Preventivní kontrola logu Vyřešeno

[Zabral68]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:27:36, on 5.9.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\srvany.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\kmsem\KMService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Zabral68\Plocha\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Driver Detective] C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe /applicationMode:systemTray /showWelcome:false
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-329068152-1085031214-839522115-1120\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 4482189531
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: KMService - Unknown owner - C:\WINDOWS\system32\srvany.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

--
End of file - 9390 bytes

Předem děkuji.

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Zabral68]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.09.05.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Zabral68 :: BÉDA [administrátor]

Ochrana: Povolena

5.9.2013 18:37:13
MBAM-log-2013-09-05 (18-47-24).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 263372
Uplynulý čas: 9 minut, 46 sekund

Nalezené procesy v paměti: 1
C:\WINDOWS\kmsem\KMService.exe (Trojan.FakeAlert) -> 656 -> Nebyla provedena žádná instrukce.

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 6
HKCR\CrossriderApp0035336.BHO (PUP.Optional.FreeHDSport) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\CROSSRIDER (PUP.Optional.CrossRider.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\InstalledBrowserExtensions\installdaddy (PUP.Optional.CrossRider.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Google\Chrome\Extensions\nbdbmopeebalgaeghmjoegpkngglikgn (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 3
HKCU\Software\Crossrider|Verifier (PUP.Optional.CrossRider.A) -> Data: 8e078da6db1bfcbcbb935a54bc31cdd6 -> Nebyla provedena žádná instrukce.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {7E99F6C7-0784-11E3-8082-0009DD50824D} -> Nebyla provedena žádná instrukce.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {7E99F6C7-0784-11E3-8082-0009DD50824D} -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 1
C:\Program Files\FreeHDSport.TV (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 10
C:\WINDOWS\kmsem\KMService.exe (Trojan.FakeAlert) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Zabral68\Local Settings\Temp\EcuYyl0J.exe.part (PUP.Optional.Installex) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Zabral68\Local Settings\Temp\mgsqlite3.7z (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Zabral68\Local Settings\Temp\mgsqlite3.dll (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\Program Files\FreeHDSport.TV\freehdsporttv10.crx (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\FreeHDSport.TV\freehdsporttvIE.exe (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\FreeHDSport.TV\LSextsetup.exe (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Tasks\FreeHDSport TV-codedownloader.job (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Tasks\FreeHDSport TV-enabler.job (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\Tasks\FreeHDSport TV-updater.job (PUP.Optional.FreeHDSport.A) -> Nebyla provedena žádná instrukce.

(konec)

----------------------------------------------------------------------------------------------------------------------------------------------------------

# AdwCleaner v3.002 - Report created 05/09/2013 at 18:49:46
# Updated 01/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Zabral68 - BÉDA
# Running from : C:\Documents and Settings\Zabral68\Plocha\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\searchplugins\ask-search.xml
File Found : C:\END
Folder Found C:\Documents and Settings\All Users\Data aplikací\apn
Folder Found C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\jetpack
Folder Found C:\Documents and Settings\Zabral68\Dokumenty\Smart Driver Updater
Folder Found C:\Documents and Settings\Zabral68\IECompatCache

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Crossrider
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035336.BHO
Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\Software\PIP
Product Found : Google Update Helper

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v23.0.1 (cs)

[ File : C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\prefs.js ]


[ File : C:\Documents and Settings\Děti\Data aplikací\Mozilla\Firefox\Profiles\sgwfxns4.default\prefs.js ]


-\\ Google Chrome v29.0.1547.66

[ File : C:\Documents and Settings\Zabral68\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Documents and Settings\Děti\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2344 octets] - [05/09/2013 18:49:46]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2404 octets] ##########

[jaro3]

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Zabral68]

Díky za ochotu reagovat na mou prosbu. Tvou poslední reakci v topicu provedu až ráno, neboť musím na noc do práce. Tak se potom prosím tě mrkni. Má odpověď zde bude okolo 7. hodiny.

[jaro3]

Ok , budu tu někdy dopoledne.

[Zabral68]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.09.05.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Zabral68 :: BÉDA [administrátor]

Ochrana: Povolena

6.9.2013 6:57:36
mbam-log-2013-09-06 (06-57-36).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 263434
Uplynulý čas: 8 minut, 14 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)
------------------------------------------------------------------------------------------------------------------------------------------
# AdwCleaner v3.002 - Report created 06/09/2013 at 07:12:48
# Updated 01/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Zabral68 - BÉDA
# Running from : C:\Documents and Settings\Zabral68\Plocha\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\searchplugins\ask-search.xml
File Found : C:\END
Folder Found C:\Documents and Settings\All Users\Data aplikací\apn
Folder Found C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\jetpack
Folder Found C:\Documents and Settings\Zabral68\Dokumenty\Smart Driver Updater
Folder Found C:\Documents and Settings\Zabral68\IECompatCache

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\Software\PIP
Product Found : Google Update Helper

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v23.0.1 (cs)

[ File : C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\prefs.js ]


[ File : C:\Documents and Settings\Děti\Data aplikací\Mozilla\Firefox\Profiles\sgwfxns4.default\prefs.js ]


