Preventivní kontrola

[Ladislav Scholze]

A zde druhý log.

05:36:24.0598 6188 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
05:36:24.0778 6188 ============================================================
05:36:24.0778 6188 Current date / time: 2013/01/12 05:36:24.0778
05:36:24.0778 6188 SystemInfo:
05:36:24.0778 6188
05:36:24.0779 6188 OS Version: 6.1.7601 ServicePack: 1.0
05:36:24.0779 6188 Product type: Workstation
05:36:24.0779 6188 ComputerName: NTBLS01
05:36:24.0779 6188 UserName: Ladislav Scholze
05:36:24.0779 6188 Windows directory: C:\windows
05:36:24.0779 6188 System windows directory: C:\windows
05:36:24.0779 6188 Running under WOW64
05:36:24.0779 6188 Processor architecture: Intel x64
05:36:24.0779 6188 Number of processors: 4
05:36:24.0779 6188 Page size: 0x1000
05:36:24.0779 6188 Boot type: Normal boot
05:36:24.0779 6188 ============================================================
05:36:25.0523 6188 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
05:36:25.0818 6188 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
05:36:25.0824 6188 ============================================================
05:36:25.0824 6188 \Device\Harddisk0\DR0:
05:36:25.0825 6188 MBR partitions:
05:36:25.0825 6188 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
05:36:25.0825 6188 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x47C0B000
05:36:25.0825 6188 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x47CA1800, BlocksNum 0x21B5000
05:36:25.0825 6188 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x49E56800, BlocksNum 0x9FD800
05:36:25.0825 6188 \Device\Harddisk1\DR1:
05:36:25.0825 6188 MBR partitions:
05:36:25.0825 6188 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF93782
05:36:25.0826 6188 ============================================================
05:36:25.0848 6188 C: <-> \Device\Harddisk0\DR0\Partition2
05:36:25.0932 6188 E: <-> \Device\Harddisk0\DR0\Partition3
05:36:25.0979 6188 F: <-> \Device\Harddisk0\DR0\Partition4
05:36:26.0007 6188 I: <-> \Device\Harddisk1\DR1\Partition1
05:36:26.0007 6188 ============================================================
05:36:26.0007 6188 Initialize success
05:36:26.0007 6188 ============================================================
05:37:14.0249 2248 ============================================================
05:37:14.0249 2248 Scan started
05:37:14.0249 2248 Mode: Manual; SigCheck; TDLFS;
05:37:14.0249 2248 ============================================================
05:37:14.0982 2248 ================ Scan system memory ========================
05:37:14.0983 2248 System memory - ok
05:37:14.0984 2248 ================ Scan services =============================
05:37:15.0231 2248 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
05:37:15.0369 2248 1394ohci - ok
05:37:15.0406 2248 [ 7A330A42870EB1FA81F88BE514D2D566 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
05:37:15.0420 2248 Accelerometer - ok
05:37:15.0517 2248 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
05:37:15.0539 2248 ACDaemon - ok
05:37:15.0619 2248 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
05:37:15.0640 2248 ACPI - ok
05:37:15.0688 2248 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
05:37:15.0803 2248 AcpiPmi - ok
05:37:15.0967 2248 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
05:37:16.0003 2248 AdobeFlashPlayerUpdateSvc - ok
05:37:16.0050 2248 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
05:37:16.0088 2248 adp94xx - ok
05:37:16.0121 2248 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
05:37:16.0145 2248 adpahci - ok
05:37:16.0159 2248 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
05:37:16.0173 2248 adpu320 - ok
05:37:16.0195 2248 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
05:37:16.0394 2248 AeLookupSvc - ok
05:37:16.0535 2248 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
05:37:16.0634 2248 AESTFilters - ok
05:37:16.0727 2248 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\windows\syswow64\drivers\Afc.sys
05:37:16.0751 2248 Afc - ok
05:37:16.0831 2248 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
05:37:16.0920 2248 AFD - ok
05:37:17.0031 2248 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
05:37:17.0170 2248 AgereSoftModem - ok
05:37:17.0216 2248 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
05:37:17.0243 2248 agp440 - ok
05:37:17.0281 2248 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
05:37:17.0345 2248 ALG - ok
05:37:17.0384 2248 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
05:37:17.0410 2248 aliide - ok
05:37:17.0493 2248 [ D5518E3BBFD69520FA3BDD3D05B5B458 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
05:37:17.0634 2248 AMD External Events Utility - ok
05:37:17.0658 2248 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
05:37:17.0674 2248 amdide - ok
05:37:17.0717 2248 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
05:37:17.0782 2248 AmdK8 - ok
05:37:18.0000 2248 [ BE85FDC481F3BFBC036BB5D96DBBD12D ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
05:37:18.0252 2248 amdkmdag - ok
05:37:18.0288 2248 [ 8E0146E61409C46855F1DD008EAEDD5D ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
05:37:18.0321 2248 amdkmdap - ok
05:37:18.0353 2248 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
05:37:18.0415 2248 AmdPPM - ok
05:37:18.0490 2248 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
05:37:18.0520 2248 amdsata - ok
05:37:18.0565 2248 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
05:37:18.0584 2248 amdsbs - ok
05:37:18.0607 2248 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
05:37:18.0616 2248 amdxata - ok
05:37:18.0662 2248 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
05:37:18.0842 2248 AppID - ok
05:37:18.0875 2248 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
05:37:18.0959 2248 AppIDSvc - ok
05:37:19.0027 2248 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
05:37:19.0103 2248 Appinfo - ok
05:37:19.0141 2248 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
05:37:19.0151 2248 arc - ok
05:37:19.0155 2248 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
05:37:19.0165 2248 arcsas - ok
05:37:19.0207 2248 [ 357635F16D28558C50870F4EF8AA4712 ] ARCVCAM C:\windows\system32\DRIVERS\ArcSoftVCapture.sys
05:37:19.0215 2248 ARCVCAM - ok
05:37:19.0323 2248 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
05:37:19.0345 2248 aspnet_state - ok
05:37:19.0397 2248 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
05:37:19.0484 2248 AsyncMac - ok
05:37:19.0530 2248 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
05:37:19.0555 2248 atapi - ok
05:37:19.0585 2248 [ CBE61B4494165F458BD87E37181EE934 ] AthBTPort C:\windows\system32\DRIVERS\btath_flt.sys
05:37:19.0592 2248 AthBTPort - ok
05:37:19.0648 2248 [ 4C4A576818EA028257C624AE36FF7A03 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
05:37:19.0670 2248 Atheros Bt&Wlan Coex Agent - ok
05:37:19.0696 2248 [ 684B36CA4067DA7000CF95771A3CF0E7 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
05:37:19.0704 2248 AtherosSvc - ok
05:37:19.0797 2248 [ 675B31FCFAF319C0CBB908FEB6B90471 ] athr C:\windows\system32\DRIVERS\athrx.sys
05:37:19.0912 2248 athr - ok
05:37:20.0004 2248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
05:37:20.0093 2248 AudioEndpointBuilder - ok
05:37:20.0103 2248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
05:37:20.0135 2248 AudioSrv - ok
05:37:20.0196 2248 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
05:37:20.0291 2248 AxInstSV - ok
05:37:20.0337 2248 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
05:37:20.0387 2248 b06bdrv - ok
05:37:20.0434 2248 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
05:37:20.0475 2248 b57nd60a - ok
05:37:20.0528 2248 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
05:37:20.0582 2248 BDESVC - ok
05:37:20.0602 2248 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
05:37:20.0702 2248 Beep - ok
05:37:20.0804 2248 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
05:37:20.0972 2248 BFE - ok
05:37:21.0008 2248 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
05:37:21.0093 2248 BITS - ok
05:37:21.0126 2248 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
05:37:21.0193 2248 blbdrive - ok
05:37:21.0235 2248 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
05:37:21.0304 2248 bowser - ok
05:37:21.0348 2248 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
05:37:21.0452 2248 BrFiltLo - ok
05:37:21.0458 2248 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
05:37:21.0497 2248 BrFiltUp - ok
05:37:21.0543 2248 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
05:37:21.0589 2248 Browser - ok
05:37:21.0617 2248 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
05:37:21.0695 2248 Brserid - ok
05:37:21.0709 2248 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
05:37:21.0731 2248 BrSerWdm - ok
05:37:21.0767 2248 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
05:37:21.0801 2248 BrUsbMdm - ok
05:37:21.0805 2248 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
05:37:21.0834 2248 BrUsbSer - ok
05:37:21.0889 2248 [ 227C8F308DE4AF4808E587465CEAB838 ] BTATH_A2DP C:\windows\system32\drivers\btath_a2dp.sys
05:37:21.0900 2248 BTATH_A2DP - ok
05:37:21.0931 2248 [ A83A91D07D1FE6BBE7A9DB46CA00434B ] BTATH_BUS C:\windows\system32\DRIVERS\btath_bus.sys
05:37:21.0938 2248 BTATH_BUS - ok
05:37:21.0943 2248 [ C864FF85EE16D61C2BDD5EF76824625F ] BTATH_HCRP C:\windows\system32\DRIVERS\btath_hcrp.sys
05:37:21.0952 2248 BTATH_HCRP - ok
05:37:21.0984 2248 [ 0DEA505EFB5D771826D177EF8B8A208F ] BTATH_LWFLT C:\windows\system32\DRIVERS\btath_lwflt.sys
05:37:21.0990 2248 BTATH_LWFLT - ok
05:37:22.0010 2248 [ 724C8088C96EFE7A3E63FEC21D4681C0 ] BTATH_RCP C:\windows\system32\DRIVERS\btath_rcp.sys
05:37:22.0019 2248 BTATH_RCP - ok
05:37:22.0063 2248 [ FF8B065F96E4D9525AA7227299FBD05C ] BtFilter C:\windows\system32\DRIVERS\btfilter.sys
