Prosím o kontrolu logu

M4RTY · Příspěvekod **M4RTY** » 31 srp 2013 18:22

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:44:32, on 31.8.2013
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\PROGRA~2\AIMP3\AIMP3.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R3 - URLSearchHook: (no name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - (no file)
O2 - BHO: dTPodcastBHO - {65134FDF-F8A5-4B3D-91D9-CDF273CFD578} - C:\Program Files (x86)\Common Files\doubleTwist\IEPodcastPlugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AdobeCEPServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - Startup: Dropbox.lnk = C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Virtual Disk Service Manager (MSR Service) - Unknown owner - C:\Program Files (x86)\Clarus\Samsung SecretZone\MSSvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9159 bytes

Reklama

Příspěvekod **memphisto** » 31 srp 2013 18:27

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

M4RTY · Příspěvekod **M4RTY** » 12 zář 2013 14:03

Omlouvám se za zpozdění. MbAM nic nenašel. Dávám log z Adw

# AdwCleaner v3.003 - Report created 12/09/2013 at 13:54:18
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Martin - MARTIN-PC
# Running from : C:\Users\Martin\Desktop\Secret\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Found C:\Program Files (x86)\Ask.com
Folder Found C:\ProgramData\apn
Folder Found C:\Users\Martin\AppData\LocalLow\Minibar

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\OCS
Key Found : HKCU\Software\PIP
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\OCS
Key Found : [x64] HKCU\Software\PIP
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\Software\PIP

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

-\\ Mozilla Firefox v23.0.1 (cs)

[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\87654321.default\prefs.js ]

[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\cnendanq.default-1364324737379\prefs.js ]

[ File : C:\Users\Ostatní\AppData\Roaming\Mozilla\Firefox\Profiles\2nbzmmti.default\prefs.js ]

-\\ Google Chrome v29.0.1547.66

[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]

[ File : C:\Users\Ostatní\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [2365 octets] - [12/09/2013 13:54:18]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2425 octets] ##########

Příspěvekod **Žbeky** » 12 zář 2013 14:46

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“)
Klikni na „ Delete“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt), jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programem. Skenování může trvat dlouho, podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt), který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a WIN7 spusť program jako správce, u XP poklepáním.
- Počkej až skončí Prescan.
- Zkontroluj, zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
- Potom klikni na „Prohledat“.
- Program skenuje PC. Po proskenování klikni na „Zpráva“ - celý obsah logu sem zkopíruj.
Pokud je program blokován, zkus ho spustit několikrát. Pokud dále program nepůjde spustit, přejmenuj ho na winlogon.exe.

M4RTY · Příspěvekod **M4RTY** » 06 říj 2013 19:55

Konečně jsem se k tomu dostal, vím,že je to dlouho. AdwCleaner už jsem předtím udělal, hned smazal vše co to našlo. Ale teď jsem ho udělal znovu,smazal,tak dávám log
# AdwCleaner v3.006 - Report created 06/10/2013 at 19:38:14
# Updated 01/10/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Martin - MARTIN-PC
# Running from : C:\Users\Martin\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Martin\AppData\Local\PackageAware
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\87654321.default\user.js
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\cnendanq.default-1364324737379\user.js

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686

-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\87654321.default\prefs.js ]

[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\cnendanq.default-1364324737379\prefs.js ]

[ File : C:\Users\Ostatní\AppData\Roaming\Mozilla\Firefox\Profiles\2nbzmmti.default\prefs.js ]

-\\ Google Chrome v30.0.1599.69

[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]

[ File : C:\Users\Ostatní\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [2525 octets] - [12/09/2013 13:54:18]
AdwCleaner[R1].txt - [2556 octets] - [06/10/2013 19:28:22]
AdwCleaner[S0].txt - [2439 octets] - [12/09/2013 14:04:30]
AdwCleaner[S1].txt - [2436 octets] - [06/10/2013 19:38:14]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2496 octets] ##########