-\\ Google Chrome v29.0.1547.66

[ File : C:\Documents and Settings\Zabral68\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Documents and Settings\Děti\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2484 octets] - [05/09/2013 18:49:46]
AdwCleaner[R1].txt - [2306 octets] - [06/09/2013 07:12:48]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [2366 octets] ##########
------------------------------------------------------------------------------------------------------------------------------------------------------------
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.8 (09.05.2013:1)
OS: Microsoft Windows XP x86
Ran by Zabral68 on p  06.09.2013 at 7:21:38,51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{A7F9A7AE-41E6-4D7E-9238-3F21D39EBAAC}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"



~~~ Files

Successfully deleted: [File] "C:\end"



~~~ Folders





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  06.09.2013 at 7:29:50,75
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
----------------------------------------------------------------------------------------------------------------------------------------
RogueKiller V8.6.9 [Sep 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Zabral68 [Práva správce]
Mód : Kontrola -- Datum : 09/06/2013 07:40:32
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[SCREENSVR][SUSP PATH] HKCU\[...]\Desktop : SCRNSAVE.EXE (C:\WINDOWS\AvastSS.scr [7]) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 2 ¤¤¤
[All Users][SUSP UNIC] HP Digital Imaging Monitor.lnk : C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk @C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [-][7] -> NALEZENO
[All Users][SUSP UNIC] InterVideo WinCinema Manager.lnk : C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk @C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe [-][-] -> NALEZENO

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD2000JD-55HBB0 +++++
--- User ---
[MBR] 30f0266817c32c2f1674124faf5e68e2
[BSP] f37de2f0c2f56cddece520061bb1ae44 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 29996 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 61432560 | Size: 160775 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WDC WD2000JD-55HBB0 +++++
--- User ---
[MBR] 6070d700fe76db6cb8cfd5725e6af3e9
[BSP] 1e238d5561e769c0bafd83d5ed6fe8c8 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953866 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive2: WDC WD2000JD-55HBB0 +++++
--- User ---
[MBR] d21a4ecfd1aa5ae3c531e602189cd539
[BSP] 98505dec7c335decb522b9006cb78a7c : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1907726 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[0]_S_09062013_074032.txt >>

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání skončeno "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

Máš nějaké problémy?

[Zabral68]

# AdwCleaner v3.002 - Report created 06/09/2013 at 10:00:02
# Updated 01/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Zabral68 - BÉDA
# Running from : C:\Documents and Settings\Zabral68\Plocha\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\apn
Folder Deleted : C:\Documents and Settings\Zabral68\IECompatCache
Folder Deleted : C:\Documents and Settings\Zabral68\Dokumenty\Smart Driver Updater
Folder Deleted : C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\jetpack
File Deleted : C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\searchplugins\ask-search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller
Product Deleted : Google Update Helper

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v23.0.1 (cs)

[ File : C:\Documents and Settings\Zabral68\Data aplikací\Mozilla\Firefox\Profiles\dch1bncm.default\prefs.js ]


[ File : C:\Documents and Settings\Děti\Data aplikací\Mozilla\Firefox\Profiles\sgwfxns4.default\prefs.js ]


-\\ Google Chrome v29.0.1547.66

[ File : C:\Documents and Settings\Zabral68\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Documents and Settings\Děti\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2484 octets] - [05/09/2013 18:49:46]
AdwCleaner[R1].txt - [2446 octets] - [06/09/2013 07:12:48]
AdwCleaner[R2].txt - [2506 octets] - [06/09/2013 07:17:23]
AdwCleaner[R3].txt - [2566 octets] - [06/09/2013 07:19:50]
AdwCleaner[R4].txt - [2227 octets] - [06/09/2013 09:56:40]
AdwCleaner[S0].txt - [2176 octets] - [06/09/2013 10:00:02]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2236 octets] ##########
----------------------------------------------------------------------------------------------------------------------
RogueKiller V8.6.9 [Sep 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Zabral68 [Práva správce]
Mód : Odebrat -- Datum : 09/06/2013 10:07:44
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[SCREENSVR][SUSP PATH] HKCU\[...]\Desktop : SCRNSAVE.EXE (C:\WINDOWS\AvastSS.scr [7]) -> NAHRAZENO (C:\WINDOWS\system32\logon.scr)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 2 ¤¤¤
[All Users][SUSP UNIC] HP Digital Imaging Monitor.lnk : C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk @C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [-][7] -> VYMAZÁNO
[All Users][SUSP UNIC] InterVideo WinCinema Manager.lnk : C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk @C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe [-][-] -> VYMAZÁNO

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD2000JD-55HBB0 +++++
--- User ---
[MBR] 30f0266817c32c2f1674124faf5e68e2
[BSP] f37de2f0c2f56cddece520061bb1ae44 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 29996 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 61432560 | Size: 160775 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_09062013_100744.txt >>
RKreport[0]_S_09062013_100730.txt