05:37:22.0074 2248 BtFilter - ok
05:37:22.0137 2248 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
05:37:22.0254 2248 BthEnum - ok
05:37:22.0286 2248 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
05:37:22.0319 2248 BTHMODEM - ok
05:37:22.0345 2248 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
05:37:22.0376 2248 BthPan - ok
05:37:22.0428 2248 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
05:37:22.0510 2248 BTHPORT - ok
05:37:22.0565 2248 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
05:37:22.0622 2248 bthserv - ok
05:37:22.0640 2248 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
05:37:22.0691 2248 BTHUSB - ok
05:37:22.0720 2248 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
05:37:22.0774 2248 cdfs - ok
05:37:22.0830 2248 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
05:37:22.0901 2248 cdrom - ok
05:37:22.0941 2248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
05:37:23.0028 2248 CertPropSvc - ok
05:37:23.0061 2248 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
05:37:23.0082 2248 circlass - ok
05:37:23.0121 2248 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
05:37:23.0156 2248 CLFS - ok
05:37:23.0206 2248 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
05:37:23.0214 2248 clr_optimization_v2.0.50727_32 - ok
05:37:23.0260 2248 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
05:37:23.0281 2248 clr_optimization_v2.0.50727_64 - ok
05:37:23.0360 2248 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:37:23.0387 2248 clr_optimization_v4.0.30319_32 - ok
05:37:23.0420 2248 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
05:37:23.0444 2248 clr_optimization_v4.0.30319_64 - ok
05:37:23.0487 2248 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
05:37:23.0532 2248 CmBatt - ok
05:37:23.0577 2248 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
05:37:23.0603 2248 cmdide - ok
05:37:23.0642 2248 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
05:37:23.0678 2248 CNG - ok
05:37:23.0700 2248 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
05:37:23.0707 2248 Compbatt - ok
05:37:23.0759 2248 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
05:37:23.0801 2248 CompositeBus - ok
05:37:23.0825 2248 COMSysApp - ok
05:37:23.0842 2248 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
05:37:23.0863 2248 crcdisk - ok
05:37:23.0918 2248 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
05:37:23.0999 2248 CryptSvc - ok
05:37:24.0138 2248 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
05:37:24.0181 2248 cvhsvc - ok
05:37:24.0225 2248 [ 2E3374F9F0B5A3247B779978980C24CB ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
05:37:24.0236 2248 DAMDrv - ok
05:37:24.0304 2248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
05:37:24.0346 2248 DcomLaunch - ok
05:37:24.0397 2248 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
05:37:24.0466 2248 defragsvc - ok
05:37:24.0513 2248 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
05:37:24.0591 2248 DfsC - ok
05:37:24.0645 2248 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
05:37:24.0716 2248 Dhcp - ok
05:37:24.0755 2248 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
05:37:24.0814 2248 discache - ok
05:37:24.0869 2248 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
05:37:24.0895 2248 Disk - ok
05:37:24.0949 2248 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
05:37:25.0001 2248 Dnscache - ok
05:37:25.0053 2248 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
05:37:25.0114 2248 dot3svc - ok
05:37:25.0194 2248 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\windows\system32\DRIVERS\Dot4.sys
05:37:25.0233 2248 Dot4 - ok
05:37:25.0282 2248 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\windows\system32\DRIVERS\Dot4Prt.sys
05:37:25.0342 2248 Dot4Print - ok
05:37:25.0390 2248 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\windows\system32\DRIVERS\dot4usb.sys
05:37:25.0418 2248 dot4usb - ok
05:37:25.0532 2248 [ AA224B1BA5B2093DE97D6FCDDCF5D13B ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
05:37:25.0560 2248 DpHost - ok
05:37:25.0608 2248 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
05:37:25.0693 2248 DPS - ok
05:37:25.0736 2248 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
05:37:25.0776 2248 drmkaud - ok
05:37:25.0824 2248 [ 400582B09E0BB557D0EC28A945150EEB ] dtsoftbus01 C:\windows\system32\DRIVERS\dtsoftbus01.sys
05:37:25.0843 2248 dtsoftbus01 - ok
05:37:25.0914 2248 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
05:37:25.0983 2248 DXGKrnl - ok
05:37:26.0013 2248 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
05:37:26.0090 2248 EapHost - ok
05:37:26.0190 2248 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
05:37:26.0294 2248 ebdrv - ok
05:37:26.0343 2248 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
05:37:26.0397 2248 EFS - ok
05:37:26.0494 2248 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
05:37:26.0572 2248 ehRecvr - ok
05:37:26.0595 2248 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
05:37:26.0668 2248 ehSched - ok
05:37:26.0719 2248 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
05:37:26.0760 2248 elxstor - ok
05:37:26.0806 2248 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
05:37:26.0847 2248 ErrDev - ok
05:37:26.0906 2248 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
05:37:26.0958 2248 EventSystem - ok
05:37:26.0983 2248 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
05:37:27.0012 2248 exfat - ok
05:37:27.0035 2248 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
05:37:27.0081 2248 fastfat - ok
05:37:27.0136 2248 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
05:37:27.0229 2248 Fax - ok
05:37:27.0259 2248 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
05:37:27.0319 2248 fdc - ok
05:37:27.0348 2248 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
05:37:27.0403 2248 fdPHost - ok
05:37:27.0426 2248 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
05:37:27.0452 2248 FDResPub - ok
05:37:27.0486 2248 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
05:37:27.0496 2248 FileInfo - ok
05:37:27.0505 2248 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
05:37:27.0586 2248 Filetrace - ok
05:37:27.0686 2248 [ 87B3E5C567509DDF3B124B16A6A3FBB7 ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
05:37:27.0716 2248 FLCDLOCK - ok
05:37:27.0751 2248 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
05:37:27.0761 2248 flpydisk - ok
05:37:27.0798 2248 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
05:37:27.0812 2248 FltMgr - ok
05:37:27.0852 2248 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
05:37:27.0945 2248 FontCache - ok
05:37:28.0005 2248 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
05:37:28.0027 2248 FontCache3.0.0.0 - ok
05:37:28.0056 2248 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
05:37:28.0069 2248 FsDepends - ok
05:37:28.0115 2248 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
05:37:28.0127 2248 Fs_Rec - ok
05:37:28.0176 2248 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
05:37:28.0201 2248 fvevol - ok
05:37:28.0245 2248 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
05:37:28.0257 2248 gagp30kx - ok
05:37:28.0310 2248 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
05:37:28.0385 2248 gpsvc - ok
05:37:28.0518 2248 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:37:28.0534 2248 gupdate - ok
05:37:28.0561 2248 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:37:28.0574 2248 gupdatem - ok
05:37:28.0612 2248 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
05:37:28.0638 2248 hcw85cir - ok
05:37:28.0696 2248 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
05:37:28.0764 2248 HdAudAddService - ok
05:37:28.0787 2248 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
05:37:28.0822 2248 HDAudBus - ok
05:37:28.0852 2248 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
05:37:28.0867 2248 HidBatt - ok
05:37:28.0920 2248 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
05:37:28.0970 2248 HidBth - ok
05:37:28.0982 2248 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
05:37:29.0004 2248 HidIr - ok
05:37:29.0032 2248 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
05:37:29.0109 2248 hidserv - ok
05:37:29.0164 2248 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
05:37:29.0193 2248 HidUsb - ok
05:37:29.0235 2248 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
05:37:29.0327 2248 hkmsvc - ok
05:37:29.0362 2248 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
05:37:29.0400 2248 HomeGroupListener - ok
05:37:29.0444 2248 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
05:37:29.0474 2248 HomeGroupProvider - ok
05:37:29.0525 2248 [ 02C2108111D9656A9729995D2219FB99 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
05:37:29.0547 2248 HP Power Assistant Service - ok
05:37:29.0637 2248 [ 37890FDD25BEAC6AEDA3E2D57F2B29EB ] HP ProtectTools Service c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
05:37:29.0690 2248 HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - warning
05:37:29.0690 2248 HP ProtectTools Service - detected UnsignedFile.Multi.Generic (1)
05:37:29.0788 2248 [ D4B198E9B3CE6D05771E116D2D560F2F ] hpCMSrv c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
05:37:29.0857 2248 hpCMSrv - ok
05:37:29.0931 2248 [ A9FC4D7EA174BBF5A675B299FFAD80A2 ] HPDayStarterService c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
05:37:29.0956 2248 HPDayStarterService - ok
05:37:30.0025 2248 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
05:37:30.0048 2248 HPDrvMntSvc.exe - ok
05:37:30.0074 2248 [ A4BE23C451ADEB252CD17A0532CAE220 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
05:37:30.0086 2248 hpdskflt - ok
05:37:30.0154 2248 [ 98FAB0413C7365C9069994D7CE47F3EC ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