JRT
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.4 (10.06.2013:1)
OS: Windows 7 Professional x64
Ran by Martin on ne 06.10.2013 at 19:42:30,65
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec"

~~~ FireFox

Emptied folder: C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\87654321.default\minidumps [202 files]

~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Policies\Google\Chrome\extensioninstallforcelist [Blacklisted Policy]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 06.10.2013 at 19:50:13,98
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

M4RTY · Příspěvekod **M4RTY** » 06 říj 2013 19:57

RogueKiller V8.7.1 _x64_ [Oct 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Kontrola -- Datum : 10/06/2013 19:56:57
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com 3dns.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.adobe.com activate.wip.adobe.com activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com adobe-dns-4.adobe.com adobe-dns.adobe.com adobeereg.com crl.verisign.net ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com ood.opsource.net practivate.adobe practivate.adobe.com
127.0.0.1 practivate.adobe.ipp practivate.adobe.newoa practivate.adobe.ntp wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com wwis-dubc1-vip60.adobe.com www.adobeereg.com www.wip.adobe.com www.wip1.adobe.com www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standardní diskové jednotky) - SAMSUNG HD322HJ ATA Device +++++
--- User ---
[MBR] 97d717d3a190160b69d1a9db93216a78
[BSP] d56cdae376ad3b5e45cad65e19b4fa6c : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 16065 | Size: 133673 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 273779730 | Size: 171561 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) (Standardní diskové jednotky) - WDC WD10EZRX-00A8LB0 ATA Device +++++
--- User ---
[MBR] 8924d8bfd3aefaac7d416880d3b722a6
[BSP] 2463c0e456c1645d255f2ed71f785e96 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 743122 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) (Standardní diskové jednotky) - Samsung G2 Portable +++++
--- User ---
[MBR] 582ddaca215244a278608744f1349d22
[BSP] 3101c707767b7ffde5a86647faa448db : Empty MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 64 | Size: 305242 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[0]_S_10062013_195657.txt >>

Příspěvekod **memphisto** » 06 říj 2013 22:29

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

M4RTY · Příspěvekod **M4RTY** » 06 říj 2013 22:54

RogueKiller V8.7.1 _x64_ [Oct 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Odebrat -- Datum : 10/06/2013 22:54:08
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> NAHRAZENO (1)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com 3dns.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.adobe.com activate.wip.adobe.com activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com adobe-dns-4.adobe.com adobe-dns.adobe.com adobeereg.com crl.verisign.net ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com ood.opsource.net practivate.adobe practivate.adobe.com
127.0.0.1 practivate.adobe.ipp practivate.adobe.newoa practivate.adobe.ntp wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com wwis-dubc1-vip60.adobe.com www.adobeereg.com www.wip.adobe.com www.wip1.adobe.com www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standardní diskové jednotky) - SAMSUNG HD322HJ ATA Device +++++
--- User ---
[MBR] 97d717d3a190160b69d1a9db93216a78
[BSP] d56cdae376ad3b5e45cad65e19b4fa6c : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 16065 | Size: 133673 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 273779730 | Size: 171561 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) (Standardní diskové jednotky) - WDC WD10EZRX-00A8LB0 ATA Device +++++
--- User ---
[MBR] 8924d8bfd3aefaac7d416880d3b722a6
[BSP] 2463c0e456c1645d255f2ed71f785e96 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 743122 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) (Standardní diskové jednotky) - Samsung G2 Portable +++++
--- User ---
[MBR] 582ddaca215244a278608744f1349d22
[BSP] 3101c707767b7ffde5a86647faa448db : Empty MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 64 | Size: 305242 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[0]_D_10062013_225408.txt >>
RKreport[0]_S_10062013_195657.txt

TDSSKiller zítra.

Příspěvekod **memphisto** » 06 říj 2013 22:55

Ok, počkáme...

M4RTY · Příspěvekod **M4RTY** » 07 říj 2013 22:09

21:59:04.0116 3924 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:59:04.0381 3924 ============================================================
21:59:04.0381 3924 Current date / time: 2013/10/07 21:59:04.0381
21:59:04.0381 3924 SystemInfo:
21:59:04.0381 3924
21:59:04.0381 3924 OS Version: 6.1.7601 ServicePack: 1.0
21:59:04.0381 3924 Product type: Workstation
21:59:04.0381 3924 ComputerName: MARTIN-PC
21:59:04.0381 3924 UserName: Martin
21:59:04.0381 3924 Windows directory: C:\Windows
21:59:04.0381 3924 System windows directory: C:\Windows
21:59:04.0381 3924 Running under WOW64
21:59:04.0381 3924 Processor architecture: Intel x64
21:59:04.0381 3924 Number of processors: 3
21:59:04.0381 3924 Page size: 0x1000
21:59:04.0381 3924 Boot type: Normal boot
21:59:04.0381 3924 ============================================================
21:59:05.0255 3924 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:59:05.0754 3924 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:59:05.0770 3924 Drive \Device\Harddisk2\DR2 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:59:07.0657 3924 ============================================================
21:59:07.0657 3924 \Device\Harddisk0\DR0:
21:59:07.0657 3924 MBR partitions:
21:59:07.0673 3924 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0xF0F4D12
21:59:07.0689 3924 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xF0F9000, BlocksNum 0x141F800
21:59:07.0689 3924 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x10518C12, BlocksNum 0x14F14AAF
21:59:07.0689 3924 \Device\Harddisk1\DR1:
21:59:07.0689 3924 MBR partitions:
21:59:07.0689 3924 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x5AB69000
21:59:07.0689 3924 \Device\Harddisk2\DR2:
21:59:07.0689 3924 MBR partitions:
21:59:07.0689 3924 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x2542D681
21:59:07.0689 3924 ============================================================
21:59:07.0735 3924 C: <-> \Device\Harddisk0\DR0\Partition1
21:59:07.0767 3924 D: <-> \Device\Harddisk0\DR0\Partition2
21:59:07.0782 3924 G: <-> \Device\Harddisk2\DR2\Partition1
21:59:07.0829 3924 H: <-> \Device\Harddisk0\DR0\Partition3
21:59:07.0876 3924 J: <-> \Device\Harddisk1\DR1\Partition1
21:59:07.0876 3924 ============================================================
21:59:07.0876 3924 Initialize success
21:59:07.0876 3924 ============================================================
21:59:32.0898 4648 ============================================================
21:59:32.0898 4648 Scan started
21:59:32.0898 4648 Mode: Manual;
21:59:32.0898 4648 ============================================================
21:59:34.0645 4648 ================ Scan system memory ========================
21:59:34.0645 4648 System memory - ok
21:59:34.0645 4648 ================ Scan services =============================
21:59:34.0786 4648 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:59:34.0786 4648 1394ohci - ok
21:59:34.0817 4648 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:59:34.0817 4648 ACPI - ok
21:59:34.0817 4648 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:59:34.0833 4648 AcpiPmi - ok
21:59:34.0895 4648 [ 303C174A7303A7702A68653152FC65A0 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
21:59:34.0895 4648 Adobe LM Service - ok
21:59:34.0957 4648 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:59:34.0957 4648 AdobeARMservice - ok
21:59:35.0051 4648 [ 24A0876D07EF356DCBC1D7A7929354AB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:59:35.0051 4648 AdobeFlashPlayerUpdateSvc - ok
21:59:35.0082 4648 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:59:35.0082 4648 adp94xx - ok
21:59:35.0113 4648 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:59:35.0113 4648 adpahci - ok
21:59:35.0145 4648 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:59:35.0145 4648 adpu320 - ok
21:59:35.0176 4648 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:59:35.0176 4648 AeLookupSvc - ok
21:59:35.0223 4648 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:59:35.0223 4648 AFD - ok
21:59:35.0238 4648 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:59:35.0238 4648 agp440 - ok
21:59:35.0254 4648 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:59:35.0269 4648 ALG - ok
21:59:35.0301 4648 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:59:35.0301 4648 aliide - ok
21:59:35.0332 4648 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:59:35.0332 4648 AMD External Events Utility - ok
21:59:35.0410 4648 AMD FUEL Service - ok
21:59:35.0441 4648 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:59:35.0441 4648 amdide - ok
21:59:35.0472 4648 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
21:59:35.0472 4648 amdiox64 - ok
21:59:35.0488 4648 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:59:35.0488 4648 AmdK8 - ok
21:59:35.0659 4648 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:59:35.0769 4648 amdkmdag - ok
21:59:35.0800 4648 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:59:35.0800 4648 amdkmdap - ok
21:59:35.0831 4648 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:59:35.0831 4648 AmdPPM - ok
21:59:35.0847 4648 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:59:35.0847 4648 amdsata - ok
21:59:35.0893 4648 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
21:59:35.0893 4648 amdsbs - ok
21:59:35.0909 4648 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:59:35.0925 4648 amdxata - ok
21:59:35.0956 4648 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
21:59:35.0956 4648 AODDriver4.2 - ok
21:59:35.0987 4648 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:59:35.0987 4648 AppID - ok
21:59:36.0003 4648 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:59:36.0003 4648 AppIDSvc - ok
21:59:36.0034 4648 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
21:59:36.0034 4648 Appinfo - ok
21:59:36.0096 4648 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:59:36.0096 4648 Apple Mobile Device - ok
21:59:36.0143 4648 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
21:59:36.0143 4648 AppMgmt - ok
21:59:36.0159 4648 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
21:59:36.0159 4648 arc - ok
21:59:36.0159 4648 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:59:36.0174 4648 arcsas - ok
21:59:36.0205 4648 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
21:59:36.0205 4648 aswFsBlk - ok
21:59:36.0221 4648 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
21:59:36.0221 4648 aswMonFlt - ok
21:59:36.0237 4648 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
21:59:36.0237 4648 aswRdr - ok
21:59:36.0252 4648 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
21:59:36.0268 4648 aswSnx - ok
21:59:36.0283 4648 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
21:59:36.0283 4648 aswSP - ok
21:59:36.0299 4648 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
21:59:36.0299 4648 aswTdi - ok
21:59:36.0330 4648 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:59:36.0330 4648 AsyncMac - ok
21:59:36.0361 4648 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:59:36.0361 4648 atapi - ok
21:59:36.0408 4648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:59:36.0408 4648 AudioEndpointBuilder - ok
21:59:36.0424 4648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:59:36.0424 4648 AudioSrv - ok
21:59:36.0455 4648 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:59:36.0455 4648 avast! Antivirus - ok
21:59:36.0486 4648 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:59:36.0486 4648 AxInstSV - ok
21:59:36.0517 4648 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
21:59:36.0533 4648 b06bdrv - ok
21:59:36.0549 4648 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:59:36.0564 4648 b57nd60a - ok
21:59:36.0595 4648 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:59:36.0595 4648 BDESVC - ok
21:59:36.0611 4648 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:59:36.0611 4648 Beep - ok
21:59:36.0642 4648 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:59:36.0642 4648 BFE - ok
21:59:36.0673 4648 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
21:59:36.0720 4648 BITS - ok
21:59:36.0751 4648 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:59:36.0751 4648 blbdrive - ok
21:59:36.0814 4648 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:59:36.0814 4648 Bonjour Service - ok
21:59:36.0845 4648 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:59:36.0845 4648 bowser - ok
21:59:36.0861 4648 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
21:59:36.0861 4648 BrFiltLo - ok
21:59:36.0876 4648 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
21:59:36.0876 4648 BrFiltUp - ok
21:59:36.0923 4648 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:59:36.0923 4648 BridgeMP - ok
21:59:36.0939 4648 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:59:36.0939 4648 Browser - ok
21:59:36.0970 4648 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:59:36.0970 4648 Brserid - ok
21:59:36.0985 4648 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:59:36.0985 4648 BrSerWdm - ok
21:59:37.0001 4648 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:59:37.0001 4648 BrUsbMdm - ok
21:59:37.0017 4648 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:59:37.0017 4648 BrUsbSer - ok
21:59:37.0048 4648 [ 832B121E4532919CC49F2438F1DCAA21 ] BthAvrcp C:\Windows\system32\DRIVERS\BthAvrcp.sys
21:59:37.0048 4648 BthAvrcp - ok
21:59:37.0079 4648 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
21:59:37.0079 4648 BthEnum - ok
21:59:37.0095 4648 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:59:37.0095 4648 BTHMODEM - ok
21:59:37.0110 4648 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:59:37.0110 4648 BthPan - ok
21:59:37.0126 4648 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
21:59:37.0141 4648 BTHPORT - ok
21:59:37.0157 4648 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:59:37.0157 4648 bthserv - ok
21:59:37.0173 4648 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
21:59:37.0173 4648 BTHUSB - ok
21:59:37.0188 4648 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:59:37.0188 4648 cdfs - ok
21:59:37.0219 4648 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:59:37.0219 4648 cdrom - ok
21:59:37.0235 4648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:59:37.0251 4648 CertPropSvc - ok
21:59:37.0266 4648 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
21:59:37.0266 4648 circlass - ok
21:59:37.0282 4648 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:59:37.0297 4648 CLFS - ok
21:59:37.0344 4648 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:59:37.0344 4648 clr_optimization_v2.0.50727_32 - ok
21:59:37.0391 4648 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:59:37.0391 4648 clr_optimization_v2.0.50727_64 - ok
21:59:37.0438 4648 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:59:37.0453 4648 clr_optimization_v4.0.30319_32 - ok
21:59:37.0469 4648 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:59:37.0485 4648 clr_optimization_v4.0.30319_64 - ok
21:59:37.0500 4648 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
21:59:37.0500 4648 CmBatt - ok
21:59:37.0531 4648 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:59:37.0531 4648 cmdide - ok
21:59:37.0563 4648 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:59:37.0578 4648 CNG - ok
21:59:37.0594 4648 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
21:59:37.0594 4648 Compbatt - ok
21:59:37.0609 4648 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:59:37.0625 4648 CompositeBus - ok
21:59:37.0625 4648 COMSysApp - ok
21:59:37.0672 4648 cpuz135 - ok
21:59:37.0687 4648 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:59:37.0687 4648 crcdisk - ok
21:59:37.0734 4648 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:59:37.0734 4648 CryptSvc - ok
21:59:37.0781 4648 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
21:59:37.0781 4648 CSC - ok
21:59:37.0797 4648 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
21:59:37.0812 4648 CscService - ok
21:59:37.0843 4648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:59:37.0859 4648 DcomLaunch - ok
21:59:37.0875 4648 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:59:37.0890 4648 defragsvc - ok
21:59:37.0890 4648 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:59:37.0890 4648 DfsC - ok
21:59:37.0906 4648 dgderdrv - ok
21:59:37.0937 4648 [ E428DFFA96FAD07D8CA3C9082563A225 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
21:59:37.0937 4648 dg_ssudbus - ok
21:59:37.0984 4648 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:59:37.0984 4648 Dhcp - ok
21:59:37.0999 4648 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:59:37.0999 4648 discache - ok
21:59:38.0015 4648 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
21:59:38.0015 4648 Disk - ok
21:59:38.0031 4648 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
21:59:38.0031 4648 dmvsc - ok
21:59:38.0062 4648 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:59:38.0062 4648 Dnscache - ok
21:59:38.0093 4648 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:59:38.0093 4648 dot3svc - ok
21:59:38.0109 4648 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:59:38.0109 4648 DPS - ok
21:59:38.0140 4648 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:59:38.0140 4648 drmkaud - ok
21:59:38.0171 4648 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:59:38.0171 4648 dtsoftbus01 - ok
21:59:38.0218 4648 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:59:38.0218 4648 DXGKrnl - ok
21:59:38.0249 4648 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:59:38.0249 4648 EapHost - ok
21:59:38.0296 4648 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
21:59:38.0327 4648 ebdrv - ok
21:59:38.0358 4648 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:59:38.0358 4648 EFS - ok
21:59:38.0405 4648 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:59:38.0405 4648 ehRecvr - ok
21:59:38.0421 4648 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:59:38.0421 4648 ehSched - ok
21:59:38.0436 4648 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:59:38.0452 4648 elxstor - ok
21:59:38.0452 4648 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:59:38.0452 4648 ErrDev - ok
21:59:38.0483 4648 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:59:38.0483 4648 EventSystem - ok
21:59:38.0499 4648 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:59:38.0499 4648 exfat - ok
21:59:38.0514 4648 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:59:38.0530 4648 fastfat - ok
21:59:38.0561 4648 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:59:38.0577 4648 Fax - ok
21:59:38.0592 4648 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
21:59:38.0592 4648 fdc - ok
21:59:38.0608 4648 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:59:38.0608 4648 fdPHost - ok
21:59:38.0623 4648 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:59:38.0623 4648 FDResPub - ok
21:59:38.0655 4648 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:59:38.0655 4648 FileInfo - ok
21:59:38.0655 4648 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:59:38.0670 4648 Filetrace - ok
21:59:38.0686 4648 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
21:59:38.0686 4648 flpydisk - ok
21:59:38.0701 4648 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:59:38.0701 4648 FltMgr - ok
21:59:38.0748 4648 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
21:59:38.0764 4648 FontCache - ok
21:59:38.0811 4648 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:59:38.0811 4648 FontCache3.0.0.0 - ok
21:59:38.0826 4648 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:59:38.0826 4648 FsDepends - ok
21:59:38.0842 4648 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:59:38.0842 4648 Fs_Rec - ok
21:59:38.0873 4648 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:59:38.0873 4648 fvevol - ok
21:59:38.0889 4648 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:59:38.0904 4648 gagp30kx - ok
21:59:38.0920 4648 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:59:38.0920 4648 GEARAspiWDM - ok
21:59:38.0967 4648 [ 16C2A6BCDDA8952C2035DEC861492A19 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
21:59:38.0967 4648 ggflt - ok
21:59:38.0998 4648 [ 6B503DF845EABF3457E49FBBDA26C10E ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
21:59:38.0998 4648 ggsemc - ok
21:59:39.0045 4648 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:59:39.0045 4648 gpsvc - ok
21:59:39.0107 4648 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:59:39.0107 4648 gupdate - ok
21:59:39.0123 4648 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:59:39.0123 4648 gupdatem - ok
21:59:39.0138 4648 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:59:39.0138 4648 hcw85cir - ok
21:59:39.0169 4648 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:59:39.0185 4648 HdAudAddService - ok
21:59:39.0201 4648 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:59:39.0201 4648 HDAudBus - ok
21:59:39.0216 4648 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
21:59:39.0216 4648 HidBatt - ok
21:59:39.0232 4648 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:59:39.0247 4648 HidBth - ok
21:59:39.0263 4648 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
21:59:39.0263 4648 HidIr - ok
21:59:39.0294 4648 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
21:59:39.0294 4648 hidserv - ok
21:59:39.0325 4648 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:59:39.0325 4648 HidUsb - ok
21:59:39.0341 4648 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:59:39.0357 4648 hkmsvc - ok
21:59:39.0372 4648 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:59:39.0372 4648 HomeGroupListener - ok
21:59:39.0403 4648 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:59:39.0403 4648 HomeGroupProvider - ok
21:59:39.0419 4648 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:59:39.0419 4648 HpSAMD - ok
21:59:39.0435 4648 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
21:59:39.0435 4648 htcnprot - ok
21:59:39.0450 4648 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:59:39.0466 4648 HTTP - ok
21:59:39.0466 4648 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:59:39.0481 4648 hwpolicy - ok
21:59:39.0497 4648 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:59:39.0497 4648 i8042prt - ok
21:59:39.0528 4648 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:59:39.0528 4648 iaStorV - ok
21:59:39.0575 4648 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:59:39.0575 4648 idsvc - ok
21:59:39.0591 4648 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:59:39.0591 4648 iirsp - ok
21:59:39.0622 4648 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:59:39.0637 4648 IKEEXT - ok
21:59:39.0700 4648 [ A5F7CEF8A939EBE270462EDEFD629F20 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:59:39.0731 4648 IntcAzAudAddService - ok
21:59:39.0762 4648 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:59:39.0762 4648 intelide - ok
21:59:39.0793 4648 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
21:59:39.0793 4648 intelppm - ok
21:59:39.0809 4648 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:59:39.0809 4648 IPBusEnum - ok
21:59:39.0825 4648 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:59:39.0825 4648 IpFilterDriver - ok
21:59:39.0856 4648 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:59:39.0856 4648 iphlpsvc - ok
21:59:39.0871 4648 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:59:39.0871 4648 IPMIDRV - ok
21:59:39.0903 4648 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:59:39.0903 4648 IPNAT - ok
21:59:39.0981 4648 [ 71F993192EB04B2C4C80F2DEE9119229 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:59:39.0996 4648 iPod Service - ok
21:59:40.0043 4648 [ 02DEF37AB75E0032C50724646F708DE8 ] iPodDrv C:\Windows\system32\drivers\iPodDrv.sys
21:59:40.0043 4648 iPodDrv - ok
21:59:40.0059 4648 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:59:40.0059 4648 IRENUM - ok
