
18:24:54.0184 3228 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:24:54.0184 3228 adp94xx - ok
18:24:54.0184 3228 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:24:54.0200 3228 adpahci - ok
18:24:54.0200 3228 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:24:54.0200 3228 adpu320 - ok
18:24:54.0200 3228 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:24:54.0200 3228 AeLookupSvc - ok
18:24:54.0200 3228 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:24:54.0215 3228 AFD - ok
18:24:54.0215 3228 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:24:54.0215 3228 agp440 - ok
18:24:54.0215 3228 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:24:54.0215 3228 ALG - ok
18:24:54.0215 3228 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:24:54.0215 3228 aliide - ok
18:24:54.0215 3228 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:24:54.0215 3228 AMD External Events Utility - ok
18:24:54.0231 3228 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:24:54.0231 3228 amdide - ok
18:24:54.0231 3228 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:24:54.0231 3228 AmdK8 - ok
18:24:54.0293 3228 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:24:54.0340 3228 amdkmdag - ok
18:24:54.0340 3228 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:24:54.0340 3228 amdkmdap - ok
18:24:54.0340 3228 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
18:24:54.0340 3228 AmdPPM - ok
18:24:54.0340 3228 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:24:54.0340 3228 amdsata - ok
18:24:54.0356 3228 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:24:54.0356 3228 amdsbs - ok
18:24:54.0356 3228 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:24:54.0356 3228 amdxata - ok
18:24:54.0356 3228 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:24:54.0356 3228 AppID - ok
18:24:54.0356 3228 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:24:54.0356 3228 AppIDSvc - ok
18:24:54.0356 3228 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
18:24:54.0356 3228 Appinfo - ok
18:24:54.0371 3228 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
18:24:54.0371 3228 arc - ok
18:24:54.0371 3228 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:24:54.0371 3228 arcsas - ok
18:24:54.0371 3228 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:24:54.0371 3228 aspnet_state - ok
18:24:54.0387 3228 [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
18:24:54.0387 3228 aswFsBlk - ok
18:24:54.0387 3228 [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
18:24:54.0387 3228 aswMonFlt - ok
18:24:54.0387 3228 [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
18:24:54.0387 3228 aswRdr - ok
18:24:54.0387 3228 [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
18:24:54.0387 3228 aswRvrt - ok
18:24:54.0403 3228 [ 8C0800CDB501CFC1164B286A0478DC10 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
18:24:54.0403 3228 aswSnx - ok
18:24:54.0403 3228 [ 3815DB16CDA62190F5C0A65118F3D714 ] aswSP C:\Windows\system32\drivers\aswSP.sys
18:24:54.0403 3228 aswSP - ok
18:24:54.0403 3228 [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
18:24:54.0403 3228 aswTdi - ok
18:24:54.0418 3228 [ 22F521108881DC59837F6FC614E0568F ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
18:24:54.0418 3228 aswVmm - ok
18:24:54.0418 3228 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:24:54.0418 3228 AsyncMac - ok
18:24:54.0418 3228 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:24:54.0418 3228 atapi - ok
18:24:54.0418 3228 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:24:54.0418 3228 AtiHDAudioService - ok
18:24:54.0418 3228 [ CCB7E42028692A63372CD0F1FCB21252 ] ATLMonitorService C:\Windows\system\MonitorService.exe
18:24:54.0434 3228 ATLMonitorService - ok
18:24:54.0434 3228 [ 437660681F9A733F6D838280252B8C65 ] ATLOISAService C:\Windows\system\ATLOISAService.exe
18:24:54.0434 3228 ATLOISAService - ok
18:24:54.0449 3228 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:24:54.0481 3228 AudioEndpointBuilder - ok
18:24:54.0481 3228 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:24:54.0481 3228 AudioSrv - ok
18:24:54.0481 3228 [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:24:54.0481 3228 avast! Antivirus - ok
18:24:54.0496 3228 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:24:54.0496 3228 AxInstSV - ok
18:24:54.0496 3228 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:24:54.0496 3228 b06bdrv - ok
18:24:54.0496 3228 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:24:54.0496 3228 b57nd60a - ok
18:24:54.0512 3228 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:24:54.0512 3228 BDESVC - ok
18:24:54.0512 3228 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:24:54.0512 3228 Beep - ok
18:24:54.0512 3228 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:24:54.0527 3228 BFE - ok
18:24:54.0527 3228 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:24:54.0543 3228 BITS - ok
18:24:54.0543 3228 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:24:54.0543 3228 blbdrive - ok
18:24:54.0543 3228 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:24:54.0543 3228 bowser - ok
18:24:54.0543 3228 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
18:24:54.0543 3228 BrFiltLo - ok
18:24:54.0543 3228 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
18:24:54.0543 3228 BrFiltUp - ok
18:24:54.0543 3228 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:24:54.0543 3228 Browser - ok
18:24:54.0559 3228 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:24:54.0559 3228 Brserid - ok
18:24:54.0559 3228 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:24:54.0559 3228 BrSerWdm - ok
18:24:54.0559 3228 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:24:54.0559 3228 BrUsbMdm - ok
18:24:54.0559 3228 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:24:54.0559 3228 BrUsbSer - ok
18:24:54.0559 3228 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:24:54.0559 3228 BTHMODEM - ok
18:24:54.0574 3228 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:24:54.0574 3228 bthserv - ok
18:24:54.0574 3228 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:24:54.0574 3228 cdfs - ok
18:24:54.0574 3228 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:24:54.0574 3228 cdrom - ok
18:24:54.0574 3228 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:24:54.0574 3228 CertPropSvc - ok
18:24:54.0574 3228 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
18:24:54.0574 3228 circlass - ok
18:24:54.0590 3228 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:24:54.0590 3228 CLFS - ok
18:24:54.0590 3228 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:24:54.0590 3228 clr_optimization_v2.0.50727_32 - ok
18:24:54.0605 3228 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:24:54.0605 3228 clr_optimization_v2.0.50727_64 - ok
18:24:54.0605 3228 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:24:54.0621 3228 clr_optimization_v4.0.30319_32 - ok
18:24:54.0621 3228 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:24:54.0621 3228 clr_optimization_v4.0.30319_64 - ok
18:24:54.0621 3228 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
18:24:54.0621 3228 CmBatt - ok
18:24:54.0668 3228 [ C7C3794C92578A5C2F7555AC75864EB2 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
18:24:54.0683 3228 cmdAgent - ok
18:24:54.0683 3228 [ 47E7C07A0EC8D4E82701EA425EB9E275 ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
18:24:54.0683 3228 cmderd - ok
18:24:54.0699 3228 [ 2BFD057D32A41AB9A1E5F5C674C59339 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
18:24:54.0699 3228 cmdGuard - ok
18:24:54.0699 3228 [ E5161A4E5C64B9D1AE024D657E0148B1 ] cmdHlp C:\Windows\system32\DRIVERS\cmdhlp.sys
