Kontrola Logu

[Orcus]

Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[Reklama]

[keeman808]

15:44:16.0971 0x10a8 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
15:44:19.0383 0x10a8 ============================================================
15:44:19.0383 0x10a8 Current date / time: 2013/12/17 15:44:19.0383
15:44:19.0383 0x10a8 SystemInfo:
15:44:19.0383 0x10a8
15:44:19.0383 0x10a8 OS Version: 6.1.7601 ServicePack: 1.0
15:44:19.0383 0x10a8 Product type: Workstation
15:44:19.0383 0x10a8 ComputerName: PETR-PC
15:44:19.0383 0x10a8 UserName: Petr
15:44:19.0383 0x10a8 Windows directory: C:\Windows
15:44:19.0384 0x10a8 System windows directory: C:\Windows
15:44:19.0384 0x10a8 Processor architecture: Intel x86
15:44:19.0384 0x10a8 Number of processors: 4
15:44:19.0384 0x10a8 Page size: 0x1000
15:44:19.0384 0x10a8 Boot type: Normal boot
15:44:19.0384 0x10a8 ============================================================
15:44:23.0625 0x10a8 KLMD registered as C:\Windows\system32\drivers\22854233.sys
15:44:24.0195 0x10a8 System UUID: {71A1577C-E151-B593-9242-B282FE567F55}
15:44:25.0893 0x10a8 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:44:25.0939 0x10a8 ============================================================
15:44:25.0939 0x10a8 \Device\Harddisk0\DR0:
15:44:26.0000 0x10a8 MBR partitions:
15:44:26.0001 0x10a8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:44:26.0001 0x10a8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x129E6800
15:44:26.0001 0x10a8 ============================================================
15:44:26.0375 0x10a8 C: <-> \Device\Harddisk0\DR0\Partition2
15:44:26.0573 0x10a8 ============================================================
15:44:26.0573 0x10a8 Initialize success
15:44:26.0573 0x10a8 ============================================================
15:44:30.0778 0x09a4 ============================================================
15:44:30.0779 0x09a4 Scan started
15:44:30.0779 0x09a4 Mode: Manual;
15:44:30.0779 0x09a4 ============================================================
15:44:30.0779 0x09a4 KSN ping started
15:44:40.0554 0x09a4 KSN ping finished: true
15:44:43.0139 0x09a4 ================ Scan system memory ========================
15:44:43.0139 0x09a4 System memory - ok
15:44:43.0140 0x09a4 ================ Scan services =============================
15:44:44.0777 0x09a4 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:44:44.0858 0x09a4 1394ohci - ok
15:44:45.0083 0x09a4 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:44:45.0094 0x09a4 ACPI - ok
15:44:45.0144 0x09a4 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:44:45.0171 0x09a4 AcpiPmi - ok
15:44:45.0722 0x09a4 [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:44:45.0769 0x09a4 AdobeFlashPlayerUpdateSvc - ok
15:44:46.0097 0x09a4 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:44:46.0128 0x09a4 adp94xx - ok
15:44:46.0171 0x09a4 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:44:46.0205 0x09a4 adpahci - ok
15:44:46.0227 0x09a4 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:44:46.0232 0x09a4 adpu320 - ok
15:44:46.0307 0x09a4 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:44:46.0356 0x09a4 AeLookupSvc - ok
15:44:46.0677 0x09a4 [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
15:44:46.0705 0x09a4 AFD - ok
15:44:46.0743 0x09a4 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
15:44:46.0746 0x09a4 agp440 - ok
15:44:46.0875 0x09a4 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
15:44:46.0948 0x09a4 aic78xx - ok
15:44:47.0152 0x09a4 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
15:44:47.0155 0x09a4 ALG - ok
15:44:47.0229 0x09a4 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
15:44:47.0251 0x09a4 aliide - ok
15:44:47.0272 0x09a4 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:44:47.0292 0x09a4 amdagp - ok
15:44:47.0316 0x09a4 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
15:44:47.0343 0x09a4 amdide - ok
15:44:47.0479 0x09a4 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:44:47.0504 0x09a4 AmdK8 - ok
15:44:47.0540 0x09a4 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:44:47.0584 0x09a4 AmdPPM - ok
15:44:47.0695 0x09a4 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:44:47.0721 0x09a4 amdsata - ok
15:44:47.0798 0x09a4 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:44:47.0806 0x09a4 amdsbs - ok
15:44:47.0831 0x09a4 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:44:47.0852 0x09a4 amdxata - ok
15:44:48.0010 0x09a4 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
15:44:48.0053 0x09a4 AppID - ok
15:44:48.0169 0x09a4 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:44:48.0198 0x09a4 AppIDSvc - ok
15:44:48.0314 0x09a4 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
15:44:48.0338 0x09a4 Appinfo - ok
15:44:48.0573 0x09a4 [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:44:48.0580 0x09a4 AppMgmt - ok
