Prosím o kontrolu logu z HJT - zavírený PC

JANíčOK · Příspěvekod **JANíčOK** » 10 úno 2014 08:49

Dobrý deň,
prosím Vás o kontrolu logu z HJT. NOD 32 mi hlási viacero infikovaných súborov a potenciálne nechcených aplikácii.
Vopred ďakujem.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:45:20, on 10. 2. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Users\Konštrukcia\AppData\Local\Akamai\netsession_win.exe
C:\Users\Konštrukcia\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\Coupons.dll
O2 - BHO: WebCGMHlprObj Class - {56B38F40-4E70-11d4-A076-0080AD86BA2F} - C:\Windows\SysWOW64\cgmopenbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [NuTCSetupEnviron] C:\PROGRA~1\PTC\MKSTOO~1\bin\ncoeenv.exe
O4 - HKCU\..\Run: [Slick Savings] "C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\CouponsHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Konštrukcia\AppData\Local\Akamai\netsession_win.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\Windows\system32\inetsrv\inetinfo.exe (file missing)
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NuTCRACKER Service (NuTCRACKERService) - Unknown owner - C:\Windows\system32\nutsrv4.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PortmapperService - PTC Inc. - C:\Program Files\PTC/PTC Portmapper/i486_nt/obj/portmap.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8343 bytes

Reklama

Příspěvekod **jaro3** » 10 úno 2014 11:56

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

JANíčOK · Příspěvekod **JANíčOK** » 10 úno 2014 12:36

# AdwCleaner v3.018 - Report created 10/02/2014 at 12:35:25
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Konštrukcia - KONSTRUKCIA-PC
# Running from : C:\Users\Konštrukcia\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Found C:\Program Files (x86)\Common Files\spigot

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_driver-booster_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_driver-booster_RASMANCS
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Mozilla Firefox v26.0 (sk)

[ File : C:\Users\Konštrukcia\AppData\Roaming\Mozilla\Firefox\Profiles\ja76zx6n.default-1389246407168\prefs.js ]

*************************

AdwCleaner[R0].txt - [1549 octets] - [10/02/2014 12:35:25]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1609 octets] ##########

Příspěvekod **jaro3** » 10 úno 2014 18:59

A Malwarebytes' Anti-Malware?

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

JANíčOK · Příspěvekod **JANíčOK** » 11 úno 2014 06:52

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2014.02.10.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Konštrukcia :: KONSTRUKCIA-PC [administrátor]

10. 2. 2014 12:38:18
MBAM-log-2014-02-10 (12-40-13).txt

Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 254579
Uplynutý čas: 1 min, 30 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 5
HKCR\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Žiadna úloha nevykonaná.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Žiadna úloha nevykonaná.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6} (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.

Detegované registračné hodnoty: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Slick Savings (PUP.Optional.Spigot.A) -> Dáta: "C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\CouponsHelper.exe" -> Žiadna úloha nevykonaná.

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 4
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Local\Slick Savings (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Žiadna úloha nevykonaná.

Detegované súbory: 12
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\Coupons.dll (PUP.Optional.Spigot) -> Žiadna úloha nevykonaná.
C:\Windows\AutoKMS.exe (Riskware.Keygen) -> Žiadna úloha nevykonaná.
C:\Windows\KMSEmulator.exe (RiskWare.Tool.CK) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\coupons_2.4.crx (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\Coupons64.dll (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\CouponsHelper.exe (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\coupons_2.8.xpi (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\coupons_2.9.xpi (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\Uninstall.exe (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Local\Slick Savings\coupons.crx (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Žiadna úloha nevykonaná.
C:\Users\Konštrukcia\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Žiadna úloha nevykonaná.

(koniec)

JANíčOK · Příspěvekod **JANíčOK** » 11 úno 2014 07:01

JRT.exe som sputil presne tak ako píšete, ale log JRT.txt som nikde nenašiel.

Příspěvekod **jaro3** » 11 úno 2014 10:16

Nevadí.

. spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

JANíčOK · Příspěvekod **JANíčOK** » 11 úno 2014 12:24

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2014.02.11.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Konštrukcia :: KONSTRUKCIA-PC [administrátor]

11. 2. 2014 12:19:46
mbam-log-2014-02-11 (12-19-46).txt

Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 255374
Uplynutý čas: 1 min, 27 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Pridanie do karantény a zmazanie úspešné.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Pridanie do karantény a zmazanie úspešné.

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 2
C:\Users\Konštrukcia\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Konštrukcia\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Pridanie do karantény a zmazanie úspešné.

Detegované súbory: 4
C:\Windows\AutoKMS.exe (Riskware.Keygen) -> Pridanie do karantény a zmazanie úspešné.
C:\Windows\KMSEmulator.exe (RiskWare.Tool.CK) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Konštrukcia\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\Konštrukcia\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Pridanie do karantény a zmazanie úspešné.

(koniec)

JANíčOK · Příspěvekod **JANíčOK** » 11 úno 2014 12:29

RogueKiller V8.8.7 _x64_ [Feb 11 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Konštrukcia [Práva správce]
Mód : Kontrola -- Datum : 02/11/2014 12:26:44
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 11 ¤¤¤
[RUN][SUSP UNIC] HKCU\[...]\Run : Slick Savings ("C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\CouponsHelper.exe" [x]) -> NALEZENO
[RUN][SUSP UNIC] HKUS\S-1-5-21-3654305221-3194196692-2434187223-1000\[...]\Run : Slick Savings ("C:\Users\Konštrukcia\AppData\Roaming\Slick Savings\CouponsHelper.exe" [x]) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKX-083CA1 ATA Device +++++
--- User ---
[MBR] 9c8536b690d63a27acaf5d62b508bee9
[BSP] bf554009e5a41c68658bc45fc24d780e : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 476937 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) OCZ-VERTEX3 ATA Device +++++
--- User ---
[MBR] a3ed84bb13a480d6c3cfa763949b7258
[BSP] 369efba5729038d9fa4835b7cc8e210b : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 114371 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Kingston DataTraveler G3 USB Device +++++
--- User ---
[MBR] 67015783beaeba67f1d433450f8a7c3f
[BSP] 59a93d23dac248764a492ed2f1005dd4 : MBR Code unknown
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 63 | Size: 7638 Mo
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