05:37:30.0378 2248 HPFSService ( UnsignedFile.Multi.Generic ) - warning
05:37:30.0378 2248 HPFSService - detected UnsignedFile.Multi.Generic (1)
05:37:30.0433 2248 [ 0ADC6AFAB2B17FFC9C6E24DD1583F888 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
05:37:30.0464 2248 hpHotkeyMonitor - ok
05:37:30.0548 2248 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\windows\system32\DRIVERS\HpqKbFiltr.sys
05:37:30.0568 2248 HpqKbFiltr - ok
05:37:30.0665 2248 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
05:37:30.0724 2248 hpqwmiex - ok
05:37:30.0810 2248 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
05:37:30.0837 2248 HpSAMD - ok
05:37:30.0920 2248 [ A88A45E82BC54BFFB49C63973010226A ] hpsrv C:\windows\system32\Hpservice.exe
05:37:30.0927 2248 hpsrv - ok
05:37:30.0983 2248 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
05:37:31.0044 2248 HTTP - ok
05:37:31.0078 2248 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
05:37:31.0104 2248 hwpolicy - ok
05:37:31.0160 2248 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
05:37:31.0174 2248 i8042prt - ok
05:37:31.0208 2248 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
05:37:31.0224 2248 iaStor - ok
05:37:31.0293 2248 [ 117FF657E0D9BBD61B5C3E71E63D3919 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
05:37:31.0313 2248 IAStorDataMgrSvc - ok
05:37:31.0359 2248 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
05:37:31.0390 2248 iaStorV - ok
05:37:31.0458 2248 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
05:37:31.0518 2248 idsvc - ok
05:37:31.0548 2248 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
05:37:31.0560 2248 iirsp - ok
05:37:31.0619 2248 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
05:37:31.0741 2248 IKEEXT - ok
05:37:31.0802 2248 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
05:37:31.0839 2248 IntcDAud - ok
05:37:31.0849 2248 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
05:37:31.0864 2248 intelide - ok
05:37:32.0165 2248 [ EFE5A0AF39A8E179624117C521F1E012 ] intelkmd C:\windows\system32\DRIVERS\igdpmd64.sys
05:37:32.0482 2248 intelkmd - ok
05:37:32.0525 2248 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
05:37:32.0568 2248 intelppm - ok
05:37:32.0627 2248 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
05:37:32.0681 2248 IPBusEnum - ok
05:37:32.0718 2248 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
05:37:32.0783 2248 IpFilterDriver - ok
05:37:32.0852 2248 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
05:37:32.0915 2248 iphlpsvc - ok
05:37:32.0958 2248 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
05:37:32.0990 2248 IPMIDRV - ok
05:37:33.0013 2248 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
05:37:33.0058 2248 IPNAT - ok
05:37:33.0078 2248 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
05:37:33.0141 2248 IRENUM - ok
05:37:33.0183 2248 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
05:37:33.0206 2248 isapnp - ok
05:37:33.0250 2248 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
05:37:33.0268 2248 iScsiPrt - ok
05:37:33.0316 2248 [ 3B794CA0DE73790420DEBA3C759F1502 ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
05:37:33.0329 2248 jhi_service - ok
05:37:33.0379 2248 [ 0B44199365A69696109AB9A5855E0841 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
05:37:33.0393 2248 JMCR - ok
05:37:33.0415 2248 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
05:37:33.0428 2248 kbdclass - ok
05:37:33.0476 2248 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
05:37:33.0525 2248 kbdhid - ok
05:37:33.0554 2248 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
05:37:33.0563 2248 KeyIso - ok
05:37:33.0600 2248 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
05:37:33.0626 2248 KSecDD - ok
05:37:33.0663 2248 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
05:37:33.0677 2248 KSecPkg - ok
05:37:33.0706 2248 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
05:37:33.0776 2248 ksthunk - ok
05:37:33.0806 2248 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
05:37:33.0847 2248 KtmRm - ok
05:37:33.0923 2248 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
05:37:34.0006 2248 LanmanServer - ok
05:37:34.0043 2248 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
05:37:34.0082 2248 LanmanWorkstation - ok
05:37:34.0132 2248 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
05:37:34.0176 2248 lltdio - ok
05:37:34.0212 2248 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
05:37:34.0260 2248 lltdsvc - ok
05:37:34.0290 2248 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
05:37:34.0317 2248 lmhosts - ok
05:37:34.0378 2248 [ 97F9EAAC985A663394CD8F54DCD3E73A ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
05:37:34.0407 2248 LMS - ok
05:37:34.0449 2248 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
05:37:34.0460 2248 LSI_FC - ok
05:37:34.0492 2248 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
05:37:34.0521 2248 LSI_SAS - ok
05:37:34.0541 2248 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
05:37:34.0552 2248 LSI_SAS2 - ok
05:37:34.0566 2248 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
05:37:34.0577 2248 LSI_SCSI - ok
05:37:34.0608 2248 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
05:37:34.0670 2248 luafv - ok
05:37:34.0738 2248 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\windows\system32\DRIVERS\MarvinBus64.sys
05:37:34.0793 2248 MarvinBus - ok
05:37:34.0958 2248 [ 80E7E71CAAF758BF084BDF13996D52D0 ] McAfee Endpoint Encryption Agent C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
05:37:35.0100 2248 McAfee Endpoint Encryption Agent ( UnsignedFile.Multi.Generic ) - warning
05:37:35.0101 2248 McAfee Endpoint Encryption Agent - detected UnsignedFile.Multi.Generic (1)
05:37:35.0150 2248 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
05:37:35.0160 2248 Mcx2Svc - ok
05:37:35.0179 2248 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
05:37:35.0188 2248 megasas - ok
05:37:35.0226 2248 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
05:37:35.0238 2248 MegaSR - ok
05:37:35.0285 2248 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
05:37:35.0306 2248 MEIx64 - ok
05:37:35.0347 2248 [ A11F574A809B3751A17815F00C88781F ] MfeEpePc C:\windows\system32\drivers\MfeEpePc.sys
05:37:35.0404 2248 MfeEpePc - ok
05:37:35.0436 2248 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
05:37:35.0526 2248 MMCSS - ok
05:37:35.0564 2248 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
05:37:35.0639 2248 Modem - ok
05:37:35.0667 2248 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
05:37:35.0702 2248 monitor - ok
05:37:35.0735 2248 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
05:37:35.0750 2248 mouclass - ok
05:37:35.0785 2248 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
05:37:35.0809 2248 mouhid - ok
05:37:35.0839 2248 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
05:37:35.0854 2248 mountmgr - ok
05:37:35.0951 2248 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
05:37:35.0972 2248 MozillaMaintenance - ok
05:37:36.0016 2248 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
05:37:36.0039 2248 MpFilter - ok
05:37:36.0077 2248 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
05:37:36.0089 2248 mpio - ok
05:37:36.0117 2248 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
05:37:36.0166 2248 mpsdrv - ok
05:37:36.0227 2248 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
05:37:36.0333 2248 MpsSvc - ok
05:37:36.0370 2248 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
05:37:36.0384 2248 MRxDAV - ok
05:37:36.0417 2248 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
05:37:36.0492 2248 mrxsmb - ok
05:37:36.0519 2248 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
05:37:36.0560 2248 mrxsmb10 - ok
05:37:36.0596 2248 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
05:37:36.0624 2248 mrxsmb20 - ok
05:37:36.0657 2248 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
05:37:36.0673 2248 msahci - ok
05:37:36.0698 2248 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
05:37:36.0710 2248 msdsm - ok
05:37:36.0724 2248 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
05:37:36.0767 2248 MSDTC - ok
05:37:36.0806 2248 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
05:37:36.0842 2248 Msfs - ok
05:37:36.0868 2248 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
05:37:36.0904 2248 mshidkmdf - ok
05:37:36.0920 2248 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
05:37:36.0928 2248 msisadrv - ok
05:37:36.0957 2248 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
05:37:37.0003 2248 MSiSCSI - ok
05:37:37.0006 2248 msiserver - ok
05:37:37.0043 2248 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
05:37:37.0120 2248 MSKSSRV - ok
05:37:37.0208 2248 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
05:37:37.0232 2248 MsMpSvc - ok
05:37:37.0251 2248 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
05:37:37.0319 2248 MSPCLOCK - ok
05:37:37.0335 2248 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
05:37:37.0377 2248 MSPQM - ok
05:37:37.0417 2248 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
05:37:37.0431 2248 MsRPC - ok
05:37:37.0462 2248 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
05:37:37.0471 2248 mssmbios - ok
05:37:37.0483 2248 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
05:37:37.0531 2248 MSTEE - ok
05:37:37.0549 2248 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
05:37:37.0585 2248 MTConfig - ok
05:37:37.0604 2248 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
05:37:37.0613 2248 Mup - ok
05:37:37.0657 2248 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
05:37:37.0700 2248 napagent - ok
05:37:37.0740 2248 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
05:37:37.0770 2248 NativeWifiP - ok
05:37:37.0814 2248 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
05:37:37.0838 2248 NDIS - ok