18:24:54.0699 3228 cmdHlp - ok
18:24:54.0699 3228 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:24:54.0699 3228 cmdide - ok
18:24:54.0699 3228 [ 43EBC5556143BD468A44BC0E51555D0E ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
18:24:54.0699 3228 cmdvirth - ok
18:24:54.0699 3228 [ D2A8386DD0A6C9D3A0C8CB187A7B53F6 ] CmHdAudAddService C:\Windows\system32\DRIVERS\CMHDAudioV64.sys
18:24:54.0699 3228 CmHdAudAddService - ok
18:24:54.0715 3228 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
18:24:54.0715 3228 CNG - ok
18:24:54.0715 3228 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:24:54.0715 3228 Compbatt - ok
18:24:54.0715 3228 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:24:54.0715 3228 CompositeBus - ok
18:24:54.0715 3228 COMSysApp - ok
18:24:54.0715 3228 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:24:54.0715 3228 crcdisk - ok
18:24:54.0730 3228 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:24:54.0730 3228 CryptSvc - ok
18:24:54.0730 3228 [ A5BEA0E5C297F5F3835638A87E512FBA ] CTDevice_Srv C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe
18:24:54.0730 3228 CTDevice_Srv - ok
18:24:54.0730 3228 [ 8E26D772F53B7883A651E0E4A9598F21 ] CTUPnPSv C:\Program Files (x86)\Creative\Creative Centrale\CTUPnPSv.exe
18:24:54.0730 3228 CTUPnPSv - ok
18:24:54.0746 3228 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:24:54.0746 3228 DcomLaunch - ok
18:24:54.0746 3228 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:24:54.0761 3228 defragsvc - ok
18:24:54.0761 3228 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:24:54.0761 3228 DfsC - ok
18:24:54.0761 3228 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:24:54.0761 3228 Dhcp - ok
18:24:54.0761 3228 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:24:54.0761 3228 discache - ok
18:24:54.0777 3228 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
18:24:54.0777 3228 Disk - ok
18:24:54.0777 3228 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:24:54.0777 3228 Dnscache - ok
18:24:54.0777 3228 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:24:54.0777 3228 dot3svc - ok
18:24:54.0777 3228 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:24:54.0793 3228 DPS - ok
18:24:54.0793 3228 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:24:54.0793 3228 drmkaud - ok
18:24:54.0793 3228 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:24:54.0793 3228 DXGKrnl - ok
18:24:54.0808 3228 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:24:54.0808 3228 EapHost - ok
18:24:54.0824 3228 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:24:54.0839 3228 ebdrv - ok
18:24:54.0839 3228 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:24:54.0839 3228 EFS - ok
18:24:54.0855 3228 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:24:54.0855 3228 ehRecvr - ok
18:24:54.0855 3228 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:24:54.0855 3228 ehSched - ok
18:24:54.0855 3228 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:24:54.0871 3228 elxstor - ok
18:24:54.0871 3228 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:24:54.0871 3228 ErrDev - ok
18:24:54.0871 3228 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:24:54.0871 3228 EventSystem - ok
18:24:54.0871 3228 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:24:54.0871 3228 exfat - ok
18:24:54.0886 3228 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:24:54.0886 3228 fastfat - ok
18:24:54.0886 3228 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:24:54.0886 3228 Fax - ok
18:24:54.0902 3228 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
18:24:54.0902 3228 fdc - ok
18:24:54.0902 3228 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:24:54.0902 3228 fdPHost - ok
18:24:54.0902 3228 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:24:54.0902 3228 FDResPub - ok
18:24:54.0902 3228 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:24:54.0902 3228 FileInfo - ok
18:24:54.0902 3228 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:24:54.0902 3228 Filetrace - ok
18:24:54.0902 3228 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
18:24:54.0902 3228 flpydisk - ok
18:24:54.0917 3228 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:24:54.0917 3228 FltMgr - ok
18:24:54.0917 3228 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\Windows\system32\FntCache.dll
18:24:54.0933 3228 FontCache - ok
18:24:54.0933 3228 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:24:54.0933 3228 FontCache3.0.0.0 - ok
18:24:54.0933 3228 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:24:54.0933 3228 FsDepends - ok
18:24:54.0933 3228 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:24:54.0933 3228 Fs_Rec - ok
18:24:54.0949 3228 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:24:54.0949 3228 fvevol - ok
18:24:54.0949 3228 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:24:54.0949 3228 gagp30kx - ok
18:24:54.0949 3228 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:24:54.0964 3228 gpsvc - ok
18:24:54.0964 3228 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:24:54.0964 3228 hcw85cir - ok
18:24:54.0964 3228 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:24:54.0964 3228 HdAudAddService - ok
18:24:54.0964 3228 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:24:54.0964 3228 HDAudBus - ok
18:24:54.0964 3228 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
18:24:54.0964 3228 HidBatt - ok
18:24:54.0980 3228 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:24:54.0980 3228 HidBth - ok
18:24:54.0980 3228 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
18:24:54.0980 3228 HidIr - ok
18:24:54.0980 3228 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:24:54.0980 3228 hidserv - ok
18:24:54.0980 3228 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:24:54.0980 3228 HidUsb - ok
18:24:54.0980 3228 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:24:54.0980 3228 hkmsvc - ok
18:24:54.0995 3228 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:24:54.0995 3228 HomeGroupListener - ok
18:24:54.0995 3228 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:24:54.0995 3228 HomeGroupProvider - ok
18:24:54.0995 3228 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:24:54.0995 3228 HpSAMD - ok
18:24:55.0011 3228 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:24:55.0011 3228 HTTP - ok
18:24:55.0011 3228 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:24:55.0011 3228 hwpolicy - ok
18:24:55.0011 3228 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:24:55.0011 3228 i8042prt - ok
18:24:55.0027 3228 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:24:55.0027 3228 iaStorV - ok
18:24:55.0027 3228 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:24:55.0027 3228 idsvc - ok
18:24:55.0042 3228 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:24:55.0042 3228 iirsp - ok
18:24:55.0042 3228 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:24:55.0058 3228 IKEEXT - ok
18:24:55.0058 3228 [ 50305DDD75C45BE853488390038F6EA0 ] inspect C:\Windows\system32\DRIVERS\inspect.sys
18:24:55.0058 3228 inspect - ok
18:24:55.0073 3228 [ 9CC645EB9697AA4F2D5A39835C80A0A2 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:24:55.0089 3228 IntcAzAudAddService - ok
18:24:55.0105 3228 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:24:55.0105 3228 Intel(R) Capability Licensing Service Interface - ok
18:24:55.0105 3228 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:24:55.0105 3228 intelide - ok
18:24:55.0105 3228 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:24:55.0105 3228 intelppm - ok
18:24:55.0105 3228 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:24:55.0105 3228 IPBusEnum - ok