15:44:48.0763 0x09a4 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
15:44:48.0806 0x09a4 arc - ok
15:44:48.0858 0x09a4 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:44:48.0900 0x09a4 arcsas - ok
15:44:49.0379 0x09a4 [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:44:49.0514 0x09a4 aspnet_state - ok
15:44:49.0570 0x09a4 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:44:49.0586 0x09a4 AsyncMac - ok
15:44:49.0635 0x09a4 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
15:44:49.0636 0x09a4 atapi - ok
15:44:50.0092 0x09a4 [ 14F8D278988BC02B9B4BF202B5BB1115, 6453BADFBCBCA7A7618C75C66A4E9130102885466C7195F34E57CAA6517F7D21 ] athur C:\Windows\system32\DRIVERS\athur.sys
15:44:50.0151 0x09a4 athur - ok
15:44:50.0385 0x09a4 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:44:50.0429 0x09a4 AudioEndpointBuilder - ok
15:44:50.0458 0x09a4 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:44:50.0468 0x09a4 Audiosrv - ok
15:44:50.0544 0x09a4 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:44:50.0563 0x09a4 AxInstSV - ok
15:44:50.0617 0x09a4 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
15:44:50.0643 0x09a4 b06bdrv - ok
15:44:50.0789 0x09a4 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
15:44:50.0817 0x09a4 b57nd60x - ok
15:44:50.0900 0x09a4 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
15:44:50.0926 0x09a4 BDESVC - ok
15:44:50.0951 0x09a4 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
15:44:50.0954 0x09a4 Beep - ok
15:44:51.0242 0x09a4 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
15:44:51.0269 0x09a4 BFE - ok
15:44:51.0421 0x09a4 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\System32\qmgr.dll
15:44:51.0486 0x09a4 BITS - ok
15:44:51.0554 0x09a4 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:44:51.0584 0x09a4 blbdrive - ok
15:44:51.0694 0x09a4 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:44:51.0729 0x09a4 bowser - ok
15:44:51.0811 0x09a4 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:44:51.0924 0x09a4 BrFiltLo - ok
15:44:51.0969 0x09a4 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:44:52.0005 0x09a4 BrFiltUp - ok
15:44:52.0100 0x09a4 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
15:44:52.0122 0x09a4 Browser - ok
15:44:52.0324 0x09a4 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:44:52.0432 0x09a4 Brserid - ok
15:44:52.0535 0x09a4 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:44:52.0619 0x09a4 BrSerWdm - ok
15:44:52.0659 0x09a4 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:44:52.0702 0x09a4 BrUsbMdm - ok
15:44:52.0784 0x09a4 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:44:52.0814 0x09a4 BrUsbSer - ok
15:44:52.0836 0x09a4 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:44:52.0846 0x09a4 BTHMODEM - ok
15:44:52.0982 0x09a4 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
15:44:53.0030 0x09a4 bthserv - ok
15:44:53.0094 0x09a4 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:44:53.0120 0x09a4 cdfs - ok
15:44:53.0374 0x09a4 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\drivers\cdrom.sys
15:44:53.0403 0x09a4 cdrom - ok
15:44:53.0773 0x09a4 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
15:44:53.0864 0x09a4 CertPropSvc - ok
15:44:54.0420 0x09a4 CGVPNCliSrvc - ok
15:44:54.0548 0x09a4 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:44:54.0564 0x09a4 circlass - ok
15:44:54.0794 0x09a4 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
15:44:54.0833 0x09a4 CLFS - ok
15:44:55.0188 0x09a4 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:44:55.0387 0x09a4 clr_optimization_v2.0.50727_32 - ok
15:44:55.0742 0x09a4 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:44:56.0766 0x09a4 clr_optimization_v4.0.30319_32 - ok
15:44:56.0909 0x09a4 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:44:56.0997 0x09a4 CmBatt - ok
15:44:57.0133 0x09a4 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:44:57.0195 0x09a4 cmdide - ok
15:44:57.0428 0x09a4 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
15:44:57.0484 0x09a4 CNG - ok
15:44:57.0554 0x09a4 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:44:57.0610 0x09a4 Compbatt - ok
15:44:57.0697 0x09a4 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:44:57.0725 0x09a4 CompositeBus - ok
15:44:57.0820 0x09a4 COMSysApp - ok
15:44:57.0932 0x09a4 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:44:58.0054 0x09a4 crcdisk - ok
15:44:58.0343 0x09a4 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:44:58.0385 0x09a4 CryptSvc - ok
15:44:58.0630 0x09a4 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
15:44:58.0671 0x09a4 CSC - ok
15:44:58.0915 0x09a4 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
15:44:58.0959 0x09a4 CscService - ok
15:44:59.0218 0x09a4 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
15:44:59.0253 0x09a4 DcomLaunch - ok
15:44:59.0403 0x09a4 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
15:44:59.0460 0x09a4 defragsvc - ok