Dokončeno : << RKreport[0]_S_02112014_122644.txt >>

JANíčOK · Příspěvekod **JANíčOK** » 11 úno 2014 12:34

12:30:22.0744 5080 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:30:23.0071 5080 ============================================================
12:30:23.0071 5080 Current date / time: 2014/02/11 12:30:23.0071
12:30:23.0071 5080 SystemInfo:
12:30:23.0071 5080
12:30:23.0071 5080 OS Version: 6.1.7601 ServicePack: 1.0
12:30:23.0071 5080 Product type: Workstation
12:30:23.0071 5080 ComputerName: KONSTRUKCIA-PC
12:30:23.0071 5080 UserName: Konštrukcia
12:30:23.0071 5080 Windows directory: C:\Windows
12:30:23.0071 5080 System windows directory: C:\Windows
12:30:23.0071 5080 Running under WOW64
12:30:23.0071 5080 Processor architecture: Intel x64
12:30:23.0071 5080 Number of processors: 4
12:30:23.0071 5080 Page size: 0x1000
12:30:23.0071 5080 Boot type: Normal boot
12:30:23.0071 5080 ============================================================
12:30:23.0352 5080 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:30:23.0352 5080 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:30:23.0352 5080 Drive \Device\Harddisk2\DR2 - Size: 0x1DD71E000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:30:23.0368 5080 ============================================================
12:30:23.0368 5080 \Device\Harddisk0\DR0:
12:30:23.0368 5080 MBR partitions:
12:30:23.0368 5080 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800
12:30:23.0368 5080 \Device\Harddisk1\DR1:
12:30:23.0368 5080 MBR partitions:
12:30:23.0368 5080 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:30:23.0368 5080 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
12:30:23.0368 5080 \Device\Harddisk2\DR2:
12:30:23.0368 5080 MBR partitions:
12:30:23.0368 5080 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xEEB5C1
12:30:23.0368 5080 ============================================================
12:30:23.0368 5080 C: <-> \Device\Harddisk1\DR1\Partition2
12:30:23.0399 5080 D: <-> \Device\Harddisk0\DR0\Partition1
12:30:23.0399 5080 ============================================================
12:30:23.0399 5080 Initialize success
12:30:23.0399 5080 ============================================================
12:30:24.0850 2728 ============================================================
12:30:24.0850 2728 Scan started
12:30:24.0850 2728 Mode: Manual;
12:30:24.0850 2728 ============================================================
12:30:24.0928 2728 ================ Scan system memory ========================
12:30:24.0928 2728 System memory - ok
12:30:24.0928 2728 ================ Scan services =============================
12:30:24.0959 2728 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
12:30:24.0959 2728 1394ohci - ok
12:30:24.0959 2728 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:30:24.0959 2728 ACPI - ok
12:30:24.0959 2728 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:30:24.0959 2728 AcpiPmi - ok
12:30:24.0974 2728 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:30:24.0974 2728 AdobeARMservice - ok
12:30:24.0990 2728 [ C8C6C0D659734FDBF63F6F421A5416BC ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:30:24.0990 2728 AdobeFlashPlayerUpdateSvc - ok
12:30:24.0990 2728 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:30:25.0006 2728 adp94xx - ok
12:30:25.0006 2728 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:30:25.0006 2728 adpahci - ok
12:30:25.0006 2728 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:30:25.0006 2728 adpu320 - ok
12:30:25.0006 2728 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:30:25.0021 2728 AeLookupSvc - ok
12:30:25.0021 2728 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
12:30:25.0021 2728 AFD - ok
12:30:25.0021 2728 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:30:25.0021 2728 agp440 - ok
12:30:25.0021 2728 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:30:25.0037 2728 ALG - ok
12:30:25.0037 2728 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:30:25.0037 2728 aliide - ok
12:30:25.0037 2728 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:30:25.0037 2728 amdide - ok
12:30:25.0037 2728 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:30:25.0037 2728 AmdK8 - ok
12:30:25.0037 2728 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
12:30:25.0037 2728 AmdPPM - ok
12:30:25.0037 2728 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:30:25.0052 2728 amdsata - ok
12:30:25.0052 2728 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
12:30:25.0052 2728 amdsbs - ok
12:30:25.0052 2728 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:30:25.0052 2728 amdxata - ok
12:30:25.0052 2728 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
12:30:25.0052 2728 AppHostSvc - ok
12:30:25.0052 2728 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:30:25.0052 2728 AppID - ok
12:30:25.0068 2728 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:30:25.0068 2728 AppIDSvc - ok
12:30:25.0068 2728 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
12:30:25.0068 2728 Appinfo - ok
12:30:25.0068 2728 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
12:30:25.0068 2728 AppMgmt - ok
12:30:25.0068 2728 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
12:30:25.0068 2728 arc - ok
12:30:25.0084 2728 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:30:25.0084 2728 arcsas - ok
12:30:25.0084 2728 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:30:25.0099 2728 aspnet_state - ok
12:30:25.0099 2728 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:30:25.0099 2728 AsyncMac - ok
12:30:25.0099 2728 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:30:25.0099 2728 atapi - ok
12:30:25.0099 2728 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:30:25.0115 2728 AudioEndpointBuilder - ok
12:30:25.0115 2728 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:30:25.0115 2728 AudioSrv - ok
12:30:25.0115 2728 [ F431DC5D94F4B2FDBC927655D8A9B10E ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
12:30:25.0115 2728 Autodesk Content Service - ok
12:30:25.0130 2728 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:30:25.0130 2728 AxInstSV - ok
12:30:25.0130 2728 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
12:30:25.0130 2728 b06bdrv - ok
12:30:25.0130 2728 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:30:25.0146 2728 b57nd60a - ok
12:30:25.0146 2728 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:30:25.0146 2728 BDESVC - ok
12:30:25.0146 2728 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:30:25.0146 2728 Beep - ok
12:30:25.0146 2728 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:30:25.0162 2728 BFE - ok
12:30:25.0162 2728 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:30:25.0177 2728 BITS - ok
12:30:25.0177 2728 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:30:25.0177 2728 blbdrive - ok
12:30:25.0177 2728 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:30:25.0177 2728 bowser - ok
12:30:25.0177 2728 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
12:30:25.0177 2728 BrFiltLo - ok
12:30:25.0177 2728 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
12:30:25.0177 2728 BrFiltUp - ok
12:30:25.0177 2728 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:30:25.0193 2728 Browser - ok
12:30:25.0193 2728 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:30:25.0193 2728 Brserid - ok
12:30:25.0193 2728 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:30:25.0193 2728 BrSerWdm - ok
12:30:25.0193 2728 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:30:25.0193 2728 BrUsbMdm - ok
12:30:25.0193 2728 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:30:25.0193 2728 BrUsbSer - ok
12:30:25.0193 2728 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
12:30:25.0193 2728 BthEnum - ok
12:30:25.0208 2728 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:30:25.0208 2728 BTHMODEM - ok
12:30:25.0208 2728 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
12:30:25.0208 2728 BthPan - ok
12:30:25.0208 2728 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
12:30:25.0208 2728 BTHPORT - ok
12:30:25.0224 2728 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:30:25.0224 2728 bthserv - ok
12:30:25.0224 2728 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
12:30:25.0224 2728 BTHUSB - ok
12:30:25.0224 2728 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:30:25.0224 2728 cdfs - ok
12:30:25.0224 2728 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:30:25.0224 2728 cdrom - ok
12:30:25.0224 2728 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:30:25.0240 2728 CertPropSvc - ok
12:30:25.0240 2728 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
12:30:25.0240 2728 circlass - ok
12:30:25.0240 2728 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:30:25.0240 2728 CLFS - ok
12:30:25.0240 2728 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:30:25.0240 2728 clr_optimization_v2.0.50727_32 - ok
12:30:25.0255 2728 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:30:25.0255 2728 clr_optimization_v2.0.50727_64 - ok
12:30:25.0255 2728 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:30:25.0271 2728 clr_optimization_v4.0.30319_32 - ok
12:30:25.0271 2728 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:30:25.0271 2728 clr_optimization_v4.0.30319_64 - ok
12:30:25.0271 2728 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
12:30:25.0271 2728 CmBatt - ok
12:30:25.0271 2728 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:30:25.0271 2728 cmdide - ok
12:30:25.0286 2728 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
12:30:25.0286 2728 CNG - ok
12:30:25.0286 2728 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:30:25.0286 2728 Compbatt - ok
12:30:25.0286 2728 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
12:30:25.0286 2728 CompositeBus - ok
12:30:25.0286 2728 COMSysApp - ok
12:30:25.0286 2728 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:30:25.0286 2728 crcdisk - ok
12:30:25.0302 2728 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:30:25.0302 2728 CryptSvc - ok
12:30:25.0302 2728 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
12:30:25.0302 2728 CSC - ok
12:30:25.0318 2728 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
12:30:25.0318 2728 CscService - ok
12:30:25.0318 2728 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:30:25.0318 2728 DcomLaunch - ok
12:30:25.0333 2728 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:30:25.0333 2728 defragsvc - ok
12:30:25.0333 2728 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:30:25.0333 2728 DfsC - ok
12:30:25.0333 2728 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:30:25.0333 2728 Dhcp - ok
12:30:25.0349 2728 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:30:25.0349 2728 discache - ok
12:30:25.0349 2728 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
12:30:25.0349 2728 Disk - ok
12:30:25.0349 2728 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
12:30:25.0349 2728 dmvsc - ok
12:30:25.0349 2728 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:30:25.0349 2728 Dnscache - ok
12:30:25.0364 2728 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:30:25.0364 2728 dot3svc - ok
12:30:25.0364 2728 [ B42ED0320C6E41102FDE0005154849BB ] dot4 C:\Windows\system32\DRIVERS\Dot4.sys
12:30:25.0364 2728 dot4 - ok
12:30:25.0364 2728 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
12:30:25.0364 2728 Dot4Print - ok
12:30:25.0364 2728 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
12:30:25.0364 2728 dot4usb - ok
12:30:25.0364 2728 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:30:25.0380 2728 DPS - ok
12:30:25.0380 2728 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:30:25.0380 2728 drmkaud - ok
12:30:25.0380 2728 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:30:25.0380 2728 DXGKrnl - ok
12:30:25.0396 2728 [ 6BAFD9819D9FEC2EDBAEBC8493C711A4 ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
12:30:25.0396 2728 e1cexpress - ok
12:30:25.0396 2728 [ FE96AA1A36E76588C80DF1040286DDE1 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
12:30:25.0396 2728 eamonm - ok
12:30:25.0396 2728 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:30:25.0396 2728 EapHost - ok
12:30:25.0427 2728 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
12:30:25.0442 2728 ebdrv - ok
12:30:25.0442 2728 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
12:30:25.0442 2728 EFS - ok
12:30:25.0442 2728 [ 807BA90D47F8885C09E1D6AFBB706E18 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
12:30:25.0442 2728 ehdrv - ok
12:30:25.0458 2728 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:30:25.0458 2728 ehRecvr - ok
12:30:25.0458 2728 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:30:25.0458 2728 ehSched - ok
12:30:25.0474 2728 [ 4CB575D97653FA91FFB02DA3105EB084 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
12:30:25.0474 2728 ekrn - ok
12:30:25.0474 2728 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:30:25.0489 2728 elxstor - ok
12:30:25.0489 2728 [ FEE856E92AFCC61DA146F186E291FFD7 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
12:30:25.0489 2728 epfwwfpr - ok
12:30:25.0489 2728 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:30:25.0489 2728 ErrDev - ok
12:30:25.0489 2728 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:30:25.0505 2728 EventSystem - ok
12:30:25.0505 2728 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:30:25.0505 2728 exfat - ok
12:30:25.0505 2728 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:30:25.0505 2728 fastfat - ok
12:30:25.0505 2728 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:30:25.0520 2728 Fax - ok
12:30:25.0520 2728 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
12:30:25.0520 2728 fdc - ok
12:30:25.0520 2728 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:30:25.0520 2728 fdPHost - ok
12:30:25.0520 2728 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:30:25.0520 2728 FDResPub - ok
12:30:25.0520 2728 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:30:25.0520 2728 FileInfo - ok
12:30:25.0536 2728 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:30:25.0536 2728 Filetrace - ok
12:30:25.0536 2728 [ 64AB6F28047744B9B19C97459C2AB31B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
12:30:25.0552 2728 FLEXnet Licensing Service 64 - ok
12:30:25.0552 2728 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
12:30:25.0552 2728 flpydisk - ok
12:30:25.0552 2728 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:30:25.0552 2728 FltMgr - ok
12:30:25.0567 2728 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
12:30:25.0567 2728 FontCache - ok
12:30:25.0583 2728 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:30:25.0583 2728 FontCache3.0.0.0 - ok
12:30:25.0583 2728 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:30:25.0583 2728 FsDepends - ok
12:30:25.0583 2728 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:30:25.0583 2728 Fs_Rec - ok
12:30:25.0583 2728 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:30:25.0583 2728 fvevol - ok
12:30:25.0583 2728 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:30:25.0583 2728 gagp30kx - ok
12:30:25.0598 2728 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:30:25.0598 2728 gpsvc - ok
12:30:25.0598 2728 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:30:25.0598 2728 hcw85cir - ok
12:30:25.0614 2728 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:30:25.0614 2728 HdAudAddService - ok
12:30:25.0614 2728 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:30:25.0614 2728 HDAudBus - ok
12:30:25.0614 2728 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
12:30:25.0614 2728 HidBatt - ok
12:30:25.0614 2728 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:30:25.0614 2728 HidBth - ok
12:30:25.0614 2728 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
12:30:25.0614 2728 HidIr - ok
12:30:25.0630 2728 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:30:25.0630 2728 hidserv - ok
12:30:25.0630 2728 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:30:25.0630 2728 HidUsb - ok
12:30:25.0630 2728 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:30:25.0630 2728 hkmsvc - ok
12:30:25.0630 2728 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:30:25.0630 2728 HomeGroupListener - ok
12:30:25.0645 2728 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:30:25.0645 2728 HomeGroupProvider - ok
12:30:25.0645 2728 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:30:25.0645 2728 HpSAMD - ok
12:30:25.0645 2728 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
12:30:25.0645 2728 HTCAND64 - ok
12:30:25.0661 2728 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:30:25.0661 2728 HTTP - ok
12:30:25.0661 2728 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:30:25.0661 2728 hwpolicy - ok
12:30:25.0661 2728 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:30:25.0661 2728 i8042prt - ok
12:30:25.0661 2728 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:30:25.0676 2728 iaStorV - ok
12:30:25.0676 2728 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:30:25.0676 2728 idsvc - ok
12:30:25.0676 2728 IEEtwCollectorService - ok
12:30:25.0692 2728 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:30:25.0692 2728 iirsp - ok
12:30:25.0692 2728 [ AB55B8A9B13130F638546881CE4425F8 ] IISADMIN C:\Windows\system32\inetsrv\inetinfo.exe
12:30:25.0692 2728 IISADMIN - ok
12:30:25.0692 2728 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
12:30:25.0708 2728 IKEEXT - ok
12:30:25.0723 2728 [ 7A3585C4000C8340AE6B7FA08F9EF50F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:30:25.0739 2728 IntcAzAudAddService - ok
12:30:25.0739 2728 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:30:25.0739 2728 intelide - ok
12:30:25.0754 2728 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:30:25.0754 2728 intelppm - ok
12:30:25.0754 2728 [ 068EC06F3B6DD7B81B365D8FD2CE27E6 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
12:30:25.0754 2728 Intel® PROSet Monitoring Service - ok
12:30:25.0754 2728 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:30:25.0754 2728 IPBusEnum - ok
12:30:25.0754 2728 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:30:25.0754 2728 IpFilterDriver - ok
12:30:25.0770 2728 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:30:25.0770 2728 iphlpsvc - ok
12:30:25.0770 2728 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:30:25.0770 2728 IPMIDRV - ok
12:30:25.0770 2728 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:30:25.0770 2728 IPNAT - ok
12:30:25.0770 2728 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:30:25.0770 2728 IRENUM - ok
12:30:25.0786 2728 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:30:25.0786 2728 isapnp - ok
12:30:25.0786 2728 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:30:25.0786 2728 iScsiPrt - ok
12:30:25.0786 2728 [ C0D9BA660A41EE8A269EF804E6CD0D7B ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
12:30:25.0786 2728 JRAID - ok
12:30:25.0786 2728 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:30:25.0786 2728 kbdclass - ok
12:30:25.0786 2728 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:30:25.0786 2728 kbdhid - ok
12:30:25.0801 2728 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
12:30:25.0801 2728 KeyIso - ok
12:30:25.0801 2728 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:30:25.0801 2728 KSecDD - ok
12:30:25.0801 2728 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:30:25.0801 2728 KSecPkg - ok
12:30:25.0801 2728 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:30:25.0801 2728 ksthunk - ok
12:30:25.0801 2728 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:30:25.0817 2728 KtmRm - ok
12:30:25.0817 2728 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:30:25.0817 2728 LanmanServer - ok
12:30:25.0817 2728 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:30:25.0817 2728 LanmanWorkstation - ok
12:30:25.0832 2728 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:30:25.0832 2728 lltdio - ok
12:30:25.0832 2728 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:30:25.0832 2728 lltdsvc - ok
12:30:25.0832 2728 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:30:25.0832 2728 lmhosts - ok
12:30:25.0832 2728 [ 1512E61EF7A2A8BD59AB11448411BE7B ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
12:30:25.0848 2728 LMIGuardianSvc - ok
12:30:25.0848 2728 [ 0F28935ECF1FBDEC22BAF720A5A94564 ] LMIInfo C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
12:30:25.0848 2728 LMIInfo - ok
12:30:25.0848 2728 [ FF0935EBF4008F9299450D4FB5307CC0 ] LMIMaint C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
12:30:25.0848 2728 LMIMaint - ok
12:30:25.0848 2728 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
12:30:25.0848 2728 lmimirr - ok
12:30:25.0848 2728 LMIRfsClientNP - ok
12:30:25.0864 2728 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
12:30:25.0864 2728 LMIRfsDriver - ok
12:30:25.0864 2728 [ D3760BC17E1755091B7120CF32DBF56B ] LogMeIn C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
12:30:25.0864 2728 LogMeIn - ok
12:30:25.0864 2728 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:30:25.0864 2728 LSI_FC - ok
12:30:25.0864 2728 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:30:25.0864 2728 LSI_SAS - ok
12:30:25.0879 2728 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
12:30:25.0879 2728 LSI_SAS2 - ok
12:30:25.0879 2728 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:30:25.0879 2728 LSI_SCSI - ok
12:30:25.0879 2728 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:30:25.0879 2728 luafv - ok
12:30:25.0879 2728 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:30:25.0879 2728 Mcx2Svc - ok
12:30:25.0879 2728 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
12:30:25.0879 2728 megasas - ok
12:30:25.0895 2728 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
12:30:25.0895 2728 MegaSR - ok
12:30:25.0895 2728 [ 2BB3EAE2EA641515D4B205CAB29E1624 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
12:30:25.0895 2728 MEIx64 - ok
12:30:25.0895 2728 Microsoft SharePoint Workspace Audit Service - ok
12:30:25.0895 2728 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:30:25.0910 2728 MMCSS - ok
12:30:25.0910 2728 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:30:25.0910 2728 Modem - ok
12:30:25.0910 2728 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:30:25.0910 2728 monitor - ok
12:30:25.0910 2728 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:30:25.0910 2728 mouclass - ok
12:30:25.0910 2728 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:30:25.0910 2728 mouhid - ok
12:30:25.0910 2728 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:30:25.0910 2728 mountmgr - ok
12:30:25.0926 2728 [ 3B9398E0146855B1DC0E3D9769C80F01 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:30:25.0926 2728 MozillaMaintenance - ok
12:30:25.0926 2728 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:30:25.0926 2728 mpio - ok
12:30:25.0926 2728 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:30:25.0926 2728 mpsdrv - ok
12:30:25.0926 2728 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:30:25.0942 2728 MpsSvc - ok
12:30:25.0942 2728 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:30:25.0942 2728 MRxDAV - ok
12:30:25.0942 2728 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:30:25.0942 2728 mrxsmb - ok
12:30:25.0942 2728 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:30:25.0957 2728 mrxsmb10 - ok
12:30:25.0957 2728 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:30:25.0957 2728 mrxsmb20 - ok
12:30:25.0957 2728 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:30:25.0957 2728 msahci - ok
12:30:25.0957 2728 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:30:25.0957 2728 msdsm - ok
12:30:25.0957 2728 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:30:25.0957 2728 MSDTC - ok
12:30:25.0973 2728 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:30:25.0973 2728 Msfs - ok
12:30:25.0973 2728 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:30:25.0973 2728 mshidkmdf - ok
12:30:25.0973 2728 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:30:25.0973 2728 msisadrv - ok
12:30:25.0973 2728 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:30:25.0973 2728 MSiSCSI - ok
12:30:25.0973 2728 msiserver - ok
12:30:25.0988 2728 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:30:25.0988 2728 MSKSSRV - ok
12:30:25.0988 2728 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:30:25.0988 2728 MSPCLOCK - ok
12:30:25.0988 2728 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:30:25.0988 2728 MSPQM - ok
12:30:25.0988 2728 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:30:25.0988 2728 MsRPC - ok
12:30:25.0988 2728 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:30:25.0988 2728 mssmbios - ok
12:30:26.0004 2728 MSSQL$AUTODESKVAULT - ok
12:30:26.0004 2728 [ F1761C8FB2B25A32C6D63E36BB88C3AE ] MSSQLServerADHelper100 C:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
12:30:26.0004 2728 MSSQLServerADHelper100 - ok
12:30:26.0004 2728 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:30:26.0004 2728 MSTEE - ok
12:30:26.0004 2728 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
12:30:26.0004 2728 MTConfig - ok
12:30:26.0004 2728 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:30:26.0004 2728 Mup - ok
12:30:26.0020 2728 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:30:26.0020 2728 napagent - ok
12:30:26.0020 2728 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:30:26.0020 2728 NativeWifiP - ok
12:30:26.0035 2728 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:30:26.0035 2728 NDIS - ok
12:30:26.0035 2728 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:30:26.0035 2728 NdisCap - ok
12:30:26.0035 2728 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:30:26.0035 2728 NdisTapi - ok
12:30:26.0035 2728 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:30:26.0035 2728 Ndisuio - ok
12:30:26.0035 2728 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:30:26.0051 2728 NdisWan - ok
12:30:26.0051 2728 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:30:26.0051 2728 NDProxy - ok
12:30:26.0051 2728 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:30:26.0051 2728 NetBIOS - ok
12:30:26.0051 2728 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:30:26.0051 2728 NetBT - ok
12:30:26.0051 2728 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
12:30:26.0051 2728 Netlogon - ok
12:30:26.0066 2728 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll

JANíčOK · Příspěvekod **JANíčOK** » 11 úno 2014 12:35

12:30:26.0066 2728 Netman - ok
12:30:26.0066 2728 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:30:26.0066 2728 NetMsmqActivator - ok
12:30:26.0066 2728 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:30:26.0066 2728 NetPipeActivator - ok
12:30:26.0082 2728 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:30:26.0082 2728 netprofm - ok
12:30:26.0082 2728 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:30:26.0082 2728 NetTcpActivator - ok
12:30:26.0082 2728 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:30:26.0082 2728 NetTcpPortSharing - ok
12:30:26.0082 2728 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:30:26.0082 2728 nfrd960 - ok
12:30:26.0082 2728 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:30:26.0098 2728 NlaSvc - ok
12:30:26.0098 2728 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:30:26.0098 2728 Npfs - ok
12:30:26.0098 2728 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:30:26.0098 2728 nsi - ok
12:30:26.0098 2728 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:30:26.0098 2728 nsiproxy - ok
12:30:26.0113 2728 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:30:26.0113 2728 Ntfs - ok
12:30:26.0129 2728 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:30:26.0129 2728 Null - ok
12:30:26.0129 2728 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
12:30:26.0129 2728 nusb3hub - ok
12:30:26.0129 2728 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
12:30:26.0129 2728 nusb3xhc - ok
12:30:26.0129 2728 [ DA16D10F446F9F9CE3EDB395A34ED5EE ] NuTCRACKERService C:\Windows\system32\nutsrv4.exe
12:30:26.0144 2728 NuTCRACKERService - ok
12:30:26.0144 2728 [ 554964B900AE2954B8B589B6287034AC ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
12:30:26.0144 2728 NVHDA - ok
12:30:26.0222 2728 [ F554291C0A11F5B713B54C5886D4AA31 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:30:26.0269 2728 nvlddmkm - ok
12:30:26.0285 2728 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:30:26.0285 2728 nvraid - ok
12:30:26.0285 2728 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:30:26.0285 2728 nvstor - ok
12:30:26.0300 2728 [ 8E99BF264C1F20934A67E91BC9F4FB20 ] nvsvc C:\Windows\system32\nvvsvc.exe
12:30:26.0300 2728 nvsvc - ok
12:30:26.0300 2728 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:30:26.0300 2728 nv_agp - ok
12:30:26.0300 2728 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:30:26.0300 2728 ohci1394 - ok
12:30:26.0300 2728 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:30:26.0300 2728 ose - ok
12:30:26.0347 2728 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:30:26.0363 2728 osppsvc - ok
12:30:26.0363 2728 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:30:26.0363 2728 p2pimsvc - ok
12:30:26.0378 2728 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:30:26.0378 2728 p2psvc - ok
12:30:26.0378 2728 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
12:30:26.0378 2728 Parport - ok
12:30:26.0378 2728 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:30:26.0378 2728 partmgr - ok
12:30:26.0394 2728 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:30:26.0394 2728 PcaSvc - ok
12:30:26.0394 2728 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:30:26.0394 2728 pci - ok
12:30:26.0394 2728 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:30:26.0394 2728 pciide - ok
12:30:26.0394 2728 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:30:26.0394 2728 pcmcia - ok
12:30:26.0394 2728 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:30:26.0410 2728 pcw - ok
12:30:26.0410 2728 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:30:26.0410 2728 PEAUTH - ok
12:30:26.0425 2728 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:30:26.0425 2728 PeerDistSvc - ok
12:30:26.0456 2728 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:30:26.0456 2728 PerfHost - ok
12:30:26.0456 2728 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:30:26.0472 2728 pla - ok
12:30:26.0472 2728 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:30:26.0488 2728 PlugPlay - ok
12:30:26.0488 2728 [ 64CA1485214340CACC315FFDFDED73EF ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
12:30:26.0488 2728 Pml Driver HPZ12 - ok
12:30:26.0488 2728 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:30:26.0488 2728 PNRPAutoReg - ok
12:30:26.0488 2728 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:30:26.0488 2728 PNRPsvc - ok
12:30:26.0503 2728 [ 520D48ECB54A33821C95EE496A4235AF ] Point64 C:\Windows\system32\DRIVERS\point64.sys
12:30:26.0503 2728 Point64 - ok
12:30:26.0503 2728 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:30:26.0503 2728 PolicyAgent - ok
12:30:26.0519 2728 [ E4C8F17CC4EEBC1460214D079EA462BB ] PortmapperService C:\Program Files\PTC/PTC Portmapper/i486_nt/obj/portmap.exe
12:30:26.0519 2728 Suspicious file (Hidden): C:\Program Files\PTC/PTC Portmapper/i486_nt/obj/portmap.exe. md5: E4C8F17CC4EEBC1460214D079EA462BB
12:30:26.0519 2728 PortmapperService ( HiddenFile.Multi.Generic ) - warning
12:30:26.0519 2728 PortmapperService - detected HiddenFile.Multi.Generic (1)
12:30:26.0519 2728 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:30:26.0519 2728 Power - ok
12:30:26.0519 2728 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:30:26.0519 2728 PptpMiniport - ok
12:30:26.0519 2728 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
12:30:26.0519 2728 Processor - ok
12:30:26.0534 2728 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:30:26.0534 2728 ProfSvc - ok
12:30:26.0534 2728 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
12:30:26.0534 2728 ProtectedStorage - ok
12:30:26.0534 2728 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:30:26.0534 2728 Psched - ok
12:30:26.0550 2728 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:30:26.0550 2728 ql2300 - ok
12:30:26.0566 2728 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:30:26.0566 2728 ql40xx - ok
12:30:26.0566 2728 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:30:26.0566 2728 QWAVE - ok
12:30:26.0566 2728 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:30:26.0566 2728 QWAVEdrv - ok
12:30:26.0566 2728 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:30:26.0566 2728 RasAcd - ok
12:30:26.0566 2728 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:30:26.0566 2728 RasAgileVpn - ok
12:30:26.0581 2728 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:30:26.0581 2728 RasAuto - ok
12:30:26.0581 2728 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:30:26.0581 2728 Rasl2tp - ok
12:30:26.0581 2728 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:30:26.0581 2728 RasMan - ok
12:30:26.0597 2728 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:30:26.0597 2728 RasPppoe - ok
12:30:26.0597 2728 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:30:26.0597 2728 RasSstp - ok
12:30:26.0597 2728 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:30:26.0597 2728 rdbss - ok
12:30:26.0597 2728 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:30:26.0597 2728 rdpbus - ok
12:30:26.0597 2728 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:30:26.0597 2728 RDPCDD - ok
12:30:26.0612 2728 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:30:26.0612 2728 RDPDR - ok
12:30:26.0612 2728 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:30:26.0612 2728 RDPENCDD - ok
12:30:26.0612 2728 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:30:26.0612 2728 RDPREFMP - ok
12:30:26.0612 2728 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:30:26.0612 2728 RDPWD - ok
12:30:26.0628 2728 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:30:26.0628 2728 rdyboost - ok
12:30:26.0628 2728 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:30:26.0628 2728 RemoteAccess - ok
12:30:26.0628 2728 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:30:26.0628 2728 RemoteRegistry - ok
12:30:26.0628 2728 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
12:30:26.0628 2728 RFCOMM - ok
12:30:26.0644 2728 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:30:26.0644 2728 RpcEptMapper - ok
12:30:26.0644 2728 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:30:26.0644 2728 RpcLocator - ok
12:30:26.0644 2728 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:30:26.0644 2728 RpcSs - ok