18:24:55.0120 3228 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:24:55.0120 3228 IpFilterDriver - ok
18:24:55.0120 3228 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:24:55.0120 3228 iphlpsvc - ok
18:24:55.0120 3228 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:24:55.0120 3228 IPMIDRV - ok
18:24:55.0120 3228 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:24:55.0136 3228 IPNAT - ok
18:24:55.0136 3228 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:24:55.0136 3228 IRENUM - ok
18:24:55.0136 3228 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:24:55.0136 3228 isapnp - ok
18:24:55.0136 3228 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:24:55.0136 3228 iScsiPrt - ok
18:24:55.0136 3228 [ D596D915CF091DA1F8CE4BD38BB5D509 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
18:24:55.0136 3228 iusb3hcs - ok
18:24:55.0151 3228 [ 023896E23B61543A15A230EED996D911 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
18:24:55.0151 3228 iusb3hub - ok
18:24:55.0151 3228 [ 7FAEC13F1ADD619F4B5B2D2CBF841E8E ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
18:24:55.0151 3228 iusb3xhc - ok
18:24:55.0151 3228 [ 78ABBE558F57144047F10A0F50FE4B2F ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
18:24:55.0167 3228 jhi_service - ok
18:24:55.0167 3228 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:24:55.0167 3228 kbdclass - ok
18:24:55.0167 3228 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:24:55.0167 3228 kbdhid - ok
18:24:55.0167 3228 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:24:55.0167 3228 KeyIso - ok
18:24:55.0167 3228 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:24:55.0167 3228 KSecDD - ok
18:24:55.0167 3228 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:24:55.0167 3228 KSecPkg - ok
18:24:55.0183 3228 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:24:55.0183 3228 ksthunk - ok
18:24:55.0183 3228 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:24:55.0183 3228 KtmRm - ok
18:24:55.0183 3228 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:24:55.0198 3228 LanmanServer - ok
18:24:55.0198 3228 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:24:55.0198 3228 LanmanWorkstation - ok
18:24:55.0198 3228 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
18:24:55.0198 3228 LBTServ - ok
18:24:55.0214 3228 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:24:55.0214 3228 LHidFilt - ok
18:24:55.0214 3228 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:24:55.0214 3228 lltdio - ok
18:24:55.0214 3228 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:24:55.0214 3228 lltdsvc - ok
18:24:55.0229 3228 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:24:55.0229 3228 lmhosts - ok
18:24:55.0229 3228 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:24:55.0229 3228 LMouFilt - ok
18:24:55.0229 3228 [ 2C24DC448DBE8DB9BE1441B824C57E79 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:24:55.0229 3228 LMS - ok
18:24:55.0229 3228 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:24:55.0229 3228 LSI_FC - ok
18:24:55.0245 3228 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:24:55.0245 3228 LSI_SAS - ok
18:24:55.0245 3228 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:24:55.0245 3228 LSI_SAS2 - ok
18:24:55.0245 3228 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:24:55.0245 3228 LSI_SCSI - ok
18:24:55.0245 3228 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:24:55.0245 3228 luafv - ok
18:24:55.0245 3228 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

ymorduur · Příspěvekod **ymorduur** » 18 srp 2013 18:30

18:24:55.0245 3228 MBAMProtector - ok
18:24:55.0261 3228 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:24:55.0261 3228 MBAMScheduler - ok
18:24:55.0261 3228 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:24:55.0261 3228 MBAMService - ok
18:24:55.0276 3228 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:24:55.0276 3228 Mcx2Svc - ok
18:24:55.0276 3228 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
18:24:55.0276 3228 megasas - ok
18:24:55.0276 3228 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:24:55.0276 3228 MegaSR - ok
18:24:55.0276 3228 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:24:55.0276 3228 MEIx64 - ok
18:24:55.0276 3228 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:24:55.0292 3228 MMCSS - ok
18:24:55.0292 3228 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:24:55.0292 3228 Modem - ok
18:24:55.0292 3228 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:24:55.0292 3228 monitor - ok
18:24:55.0292 3228 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:24:55.0292 3228 mouclass - ok
18:24:55.0292 3228 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:24:55.0292 3228 mouhid - ok
18:24:55.0292 3228 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:24:55.0292 3228 mountmgr - ok
18:24:55.0307 3228 [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:24:55.0307 3228 MozillaMaintenance - ok
18:24:55.0307 3228 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:24:55.0307 3228 mpio - ok
18:24:55.0307 3228 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:24:55.0307 3228 mpsdrv - ok
18:24:55.0323 3228 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:24:55.0323 3228 MpsSvc - ok
18:24:55.0323 3228 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:24:55.0323 3228 MRxDAV - ok
18:24:55.0323 3228 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:24:55.0339 3228 mrxsmb - ok
18:24:55.0339 3228 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:24:55.0339 3228 mrxsmb10 - ok
18:24:55.0339 3228 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:24:55.0339 3228 mrxsmb20 - ok
18:24:55.0339 3228 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:24:55.0339 3228 msahci - ok
18:24:55.0339 3228 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:24:55.0339 3228 msdsm - ok
18:24:55.0354 3228 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:24:55.0354 3228 MSDTC - ok
18:24:55.0354 3228 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:24:55.0354 3228 Msfs - ok
18:24:55.0354 3228 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:24:55.0354 3228 mshidkmdf - ok
18:24:55.0354 3228 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:24:55.0354 3228 msisadrv - ok
18:24:55.0354 3228 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:24:55.0370 3228 MSiSCSI - ok
18:24:55.0370 3228 msiserver - ok
18:24:55.0370 3228 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:24:55.0370 3228 MSKSSRV - ok
18:24:55.0370 3228 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:24:55.0370 3228 MSPCLOCK - ok
18:24:55.0370 3228 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:24:55.0370 3228 MSPQM - ok
18:24:55.0370 3228 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:24:55.0385 3228 MsRPC - ok
18:24:55.0385 3228 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:24:55.0385 3228 mssmbios - ok
18:24:55.0385 3228 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:24:55.0385 3228 MSTEE - ok
18:24:55.0385 3228 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
18:24:55.0385 3228 MTConfig - ok
18:24:55.0385 3228 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:24:55.0385 3228 Mup - ok
18:24:55.0385 3228 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:24:55.0401 3228 napagent - ok
18:24:55.0401 3228 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:24:55.0401 3228 NativeWifiP - ok
18:24:55.0417 3228 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:24:55.0417 3228 NDIS - ok
18:24:55.0417 3228 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:24:55.0417 3228 NdisCap - ok