05:37:37.0860 2248 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
05:37:37.0887 2248 NdisCap - ok
05:37:37.0908 2248 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
05:37:37.0945 2248 NdisTapi - ok
05:37:37.0986 2248 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
05:37:38.0058 2248 Ndisuio - ok
05:37:38.0090 2248 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
05:37:38.0157 2248 NdisWan - ok
05:37:38.0189 2248 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
05:37:38.0223 2248 NDProxy - ok
05:37:38.0306 2248 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
05:37:38.0319 2248 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
05:37:38.0319 2248 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
05:37:38.0362 2248 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
05:37:38.0411 2248 NetBIOS - ok
05:37:38.0451 2248 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
05:37:38.0504 2248 NetBT - ok
05:37:38.0520 2248 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
05:37:38.0528 2248 Netlogon - ok
05:37:38.0562 2248 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
05:37:38.0604 2248 Netman - ok
05:37:38.0664 2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:37:38.0689 2248 NetMsmqActivator - ok
05:37:38.0707 2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:37:38.0719 2248 NetPipeActivator - ok
05:37:38.0743 2248 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
05:37:38.0805 2248 netprofm - ok
05:37:38.0809 2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:37:38.0819 2248 NetTcpActivator - ok
05:37:38.0822 2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:37:38.0830 2248 NetTcpPortSharing - ok
05:37:38.0852 2248 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
05:37:38.0860 2248 nfrd960 - ok
05:37:38.0895 2248 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
05:37:38.0906 2248 NisDrv - ok
05:37:38.0966 2248 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
05:37:39.0005 2248 NisSrv - ok
05:37:39.0034 2248 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
05:37:39.0067 2248 NlaSvc - ok
05:37:39.0151 2248 [ 5FE6F8C05F0769BBB74AFAC11453B182 ] nmwcd C:\windows\system32\drivers\ccdcmbx64.sys
05:37:39.0235 2248 nmwcd - ok
05:37:39.0305 2248 [ 73C929945C0850B8D1FE2FEA05FDF05D ] nmwcdc C:\windows\system32\drivers\ccdcmbox64.sys
05:37:39.0372 2248 nmwcdc - ok
05:37:39.0423 2248 [ 697CA586209E022D15DD0C838B235D6A ] nmwcdnsucx64 C:\windows\system32\drivers\nmwcdnsucx64.sys
05:37:39.0470 2248 nmwcdnsucx64 - ok
05:37:39.0527 2248 [ 292DDF13F91F2CB2482B57AACD6AEB9B ] nmwcdnsux64 C:\windows\system32\drivers\nmwcdnsux64.sys
05:37:39.0577 2248 nmwcdnsux64 - ok
05:37:39.0610 2248 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
05:37:39.0672 2248 Npfs - ok
05:37:39.0692 2248 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
05:37:39.0733 2248 nsi - ok
05:37:39.0745 2248 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
05:37:39.0772 2248 nsiproxy - ok
05:37:39.0845 2248 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
05:37:39.0929 2248 Ntfs - ok
05:37:39.0944 2248 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
05:37:39.0990 2248 Null - ok
05:37:40.0029 2248 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
05:37:40.0076 2248 nusb3hub - ok
05:37:40.0103 2248 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
05:37:40.0142 2248 nusb3xhc - ok
05:37:40.0207 2248 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
05:37:40.0233 2248 nvraid - ok
05:37:40.0251 2248 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
05:37:40.0271 2248 nvstor - ok
05:37:40.0305 2248 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
05:37:40.0315 2248 nv_agp - ok
05:37:40.0354 2248 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
05:37:40.0391 2248 ohci1394 - ok
05:37:40.0487 2248 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
05:37:40.0512 2248 ose - ok
05:37:40.0680 2248 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
05:37:40.0854 2248 osppsvc - ok
05:37:40.0890 2248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
05:37:40.0932 2248 p2pimsvc - ok
05:37:40.0965 2248 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
05:37:40.0996 2248 p2psvc - ok
05:37:41.0020 2248 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
05:37:41.0031 2248 Parport - ok
05:37:41.0063 2248 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
05:37:41.0091 2248 partmgr - ok
05:37:41.0112 2248 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
05:37:41.0149 2248 PcaSvc - ok
05:37:41.0208 2248 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\windows\system32\DRIVERS\pccsmcfdx64.sys
05:37:41.0258 2248 pccsmcfd - ok
05:37:41.0306 2248 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
05:37:41.0335 2248 pci - ok
05:37:41.0368 2248 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
05:37:41.0379 2248 pciide - ok
05:37:41.0410 2248 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
05:37:41.0426 2248 pcmcia - ok
05:37:41.0484 2248 [ 7EB95AA73D657A2DA9D8CFC336F4F48F ] PCSUService C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
05:37:41.0572 2248 PCSUService ( UnsignedFile.Multi.Generic ) - warning
05:37:41.0572 2248 PCSUService - detected UnsignedFile.Multi.Generic (1)
05:37:41.0592 2248 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
05:37:41.0601 2248 pcw - ok
05:37:41.0647 2248 pdfcDispatcher - ok
05:37:41.0684 2248 [ 8F924F00F2F81422FD7C340FDA0E00D8 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
05:37:41.0791 2248 PdiService - ok
05:37:41.0821 2248 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
05:37:41.0870 2248 PEAUTH - ok
05:37:41.0971 2248 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
05:37:42.0011 2248 PerfHost - ok
05:37:42.0082 2248 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
05:37:42.0180 2248 pla - ok
05:37:42.0242 2248 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
05:37:42.0333 2248 PlugPlay - ok
05:37:42.0410 2248 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
05:37:42.0415 2248 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
05:37:42.0415 2248 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
05:37:42.0439 2248 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
05:37:42.0464 2248 PNRPAutoReg - ok
05:37:42.0490 2248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
05:37:42.0501 2248 PNRPsvc - ok
05:37:42.0546 2248 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
05:37:42.0648 2248 PolicyAgent - ok
05:37:42.0688 2248 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
05:37:42.0761 2248 Power - ok
05:37:42.0803 2248 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
05:37:42.0861 2248 PptpMiniport - ok
05:37:42.0882 2248 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
05:37:42.0918 2248 Processor - ok
05:37:42.0973 2248 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
05:37:43.0016 2248 ProfSvc - ok
05:37:43.0030 2248 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
05:37:43.0045 2248 ProtectedStorage - ok
05:37:43.0090 2248 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
05:37:43.0168 2248 Psched - ok
05:37:43.0246 2248 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
05:37:43.0319 2248 ql2300 - ok
05:37:43.0336 2248 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
05:37:43.0348 2248 ql40xx - ok
05:37:43.0373 2248 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
05:37:43.0391 2248 QWAVE - ok
05:37:43.0417 2248 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
05:37:43.0464 2248 QWAVEdrv - ok
05:37:43.0475 2248 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
05:37:43.0514 2248 RasAcd - ok
05:37:43.0542 2248 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
05:37:43.0585 2248 RasAgileVpn - ok
05:37:43.0607 2248 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
05:37:43.0646 2248 RasAuto - ok
05:37:43.0686 2248 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
05:37:43.0758 2248 Rasl2tp - ok
05:37:43.0804 2248 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
05:37:43.0864 2248 RasMan - ok
05:37:43.0890 2248 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
05:37:43.0934 2248 RasPppoe - ok
05:37:43.0951 2248 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
05:37:43.0996 2248 RasSstp - ok
05:37:44.0037 2248 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
05:37:44.0121 2248 rdbss - ok
05:37:44.0158 2248 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
05:37:44.0194 2248 rdpbus - ok
05:37:44.0239 2248 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
05:37:44.0287 2248 RDPCDD - ok
05:37:44.0305 2248 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
05:37:44.0355 2248 RDPENCDD - ok
05:37:44.0397 2248 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
05:37:44.0436 2248 RDPREFMP - ok
05:37:44.0473 2248 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
05:37:44.0543 2248 RDPWD - ok
05:37:44.0602 2248 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
05:37:44.0635 2248 rdyboost - ok
05:37:44.0659 2248 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
05:37:44.0724 2248 RemoteAccess - ok
05:37:44.0755 2248 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
05:37:44.0812 2248 RemoteRegistry - ok
05:37:44.0863 2248 [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt C:\windows\system32\DRIVERS\revoflt.sys
05:37:44.0907 2248 Revoflt - ok
05:37:44.0944 2248 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
05:37:44.0974 2248 RFCOMM - ok
05:37:45.0011 2248 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
05:37:45.0063 2248 RpcEptMapper - ok
05:37:45.0093 2248 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
05:37:45.0114 2248 RpcLocator - ok
05:37:45.0161 2248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
05:37:45.0212 2248 RpcSs - ok
05:37:45.0266 2248 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