------------------------------------------------------------------------------------------------------------------------------
10:10:35.0500 1688 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:10:37.0500 1688 ============================================================
10:10:37.0500 1688 Current date / time: 2013/09/06 10:10:37.0500
10:10:37.0500 1688 SystemInfo:
10:10:37.0500 1688
10:10:37.0500 1688 OS Version: 5.1.2600 ServicePack: 3.0
10:10:37.0500 1688 Product type: Workstation
10:10:37.0500 1688 ComputerName: BÉDA
10:10:37.0500 1688 UserName: Zabral68
10:10:37.0500 1688 Windows directory: C:\WINDOWS
10:10:37.0500 1688 System windows directory: C:\WINDOWS
10:10:37.0500 1688 Processor architecture: Intel x86
10:10:37.0500 1688 Number of processors: 2
10:10:37.0500 1688 Page size: 0x1000
10:10:37.0500 1688 Boot type: Normal boot
10:10:37.0500 1688 ============================================================
10:10:39.0703 1688 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
10:10:39.0718 1688 ============================================================
10:10:39.0718 1688 \Device\Harddisk0\DR0:
10:10:39.0734 1688 MBR partitions:
10:10:39.0734 1688 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A962B1
10:10:39.0750 1688 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3A9632F, BlocksNum 0xEA60903
10:10:39.0796 1688 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x124F6C71, BlocksNum 0x4FA328F
10:10:39.0796 1688 ============================================================
10:10:39.0843 1688 C: <-> \Device\Harddisk0\DR0\Partition1
10:10:39.0890 1688 D: <-> \Device\Harddisk0\DR0\Partition2
10:10:39.0937 1688 E: <-> \Device\Harddisk0\DR0\Partition3
10:10:39.0937 1688 ============================================================
10:10:39.0937 1688 Initialize success
10:10:39.0937 1688 ============================================================
10:10:46.0281 2284 ============================================================
10:10:46.0281 2284 Scan started
10:10:46.0281 2284 Mode: Manual;
10:10:46.0281 2284 ============================================================
10:10:46.0906 2284 ================ Scan system memory ========================
10:10:46.0906 2284 System memory - ok
10:10:46.0906 2284 ================ Scan services =============================
10:10:47.0000 2284 Abiosdsk - ok
10:10:47.0000 2284 abp480n5 - ok
10:10:47.0031 2284 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:10:47.0046 2284 ACPI - ok
10:10:47.0062 2284 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
10:10:47.0062 2284 ACPIEC - ok
10:10:47.0109 2284 [ CE03D313A12CBC886C3BEBA3B4967A8A ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
10:10:47.0109 2284 ADIHdAudAddService - ok
10:10:47.0187 2284 [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:10:47.0187 2284 AdobeFlashPlayerUpdateSvc - ok
10:10:47.0187 2284 adpu160m - ok
10:10:47.0218 2284 [ 058CDC314672A28A90566A787D9876E7 ] AEAudio C:\WINDOWS\system32\drivers\AEAudio.sys
10:10:47.0218 2284 AEAudio - ok
10:10:47.0250 2284 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
10:10:47.0250 2284 aec - ok
10:10:47.0281 2284 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
10:10:47.0281 2284 AFD - ok
10:10:47.0281 2284 Aha154x - ok
10:10:47.0281 2284 aic78u2 - ok
10:10:47.0296 2284 aic78xx - ok
10:10:47.0328 2284 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
10:10:47.0328 2284 Alerter - ok
10:10:47.0343 2284 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
10:10:47.0343 2284 ALG - ok
10:10:47.0343 2284 AliIde - ok
10:10:47.0343 2284 amsint - ok
10:10:47.0421 2284 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
10:10:47.0421 2284 AppMgmt - ok
10:10:47.0437 2284 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
10:10:47.0437 2284 Arp1394 - ok
10:10:47.0437 2284 asc - ok
10:10:47.0437 2284 asc3350p - ok
10:10:47.0453 2284 asc3550 - ok
10:10:47.0843 2284 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
10:10:47.0859 2284 aspnet_state - ok
10:10:47.0890 2284 [ B9FE438B3CAD82B2014710349A2022F7 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
10:10:47.0890 2284 aswFsBlk - ok
10:10:47.0921 2284 [ 7A9574E9C68ADDCC41ABDF322F3EB0B9 ] aswFW C:\WINDOWS\system32\drivers\aswFW.sys
10:10:47.0921 2284 aswFW - ok
10:10:47.0953 2284 [ 77D1BB80580EE1AC9F517D098DEBE5F6 ] aswKbd C:\WINDOWS\system32\drivers\aswKbd.sys
10:10:47.0953 2284 aswKbd - ok
10:10:47.0968 2284 [ AE5549DD21F6DE06406031EF1D51ACC3 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
10:10:47.0968 2284 aswMonFlt - ok
10:10:47.0984 2284 [ 7B948E3657BEA62E437BC46CA6EF6012 ] aswNdis C:\WINDOWS\system32\DRIVERS\aswNdis.sys
10:10:47.0984 2284 aswNdis - ok
10:10:48.0000 2284 [ CEA23B5AD792EDB63F30794FE38BE45D ] aswNdis2 C:\WINDOWS\system32\drivers\aswNdis2.sys
10:10:48.0000 2284 aswNdis2 - ok
10:10:48.0015 2284 [ D084D0A7A66619FC29776CBBB9D5FA55 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
10:10:48.0015 2284 AswRdr - ok
10:10:48.0031 2284 [ FA72FA503F580C3C628DD8C7D7622E37 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
10:10:48.0031 2284 aswRvrt - ok
10:10:48.0078 2284 [ 4D53349D848C6BADB3D4ACBE98C27676 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
10:10:48.0078 2284 aswSnx - ok
10:10:48.0109 2284 [ 813024DFD54A41B3AFAE2B1E2796CB80 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
10:10:48.0109 2284 aswSP - ok
10:10:48.0125 2284 [ 5E18413310134130D7772F0668698CB7 ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
10:10:48.0125 2284 aswTdi - ok
10:10:48.0140 2284 [ A5F637D61719D37A5B4868C385E363C0 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
10:10:48.0140 2284 aswVmm - ok
10:10:48.0171 2284 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:10:48.0171 2284 AsyncMac - ok
