VIRY.CZ

Pokud nedošlo ke zlepšení použijeme ještě Kasperskyho

Stáhni http://www.viry.cz/forum/viewtopic.php?f=29&t=58179/

Návod http://img32.imageshack.us/img32/7604/93809819.gif

Kaspersky nic nenalezl. Log je asi příliš velký a nelze ho vložit přímo do příspěvku. Mám ho vkládat nějakým jiným způsobem?

pokud není nález tak log nepotřebuji

snad už poslední scan dle kolegy

Naughty píše: Po stažení http://support.kaspersky.com/downloads/ ... killer.exe na plochu.

- spusť
- klik na volbu change parameters
- označ ve spodním okně obě možnosti (klik do čtverečku) -> OK
- klik na Start scan
- po ukončení kontroly objeví se okno, kde zkontroluj, zda se nachází všude volby Skip
- pokud ano klik na Continue
- pokud ne, v řádcích kde není uprav na Skip, nyní klik na Continue
- na disku C se objeví textový soubor majicí přibližně tvar TDSSKiller.2.6.2.0_27.09.2011_10.16.46_log
- obsah logu vlož do příspěvku.

20:00:06.0953 2028 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:00:32.0328 2028 ============================================================
20:00:32.0328 2028 Current date / time: 2014/04/12 20:00:32.0328
20:00:32.0328 2028 SystemInfo:
20:00:32.0328 2028
20:00:32.0328 2028 OS Version: 5.1.2600 ServicePack: 3.0
20:00:32.0328 2028 Product type: Workstation
20:00:32.0328 2028 ComputerName: PELVIS-NBK
20:00:32.0328 2028 UserName: Administrator
20:00:32.0328 2028 Windows directory: C:\WINDOWS
20:00:32.0328 2028 System windows directory: C:\WINDOWS
20:00:32.0328 2028 Processor architecture: Intel x86
20:00:32.0328 2028 Number of processors: 1
20:00:32.0328 2028 Page size: 0x1000
20:00:32.0328 2028 Boot type: Normal boot
20:00:32.0328 2028 ============================================================
20:00:35.0953 2028 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
20:00:36.0046 2028 Drive \Device\Harddisk1\DR4 - Size: 0x15D50D00000 (1397.26 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:00:36.0359 2028 ============================================================
20:00:36.0359 2028 \Device\Harddisk0\DR0:
20:00:36.0359 2028 MBR partitions:
20:00:36.0359 2028 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x5DE2BF, BlocksNum 0x476CEB6
20:00:36.0375 2028 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4D4B1B4, BlocksNum 0x47C330D
20:00:36.0375 2028 \Device\Harddisk1\DR4:
20:00:36.0375 2028 MBR partitions:
20:00:36.0375 2028 \Device\Harddisk1\DR4\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAEA86000
20:00:36.0375 2028 ============================================================
20:00:36.0421 2028 C: <-> \Device\Harddisk0\DR0\Partition1
20:00:36.0468 2028 D: <-> \Device\Harddisk0\DR0\Partition2
20:00:36.0484 2028 F: <-> \Device\Harddisk1\DR4\Partition1
20:00:36.0500 2028 ============================================================
20:00:36.0500 2028 Initialize success
20:00:36.0500 2028 ============================================================
20:01:18.0953 2936 ============================================================
20:01:18.0953 2936 Scan started
20:01:18.0953 2936 Mode: Manual; SigCheck; TDLFS;
20:01:18.0953 2936 ============================================================
20:01:20.0484 2936 ================ Scan system memory ========================
20:01:22.0156 2936 System memory - ok
20:01:22.0156 2936 ================ Scan services =============================
20:01:22.0296 2936 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 97437029 C:\WINDOWS\system32\DRIVERS\97437029.sys
20:01:23.0062 2936 97437029 - ok
20:01:23.0062 2936 Abiosdsk - ok
20:01:23.0078 2936 abp480n5 - ok
20:01:23.0140 2936 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:01:26.0796 2936 ACPI - ok
20:01:26.0843 2936 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
20:01:27.0078 2936 ACPIEC - ok
20:01:27.0093 2936 adpu160m - ok
20:01:27.0125 2936 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
20:01:27.0312 2936 aec - ok
20:01:27.0437 2936 [ 023867B6606FBABCDD52E089C4A507DA ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
20:01:27.0468 2936 AegisP ( UnsignedFile.Multi.Generic ) - warning
20:01:27.0468 2936 AegisP - detected UnsignedFile.Multi.Generic (1)
20:01:27.0546 2936 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:01:27.0640 2936 AFD - ok
20:01:27.0640 2936 Aha154x - ok
20:01:27.0656 2936 aic78u2 - ok
20:01:27.0671 2936 aic78xx - ok
20:01:27.0703 2936 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
20:01:27.0843 2936 Alerter - ok
20:01:27.0875 2936 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
20:01:28.0000 2936 ALG - ok
20:01:28.0015 2936 AliIde - ok
20:01:28.0015 2936 amsint - ok
20:01:28.0234 2936 [ C10D0FAE427EA464EDEA2EE5DC40F056 ] anbmService C:\Acer\eManager\anbmServ.exe
20:01:28.0375 2936 anbmService ( UnsignedFile.Multi.Generic ) - warning
20:01:28.0375 2936 anbmService - detected UnsignedFile.Multi.Generic (1)
20:01:28.0390 2936 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:01:28.0625 2936 AppMgmt - ok
20:01:28.0671 2936 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:01:28.0812 2936 Arp1394 - ok
20:01:28.0828 2936 asc - ok
20:01:28.0828 2936 asc3350p - ok
20:01:28.0843 2936 asc3550 - ok
20:01:28.0937 2936 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
20:01:29.0015 2936 aspnet_state - ok
20:01:29.0031 2936 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:01:29.0171 2936 AsyncMac - ok
20:01:29.0187 2936 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
20:01:29.0343 2936 atapi - ok
20:01:29.0359 2936 Atdisk - ok
20:01:29.0421 2936 [ 1F54534CD5F9868C4F7CFE7E6914E5CD ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
20:01:29.0671 2936 Ati HotKey Poller - ok
20:01:29.0750 2936 [ 205A9E5C6D3B60659F0DC40542A8B29F ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
20:01:29.0859 2936 ati2mtag - ok
20:01:29.0906 2936 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:01:30.0046 2936 Atmarpc - ok
20:01:30.0093 2936 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
20:01:30.0234 2936 AudioSrv - ok
20:01:30.0265 2936 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