15:44:59.0569 0x09a4 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:44:59.0606 0x09a4 DfsC - ok
15:44:59.0828 0x09a4 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:44:59.0859 0x09a4 Dhcp - ok
15:44:59.0982 0x09a4 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
15:45:00.0103 0x09a4 discache - ok
15:45:00.0291 0x09a4 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:45:00.0339 0x09a4 Disk - ok
15:45:00.0393 0x09a4 dlajyvmu - ok
15:45:00.0602 0x09a4 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:45:00.0616 0x09a4 Dnscache - ok
15:45:00.0707 0x09a4 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
15:45:00.0827 0x09a4 dot3svc - ok
15:45:01.0103 0x09a4 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
15:45:01.0145 0x09a4 DPS - ok
15:45:01.0386 0x09a4 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:45:01.0526 0x09a4 drmkaud - ok
15:45:01.0993 0x09a4 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:45:02.0080 0x09a4 DXGKrnl - ok
15:45:02.0378 0x09a4 EagleXNt - ok
15:45:02.0519 0x09a4 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
15:45:02.0565 0x09a4 EapHost - ok
15:45:03.0846 0x09a4 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
15:45:04.0021 0x09a4 ebdrv - ok
15:45:04.0094 0x09a4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS C:\Windows\System32\lsass.exe
15:45:04.0157 0x09a4 EFS - ok
15:45:04.0850 0x09a4 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:45:05.0438 0x09a4 ehRecvr - ok
15:45:05.0534 0x09a4 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
15:45:05.0628 0x09a4 ehSched - ok
15:45:06.0084 0x09a4 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:45:06.0175 0x09a4 elxstor - ok
15:45:06.0337 0x09a4 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:45:06.0416 0x09a4 ErrDev - ok
15:45:06.0673 0x09a4 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
15:45:06.0707 0x09a4 EventSystem - ok
15:45:06.0778 0x09a4 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
15:45:06.0808 0x09a4 exfat - ok
15:45:06.0902 0x09a4 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:45:06.0985 0x09a4 fastfat - ok
15:45:07.0301 0x09a4 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
15:45:07.0323 0x09a4 Fax - ok
15:45:07.0411 0x09a4 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:45:07.0415 0x09a4 fdc - ok
15:45:07.0555 0x09a4 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
15:45:07.0576 0x09a4 fdPHost - ok
15:45:07.0685 0x09a4 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
15:45:07.0718 0x09a4 FDResPub - ok
15:45:07.0742 0x09a4 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:45:07.0768 0x09a4 FileInfo - ok
15:45:07.0792 0x09a4 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:45:07.0826 0x09a4 Filetrace - ok
15:45:07.0854 0x09a4 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:45:07.0871 0x09a4 flpydisk - ok
15:45:07.0977 0x09a4 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:45:08.0078 0x09a4 FltMgr - ok
15:45:08.0384 0x09a4 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
15:45:08.0476 0x09a4 FontCache - ok
15:45:08.0696 0x09a4 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:45:08.0851 0x09a4 FontCache3.0.0.0 - ok
15:45:08.0912 0x09a4 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:45:08.0962 0x09a4 FsDepends - ok
15:45:09.0138 0x09a4 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:45:09.0290 0x09a4 Fs_Rec - ok
15:45:09.0541 0x09a4 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:45:09.0576 0x09a4 fvevol - ok
15:45:09.0726 0x09a4 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:45:09.0869 0x09a4 gagp30kx - ok
15:45:09.0872 0x09a4 GGSAFERDriver - ok
15:45:10.0212 0x09a4 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
15:45:10.0281 0x09a4 gpsvc - ok
15:45:10.0697 0x09a4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:45:10.0711 0x09a4 gupdate - ok
15:45:10.0824 0x09a4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:45:10.0827 0x09a4 gupdatem - ok
15:45:11.0119 0x09a4 [ 833051C6C6C42117191935F734CFBD97, 5EB5672ABC7994A4AFF855A572158B8BE4FC6E541CFD4B9BE4FF2739A9A6AFB8 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
15:45:11.0195 0x09a4 hamachi - ok
15:45:12.0555 0x09a4 [ D0C526C8D8F165643B4A796FC4D870AE, 3BE2A175A302E6CD751A1A9A39DBECC5CE074E082A92D129DA56DAF77C0C6146 ] Hamachi2Svc C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
15:45:12.0619 0x09a4 Hamachi2Svc - ok
15:45:12.0739 0x09a4 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:45:12.0823 0x09a4 hcw85cir - ok
15:45:13.0399 0x09a4 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:45:13.0540 0x09a4 HdAudAddService - ok
15:45:13.0618 0x09a4 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:45:13.0656 0x09a4 HDAudBus - ok
15:45:13.0701 0x09a4 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:45:13.0799 0x09a4 HidBatt - ok
15:45:13.0856 0x09a4 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:45:13.0890 0x09a4 HidBth - ok
15:45:13.0941 0x09a4 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:45:14.0043 0x09a4 HidIr - ok
15:45:14.0183 0x09a4 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\system32\hidserv.dll
15:45:14.0262 0x09a4 hidserv - ok
15:45:14.0588 0x09a4 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:45:14.0733 0x09a4 HidUsb - ok
15:45:14.0833 0x09a4 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
15:45:14.0956 0x09a4 hkmsvc - ok
15:45:15.0193 0x09a4 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:45:15.0283 0x09a4 HomeGroupListener - ok
15:45:15.0495 0x09a4 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:45:15.0540 0x09a4 HomeGroupProvider - ok
15:45:15.0650 0x09a4 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:45:15.0669 0x09a4 HpSAMD - ok
15:45:15.0872 0x09a4 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:45:15.0906 0x09a4 HTTP - ok
15:45:15.0952 0x09a4 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:45:15.0976 0x09a4 hwpolicy - ok
15:45:16.0087 0x09a4 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:45:16.0090 0x09a4 i8042prt - ok
15:45:16.0268 0x09a4 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:45:16.0336 0x09a4 iaStorV - ok
15:45:16.0947 0x09a4 [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:45:17.0032 0x09a4 idsvc - ok
15:45:17.0365 0x09a4 IEEtwCollectorService - ok
15:45:17.0565 0x09a4 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:45:17.0679 0x09a4 iirsp - ok
15:45:18.0154 0x09a4 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
15:45:18.0182 0x09a4 IKEEXT - ok
15:45:18.0239 0x09a4 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
15:45:18.0253 0x09a4 intelide - ok
15:45:18.0308 0x09a4 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:45:18.0350 0x09a4 intelppm - ok
15:45:18.0377 0x09a4 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:45:18.0495 0x09a4 IPBusEnum - ok
15:45:18.0554 0x09a4 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:45:18.0571 0x09a4 IpFilterDriver - ok
15:45:18.0750 0x09a4 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:45:18.0770 0x09a4 iphlpsvc - ok
15:45:18.0825 0x09a4 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:45:18.0828 0x09a4 IPMIDRV - ok
15:45:18.0850 0x09a4 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:45:18.0885 0x09a4 IPNAT - ok
15:45:18.0986 0x09a4 [ 33A6581226D410744A85EF529C2D3FE3, 325167FC6691BD66A91F284F349126DC6E5A08B2C287741D0C67B0919070145C ] ipshtap C:\Windows\system32\DRIVERS\ipshtap.sys
15:45:19.0121 0x09a4 ipshtap - ok
15:45:19.0257 0x09a4 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:45:19.0285 0x09a4 IRENUM - ok
15:45:19.0400 0x09a4 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:45:19.0440 0x09a4 isapnp - ok
15:45:19.0509 0x09a4 [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:45:19.0544 0x09a4 iScsiPrt - ok
15:45:19.0728 0x09a4 isuvrmxg - ok
15:45:19.0789 0x09a4 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:45:19.0805 0x09a4 kbdclass - ok
15:45:19.0927 0x09a4 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:45:19.0984 0x09a4 kbdhid - ok
15:45:20.0085 0x09a4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso C:\Windows\system32\lsass.exe
15:45:20.0088 0x09a4 KeyIso - ok
15:45:20.0266 0x09a4 [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:45:20.0287 0x09a4 KSecDD - ok
15:45:20.0321 0x09a4 [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:45:20.0348 0x09a4 KSecPkg - ok
15:45:20.0433 0x09a4 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:45:20.0444 0x09a4 KtmRm - ok
15:45:20.0512 0x09a4 [ 6C32BFEAB708915D6BBF4B20D4F3EF7B, 140516B5D8600DF4C2653E37D672E40D93E021D0883161EB6E4EB5C09E68FB91 ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
15:45:20.0536 0x09a4 L1C - ok
15:45:20.0667 0x09a4 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:45:20.0691 0x09a4 LanmanServer - ok
15:45:20.0847 0x09a4 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:45:20.0868 0x09a4 LanmanWorkstation - ok
15:45:20.0982 0x09a4 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:45:21.0015 0x09a4 lltdio - ok
15:45:21.0146 0x09a4 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:45:21.0159 0x09a4 lltdsvc - ok
15:45:21.0181 0x09a4 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:45:21.0250 0x09a4 lmhosts - ok
15:45:21.0616 0x09a4 [ E7BF96BC4C766C2A30D0733CBFEEC438, D07569A6719E992DDB312F0FFD77A14CF52F61D97DC041278F8F2D7D55DE1B25 ] LMIGuardianSvc C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
15:45:21.0643 0x09a4 LMIGuardianSvc - ok
15:45:21.0698 0x09a4 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:45:21.0702 0x09a4 LSI_FC - ok
15:45:21.0727 0x09a4 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:45:21.0730 0x09a4 LSI_SAS - ok
15:45:21.0769 0x09a4 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:45:21.0957 0x09a4 LSI_SAS2 - ok
15:45:21.0977 0x09a4 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:45:22.0061 0x09a4 LSI_SCSI - ok
15:45:22.0313 0x09a4 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
15:45:22.0390 0x09a4 luafv - ok
15:45:22.0609 0x09a4 [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:45:22.0694 0x09a4 MBAMProtector - ok
15:45:23.0184 0x09a4 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:45:23.0271 0x09a4 MBAMScheduler - ok
15:45:23.0450 0x09a4 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:45:23.0537 0x09a4 MBAMService - ok
15:45:24.0172 0x09a4 [ E4DFBE4C4A9C2BD87C1430F445F3E3CB, 34A0295D0AC37537B010FEC4534535D92AA4C30900DC37444C992C15F86D3AA4 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe
15:45:24.0238 0x09a4 McComponentHostService - ok
15:45:24.0362 0x09a4 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:45:24.0417 0x09a4 Mcx2Svc - ok
15:45:24.0510 0x09a4 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:45:24.0528 0x09a4 megasas - ok
15:45:24.0613 0x09a4 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:45:24.0621 0x09a4 MegaSR - ok
15:45:24.0912 0x09a4 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:45:24.0931 0x09a4 Microsoft Office Groove Audit Service - ok
15:45:24.0938 0x09a4 miunkuab - ok
15:45:24.0980 0x09a4 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
15:45:25.0015 0x09a4 MMCSS - ok

[keeman808]

15:45:25.0051 0x09a4 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
15:45:25.0082 0x09a4 Modem - ok
15:45:25.0198 0x09a4 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:45:25.0243 0x09a4 monitor - ok
15:45:25.0419 0x09a4 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:45:25.0439 0x09a4 mouclass - ok
15:45:25.0472 0x09a4 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:45:25.0475 0x09a4 mouhid - ok
15:45:25.0546 0x09a4 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:45:25.0624 0x09a4 mountmgr - ok
15:45:26.0218 0x09a4 [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:45:26.0271 0x09a4 MozillaMaintenance - ok
15:45:26.0858 0x09a4 [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
15:45:26.0974 0x09a4 MpFilter - ok
15:45:27.0122 0x09a4 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
15:45:27.0215 0x09a4 mpio - ok
15:45:27.0322 0x09a4 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:45:27.0409 0x09a4 mpsdrv - ok
15:45:27.0734 0x09a4 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:45:27.0756 0x09a4 MpsSvc - ok
15:45:27.0840 0x09a4 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:45:27.0899 0x09a4 MRxDAV - ok
15:45:27.0942 0x09a4 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:45:27.0972 0x09a4 mrxsmb - ok
15:45:28.0008 0x09a4 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:45:28.0066 0x09a4 mrxsmb10 - ok
15:45:28.0094 0x09a4 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:45:28.0098 0x09a4 mrxsmb20 - ok
15:45:28.0162 0x09a4 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
15:45:28.0193 0x09a4 msahci - ok
15:45:28.0223 0x09a4 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:45:28.0244 0x09a4 msdsm - ok
15:45:28.0279 0x09a4 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
15:45:28.0304 0x09a4 MSDTC - ok
15:45:28.0476 0x09a4 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:45:28.0513 0x09a4 Msfs - ok
15:45:28.0545 0x09a4 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:45:28.0580 0x09a4 mshidkmdf - ok
15:45:28.0672 0x09a4 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:45:28.0675 0x09a4 msisadrv - ok
15:45:28.0702 0x09a4 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:45:28.0746 0x09a4 MSiSCSI - ok
15:45:28.0751 0x09a4 msiserver - ok
15:45:28.0812 0x09a4 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:45:28.0813 0x09a4 MSKSSRV - ok
15:45:29.0126 0x09a4 [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:45:29.0185 0x09a4 MsMpSvc - ok
15:45:29.0353 0x09a4 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:45:29.0355 0x09a4 MSPCLOCK - ok
15:45:29.0361 0x09a4 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:45:29.0363 0x09a4 MSPQM - ok
15:45:29.0411 0x09a4 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:45:29.0452 0x09a4 MsRPC - ok
15:45:29.0485 0x09a4 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:45:29.0520 0x09a4 mssmbios - ok
15:45:29.0552 0x09a4 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:45:29.0590 0x09a4 MSTEE - ok
15:45:29.0619 0x09a4 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:45:29.0638 0x09a4 MTConfig - ok
15:45:29.0644 0x09a4 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
15:45:29.0647 0x09a4 Mup - ok
15:45:29.0806 0x09a4 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
15:45:29.0837 0x09a4 napagent - ok
15:45:30.0137 0x09a4 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:45:30.0210 0x09a4 NativeWifiP - ok
15:45:30.0671 0x09a4 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:45:30.0717 0x09a4 NDIS - ok
15:45:30.0887 0x09a4 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:45:30.0921 0x09a4 NdisCap - ok
15:45:31.0004 0x09a4 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:45:31.0031 0x09a4 NdisTapi - ok
15:45:31.0174 0x09a4 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:45:31.0206 0x09a4 Ndisuio - ok
15:45:31.0271 0x09a4 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:45:31.0350 0x09a4 NdisWan - ok
15:45:31.0452 0x09a4 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:45:31.0557 0x09a4 NDProxy - ok
15:45:31.0742 0x09a4 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:45:31.0758 0x09a4 NetBIOS - ok
15:45:31.0829 0x09a4 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:45:31.0871 0x09a4 NetBT - ok
15:45:31.0887 0x09a4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon C:\Windows\system32\lsass.exe
15:45:31.0889 0x09a4 Netlogon - ok
15:45:31.0933 0x09a4 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
15:45:31.0957 0x09a4 Netman - ok
15:45:32.0040 0x09a4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:45:32.0397 0x09a4 NetMsmqActivator - ok
15:45:32.0574 0x09a4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:45:32.0579 0x09a4 NetPipeActivator - ok
15:45:32.0785 0x09a4 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
15:45:32.0854 0x09a4 netprofm - ok
15:45:32.0870 0x09a4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:45:32.0874 0x09a4 NetTcpActivator - ok
15:45:33.0073 0x09a4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:45:33.0077 0x09a4 NetTcpPortSharing - ok
15:45:33.0180 0x09a4 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:45:33.0201 0x09a4 nfrd960 - ok
15:45:33.0434 0x09a4 [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:45:33.0472 0x09a4 NisDrv - ok
15:45:33.0612 0x09a4 [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
15:45:33.0641 0x09a4 NisSrv - ok
15:45:33.0720 0x09a4 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:45:33.0741 0x09a4 NlaSvc - ok
15:45:33.0764 0x09a4 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:45:33.0766 0x09a4 Npfs - ok
15:45:33.0792 0x09a4 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
15:45:33.0796 0x09a4 nsi - ok
15:45:33.0813 0x09a4 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:45:33.0815 0x09a4 nsiproxy - ok
15:45:34.0135 0x09a4 [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:45:34.0252 0x09a4 Ntfs - ok
15:45:34.0348 0x09a4 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
15:45:34.0378 0x09a4 Null - ok
15:45:37.0384 0x09a4 [ 50199B0578F7A4ADD5E16A42946CF34B, D4CB42C4FC42355BE007088FBB60B2B773188AB81FB9111861C0682DBCD79EFD ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:45:37.0853 0x09a4 nvlddmkm - ok
15:45:38.0000 0x09a4 [ D2718816B48D9B5603295409044F257F, 2861D28A010ECC0BD95F7EB57B6D8D097610F9D394754D2DD45FCD2222AD0445 ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
15:45:38.0111 0x09a4 NvNetworkService - ok
15:45:38.0161 0x09a4 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:45:38.0186 0x09a4 nvraid - ok
15:45:38.0417 0x09a4 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:45:38.0454 0x09a4 nvstor - ok
15:45:41.0057 0x09a4 [ A16121403C72C9F57BC6C8E571FA4E3E, AAD9218D55D0B3CE1678534495061D01917E412F88E67FAE14C0E2D45331D929 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
15:45:41.0676 0x09a4 NvStreamSvc - ok
15:45:42.0092 0x09a4 [ 4BD107E339C9955708FA35A96BB8A8A8, 540A2C12B844491F5089CAEDA0EA57DAE03471081866AE1A08C5E65E592F772B ] nvsvc C:\Windows\system32\nvvsvc.exe
15:45:42.0117 0x09a4 nvsvc - ok
15:45:42.0293 0x09a4 [ F9D6D29A55C289B8AF0858C267BE7126, 5EAC86DFC3F288994DF93FD8BECE910D8953EAFDB0ACE28D70FA866345BF4764 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad32v.sys
15:45:42.0313 0x09a4 nvvad_WaveExtensible - ok
15:45:42.0381 0x09a4 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:45:42.0414 0x09a4 nv_agp - ok
15:45:42.0827 0x09a4 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:45:42.0850 0x09a4 odserv - ok
15:45:42.0957 0x09a4 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:45:42.0987 0x09a4 ohci1394 - ok
15:45:43.0092 0x09a4 [ 8C02B0CC65BEE71124A565062BA77B39, C3B4965D62995195A776581BA0750FA72833F4E2E1F8F9DC683F562C13A9E20C ] OpenVPNAccessClient C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
15:45:43.0116 0x09a4 OpenVPNAccessClient - ok
15:45:43.0386 0x09a4 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:45:43.0412 0x09a4 ose - ok
15:45:43.0535 0x09a4 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:45:43.0548 0x09a4 p2pimsvc - ok
15:45:43.0582 0x09a4 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
15:45:43.0632 0x09a4 p2psvc - ok
15:45:43.0697 0x09a4 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:45:43.0714 0x09a4 Parport - ok
15:45:43.0747 0x09a4 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:45:43.0750 0x09a4 partmgr - ok
15:45:43.0771 0x09a4 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
15:45:43.0830 0x09a4 Parvdm - ok
15:45:44.0162 0x09a4 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:45:44.0229 0x09a4 PcaSvc - ok
15:45:44.0278 0x09a4 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
15:45:44.0353 0x09a4 pci - ok
15:45:44.0421 0x09a4 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
15:45:44.0424 0x09a4 pciide - ok
15:45:44.0526 0x09a4 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:45:44.0571 0x09a4 pcmcia - ok
15:45:44.0671 0x09a4 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
15:45:44.0704 0x09a4 pcw - ok
15:45:45.0051 0x09a4 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:45:45.0083 0x09a4 PEAUTH - ok
15:45:45.0534 0x09a4 [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
15:45:45.0626 0x09a4 PeerDistSvc - ok
15:45:46.0230 0x09a4 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
15:45:46.0285 0x09a4 pla - ok
15:45:46.0472 0x09a4 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:45:46.0499 0x09a4 PlugPlay - ok
15:45:46.0745 0x09a4 [ 831883B107684301F48ACE752C963984, EAF383C4ACC17DBB060BB8398225222175E028E1E332E2CE0548C97DAED3620E ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
15:45:46.0750 0x09a4 PnkBstrA - ok
15:45:47.0101 0x09a4 [ E24106A5EAECDDFF00B25497049DD65F, B1BA1AEBC15A0EF04DA95E5ED2E4E6C5B9FBE8B0D80E7582A1A1B59C5724BD64 ] PnkBstrB C:\Windows\system32\PnkBstrB.exe
15:45:47.0130 0x09a4 PnkBstrB - ok
15:45:47.0154 0x09a4 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:45:47.0185 0x09a4 PNRPAutoReg - ok
15:45:47.0218 0x09a4 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:45:47.0226 0x09a4 PNRPsvc - ok
15:45:47.0516 0x09a4 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:45:47.0538 0x09a4 PolicyAgent - ok
15:45:47.0585 0x09a4 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
15:45:47.0591 0x09a4 Power - ok
15:45:47.0741 0x09a4 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:45:47.0768 0x09a4 PptpMiniport - ok
15:45:47.0805 0x09a4 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:45:47.0820 0x09a4 Processor - ok
15:45:47.0881 0x09a4 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:45:47.0898 0x09a4 ProfSvc - ok
15:45:47.0920 0x09a4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:45:47.0922 0x09a4 ProtectedStorage - ok
15:45:48.0028 0x09a4 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:45:48.0044 0x09a4 Psched - ok
15:45:48.0050 0x09a4 pwtusvba - ok
15:45:48.0401 0x09a4 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:45:48.0471 0x09a4 ql2300 - ok
15:45:48.0520 0x09a4 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:45:48.0525 0x09a4 ql40xx - ok
15:45:48.0561 0x09a4 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
15:45:48.0636 0x09a4 QWAVE - ok
15:45:48.0691 0x09a4 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:45:48.0727 0x09a4 QWAVEdrv - ok
15:45:48.0761 0x09a4 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:45:48.0794 0x09a4 RasAcd - ok
15:45:48.0942 0x09a4 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:45:48.0974 0x09a4 RasAgileVpn - ok
15:45:49.0012 0x09a4 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
15:45:49.0042 0x09a4 RasAuto - ok
15:45:49.0110 0x09a4 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:45:49.0114 0x09a4 Rasl2tp - ok
15:45:49.0218 0x09a4 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
15:45:49.0241 0x09a4 RasMan - ok
15:45:49.0264 0x09a4 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:45:49.0267 0x09a4 RasPppoe - ok
15:45:49.0288 0x09a4 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:45:49.0291 0x09a4 RasSstp - ok
15:45:49.0349 0x09a4 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:45:49.0378 0x09a4 rdbss - ok
15:45:49.0429 0x09a4 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:45:49.0458 0x09a4 rdpbus - ok
15:45:49.0504 0x09a4 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:45:49.0568 0x09a4 RDPCDD - ok
15:45:49.0663 0x09a4 [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
15:45:49.0783 0x09a4 RDPDR - ok
15:45:49.0880 0x09a4 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:45:49.0951 0x09a4 RDPENCDD - ok
15:45:49.0994 0x09a4 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:45:50.0018 0x09a4 RDPREFMP - ok
15:45:50.0253 0x09a4 [ 68A0387F58E226DEEE23D9715955572A, F95BB1D2BB3E79AF47B1C715BB5E3003EEF888AAA963F46F4A2FE8AFBD4F37A4 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:45:50.0310 0x09a4 RdpVideoMiniport - ok
15:45:50.0436 0x09a4 [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:45:50.0482 0x09a4 RDPWD - ok
15:45:50.0606 0x09a4 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:45:50.0654 0x09a4 rdyboost - ok
15:45:50.0691 0x09a4 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:45:50.0721 0x09a4 RemoteAccess - ok
15:45:50.0769 0x09a4 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:45:50.0798 0x09a4 RemoteRegistry - ok
15:45:50.0880 0x09a4 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:45:50.0884 0x09a4 RpcEptMapper - ok