10:10:48.0203 2284 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
10:10:48.0203 2284 atapi - ok
10:10:48.0234 2284 [ 01C1550BA423C9813E829F566F598D60 ] AtcL001 C:\WINDOWS\system32\DRIVERS\l151x86.sys
10:10:48.0234 2284 AtcL001 - ok
10:10:48.0234 2284 Atdisk - ok
10:10:48.0265 2284 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:10:48.0265 2284 Atmarpc - ok
10:10:48.0281 2284 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
10:10:48.0296 2284 AudioSrv - ok
10:10:48.0312 2284 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
10:10:48.0328 2284 audstub - ok
10:10:48.0421 2284 [ 9330941C8F6DF417F6DBBE998DB6687E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:10:48.0437 2284 avast! Antivirus - ok
10:10:48.0468 2284 [ 68E3356BC848124F56BDAC3C70C2E54B ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
10:10:48.0468 2284 avast! Firewall - ok
10:10:48.0515 2284 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
10:10:48.0515 2284 Beep - ok
10:10:48.0546 2284 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
10:10:48.0562 2284 BITS - ok
10:10:48.0609 2284 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
10:10:48.0609 2284 Browser - ok
10:10:48.0625 2284 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
10:10:48.0625 2284 BthEnum - ok
10:10:48.0656 2284 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
10:10:48.0656 2284 BthPan - ok
10:10:48.0703 2284 [ F338662A6C1FC11DD9508F6DFF2C06A2 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
10:10:48.0703 2284 BTHPORT - ok
10:10:48.0734 2284 [ 70CA4B3F634C9DCA200832F8DA76E009 ] BthServ C:\WINDOWS\System32\bthserv.dll
10:10:48.0734 2284 BthServ - ok
10:10:48.0750 2284 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
10:10:48.0750 2284 BTHUSB - ok
10:10:48.0781 2284 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
10:10:48.0781 2284 cbidf2k - ok
10:10:48.0812 2284 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
10:10:48.0812 2284 CCDECODE - ok
10:10:48.0812 2284 cd20xrnt - ok
10:10:48.0828 2284 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
10:10:48.0843 2284 Cdaudio - ok
10:10:48.0843 2284 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
10:10:48.0843 2284 Cdfs - ok
10:10:48.0859 2284 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:10:48.0859 2284 Cdrom - ok
10:10:48.0859 2284 Changer - ok
10:10:48.0890 2284 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
10:10:48.0890 2284 CiSvc - ok
10:10:48.0906 2284 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
10:10:48.0906 2284 ClipSrv - ok
10:10:48.0953 2284 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:10:48.0953 2284 clr_optimization_v2.0.50727_32 - ok
10:10:49.0000 2284 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:10:49.0031 2284 clr_optimization_v4.0.30319_32 - ok
10:10:49.0031 2284 CmdIde - ok
10:10:49.0031 2284 COMSysApp - ok
10:10:49.0046 2284 Cpqarray - ok
10:10:49.0062 2284 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
10:10:49.0062 2284 CryptSvc - ok
10:10:49.0062 2284 dac2w2k - ok
10:10:49.0062 2284 dac960nt - ok
10:10:49.0109 2284 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
10:10:49.0125 2284 DcomLaunch - ok
10:10:49.0171 2284 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
10:10:49.0171 2284 Dhcp - ok
10:10:49.0171 2284 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
10:10:49.0171 2284 Disk - ok
10:10:49.0171 2284 dmadmin - ok
10:10:49.0250 2284 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
10:10:49.0250 2284 dmboot - ok
10:10:49.0265 2284 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
10:10:49.0265 2284 dmio - ok
10:10:49.0281 2284 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
10:10:49.0281 2284 dmload - ok
10:10:49.0312 2284 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
10:10:49.0312 2284 dmserver - ok
10:10:49.0328 2284 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
10:10:49.0328 2284 DMusic - ok
10:10:49.0359 2284 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
10:10:49.0359 2284 Dnscache - ok
10:10:49.0390 2284 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
10:10:49.0406 2284 Dot3svc - ok
10:10:49.0406 2284 dpti2o - ok
10:10:49.0406 2284 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
10:10:49.0406 2284 drmkaud - ok
10:10:49.0437 2284 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
10:10:49.0437 2284 EapHost - ok
10:10:49.0453 2284 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
10:10:49.0453 2284 ERSvc - ok
10:10:49.0468 2284 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
10:10:49.0484 2284 Eventlog - ok
10:10:49.0515 2284 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
10:10:49.0531 2284 EventSystem - ok
10:10:49.0578 2284 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
10:10:49.0578 2284 Fastfat - ok
10:10:49.0609 2284 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:10:49.0625 2284 FastUserSwitchingCompatibility - ok
10:10:49.0656 2284 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
10:10:49.0656 2284 Fdc - ok
10:10:49.0671 2284 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
10:10:49.0671 2284 Fips - ok
10:10:49.0687 2284 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
10:10:49.0687 2284 Flpydisk - ok
10:10:49.0718 2284 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
10:10:49.0718 2284 FltMgr - ok
10:10:49.0796 2284 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
10:10:49.0812 2284 FontCache3.0.0.0 - ok
10:10:49.0812 2284 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:10:49.0812 2284 Fs_Rec - ok
10:10:49.0828 2284 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:10:49.0828 2284 Ftdisk - ok