05:37:45.0343 2248 rspndr - ok
05:37:45.0379 2248 [ 2777226EE8BF50B059D7A7C90177E99C ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
05:37:45.0392 2248 RTL8167 - ok
05:37:45.0408 2248 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
05:37:45.0416 2248 SamSs - ok
05:37:45.0456 2248 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
05:37:45.0465 2248 sbp2port - ok
05:37:45.0492 2248 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
05:37:45.0522 2248 SCardSvr - ok
05:37:45.0560 2248 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
05:37:45.0614 2248 scfilter - ok
05:37:45.0676 2248 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
05:37:45.0783 2248 Schedule - ok
05:37:45.0817 2248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
05:37:45.0843 2248 SCPolicySvc - ok
05:37:45.0896 2248 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\drivers\sdbus.sys
05:37:45.0934 2248 sdbus - ok
05:37:45.0968 2248 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
05:37:46.0012 2248 SDRSVC - ok
05:37:46.0067 2248 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
05:37:46.0124 2248 secdrv - ok
05:37:46.0162 2248 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
05:37:46.0211 2248 seclogon - ok
05:37:46.0228 2248 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
05:37:46.0306 2248 SENS - ok
05:37:46.0334 2248 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
05:37:46.0398 2248 SensrSvc - ok
05:37:46.0446 2248 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
05:37:46.0481 2248 Serenum - ok
05:37:46.0505 2248 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
05:37:46.0536 2248 Serial - ok
05:37:46.0583 2248 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
05:37:46.0616 2248 sermouse - ok
05:37:46.0711 2248 [ C3BB6CF8F9EE199005A2AAE2815AD756 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
05:37:46.0748 2248 ServiceLayer - ok
05:37:46.0791 2248 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
05:37:46.0853 2248 SessionEnv - ok
05:37:46.0888 2248 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
05:37:46.0937 2248 sffdisk - ok
05:37:46.0952 2248 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
05:37:46.0967 2248 sffp_mmc - ok
05:37:46.0976 2248 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
05:37:46.0989 2248 sffp_sd - ok
05:37:47.0019 2248 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
05:37:47.0029 2248 sfloppy - ok
05:37:47.0095 2248 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
05:37:47.0160 2248 Sftfs - ok
05:37:47.0247 2248 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
05:37:47.0266 2248 sftlist - ok
05:37:47.0279 2248 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
05:37:47.0290 2248 Sftplay - ok
05:37:47.0306 2248 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
05:37:47.0313 2248 Sftredir - ok
05:37:47.0327 2248 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
05:37:47.0334 2248 Sftvol - ok
05:37:47.0351 2248 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
05:37:47.0360 2248 sftvsa - ok
05:37:47.0387 2248 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
05:37:47.0435 2248 SharedAccess - ok
05:37:47.0481 2248 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
05:37:47.0549 2248 ShellHWDetection - ok
05:37:47.0582 2248 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
05:37:47.0595 2248 SiSRaid2 - ok
05:37:47.0607 2248 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
05:37:47.0617 2248 SiSRaid4 - ok
05:37:47.0684 2248 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
05:37:47.0710 2248 SkypeUpdate - ok
05:37:47.0750 2248 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
05:37:47.0794 2248 Smb - ok
05:37:47.0850 2248 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
05:37:47.0882 2248 SNMPTRAP - ok
05:37:47.0895 2248 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
05:37:47.0910 2248 spldr - ok
05:37:47.0961 2248 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
05:37:48.0011 2248 Spooler - ok
05:37:48.0129 2248 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
05:37:48.0272 2248 sppsvc - ok
05:37:48.0302 2248 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
05:37:48.0346 2248 sppuinotify - ok
05:37:48.0452 2248 [ DC3458CE25D50152CEA22DC8230E5AAD ] SPUVCbv C:\windows\system32\Drivers\SPUVCbv_x64.sys
05:37:48.0578 2248 SPUVCbv - ok
05:37:48.0614 2248 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
05:37:48.0666 2248 srv - ok
05:37:48.0691 2248 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
05:37:48.0736 2248 srv2 - ok
05:37:48.0776 2248 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
05:37:48.0824 2248 srvnet - ok
05:37:48.0871 2248 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
05:37:48.0927 2248 SSDPSRV - ok
05:37:48.0948 2248 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
05:37:48.0977 2248 SstpSvc - ok
05:37:49.0069 2248 [ 0CDEA5ACBB69C45F642E96D81E906CCD ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
05:37:49.0109 2248 STacSV - ok
05:37:49.0140 2248 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
05:37:49.0156 2248 stexstor - ok
05:37:49.0216 2248 [ 5C8D6072D1D09F11789C6A014688048A ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
05:37:49.0252 2248 STHDA - ok
05:37:49.0326 2248 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
05:37:49.0406 2248 stisvc - ok
05:37:49.0450 2248 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
05:37:49.0460 2248 swenum - ok
05:37:49.0505 2248 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
05:37:49.0597 2248 swprv - ok
05:37:49.0699 2248 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
05:37:49.0785 2248 SynTP - ok
05:37:49.0858 2248 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
05:37:49.0945 2248 SysMain - ok
05:37:50.0035 2248 [ 196E20CE11EDB0EA3EDA491FCD3C943B ] SystemExplorerHelpService C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
05:37:50.0306 2248 SystemExplorerHelpService - ok
05:37:50.0334 2248 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
05:37:50.0363 2248 TabletInputService - ok
05:37:50.0407 2248 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
05:37:50.0451 2248 TapiSrv - ok
05:37:50.0519 2248 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
05:37:50.0546 2248 TBS - ok
05:37:50.0655 2248 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
05:37:50.0748 2248 Tcpip - ok
05:37:50.0780 2248 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
05:37:50.0809 2248 TCPIP6 - ok
05:37:50.0845 2248 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
05:37:50.0879 2248 tcpipreg - ok
05:37:50.0912 2248 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
05:37:50.0964 2248 TDPIPE - ok
05:37:51.0002 2248 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
05:37:51.0033 2248 TDTCP - ok
05:37:51.0085 2248 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
05:37:51.0161 2248 tdx - ok
05:37:51.0198 2248 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
05:37:51.0208 2248 TermDD - ok
05:37:51.0262 2248 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
05:37:51.0315 2248 TermService - ok
05:37:51.0341 2248 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
05:37:51.0381 2248 Themes - ok
05:37:51.0413 2248 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
05:37:51.0453 2248 THREADORDER - ok
05:37:51.0497 2248 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\windows\system32\drivers\tpm.sys
05:37:51.0514 2248 TPM - ok
05:37:51.0539 2248 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
05:37:51.0607 2248 TrkWks - ok
05:37:51.0667 2248 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
05:37:51.0759 2248 TrustedInstaller - ok
05:37:51.0797 2248 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
05:37:51.0823 2248 tssecsrv - ok
05:37:51.0882 2248 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
05:37:51.0932 2248 TsUsbFlt - ok
05:37:51.0992 2248 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
05:37:52.0063 2248 tunnel - ok
05:37:52.0094 2248 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
05:37:52.0103 2248 uagp35 - ok
05:37:52.0167 2248 [ D5994AB5C2B2D72D6320A7004D52617C ] uArcCapture C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
05:37:52.0200 2248 uArcCapture - ok
05:37:52.0246 2248 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
05:37:52.0289 2248 udfs - ok
05:37:52.0319 2248 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
05:37:52.0330 2248 UI0Detect - ok
05:37:52.0375 2248 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
05:37:52.0385 2248 uliagpkx - ok
05:37:52.0434 2248 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\drivers\umbus.sys
05:37:52.0478 2248 umbus - ok
05:37:52.0525 2248 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
05:37:52.0560 2248 UmPass - ok
05:37:52.0677 2248 [ A69CD6BDB82872999D2E46F9324ADA83 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
05:37:52.0772 2248 UNS - ok
05:37:52.0812 2248 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
05:37:52.0868 2248 upnphost - ok
05:37:52.0947 2248 [ 34AFB83C7BBA370E404E52CC2290350C ] upperdev C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys
05:37:53.0004 2248 upperdev - ok
05:37:53.0035 2248 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
05:37:53.0057 2248 usbccgp - ok
05:37:53.0099 2248 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
05:37:53.0129 2248 usbcir - ok
05:37:53.0150 2248 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
05:37:53.0178 2248 usbehci - ok
05:37:53.0208 2248 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
05:37:53.0250 2248 usbhub - ok
05:37:53.0288 2248 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
05:37:53.0324 2248 usbohci - ok
05:37:53.0372 2248 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
05:37:53.0397 2248 usbprint - ok