18:24:55.0417 3228 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:24:55.0417 3228 NdisTapi - ok
18:24:55.0417 3228 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:24:55.0417 3228 Ndisuio - ok
18:24:55.0432 3228 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:24:55.0432 3228 NdisWan - ok
18:24:55.0432 3228 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:24:55.0432 3228 NDProxy - ok
18:24:55.0432 3228 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:24:55.0432 3228 NetBIOS - ok
18:24:55.0432 3228 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:24:55.0432 3228 NetBT - ok
18:24:55.0432 3228 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:24:55.0432 3228 Netlogon - ok
18:24:55.0448 3228 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:24:55.0448 3228 Netman - ok
18:24:55.0448 3228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:24:55.0448 3228 NetMsmqActivator - ok
18:24:55.0463 3228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:24:55.0463 3228 NetPipeActivator - ok
18:24:55.0463 3228 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:24:55.0463 3228 netprofm - ok
18:24:55.0463 3228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:24:55.0463 3228 NetTcpActivator - ok
18:24:55.0479 3228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:24:55.0479 3228 NetTcpPortSharing - ok
18:24:55.0479 3228 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:24:55.0479 3228 nfrd960 - ok
18:24:55.0479 3228 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:24:55.0479 3228 NlaSvc - ok
18:24:55.0479 3228 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:24:55.0479 3228 Npfs - ok
18:24:55.0495 3228 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:24:55.0495 3228 nsi - ok
18:24:55.0495 3228 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:24:55.0495 3228 nsiproxy - ok
18:24:55.0510 3228 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:24:55.0510 3228 Ntfs - ok
18:24:55.0510 3228 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:24:55.0510 3228 Null - ok
18:24:55.0510 3228 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:24:55.0510 3228 nvraid - ok
18:24:55.0526 3228 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:24:55.0526 3228 nvstor - ok
18:24:55.0526 3228 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:24:55.0526 3228 nv_agp - ok
18:24:55.0526 3228 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:24:55.0526 3228 ohci1394 - ok
18:24:55.0526 3228 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:24:55.0541 3228 p2pimsvc - ok
18:24:55.0541 3228 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:24:55.0541 3228 p2psvc - ok
18:24:55.0541 3228 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
18:24:55.0541 3228 Parport - ok
18:24:55.0557 3228 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:24:55.0557 3228 partmgr - ok
18:24:55.0557 3228 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:24:55.0557 3228 PcaSvc - ok
18:24:55.0557 3228 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:24:55.0557 3228 pci - ok
18:24:55.0557 3228 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:24:55.0557 3228 pciide - ok
18:24:55.0573 3228 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:24:55.0573 3228 pcmcia - ok
18:24:55.0573 3228 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:24:55.0573 3228 pcw - ok
18:24:55.0573 3228 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:24:55.0573 3228 PEAUTH - ok
18:24:55.0588 3228 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:24:55.0604 3228 PerfHost - ok
18:24:55.0619 3228 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:24:55.0619 3228 pla - ok
18:24:55.0635 3228 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:24:55.0635 3228 PlugPlay - ok
18:24:55.0635 3228 PnkBstrA - ok
18:24:55.0635 3228 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:24:55.0635 3228 PNRPAutoReg - ok
18:24:55.0651 3228 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:24:55.0651 3228 PNRPsvc - ok
18:24:55.0651 3228 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:24:55.0651 3228 PolicyAgent - ok
18:24:55.0666 3228 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:24:55.0666 3228 Power - ok
18:24:55.0666 3228 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:24:55.0666 3228 PptpMiniport - ok
18:24:55.0666 3228 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
18:24:55.0666 3228 Processor - ok
18:24:55.0666 3228 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:24:55.0682 3228 ProfSvc - ok
18:24:55.0682 3228 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:24:55.0682 3228 ProtectedStorage - ok
18:24:55.0682 3228 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:24:55.0682 3228 Psched - ok
18:24:55.0697 3228 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:24:55.0697 3228 ql2300 - ok
18:24:55.0697 3228 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:24:55.0697 3228 ql40xx - ok
18:24:55.0713 3228 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:24:55.0713 3228 QWAVE - ok
18:24:55.0713 3228 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:24:55.0713 3228 QWAVEdrv - ok
18:24:55.0713 3228 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:24:55.0713 3228 RasAcd - ok
18:24:55.0713 3228 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:24:55.0713 3228 RasAgileVpn - ok
18:24:55.0729 3228 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:24:55.0729 3228 RasAuto - ok
18:24:55.0729 3228 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:24:55.0729 3228 Rasl2tp - ok
18:24:55.0729 3228 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:24:55.0729 3228 RasMan - ok
18:24:55.0744 3228 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:24:55.0744 3228 RasPppoe - ok
18:24:55.0744 3228 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:24:55.0744 3228 RasSstp - ok
18:24:55.0744 3228 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:24:55.0744 3228 rdbss - ok
18:24:55.0744 3228 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
18:24:55.0744 3228 rdpbus - ok
18:24:55.0760 3228 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:24:55.0760 3228 RDPCDD - ok
18:24:55.0760 3228 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:24:55.0760 3228 RDPENCDD - ok
18:24:55.0760 3228 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:24:55.0760 3228 RDPREFMP - ok
18:24:55.0760 3228 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:24:55.0760 3228 RdpVideoMiniport - ok
18:24:55.0760 3228 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:24:55.0775 3228 RDPWD - ok
18:24:55.0775 3228 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:24:55.0775 3228 rdyboost - ok
18:24:55.0775 3228 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:24:55.0775 3228 RemoteAccess - ok
18:24:55.0775 3228 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:24:55.0791 3228 RemoteRegistry - ok
18:24:55.0791 3228 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:24:55.0791 3228 RpcEptMapper - ok
18:24:55.0791 3228 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:24:55.0791 3228 RpcLocator - ok
18:24:55.0791 3228 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:24:55.0807 3228 RpcSs - ok
18:24:55.0807 3228 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:24:55.0807 3228 rspndr - ok
18:24:55.0807 3228 [ 3713DACCA1025B05A6343104112708D9 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:24:55.0807 3228 RTL8167 - ok
18:24:55.0822 3228 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:24:55.0822 3228 SamSs - ok
18:24:55.0822 3228 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:24:55.0822 3228 sbp2port - ok
18:24:55.0822 3228 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:24:55.0822 3228 SCardSvr - ok
18:24:55.0822 3228 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:24:55.0822 3228 scfilter - ok
18:24:55.0838 3228 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:24:55.0853 3228 Schedule - ok
18:24:55.0853 3228 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:24:55.0853 3228 SCPolicySvc - ok
18:24:55.0853 3228 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:24:55.0853 3228 SDRSVC - ok
18:24:55.0853 3228 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:24:55.0853 3228 secdrv - ok
18:24:55.0853 3228 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:24:55.0869 3228 seclogon - ok
18:24:55.0869 3228 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:24:55.0869 3228 SENS - ok
18:24:55.0869 3228 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:24:55.0869 3228 SensrSvc - ok
18:24:55.0869 3228 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:24:55.0869 3228 Serenum - ok
18:24:55.0885 3228 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:24:55.0885 3228 Serial - ok
18:24:55.0885 3228 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:24:55.0885 3228 sermouse - ok
18:24:55.0885 3228 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:24:55.0885 3228 SessionEnv - ok
18:24:55.0885 3228 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:24:55.0885 3228 sffdisk - ok
18:24:55.0900 3228 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:24:55.0900 3228 sffp_mmc - ok
18:24:55.0900 3228 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:24:55.0900 3228 sffp_sd - ok
18:24:55.0900 3228 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:24:55.0900 3228 sfloppy - ok
18:24:55.0900 3228 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:24:55.0900 3228 SharedAccess - ok
18:24:55.0916 3228 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:24:55.0916 3228 ShellHWDetection - ok
18:24:55.0916 3228 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:24:55.0916 3228 SiSRaid2 - ok
18:24:55.0916 3228 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:24:55.0916 3228 SiSRaid4 - ok
18:24:55.0931 3228 [ 4E8A4BB5B11D828FF986F6228B1CD3DF ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:24:55.0931 3228 SkypeUpdate - ok
18:24:55.0931 3228 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:24:55.0931 3228 Smb - ok
18:24:55.0931 3228 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:24:55.0931 3228 SNMPTRAP - ok
18:24:55.0931 3228 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:24:55.0931 3228 spldr - ok
18:24:55.0947 3228 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:24:55.0947 3228 Spooler - ok
18:24:55.0963 3228 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:24:55.0978 3228 sppsvc - ok
18:24:55.0978 3228 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:24:55.0994 3228 sppuinotify - ok
18:24:55.0994 3228 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:24:55.0994 3228 srv - ok
18:24:55.0994 3228 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:24:55.0994 3228 srv2 - ok
18:24:56.0009 3228 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:24:56.0009 3228 srvnet - ok
18:24:56.0009 3228 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:24:56.0009 3228 SSDPSRV - ok
18:24:56.0009 3228 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:24:56.0009 3228 SstpSvc - ok
18:24:56.0025 3228 [ 9E1380328C39D661E085B24D6A6E044E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:24:56.0025 3228 Steam Client Service - ok
18:24:56.0025 3228 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:24:56.0025 3228 stexstor - ok
18:24:56.0041 3228 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:24:56.0041 3228 stisvc - ok
18:24:56.0041 3228 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:24:56.0041 3228 swenum - ok
18:24:56.0056 3228 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:24:56.0056 3228 swprv - ok
18:24:56.0072 3228 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:24:56.0072 3228 SysMain - ok
18:24:56.0087 3228 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:24:56.0087 3228 TabletInputService - ok
18:24:56.0087 3228 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:24:56.0087 3228 TapiSrv - ok
18:24:56.0103 3228 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:24:56.0103 3228 TBS - ok
18:24:56.0119 3228 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:24:56.0119 3228 Tcpip - ok
18:24:56.0134 3228 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:24:56.0134 3228 TCPIP6 - ok
18:24:56.0134 3228 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:24:56.0150 3228 tcpipreg - ok
18:24:56.0150 3228 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:24:56.0150 3228 TDPIPE - ok
18:24:56.0150 3228 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:24:56.0150 3228 TDTCP - ok
18:24:56.0150 3228 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:24:56.0150 3228 tdx - ok
18:24:56.0165 3228 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:24:56.0165 3228 TermDD - ok
18:24:56.0165 3228 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:24:56.0165 3228 TermService - ok
18:24:56.0181 3228 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:24:56.0181 3228 Themes - ok
18:24:56.0181 3228 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:24:56.0181 3228 THREADORDER - ok
18:24:56.0181 3228 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:24:56.0181 3228 TrkWks - ok
18:24:56.0197 3228 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:24:56.0197 3228 TrustedInstaller - ok
18:24:56.0197 3228 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:24:56.0197 3228 tssecsrv - ok
18:24:56.0197 3228 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:24:56.0197 3228 TsUsbFlt - ok
18:24:56.0197 3228 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
18:24:56.0197 3228 TsUsbGD - ok
18:24:56.0197 3228 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:24:56.0212 3228 tunnel - ok
18:24:56.0212 3228 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:24:56.0212 3228 uagp35 - ok
18:24:56.0212 3228 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:24:56.0212 3228 udfs - ok
18:24:56.0212 3228 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:24:56.0228 3228 UI0Detect - ok
18:24:56.0228 3228 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:24:56.0228 3228 uliagpkx - ok
18:24:56.0228 3228 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:24:56.0228 3228 umbus - ok
18:24:56.0228 3228 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
18:24:56.0228 3228 UmPass - ok
18:24:56.0228 3228 [ E1A119AD21F5AFE22EB516C549306D3D ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
18:24:56.0243 3228 UNS - ok
18:24:56.0243 3228 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:24:56.0243 3228 upnphost - ok
18:24:56.0243 3228 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:24:56.0243 3228 usbccgp - ok
18:24:56.0259 3228 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:24:56.0259 3228 usbcir - ok
18:24:56.0259 3228 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:24:56.0259 3228 usbehci - ok
18:24:56.0259 3228 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:24:56.0259 3228 usbhub - ok
18:24:56.0259 3228 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:24:56.0259 3228 usbohci - ok
18:24:56.0275 3228 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
18:24:56.0275 3228 usbprint - ok
18:24:56.0275 3228 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:24:56.0275 3228 USBSTOR - ok
18:24:56.0275 3228 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:24:56.0275 3228 usbuhci - ok