10:10:49.0859 2284 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:10:49.0875 2284 Gpc - ok
10:10:49.0937 2284 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
10:10:49.0937 2284 gupdate - ok
10:10:49.0937 2284 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
10:10:49.0937 2284 gupdatem - ok
10:10:49.0953 2284 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:10:49.0953 2284 HDAudBus - ok
10:10:50.0031 2284 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:10:50.0031 2284 helpsvc - ok
10:10:50.0031 2284 HidServ - ok
10:10:50.0062 2284 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
10:10:50.0078 2284 hkmsvc - ok
10:10:50.0078 2284 hpn - ok
10:10:50.0156 2284 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
10:10:50.0171 2284 hpqcxs08 - ok
10:10:50.0203 2284 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
10:10:50.0203 2284 hpqddsvc - ok
10:10:50.0250 2284 [ D03D10F7DED688FECF50F8FBF1EA9B8A ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
10:10:50.0250 2284 HPZid412 - ok
10:10:50.0250 2284 [ 89F41658929393487B6B7D13C8528CE3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
10:10:50.0250 2284 HPZipr12 - ok
10:10:50.0250 2284 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
10:10:50.0250 2284 HPZius12 - ok
10:10:50.0296 2284 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
10:10:50.0296 2284 HTTP - ok
10:10:50.0328 2284 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
10:10:50.0343 2284 HTTPFilter - ok
10:10:50.0343 2284 i2omgmt - ok
10:10:50.0343 2284 i2omp - ok
10:10:50.0375 2284 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:10:50.0375 2284 i8042prt - ok
10:10:50.0500 2284 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:10:50.0515 2284 idsvc - ok
10:10:50.0546 2284 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
10:10:50.0546 2284 Imapi - ok
10:10:50.0593 2284 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
10:10:50.0593 2284 ImapiService - ok
10:10:50.0609 2284 ini910u - ok
10:10:50.0609 2284 IntelIde - ok
10:10:50.0640 2284 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:10:50.0640 2284 intelppm - ok
10:10:50.0671 2284 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
10:10:50.0671 2284 Ip6Fw - ok
10:10:50.0687 2284 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:10:50.0687 2284 IpFilterDriver - ok
10:10:50.0687 2284 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:10:50.0687 2284 IpInIp - ok
10:10:50.0718 2284 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:10:50.0718 2284 IpNat - ok
10:10:50.0734 2284 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:10:50.0734 2284 IPSec - ok
10:10:50.0765 2284 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
10:10:50.0765 2284 IRENUM - ok
10:10:50.0812 2284 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:10:50.0812 2284 isapnp - ok
10:10:50.0828 2284 [ C995C0E8B4503FAC38793BB0236AD246 ] JGOGO C:\WINDOWS\system32\DRIVERS\JGOGO.sys
10:10:50.0828 2284 JGOGO - ok
10:10:50.0828 2284 [ 8F55EFD8B7D99465C16D06B345D50CA9 ] JRAID C:\WINDOWS\system32\DRIVERS\jraid.sys
10:10:50.0828 2284 JRAID - ok
10:10:50.0875 2284 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:10:50.0875 2284 Kbdclass - ok
10:10:50.0890 2284 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
10:10:50.0890 2284 kmixer - ok
10:10:50.0906 2284 [ 4635935FC972C582632BF45C26BFCB0E ] KMService C:\WINDOWS\system32\srvany.exe
10:10:50.0921 2284 KMService - ok
10:10:50.0953 2284 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
10:10:50.0953 2284 KSecDD - ok
10:10:51.0000 2284 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
10:10:51.0015 2284 lanmanserver - ok
10:10:51.0062 2284 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:10:51.0062 2284 lanmanworkstation - ok
10:10:51.0062 2284 lbrtfdc - ok
10:10:51.0093 2284 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
10:10:51.0109 2284 LmHosts - ok
10:10:51.0125 2284 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
10:10:51.0125 2284 MBAMProtector - ok
10:10:51.0171 2284 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:10:51.0171 2284 MBAMScheduler - ok
10:10:51.0218 2284 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
10:10:51.0218 2284 MBAMService - ok
10:10:51.0250 2284 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
10:10:51.0250 2284 Messenger - ok
10:10:51.0312 2284 Microsoft SharePoint Workspace Audit Service - ok
10:10:51.0328 2284 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
10:10:51.0343 2284 mnmdd - ok
10:10:51.0375 2284 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
10:10:51.0375 2284 mnmsrvc - ok
10:10:51.0421 2284 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
10:10:51.0421 2284 Modem - ok
10:10:51.0453 2284 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:10:51.0453 2284 Mouclass - ok
10:10:51.0468 2284 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
10:10:51.0468 2284 MountMgr - ok
10:10:51.0515 2284 [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:10:51.0515 2284 MozillaMaintenance - ok
10:10:51.0515 2284 mraid35x - ok
10:10:51.0546 2284 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:10:51.0546 2284 MRxDAV - ok
10:10:51.0593 2284 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:10:51.0593 2284 MRxSmb - ok
10:10:51.0625 2284 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
10:10:51.0625 2284 MSDTC - ok
10:10:51.0656 2284 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
10:10:51.0656 2284 Msfs - ok
10:10:51.0656 2284 MSIServer - ok
10:10:51.0656 2284 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:10:51.0656 2284 MSKSSRV - ok
10:10:51.0656 2284 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:10:51.0656 2284 MSPCLOCK - ok
10:10:51.0671 2284 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
10:10:51.0671 2284 MSPQM - ok
10:10:51.0687 2284 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:10:51.0687 2284 mssmbios - ok
10:10:51.0687 2284 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
10:10:51.0687 2284 MSTEE - ok
10:10:51.0734 2284 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
10:10:51.0734 2284 Mup - ok
10:10:51.0765 2284 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
10:10:51.0765 2284 NABTSFEC - ok
10:10:51.0812 2284 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
10:10:51.0812 2284 napagent - ok
10:10:51.0859 2284 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
10:10:51.0859 2284 NDIS - ok
10:10:51.0859 2284 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
10:10:51.0859 2284 NdisIP - ok
10:10:51.0890 2284 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:10:51.0890 2284 NdisTapi - ok
10:10:51.0906 2284 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:10:51.0906 2284 Ndisuio - ok
10:10:51.0906 2284 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:10:51.0906 2284 NdisWan - ok
10:10:51.0921 2284 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
10:10:51.0937 2284 NDProxy - ok
10:10:52.0015 2284 [ 6D4028D458EAAA1782099750790DC8C9 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
10:10:52.0015 2284 Nero BackItUp Scheduler 3 - ok
10:10:52.0062 2284 [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
10:10:52.0062 2284 Net Driver HPZ12 - ok
10:10:52.0062 2284 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
10:10:52.0062 2284 NetBIOS - ok
10:10:52.0078 2284 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
10:10:52.0078 2284 NetBT - ok
10:10:52.0125 2284 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
10:10:52.0125 2284 NetDDE - ok
10:10:52.0140 2284 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
10:10:52.0140 2284 NetDDEdsdm - ok
10:10:52.0156 2284 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
10:10:52.0171 2284 Netlogon - ok
10:10:52.0171 2284 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
10:10:52.0187 2284 Netman - ok
10:10:52.0234 2284 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
10:10:52.0250 2284 NetTcpPortSharing - ok
10:10:52.0265 2284 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
10:10:52.0265 2284 NIC1394 - ok
10:10:52.0281 2284 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
10:10:52.0312 2284 Nla - ok
10:10:52.0343 2284 [ 1BEF5464C06F4AF0C704378824C52ADB ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
10:10:52.0359 2284 NMIndexingService - ok
10:10:52.0359 2284 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
10:10:52.0359 2284 Npfs - ok
10:10:52.0390 2284 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
10:10:52.0406 2284 Ntfs - ok
10:10:52.0406 2284 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
10:10:52.0406 2284 NtLmSsp - ok
10:10:52.0453 2284 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
10:10:52.0468 2284 NtmsSvc - ok
10:10:52.0500 2284 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
10:10:52.0500 2284 Null - ok
10:10:52.0984 2284 [ A613A14FB4D9117F42A3A280F64E9EC4 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
10:10:53.0062 2284 nv - ok
10:10:53.0078 2284 [ EDDE04805AC865AC8465388DC4A4CCC7 ] NVHDA C:\WINDOWS\system32\drivers\nvhda32.sys
10:10:53.0093 2284 NVHDA - ok
10:10:53.0109 2284 [ F1AE0BC50661BE09E7BC5919F4C05505 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
10:10:53.0125 2284 NVSvc - ok
10:10:53.0250 2284 [ A9AFE5B0648C8D7A411A72D8222F7F6E ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
10:10:53.0250 2284 nvUpdatusService - ok
10:10:53.0281 2284 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:10:53.0296 2284 NwlnkFlt - ok
10:10:53.0296 2284 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:10:53.0296 2284 NwlnkFwd - ok
10:10:53.0328 2284 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
10:10:53.0328 2284 ohci1394 - ok
10:10:53.0375 2284 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:10:53.0375 2284 ose - ok
10:10:53.0531 2284 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:10:53.0656 2284 osppsvc - ok
10:10:53.0687 2284 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
10:10:53.0687 2284 Parport - ok
10:10:53.0734 2284 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
10:10:53.0734 2284 PartMgr - ok
10:10:53.0765 2284 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
10:10:53.0765 2284 ParVdm - ok
10:10:53.0765 2284 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
10:10:53.0781 2284 PCI - ok
10:10:53.0781 2284 PCIDump - ok
10:10:53.0812 2284 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
10:10:53.0812 2284 PCIIde - ok
10:10:53.0828 2284 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
10:10:53.0828 2284 Pcmcia - ok
10:10:53.0843 2284 PDCOMP - ok
10:10:53.0843 2284 PDFRAME - ok
10:10:53.0843 2284 PDRELI - ok
10:10:53.0843 2284 PDRFRAME - ok
10:10:53.0859 2284 perc2 - ok
10:10:53.0859 2284 perc2hib - ok
10:10:53.0875 2284 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
10:10:53.0890 2284 PlugPlay - ok
10:10:53.0921 2284 [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
10:10:53.0937 2284 Pml Driver HPZ12 - ok
10:10:53.0953 2284 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
10:10:53.0953 2284 PolicyAgent - ok
10:10:53.0984 2284 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:10:53.0984 2284 PptpMiniport - ok
10:10:53.0984 2284 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:10:53.0984 2284 ProtectedStorage - ok
10:10:54.0015 2284 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
10:10:54.0015 2284 PSched - ok
10:10:54.0015 2284 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:10:54.0031 2284 Ptilink - ok