05:37:53.0427 2248 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
05:37:53.0456 2248 usbscan - ok
05:37:53.0523 2248 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\windows\system32\drivers\usbser.sys
05:37:53.0579 2248 usbser - ok
05:37:53.0641 2248 [ AA75E1EFBEE7186B4CBAAACF1F15E6CA ] UsbserFilt C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys
05:37:53.0696 2248 UsbserFilt - ok
05:37:53.0737 2248 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
05:37:53.0777 2248 USBSTOR - ok
05:37:53.0804 2248 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
05:37:53.0840 2248 usbuhci - ok
05:37:53.0916 2248 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
05:37:53.0957 2248 usbvideo - ok
05:37:53.0996 2248 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
05:37:54.0057 2248 UxSms - ok
05:37:54.0108 2248 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
05:37:54.0118 2248 VaultSvc - ok
05:37:54.0198 2248 [ D7FCD8FBBF6CC93140D9C7C7959ED60C ] VBoxDrv C:\windows\system32\DRIVERS\VBoxDrv.sys
05:37:54.0220 2248 VBoxDrv - ok
05:37:54.0232 2248 [ 6B22F16BE58AEF1A57970611D7109507 ] VBoxNetAdp C:\windows\system32\DRIVERS\VBoxNetAdp.sys
05:37:54.0242 2248 VBoxNetAdp - ok
05:37:54.0260 2248 [ 10DD814DA2F2064F53B9694E30FF45A4 ] VBoxNetFlt C:\windows\system32\DRIVERS\VBoxNetFlt.sys
05:37:54.0270 2248 VBoxNetFlt - ok
05:37:54.0368 2248 [ 41EEF971DD82A3674D07F275A4DEF702 ] vcsFPService C:\windows\system32\vcsFPService.exe
05:37:54.0506 2248 vcsFPService - ok
05:37:54.0536 2248 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
05:37:54.0546 2248 vdrvroot - ok
05:37:54.0592 2248 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
05:37:54.0651 2248 vds - ok
05:37:54.0694 2248 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
05:37:54.0721 2248 vga - ok
05:37:54.0744 2248 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
05:37:54.0823 2248 VgaSave - ok
05:37:54.0869 2248 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
05:37:54.0886 2248 vhdmp - ok
05:37:54.0918 2248 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
05:37:54.0926 2248 viaide - ok
05:37:54.0940 2248 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
05:37:54.0950 2248 volmgr - ok
05:37:54.0990 2248 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
05:37:55.0021 2248 volmgrx - ok
05:37:55.0040 2248 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
05:37:55.0055 2248 volsnap - ok
05:37:55.0083 2248 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
05:37:55.0095 2248 vsmraid - ok
05:37:55.0167 2248 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
05:37:55.0284 2248 VSS - ok
05:37:55.0303 2248 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
05:37:55.0323 2248 vwifibus - ok
05:37:55.0362 2248 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
05:37:55.0400 2248 vwififlt - ok
05:37:55.0454 2248 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
05:37:55.0504 2248 vwifimp - ok
05:37:55.0546 2248 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
05:37:55.0602 2248 W32Time - ok
05:37:55.0627 2248 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
05:37:55.0672 2248 WacomPen - ok
05:37:55.0740 2248 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
05:37:55.0836 2248 WANARP - ok
05:37:55.0853 2248 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
05:37:55.0892 2248 Wanarpv6 - ok
05:37:55.0984 2248 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
05:37:56.0028 2248 WatAdminSvc - ok
05:37:56.0101 2248 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
05:37:56.0231 2248 wbengine - ok
05:37:56.0261 2248 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
05:37:56.0303 2248 WbioSrvc - ok
05:37:56.0350 2248 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
05:37:56.0398 2248 wcncsvc - ok
05:37:56.0421 2248 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
05:37:56.0460 2248 WcsPlugInService - ok
05:37:56.0483 2248 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
05:37:56.0491 2248 Wd - ok
05:37:56.0537 2248 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
05:37:56.0579 2248 Wdf01000 - ok
05:37:56.0633 2248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
05:37:56.0762 2248 WdiServiceHost - ok
05:37:56.0767 2248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
05:37:56.0789 2248 WdiSystemHost - ok
05:37:56.0865 2248 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
05:37:56.0949 2248 WebClient - ok
05:37:56.0975 2248 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
05:37:57.0030 2248 Wecsvc - ok
05:37:57.0054 2248 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
05:37:57.0094 2248 wercplsupport - ok
05:37:57.0119 2248 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
05:37:57.0157 2248 WerSvc - ok
05:37:57.0192 2248 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
05:37:57.0260 2248 WfpLwf - ok
05:37:57.0271 2248 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
05:37:57.0279 2248 WIMMount - ok
05:37:57.0306 2248 WinDefend - ok
05:37:57.0312 2248 WinHttpAutoProxySvc - ok
05:37:57.0380 2248 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
05:37:57.0483 2248 Winmgmt - ok
05:37:57.0564 2248 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
05:37:57.0679 2248 WinRM - ok
05:37:57.0730 2248 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
05:37:57.0776 2248 WinUsb - ok
05:37:57.0828 2248 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
05:37:57.0884 2248 Wlansvc - ok
05:37:58.0045 2248 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
05:37:58.0139 2248 wlidsvc - ok
05:37:58.0187 2248 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
05:37:58.0221 2248 WmiAcpi - ok
05:37:58.0257 2248 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
05:37:58.0289 2248 wmiApSrv - ok
05:37:58.0332 2248 WMPNetworkSvc - ok
05:37:58.0366 2248 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
05:37:58.0389 2248 WPCSvc - ok
05:37:58.0424 2248 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
05:37:58.0435 2248 WPDBusEnum - ok
05:37:58.0469 2248 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
05:37:58.0513 2248 ws2ifsl - ok
05:37:58.0546 2248 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
05:37:58.0570 2248 wscsvc - ok
05:37:58.0575 2248 WSearch - ok
05:37:58.0675 2248 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
05:37:58.0754 2248 wuauserv - ok
05:37:58.0784 2248 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
05:37:58.0827 2248 WudfPf - ok
05:37:58.0855 2248 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
05:37:58.0877 2248 WUDFRd - ok
05:37:58.0918 2248 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
05:37:58.0957 2248 wudfsvc - ok
05:37:58.0991 2248 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
05:37:59.0031 2248 WwanSvc - ok
05:37:59.0068 2248 [ A35820791F940822C31908F58F91D973 ] XobniService C:\Program Files (x86)\Xobni\XobniService.exe
05:37:59.0085 2248 XobniService - ok
05:37:59.0115 2248 ================ Scan global ===============================
05:37:59.0151 2248 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
05:37:59.0190 2248 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\windows\system32\winsrv.dll
05:37:59.0205 2248 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\windows\system32\winsrv.dll
05:37:59.0241 2248 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
05:37:59.0271 2248 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
05:37:59.0275 2248 [Global] - ok
05:37:59.0276 2248 ================ Scan MBR ==================================
05:37:59.0284 2248 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
05:37:59.0629 2248 \Device\Harddisk0\DR0 - ok
05:37:59.0635 2248 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
05:37:59.0985 2248 \Device\Harddisk1\DR1 - ok
05:37:59.0986 2248 ================ Scan VBR ==================================
05:37:59.0991 2248 [ D448F9D9BED801D6385DDE79873A6FE5 ] \Device\Harddisk0\DR0\Partition1
05:37:59.0994 2248 \Device\Harddisk0\DR0\Partition1 - ok
05:38:00.0014 2248 [ 97BB782ACFE6D03E61E4C065FF70B0CF ] \Device\Harddisk0\DR0\Partition2
05:38:00.0017 2248 \Device\Harddisk0\DR0\Partition2 - ok
05:38:00.0049 2248 [ 61BE8AF3B3D7E40F96F37F533977B3D3 ] \Device\Harddisk0\DR0\Partition3
05:38:00.0052 2248 \Device\Harddisk0\DR0\Partition3 - ok
05:38:00.0074 2248 [ A1A8C75604430A216277CC3DEFF5BE89 ] \Device\Harddisk0\DR0\Partition4
05:38:00.0075 2248 \Device\Harddisk0\DR0\Partition4 - ok
05:38:00.0078 2248 [ 2FC271D1FCF59AA625676C2ABCE75FE7 ] \Device\Harddisk1\DR1\Partition1
05:38:00.0080 2248 \Device\Harddisk1\DR1\Partition1 - ok
05:38:00.0081 2248 ============================================================
05:38:00.0081 2248 Scan finished
05:38:00.0081 2248 ============================================================
05:38:00.0091 0168 Detected object count: 6
05:38:00.0091 0168 Actual detected object count: 6
05:38:19.0674 0168 HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - skipped by user
05:38:19.0674 0168 HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
05:38:19.0676 0168 HPFSService ( UnsignedFile.Multi.Generic ) - skipped by user
05:38:19.0676 0168 HPFSService ( UnsignedFile.Multi.Generic ) - User select action: Skip
05:38:19.0678 0168 McAfee Endpoint Encryption Agent ( UnsignedFile.Multi.Generic ) - skipped by user
05:38:19.0679 0168 McAfee Endpoint Encryption Agent ( UnsignedFile.Multi.Generic ) - User select action: Skip
05:38:19.0681 0168 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
05:38:19.0681 0168 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
05:38:19.0682 0168 PCSUService ( UnsignedFile.Multi.Generic ) - skipped by user
05:38:19.0683 0168 PCSUService ( UnsignedFile.Multi.Generic ) - User select action: Skip
05:38:19.0684 0168 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
05:38:19.0684 0168 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip

[Márty84]

Vypada to na previta v MBR. To neni dobre.


Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[Ladislav Scholze]

s TOU ZÁLOHOU BUDE PROBLÉM, JE TO 87GB a momentálně to nemám kam dát.

[Márty84]

V tom pripade zalezi na vas, zda to prubnete bez ni, nebo ne.

[Ladislav Scholze]

Co se může stát a jaká je pravděpodobnost poškození nebo ztráty dat?

[Márty84]

Muze se stat, ze uz se pc nerozjede. Zvlast, pokud je tam opravdu ten MBR broucek. Nevim jaka je pravdepodobnost. Zalohovat se ma pravidelne vzdy, nejen pri odvirovavani.

[Ladislav Scholze]

Ok Koupím ext. disk a ozvu se.

Díky hezký den

[Márty84]

OK. I kdyby ted nebyl potreba, muze se hodit v budoucnu

[Ladislav Scholze]

No tak data jsou zálohovány, ale neumím vypnout antivir microsoft security esentials. Ať dělám co dělám je stále aktivní.

[Ladislav Scholze]

Tak log je na světě.

ComboFix 13-01-15.02 - Ladislav Scholze 15.01.2013 13:22:16.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4030.2247 [GMT 1:00]
Spuštěný z: c:\users\Ladislav Scholze\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\msxml4-KB2758694-enu.LOG
c:\windows\wininit.ini
D:\Autorun.inf
D:\Setup.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-15 do 2013-01-15 )))))))))))))))))))))))))))))))
.
.
2013-01-15 09:35 . 2013-01-15 09:35 -------- d-----w- c:\users\Ladislav Scholze\AppData\Roaming\Leadertech
2013-01-15 07:21 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{778D6670-26D0-45E1-85FF-0FCC9C7565AA}\mpengine.dll
2013-01-14 06:14 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-01-10 05:55 . 2013-01-10 05:55 -------- d-----w- c:\users\Ladislav Scholze\AppData\Roaming\Malwarebytes
2013-01-10 05:54 . 2013-01-10 05:54 -------- d-----w- c:\programdata\Malwarebytes
2013-01-10 05:54 . 2013-01-10 05:54 -------- d-----w- c:\users\Ladislav Scholze\AppData\Local\Programs
2013-01-09 16:54 . 2012-12-19 13:48 237992 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2013-01-09 16:54 . 2012-12-19 13:47 120232 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2013-01-09 04:37 . 2012-11-01 04:47 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2013-01-09 04:17 . 2013-01-09 04:17 16369160 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-01-06 09:54 . 2013-01-06 09:55 -------- d-----w- c:\program files (x86)\Google
2013-01-06 09:06 . 2013-01-07 21:07 -------- d-----w- c:\program files\trend micro
2013-01-06 09:06 . 2013-01-06 09:11 -------- d-----w- C:\rsit
2013-01-06 06:17 . 2013-01-06 06:20 -------- d-----w- c:\programdata\SystemExplorer
2013-01-06 06:17 . 2013-01-06 06:17 -------- d-----w- c:\program files (x86)\System Explorer
2013-01-01 08:29 . 2013-01-01 08:29 -------- d-----w- C:\FFOutput
2012-12-25 06:18 . 2012-12-03 01:54 11264 ----a-w- c:\windows\Launcher.exe
2012-12-25 06:17 . 2012-12-25 06:22 -------- d-----w- c:\users\Ladislav Scholze\AppData\Local\DownTango
2012-12-25 06:17 . 2012-12-25 06:22 -------- d-----w- c:\program files (x86)\Red Sky
2012-12-21 06:57 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-21 06:57 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-21 06:57 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-21 06:57 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-20 05:12 . 2011-05-30 13:42 240640 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2012-12-20 05:12 . 2011-05-30 13:42 255488 ----a-w- c:\windows\system32\xvidvfw.dll
2012-12-20 05:12 . 2011-05-23 09:52 153088 ----a-w- c:\windows\SysWow64\xvid.ax
2012-12-20 05:12 . 2011-05-23 07:49 173568 ----a-w- c:\windows\system32\xvid.ax
2012-12-20 05:12 . 2011-05-23 07:46 645632 ----a-w- c:\windows\SysWow64\xvidcore.dll
2012-12-20 05:12 . 2011-05-23 07:45 696832 ----a-w- c:\windows\system32\xvidcore.dll
2012-12-20 05:12 . 2012-12-20 05:12 -------- d-----w- c:\program files (x86)\Xvid
2012-12-19 13:47 . 2012-12-19 13:47 204200 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2012-12-19 13:47 . 2012-12-19 13:47 146856 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2012-12-19 13:47 . 2012-12-19 13:47 132008 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2012-12-19 06:46 . 2012-12-19 06:46 -------- d-----w- c:\users\Ladislav Scholze\AppData\Local\PutLockerDownloader
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-09 06:53 . 2011-10-21 18:14 67599240 ----a-w- c:\windows\system32\MRT.exe
2013-01-09 04:17 . 2012-04-13 06:52 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-01-09 04:17 . 2011-10-27 15:36 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-30 04:45 . 2013-01-09 04:37 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-28 09:07 . 2012-11-28 09:08 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{58D90983-7946-4B80-98C3-02AFBDD2ABA7}\gapaengine.dll
2012-11-14 07:06 . 2012-12-12 20:56 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-11-14 06:32 . 2012-12-12 20:56 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-11-14 06:11 . 2012-12-12 20:56 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-11-14 06:04 . 2012-12-12 20:56 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-14 06:04 . 2012-12-12 20:56 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-11-14 06:02 . 2012-12-12 20:56 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-14 06:02 . 2012-12-12 20:56 237056 ----a-w- c:\windows\system32\url.dll
2012-11-14 05:59 . 2012-12-12 20:56 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-11-14 05:58 . 2012-12-12 20:56 816640 ----a-w- c:\windows\system32\jscript.dll
2012-11-14 05:57 . 2012-12-12 20:56 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-11-14 05:57 . 2012-12-12 20:56 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-11-14 05:55 . 2012-12-12 20:56 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-11-14 05:55 . 2012-12-12 20:56 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-11-14 05:53 . 2012-12-12 20:56 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-11-14 05:52 . 2012-12-12 20:56 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-11-14 05:46 . 2012-12-12 20:56 248320 ----a-w- c:\windows\system32\ieui.dll
2012-11-14 02:09 . 2012-12-12 20:56 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-11-14 01:58 . 2012-12-12 20:56 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57 . 2012-12-12 20:56 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-11-14 01:49 . 2012-12-12 20:56 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48 . 2012-12-12 20:56 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-11-14 01:44 . 2012-12-12 20:56 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-11-13 05:43 . 2011-11-04 18:37 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-11-13 04:42 . 2011-12-14 06:30 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-11-09 05:45 . 2012-12-12 04:44 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-09 04:42 . 2012-12-12 04:44 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-11-08 10:29 . 2012-11-08 10:29 1402312 ----a-w- c:\windows\SysWow64\msxml4.dll
2012-11-02 05:59 . 2012-12-12 04:44 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-11-02 05:11 . 2012-12-12 04:44 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