18:24:56.0275 3228 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:24:56.0275 3228 UxSms - ok
18:24:56.0275 3228 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:24:56.0275 3228 VaultSvc - ok
18:24:56.0290 3228 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:24:56.0290 3228 vdrvroot - ok
18:24:56.0290 3228 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:24:56.0290 3228 vds - ok
18:24:56.0306 3228 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:24:56.0306 3228 vga - ok
18:24:56.0306 3228 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:24:56.0306 3228 VgaSave - ok
18:24:56.0306 3228 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:24:56.0306 3228 vhdmp - ok
18:24:56.0306 3228 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:24:56.0306 3228 viaide - ok
18:24:56.0306 3228 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:24:56.0306 3228 volmgr - ok
18:24:56.0321 3228 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:24:56.0321 3228 volmgrx - ok
18:24:56.0321 3228 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:24:56.0321 3228 volsnap - ok
18:24:56.0321 3228 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:24:56.0321 3228 vsmraid - ok
18:24:56.0337 3228 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:24:56.0353 3228 VSS - ok
18:24:56.0353 3228 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:24:56.0353 3228 vwifibus - ok
18:24:56.0368 3228 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:24:56.0368 3228 W32Time - ok
18:24:56.0368 3228 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:24:56.0368 3228 WacomPen - ok
18:24:56.0368 3228 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:24:56.0368 3228 WANARP - ok
18:24:56.0368 3228 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:24:56.0384 3228 Wanarpv6 - ok
18:24:56.0384 3228 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:24:56.0399 3228 WatAdminSvc - ok
18:24:56.0399 3228 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:24:56.0415 3228 wbengine - ok
18:24:56.0415 3228 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:24:56.0431 3228 WbioSrvc - ok
18:24:56.0431 3228 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:24:56.0431 3228 wcncsvc - ok
18:24:56.0431 3228 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:24:56.0446 3228 WcsPlugInService - ok
18:24:56.0446 3228 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
18:24:56.0446 3228 Wd - ok
18:24:56.0446 3228 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:24:56.0446 3228 Wdf01000 - ok
18:24:56.0462 3228 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:24:56.0462 3228 WdiServiceHost - ok
18:24:56.0462 3228 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:24:56.0462 3228 WdiSystemHost - ok
18:24:56.0462 3228 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:24:56.0477 3228 WebClient - ok
18:24:56.0477 3228 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:24:56.0477 3228 Wecsvc - ok
18:24:56.0477 3228 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:24:56.0477 3228 wercplsupport - ok
18:24:56.0493 3228 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:24:56.0493 3228 WerSvc - ok
18:24:56.0493 3228 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:24:56.0493 3228 WfpLwf - ok
18:24:56.0493 3228 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:24:56.0493 3228 WIMMount - ok
18:24:56.0493 3228 WinDefend - ok
18:24:56.0509 3228 WinHttpAutoProxySvc - ok
18:24:56.0509 3228 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:24:56.0509 3228 Winmgmt - ok
18:24:56.0524 3228 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:24:56.0540 3228 WinRM - ok
18:24:56.0540 3228 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:24:56.0540 3228 WinUsb - ok
18:24:56.0555 3228 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:24:56.0555 3228 Wlansvc - ok
18:24:56.0587 3228 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:24:56.0587 3228 wlidsvc - ok
18:24:56.0587 3228 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
18:24:56.0587 3228 WmiAcpi - ok
18:24:56.0602 3228 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:24:56.0602 3228 wmiApSrv - ok
18:24:56.0602 3228 WMPNetworkSvc - ok
18:24:56.0602 3228 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:24:56.0602 3228 WPCSvc - ok
18:24:56.0602 3228 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:24:56.0618 3228 WPDBusEnum - ok
18:24:56.0618 3228 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:24:56.0618 3228 ws2ifsl - ok
18:24:56.0618 3228 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:24:56.0618 3228 wscsvc - ok
18:24:56.0618 3228 WSearch - ok
18:24:56.0633 3228 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:24:56.0649 3228 wuauserv - ok
18:24:56.0665 3228 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:24:56.0665 3228 WudfPf - ok
18:24:56.0665 3228 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:24:56.0665 3228 WUDFRd - ok
18:24:56.0665 3228 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:24:56.0665 3228 wudfsvc - ok
18:24:56.0680 3228 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
18:24:56.0680 3228 WwanSvc - ok
18:24:56.0680 3228 ================ Scan global ===============================
18:24:56.0680 3228 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:24:56.0680 3228 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:24:56.0696 3228 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:24:56.0696 3228 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:24:56.0696 3228 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:24:56.0711 3228 [Global] - ok
18:24:56.0711 3228 ================ Scan MBR ==================================
18:24:56.0711 3228 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:24:56.0711 3228 \Device\Harddisk0\DR0 - ok
18:24:56.0727 3228 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:24:56.0821 3228 \Device\Harddisk1\DR1 - ok
18:24:56.0836 3228 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
18:24:56.0836 3228 \Device\Harddisk2\DR2 - ok
18:24:56.0836 3228 ================ Scan VBR ==================================
18:24:56.0836 3228 [ 9FE4311791D0D079A4C532E8D6BCECDF ] \Device\Harddisk0\DR0\Partition1
18:24:56.0836 3228 \Device\Harddisk0\DR0\Partition1 - ok
18:24:56.0836 3228 [ 145971A2AFE4A94CED2181B8734AFBDF ] \Device\Harddisk0\DR0\Partition2
18:24:56.0852 3228 \Device\Harddisk0\DR0\Partition2 - ok
18:24:56.0852 3228 [ EF22D0495FB6CC61885F72C91D4C8F9D ] \Device\Harddisk1\DR1\Partition1
18:24:56.0852 3228 \Device\Harddisk1\DR1\Partition1 - ok
18:24:56.0852 3228 [ FD2D178A686A3FE23B37F194498D359E ] \Device\Harddisk1\DR1\Partition2
18:24:56.0852 3228 \Device\Harddisk1\DR1\Partition2 - ok
18:24:56.0852 3228 [ C986F6B9BA102A3F2B8335C9CF1793D7 ] \Device\Harddisk2\DR2\Partition1
18:24:56.0852 3228 \Device\Harddisk2\DR2\Partition1 - ok
18:24:56.0852 3228 ============================================================
18:24:56.0852 3228 Scan finished
18:24:56.0852 3228 ============================================================
18:24:56.0867 3068 Detected object count: 0
18:24:56.0867 3068 Actual detected object count: 0
18:25:01.0204 3140 Deinitialize success

Příspěvekod **memphisto** » 18 srp 2013 21:05

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.

ymorduur · Příspěvekod **ymorduur** » 18 srp 2013 21:33

Ten Combofix me blbnul podobne jako ten Junkware Removal Tool. Nakonec to nejaky log udelalo, ale nevim jestli to bude okay.

ComboFix 13-08-18.01 - ymorduur 18.08.2013 21:24:32.1.8 - x64
Spuštěný z: e:\downloads\ComboFix.exe
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-07-18 do 2013-08-18 )))))))))))))))))))))))))))))))
.
.
2013-08-18 19:28 . 2013-08-18 19:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-08-18 15:45 . 2013-08-18 15:45 -------- d-----w- c:\windows\ERUNT
2013-08-18 14:09 . 2013-08-18 14:09 -------- d-----w- c:\users\ymorduur\AppData\Local\ATI
2013-08-18 06:34 . 2013-08-18 06:34 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-08-18 06:34 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-08-17 18:28 . 2013-08-17 18:28 388096 ----a-r- c:\users\ymorduur\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-08-17 18:28 . 2013-08-17 18:28 -------- d-----w- c:\program files (x86)\Trend Micro
2013-08-17 07:33 . 2013-08-17 07:33 -------- d-----w- c:\users\ymorduur\AppData\Roaming\Malwarebytes
2013-08-17 07:33 . 2013-08-17 07:33 -------- d-----w- c:\programdata\Malwarebytes
2013-08-17 07:29 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{778E52CC-F684-4A6A-B0F5-D1A8E9C3DD13}\mpengine.dll
2013-08-13 12:50 . 2013-08-13 12:50 -------- d-----w- c:\program files (x86)\Dolby Home Theater v4
2013-08-13 12:50 . 2013-08-13 12:50 -------- d-----w- c:\programdata\FaceLift
2013-08-13 12:43 . 2012-05-18 14:03 492032 ----a-w- c:\windows\system32\DTSAPO_PSPhase2LFX.dll
2013-08-13 12:43 . 2013-01-25 15:41 948736 ----a-w- c:\windows\system32\CMAPOMain.dll
2013-08-13 12:43 . 2012-12-25 14:53 62464 ----a-w- c:\windows\system32\drivers\CMHDAudioV64.sys
2013-08-13 12:43 . 2012-11-27 12:53 80896 ----a-w- c:\windows\system32\CMEffectPropPage.dll
2013-08-13 12:43 . 2012-11-27 12:53 63488 ----a-w- c:\windows\system32\CMEffectLFX.dll
2013-08-13 12:43 . 2012-11-27 12:53 58368 ----a-w- c:\windows\system32\CMMicEffectLFX.dll
2013-08-13 12:43 . 2012-11-27 12:53 68096 ----a-w- c:\windows\system32\CMEffectGFX.dll
2013-08-13 12:43 . 2012-11-27 12:53 1256448 ----a-w- c:\windows\system32\CMDolby.dll
2013-08-13 12:43 . 2012-11-27 12:53 799232 ----a-w- c:\windows\system32\CMXearVoClear.dll
2013-08-13 12:43 . 2012-11-27 12:53 710656 ----a-w- c:\windows\system32\CMXearSingFX.dll
2013-08-13 12:43 . 2012-11-27 12:53 830464 ----a-w- c:\windows\system32\CMXearLiving10.dll
2013-08-13 12:43 . 2012-11-27 12:53 1947136 ----a-w- c:\windows\system32\CMXearSurr.dll
2013-08-13 12:43 . 2012-05-18 14:03 478208 ----a-w- c:\windows\system32\DTSAPO_PSPhase2GFX.dll
2013-08-13 10:34 . 2013-08-13 12:49 419840 ----a-w- c:\windows\system32\wrap_oal.dll
2013-08-13 10:34 . 2013-08-13 12:49 413696 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-08-13 10:34 . 2013-08-13 12:49 111616 ----a-w- c:\windows\system32\OpenAL32.dll
2013-08-13 10:34 . 2013-08-13 12:49 102400 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-08-13 10:34 . 2013-08-13 10:34 -------- d-----w- c:\program files (x86)\OpenAL
2013-08-13 10:34 . 2012-04-27 16:29 86016 ------w- c:\windows\SysWow64\ExSrv2.dll
2013-08-13 10:34 . 2012-04-27 16:29 86016 ------w- c:\windows\SysWow64\ExSrv.dll
2013-08-13 10:34 . 2011-06-24 13:06 632656 ------w- c:\windows\SysWow64\msvcr80.dll
2013-08-13 10:34 . 2011-02-25 15:07 204800 ------w- c:\windows\SysWow64\ExMgr.exe
2013-08-13 10:33 . 2009-08-20 14:00 359424 ------w- c:\windows\system32\CmiInstallResAll64.dll
2013-07-26 11:13 . 2013-07-26 11:13 -------- d--h--w- c:\programdata\{26D901A1-2540-4430-81DC-0317F01BD7BE}
2013-07-26 11:12 . 2013-07-26 11:12 -------- d--h--w- c:\programdata\{BF1E655E-0210-4F9E-BE22-94A9069BF84B}
2013-07-23 11:37 . 2013-08-03 09:25 -------- d-----w- c:\users\ymorduur\AppData\Roaming\Creative
2013-07-23 11:37 . 2013-07-23 11:37 -------- d-----w- c:\programdata\Creative
2013-07-23 11:36 . 2013-07-26 11:13 -------- d-----w- c:\program files (x86)\Creative
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-14 04:29 . 2013-05-30 15:52 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-07-12 18:12 . 2013-05-31 12:13 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-07-12 18:12 . 2013-05-31 10:15 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-07-12 18:12 . 2013-05-31 10:15 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-07-09 04:45 . 2013-08-14 04:28 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-06-28 22:47 . 2013-05-30 20:57 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-28 22:47 . 2013-05-30 20:57 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-27 20:15 . 2013-05-30 17:18 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-06-27 20:15 . 2013-05-30 17:18 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-06-27 20:15 . 2013-05-30 17:18 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-05 03:34 . 2013-07-10 06:28 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 06:00 . 2013-07-10 06:28 624128 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 04:53 . 2013-07-10 06:28 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2013-06-02 14:18 . 2009-08-18 10:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2013-06-02 14:18 . 2009-08-18 09:24 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-06-02 13:47 . 2013-06-02 13:47 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-06-01 11:12 . 2013-05-31 10:15 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-05-30 23:41 . 2013-05-30 23:41 53248 ----a-r- c:\users\ymorduur\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2013-05-30 23:41 . 2013-05-30 23:41 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2013-05-30 20:58 . 2013-05-30 20:58 963488 ----a-w- c:\windows\system32\deployJava1.dll
2013-05-30 20:58 . 2013-05-30 20:58 310688 ----a-w- c:\windows\system32\javaws.exe
2013-05-30 20:58 . 2013-05-30 20:58 1085344 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-05-30 20:58 . 2013-05-30 20:58 188832 ----a-w- c:\windows\system32\javaw.exe
2013-05-30 20:58 . 2013-05-30 20:58 188320 ----a-w- c:\windows\system32\java.exe
2013-05-30 20:58 . 2013-05-30 20:58 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-05-30 16:07 . 2013-05-30 16:07 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-05-30 16:07 . 2013-05-30 16:07 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-05-30 16:07 . 2013-05-30 16:07 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2013-05-30 16:07 . 2013-05-30 16:07 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-05-30 16:07 . 2013-05-30 16:07 85504 ----a-w- c:\windows\system32\iesetup.dll
2013-05-30 16:07 . 2013-05-30 16:07 82432 ----a-w- c:\windows\system32\icardie.dll
2013-05-30 16:07 . 2013-05-30 16:07 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-05-30 16:07 . 2013-05-30 16:07 76800 ----a-w- c:\windows\system32\tdc.ocx
2013-05-30 16:07 . 2013-05-30 16:07 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-05-30 16:07 . 2013-05-30 16:07 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-05-30 16:07 . 2013-05-30 16:07 65024 ----a-w- c:\windows\system32\pngfilt.dll
2013-05-30 16:07 . 2013-05-30 16:07 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-05-30 16:07 . 2013-05-30 16:07 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-05-30 16:07 . 2013-05-30 16:07 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2013-05-30 16:07 . 2013-05-30 16:07 49664 ----a-w- c:\windows\system32\imgutil.dll
2013-05-30 16:07 . 2013-05-30 16:07 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-05-30 16:07 . 2013-05-30 16:07 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-05-30 16:07 . 2013-05-30 16:07 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2013-05-30 16:07 . 2013-05-30 16:07 448512 ----a-w- c:\windows\system32\html.iec
2013-05-30 16:07 . 2013-05-30 16:07 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2013-05-30 16:07 . 2013-05-30 16:07 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-05-30 16:07 . 2013-05-30 16:07 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-05-30 16:07 . 2013-05-30 16:07 367104 ----a-w- c:\windows\SysWow64\html.iec
2013-05-30 16:07 . 2013-05-30 16:07 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-05-30 16:07 . 2013-05-30 16:07 30720 ----a-w- c:\windows\system32\licmgr10.dll
2013-05-30 16:07 . 2013-05-30 16:07 282112 ----a-w- c:\windows\system32\dxtrans.dll
2013-05-30 16:07 . 2013-05-30 16:07 267776 ----a-w- c:\windows\system32\ieaksie.dll
2013-05-30 16:07 . 2013-05-30 16:07 249344 ----a-w- c:\windows\system32\webcheck.dll
2013-05-30 16:07 . 2013-05-30 16:07 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-05-30 16:07 . 2013-05-30 16:07 222208 ----a-w- c:\windows\system32\msls31.dll
2013-05-30 16:07 . 2013-05-30 16:07 197120 ----a-w- c:\windows\system32\msrating.dll
2013-05-30 16:07 . 2013-05-30 16:07 165888 ----a-w- c:\windows\system32\iexpress.exe
2013-05-30 16:07 . 2013-05-30 16:07 163840 ----a-w- c:\windows\system32\ieakui.dll
2013-05-30 16:07 . 2013-05-30 16:07 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2013-05-30 16:07 . 2013-05-30 16:07 160256 ----a-w- c:\windows\system32\wextract.exe
2013-05-30 16:07 . 2013-05-30 16:07 160256 ----a-w- c:\windows\system32\ieakeng.dll
2013-05-30 16:07 . 2013-05-30 16:07 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2013-05-30 16:07 . 2013-05-30 16:07 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-05-30 16:07 . 2013-05-30 16:07 149504 ----a-w- c:\windows\system32\occache.dll
2013-05-30 16:07 . 2013-05-30 16:07 145920 ----a-w- c:\windows\system32\iepeers.dll
2013-05-30 16:07 . 2013-05-30 16:07 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-05-30 16:07 . 2013-05-30 16:07 12288 ----a-w- c:\windows\system32\mshta.exe
2013-05-30 16:07 . 2013-05-30 16:07 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2013-05-30 16:07 . 2013-05-30 16:07 114176 ----a-w- c:\windows\system32\admparse.dll
2013-05-30 16:07 . 2013-05-30 16:07 111616 ----a-w- c:\windows\system32\iesysprep.dll
2013-05-30 16:07 . 2013-05-30 16:07 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-05-30 16:07 . 2013-05-30 16:07 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2013-05-30 16:07 . 2013-05-30 16:07 103936 ----a-w- c:\windows\system32\inseng.dll
2013-05-30 16:07 . 2013-05-30 16:07 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2013-05-30 14:57 . 2013-05-30 14:57 16896 ----a-w- c:\windows\AsTaskSched.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-06-03 19603048]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2013-07-26 1807272]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2013-07-30 3549528]
"SoftAuto.exe"="c:\program files (x86)\Creative\Software Update 3\SoftAuto.exe" [2008-08-13 405504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
"Dolby Home Theater v4"="c:\program files (x86)\Dolby Home Theater v4\pcee4.exe" [2012-08-31 508656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoActiveDesktop"= 1 (0x1)
"NoActiveDesktopChanges"= 1 (0x1)
"ForceActiveDesktopOn"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ATLMonitorService;ATLMonitorService;c:\windows\system\MonitorService.exe;c:\windows\system\MonitorService.exe [x]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [x]
R3 CTUPnPSv;Creative Centrale Media Server;c:\program files (x86)\Creative\Creative Centrale\CTUPnPSv.exe;c:\program files (x86)\Creative\Creative Centrale\CTUPnPSv.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys;c:\windows\SYSNATIVE\DRIVERS\cmderd.sys [x]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys;c:\windows\SYSNATIVE\DRIVERS\cmdguard.sys [x]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys;c:\windows\SYSNATIVE\DRIVERS\cmdhlp.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 ATLOISAService;ATLOISAService;c:\windows\system\ATLOISAService.exe;c:\windows\system\ATLOISAService.exe [x]
S3 CmHdAudAddService;C-Media Function Driver for High Definition Audio Service;c:\windows\system32\DRIVERS\CMHDAudioV64.sys;c:\windows\SYSNATIVE\DRIVERS\CMHDAudioV64.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cistray.exe" [2013-04-15 3603152]
"PheobusEX"="c:\windows\syswow64\ExMgr.exe" [2011-02-25 204800]
"GamecomSound"="c:\program files\ASUS Phoebus Audio Sound Card\CPL\Phoebus_x64.exe" [2013-01-25 2364928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
FF - ProfilePath - c:\users\ymorduur\AppData\Roaming\Mozilla\Firefox\Profiles\3yt1bihn.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/firefox
.
.
------- Asociace souborů -------
.
regedit=regedit.exe "%1"
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
Celkový čas: 2013-08-18 21:30:08
ComboFix-quarantined-files.txt 2013-08-18 19:30
.
Před spuštěním: Volných bajtů: 21 162 369 024
Po spuštění: Volných bajtů: 21 149 802 496
.
- - End Of File - - B7D64333BF3699E16C104DE770DA2206
A36C5E4F47E84449FF07ED3517B43A31

Kontrola logu (otravné prokazování že nejsem robot). Vyřešeno

Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Re: Kontrola logu (otravné prokazování že nejsem robot).

Kdo je online