21:59:40.0074 4648 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:59:40.0074 4648 isapnp - ok
21:59:40.0105 4648 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:59:40.0105 4648 iScsiPrt - ok
21:59:40.0137 4648 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:59:40.0137 4648 kbdclass - ok
21:59:40.0152 4648 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:59:40.0152 4648 kbdhid - ok
21:59:40.0168 4648 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:59:40.0168 4648 KeyIso - ok
21:59:40.0199 4648 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:59:40.0199 4648 KSecDD - ok
21:59:40.0215 4648 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:59:40.0215 4648 KSecPkg - ok
21:59:40.0230 4648 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:59:40.0230 4648 ksthunk - ok
21:59:40.0246 4648 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:59:40.0261 4648 KtmRm - ok
21:59:40.0293 4648 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:59:40.0293 4648 LanmanServer - ok
21:59:40.0324 4648 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:59:40.0324 4648 LanmanWorkstation - ok
21:59:40.0339 4648 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:59:40.0339 4648 lltdio - ok
21:59:40.0371 4648 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:59:40.0371 4648 lltdsvc - ok
21:59:40.0402 4648 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:59:40.0402 4648 lmhosts - ok
21:59:40.0433 4648 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:59:40.0433 4648 LSI_FC - ok
21:59:40.0449 4648 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:59:40.0449 4648 LSI_SAS - ok
21:59:40.0464 4648 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
21:59:40.0464 4648 LSI_SAS2 - ok
21:59:40.0480 4648 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:59:40.0480 4648 LSI_SCSI - ok
21:59:40.0495 4648 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:59:40.0495 4648 luafv - ok
21:59:40.0527 4648 [ DE585D1D266805E5EEDAE911FDD16F38 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
21:59:40.0527 4648 ManyCam - ok
21:59:40.0573 4648 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:59:40.0573 4648 MBAMProtector - ok
21:59:40.0636 4648 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:59:40.0651 4648 MBAMScheduler - ok
21:59:40.0683 4648 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:59:40.0683 4648 MBAMService - ok
21:59:40.0714 4648 [ 2E7FFDEF8BAFD04CBB517507B821E878 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
21:59:40.0714 4648 mcaudrv_simple - ok
21:59:40.0729 4648 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:59:40.0729 4648 Mcx2Svc - ok
21:59:40.0745 4648 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
21:59:40.0745 4648 megasas - ok
21:59:40.0761 4648 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
21:59:40.0776 4648 MegaSR - ok
21:59:40.0854 4648 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
21:59:40.0854 4648 Microsoft Office Groove Audit Service - ok
21:59:40.0870 4648 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:59:40.0870 4648 MMCSS - ok
21:59:40.0885 4648 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:59:40.0885 4648 Modem - ok
21:59:40.0901 4648 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:59:40.0901 4648 monitor - ok
21:59:40.0917 4648 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:59:40.0917 4648 mouclass - ok
21:59:40.0948 4648 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:59:40.0948 4648 mouhid - ok
21:59:40.0948 4648 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:59:40.0963 4648 mountmgr - ok
21:59:40.0995 4648 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:59:40.0995 4648 MozillaMaintenance - ok
21:59:41.0010 4648 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:59:41.0010 4648 mpio - ok
21:59:41.0026 4648 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:59:41.0026 4648 mpsdrv - ok
21:59:41.0057 4648 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:59:41.0057 4648 MpsSvc - ok
21:59:41.0073 4648 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:59:41.0073 4648 MRxDAV - ok
21:59:41.0104 4648 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:59:41.0104 4648 mrxsmb - ok
21:59:41.0104 4648 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:59:41.0119 4648 mrxsmb10 - ok
21:59:41.0135 4648 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:59:41.0135 4648 mrxsmb20 - ok
21:59:41.0182 4648 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:59:41.0182 4648 msahci - ok
21:59:41.0197 4648 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:59:41.0197 4648 msdsm - ok
21:59:41.0229 4648 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:59:41.0229 4648 MSDTC - ok
21:59:41.0244 4648 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:59:41.0244 4648 Msfs - ok
21:59:41.0260 4648 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:59:41.0260 4648 mshidkmdf - ok
21:59:41.0275 4648 MSICDSetup - ok
21:59:41.0291 4648 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:59:41.0291 4648 msisadrv - ok
21:59:41.0307 4648 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:59:41.0307 4648 MSiSCSI - ok
21:59:41.0322 4648 msiserver - ok
21:59:41.0338 4648 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:59:41.0338 4648 MSKSSRV - ok
21:59:41.0353 4648 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:59:41.0353 4648 MSPCLOCK - ok
21:59:41.0353 4648 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:59:41.0353 4648 MSPQM - ok
21:59:41.0416 4648 [ 9DA8FD98E368730E38589AA1952AC37F ] MSR Service C:\Program Files (x86)\Clarus\Samsung SecretZone\MSSvc.exe
21:59:41.0416 4648 MSR Service - ok
21:59:41.0431 4648 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:59:41.0431 4648 MsRPC - ok
21:59:41.0447 4648 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:59:41.0447 4648 mssmbios - ok
21:59:41.0463 4648 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:59:41.0478 4648 MSTEE - ok
21:59:41.0478 4648 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
21:59:41.0478 4648 MTConfig - ok
21:59:41.0494 4648 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:59:41.0494 4648 Mup - ok
21:59:41.0525 4648 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:59:41.0525 4648 napagent - ok
21:59:41.0556 4648 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:59:41.0556 4648 NativeWifiP - ok
21:59:41.0603 4648 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:59:41.0603 4648 NDIS - ok
21:59:41.0619 4648 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:59:41.0619 4648 NdisCap - ok
21:59:41.0650 4648 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:59:41.0650 4648 NdisTapi - ok
21:59:41.0665 4648 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:59:41.0665 4648 Ndisuio - ok
21:59:41.0681 4648 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:59:41.0697 4648 NdisWan - ok
21:59:41.0697 4648 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:59:41.0697 4648 NDProxy - ok
21:59:41.0712 4648 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:59:41.0728 4648 NetBIOS - ok
21:59:41.0728 4648 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:59:41.0743 4648 NetBT - ok
21:59:41.0759 4648 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:59:41.0759 4648 Netlogon - ok
21:59:41.0790 4648 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:59:41.0790 4648 Netman - ok
21:59:41.0790 4648 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:59:41.0806 4648 netprofm - ok
21:59:41.0821 4648 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:59:41.0821 4648 NetTcpPortSharing - ok
21:59:41.0837 4648 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:59:41.0837 4648 nfrd960 - ok
21:59:41.0868 4648 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:59:41.0868 4648 NlaSvc - ok
21:59:41.0884 4648 NLNdisMP - ok
21:59:41.0899 4648 NLNdisPT - ok
21:59:41.0915 4648 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:59:41.0915 4648 Npfs - ok
21:59:41.0915 4648 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:59:41.0915 4648 nsi - ok