2012-10-28 06:16 . 2012-10-28 06:16 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Seznam Postak"="c:\program files (x86)\Seznam.cz\bin\postak.exe" [2012-01-10 491040]
"Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
"SystemExplorerAutoStart"="c:\program files (x86)\System Explorer\SystemExplorer.exe" [2012-12-02 2846168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"4-Day Forecast"="c:\program files (x86)\4-Day Forecast\4-Day Forecast\4-Day Forecast.exe" [2008-11-10 1060864]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2011-02-03 22:09 75360 ------w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe [2011-03-07 62184]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2012-01-09 12800]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2012-01-09 171008]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
R3 SystemExplorerHelpService;System Explorer Service;c:\program files (x86)\System Explorer\service\SystemExplorerService64.exe [2012-11-25 821720]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-10-21 1255736]
S0 MfeEpePc;MfeEpePc; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-13 279616]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2012-12-19 237992]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-03-28 203264]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2011-01-26 30520]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
S2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
S2 PCSUService;PC Speed Up Service;c:\program files (x86)\Zrychleni Pocitace\PCSUService.exe [2011-07-20 206336]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 HP ProtectTools Service;HP ProtectTools Service;c:\program files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [2011-01-27 12273408]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 SPUVCbv;SPUVCb Driver Service;c:\windows\system32\Drivers\SPUVCbv_x64.sys [2011-01-12 2611704]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-12-19 132008]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2012-12-19 146856]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-01-14 06:59 1606760 ----a-w- c:\program files (x86)\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-13 04:17]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-06 09:54]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-06 09:54]
.
2013-01-09 c:\windows\Tasks\HPCeeScheduleForLadislav Scholze.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
2012-11-28 c:\windows\Tasks\HPCeeScheduleForNTBLS01$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
--------- X64 Entries -----------
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.bing.com?pc=CMNTDF
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearchAssistant = hxxp://www.google.com
mCustomizeSearch = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1 192.168.1.1
FF - ProfilePath - c:\users\Ladislav Scholze\AppData\Roaming\Mozilla\Firefox\Profiles\mlev00wi.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://translate.google.cz/
FF - ExtSQL: 2012-11-29 15:47; ftdownloader@ftdownloader.com; c:\users\Ladislav Scholze\AppData\Roaming\Mozilla\Firefox\Profiles\mlev00wi.default\extensions\ftdownloader@ftdownloader.com.xpi
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{124D001A-BDCB-472F-AA59-BBE7E4BC3204} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2535219242-432159718-1589159201-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-2535219242-432159718-1589159201-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (S-1-5-21-2535219242-432159718-1589159201-1001)
@Denied: (2) (LocalSystem)
"Progid"="vcard_wab_auto_file"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Celkový čas: 2013-01-15 13:37:33 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-15 12:37
.
Před spuštěním: Volných bajtů: 451 485 204 480
Po spuštění: Volných bajtů: 456 861 622 272
.
- - End Of File - - 73C42B3B73669E8D273155CDEA982004

Zatím nashle.

[Márty84]

Stahnete aswMBR http://public.avast.com/%7Egmerek/aswMBR.exe , ulozte na plochu a spustte jako spravce.
Kliknete na Scan
Pak kliknete na Save log a ulozte ho treba na plochu
Obsah logu mi sem zkopirujte

[Ladislav Scholze]

Dobré ráno zasílám log.

aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-01-16 07:04:02
-----------------------------
07:04:02.446 OS Version: Windows x64 6.1.7601 Service Pack 1
07:04:02.446 Number of processors: 4 586 0x2A07
07:04:02.447 ComputerName: NTBLS01 UserName:
07:04:03.897 Initialize success
07:05:47.416 AVAST engine defs: 13011501
07:07:49.010 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:07:49.015 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
07:07:49.021 Disk 0 MBR read successfully
07:07:49.027 Disk 0 MBR scan
07:07:49.036 Disk 0 Windows 7 default MBR code
07:07:49.044 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 300 MB offset 2048
07:07:49.061 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 587798 MB offset 616448
07:07:49.096 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 17258 MB offset 1204426752
07:07:49.121 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 5115 MB offset 1239771136
07:07:49.170 Disk 0 scanning C:\windows\system32\drivers
07:08:03.401 Service scanning
07:08:36.496 Modules scanning
07:08:36.514 Disk 0 trace - called modules:
07:08:36.895 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys iaStor.sys hal.dll
07:08:36.906 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c34060]
07:08:36.913 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> [0xfffffa8005022b10]
07:08:36.920 5 hpdskflt.sys[fffff88001bf1361] -> nt!IofCallDriver -> [0xfffffa8004ba6950]
07:08:36.927 7 ACPI.sys[fffff88000fa57a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004c44050]
07:08:38.348 AVAST engine scan C:\windows
07:08:42.481 AVAST engine scan C:\windows\system32
07:11:49.071 AVAST engine scan C:\windows\system32\drivers
07:12:07.503 AVAST engine scan C:\Users\Ladislav Scholze
07:19:10.505 Disk 0 MBR has been saved successfully to "C:\Users\Ladislav Scholze\Desktop\MBR.dat"
07:19:10.511 The log file has been saved successfully to "C:\Users\Ladislav Scholze\Desktop\aswMBR.txt"


Hezký den

[Márty84]

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

File::
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\HPCeeScheduleForLadislav Scholze.job
c:\windows\Tasks\HPCeeScheduleForNTBLS01$.job

Folder::
c:\program files (x86)\Zrychleni Pocitace

RegLock::
[HKEY_USERS\S-1-5-21-2535219242-432159718-1589159201-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
[HKEY_USERS\S-1-5-21-2535219242-432159718-1589159201-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Driver::
MfeEpePc
SkypeUpdate
McAfee Endpoint Encryption Agent
PCSUService

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[Ladislav Scholze]

Provedl jsem co jste napsal, vše proběhlo hladce, jen nešel nastartovat PC.
Bohužel jsem si nepoznamenal co dělat když to nepůjde a místo F8 atd, jsem dal pouze obnovit.
PC jsem nastartoval ale log nemám.
LS

[Márty84]

No jo, tak to neni dobre. Ted jde o to, ktery bod obnovy se pouzil


Zopakujte RogueKiller
Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte