prosím o kontrolu logu podezření na vir

milan111 · Příspěvekod **milan111** » 16 dub 2014 16:47

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:46:51, on 16.4.2014
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.17267)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\Windows\SysWOW64\dvmurl.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ZoneAlarm] C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMPI Updater - Unknown owner - C:\Program Files\IMPI\ExtensionUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - F:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

--
End of file - 9669 bytes

Reklama

Příspěvekod **jaro3** » 16 dub 2014 18:25

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

Doinstaluj si SP1!

milan111 · Příspěvekod **milan111** » 16 dub 2014 19:22

# AdwCleaner v3.023 - Report created 16/04/2014 at 19:01:28
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Ultimate (64 bits)
# Username : honza - HONZA-PC
# Running from : C:\Users\honza\Downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\delta-homes.xml
File Found : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser
File Found : C:\Windows\System32\Tasks\GoforFilesUpdate
Folder Found C:\Program Files (x86)\BrowseToSave
Folder Found C:\Program Files (x86)\myfree codec
Folder Found C:\Program Files (x86)\Optimizer Pro
Folder Found C:\Program Files (x86)\smart pc cleaner
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SkypEmoticons
Folder Found C:\Users\honza\AppData\Local\Bundled software uninstaller
Folder Found C:\Users\honza\AppData\Local\SwvUpdater
Folder Found C:\Users\honza\AppData\Roaming\DefaultTab
Folder Found C:\Users\honza\AppData\Roaming\goforfiles
Folder Found C:\Users\honza\AppData\Roaming\Oxy
Folder Found C:\Users\honza\AppData\Roaming\SkypEmoticons
Folder Found C:\Users\honza\AppData\Roaming\smart pc cleaner
Folder Found C:\Users\honza\Documents\smart pc cleaner
Folder Found C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Folder Found C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Found C:\Windows\SysWOW64\AI_RecycleBin

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Escolade
Key Found : HKCU\Software\GoforFiles
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKCU\Software\Myfree Codec
Key Found : HKCU\Software\OCS
Key Found : HKCU\Software\Smart PC Cleaner
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\Escolade
Key Found : [x64] HKCU\Software\GoforFiles
Key Found : [x64] HKCU\Software\Myfree Codec
Key Found : [x64] HKCU\Software\OCS
Key Found : [x64] HKCU\Software\Smart PC Cleaner
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\Applications\iMesh_V11_en_Setup.exe
Key Found : HKLM\SOFTWARE\Classes\Applications\iMeshV11.exe
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Found : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Found : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Found : HKLM\SOFTWARE\Classes\speedupmypc
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\Software\DefaultTab
Key Found : HKLM\Software\GoforFiles
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje
Key Found : HKLM\Software\hdcode
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\desk365_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\desk365_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\speedupmypc_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\speedupmypc_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SkypEmoticons_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Smart PC Cleaner_is1
Key Found : HKLM\Software\Myfree Codec
Key Found : HKLM\Software\Uniblue
Key Found : HKLM\Software\winzipersvc
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\omigaplussvc
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Speedchecker Limited
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.17267

Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1377247277

-\\ Mozilla Firefox v

-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [49989 octets] - [21/08/2013 07:57:06]
AdwCleaner[R1].txt - [27808 octets] - [21/08/2013 08:01:23]
AdwCleaner[R2].txt - [8172 octets] - [26/08/2013 06:48:14]
AdwCleaner[R3].txt - [7679 octets] - [16/04/2014 19:01:28]
AdwCleaner[S0].txt - [23307 octets] - [21/08/2013 07:58:09]
AdwCleaner[S1].txt - [25018 octets] - [21/08/2013 08:01:56]
AdwCleaner[S2].txt - [5727 octets] - [26/08/2013 06:48:50]

########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [7921 octets] ##########

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 16.4.2014
Scan Time: 19:20:55
Logfile: log.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.16.09
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7
CPU: x64
File System: NTFS
User: honza

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 265336
Time Elapsed: 13 min, 59 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 2
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [2ddc0c1fa2d9fa3c0f75d3777c86e917],
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, , [93762209f08b04327c401b7ea2615ea2],

Registry Values: 1
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, SIM, , [93762209f08b04327c401b7ea2615ea2]

Registry Data: 1
Hijack.StartPage, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.qvo6.com/?utm_source=b&utm_m ... 1377247277, Good: (http://www.google.com), Bad: (http://www.qvo6.com/?utm_source=b&utm_m ... 1377247277),,[fe0b38f3e2992c0ab1b1081da75d49b7]

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

milan111 · Příspěvekod **milan111** » 16 dub 2014 19:25

zatím jsem nic nesmazal v mbam ani v adw clener ,pc i internet jde rychleji

Příspěvekod **jaro3** » 17 dub 2014 09:22

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

milan111 · Příspěvekod **milan111** » 17 dub 2014 16:28

# AdwCleaner v3.023 - Report created 17/04/2014 at 14:22:36
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Ultimate (64 bits)
# Username : honza - HONZA-PC
# Running from : C:\Users\honza\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.17267

-\\ Mozilla Firefox v

-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [49989 octets] - [21/08/2013 07:57:06]
AdwCleaner[R1].txt - [27808 octets] - [21/08/2013 08:01:23]
AdwCleaner[R2].txt - [8172 octets] - [26/08/2013 06:48:14]
AdwCleaner[R3].txt - [8045 octets] - [16/04/2014 19:01:28]
AdwCleaner[R4].txt - [1254 octets] - [17/04/2014 14:21:35]
AdwCleaner[S0].txt - [23307 octets] - [21/08/2013 07:58:09]
AdwCleaner[S1].txt - [25018 octets] - [21/08/2013 08:01:56]
AdwCleaner[S2].txt - [5727 octets] - [26/08/2013 06:48:50]
AdwCleaner[S3].txt - [7971 octets] - [16/04/2014 20:33:29]
AdwCleaner[S4].txt - [1176 octets] - [17/04/2014 14:22:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1236 octets] ##########

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 17.4.2014
Scan Time: 16:04:44
Logfile: log mbam.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.17.03
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7
CPU: x64
File System: NTFS
User: honza

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 265102
Time Elapsed: 1 hr, 33 min, 51 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, Quarantined, [79eedc4f116ae74fc8b6ccce2ad9ef11],

Registry Values: 1
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, SIM, Quarantined, [79eedc4f116ae74fc8b6ccce2ad9ef11]

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x64
Ran by honza on źt 17.04.2014 at 16:07:04,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1936620949-411582716-1596827494-1001\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{3F7B678B-3104-4066-BD3C-9A30E8B9FBF9}
Successfully deleted: [Registry Key] "hkey_current_user\software\microsoft\internet explorer\low rights\elevationpolicy\{a5aa24ea-11b8-4113-95ae-9ed71deaf12a}"

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\fighters"
Successfully deleted: [Folder] "C:\Users\honza\AppData\Roaming\fighters"

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 17.04.2014 at 16:18:50,27
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

milan111 · Příspěvekod **milan111** » 17 dub 2014 16:34

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : honza [Práva správce]
Mód : Kontrola -- Datum : 04/17/2014 16:32:56
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 2 ¤¤¤
[V2][SUSP PATH] Hoolapp For Android : C:\Users\honza\AppData\Roaming\HOOLAP~1\UPDATE~1\UPDATE~1.EXE - /Check [x] -> NALEZENO
[V2][SUSP PATH] Hoolapp Init : C:\Users\honza\AppData\Roaming\HOOLAP~1\Hoolapp.exe - /Minimized [x] -> NALEZENO

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
[Address] EAT @explorer.exe (LdapGetLastError) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D81D8)
[Address] EAT @explorer.exe (LdapMapErrorToWin32) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3B2BA4)
[Address] EAT @explorer.exe (LdapUTF8ToUnicode) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7FA0)
[Address] EAT @explorer.exe (LdapUnicodeToUTF8) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A44A8)
[Address] EAT @explorer.exe (ber_alloc_t) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE62C)
[Address] EAT @explorer.exe (ber_bvdup) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE54C)
[Address] EAT @explorer.exe (ber_bvecfree) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE500)
[Address] EAT @explorer.exe (ber_bvfree) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE4BC)
[Address] EAT @explorer.exe (ber_first_element) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE73C)
[Address] EAT @explorer.exe (ber_flatten) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE7EC)
[Address] EAT @explorer.exe (ber_free) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE48C)
[Address] EAT @explorer.exe (ber_init) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE384)
[Address] EAT @explorer.exe (ber_next_element) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE7B0)
[Address] EAT @explorer.exe (ber_peek_tag) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE700)
[Address] EAT @explorer.exe (ber_printf) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE8D4)
[Address] EAT @explorer.exe (ber_scanf) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CEB48)
[Address] EAT @explorer.exe (ber_skip_tag) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE6C4)
[Address] EAT @explorer.exe (cldap_open) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AE254)
[Address] EAT @explorer.exe (cldap_openA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AE254)
[Address] EAT @explorer.exe (cldap_openW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF19C)
[Address] EAT @explorer.exe (ldap_abandon) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C52C0)
[Address] EAT @explorer.exe (ldap_add) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5BD8)
[Address] EAT @explorer.exe (ldap_addA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5BD8)
[Address] EAT @explorer.exe (ldap_addW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5AF8)
[Address] EAT @explorer.exe (ldap_add_ext) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5D38)
[Address] EAT @explorer.exe (ldap_add_extA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5D38)
[Address] EAT @explorer.exe (ldap_add_extW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5C48)
[Address] EAT @explorer.exe (ldap_add_ext_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C600C)
[Address] EAT @explorer.exe (ldap_add_ext_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C600C)
[Address] EAT @explorer.exe (ldap_add_ext_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5EA4)
[Address] EAT @explorer.exe (ldap_add_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5C28)
[Address] EAT @explorer.exe (ldap_add_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5C28)
[Address] EAT @explorer.exe (ldap_add_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C5C08)
[Address] EAT @explorer.exe (ldap_bind) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8034)
[Address] EAT @explorer.exe (ldap_bindA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8034)
[Address] EAT @explorer.exe (ldap_bindW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C7F20)
[Address] EAT @explorer.exe (ldap_bind_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8050)
[Address] EAT @explorer.exe (ldap_bind_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8050)
[Address] EAT @explorer.exe (ldap_bind_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A9B64)
[Address] EAT @explorer.exe (ldap_check_filterA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D6F0C)
[Address] EAT @explorer.exe (ldap_check_filterW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D6D08)
[Address] EAT @explorer.exe (ldap_cleanup) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC080)
[Address] EAT @explorer.exe (ldap_close_extended_op) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CBB9C)
[Address] EAT @explorer.exe (ldap_compare) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8C38)
[Address] EAT @explorer.exe (ldap_compareA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8C38)
[Address] EAT @explorer.exe (ldap_compareW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8B40)
[Address] EAT @explorer.exe (ldap_compare_ext) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8DD0)
[Address] EAT @explorer.exe (ldap_compare_extA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8DD0)
[Address] EAT @explorer.exe (ldap_compare_extW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8CC0)
[Address] EAT @explorer.exe (ldap_compare_ext_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C91B0)
[Address] EAT @explorer.exe (ldap_compare_ext_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C91B0)
[Address] EAT @explorer.exe (ldap_compare_ext_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C902C)
[Address] EAT @explorer.exe (ldap_compare_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8C98)
[Address] EAT @explorer.exe (ldap_compare_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8C98)
[Address] EAT @explorer.exe (ldap_compare_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8C70)
[Address] EAT @explorer.exe (ldap_conn_from_msg) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D8208)
[Address] EAT @explorer.exe (ldap_connect) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ABF14)
[Address] EAT @explorer.exe (ldap_control_free) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C9800)
[Address] EAT @explorer.exe (ldap_control_freeA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C9800)
[Address] EAT @explorer.exe (ldap_control_freeW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C9810)
[Address] EAT @explorer.exe (ldap_controls_free) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C97F4)
[Address] EAT @explorer.exe (ldap_controls_freeA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C97F4)
[Address] EAT @explorer.exe (ldap_controls_freeW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AFD18)
[Address] EAT @explorer.exe (ldap_count_entries) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD2DC)
[Address] EAT @explorer.exe (ldap_count_references) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7BE8)
[Address] EAT @explorer.exe (ldap_count_values) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D42A0)
[Address] EAT @explorer.exe (ldap_count_valuesA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D42A0)
[Address] EAT @explorer.exe (ldap_count_valuesW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD270)
[Address] EAT @explorer.exe (ldap_count_values_len) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD270)
[Address] EAT @explorer.exe (ldap_create_page_control) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D08D4)
[Address] EAT @explorer.exe (ldap_create_page_controlA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D08D4)
[Address] EAT @explorer.exe (ldap_create_page_controlW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D0800)
[Address] EAT @explorer.exe (ldap_create_sort_control) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D65A4)
[Address] EAT @explorer.exe (ldap_create_sort_controlA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D65A4)
[Address] EAT @explorer.exe (ldap_create_sort_controlW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D65C0)
[Address] EAT @explorer.exe (ldap_create_vlv_controlA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D14A4)
[Address] EAT @explorer.exe (ldap_create_vlv_controlW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D1480)
[Address] EAT @explorer.exe (ldap_delete) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAA90)
[Address] EAT @explorer.exe (ldap_deleteA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAA90)
[Address] EAT @explorer.exe (ldap_deleteW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAA60)
[Address] EAT @explorer.exe (ldap_delete_ext) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAAF4)
[Address] EAT @explorer.exe (ldap_delete_extA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAAF4)
[Address] EAT @explorer.exe (ldap_delete_extW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CA978)
[Address] EAT @explorer.exe (ldap_delete_ext_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CADA0)
[Address] EAT @explorer.exe (ldap_delete_ext_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CADA0)
[Address] EAT @explorer.exe (ldap_delete_ext_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAC50)
[Address] EAT @explorer.exe (ldap_delete_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAAE0)
[Address] EAT @explorer.exe (ldap_delete_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAAE0)
[Address] EAT @explorer.exe (ldap_delete_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CAAC0)
[Address] EAT @explorer.exe (ldap_dn2ufn) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CDCE4)
[Address] EAT @explorer.exe (ldap_dn2ufnA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CDCE4)
[Address] EAT @explorer.exe (ldap_dn2ufnW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CDA38)
[Address] EAT @explorer.exe (ldap_encode_sort_controlA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D6C3C)
[Address] EAT @explorer.exe (ldap_encode_sort_controlW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D6B74)
[Address] EAT @explorer.exe (ldap_err2string) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A2200)
[Address] EAT @explorer.exe (ldap_err2stringA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A2200)
[Address] EAT @explorer.exe (ldap_err2stringW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D8040)
[Address] EAT @explorer.exe (ldap_escape_filter_element) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A1588)
[Address] EAT @explorer.exe (ldap_escape_filter_elementA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A1588)
[Address] EAT @explorer.exe (ldap_escape_filter_elementW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D6F88)
[Address] EAT @explorer.exe (ldap_explode_dn) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CD968)
[Address] EAT @explorer.exe (ldap_explode_dnA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CD968)
[Address] EAT @explorer.exe (ldap_explode_dnW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CD6DC)
[Address] EAT @explorer.exe (ldap_extended_operation) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CB6D4)
[Address] EAT @explorer.exe (ldap_extended_operationA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CB6D4)
[Address] EAT @explorer.exe (ldap_extended_operationW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CB5E4)
[Address] EAT @explorer.exe (ldap_extended_operation_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CB840)
[Address] EAT @explorer.exe (ldap_extended_operation_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CBA1C)
[Address] EAT @explorer.exe (ldap_first_attribute) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C6DF4)
[Address] EAT @explorer.exe (ldap_first_attributeA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C6DF4)
[Address] EAT @explorer.exe (ldap_first_attributeW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD360)
[Address] EAT @explorer.exe (ldap_first_entry) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A7A68)
[Address] EAT @explorer.exe (ldap_first_reference) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7A78)
[Address] EAT @explorer.exe (ldap_free_controls) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C97F4)
[Address] EAT @explorer.exe (ldap_free_controlsA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C97F4)
[Address] EAT @explorer.exe (ldap_free_controlsW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C97F4)
[Address] EAT @explorer.exe (ldap_get_dn) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D42C0)
[Address] EAT @explorer.exe (ldap_get_dnA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D42C0)
[Address] EAT @explorer.exe (ldap_get_dnW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AFDD0)
[Address] EAT @explorer.exe (ldap_get_next_page) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CFE30)
[Address] EAT @explorer.exe (ldap_get_next_page_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CFFDC)
[Address] EAT @explorer.exe (ldap_get_option) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CBC58)
[Address] EAT @explorer.exe (ldap_get_optionA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CBC58)
[Address] EAT @explorer.exe (ldap_get_optionW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ACE54)
[Address] EAT @explorer.exe (ldap_get_paged_count) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D0248)
[Address] EAT @explorer.exe (ldap_get_values) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D412C)
[Address] EAT @explorer.exe (ldap_get_valuesA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D428C)
[Address] EAT @explorer.exe (ldap_get_valuesW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A85A4)
[Address] EAT @explorer.exe (ldap_get_values_len) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ADC94)
[Address] EAT @explorer.exe (ldap_get_values_lenA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ADC94)
[Address] EAT @explorer.exe (ldap_get_values_lenW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A868C)
[Address] EAT @explorer.exe (ldap_init) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF230)
[Address] EAT @explorer.exe (ldap_initA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF230)
[Address] EAT @explorer.exe (ldap_initW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ABF94)
[Address] EAT @explorer.exe (ldap_memfree) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A965C)
[Address] EAT @explorer.exe (ldap_memfreeA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A965C)
[Address] EAT @explorer.exe (ldap_memfreeW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AFEC0)
[Address] EAT @explorer.exe (ldap_modify) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC964)
[Address] EAT @explorer.exe (ldap_modifyA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC964)
[Address] EAT @explorer.exe (ldap_modifyW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC884)
[Address] EAT @explorer.exe (ldap_modify_ext) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CCAC4)
[Address] EAT @explorer.exe (ldap_modify_extA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CCAC4)
[Address] EAT @explorer.exe (ldap_modify_extW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC9D4)
[Address] EAT @explorer.exe (ldap_modify_ext_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CCD98)
[Address] EAT @explorer.exe (ldap_modify_ext_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CCD98)
[Address] EAT @explorer.exe (ldap_modify_ext_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CCC30)
[Address] EAT @explorer.exe (ldap_modify_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC9B4)
[Address] EAT @explorer.exe (ldap_modify_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC9B4)
[Address] EAT @explorer.exe (ldap_modify_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC994)
[Address] EAT @explorer.exe (ldap_modrdn) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D3468)
[Address] EAT @explorer.exe (ldap_modrdn2) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D303C)
[Address] EAT @explorer.exe (ldap_modrdn2A) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D303C)
[Address] EAT @explorer.exe (ldap_modrdn2W) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D2E70)
[Address] EAT @explorer.exe (ldap_modrdn2_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D330C)
[Address] EAT @explorer.exe (ldap_modrdn2_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D330C)
[Address] EAT @explorer.exe (ldap_modrdn2_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D31C4)
[Address] EAT @explorer.exe (ldap_modrdnA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D3468)
[Address] EAT @explorer.exe (ldap_modrdnW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D3454)
[Address] EAT @explorer.exe (ldap_modrdn_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D3490)
[Address] EAT @explorer.exe (ldap_modrdn_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D3490)
[Address] EAT @explorer.exe (ldap_modrdn_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D347C)
[Address] EAT @explorer.exe (ldap_msgfree) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A2980)
[Address] EAT @explorer.exe (ldap_next_attribute) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C6EA8)
[Address] EAT @explorer.exe (ldap_next_attributeA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C6EA8)
[Address] EAT @explorer.exe (ldap_next_attributeW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD3E4)
[Address] EAT @explorer.exe (ldap_next_entry) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AFBD0)
[Address] EAT @explorer.exe (ldap_next_reference) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7B28)
[Address] EAT @explorer.exe (ldap_open) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF124)
[Address] EAT @explorer.exe (ldap_openA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF124)
[Address] EAT @explorer.exe (ldap_openW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF114)
[Address] EAT @explorer.exe (ldap_parse_extended_resultA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D2154)
[Address] EAT @explorer.exe (ldap_parse_extended_resultW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D2080)
[Address] EAT @explorer.exe (ldap_parse_page_control) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D0C98)
[Address] EAT @explorer.exe (ldap_parse_page_controlA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D0C98)
[Address] EAT @explorer.exe (ldap_parse_page_controlW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D0BD0)
[Address] EAT @explorer.exe (ldap_parse_reference) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7D60)
[Address] EAT @explorer.exe (ldap_parse_referenceA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7D60)
[Address] EAT @explorer.exe (ldap_parse_referenceW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7CAC)
[Address] EAT @explorer.exe (ldap_parse_result) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D1F80)
[Address] EAT @explorer.exe (ldap_parse_resultA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D1F80)
[Address] EAT @explorer.exe (ldap_parse_resultW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D1E80)
[Address] EAT @explorer.exe (ldap_parse_sort_control) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D66F4)
[Address] EAT @explorer.exe (ldap_parse_sort_controlA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D66F4)
[Address] EAT @explorer.exe (ldap_parse_sort_controlW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D67C0)
[Address] EAT @explorer.exe (ldap_parse_vlv_controlA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D1A14)
[Address] EAT @explorer.exe (ldap_parse_vlv_controlW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D1934)
[Address] EAT @explorer.exe (ldap_perror) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D8090)
[Address] EAT @explorer.exe (ldap_rename_ext) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D35B4)
[Address] EAT @explorer.exe (ldap_rename_extA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D35B4)
[Address] EAT @explorer.exe (ldap_rename_extW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D34A4)
[Address] EAT @explorer.exe (ldap_rename_ext_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D39BC)
[Address] EAT @explorer.exe (ldap_rename_ext_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D39BC)
[Address] EAT @explorer.exe (ldap_rename_ext_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D3844)
[Address] EAT @explorer.exe (ldap_result) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD988)
[Address] EAT @explorer.exe (ldap_result2error) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A8BF0)
[Address] EAT @explorer.exe (ldap_sasl_bindA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D5CB0)
[Address] EAT @explorer.exe (ldap_sasl_bindW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D5EC4)
[Address] EAT @explorer.exe (ldap_sasl_bind_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D6004)
[Address] EAT @explorer.exe (ldap_sasl_bind_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D6208)
[Address] EAT @explorer.exe (ldap_search) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ADE04)
[Address] EAT @explorer.exe (ldap_searchA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ADE04)
[Address] EAT @explorer.exe (ldap_searchW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D4320)
[Address] EAT @explorer.exe (ldap_search_abandon_page) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D0538)
[Address] EAT @explorer.exe (ldap_search_ext) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D46D4)
[Address] EAT @explorer.exe (ldap_search_extA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D46D4)
[Address] EAT @explorer.exe (ldap_search_extW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D45B0)
[Address] EAT @explorer.exe (ldap_search_ext_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D48E0)
[Address] EAT @explorer.exe (ldap_search_ext_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D48E0)
[Address] EAT @explorer.exe (ldap_search_ext_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A8A10)
[Address] EAT @explorer.exe (ldap_search_init_page) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF910)
[Address] EAT @explorer.exe (ldap_search_init_pageA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF910)
[Address] EAT @explorer.exe (ldap_search_init_pageW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF7F0)
[Address] EAT @explorer.exe (ldap_search_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D443C)
[Address] EAT @explorer.exe (ldap_search_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D443C)
[Address] EAT @explorer.exe (ldap_search_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD130)
[Address] EAT @explorer.exe (ldap_search_st) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D4478)
[Address] EAT @explorer.exe (ldap_search_stA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D4478)
[Address] EAT @explorer.exe (ldap_search_stW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD16C)
[Address] EAT @explorer.exe (ldap_set_dbg_flags) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D809C)
[Address] EAT @explorer.exe (ldap_set_dbg_routine) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D8090)
[Address] EAT @explorer.exe (ldap_set_option) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CBD1C)
[Address] EAT @explorer.exe (ldap_set_optionA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CBD1C)
[Address] EAT @explorer.exe (ldap_set_optionW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ABE90)
[Address] EAT @explorer.exe (ldap_simple_bind) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C7FF4)
[Address] EAT @explorer.exe (ldap_simple_bindA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C7FF4)
[Address] EAT @explorer.exe (ldap_simple_bindW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C7D88)
[Address] EAT @explorer.exe (ldap_simple_bind_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8014)
[Address] EAT @explorer.exe (ldap_simple_bind_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C8014)
[Address] EAT @explorer.exe (ldap_simple_bind_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3C7E54)
[Address] EAT @explorer.exe (ldap_sslinit) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF1AC)
[Address] EAT @explorer.exe (ldap_sslinitA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CF1AC)
[Address] EAT @explorer.exe (ldap_sslinitW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3ABFA0)
[Address] EAT @explorer.exe (ldap_start_tls_sA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7A50)
[Address] EAT @explorer.exe (ldap_start_tls_sW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7A2C)
[Address] EAT @explorer.exe (ldap_startup) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CC034)
[Address] EAT @explorer.exe (ldap_stop_tls_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3D7690)
[Address] EAT @explorer.exe (ldap_ufn2dn) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE240)
[Address] EAT @explorer.exe (ldap_ufn2dnA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CE240)
[Address] EAT @explorer.exe (ldap_ufn2dnW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3CDD90)
[Address] EAT @explorer.exe (ldap_unbind) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A8294)
[Address] EAT @explorer.exe (ldap_unbind_s) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3AD96C)
[Address] EAT @explorer.exe (ldap_value_free) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A6620)
[Address] EAT @explorer.exe (ldap_value_freeA) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A6620)
[Address] EAT @explorer.exe (ldap_value_freeW) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A6684)
[Address] EAT @explorer.exe (ldap_value_free_len) : WININET.dll -> HOOKED (C:\Windows\system32\WLDAP32.dll @ 0xFE3A6684)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD10EZEX-00RKKA0 ATA Device +++++
--- User ---
[MBR] f8e66b74a5e424b9b6b79da02daef1ad
[BSP] 30123719fb799141c5ce03cb0b007e89 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) SAMSUNG HD322HJ ATA Device +++++
--- User ---
[MBR] 15edbef1e7daa217fef1204c6a1b1e39
[BSP] afba18ace768e6a74f0dd7618b3d6661 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 305143 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04172014_163256.txt >>

když to vidím , tak je pc plný havěti?

milan111 · Příspěvekod **milan111** » 17 dub 2014 16:35

mám smazat co ten poslední program našel?

Příspěvekod **Orcus** » 17 dub 2014 19:01

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Dej smazat pouze toto:

Kód: Vybrat vše

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 2 ¤¤¤
[V2][SUSP PATH] Hoolapp For Android : C:\Users\honza\AppData\Roaming\HOOLAP~1\UPDATE~1\UPDATE~1.EXE - /Check [x] -> NALEZENO
[V2][SUSP PATH] Hoolapp Init : C:\Users\honza\AppData\Roaming\HOOLAP~1\Hoolapp.exe - /Minimized [x] -> NALEZENO

- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

====================================================

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.

milan111 · Příspěvekod **milan111** » 22 dub 2014 17:37

17:27:09.0284 3008 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:27:11.0296 3008 ============================================================
17:27:11.0296 3008 Current date / time: 2014/04/22 17:27:11.0296
17:27:11.0296 3008 SystemInfo:
17:27:11.0296 3008
17:27:11.0296 3008 OS Version: 6.1.7600 ServicePack: 0.0
17:27:11.0296 3008 Product type: Workstation
17:27:11.0296 3008 ComputerName: HONZA-PC
17:27:11.0296 3008 UserName: honza
17:27:11.0296 3008 Windows directory: C:\Windows
17:27:11.0296 3008 System windows directory: C:\Windows
17:27:11.0296 3008 Running under WOW64
17:27:11.0296 3008 Processor architecture: Intel x64
17:27:11.0296 3008 Number of processors: 2
17:27:11.0296 3008 Page size: 0x1000
17:27:11.0296 3008 Boot type: Normal boot
17:27:11.0296 3008 ============================================================
17:27:12.0419 3008 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:27:12.0435 3008 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:27:12.0435 3008 ============================================================
17:27:12.0435 3008 \Device\Harddisk0\DR0:
17:27:12.0435 3008 MBR partitions:
17:27:12.0435 3008 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
17:27:12.0435 3008 \Device\Harddisk1\DR1:
17:27:12.0435 3008 MBR partitions:
17:27:12.0435 3008 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x253FB800
17:27:12.0435 3008 ============================================================
17:27:12.0466 3008 C: <-> \Device\Harddisk1\DR1\Partition1
17:27:12.0466 3008 F: <-> \Device\Harddisk0\DR0\Partition1
17:27:12.0466 3008 ============================================================
17:27:12.0466 3008 Initialize success
17:27:12.0466 3008 ============================================================
17:32:04.0196 2736 ============================================================
17:32:04.0196 2736 Scan started
17:32:04.0196 2736 Mode: Manual;
17:32:04.0196 2736 ============================================================
17:32:04.0743 2736 ================ Scan system memory ========================
17:32:04.0743 2736 System memory - ok
17:32:04.0743 2736 ================ Scan services =============================
17:32:04.0886 2736 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:32:04.0891 2736 1394ohci - ok
17:32:04.0925 2736 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
17:32:04.0928 2736 ACPI - ok
17:32:04.0945 2736 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
17:32:04.0946 2736 AcpiPmi - ok
17:32:05.0086 2736 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:32:05.0091 2736 AdobeFlashPlayerUpdateSvc - ok
17:32:05.0128 2736 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:32:05.0132 2736 adp94xx - ok
17:32:05.0168 2736 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:32:05.0171 2736 adpahci - ok
17:32:05.0186 2736 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:32:05.0188 2736 adpu320 - ok
17:32:05.0213 2736 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:32:05.0215 2736 AeLookupSvc - ok
17:32:05.0254 2736 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
17:32:05.0263 2736 AFD - ok
17:32:05.0284 2736 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
17:32:05.0286 2736 agp440 - ok
17:32:05.0308 2736 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:32:05.0309 2736 ALG - ok
17:32:05.0322 2736 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
17:32:05.0323 2736 aliide - ok
17:32:05.0362 2736 [ 66B54471B5856E314947881E28263A6D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:32:05.0364 2736 AMD External Events Utility - ok
17:32:05.0415 2736 AMD FUEL Service - ok
17:32:05.0420 2736 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
17:32:05.0421 2736 amdide - ok
17:32:05.0437 2736 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
17:32:05.0438 2736 amdiox64 - ok
17:32:05.0456 2736 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:32:05.0458 2736 AmdK8 - ok
17:32:05.0681 2736 [ FBB35875FEFE53D4280259842069ED72 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:32:05.0743 2736 amdkmdag - ok
17:32:05.0775 2736 [ A32BCAD9377E3B75D034CAFBA463A0AE ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:32:05.0779 2736 amdkmdap - ok
17:32:05.0804 2736 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:32:05.0805 2736 AmdPPM - ok
17:32:05.0830 2736 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
17:32:05.0831 2736 amdsata - ok
17:32:05.0856 2736 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:32:05.0858 2736 amdsbs - ok
17:32:05.0880 2736 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
17:32:05.0881 2736 amdxata - ok
17:32:05.0906 2736 [ E8CCB797DAF80779C768BD3A9FC8FCAF ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
17:32:05.0907 2736 AODDriver4.1 - ok
17:32:05.0923 2736 [ E8CCB797DAF80779C768BD3A9FC8FCAF ] AODDriver4.2.0 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
17:32:05.0924 2736 AODDriver4.2.0 - ok
17:32:05.0944 2736 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
17:32:05.0945 2736 AppID - ok
17:32:05.0974 2736 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:32:05.0975 2736 AppIDSvc - ok
17:32:05.0987 2736 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
17:32:05.0988 2736 Appinfo - ok
17:32:06.0009 2736 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
17:32:06.0011 2736 AppMgmt - ok
17:32:06.0029 2736 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:32:06.0030 2736 arc - ok
17:32:06.0040 2736 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:32:06.0041 2736 arcsas - ok
17:32:06.0093 2736 ASInsHelp - ok
17:32:06.0194 2736 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:32:06.0197 2736 aspnet_state - ok
17:32:06.0219 2736 [ 8BE618EB795A87DBFD1E09DA63F009C7 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:32:06.0222 2736 aswMonFlt - ok
17:32:06.0248 2736 [ D4259F75734EBCC8D815753B09EB2F0A ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
17:32:06.0250 2736 aswRdr - ok
17:32:06.0275 2736 [ 8D4B8BF93C65BDBC133B20706A3B5208 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
17:32:06.0276 2736 aswRvrt - ok
17:32:06.0323 2736 [ AA0D1B47BE967E1E17301DDFB66C432C ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:32:06.0329 2736 aswSnx - ok
17:32:06.0343 2736 [ 15C6B7D20EE0E44A4DF82183A89CCFC2 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:32:06.0346 2736 aswSP - ok
17:32:06.0372 2736 [ 81FA56F29440406A7264CBD7B1C7CB29 ] aswStm C:\Windows\system32\drivers\aswStm.sys
17:32:06.0373 2736 aswStm - ok
17:32:06.0403 2736 [ 0606875650850B0697D662934529F6FC ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
17:32:06.0404 2736 aswVmm - ok
17:32:06.0421 2736 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:32:06.0422 2736 AsyncMac - ok
17:32:06.0438 2736 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
17:32:06.0438 2736 atapi - ok
17:32:06.0487 2736 [ 770A3B0D78232B0C1054495392A1FBA3 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:32:06.0490 2736 AtiHDAudioService - ok
17:32:06.0525 2736 [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie64.sys
17:32:06.0526 2736 AtiPcie - ok
17:32:06.0562 2736 [ FC0E8778C000291CAF60EB88C011E931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
17:32:06.0565 2736 atksgt - ok
17:32:06.0602 2736 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:32:06.0608 2736 AudioEndpointBuilder - ok
17:32:06.0620 2736 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:32:06.0626 2736 AudioSrv - ok
17:32:06.0674 2736 [ BEA8D0FA8805CC2E6BB49728166699C7 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:32:06.0677 2736 avast! Antivirus - ok
17:32:06.0724 2736 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:32:06.0728 2736 AxInstSV - ok
17:32:06.0767 2736 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:32:06.0776 2736 b06bdrv - ok
17:32:06.0814 2736 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:32:06.0817 2736 b57nd60a - ok
17:32:06.0843 2736 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:32:06.0844 2736 BDESVC - ok
17:32:06.0853 2736 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:32:06.0855 2736 Beep - ok
17:32:06.0885 2736 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
17:32:06.0891 2736 BFE - ok
17:32:06.0942 2736 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
17:32:06.0959 2736 BITS - ok
17:32:06.0981 2736 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:32:06.0982 2736 blbdrive - ok
17:32:07.0003 2736 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:32:07.0005 2736 bowser - ok
17:32:07.0104 2736 [ D4F84730BE7FEB435D119792F84EA934 ] BRDriver64 C:\ProgramData\BitRaider\BRDriver64.sys
17:32:07.0107 2736 BRDriver64 - ok
17:32:07.0132 2736 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:32:07.0134 2736 BrFiltLo - ok
17:32:07.0159 2736 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:32:07.0160 2736 BrFiltUp - ok
17:32:07.0218 2736 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:32:07.0221 2736 BridgeMP - ok
17:32:07.0252 2736 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
17:32:07.0254 2736 Browser - ok
17:32:07.0272 2736 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:32:07.0275 2736 Brserid - ok
17:32:07.0293 2736 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:32:07.0295 2736 BrSerWdm - ok
17:32:07.0323 2736 [ 78561B78811A147B99CB47EBBD2D2847 ] BRSptSvc C:\ProgramData\BitRaider\BRSptSvc.exe
17:32:07.0327 2736 BRSptSvc - ok
17:32:07.0338 2736 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:32:07.0340 2736 BrUsbMdm - ok
17:32:07.0345 2736 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:32:07.0346 2736 BrUsbSer - ok
17:32:07.0414 2736 [ 414DFAB446F571E4244DC271D3F89C83 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
17:32:07.0418 2736 BstHdAndroidSvc - ok
17:32:07.0452 2736 [ 04A0614922FE91CC5C96DF83AE82363F ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
17:32:07.0454 2736 BstHdDrv - ok
17:32:07.0493 2736 [ 764FA53F58685B3A26CB376B929108BB ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
17:32:07.0497 2736 BstHdLogRotatorSvc - ok
17:32:07.0521 2736 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:32:07.0522 2736 BTHMODEM - ok
17:32:07.0545 2736 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:32:07.0547 2736 bthserv - ok
17:32:07.0674 2736 [ 72551A9AE5F68905DFC3CBA0D5242566 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
17:32:07.0686 2736 c2cautoupdatesvc - ok
17:32:07.0768 2736 [ 6B669A00A431FF6CDCE67458933F5F0F ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
17:32:07.0782 2736 c2cpnrsvc - ok
17:32:07.0803 2736 catchme - ok
17:32:07.0835 2736 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:32:07.0836 2736 cdfs - ok
17:32:07.0868 2736 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:32:07.0870 2736 cdrom - ok
17:32:07.0892 2736 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
17:32:07.0894 2736 CertPropSvc - ok
17:32:07.0910 2736 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:32:07.0911 2736 circlass - ok
17:32:07.0941 2736 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:32:07.0945 2736 CLFS - ok
17:32:08.0011 2736 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:32:08.0015 2736 clr_optimization_v2.0.50727_32 - ok
17:32:08.0056 2736 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:32:08.0059 2736 clr_optimization_v2.0.50727_64 - ok
17:32:08.0141 2736 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:32:08.0145 2736 clr_optimization_v4.0.30319_32 - ok
17:32:08.0166 2736 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:32:08.0170 2736 clr_optimization_v4.0.30319_64 - ok
17:32:08.0188 2736 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:32:08.0190 2736 CmBatt - ok
17:32:08.0210 2736 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
17:32:08.0212 2736 cmdide - ok
17:32:08.0244 2736 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
17:32:08.0248 2736 CNG - ok
17:32:08.0253 2736 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:32:08.0254 2736 Compbatt - ok
17:32:08.0271 2736 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:32:08.0272 2736 CompositeBus - ok
17:32:08.0283 2736 COMSysApp - ok
17:32:08.0322 2736 cpuz135 - ok
17:32:08.0328 2736 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:32:08.0329 2736 crcdisk - ok
17:32:08.0381 2736 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:32:08.0384 2736 CryptSvc - ok
17:32:08.0405 2736 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
17:32:08.0410 2736 CSC - ok
17:32:08.0442 2736 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
17:32:08.0448 2736 CscService - ok
17:32:08.0474 2736 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:32:08.0482 2736 DcomLaunch - ok
17:32:08.0521 2736 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:32:08.0525 2736 defragsvc - ok
17:32:08.0546 2736 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:32:08.0547 2736 DfsC - ok
17:32:08.0583 2736 [ E428DFFA96FAD07D8CA3C9082563A225 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
17:32:08.0585 2736 dg_ssudbus - ok
17:32:08.0614 2736 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
17:32:08.0617 2736 Dhcp - ok
17:32:08.0629 2736 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:32:08.0630 2736 discache - ok
17:32:08.0654 2736 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:32:08.0656 2736 Disk - ok
17:32:08.0685 2736 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:32:08.0688 2736 Dnscache - ok
17:32:08.0719 2736 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
17:32:08.0723 2736 dot3svc - ok
17:32:08.0734 2736 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
17:32:08.0736 2736 DPS - ok
17:32:08.0768 2736 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:32:08.0768 2736 drmkaud - ok
17:32:08.0797 2736 [ 6A0E850DDCB136AA3D2FB7234382DF12 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:32:08.0799 2736 dtsoftbus01 - ok
17:32:08.0835 2736 [ EBCE0B0924835F635F620D19F0529DCE ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:32:08.0840 2736 DXGKrnl - ok
17:32:08.0852 2736 EagleX64 - ok
17:32:08.0863 2736 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:32:08.0865 2736 EapHost - ok
17:32:08.0942 2736 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:32:08.0961 2736 ebdrv - ok
17:32:08.0982 2736 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
17:32:08.0985 2736 EFS - ok
17:32:09.0026 2736 [ B91D81B3B54A54CCAFC03733DBC2E29E ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:32:09.0030 2736 ehRecvr - ok
17:32:09.0041 2736 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:32:09.0042 2736 ehSched - ok
17:32:09.0072 2736 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:32:09.0075 2736 elxstor - ok
17:32:09.0132 2736 [ 20ECD0A490A121CB34F553FAD1DBBD39 ] EpsonScanSvc C:\Windows\system32\EscSvc64.exe
17:32:09.0138 2736 EpsonScanSvc - ok
17:32:09.0158 2736 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
17:32:09.0160 2736 ErrDev - ok
17:32:09.0194 2736 [ DCD7487D00AA4DFFAEB4C8B086AF1134 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
17:32:09.0197 2736 ES lite Service - ok
17:32:09.0256 2736 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:32:09.0261 2736 EventSystem - ok
17:32:09.0276 2736 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:32:09.0278 2736 exfat - ok
17:32:09.0294 2736 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:32:09.0296 2736 fastfat - ok
17:32:09.0327 2736 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
17:32:09.0334 2736 Fax - ok
17:32:09.0352 2736 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:32:09.0353 2736 fdc - ok
17:32:09.0363 2736 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:32:09.0365 2736 fdPHost - ok
17:32:09.0373 2736 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:32:09.0376 2736 FDResPub - ok
17:32:09.0387 2736 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:32:09.0388 2736 FileInfo - ok
17:32:09.0397 2736 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:32:09.0398 2736 Filetrace - ok
17:32:09.0412 2736 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:32:09.0413 2736 flpydisk - ok
17:32:09.0426 2736 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:32:09.0428 2736 FltMgr - ok
17:32:09.0449 2736 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\Windows\system32\FntCache.dll
17:32:09.0455 2736 FontCache - ok
17:32:09.0496 2736 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:32:09.0497 2736 FontCache3.0.0.0 - ok
17:32:09.0508 2736 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:32:09.0509 2736 FsDepends - ok
17:32:09.0531 2736 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:32:09.0532 2736 Fs_Rec - ok
17:32:09.0561 2736 [ AE6F0A6562D3ECCD613DE1FD8612AC4E ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
17:32:09.0562 2736 Futuremark SystemInfo Service - ok
17:32:09.0603 2736 [ B8B2A6E1558F8F5DE5CE431C5B2C7B09 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:32:09.0608 2736 fvevol - ok
17:32:09.0652 2736 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:32:09.0655 2736 gagp30kx - ok
17:32:09.0748 2736 [ 46E2828BCA26B31FA5A1DD4D84DF633D ] gdrv C:\Windows\gdrv.sys
17:32:09.0750 2736 gdrv - ok
17:32:09.0826 2736 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
17:32:09.0839 2736 gpsvc - ok
17:32:09.0923 2736 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:32:09.0926 2736 gupdate - ok
17:32:09.0934 2736 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:32:09.0935 2736 gupdatem - ok
17:32:09.0975 2736 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
17:32:09.0976 2736 hamachi - ok
17:32:10.0029 2736 [ C57174C191F04B07A9F24320C57888E1 ] Hamachi2Svc F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
17:32:10.0046 2736 Hamachi2Svc - ok
17:32:10.0064 2736 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:32:10.0065 2736 hcw85cir - ok
17:32:10.0093 2736 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:32:10.0095 2736 HdAudAddService - ok
17:32:10.0114 2736 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:32:10.0115 2736 HDAudBus - ok
17:32:10.0126 2736 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:32:10.0127 2736 HidBatt - ok
17:32:10.0141 2736 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:32:10.0142 2736 HidBth - ok
17:32:10.0159 2736 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:32:10.0160 2736 HidIr - ok
17:32:10.0175 2736 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
17:32:10.0177 2736 hidserv - ok
17:32:10.0193 2736 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:32:10.0194 2736 HidUsb - ok
17:32:10.0213 2736 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:32:10.0215 2736 hkmsvc - ok
17:32:10.0229 2736 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:32:10.0231 2736 HomeGroupListener - ok
17:32:10.0251 2736 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:32:10.0254 2736 HomeGroupProvider - ok
17:32:10.0274 2736 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
17:32:10.0275 2736 HpSAMD - ok
17:32:10.0304 2736 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:32:10.0308 2736 HTTP - ok
17:32:10.0320 2736 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:32:10.0321 2736 hwpolicy - ok
17:32:10.0343 2736 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:32:10.0344 2736 i8042prt - ok
17:32:10.0365 2736 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
17:32:10.0368 2736 iaStorV - ok
17:32:10.0426 2736 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:32:10.0427 2736 IDriverT - ok
17:32:10.0471 2736 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:32:10.0485 2736 idsvc - ok
17:32:10.0506 2736 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:32:10.0507 2736 iirsp - ok
17:32:10.0541 2736 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
17:32:10.0547 2736 IKEEXT - ok
17:32:10.0622 2736 [ AF87012C22372CC982A1E5B597DEB5FA ] IMPI Updater C:\Program Files\IMPI\ExtensionUpdaterService.exe
17:32:10.0626 2736 IMPI Updater - ok
17:32:10.0768 2736 [ E551BB77E7D436380139977124BDFF62 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:32:10.0793 2736 IntcAzAudAddService - ok
17:32:10.0809 2736 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
17:32:10.0810 2736 intelide - ok
17:32:10.0828 2736 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:32:10.0829 2736 intelppm - ok
17:32:10.0845 2736 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:32:10.0847 2736 IPBusEnum - ok
17:32:10.0864 2736 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:32:10.0865 2736 IpFilterDriver - ok
17:32:10.0888 2736 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:32:10.0892 2736 iphlpsvc - ok
17:32:10.0906 2736 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:32:10.0907 2736 IPMIDRV - ok
17:32:10.0916 2736 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:32:10.0917 2736 IPNAT - ok
17:32:10.0946 2736 [ 05360B1EA5A2ABF620D1D96EBD8BD8F1 ] irda C:\Windows\system32\DRIVERS\irda.sys
17:32:10.0947 2736 irda - ok
17:32:10.0965 2736 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:32:10.0966 2736 IRENUM - ok
17:32:10.0987 2736 [ 3848384AB383F0A8F506C4370635C1F9 ] Irmon C:\Windows\System32\irmon.dll
17:32:10.0989 2736 Irmon - ok
17:32:11.0002 2736 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
17:32:11.0003 2736 isapnp - ok
17:32:11.0029 2736 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:32:11.0031 2736 iScsiPrt - ok
17:32:11.0047 2736 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:32:11.0048 2736 kbdclass - ok
17:32:11.0065 2736 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:32:11.0066 2736 kbdhid - ok
17:32:11.0089 2736 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
17:32:11.0091 2736 KeyIso - ok
17:32:11.0119 2736 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:32:11.0120 2736 KSecDD - ok
17:32:11.0135 2736 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:32:11.0136 2736 KSecPkg - ok
17:32:11.0144 2736 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:32:11.0145 2736 ksthunk - ok
17:32:11.0175 2736 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:32:11.0179 2736 KtmRm - ok
17:32:11.0229 2736 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
17:32:11.0233 2736 LanmanServer - ok
17:32:11.0256 2736 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:32:11.0260 2736 LanmanWorkstation - ok
17:32:11.0304 2736 [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
17:32:11.0305 2736 lirsgt - ok
17:32:11.0336 2736 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:32:11.0338 2736 lltdio - ok
17:32:11.0367 2736 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:32:11.0372 2736 lltdsvc - ok
17:32:11.0390 2736 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:32:11.0393 2736 lmhosts - ok
17:32:11.0422 2736 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:32:11.0423 2736 LSI_FC - ok
17:32:11.0435 2736 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:32:11.0436 2736 LSI_SAS - ok
17:32:11.0453 2736 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:32:11.0454 2736 LSI_SAS2 - ok
17:32:11.0474 2736 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:32:11.0475 2736 LSI_SCSI - ok
17:32:11.0493 2736 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:32:11.0494 2736 luafv - ok
17:32:11.0539 2736 [ FD5465B876D55534117963FAAA4B9DFC ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:32:11.0540 2736 MBAMProtector - ok
17:32:11.0615 2736 [ 0E08BDD7326E657D59DB40BAD23D8169 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
17:32:11.0640 2736 MBAMScheduler - ok
17:32:11.0704 2736 [ A8E7F3DB083EB0839DFC1C763CDD2594 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
17:32:11.0720 2736 MBAMService - ok
17:32:11.0763 2736 [ 6140163BFE9D8F2DFDBA088ED5521C13 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
17:32:11.0765 2736 MBAMSwissArmy - ok
17:32:11.0784 2736 [ C49915271600CFC2305FAA4271D0002F ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
17:32:11.0786 2736 MBAMWebAccessControl - ok
17:32:11.0806 2736 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:32:11.0809 2736 Mcx2Svc - ok
17:32:11.0824 2736 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:32:11.0825 2736 megasas - ok
17:32:11.0845 2736 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:32:11.0847 2736 MegaSR - ok
17:32:11.0873 2736 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:32:11.0876 2736 MMCSS - ok
17:32:11.0887 2736 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:32:11.0888 2736 Modem - ok
17:32:11.0913 2736 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:32:11.0914 2736 monitor - ok
17:32:11.0936 2736 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:32:11.0937 2736 mouclass - ok
17:32:11.0950 2736 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:32:11.0951 2736 mouhid - ok
17:32:11.0966 2736 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:32:11.0967 2736 mountmgr - ok
17:32:11.0992 2736 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
17:32:11.0994 2736 mpio - ok
17:32:12.0016 2736 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:32:12.0018 2736 mpsdrv - ok
17:32:12.0050 2736 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:32:12.0057 2736 MpsSvc - ok
17:32:12.0071 2736 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:32:12.0073 2736 MRxDAV - ok
17:32:12.0097 2736 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:32:12.0099 2736 mrxsmb - ok
17:32:12.0115 2736 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:32:12.0118 2736 mrxsmb10 - ok
17:32:12.0132 2736 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:32:12.0133 2736 mrxsmb20 - ok
17:32:12.0143 2736 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:32:12.0144 2736 msahci - ok
17:32:12.0159 2736 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
17:32:12.0161 2736 msdsm - ok
17:32:12.0177 2736 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:32:12.0180 2736 MSDTC - ok
17:32:12.0201 2736 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:32:12.0202 2736 Msfs - ok
17:32:12.0216 2736 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:32:12.0217 2736 mshidkmdf - ok
17:32:12.0229 2736 MSICDSetup - ok
17:32:12.0253 2736 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
17:32:12.0254 2736 msisadrv - ok
17:32:12.0277 2736 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:32:12.0280 2736 MSiSCSI - ok
17:32:12.0284 2736 msiserver - ok
17:32:12.0368 2736 [ C23F5F6865AD25DD70A00A32DEA2D0A9 ] MSI_SuperCharger C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
17:32:12.0372 2736 MSI_SuperCharger - ok
17:32:12.0429 2736 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:32:12.0431 2736 MSKSSRV - ok
17:32:12.0491 2736 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:32:12.0493 2736 MSPCLOCK - ok
17:32:12.0509 2736 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:32:12.0511 2736 MSPQM - ok
17:32:12.0542 2736 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:32:12.0549 2736 MsRPC - ok
17:32:12.0573 2736 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:32:12.0574 2736 mssmbios - ok
17:32:12.0587 2736 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:32:12.0588 2736 MSTEE - ok
17:32:12.0606 2736 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:32:12.0608 2736 MTConfig - ok
17:32:12.0628 2736 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:32:12.0629 2736 Mup - ok
17:32:12.0653 2736 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
17:32:12.0661 2736 napagent - ok
17:32:12.0689 2736 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:32:12.0693 2736 NativeWifiP - ok
17:32:12.0717 2736 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
17:32:12.0722 2736 NDIS - ok
17:32:12.0739 2736 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:32:12.0740 2736 NdisCap - ok
17:32:12.0761 2736 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:32:12.0762 2736 NdisTapi - ok
17:32:12.0779 2736 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:32:12.0780 2736 Ndisuio - ok
17:32:12.0794 2736 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:32:12.0795 2736 NdisWan - ok
17:32:12.0809 2736 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:32:12.0810 2736 NDProxy - ok
17:32:12.0816 2736 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:32:12.0817 2736 NetBIOS - ok
17:32:12.0827 2736 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:32:12.0829 2736 NetBT - ok
17:32:12.0839 2736 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
17:32:12.0841 2736 Netlogon - ok
17:32:12.0865 2736 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:32:12.0869 2736 Netman - ok
17:32:12.0906 2736 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:12.0907 2736 NetMsmqActivator - ok
17:32:12.0917 2736 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:12.0918 2736 NetPipeActivator - ok
17:32:12.0932 2736 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:32:12.0937 2736 netprofm - ok
17:32:12.0941 2736 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:12.0943 2736 NetTcpActivator - ok
17:32:12.0947 2736 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:12.0949 2736 NetTcpPortSharing - ok
17:32:12.0977 2736 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:32:12.0978 2736 nfrd960 - ok
17:32:13.0004 2736 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:32:13.0007 2736 NlaSvc - ok
17:32:13.0016 2736 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:32:13.0017 2736 Npfs - ok
17:32:13.0037 2736 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:32:13.0039 2736 nsi - ok
17:32:13.0046 2736 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:32:13.0047 2736 nsiproxy - ok
17:32:13.0080 2736 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:32:13.0089 2736 Ntfs - ok
17:32:13.0131 2736 [ 23CF3DA010497EB2BF39A5C5A57E437C ] NTIOLib_1_0_3 C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys
17:32:13.0132 2736 NTIOLib_1_0_3 - ok
17:32:13.0146 2736 NTIOLib_1_0_C - ok
17:32:13.0165 2736 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:32:13.0167 2736 Null - ok
17:32:13.0416 2736 [ 52B33E12FF8C9E219CAEC1BB4A5F5E4C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:32:13.0473 2736 nvlddmkm - ok

milan111 · Příspěvekod **milan111** » 22 dub 2014 17:39

2.část
17:32:13.0549 2736 [ D2FE0376285A783693469422678E878B ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
17:32:13.0558 2736 NvNetworkService - ok
17:32:13.0588 2736 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
17:32:13.0590 2736 nvraid - ok
17:32:13.0615 2736 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
17:32:13.0616 2736 nvstor - ok
17:32:14.0128 2736 [ 4F0E2990DB12849D428DE7B0AC5D92B9 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
17:32:14.0208 2736 NvStreamSvc - ok
17:32:14.0259 2736 [ 2B47EDD27365F9F5D8E87648BECF52C4 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:32:14.0266 2736 nvsvc - ok
17:32:14.0292 2736 [ 939C0FAE9CC0CDD69E6508BDE4C11FE5 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
17:32:14.0293 2736 nvvad_WaveExtensible - ok
17:32:14.0312 2736 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
17:32:14.0313 2736 nv_agp - ok
17:32:14.0330 2736 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:32:14.0331 2736 ohci1394 - ok
17:32:14.0424 2736 [ DA345DE3B450E9E1691E7B9956D8FFC3 ] OMSI download service C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
17:32:14.0428 2736 OMSI download service - ok
17:32:14.0459 2736 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:32:14.0472 2736 p2pimsvc - ok
17:32:14.0492 2736 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:32:14.0499 2736 p2psvc - ok
17:32:14.0525 2736 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:32:14.0526 2736 Parport - ok
17:32:14.0546 2736 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:32:14.0548 2736 partmgr - ok
17:32:14.0555 2736 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:32:14.0560 2736 PcaSvc - ok
17:32:14.0575 2736 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
17:32:14.0577 2736 pci - ok
17:32:14.0586 2736 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
17:32:14.0586 2736 pciide - ok
17:32:14.0601 2736 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:32:14.0603 2736 pcmcia - ok
17:32:14.0623 2736 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:32:14.0624 2736 pcw - ok
17:32:14.0646 2736 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:32:14.0649 2736 PEAUTH - ok
17:32:14.0676 2736 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
17:32:14.0684 2736 PeerDistSvc - ok
17:32:14.0741 2736 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:32:14.0743 2736 PerfHost - ok
17:32:14.0775 2736 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
17:32:14.0783 2736 pla - ok
17:32:14.0831 2736 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:32:14.0847 2736 PlugPlay - ok
17:32:14.0873 2736 PnkBstrA - ok
17:32:14.0890 2736 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:32:14.0894 2736 PNRPAutoReg - ok
17:32:14.0913 2736 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:32:14.0916 2736 PNRPsvc - ok
17:32:14.0946 2736 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:32:14.0950 2736 PolicyAgent - ok
17:32:14.0980 2736 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:32:14.0983 2736 Power - ok
17:32:15.0041 2736 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:32:15.0045 2736 PptpMiniport - ok
17:32:15.0112 2736 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:32:15.0115 2736 Processor - ok
17:32:15.0136 2736 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
17:32:15.0147 2736 ProfSvc - ok
17:32:15.0162 2736 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:32:15.0165 2736 ProtectedStorage - ok
17:32:15.0190 2736 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:32:15.0192 2736 Psched - ok
17:32:15.0230 2736 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:32:15.0240 2736 ql2300 - ok
17:32:15.0263 2736 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:32:15.0264 2736 ql40xx - ok
17:32:15.0279 2736 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:32:15.0283 2736 QWAVE - ok
17:32:15.0297 2736 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:32:15.0297 2736 QWAVEdrv - ok
17:32:15.0307 2736 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:32:15.0308 2736 RasAcd - ok
17:32:15.0330 2736 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:32:15.0331 2736 RasAgileVpn - ok
17:32:15.0345 2736 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:32:15.0348 2736 RasAuto - ok
17:32:15.0356 2736 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:32:15.0358 2736 Rasl2tp - ok
17:32:15.0374 2736 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
17:32:15.0379 2736 RasMan - ok
17:32:15.0387 2736 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:32:15.0388 2736 RasPppoe - ok
17:32:15.0409 2736 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:32:15.0410 2736 RasSstp - ok
17:32:15.0425 2736 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:32:15.0427 2736 rdbss - ok
17:32:15.0435 2736 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:32:15.0436 2736 rdpbus - ok
17:32:15.0446 2736 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:32:15.0447 2736 RDPCDD - ok
17:32:15.0469 2736 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
17:32:15.0470 2736 RDPDR - ok
17:32:15.0493 2736 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:32:15.0494 2736 RDPENCDD - ok
17:32:15.0499 2736 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:32:15.0500 2736 RDPREFMP - ok
17:32:15.0525 2736 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:32:15.0526 2736 RDPWD - ok
17:32:15.0571 2736 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:32:15.0577 2736 rdyboost - ok
17:32:15.0604 2736 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:32:15.0614 2736 RemoteAccess - ok
17:32:15.0637 2736 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:32:15.0642 2736 RemoteRegistry - ok
17:32:15.0669 2736 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:32:15.0674 2736 RpcEptMapper - ok
17:32:15.0689 2736 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:32:15.0692 2736 RpcLocator - ok
17:32:15.0715 2736 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
17:32:15.0720 2736 RpcSs - ok
17:32:15.0730 2736 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:32:15.0731 2736 rspndr - ok
17:32:15.0788 2736 [ 130DD683DCC902F47A4AC35201D07E2F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:32:15.0802 2736 RTL8167 - ok
17:32:15.0842 2736 [ C92E383CDAFE94B0DA30CBFCD561ECF8 ] s1039bus C:\Windows\system32\DRIVERS\s1039bus.sys
17:32:15.0844 2736 s1039bus - ok
17:32:15.0873 2736 [ CBACDDCE5FD32310FD5855E1FD8517E8 ] s1039mdfl C:\Windows\system32\DRIVERS\s1039mdfl.sys
17:32:15.0875 2736 s1039mdfl - ok
17:32:15.0910 2736 [ A339F1E0BC7AF29B2FDBA32AE4B9FCA4 ] s1039mdm C:\Windows\system32\DRIVERS\s1039mdm.sys
17:32:15.0912 2736 s1039mdm - ok
17:32:15.0926 2736 [ 84E260AAD1BB19DFCC0DD333CB83BBA7 ] s1039mgmt C:\Windows\system32\DRIVERS\s1039mgmt.sys
17:32:15.0928 2736 s1039mgmt - ok
17:32:15.0963 2736 [ 0772F403D615563E9D8D32BA7A132D1E ] s1039nd5 C:\Windows\system32\DRIVERS\s1039nd5.sys
17:32:15.0964 2736 s1039nd5 - ok
17:32:15.0981 2736 [ 134EDBCE4DACD749FC508AFE1C512D09 ] s1039obex C:\Windows\system32\DRIVERS\s1039obex.sys
17:32:15.0983 2736 s1039obex - ok
17:32:15.0995 2736 [ BC54B27EC3900328BC390E98BBFC9D3A ] s1039unic C:\Windows\system32\DRIVERS\s1039unic.sys
17:32:15.0997 2736 s1039unic - ok
17:32:16.0009 2736 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
17:32:16.0011 2736 s3cap - ok
17:32:16.0024 2736 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
17:32:16.0026 2736 SamSs - ok
17:32:16.0045 2736 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:32:16.0046 2736 sbp2port - ok
17:32:16.0064 2736 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:32:16.0067 2736 SCardSvr - ok
17:32:16.0079 2736 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:32:16.0080 2736 scfilter - ok
17:32:16.0116 2736 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
17:32:16.0124 2736 Schedule - ok
17:32:16.0145 2736 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:32:16.0146 2736 SCPolicySvc - ok
17:32:16.0159 2736 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:32:16.0163 2736 SDRSVC - ok
17:32:16.0177 2736 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:32:16.0178 2736 secdrv - ok
17:32:16.0190 2736 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
17:32:16.0193 2736 seclogon - ok
17:32:16.0202 2736 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
17:32:16.0206 2736 SENS - ok
17:32:16.0221 2736 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:32:16.0224 2736 SensrSvc - ok
17:32:16.0250 2736 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:32:16.0251 2736 Serenum - ok
17:32:16.0261 2736 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:32:16.0262 2736 Serial - ok
17:32:16.0272 2736 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:32:16.0274 2736 sermouse - ok
17:32:16.0290 2736 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
17:32:16.0294 2736 SessionEnv - ok
17:32:16.0352 2736 [ A48B9F81D3C2BA989AE2D566747B4623 ] sfdrv01 C:\Windows\system32\drivers\sfdrv01.sys
17:32:16.0356 2736 sfdrv01 - ok
17:32:16.0376 2736 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:32:16.0378 2736 sffdisk - ok
17:32:16.0397 2736 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:32:16.0399 2736 sffp_mmc - ok
17:32:16.0408 2736 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:32:16.0409 2736 sffp_sd - ok
17:32:16.0437 2736 [ 9E0ECDA6C72C5D0D8CF3F0FBA076422B ] sfhlp02 C:\Windows\system32\drivers\sfhlp02.sys
17:32:16.0439 2736 sfhlp02 - ok
17:32:16.0451 2736 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:32:16.0453 2736 sfloppy - ok
17:32:16.0495 2736 [ F65D13175EBF3FA49B1F7F948926A16E ] sfvfs02 C:\Windows\system32\drivers\sfvfs02.sys
17:32:16.0496 2736 sfvfs02 - ok
17:32:16.0529 2736 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:32:16.0534 2736 SharedAccess - ok
17:32:16.0550 2736 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:32:16.0557 2736 ShellHWDetection - ok
17:32:16.0581 2736 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:32:16.0583 2736 SiSRaid2 - ok
17:32:16.0597 2736 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:32:16.0599 2736 SiSRaid4 - ok
17:32:16.0688 2736 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:32:16.0692 2736 SkypeUpdate - ok
17:32:16.0722 2736 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:32:16.0726 2736 Smb - ok
17:32:16.0759 2736 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:32:16.0763 2736 SNMPTRAP - ok
17:32:16.0772 2736 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:32:16.0774 2736 spldr - ok
17:32:16.0801 2736 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
17:32:16.0810 2736 Spooler - ok
17:32:16.0897 2736 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
17:32:16.0924 2736 sppsvc - ok
17:32:16.0939 2736 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:32:16.0942 2736 sppuinotify - ok
17:32:16.0969 2736 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:32:16.0972 2736 srv - ok
17:32:17.0002 2736 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:32:17.0004 2736 srv2 - ok
17:32:17.0021 2736 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:32:17.0023 2736 srvnet - ok
17:32:17.0034 2736 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:32:17.0038 2736 SSDPSRV - ok
17:32:17.0051 2736 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:32:17.0054 2736 SstpSvc - ok
17:32:17.0129 2736 [ 2F3B5A3567FFB343D8867C3D34C687F1 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
17:32:17.0139 2736 Steam Client Service - ok
17:32:17.0227 2736 [ B5D2F4BF587FD60AF75B09EFC1AD0E0A ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:32:17.0234 2736 Stereo Service - ok
17:32:17.0262 2736 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:32:17.0263 2736 stexstor - ok
17:32:17.0302 2736 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
17:32:17.0312 2736 stisvc - ok
17:32:17.0344 2736 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
17:32:17.0346 2736 storflt - ok
17:32:17.0351 2736 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
17:32:17.0352 2736 storvsc - ok
17:32:17.0389 2736 [ 2663DDE5852B05768C526B78FA99E6B6 ] stus2x64 C:\Windows\system32\DRIVERS\stusb2ir.sys
17:32:17.0390 2736 stus2x64 - ok
17:32:17.0404 2736 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:32:17.0405 2736 swenum - ok
17:32:17.0488 2736 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:32:17.0505 2736 swprv - ok
17:32:17.0552 2736 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
17:32:17.0566 2736 SysMain - ok
17:32:17.0582 2736 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:32:17.0586 2736 TabletInputService - ok
17:32:17.0609 2736 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
17:32:17.0613 2736 TapiSrv - ok
17:32:17.0631 2736 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:32:17.0635 2736 TBS - ok
17:32:17.0719 2736 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:32:17.0739 2736 Tcpip - ok
17:32:17.0768 2736 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:32:17.0778 2736 TCPIP6 - ok
17:32:17.0791 2736 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:32:17.0792 2736 tcpipreg - ok
17:32:17.0806 2736 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:32:17.0807 2736 TDPIPE - ok
17:32:17.0832 2736 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:32:17.0833 2736 TDTCP - ok
17:32:17.0856 2736 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:32:17.0860 2736 tdx - ok
17:32:17.0876 2736 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:32:17.0879 2736 TermDD - ok
17:32:17.0902 2736 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
17:32:17.0912 2736 TermService - ok
17:32:17.0925 2736 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:32:17.0930 2736 Themes - ok
17:32:17.0954 2736 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:32:17.0957 2736 THREADORDER - ok
17:32:17.0974 2736 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:32:17.0980 2736 TrkWks - ok
17:32:18.0020 2736 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:32:18.0023 2736 TrustedInstaller - ok
17:32:18.0037 2736 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:32:18.0039 2736 tssecsrv - ok
17:32:18.0063 2736 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:32:18.0065 2736 tunnel - ok
17:32:18.0095 2736 [ 4A531079746D39026D975D3B02F7E452 ] TunngleService F:\Program Files (x86)\Tunngle\TnglCtrl.exe
17:32:18.0101 2736 TunngleService - ok
17:32:18.0113 2736 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:32:18.0114 2736 uagp35 - ok
17:32:18.0132 2736 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:32:18.0135 2736 udfs - ok
17:32:18.0157 2736 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:32:18.0160 2736 UI0Detect - ok
17:32:18.0177 2736 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
17:32:18.0178 2736 uliagpkx - ok
17:32:18.0202 2736 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:32:18.0204 2736 umbus - ok
17:32:18.0222 2736 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:32:18.0223 2736 UmPass - ok
17:32:18.0237 2736 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
17:32:18.0241 2736 UmRdpService - ok
17:32:18.0253 2736 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:32:18.0258 2736 upnphost - ok
17:32:18.0277 2736 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:32:18.0279 2736 usbccgp - ok
17:32:18.0295 2736 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:32:18.0296 2736 usbcir - ok
17:32:18.0311 2736 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:32:18.0312 2736 usbehci - ok
17:32:18.0340 2736 [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
17:32:18.0341 2736 usbfilter - ok
17:32:18.0356 2736 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:32:18.0359 2736 usbhub - ok
17:32:18.0374 2736 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:32:18.0375 2736 usbohci - ok
17:32:18.0390 2736 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:32:18.0391 2736 usbprint - ok
17:32:18.0437 2736 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:32:18.0438 2736 usbscan - ok
17:32:18.0453 2736 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:32:18.0457 2736 USBSTOR - ok
17:32:18.0474 2736 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:32:18.0477 2736 usbuhci - ok
17:32:18.0494 2736 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:32:18.0499 2736 UxSms - ok
17:32:18.0513 2736 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
17:32:18.0515 2736 VaultSvc - ok
17:32:18.0534 2736 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
17:32:18.0535 2736 vdrvroot - ok
17:32:18.0555 2736 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
17:32:18.0561 2736 vds - ok
17:32:18.0572 2736 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:32:18.0573 2736 vga - ok
17:32:18.0585 2736 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:32:18.0586 2736 VgaSave - ok
17:32:18.0607 2736 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:32:18.0609 2736 vhdmp - ok
17:32:18.0627 2736 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
17:32:18.0628 2736 viaide - ok
17:32:18.0647 2736 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
17:32:18.0648 2736 vmbus - ok
17:32:18.0660 2736 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
17:32:18.0661 2736 VMBusHID - ok
17:32:18.0675 2736 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
17:32:18.0676 2736 volmgr - ok
17:32:18.0694 2736 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:32:18.0696 2736 volmgrx - ok
17:32:18.0734 2736 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:32:18.0736 2736 volsnap - ok
17:32:18.0761 2736 [ A0CA9649259E426DD6DBE51A0E7A02A9 ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys
17:32:18.0764 2736 Vsdatant - ok
17:32:18.0902 2736 [ 2393EEC848F984C50F2891E1F05BEDF4 ] vsmon C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
17:32:18.0932 2736 vsmon - ok
17:32:18.0958 2736 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:32:18.0960 2736 vsmraid - ok
17:32:19.0009 2736 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
17:32:19.0020 2736 VSS - ok
17:32:19.0031 2736 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:32:19.0032 2736 vwifibus - ok
17:32:19.0049 2736 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:32:19.0054 2736 W32Time - ok
17:32:19.0067 2736 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:32:19.0068 2736 WacomPen - ok
17:32:19.0092 2736 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:32:19.0094 2736 WANARP - ok
17:32:19.0097 2736 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:32:19.0098 2736 Wanarpv6 - ok
17:32:19.0130 2736 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
17:32:19.0140 2736 wbengine - ok
17:32:19.0160 2736 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:32:19.0164 2736 WbioSrvc - ok
17:32:19.0181 2736 [ 8321C2CA3B62B61B293CDA3451984468 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:32:19.0186 2736 wcncsvc - ok
17:32:19.0198 2736 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:32:19.0201 2736 WcsPlugInService - ok
17:32:19.0217 2736 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:32:19.0218 2736 Wd - ok
17:32:19.0238 2736 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:32:19.0242 2736 Wdf01000 - ok
17:32:19.0259 2736 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:32:19.0262 2736 WdiServiceHost - ok
17:32:19.0266 2736 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:32:19.0269 2736 WdiSystemHost - ok
17:32:19.0285 2736 [ 8A438CBB8C032A0C798B0C642FFBE572 ] WebClient C:\Windows\System32\webclnt.dll
17:32:19.0290 2736 WebClient - ok
17:32:19.0306 2736 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:32:19.0311 2736 Wecsvc - ok
17:32:19.0327 2736 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:32:19.0330 2736 wercplsupport - ok
17:32:19.0349 2736 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:32:19.0352 2736 WerSvc - ok
17:32:19.0371 2736 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:32:19.0372 2736 WfpLwf - ok
17:32:19.0383 2736 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:32:19.0384 2736 WIMMount - ok
17:32:19.0400 2736 WinDefend - ok
17:32:19.0408 2736 WinHttpAutoProxySvc - ok
17:32:19.0446 2736 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:32:19.0448 2736 Winmgmt - ok
17:32:19.0498 2736 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
17:32:19.0511 2736 WinRM - ok
17:32:19.0550 2736 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:32:19.0551 2736 WinUsb - ok
17:32:19.0587 2736 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:32:19.0609 2736 Wlansvc - ok
17:32:19.0638 2736 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:32:19.0639 2736 WmiAcpi - ok
17:32:19.0660 2736 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:32:19.0662 2736 wmiApSrv - ok
17:32:19.0675 2736 WMPNetworkSvc - ok
17:32:19.0690 2736 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:32:19.0695 2736 WPCSvc - ok
17:32:19.0711 2736 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:32:19.0716 2736 WPDBusEnum - ok
17:32:19.0730 2736 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:32:19.0731 2736 ws2ifsl - ok
17:32:19.0740 2736 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
17:32:19.0745 2736 wscsvc - ok
17:32:19.0748 2736 WSearch - ok
17:32:19.0824 2736 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:32:19.0844 2736 wuauserv - ok
17:32:19.0858 2736 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:32:19.0859 2736 WudfPf - ok
17:32:19.0880 2736 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:32:19.0882 2736 WUDFRd - ok
17:32:19.0898 2736 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:32:19.0902 2736 wudfsvc - ok
17:32:19.0916 2736 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:32:19.0920 2736 WwanSvc - ok
17:32:19.0961 2736 [ 5131B819EA4AA9FB25ECFE27B603EE29 ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
17:32:19.0962 2736 ZAPrivacyService - ok
17:32:19.0972 2736 ================ Scan global ===============================
17:32:19.0993 2736 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:32:20.0034 2736 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\Windows\system32\winsrv.dll
17:32:20.0042 2736 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\Windows\system32\winsrv.dll
17:32:20.0068 2736 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:32:20.0095 2736 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:32:20.0099 2736 [Global] - ok
17:32:20.0099 2736 ================ Scan MBR ==================================
17:32:20.0102 2736 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:32:20.0181 2736 \Device\Harddisk0\DR0 - ok
17:32:20.0201 2736 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:32:20.0377 2736 \Device\Harddisk1\DR1 - ok
17:32:20.0377 2736 ================ Scan VBR ==================================
17:32:20.0380 2736 [ 01F675F8590517D3B1B6F61519A3105A ] \Device\Harddisk0\DR0\Partition1
17:32:20.0382 2736 \Device\Harddisk0\DR0\Partition1 - ok
17:32:20.0386 2736 [ 68F86D7899EBCEAA04B1C87332242743 ] \Device\Harddisk1\DR1\Partition1
17:32:20.0388 2736 \Device\Harddisk1\DR1\Partition1 - ok
17:32:20.0389 2736 ============================================================
17:32:20.0389 2736 Scan finished
17:32:20.0389 2736 ============================================================
17:32:20.0401 4532 Detected object count: 0
17:32:20.0401 4532 Actual detected object count: 0

Příspěvekod **Orcus** » 22 dub 2014 18:37

Ještě log z RogueKilleru. TDSS je čistý.

prosím o kontrolu logu podezření na vir Vyřešeno

prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Re: prosím o kontrolu logu podezření na vir

Kdo je online