21:59:41.0931 4648 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:59:41.0931 4648 nsiproxy - ok
21:59:41.0977 4648 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:59:41.0993 4648 Ntfs - ok
21:59:42.0009 4648 NTIOLib_1_0_C - ok
21:59:42.0009 4648 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:59:42.0009 4648 Null - ok
21:59:42.0055 4648 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:59:42.0055 4648 nvraid - ok
21:59:42.0071 4648 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:59:42.0071 4648 nvstor - ok
21:59:42.0087 4648 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:59:42.0102 4648 nv_agp - ok
21:59:42.0149 4648 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:59:42.0165 4648 odserv - ok
21:59:42.0165 4648 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:59:42.0180 4648 ohci1394 - ok
21:59:42.0196 4648 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:59:42.0196 4648 ose - ok
21:59:42.0211 4648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:59:42.0227 4648 p2pimsvc - ok
21:59:42.0243 4648 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:59:42.0243 4648 p2psvc - ok
21:59:42.0274 4648 [ 0950875BC5F7348B263B2A3FC56CBA34 ] PAC7302 C:\Windows\system32\DRIVERS\PAC7302.SYS
21:59:42.0289 4648 PAC7302 - ok
21:59:42.0305 4648 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
21:59:42.0305 4648 Parport - ok
21:59:42.0336 4648 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:59:42.0336 4648 partmgr - ok
21:59:42.0399 4648 [ 3CAE2BBC86FCF7F94C9696994AF30386 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
21:59:42.0399 4648 PassThru Service - ok
21:59:42.0414 4648 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:59:42.0430 4648 PcaSvc - ok
21:59:42.0430 4648 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:59:42.0430 4648 pci - ok
21:59:42.0477 4648 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:59:42.0477 4648 pciide - ok
21:59:42.0492 4648 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:59:42.0492 4648 pcmcia - ok
21:59:42.0508 4648 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:59:42.0508 4648 pcw - ok
21:59:42.0523 4648 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:59:42.0539 4648 PEAUTH - ok
21:59:42.0586 4648 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:59:42.0601 4648 PeerDistSvc - ok
21:59:42.0664 4648 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:59:42.0664 4648 PerfHost - ok
21:59:42.0711 4648 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:59:42.0726 4648 pla - ok
21:59:42.0757 4648 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:59:42.0757 4648 PlugPlay - ok
21:59:42.0773 4648 PnkBstrA - ok
21:59:42.0789 4648 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:59:42.0789 4648 PNRPAutoReg - ok
21:59:42.0804 4648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:59:42.0820 4648 PNRPsvc - ok
21:59:42.0851 4648 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:59:42.0851 4648 PolicyAgent - ok
21:59:42.0898 4648 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:59:42.0898 4648 Power - ok
21:59:42.0929 4648 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:59:42.0929 4648 PptpMiniport - ok
21:59:42.0945 4648 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
21:59:42.0945 4648 Processor - ok
21:59:42.0960 4648 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:59:42.0976 4648 ProfSvc - ok
21:59:42.0976 4648 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:59:42.0976 4648 ProtectedStorage - ok
21:59:43.0007 4648 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:59:43.0007 4648 Psched - ok
21:59:43.0054 4648 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:59:43.0069 4648 ql2300 - ok
21:59:43.0085 4648 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:59:43.0085 4648 ql40xx - ok
21:59:43.0116 4648 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:59:43.0116 4648 QWAVE - ok
21:59:43.0132 4648 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:59:43.0132 4648 QWAVEdrv - ok
21:59:43.0210 4648 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
21:59:43.0210 4648 RapiMgr - ok
21:59:43.0225 4648 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:59:43.0225 4648 RasAcd - ok
21:59:43.0241 4648 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:59:43.0241 4648 RasAgileVpn - ok
21:59:43.0257 4648 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:59:43.0257 4648 RasAuto - ok
21:59:43.0272 4648 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:59:43.0272 4648 Rasl2tp - ok
21:59:43.0288 4648 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:59:43.0288 4648 RasMan - ok
21:59:43.0303 4648 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:59:43.0303 4648 RasPppoe - ok
21:59:43.0319 4648 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:59:43.0319 4648 RasSstp - ok
21:59:43.0335 4648 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:59:43.0335 4648 rdbss - ok
21:59:43.0350 4648 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:59:43.0350 4648 rdpbus - ok
21:59:43.0366 4648 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:59:43.0366 4648 RDPCDD - ok
21:59:43.0397 4648 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:59:43.0397 4648 RDPDR - ok
21:59:43.0413 4648 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:59:43.0413 4648 RDPENCDD - ok
21:59:43.0428 4648 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:59:43.0428 4648 RDPREFMP - ok
21:59:43.0444 4648 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:59:43.0444 4648 RDPWD - ok
21:59:43.0475 4648 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:59:43.0475 4648 rdyboost - ok
21:59:43.0491 4648 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:59:43.0506 4648 RemoteAccess - ok
21:59:43.0522 4648 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:59:43.0522 4648 RemoteRegistry - ok
21:59:43.0553 4648 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:59:43.0553 4648 RFCOMM - ok
21:59:43.0600 4648 [ 0B169FE016039571ECC6DB70073F8979 ] RichVideo64 C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
21:59:43.0615 4648 RichVideo64 - ok

M4RTY · Příspěvekod **M4RTY** » 07 říj 2013 22:09

21:59:43.0631 4648 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:59:43.0631 4648 RpcEptMapper - ok
21:59:43.0647 4648 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:59:43.0647 4648 RpcLocator - ok
21:59:43.0678 4648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:59:43.0678 4648 RpcSs - ok
21:59:43.0693 4648 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:59:43.0693 4648 rspndr - ok
21:59:43.0725 4648 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:59:43.0725 4648 RTL8167 - ok
21:59:43.0756 4648 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
21:59:43.0756 4648 s3cap - ok
21:59:43.0756 4648 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:59:43.0756 4648 SamSs - ok
21:59:43.0771 4648 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:59:43.0771 4648 sbp2port - ok
21:59:43.0803 4648 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:59:43.0803 4648 SCardSvr - ok
21:59:43.0818 4648 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:59:43.0818 4648 scfilter - ok
21:59:43.0849 4648 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:59:43.0865 4648 Schedule - ok
21:59:43.0881 4648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:59:43.0881 4648 SCPolicySvc - ok
21:59:43.0896 4648 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:59:43.0912 4648 SDRSVC - ok
21:59:43.0927 4648 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:59:43.0927 4648 secdrv - ok
21:59:43.0943 4648 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:59:43.0943 4648 seclogon - ok
21:59:43.0959 4648 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
21:59:43.0959 4648 SENS - ok
21:59:43.0974 4648 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:59:43.0974 4648 SensrSvc - ok
21:59:43.0990 4648 [ 052D4299E72FFFCCD9A168ADCDF5C450 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys
21:59:44.0005 4648 Ser2pl - ok
21:59:44.0005 4648 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:59:44.0005 4648 Serenum - ok
21:59:44.0021 4648 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:59:44.0037 4648 Serial - ok
21:59:44.0052 4648 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:59:44.0052 4648 sermouse - ok
21:59:44.0083 4648 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:59:44.0083 4648 SessionEnv - ok
21:59:44.0099 4648 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:59:44.0099 4648 sffdisk - ok
21:59:44.0115 4648 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:59:44.0115 4648 sffp_mmc - ok
21:59:44.0130 4648 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:59:44.0130 4648 sffp_sd - ok
21:59:44.0146 4648 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:59:44.0146 4648 sfloppy - ok
21:59:44.0193 4648 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:59:44.0193 4648 SharedAccess - ok
21:59:44.0208 4648 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:59:44.0224 4648 ShellHWDetection - ok
21:59:44.0239 4648 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
21:59:44.0239 4648 SiSRaid2 - ok
21:59:44.0255 4648 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:59:44.0255 4648 SiSRaid4 - ok
21:59:44.0317 4648 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:59:44.0317 4648 SkypeUpdate - ok
21:59:44.0349 4648 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:59:44.0349 4648 Smb - ok
21:59:44.0380 4648 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:59:44.0380 4648 SNMPTRAP - ok
21:59:44.0473 4648 [ 3A4F2C0BB87A0895ABEBA341AA1E341B ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
21:59:44.0473 4648 Sony PC Companion - ok
21:59:44.0520 4648 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\Windows\syswow64\speedfan.sys
21:59:44.0520 4648 speedfan - ok
21:59:44.0520 4648 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:59:44.0536 4648 spldr - ok
21:59:44.0551 4648 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:59:44.0567 4648 Spooler - ok
21:59:44.0629 4648 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:59:44.0661 4648 sppsvc - ok
21:59:44.0676 4648 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:59:44.0676 4648 sppuinotify - ok
21:59:44.0707 4648 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:59:44.0723 4648 srv - ok
21:59:44.0723 4648 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:59:44.0739 4648 srv2 - ok
21:59:44.0754 4648 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:59:44.0754 4648 srvnet - ok
21:59:44.0770 4648 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:59:44.0785 4648 SSDPSRV - ok
21:59:44.0785 4648 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:59:44.0785 4648 SstpSvc - ok
21:59:44.0817 4648 [ AAF6F247F1DC370C593B4430974EAD9C ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
21:59:44.0817 4648 ssudmdm - ok
21:59:44.0863 4648 Steam Client Service - ok
21:59:44.0895 4648 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
21:59:44.0895 4648 stexstor - ok
21:59:44.0941 4648 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:59:44.0941 4648 stisvc - ok
21:59:44.0973 4648 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
21:59:44.0973 4648 storflt - ok
21:59:44.0988 4648 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
21:59:44.0988 4648 StorSvc - ok
21:59:45.0004 4648 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
21:59:45.0004 4648 storvsc - ok
21:59:45.0019 4648 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:59:45.0019 4648 swenum - ok
21:59:45.0035 4648 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:59:45.0051 4648 swprv - ok
21:59:45.0082 4648 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:59:45.0097 4648 SysMain - ok
21:59:45.0113 4648 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:59:45.0129 4648 TabletInputService - ok
21:59:45.0129 4648 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:59:45.0129 4648 TapiSrv - ok
21:59:45.0160 4648 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:59:45.0160 4648 TBS - ok
21:59:45.0222 4648 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:59:45.0238 4648 Tcpip - ok
21:59:45.0269 4648 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:59:45.0285 4648 TCPIP6 - ok
21:59:45.0300 4648 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:59:45.0300 4648 tcpipreg - ok
21:59:45.0331 4648 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:59:45.0331 4648 TDPIPE - ok
21:59:45.0347 4648 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:59:45.0347 4648 TDTCP - ok
21:59:45.0363 4648 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:59:45.0363 4648 tdx - ok
21:59:45.0456 4648 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
21:59:45.0487 4648 TeamViewer7 - ok
21:59:45.0503 4648 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:59:45.0503 4648 TermDD - ok
21:59:45.0534 4648 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:59:45.0534 4648 TermService - ok
21:59:45.0550 4648 [ 9201BE2BAB8A9FF8E20D8439AE3BB04D ] Themes C:\Windows\system32\themeservice.dll
21:59:45.0565 4648 Themes - ok
21:59:45.0581 4648 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:59:45.0581 4648 THREADORDER - ok
21:59:45.0597 4648 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:59:45.0612 4648 TrkWks - ok
21:59:45.0643 4648 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:59:45.0643 4648 TrustedInstaller - ok
21:59:45.0690 4648 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:59:45.0690 4648 tssecsrv - ok
21:59:45.0721 4648 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:59:45.0721 4648 TsUsbFlt - ok
21:59:45.0737 4648 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
21:59:45.0737 4648 TsUsbGD - ok
21:59:45.0768 4648 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:59:45.0768 4648 tunnel - ok
21:59:45.0784 4648 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:59:45.0784 4648 uagp35 - ok
21:59:45.0799 4648 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:59:45.0799 4648 udfs - ok
21:59:45.0815 4648 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:59:45.0831 4648 UI0Detect - ok
21:59:45.0846 4648 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:59:45.0846 4648 uliagpkx - ok
21:59:45.0877 4648 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:59:45.0877 4648 umbus - ok
21:59:45.0893 4648 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
21:59:45.0893 4648 UmPass - ok
21:59:45.0909 4648 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
21:59:45.0909 4648 UmRdpService - ok
21:59:45.0940 4648 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:59:45.0940 4648 upnphost - ok
21:59:45.0971 4648 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:59:45.0971 4648 usbaudio - ok
21:59:45.0987 4648 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:59:45.0987 4648 usbccgp - ok
21:59:46.0018 4648 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:59:46.0018 4648 usbcir - ok
21:59:46.0033 4648 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:59:46.0033 4648 usbehci - ok
21:59:46.0049 4648 [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
21:59:46.0049 4648 usbfilter - ok
21:59:46.0065 4648 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:59:46.0080 4648 usbhub - ok
21:59:46.0096 4648 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:59:46.0096 4648 usbohci - ok
21:59:46.0111 4648 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:59:46.0111 4648 usbprint - ok
21:59:46.0127 4648 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:59:46.0143 4648 usbscan - ok
21:59:46.0158 4648 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:59:46.0158 4648 USBSTOR - ok
21:59:46.0174 4648 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:59:46.0174 4648 usbuhci - ok
21:59:46.0189 4648 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:59:46.0189 4648 UxSms - ok
21:59:46.0205 4648 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:59:46.0205 4648 VaultSvc - ok
21:59:46.0221 4648 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:59:46.0221 4648 vdrvroot - ok
21:59:46.0252 4648 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:59:46.0252 4648 vds - ok
21:59:46.0283 4648 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:59:46.0283 4648 vga - ok