10:10:54.0046 2284 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
10:10:54.0046 2284 PxHelp20 - ok
10:10:54.0046 2284 ql1080 - ok
10:10:54.0046 2284 Ql10wnt - ok
10:10:54.0062 2284 ql12160 - ok
10:10:54.0062 2284 ql1240 - ok
10:10:54.0062 2284 ql1280 - ok
10:10:54.0078 2284 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:10:54.0078 2284 RasAcd - ok
10:10:54.0109 2284 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
10:10:54.0125 2284 RasAuto - ok
10:10:54.0156 2284 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:10:54.0156 2284 Rasl2tp - ok
10:10:54.0187 2284 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
10:10:54.0203 2284 RasMan - ok
10:10:54.0218 2284 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:10:54.0218 2284 RasPppoe - ok
10:10:54.0218 2284 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
10:10:54.0234 2284 Raspti - ok
10:10:54.0250 2284 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:10:54.0250 2284 Rdbss - ok
10:10:54.0265 2284 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:10:54.0265 2284 RDPCDD - ok
10:10:54.0265 2284 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
10:10:54.0265 2284 rdpdr - ok
10:10:54.0312 2284 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
10:10:54.0312 2284 RDPWD - ok
10:10:54.0343 2284 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
10:10:54.0343 2284 RDSessMgr - ok
10:10:54.0359 2284 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
10:10:54.0375 2284 redbook - ok
10:10:54.0421 2284 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
10:10:54.0421 2284 RemoteAccess - ok
10:10:54.0437 2284 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
10:10:54.0437 2284 RemoteRegistry - ok
10:10:54.0468 2284 [ 8B5B8A11306190C6963D3473F052D3C8 ] Revoflt C:\WINDOWS\system32\DRIVERS\revoflt.sys
10:10:54.0468 2284 Revoflt - ok
10:10:54.0500 2284 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
10:10:54.0500 2284 RFCOMM - ok
10:10:54.0515 2284 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
10:10:54.0515 2284 RpcLocator - ok
10:10:54.0531 2284 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
10:10:54.0546 2284 RpcSs - ok
10:10:54.0562 2284 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
10:10:54.0578 2284 RSVP - ok
10:10:54.0593 2284 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
10:10:54.0593 2284 SamSs - ok
10:10:54.0625 2284 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
10:10:54.0625 2284 SCardSvr - ok
10:10:54.0671 2284 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
10:10:54.0671 2284 Schedule - ok
10:10:54.0718 2284 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:10:54.0718 2284 Secdrv - ok
10:10:54.0734 2284 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
10:10:54.0734 2284 seclogon - ok
10:10:54.0781 2284 [ B6A6B409FDA9D9EBD3AADB838D3D7173 ] SenFiltService C:\WINDOWS\system32\drivers\Senfilt.sys
10:10:54.0781 2284 SenFiltService - ok
10:10:54.0796 2284 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
10:10:54.0812 2284 SENS - ok
10:10:54.0828 2284 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
10:10:54.0828 2284 serenum - ok
10:10:54.0828 2284 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
10:10:54.0828 2284 Serial - ok
10:10:54.0843 2284 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
10:10:54.0859 2284 Sfloppy - ok
10:10:54.0906 2284 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
10:10:54.0906 2284 SharedAccess - ok
10:10:54.0921 2284 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:10:54.0921 2284 ShellHWDetection - ok
10:10:54.0937 2284 Simbad - ok
10:10:54.0953 2284 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
10:10:54.0953 2284 SLIP - ok
10:10:54.0953 2284 Sparrow - ok
10:10:54.0968 2284 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
10:10:54.0968 2284 splitter - ok
10:10:55.0000 2284 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
10:10:55.0015 2284 Spooler - ok
10:10:55.0031 2284 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
10:10:55.0031 2284 sr - ok
10:10:55.0062 2284 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
10:10:55.0062 2284 srservice - ok
10:10:55.0109 2284 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
10:10:55.0125 2284 Srv - ok
10:10:55.0156 2284 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
10:10:55.0171 2284 SSDPSRV - ok
10:10:55.0203 2284 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
10:10:55.0218 2284 stisvc - ok
10:10:55.0234 2284 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
10:10:55.0234 2284 streamip - ok
10:10:55.0250 2284 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
10:10:55.0250 2284 swenum - ok
10:10:55.0265 2284 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
10:10:55.0265 2284 swmidi - ok
10:10:55.0265 2284 SwPrv - ok
10:10:55.0281 2284 symc810 - ok
10:10:55.0281 2284 symc8xx - ok
10:10:55.0281 2284 sym_hi - ok
10:10:55.0281 2284 sym_u3 - ok
10:10:55.0312 2284 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
10:10:55.0312 2284 sysaudio - ok
10:10:55.0343 2284 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
10:10:55.0343 2284 SysmonLog - ok
10:10:55.0359 2284 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
10:10:55.0375 2284 TapiSrv - ok
10:10:55.0390 2284 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:10:55.0390 2284 Tcpip - ok
10:10:55.0421 2284 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
10:10:55.0421 2284 TDPIPE - ok
10:10:55.0437 2284 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
10:10:55.0453 2284 TDTCP - ok
10:10:55.0468 2284 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
10:10:55.0468 2284 TermDD - ok
10:10:55.0484 2284 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
10:10:55.0500 2284 TermService - ok
10:10:55.0515 2284 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
10:10:55.0515 2284 Themes - ok
10:10:55.0531 2284 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
10:10:55.0546 2284 TlntSvr - ok
10:10:55.0546 2284 TosIde - ok
10:10:55.0562 2284 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
10:10:55.0578 2284 TrkWks - ok
10:10:55.0625 2284 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
10:10:55.0625 2284 Udfs - ok
10:10:55.0640 2284 ultra - ok
10:10:55.0671 2284 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
10:10:55.0687 2284 Update - ok
10:10:55.0703 2284 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
10:10:55.0703 2284 upnphost - ok
10:10:55.0718 2284 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
10:10:55.0718 2284 UPS - ok
10:10:55.0750 2284 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
10:10:55.0750 2284 usbaudio - ok
10:10:55.0781 2284 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:10:55.0781 2284 usbccgp - ok
10:10:55.0796 2284 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:10:55.0796 2284 usbehci - ok
10:10:55.0828 2284 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:10:55.0828 2284 usbhub - ok
10:10:55.0859 2284 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:10:55.0859 2284 usbprint - ok
10:10:55.0890 2284 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
10:10:55.0906 2284 usbscan - ok
10:10:55.0921 2284 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:10:55.0921 2284 USBSTOR - ok
10:10:55.0953 2284 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:10:55.0953 2284 usbuhci - ok
10:10:55.0968 2284 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
10:10:55.0968 2284 usbvideo - ok
10:10:56.0000 2284 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
10:10:56.0000 2284 VgaSave - ok
10:10:56.0000 2284 ViaIde - ok
10:10:56.0015 2284 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
10:10:56.0015 2284 VolSnap - ok
10:10:56.0046 2284 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
10:10:56.0062 2284 VSS - ok
10:10:56.0093 2284 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
10:10:56.0109 2284 W32Time - ok
10:10:56.0140 2284 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:10:56.0140 2284 Wanarp - ok
10:10:56.0156 2284 WDICA - ok
10:10:56.0187 2284 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
10:10:56.0187 2284 wdmaud - ok
10:10:56.0203 2284 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
10:10:56.0218 2284 WebClient - ok
10:10:56.0296 2284 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
10:10:56.0296 2284 winmgmt - ok
10:10:56.0343 2284 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
10:10:56.0343 2284 WmdmPmSN - ok
10:10:56.0406 2284 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
10:10:56.0421 2284 Wmi - ok
10:10:56.0421 2284 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:10:56.0421 2284 WmiApSrv - ok
10:10:56.0500 2284 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
10:10:56.0531 2284 WMPNetworkSvc - ok
10:10:56.0562 2284 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
10:10:56.0562 2284 WpdUsb - ok
10:10:56.0687 2284 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:10:56.0703 2284 WPFFontCache_v0400 - ok
10:10:56.0750 2284 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
10:10:56.0750 2284 wscsvc - ok
10:10:56.0781 2284 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
10:10:56.0781 2284 WSTCODEC - ok
10:10:56.0796 2284 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
10:10:56.0812 2284 wuauserv - ok
10:10:56.0843 2284 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:10:56.0843 2284 WudfPf - ok
10:10:56.0875 2284 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:10:56.0875 2284 WudfRd - ok
10:10:56.0906 2284 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
10:10:56.0921 2284 WudfSvc - ok
10:10:56.0968 2284 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
10:10:56.0984 2284 WZCSVC - ok
10:10:57.0000 2284 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
10:10:57.0015 2284 xmlprov - ok
10:10:57.0015 2284 ================ Scan global ===============================
10:10:57.0046 2284 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
10:10:57.0078 2284 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
10:10:57.0093 2284 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
10:10:57.0125 2284 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
10:10:57.0140 2284 [Global] - ok
10:10:57.0140 2284 ================ Scan MBR ==================================
10:10:57.0156 2284 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
10:10:57.0375 2284 \Device\Harddisk0\DR0 - ok
10:10:57.0375 2284 ================ Scan VBR ==================================
10:10:57.0375 2284 [ 9B56291D6A117CC2642F3B9B406BACAE ] \Device\Harddisk0\DR0\Partition1
10:10:57.0375 2284 \Device\Harddisk0\DR0\Partition1 - ok
10:10:57.0406 2284 [ AE037733E03673A22E2F49C6A3962CEC ] \Device\Harddisk0\DR0\Partition2
10:10:57.0406 2284 \Device\Harddisk0\DR0\Partition2 - ok
10:10:57.0437 2284 [ E01B79049EB1293608BCA473DA8B4355 ] \Device\Harddisk0\DR0\Partition3
10:10:57.0437 2284 \Device\Harddisk0\DR0\Partition3 - ok
10:10:57.0437 2284 ============================================================
10:10:57.0437 2284 Scan finished
10:10:57.0437 2284 ============================================================
10:10:57.0437 1888 Detected object count: 0
10:10:57.0437 1888 Actual detected object count: 0
10:11:02.0562 1300 Deinitialize success

[memphisto]

Jak je na tom PC?

[Zabral68]

V pohodě. Diky za spolupráci.

[memphisto]

Dej nový HJT na dočištění