20:01:30.0390 2936 audstub - ok
20:01:30.0515 2936 [ B9543B0C771FEAB7CA095303007A159C ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
20:01:30.0718 2936 b57w2k - ok
20:01:30.0812 2936 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:01:30.0968 2936 Beep - ok
20:01:31.0328 2936 [ 0305AF513F52CCCD0716002EC06AC2AA ] BHDrvx86 C:\Documents and Settings\All Users\Data aplikací\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\BASHDefs\20140319.011\BHDrvx86.sys
20:01:31.0406 2936 BHDrvx86 - ok
20:01:31.0484 2936 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
20:01:31.0671 2936 BITS - ok
20:01:31.0734 2936 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
20:01:31.0843 2936 Browser - ok
20:01:31.0890 2936 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
20:01:32.0109 2936 BthEnum - ok
20:01:32.0140 2936 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\WINDOWS\system32\DRIVERS\bthmodem.sys
20:01:32.0281 2936 BTHMODEM - ok
20:01:32.0296 2936 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
20:01:32.0421 2936 BthPan - ok
20:01:32.0484 2936 [ F338662A6C1FC11DD9508F6DFF2C06A2 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
20:01:32.0546 2936 BTHPORT - ok
20:01:32.0578 2936 [ 70CA4B3F634C9DCA200832F8DA76E009 ] BthServ C:\WINDOWS\System32\bthserv.dll
20:01:32.0703 2936 BthServ - ok
20:01:32.0734 2936 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
20:01:32.0906 2936 BTHUSB - ok
20:01:32.0921 2936 [ BAA90D983F77759FC70C65A1CE3D3566 ] CAMCAUD C:\WINDOWS\system32\drivers\camcaud.sys
20:01:33.0046 2936 CAMCAUD - ok
20:01:33.0078 2936 [ 90D9C324DF48BB8E3024E79F5C181784 ] CAMCHALA C:\WINDOWS\system32\drivers\camchal.sys
20:01:33.0125 2936 CAMCHALA - ok
20:01:33.0156 2936 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
20:01:33.0328 2936 cbidf2k - ok
20:01:33.0390 2936 [ 1277AD8F053CC60C17CAFAB411F3CF40 ] ccSettings_{29AC8EDB-F22A-46D3-9D66-4244585EAD0A} C:\WINDOWS\system32\Drivers\SEP\0C0107DF\07DF.105\x86\ccSetx86.sys
20:01:33.0421 2936 ccSettings_{29AC8EDB-F22A-46D3-9D66-4244585EAD0A} - ok
20:01:33.0437 2936 cd20xrnt - ok
20:01:33.0468 2936 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
20:01:33.0609 2936 Cdaudio - ok
20:01:33.0734 2936 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
20:01:33.0921 2936 Cdfs - ok
20:01:33.0937 2936 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:01:34.0062 2936 Cdrom - ok
20:01:34.0078 2936 Changer - ok
20:01:34.0109 2936 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
20:01:34.0250 2936 CiSvc - ok
20:01:34.0296 2936 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
20:01:34.0437 2936 ClipSrv - ok
20:01:34.0531 2936 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:01:34.0718 2936 clr_optimization_v2.0.50727_32 - ok
20:01:34.0781 2936 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:01:34.0921 2936 CmBatt - ok
20:01:34.0937 2936 CmdIde - ok
20:01:34.0937 2936 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
20:01:35.0078 2936 Compbatt - ok
20:01:35.0093 2936 COMSysApp - ok
20:01:35.0109 2936 Cpqarray - ok
20:01:35.0203 2936 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
20:01:35.0328 2936 CryptSvc - ok
20:01:35.0343 2936 dac2w2k - ok
20:01:35.0343 2936 dac960nt - ok
20:01:35.0406 2936 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:01:35.0531 2936 DcomLaunch - ok
20:01:35.0578 2936 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
20:01:35.0703 2936 Dhcp - ok
20:01:35.0734 2936 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
20:01:35.0921 2936 Disk - ok
20:01:35.0953 2936 [ 08D30AF92C270F2E76787C81589DBAD6 ] DKbFltr C:\WINDOWS\system32\Drivers\DKbFltr.sys
20:01:36.0015 2936 DKbFltr - ok
20:01:36.0015 2936 dmadmin - ok
20:01:36.0093 2936 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
20:01:36.0312 2936 dmboot - ok
20:01:36.0343 2936 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
20:01:36.0484 2936 dmio - ok
20:01:36.0546 2936 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
20:01:36.0703 2936 dmload - ok
20:01:36.0796 2936 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
20:01:36.0937 2936 dmserver - ok
20:01:36.0968 2936 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
20:01:37.0093 2936 DMusic - ok
20:01:37.0125 2936 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:01:37.0218 2936 Dnscache - ok
20:01:37.0265 2936 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
20:01:37.0406 2936 Dot3svc - ok
20:01:37.0421 2936 dpti2o - ok
20:01:37.0468 2936 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:01:37.0593 2936 drmkaud - ok
20:01:37.0687 2936 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
20:01:37.0843 2936 EapHost - ok
20:01:38.0046 2936 [ 08EE8892FD19A6A951F40254E97F6EF3 ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
20:01:38.0078 2936 eeCtrl - ok
20:01:38.0125 2936 [ D68564FCFBDFC04280CDBBB37CF7EF7F ] EpmPsd C:\WINDOWS\system32\drivers\epm-psd.sys
20:01:38.0140 2936 EpmPsd ( UnsignedFile.Multi.Generic ) - warning
20:01:38.0140 2936 EpmPsd - detected UnsignedFile.Multi.Generic (1)
20:01:38.0187 2936 [ B2D71BA438701B5F0368B958BEA2DC62 ] EpmShd C:\WINDOWS\system32\drivers\epm-shd.sys
20:01:38.0203 2936 EpmShd ( UnsignedFile.Multi.Generic ) - warning
20:01:38.0203 2936 EpmShd - detected UnsignedFile.Multi.Generic (1)
20:01:38.0218 2936 [ 050D136C61DBCF36C257206ADBBEC009 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
20:01:38.0250 2936 EraserUtilRebootDrv - ok
20:01:38.0265 2936 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
20:01:38.0406 2936 ERSvc - ok
20:01:38.0500 2936 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
20:01:38.0515 2936 Eventlog - ok
20:01:38.0562 2936 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
20:01:38.0593 2936 EventSystem - ok
20:01:38.0640 2936 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys
20:01:38.0703 2936 ew_hwusbdev - ok
20:01:38.0718 2936 [ 08003548A6E614261401DCB57913565A ] ew_usbenumfilter C:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys
20:01:38.0765 2936 ew_usbenumfilter - ok
20:01:38.0812 2936 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:01:38.0937 2936 Fastfat - ok
20:01:38.0984 2936 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:01:39.0093 2936 FastUserSwitchingCompatibility - ok
20:01:39.0140 2936 [ 2CD14C70D1D81AF054AA5ED8024DCAE6 ] Fax C:\WINDOWS\system32\fxssvc.exe
20:01:39.0312 2936 Fax - ok
20:01:39.0343 2936 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
20:01:39.0468 2936 Fdc - ok
20:01:39.0515 2936 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:01:39.0656 2936 Fips - ok
20:01:39.0687 2936 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
20:01:39.0796 2936 Flpydisk - ok
20:01:39.0859 2936 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
20:01:39.0984 2936 FltMgr - ok
20:01:40.0046 2936 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:01:40.0078 2936 FontCache3.0.0.0 - ok
20:01:40.0093 2936 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:01:40.0250 2936 Fs_Rec - ok
20:01:40.0265 2936 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:01:40.0421 2936 Ftdisk - ok
20:01:40.0484 2936 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:01:40.0609 2936 Gpc - ok
20:01:40.0703 2936 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:01:40.0921 2936 helpsvc - ok
20:01:40.0984 2936 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:01:41.0140 2936 HidServ - ok
20:01:41.0156 2936 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:01:41.0171 2936 HidUsb ( UnsignedFile.Multi.Generic ) - warning
20:01:41.0171 2936 HidUsb - detected UnsignedFile.Multi.Generic (1)
20:01:41.0218 2936 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
20:01:41.0359 2936 hkmsvc - ok
20:01:41.0375 2936 hpn - ok
20:01:41.0468 2936 [ E7BCC7EC37DD2DD36A39BB9AC87A897B ] HSFHWICH C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
20:01:41.0593 2936 HSFHWICH - ok
20:01:41.0671 2936 [ 822C60F2ABEE73A0E089230D94064F39 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
20:01:41.0812 2936 HSF_DPV - ok
20:01:41.0843 2936 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:01:41.0890 2936 HTTP - ok
20:01:41.0937 2936 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:01:42.0078 2936 HTTPFilter - ok
20:01:42.0093 2936 [ 8A670E1FC2B308C6023E009728CE1B16 ] huawei_cdcacm C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys
20:01:42.0234 2936 huawei_cdcacm - ok
20:01:42.0234 2936 [ 69E874A3D4A58222838DE3B18F508166 ] huawei_cdcecm C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys
20:01:42.0281 2936 huawei_cdcecm - ok
20:01:42.0312 2936 [ 4F3C8140A1725FBAAA786A351AF13437 ] huawei_enumerator C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys
20:01:42.0375 2936 huawei_enumerator - ok
20:01:42.0375 2936 [ E43FBF827B32F11BF4E33FE67C52FE0C ] huawei_ext_ctrl C:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys
20:01:42.0437 2936 huawei_ext_ctrl - ok
20:01:42.0484 2936 [ 8ABB5F714050209E5C7537DE18F7FB7B ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
20:01:42.0578 2936 hwdatacard - ok
20:01:42.0687 2936 [ 5EF3427AE503B5C03A48F7C9FF458B69 ] HWDeviceService.exe C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe
20:01:42.0703 2936 HWDeviceService.exe - ok
20:01:42.0718 2936 i2omgmt - ok
20:01:42.0734 2936 i2omp - ok
20:01:42.0843 2936 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:01:43.0031 2936 i8042prt - ok
20:01:43.0093 2936 [ AFBF1B43CC830BDC03B582003DA439C2 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:01:43.0218 2936 ialm - ok
20:01:43.0296 2936 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:01:43.0375 2936 idsvc - ok
20:01:43.0515 2936 [ 67E770480F9777BBA8C5307BE4F69EF0 ] IDSxpx86 C:\Documents and Settings\All Users\Data aplikací\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\IPSDefs\20140410.012\IDSxpx86.sys
20:01:43.0546 2936 IDSxpx86 - ok
20:01:43.0640 2936 [ 07AD42303519A955560B5A19FE20B68F ] IISADMIN C:\WINDOWS\system32\inetsrv\inetinfo.exe
20:01:43.0781 2936 IISADMIN - ok
20:01:43.0812 2936 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:01:43.0953 2936 Imapi - ok
20:01:44.0000 2936 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:01:44.0140 2936 ImapiService - ok
20:01:44.0156 2936 ini910u - ok
20:01:44.0265 2936 [ 57D928E548B38502ABBA7A77A6EB7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:01:44.0421 2936 IntelIde - ok
20:01:44.0468 2936 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:01:44.0593 2936 intelppm - ok
20:01:44.0625 2936 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:01:44.0750 2936 Ip6Fw - ok
20:01:44.0812 2936 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:01:44.0953 2936 IpFilterDriver - ok
20:01:45.0062 2936 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:01:45.0203 2936 IpInIp - ok
20:01:45.0250 2936 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:01:45.0375 2936 IpNat - ok
20:01:45.0406 2936 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:01:45.0531 2936 IPSec - ok
20:01:45.0578 2936 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
20:01:45.0718 2936 irda - ok
20:01:45.0781 2936 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:01:45.0937 2936 IRENUM - ok
20:01:45.0968 2936 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
20:01:46.0125 2936 Irmon - ok
20:01:46.0140 2936 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:01:46.0296 2936 isapnp - ok
20:01:46.0328 2936 [ FE8300320281D658A7854D5CFC02A63F ] k750bus C:\WINDOWS\system32\DRIVERS\k750bus.sys
20:01:46.0375 2936 k750bus - ok
20:01:46.0390 2936 [ F44521F63C0C00364FA3D59DB980DE6A ] k750mdfl C:\WINDOWS\system32\DRIVERS\k750mdfl.sys
20:01:46.0687 2936 k750mdfl - ok
20:01:46.0718 2936 [ E93323C3ED5E8923A177740A973C27B2 ] k750mdm C:\WINDOWS\system32\DRIVERS\k750mdm.sys
20:01:46.0796 2936 k750mdm - ok
20:01:46.0828 2936 [ 9D5F5A70CA0B7C428EFCD73DB50E6AC7 ] k750mgmt C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
20:01:46.0859 2936 k750mgmt - ok
20:01:46.0890 2936 [ 81CA2D57B2C14F76F4BA80846784BB3D ] k750obex C:\WINDOWS\system32\DRIVERS\k750obex.sys
20:01:46.0937 2936 k750obex - ok
20:01:46.0968 2936 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:01:47.0093 2936 Kbdclass - ok
20:01:47.0125 2936 [ 065B5A83AA78C0C7047BF22E0AB5C821 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:01:47.0250 2936 kbdhid - ok
20:01:47.0281 2936 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:01:47.0453 2936 kmixer - ok
20:01:47.0531 2936 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:01:47.0625 2936 KSecDD - ok
20:01:47.0671 2936 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:01:47.0750 2936 lanmanserver - ok
20:01:47.0843 2936 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:01:47.0937 2936 lanmanworkstation - ok
20:01:47.0937 2936 lbrtfdc - ok
20:01:48.0000 2936 [ 3FA98339E8D9E007726BE62F231E2015 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
20:01:48.0015 2936 LHidFilt - ok
20:01:48.0062 2936 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:01:48.0203 2936 LmHosts - ok
20:01:48.0203 2936 [ F259F758E04D8FB8D48C6CDBE45223E8 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
20:01:48.0234 2936 LMouFilt - ok
20:01:48.0281 2936 [ 495CB30967059F48F75F56AF85137BD2 ] LogWatch C:\WINDOWS\LogWatNT.exe
20:01:48.0421 2936 LogWatch ( UnsignedFile.Multi.Generic ) - warning
20:01:48.0421 2936 LogWatch - detected UnsignedFile.Multi.Generic (1)
20:01:48.0437 2936 [ CA26E46EC8891058C9E10363DF4E4650 ] LUsbFilt C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
20:01:48.0546 2936 LUsbFilt - ok
20:01:48.0703 2936 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
20:01:48.0734 2936 MDM - ok
20:01:48.0796 2936 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:01:48.0843 2936 mdmxsdk - ok
20:01:48.0875 2936 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:01:49.0015 2936 Messenger - ok
20:01:49.0046 2936 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:01:49.0203 2936 mnmdd - ok
20:01:49.0234 2936 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:01:49.0359 2936 mnmsrvc - ok
20:01:49.0406 2936 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:01:49.0546 2936 Modem - ok
20:01:49.0593 2936 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:01:49.0734 2936 Mouclass - ok
20:01:49.0781 2936 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:01:49.0968 2936 mouhid - ok
20:01:50.0000 2936 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:01:50.0156 2936 MountMgr - ok
20:01:50.0218 2936 [ AEE4E9CC59CDEB55B1ECB0E596E796BE ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:01:50.0250 2936 MozillaMaintenance - ok
20:01:50.0250 2936 mraid35x - ok
20:01:50.0296 2936 [ E3F17E1EA5256709D4E97EF0DA04B3C9 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:01:50.0359 2936 MRxDAV - ok
20:01:50.0406 2936 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:01:50.0484 2936 MRxSmb - ok
20:01:50.0562 2936 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
20:01:50.0687 2936 MSDTC - ok
20:01:50.0703 2936 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:01:50.0828 2936 Msfs - ok
20:01:50.0828 2936 MSIServer - ok
20:01:50.0875 2936 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:01:50.0984 2936 MSKSSRV - ok
20:01:51.0000 2936 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:01:51.0156 2936 MSPCLOCK - ok
20:01:51.0187 2936 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:01:51.0328 2936 MSPQM - ok
20:01:51.0343 2936 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:01:51.0484 2936 mssmbios - ok
20:01:51.0484 2936 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:01:51.0656 2936 Mup - ok
20:01:51.0703 2936 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
20:01:51.0859 2936 napagent - ok
20:01:51.0968 2936 [ 81E928EE3751FAF725C87CC17726C05D ] NAVENG C:\Documents and Settings\All Users\Data aplikací\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\VirusDefs\20140411.018\NAVENG.SYS
20:01:51.0984 2936 NAVENG - ok
20:01:52.0078 2936 [ E0C39FA6C76AE8ED53ABF043F35ECDFF ] NAVEX15 C:\Documents and Settings\All Users\Data aplikací\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\VirusDefs\20140411.018\NAVEX15.SYS
20:01:52.0187 2936 NAVEX15 - ok
20:01:52.0250 2936 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:01:52.0390 2936 NDIS - ok
20:01:52.0421 2936 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:01:52.0562 2936 NdisTapi - ok
20:01:52.0625 2936 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:01:52.0750 2936 Ndisuio - ok
20:01:52.0781 2936 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:01:52.0906 2936 NdisWan - ok
20:01:53.0000 2936 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:01:53.0062 2936 NDProxy - ok
20:01:53.0093 2936 [ 90EB97C8DBF11BB0016C51946AC5ECD6 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
20:01:53.0093 2936 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
20:01:53.0093 2936 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
20:01:53.0171 2936 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:01:53.0281 2936 NetBIOS - ok
20:01:53.0328 2936 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:01:53.0468 2936 NetBT - ok
20:01:53.0531 2936 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
20:01:53.0656 2936 NetDDE - ok
20:01:53.0656 2936 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:01:53.0796 2936 NetDDEdsdm - ok
20:01:53.0843 2936 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:01:53.0968 2936 Netlogon - ok
20:01:54.0015 2936 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
20:01:54.0156 2936 Netman - ok
20:01:54.0187 2936 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:01:54.0234 2936 NetTcpPortSharing - ok
20:01:54.0250 2936 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:01:54.0390 2936 NIC1394 - ok
20:01:54.0453 2936 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
20:01:54.0546 2936 Nla - ok
20:01:54.0593 2936 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:01:54.0703 2936 Npfs - ok
20:01:54.0734 2936 [ 2ADC0CA9945C65284B3D19BC18765974 ] NSCIRDA C:\WINDOWS\system32\DRIVERS\nscirda.sys
20:01:54.0859 2936 NSCIRDA - ok
20:01:54.0890 2936 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:01:55.0062 2936 Ntfs - ok
20:01:55.0093 2936 [ 7F1C1F78D709C4A54CBB46EDE7E0B48D ] NTIDrvr C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
20:01:55.0140 2936 NTIDrvr ( UnsignedFile.Multi.Generic ) - warning
20:01:55.0140 2936 NTIDrvr - detected UnsignedFile.Multi.Generic (1)
20:01:55.0171 2936 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:01:55.0328 2936 NtLmSsp - ok
20:01:55.0359 2936 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:01:55.0546 2936 NtmsSvc - ok
20:01:55.0578 2936 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
20:01:55.0703 2936 Null - ok
20:01:55.0734 2936 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:01:55.0937 2936 NwlnkFlt - ok
20:01:55.0968 2936 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:01:56.0125 2936 NwlnkFwd - ok
20:01:56.0281 2936 [ 0191F314838056CF1A5A7BDE4346812F ] O2 Internet. RunOuc C:\Program Files\O2 Internet\UpdateDog\ouc.exe
20:01:56.0343 2936 O2 Internet. RunOuc - ok
20:01:56.0390 2936 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:01:56.0546 2936 ohci1394 - ok
20:01:56.0578 2936 [ 3245BEE5176697FAF0744A2E1288DC77 ] osanbm C:\WINDOWS\system32\drivers\osanbm.sys
20:01:56.0609 2936 osanbm ( UnsignedFile.Multi.Generic ) - warning
20:01:56.0609 2936 osanbm - detected UnsignedFile.Multi.Generic (1)
20:01:56.0656 2936 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:01:56.0671 2936 ose - ok
20:01:56.0687 2936 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:01:56.0828 2936 Parport - ok
20:01:56.0843 2936 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:01:56.0968 2936 PartMgr - ok
20:01:57.0000 2936 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:01:57.0140 2936 ParVdm - ok
20:01:57.0156 2936 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:01:57.0328 2936 PCI - ok
20:01:57.0343 2936 PCIDump - ok
20:01:57.0359 2936 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:01:57.0515 2936 PCIIde - ok
20:01:57.0546 2936 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
20:01:57.0656 2936 Pcmcia - ok
20:01:57.0671 2936 PDCOMP - ok
20:01:57.0671 2936 PDFRAME - ok
20:01:57.0687 2936 PDRELI - ok
20:01:57.0687 2936 PDRFRAME - ok
20:01:57.0703 2936 perc2 - ok
20:01:57.0718 2936 perc2hib - ok
20:01:57.0781 2936 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
20:01:57.0796 2936 PlugPlay - ok
20:01:57.0843 2936 [ F0EFAF6000E9FCBD77F769D527CE5F9D ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
20:01:57.0890 2936 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
20:01:57.0890 2936 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
20:01:57.0906 2936 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:01:58.0046 2936 PolicyAgent - ok
20:01:58.0125 2936 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:01:58.0250 2936 PptpMiniport - ok
20:01:58.0265 2936 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:01:58.0390 2936 ProtectedStorage - ok
20:01:58.0437 2936 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:01:58.0609 2936 Ptilink - ok
20:01:58.0625 2936 ql1080 - ok
20:01:58.0640 2936 Ql10wnt - ok
20:01:58.0656 2936 ql12160 - ok
20:01:58.0656 2936 ql1240 - ok
20:01:58.0671 2936 ql1280 - ok
20:01:58.0687 2936 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:01:58.0843 2936 RasAcd - ok
20:01:58.0890 2936 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:01:59.0031 2936 RasAuto - ok
20:01:59.0062 2936 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
20:01:59.0140 2936 Rasirda - ok
20:01:59.0156 2936 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:01:59.0281 2936 Rasl2tp - ok
20:01:59.0328 2936 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
20:01:59.0515 2936 RasMan - ok
20:01:59.0562 2936 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:01:59.0703 2936 RasPppoe - ok
20:01:59.0718 2936 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:01:59.0875 2936 Raspti - ok
20:01:59.0906 2936 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:02:00.0031 2936 Rdbss - ok
20:02:00.0062 2936 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:02:00.0218 2936 RDPCDD - ok
20:02:00.0250 2936 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:02:00.0375 2936 rdpdr - ok
20:02:00.0406 2936 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:02:00.0562 2936 RDPWD - ok
20:02:00.0609 2936 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:02:00.0750 2936 RDSessMgr - ok
20:02:00.0796 2936 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:02:00.0953 2936 redbook - ok
20:02:01.0015 2936 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:02:01.0156 2936 RemoteAccess - ok
20:02:01.0187 2936 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:02:01.0328 2936 RemoteRegistry - ok
20:02:01.0359 2936 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
20:02:01.0515 2936 RFCOMM - ok
20:02:01.0546 2936 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
20:02:01.0671 2936 RpcLocator - ok
20:02:01.0703 2936 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
20:02:01.0750 2936 RpcSs - ok
20:02:01.0828 2936 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:02:01.0984 2936 RSVP - ok
20:02:02.0078 2936 [ F5E217E0A7729FD6F48894665B6F98D5 ] RTL8192cu C:\WINDOWS\system32\DRIVERS\rtwlanu.sys
20:02:02.0171 2936 RTL8192cu - ok
20:02:02.0187 2936 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
20:02:02.0312 2936 SamSs - ok
20:02:02.0328 2936 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:02:02.0468 2936 SCardSvr - ok
20:02:02.0531 2936 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:02:02.0671 2936 Schedule - ok
20:02:02.0703 2936 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:02:02.0906 2936 Secdrv - ok
20:02:02.0953 2936 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
20:02:03.0109 2936 seclogon - ok
20:02:03.0125 2936 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
20:02:03.0250 2936 SENS - ok
20:02:03.0375 2936 [ 59BAE636BD55295307296093FADEC771 ] SepMasterService C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\ccSvcHst.exe
20:02:03.0421 2936 SepMasterService - ok
20:02:03.0437 2936 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
20:02:03.0593 2936 serenum - ok
20:02:03.0609 2936 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
20:02:03.0734 2936 Serial - ok
20:02:03.0781 2936 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:02:03.0906 2936 Sfloppy - ok
20:02:03.0953 2936 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:02:04.0093 2936 SharedAccess - ok
20:02:04.0125 2936 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:02:04.0171 2936 ShellHWDetection - ok
20:02:04.0171 2936 Simbad - ok
20:02:04.0265 2936 [ 0F2E1924FEC5B28B6F569BB03550C467 ] SmcService C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\Smc.exe
20:02:04.0468 2936 SmcService - ok
20:02:04.0531 2936 [ 1CAF706AB58D0E369596C8FB04A81521 ] SNAC C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\snac.exe
20:02:04.0562 2936 SNAC - ok
20:02:04.0578 2936 Sparrow - ok
20:02:04.0609 2936 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:02:04.0765 2936 splitter - ok
20:02:04.0812 2936 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:02:04.0875 2936 Spooler - ok
20:02:04.0906 2936 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:02:05.0062 2936 sr - ok
20:02:05.0109 2936 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
20:02:05.0265 2936 srservice - ok
20:02:05.0328 2936 [ B00E6A7D0D7007A03400B9CB5F492DF0 ] SRTSP C:\WINDOWS\system32\Drivers\SEP\0C0107DF\07DF.105\x86\SRTSP.SYS
20:02:05.0359 2936 SRTSP - ok
20:02:05.0390 2936 [ 21AC3AE81E8263061624C4ED3B11509A ] SRTSPX C:\WINDOWS\system32\Drivers\SEP\0C0107DF\07DF.105\x86\SRTSPX.SYS
20:02:05.0406 2936 SRTSPX - ok
20:02:05.0484 2936 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:02:05.0546 2936 Srv - ok
20:02:05.0593 2936 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:02:05.0718 2936 SSDPSRV - ok
20:02:05.0812 2936 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:02:05.0953 2936 stisvc - ok
20:02:06.0000 2936 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:02:06.0171 2936 swenum - ok
20:02:06.0203 2936 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:02:06.0343 2936 swmidi - ok
20:02:06.0359 2936 SwPrv - ok
20:02:06.0390 2936 [ E220D2B2A12CE9DFFE326E62E823B657 ] SyDvCtrl C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\SyDvCtrl32.sys
20:02:06.0406 2936 SyDvCtrl - ok
20:02:06.0421 2936 symc810 - ok
20:02:06.0437 2936 symc8xx - ok
20:02:06.0515 2936 [ 0004CCDD046A873CFF06427B06BE0B28 ] SymDS C:\WINDOWS\system32\Drivers\SEP\0C0107DF\07DF.105\x86\SYMDS.SYS
20:02:06.0546 2936 SymDS - ok
20:02:06.0640 2936 [ 28C5FAFA7FD1C522B8DCD59694D39412 ] SymEFA C:\WINDOWS\system32\Drivers\SEP\0C0107DF\07DF.105\x86\SYMEFA.SYS
20:02:06.0703 2936 SymEFA - ok
20:02:06.0812 2936 [ F50D81D3E0C7A353F205562B89CD06D6 ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
20:02:06.0828 2936 SymEvent - ok
20:02:06.0875 2936 [ 8C9B9036E301A9965CF15BEC91C58A12 ] SymIRON C:\WINDOWS\system32\Drivers\SEP\0C0107DF\07DF.105\x86\Ironx86.SYS
20:02:06.0890 2936 SymIRON - ok
20:02:06.0937 2936 [ EC979002EBA25C9D109B2FE0E03457DA ] SYMTDI C:\WINDOWS\system32\Drivers\SEP\0C0107DF\07DF.105\x86\SYMTDI.SYS
20:02:06.0968 2936 SYMTDI - ok
20:02:06.0984 2936 sym_hi - ok
20:02:06.0984 2936 sym_u3 - ok
20:02:07.0015 2936 [ EB363DDFBE8B6D51003CCAB29D93D744 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
20:02:07.0093 2936 SynTP - ok
20:02:07.0125 2936 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:02:07.0265 2936 sysaudio - ok
20:02:07.0328 2936 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:02:07.0468 2936 SysmonLog - ok
20:02:07.0500 2936 [ 0F2F5549E46DFBB8A406F93E1BA1D0ED ] SysPlant C:\WINDOWS\system32\Drivers\SysPlant.sys
20:02:07.0531 2936 SysPlant - ok
20:02:07.0562 2936 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:02:07.0718 2936 TapiSrv - ok
20:02:07.0828 2936 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:02:07.0953 2936 Tcpip - ok
20:02:08.0031 2936 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:02:08.0156 2936 TDPIPE - ok
20:02:08.0187 2936 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:02:08.0312 2936 TDTCP - ok
20:02:08.0359 2936 [ BA1C7AB440F29A4632CF5ECF16AB50CE ] Teefer2 C:\WINDOWS\system32\DRIVERS\teefer.sys
20:02:08.0375 2936 Teefer2 - ok
20:02:08.0406 2936 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:02:08.0531 2936 TermDD - ok
20:02:08.0578 2936 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
20:02:08.0734 2936 TermService - ok
20:02:08.0812 2936 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
20:02:08.0859 2936 Themes - ok
20:02:08.0875 2936 [ 8778A553003A3D37A550A1F9CFF6BE28 ] tifm21 C:\WINDOWS\system32\drivers\tifm21.sys
20:02:08.0937 2936 tifm21 - ok
20:02:08.0968 2936 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:02:09.0109 2936 TlntSvr - ok
20:02:09.0125 2936 TosIde - ok
20:02:09.0156 2936 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:02:09.0281 2936 TrkWks - ok
20:02:09.0328 2936 [ 3147063508EAE931BECC01573C204FAC ] TVicPort C:\WINDOWS\system32\drivers\TVicPort.sys
20:02:09.0453 2936 TVicPort - ok
20:02:09.0484 2936 [ E0C67BE430C6DE490D6CCAECFA071F9E ] UBHelper C:\WINDOWS\system32\drivers\UBHelper.sys
20:02:09.0515 2936 UBHelper ( UnsignedFile.Multi.Generic ) - warning
20:02:09.0515 2936 UBHelper - detected UnsignedFile.Multi.Generic (1)
20:02:09.0562 2936 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:02:09.0796 2936 Udfs - ok
20:02:09.0812 2936 ultra - ok
20:02:09.0859 2936 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:02:10.0046 2936 Update - ok
20:02:10.0093 2936 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
20:02:10.0218 2936 upnphost - ok
20:02:10.0250 2936 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
20:02:10.0375 2936 UPS - ok
20:02:10.0390 2936 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:02:10.0515 2936 usbccgp - ok
20:02:10.0578 2936 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:02:10.0703 2936 usbehci - ok
20:02:10.0750 2936 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:02:10.0906 2936 usbhub - ok
20:02:10.0968 2936 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:02:11.0093 2936 usbscan - ok
20:02:11.0125 2936 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:02:11.0234 2936 USBSTOR - ok
20:02:11.0265 2936 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:02:11.0390 2936 usbuhci - ok
20:02:11.0421 2936 [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
20:02:11.0515 2936 usb_rndisx - ok
20:02:11.0562 2936 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:02:11.0718 2936 VgaSave - ok
20:02:11.0734 2936 ViaIde - ok
20:02:11.0796 2936 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:02:11.0937 2936 VolSnap - ok
20:02:11.0984 2936 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
20:02:12.0140 2936 VSS - ok
20:02:12.0281 2936 [ F0608F3B5B6D16F4870E867F9D069B6B ] w29n51 C:\WINDOWS\system32\DRIVERS\w29n51.sys
20:02:12.0593 2936 w29n51 - ok
20:02:12.0640 2936 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
20:02:12.0781 2936 W32Time - ok
20:02:12.0812 2936 [ 07AD42303519A955560B5A19FE20B68F ] W3SVC C:\WINDOWS\system32\inetsrv\inetinfo.exe
20:02:12.0937 2936 W3SVC - ok
20:02:12.0968 2936 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:02:13.0171 2936 Wanarp - ok
20:02:13.0218 2936 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
20:02:13.0250 2936 Wdf01000 - ok
20:02:13.0265 2936 WDICA - ok
20:02:13.0296 2936 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:02:13.0453 2936 wdmaud - ok
20:02:13.0500 2936 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
20:02:13.0640 2936 WebClient - ok
20:02:13.0703 2936 [ 5EA185425BFCBC2D4B96D673D8C4DEAF ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
20:02:13.0781 2936 winachsf - ok
20:02:13.0890 2936 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:02:14.0031 2936 winmgmt - ok
20:02:14.0109 2936 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
20:02:14.0234 2936 WinRM - ok
20:02:14.0281 2936 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
20:02:14.0375 2936 WmdmPmSN - ok
20:02:14.0859 2936 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:02:14.0968 2936 Wmi - ok
20:02:15.0015 2936 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:02:15.0140 2936 WmiApSrv - ok
20:02:15.0234 2936 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
20:02:15.0359 2936 WMPNetworkSvc - ok
20:02:15.0390 2936 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:02:15.0546 2936 wscsvc - ok
20:02:15.0578 2936 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:02:15.0718 2936 wuauserv - ok
20:02:15.0812 2936 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:02:15.0859 2936 WudfPf - ok
20:02:15.0890 2936 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:02:15.0921 2936 WudfRd - ok
20:02:15.0953 2936 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:02:15.0968 2936 WudfSvc - ok
20:02:16.0031 2936 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:02:16.0171 2936 WZCSVC - ok
20:02:16.0218 2936 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:02:16.0359 2936 xmlprov - ok
20:02:16.0390 2936 [ C36D1EE1F52E95BEEDEEA275AD8A48F7 ] XPTWOPORT C:\WINDOWS\system32\DRIVERS\XPTWOPORT.SYS
20:02:16.0578 2936 XPTWOPORT - ok
20:02:16.0609 2936 ================ Scan global ===============================
20:02:16.0671 2936 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
20:02:16.0703 2936 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
20:02:16.0718 2936 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
20:02:16.0796 2936 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
20:02:16.0796 2936 [Global] - ok
20:02:16.0812 2936 ================ Scan MBR ==================================
20:02:16.0828 2936 [ 948204BD7CA0DBB64E5B2221FB4DA0AB ] \Device\Harddisk0\DR0
20:02:20.0203 2936 \Device\Harddisk0\DR0 - ok
20:02:20.0218 2936 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR4
20:02:20.0640 2936 \Device\Harddisk1\DR4 - ok
20:02:20.0640 2936 ================ Scan VBR ==================================
20:02:20.0656 2936 [ AB8EF7DA890A91631BC44E24C3A413AC ] \Device\Harddisk0\DR0\Partition1
20:02:20.0656 2936 \Device\Harddisk0\DR0\Partition1 - ok
20:02:20.0671 2936 [ 202CF3C5ECD539E849A923ABDFE632A1 ] \Device\Harddisk0\DR0\Partition2
20:02:20.0671 2936 \Device\Harddisk0\DR0\Partition2 - ok
20:02:20.0671 2936 [ 2C886F5BCDA6E0DE8E79B91723A0C123 ] \Device\Harddisk1\DR4\Partition1
20:02:20.0671 2936 \Device\Harddisk1\DR4\Partition1 - ok
20:02:20.0687 2936 ============================================================
20:02:20.0687 2936 Scan finished
20:02:20.0687 2936 ============================================================
20:02:20.0828 2448 Detected object count: 11
20:02:20.0828 2448 Actual detected object count: 11
20:02:43.0578 2448 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0578 2448 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0593 2448 anbmService ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0593 2448 anbmService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0593 2448 EpmPsd ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0593 2448 EpmPsd ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0593 2448 EpmShd ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0593 2448 EpmShd ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0609 2448 HidUsb ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0609 2448 HidUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0609 2448 LogWatch ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0609 2448 LogWatch ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0609 2448 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0609 2448 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0609 2448 NTIDrvr ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0609 2448 NTIDrvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0609 2448 osanbm ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0609 2448 osanbm ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0609 2448 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0609 2448 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:43.0609 2448 UBHelper ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:43.0609 2448 UBHelper ( UnsignedFile.Multi.Generic ) - User select action: Skip

to jsou jen nepodepsané drivery - nic škodlivého

Stáhni si zde : ComboFix
a ulož ho na plochu.
návod na použití: http://www.bleepingcomputer.com/combofi ... t-combofix
Ukonči všechna aktivní okna,vypni Antispy a Antivir a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Odmítni stažení Konzole...
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna a nic nespouštěj
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud vyskočí hláška "Pokus použít neplatnou operaci na klíč registru, který je označen pro odstranění", tak jen restartuj PC - registr se dá do kupy
Kdyby ti po použití ComboFixu systém nenaběhl - při restartu F8 a "Poslední známá funkční konfigurace"

Tady to je...
ComboFix 14-04-12.01 - Administrator 13.04.2014 22:00:36.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1022.488 [GMT 2:00]
Spuštěný z: c:\documents and settings\Zu\Plocha\ComboFix.exe
AV: Symantec Endpoint Protection *Enabled/Updated* {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: Symantec Endpoint Protection *Enabled* {BE898FE3-CD0B-4014-85A9-03DB9923DDB6}
* Vytvořen nový Bod Obnovení
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\Cache
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-03-13 do 2014-04-13 )))))))))))))))))))))))))))))))
.
.
2014-04-10 19:08 . 2014-04-10 18:30 133208 ----a-w- c:\windows\system32\drivers\97437029.sys
2014-04-06 21:32 . 2014-04-06 21:32 -------- d-----w- c:\documents and settings\Zu\Local Settings\Data aplikací\Mozilla Firefox
2014-04-02 20:28 . 2014-04-02 20:28 -------- d-----w- c:\program files\CrystalDiskInfo
2014-03-28 17:11 . 2014-03-28 17:11 -------- d-----w- c:\program files\Defraggler
2014-03-28 17:05 . 2014-03-28 17:05 -------- d-----w- c:\program files\CCleaner
2014-03-27 13:30 . 2014-03-27 17:04 -------- d-----w- c:\program files\trend micro
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-18 11:42 . 2014-01-18 11:42 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys
2014-01-17 14:52 . 2014-01-18 11:41 1272936 ----a-w- c:\windows\system32\drivers\rtwlanu.sys
2014-01-17 14:52 . 2014-01-18 11:42 15872 ----a-w- c:\windows\system32\drivers\XPTWOPORT.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2005-02-07 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2005-02-07 126976]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-10-07 98394]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-10-07 688218]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"EPM-DM"="c:\acer\epm\epm-dm.exe" [2005-03-28 188416]
"ePowerManagement"="c:\acer\ePM\ePM.exe" [2005-03-24 2880512]
"LManager"="c:\program files\Launch Manager\QtZgAcer.EXE" [2004-12-09 311296]
"ACFanControl"="c:\program files\ACFanControl\ACFanControl.exe" [2010-10-04 249856]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Edimax\\11n USB Wireless LAN Utility\\RtWLan.exe"=
"c:\\Program Files\\Edimax\\11n USB Wireless LAN Utility\\RTLDHCP.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"1542:TCP"= 1542:TCP:Realtek WPS TCP Prot
"1542:UDP"= 1542:UDP:Realtek WPS UDP Prot
"53:UDP"= 53:UDP:Realtek AP UDP Prot
.
R0 97437029;97437029;c:\windows\system32\drivers\97437029.sys [10.4.2014 21:08 133208]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\SEP\0C0107DF\07DF.105\x86\SymDS.sys [3.11.2012 8:22 368288]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\SEP\0C0107DF\07DF.105\x86\SymEFA.sys [3.11.2012 8:22 927904]
R1 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Data aplikací\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\BASHDefs\20140319.011\BHDrvx86.sys [19.3.2014 3:24 1098968]
R1 ccSettings_{29AC8EDB-F22A-46D3-9D66-4244585EAD0A};Symantec Endpoint Protection 12.1.2015.2015.105 Settings Manager;c:\windows\system32\drivers\SEP\0C0107DF\07DF.105\x86\ccSetx86.sys [3.11.2012 8:22 134304]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\SEP\0C0107DF\07DF.105\x86\Ironx86.sys [3.11.2012 8:22 175264]
R2 SepMasterService;Symantec Endpoint Protection;c:\program files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\ccSvcHst.exe [3.11.2012 8:22 143928]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [21.11.2013 23:50 108120]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2.9.2013 8:14 76544]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Data aplikací\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\IPSDefs\20140411.011\IDSXpx86.sys [13.4.2014 12:12 383120]
S2 HWDeviceService.exe;HWDeviceService.exe;c:\documents and settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe [14.3.2011 17:27 271712]
S2 LogWatch;Event Log Watch;c:\windows\LogWatNT.exe [8.6.2000 13:15 50176]
S2 O2 Internet. RunOuc;O2 Internet. OUC;c:\program files\O2 Internet\UpdateDog\ouc.exe [2.9.2013 8:14 657504]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2.9.2013 8:14 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2.9.2013 8:14 11136]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2.9.2013 8:14 96000]
S3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [2.9.2013 8:14 70272]
S3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2.9.2013 8:14 27520]
S3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\rtwlanu.sys [18.1.2014 13:41 1272936]
S3 SyDvCtrl;SyDvCtrl;c:\program files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\SyDvCtrl32.sys [3.11.2012 8:22 28136]
S3 XPTWOPORT;XP TWO PORT Intermediate Driver;c:\windows\system32\drivers\XPTWOPORT.sys [18.1.2014 13:42 15872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Obsah adresáře 'Naplánované úlohy'
.
2014-04-13 c:\windows\Tasks\User_Feed_Synchronization-{4D699EB6-B516-4943-801C-BE5BF4B3E0D1}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
2014-04-13 c:\windows\Tasks\User_Feed_Synchronization-{7D1D821D-2A03-4BD0-8EA3-C0DE130DA901}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://global.acer.com
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
TCP: DhcpNameServer = 192.168.100.20
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\95lyk359.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
c:\documents and settings\Administrator\Nabídka Start\Programy\Po spuštění\_uninst_97437029.lnk - c:\documents and settings\Administrator\Local Settings\Temp\_uninst_97437029.bat
c:\documents and settings\Administrator\Nabídka Start\Programy\Po spuštění\_uninst_97437029.lnk - c:\documents and settings\Administrator\Local Settings\Temp\_uninst_97437029.bat
Notify-NavLogon - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-04-13 22:11
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SepMasterService]
"ImagePath"="\"c:\program files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\ccSvcHst.exe\" /s \"Symantec Endpoint Protection\" /m \"c:\program files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\sms.dll\" /prefetch:1"
--
.
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SmcService]
"ImagePath"="\"c:\program files\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\Smc.exe\" /prefetch:1"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3319311951-2138122476-1321793728-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,c1,ea,32,c9,b0,7d,3d,4e,a3,90,50,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,c1,ea,32,c9,b0,7d,3d,4e,a3,90,50,\
.
[HKEY_LOCAL_MACHINE\software\Symantec\Symantec Endpoint Protection\CurrentVersion]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,4f,00,46,00,\
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(864)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(1200)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2014-04-13 22:34:37
ComboFix-quarantined-files.txt 2014-04-13 20:34
.
Před spuštěním: Volných bajtů: 14 417 235 968
Po spuštění: Volných bajtů: 14 686 056 448
.
- - End Of File - - 143A61594C18331F702BCDD395BBC3E2
948204BD7CA0DBB64E5B2221FB4DA0AB

ComboFix odinstalujeme
jdi Start -> Spustit... a zkopíruj ComboFix /Uninstall (pozor, za x je mezera) -> OK

Stáhni a spusť T-cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
- uklidí po použitých čističích.
Po spuštění ignoruj případné varování antiviru - je to v pořádku
Po provedení akce T-cleaner smažeš

FF - Nápověda -> Restartovat se zakázanými doplňky...
je problém i při tomto režimu?