21:59:46.0299 4648 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:59:46.0299 4648 VgaSave - ok
21:59:46.0314 4648 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:59:46.0314 4648 vhdmp - ok
21:59:46.0361 4648 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:59:46.0361 4648 viaide - ok
21:59:46.0377 4648 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
21:59:46.0392 4648 vmbus - ok
21:59:46.0392 4648 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
21:59:46.0392 4648 VMBusHID - ok
21:59:46.0408 4648 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:59:46.0423 4648 volmgr - ok
21:59:46.0439 4648 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:59:46.0439 4648 volmgrx - ok
21:59:46.0455 4648 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:59:46.0455 4648 volsnap - ok
21:59:46.0470 4648 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:59:46.0470 4648 vsmraid - ok
21:59:46.0517 4648 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:59:46.0533 4648 VSS - ok
21:59:46.0548 4648 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:59:46.0548 4648 vwifibus - ok
21:59:46.0564 4648 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:59:46.0564 4648 W32Time - ok
21:59:46.0579 4648 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:59:46.0579 4648 WacomPen - ok
21:59:46.0595 4648 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:59:46.0611 4648 WANARP - ok
21:59:46.0611 4648 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:59:46.0611 4648 Wanarpv6 - ok
21:59:46.0657 4648 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:59:46.0673 4648 WatAdminSvc - ok
21:59:46.0704 4648 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:59:46.0720 4648 wbengine - ok
21:59:46.0735 4648 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:59:46.0735 4648 WbioSrvc - ok
21:59:46.0782 4648 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
21:59:46.0782 4648 WcesComm - ok
21:59:46.0798 4648 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:59:46.0813 4648 wcncsvc - ok
21:59:46.0829 4648 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:59:46.0829 4648 WcsPlugInService - ok
21:59:46.0845 4648 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
21:59:46.0845 4648 Wd - ok
21:59:46.0876 4648 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:59:46.0891 4648 Wdf01000 - ok
21:59:46.0891 4648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:59:46.0907 4648 WdiServiceHost - ok
21:59:46.0907 4648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:59:46.0907 4648 WdiSystemHost - ok
21:59:46.0923 4648 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:59:46.0938 4648 WebClient - ok
21:59:46.0954 4648 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:59:46.0954 4648 Wecsvc - ok
21:59:46.0969 4648 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:59:46.0969 4648 wercplsupport - ok
21:59:47.0001 4648 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:59:47.0001 4648 WerSvc - ok
21:59:47.0016 4648 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:59:47.0016 4648 WfpLwf - ok
21:59:47.0032 4648 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:59:47.0032 4648 WIMMount - ok
21:59:47.0047 4648 WinDefend - ok
21:59:47.0063 4648 WinHttpAutoProxySvc - ok
21:59:47.0110 4648 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:59:47.0110 4648 Winmgmt - ok
21:59:47.0157 4648 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:59:47.0172 4648 WinRM - ok
21:59:47.0203 4648 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:59:47.0203 4648 WinUsb - ok
21:59:47.0235 4648 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:59:47.0250 4648 Wlansvc - ok
21:59:47.0359 4648 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:59:47.0375 4648 wlidsvc - ok
21:59:47.0391 4648 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:59:47.0391 4648 WmiAcpi - ok
21:59:47.0422 4648 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:59:47.0422 4648 wmiApSrv - ok
21:59:47.0453 4648 WMPNetworkSvc - ok
21:59:47.0469 4648 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:59:47.0469 4648 WPCSvc - ok
21:59:47.0484 4648 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:59:47.0484 4648 WPDBusEnum - ok
21:59:47.0515 4648 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:59:47.0515 4648 ws2ifsl - ok
21:59:47.0531 4648 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
21:59:47.0531 4648 wscsvc - ok
21:59:47.0531 4648 WSearch - ok
21:59:47.0593 4648 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:59:47.0625 4648 wuauserv - ok
21:59:47.0640 4648 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:59:47.0640 4648 WudfPf - ok
21:59:47.0671 4648 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:59:47.0671 4648 WUDFRd - ok
21:59:47.0703 4648 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:59:47.0703 4648 wudfsvc - ok
21:59:47.0718 4648 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
21:59:47.0749 4648 WwanSvc - ok
21:59:47.0765 4648 ================ Scan global ===============================
21:59:47.0781 4648 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:59:47.0812 4648 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
21:59:47.0827 4648 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
21:59:47.0843 4648 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:59:47.0874 4648 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:59:47.0890 4648 [Global] - ok
21:59:47.0890 4648 ================ Scan MBR ==================================
21:59:47.0890 4648 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:59:48.0202 4648 \Device\Harddisk0\DR0 - ok
21:59:48.0717 4648 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:59:48.0732 4648 \Device\Harddisk1\DR1 - ok
21:59:48.0732 4648 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
21:59:49.0138 4648 \Device\Harddisk2\DR2 - ok
21:59:49.0138 4648 ================ Scan VBR ==================================
21:59:49.0153 4648 [ 1333F7B51D44A9BAFA2D44409D7BC2CB ] \Device\Harddisk0\DR0\Partition1
21:59:49.0153 4648 \Device\Harddisk0\DR0\Partition1 - ok
21:59:49.0169 4648 [ FACE4A9B0BE0E2015F9507A52DE8F12A ] \Device\Harddisk0\DR0\Partition2
21:59:49.0169 4648 \Device\Harddisk0\DR0\Partition2 - ok
21:59:49.0169 4648 [ E2CCB61BE90983EBE62E45B6F2ADA39C ] \Device\Harddisk0\DR0\Partition3
21:59:49.0169 4648 \Device\Harddisk0\DR0\Partition3 - ok
21:59:49.0169 4648 [ DA4F138FB6660F5F3558BEC6D9FA4737 ] \Device\Harddisk1\DR1\Partition1
21:59:49.0185 4648 \Device\Harddisk1\DR1\Partition1 - ok
21:59:49.0185 4648 [ 53A0EE2EA9F7DD712C36CBBC64CDDF11 ] \Device\Harddisk2\DR2\Partition1
21:59:49.0185 4648 \Device\Harddisk2\DR2\Partition1 - ok
21:59:49.0185 4648 ============================================================
21:59:49.0185 4648 Scan finished
21:59:49.0185 4648 ============================================================
21:59:49.0200 4800 Detected object count: 0
21:59:49.0200 4800 Actual detected object count: 0
22:00:51.0445 5576 Deinitialize success

Hrál jsem si s ikonama a po změně zpátky se mi to nějak posra*o...zálohu nemám,zbývá mi jen reinstall, jestli chci zase normální? Je to tak na ploše, a nějaké soubory všude (např. html)

Příspěvekod **jaro3** » 08 říj 2013 10:46

ještě jednou:
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

Spusť znovu RogueKiller
Pokud používáš Win Vista či W7, klikni na RogueKiller pravým a dej spustit jako správce.
Pak klikni na Oprava Host a Zpráva - otevře se log, ten sem vlož.

Stáhni si shortcut-cleaner
na svojí plochu. Poklepej na ploše na sc-cleaner.exe
Program se spustí a poté vyhotoví log , ten sem vlož.

Stáhni si exeHelper

na svojí plochu. Poklepej na exeHelper. Objeví se černé okno,až bude fix kompletní , budeš vybídnut ke stisknutí nějaké klávesy k zavření . Objeví se exehelperlog.txt (jinak je ve stejném místě jako program exehelper.
Zkopíruj sem prosím celý jeho obsah.
Pozn.: jestliže windows ukáže chybovou zprávu „Error deleting file“ , restartuj program dříve než se vytvoří log a poté pošli oba dva logy spolu , budou oba v jednom souboru.

Prosím o kontrolu logu Vyřešeno

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Kdo je online