12:30:26.0659 2728 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:30:26.0659 2728 rspndr - ok
12:30:26.0659 2728 [ AC4CA62572CA516945AB92D6C9F501F4 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:30:26.0659 2728 RTL8167 - ok
12:30:26.0659 2728 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
12:30:26.0659 2728 s3cap - ok
12:30:26.0675 2728 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
12:30:26.0675 2728 SamSs - ok
12:30:26.0675 2728 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:30:26.0675 2728 sbp2port - ok
12:30:26.0675 2728 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:30:26.0675 2728 SCardSvr - ok
12:30:26.0675 2728 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:30:26.0675 2728 scfilter - ok
12:30:26.0690 2728 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:30:26.0690 2728 Schedule - ok
12:30:26.0706 2728 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:30:26.0706 2728 SCPolicySvc - ok
12:30:26.0706 2728 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:30:26.0706 2728 SDRSVC - ok
12:30:26.0706 2728 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:30:26.0706 2728 secdrv - ok
12:30:26.0706 2728 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:30:26.0706 2728 seclogon - ok
12:30:26.0706 2728 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
12:30:26.0722 2728 SENS - ok
12:30:26.0722 2728 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:30:26.0722 2728 SensrSvc - ok
12:30:26.0722 2728 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:30:26.0722 2728 Serenum - ok
12:30:26.0722 2728 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:30:26.0722 2728 Serial - ok
12:30:26.0722 2728 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:30:26.0722 2728 sermouse - ok
12:30:26.0737 2728 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:30:26.0737 2728 SessionEnv - ok
12:30:26.0737 2728 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:30:26.0737 2728 sffdisk - ok
12:30:26.0737 2728 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:30:26.0737 2728 sffp_mmc - ok
12:30:26.0737 2728 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:30:26.0737 2728 sffp_sd - ok
12:30:26.0737 2728 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:30:26.0737 2728 sfloppy - ok
12:30:26.0753 2728 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:30:26.0753 2728 SharedAccess - ok
12:30:26.0753 2728 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:30:26.0753 2728 ShellHWDetection - ok
12:30:26.0753 2728 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
12:30:26.0753 2728 SiSRaid2 - ok
12:30:26.0768 2728 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:30:26.0768 2728 SiSRaid4 - ok
12:30:26.0768 2728 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:30:26.0768 2728 SkypeUpdate - ok
12:30:26.0768 2728 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:30:26.0768 2728 Smb - ok
12:30:26.0768 2728 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:30:26.0768 2728 SNMPTRAP - ok
12:30:26.0784 2728 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:30:26.0784 2728 spldr - ok
12:30:26.0784 2728 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:30:26.0784 2728 Spooler - ok
12:30:26.0815 2728 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:30:26.0831 2728 sppsvc - ok
12:30:26.0831 2728 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:30:26.0831 2728 sppuinotify - ok
12:30:26.0831 2728 [ D494597E8C665F2D515D9D24FA9616EF ] SQLAgent$AUTODESKVAULT C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.AUTODESKVAULT\MSSQL\Binn\SQLAGENT.EXE
12:30:26.0831 2728 SQLAgent$AUTODESKVAULT - ok
12:30:26.0846 2728 [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
12:30:26.0846 2728 SQLBrowser - ok
12:30:26.0846 2728 [ C298D989D717CB153702E397B6D9AAAD ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:30:26.0846 2728 SQLWriter - ok
12:30:26.0846 2728 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:30:26.0846 2728 srv - ok
12:30:26.0862 2728 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:30:26.0862 2728 srv2 - ok
12:30:26.0862 2728 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:30:26.0862 2728 srvnet - ok
12:30:26.0862 2728 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:30:26.0862 2728 SSDPSRV - ok
12:30:26.0878 2728 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:30:26.0878 2728 SstpSvc - ok
12:30:26.0878 2728 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
12:30:26.0878 2728 stexstor - ok
12:30:26.0878 2728 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:30:26.0878 2728 stisvc - ok
12:30:26.0893 2728 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
12:30:26.0893 2728 storflt - ok
12:30:26.0893 2728 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
12:30:26.0893 2728 StorSvc - ok
12:30:26.0893 2728 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:30:26.0893 2728 storvsc - ok
12:30:26.0893 2728 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:30:26.0893 2728 swenum - ok
12:30:26.0909 2728 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:30:26.0909 2728 swprv - ok
12:30:26.0924 2728 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:30:26.0924 2728 SysMain - ok
12:30:26.0940 2728 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:30:26.0940 2728 TabletInputService - ok
12:30:26.0940 2728 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:30:26.0940 2728 TapiSrv - ok
12:30:26.0940 2728 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:30:26.0940 2728 TBS - ok
12:30:26.0956 2728 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:30:26.0971 2728 Tcpip - ok
12:30:26.0987 2728 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:30:26.0987 2728 TCPIP6 - ok
12:30:26.0987 2728 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:30:26.0987 2728 tcpipreg - ok
12:30:27.0002 2728 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:30:27.0002 2728 TDPIPE - ok
12:30:27.0002 2728 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:30:27.0002 2728 TDTCP - ok
12:30:27.0002 2728 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:30:27.0002 2728 tdx - ok
12:30:27.0002 2728 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:30:27.0002 2728 TermDD - ok
12:30:27.0002 2728 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:30:27.0018 2728 TermService - ok
12:30:27.0018 2728 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:30:27.0018 2728 Themes - ok
12:30:27.0018 2728 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:30:27.0018 2728 THREADORDER - ok
12:30:27.0018 2728 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:30:27.0034 2728 TrkWks - ok
12:30:27.0034 2728 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:30:27.0034 2728 TrustedInstaller - ok
12:30:27.0034 2728 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:30:27.0034 2728 tssecsrv - ok
12:30:27.0034 2728 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:30:27.0034 2728 TsUsbFlt - ok
12:30:27.0034 2728 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
12:30:27.0034 2728 TsUsbGD - ok
12:30:27.0049 2728 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:30:27.0049 2728 tunnel - ok
12:30:27.0049 2728 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:30:27.0049 2728 uagp35 - ok
12:30:27.0049 2728 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:30:27.0049 2728 udfs - ok
12:30:27.0049 2728 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:30:27.0065 2728 UI0Detect - ok
12:30:27.0065 2728 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:30:27.0065 2728 uliagpkx - ok
12:30:27.0065 2728 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:30:27.0065 2728 umbus - ok
12:30:27.0065 2728 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
12:30:27.0065 2728 UmPass - ok
12:30:27.0065 2728 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
12:30:27.0065 2728 UmRdpService - ok
12:30:27.0080 2728 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:30:27.0080 2728 upnphost - ok
12:30:27.0080 2728 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:30:27.0080 2728 usbccgp - ok
12:30:27.0080 2728 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:30:27.0080 2728 usbcir - ok
12:30:27.0080 2728 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\drivers\usbehci.sys
12:30:27.0080 2728 usbehci - ok
12:30:27.0096 2728 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:30:27.0096 2728 usbhub - ok
12:30:27.0096 2728 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:30:27.0096 2728 usbohci - ok
12:30:27.0096 2728 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:30:27.0096 2728 usbprint - ok
12:30:27.0096 2728 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:30:27.0096 2728 USBSTOR - ok
12:30:27.0112 2728 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:30:27.0112 2728 usbuhci - ok
12:30:27.0112 2728 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:30:27.0112 2728 UxSms - ok
12:30:27.0112 2728 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
12:30:27.0112 2728 VaultSvc - ok
12:30:27.0112 2728 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:30:27.0112 2728 vdrvroot - ok
12:30:27.0112 2728 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:30:27.0127 2728 vds - ok
12:30:27.0127 2728 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:30:27.0127 2728 vga - ok
12:30:27.0127 2728 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:30:27.0127 2728 VgaSave - ok
12:30:27.0127 2728 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:30:27.0127 2728 vhdmp - ok
12:30:27.0127 2728 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:30:27.0127 2728 viaide - ok
12:30:27.0143 2728 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:30:27.0143 2728 vmbus - ok
12:30:27.0143 2728 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
12:30:27.0143 2728 VMBusHID - ok
12:30:27.0143 2728 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:30:27.0143 2728 volmgr - ok
12:30:27.0143 2728 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:30:27.0143 2728 volmgrx - ok
12:30:27.0158 2728 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:30:27.0158 2728 volsnap - ok
12:30:27.0158 2728 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:30:27.0158 2728 vsmraid - ok
12:30:27.0174 2728 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
12:30:27.0174 2728 VSS - ok
12:30:27.0174 2728 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:30:27.0174 2728 vwifibus - ok
12:30:27.0190 2728 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
12:30:27.0190 2728 W32Time - ok
12:30:27.0190 2728 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
12:30:27.0190 2728 W3SVC - ok
12:30:27.0205 2728 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:30:27.0205 2728 WacomPen - ok
12:30:27.0205 2728 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:30:27.0205 2728 WANARP - ok
12:30:27.0205 2728 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:30:27.0205 2728 Wanarpv6 - ok
12:30:27.0205 2728 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
12:30:27.0205 2728 WAS - ok
12:30:27.0221 2728 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:30:27.0221 2728 WatAdminSvc - ok
12:30:27.0236 2728 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
12:30:27.0252 2728 wbengine - ok
12:30:27.0252 2728 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:30:27.0252 2728 WbioSrvc - ok
12:30:27.0252 2728 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:30:27.0268 2728 wcncsvc - ok
12:30:27.0268 2728 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:30:27.0268 2728 WcsPlugInService - ok
12:30:27.0268 2728 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
12:30:27.0268 2728 Wd - ok
12:30:27.0268 2728 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:30:27.0283 2728 Wdf01000 - ok
12:30:27.0283 2728 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:30:27.0283 2728 WdiServiceHost - ok
12:30:27.0283 2728 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:30:27.0283 2728 WdiSystemHost - ok
12:30:27.0283 2728 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
12:30:27.0283 2728 WebClient - ok
12:30:27.0299 2728 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:30:27.0299 2728 Wecsvc - ok
12:30:27.0299 2728 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:30:27.0299 2728 wercplsupport - ok
12:30:27.0299 2728 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
12:30:27.0299 2728 WerSvc - ok
12:30:27.0314 2728 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:30:27.0314 2728 WfpLwf - ok
12:30:27.0314 2728 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:30:27.0314 2728 WIMMount - ok
12:30:27.0314 2728 WinDefend - ok
12:30:27.0314 2728 WinHttpAutoProxySvc - ok
12:30:27.0314 2728 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:30:27.0330 2728 Winmgmt - ok
12:30:27.0330 2728 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
12:30:27.0346 2728 WinRM - ok
12:30:27.0361 2728 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:30:27.0361 2728 WinUsb - ok
12:30:27.0361 2728 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
12:30:27.0377 2728 Wlansvc - ok
12:30:27.0377 2728 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
12:30:27.0377 2728 WmiAcpi - ok
12:30:27.0377 2728 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:30:27.0377 2728 wmiApSrv - ok
12:30:27.0377 2728 WMPNetworkSvc - ok
12:30:27.0377 2728 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:30:27.0377 2728 WPCSvc - ok
12:30:27.0392 2728 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:30:27.0392 2728 WPDBusEnum - ok
12:30:27.0392 2728 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:30:27.0392 2728 ws2ifsl - ok
12:30:27.0392 2728 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
12:30:27.0392 2728 wscsvc - ok
12:30:27.0392 2728 WSearch - ok
12:30:27.0408 2728 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
12:30:27.0424 2728 wuauserv - ok
12:30:27.0439 2728 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:30:27.0439 2728 WudfPf - ok
12:30:27.0439 2728 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:30:27.0439 2728 WUDFRd - ok
12:30:27.0439 2728 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:30:27.0439 2728 wudfsvc - ok
12:30:27.0439 2728 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
12:30:27.0455 2728 WwanSvc - ok
12:30:27.0455 2728 ================ Scan global ===============================
12:30:27.0455 2728 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:30:27.0455 2728 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
12:30:27.0455 2728 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
12:30:27.0470 2728 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:30:27.0470 2728 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:30:27.0470 2728 [Global] - ok
12:30:27.0470 2728 ================ Scan MBR ==================================
12:30:27.0470 2728 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:30:27.0486 2728 \Device\Harddisk0\DR0 - ok
12:30:27.0486 2728 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
12:30:27.0564 2728 \Device\Harddisk1\DR1 - ok
12:30:27.0564 2728 [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk2\DR2
12:30:30.0450 2728 \Device\Harddisk2\DR2 - ok
12:30:30.0450 2728 ================ Scan VBR ==================================
12:30:30.0450 2728 [ 80D81ED709C74BB85A9FFCB705C84A53 ] \Device\Harddisk0\DR0\Partition1
12:30:30.0450 2728 \Device\Harddisk0\DR0\Partition1 - ok
12:30:30.0450 2728 [ 7F9CAFF0476FCFB7ED5507DC49E070F5 ] \Device\Harddisk1\DR1\Partition1
12:30:30.0450 2728 \Device\Harddisk1\DR1\Partition1 - ok
12:30:30.0450 2728 [ 21803D1CA41AB65A844CBDB4E28408BD ] \Device\Harddisk1\DR1\Partition2
12:30:30.0450 2728 \Device\Harddisk1\DR1\Partition2 - ok
12:30:30.0466 2728 [ 69ECF0417C5B893715F41A4645AFED38 ] \Device\Harddisk2\DR2\Partition1
12:30:30.0466 2728 \Device\Harddisk2\DR2\Partition1 - ok
12:30:30.0466 2728 ============================================================
12:30:30.0466 2728 Scan finished
12:30:30.0466 2728 ============================================================
12:30:30.0466 4088 Detected object count: 1
12:30:30.0466 4088 Actual detected object count: 1
12:31:39.0116 4088 PortmapperService ( HiddenFile.Multi.Generic ) - skipped by user
12:31:39.0116 4088 PortmapperService ( HiddenFile.Multi.Generic ) - User select action: Skip
12:31:44.0825 1284 Deinitialize success

Příspěvekod **jaro3** » 11 úno 2014 18:45

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Prosím o kontrolu logu z HJT - zavírený PC Vyřešeno

Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Re: Prosím o kontrolu logu z HJT - zavírený PC

Kdo je online