15:45:50.0915 0x09a4 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
15:45:50.0941 0x09a4 RpcLocator - ok
15:45:51.0107 0x09a4 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
15:45:51.0120 0x09a4 RpcSs - ok
15:45:51.0298 0x09a4 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:45:51.0328 0x09a4 rspndr - ok
15:45:51.0368 0x09a4 [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap C:\Windows\system32\drivers\vms3cap.sys
15:45:51.0494 0x09a4 s3cap - ok
15:45:51.0518 0x09a4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] SamSs C:\Windows\system32\lsass.exe
15:45:51.0520 0x09a4 SamSs - ok
15:45:51.0661 0x09a4 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:45:51.0771 0x09a4 sbp2port - ok
15:45:51.0806 0x09a4 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:45:51.0878 0x09a4 SCardSvr - ok
15:45:51.0909 0x09a4 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:45:51.0911 0x09a4 scfilter - ok
15:45:52.0379 0x09a4 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
15:45:52.0408 0x09a4 Schedule - ok
15:45:52.0458 0x09a4 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:45:52.0460 0x09a4 SCPolicySvc - ok
15:45:52.0493 0x09a4 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:45:52.0500 0x09a4 SDRSVC - ok
15:45:52.0540 0x09a4 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:45:52.0566 0x09a4 secdrv - ok
15:45:52.0608 0x09a4 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
15:45:52.0634 0x09a4 seclogon - ok
15:45:52.0665 0x09a4 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\System32\sens.dll
15:45:52.0692 0x09a4 SENS - ok
15:45:52.0717 0x09a4 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:45:52.0740 0x09a4 SensrSvc - ok
15:45:52.0765 0x09a4 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:45:52.0791 0x09a4 Serenum - ok
15:45:52.0820 0x09a4 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:45:52.0842 0x09a4 Serial - ok
15:45:52.0886 0x09a4 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:45:52.0912 0x09a4 sermouse - ok
15:45:52.0958 0x09a4 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
15:45:52.0967 0x09a4 SessionEnv - ok
15:45:53.0009 0x09a4 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:45:53.0012 0x09a4 sffdisk - ok
15:45:53.0038 0x09a4 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:45:53.0067 0x09a4 sffp_mmc - ok
15:45:53.0094 0x09a4 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:45:53.0116 0x09a4 sffp_sd - ok
15:45:53.0196 0x09a4 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:45:53.0220 0x09a4 sfloppy - ok
15:45:53.0435 0x09a4 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:45:53.0463 0x09a4 SharedAccess - ok
15:45:53.0527 0x09a4 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:45:53.0584 0x09a4 ShellHWDetection - ok
15:45:53.0618 0x09a4 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:45:53.0638 0x09a4 sisagp - ok
15:45:53.0676 0x09a4 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:45:53.0679 0x09a4 SiSRaid2 - ok
15:45:53.0704 0x09a4 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:45:53.0727 0x09a4 SiSRaid4 - ok
15:45:54.0820 0x09a4 [ 9F712B26EE3B0242DE997A42FD302E2C, 12663EB108F158282A965EE70980627C2F2332BA7944D7DE03B78E18BEB87D26 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
15:45:54.0977 0x09a4 Skype C2C Service - ok
15:45:55.0181 0x09a4 [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
15:45:55.0204 0x09a4 SkypeUpdate - ok
15:45:55.0277 0x09a4 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:45:55.0302 0x09a4 Smb - ok
15:45:55.0408 0x09a4 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:45:55.0432 0x09a4 SNMPTRAP - ok
15:45:55.0473 0x09a4 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
15:45:55.0503 0x09a4 spldr - ok
15:45:55.0715 0x09a4 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
15:45:55.0741 0x09a4 Spooler - ok
15:45:56.0562 0x09a4 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
15:45:56.0678 0x09a4 sppsvc - ok
15:45:56.0726 0x09a4 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:45:56.0731 0x09a4 sppuinotify - ok
15:45:56.0914 0x09a4 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:45:56.0946 0x09a4 srv - ok
15:45:56.0988 0x09a4 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:45:57.0005 0x09a4 srv2 - ok
15:45:57.0021 0x09a4 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:45:57.0026 0x09a4 srvnet - ok
15:45:57.0054 0x09a4 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:45:57.0071 0x09a4 SSDPSRV - ok
15:45:57.0097 0x09a4 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:45:57.0102 0x09a4 SstpSvc - ok
15:45:57.0374 0x09a4 [ A87A39F9B42D82F5D60D36BB1D3CC9D3, F609CC721B898B5053FE34B24C94970453BD57441F9A2C93D4F77CB297D56169 ] Steam Client Service C:\Program Files\Common Files\Steam\SteamService.exe
15:45:57.0400 0x09a4 Steam Client Service - ok
15:45:57.0718 0x09a4 [ 49D9C17FDDFAC66F27FA735E94923216, 18C8FE5B794927989CDD3BB7A5500C73CCC23559470EEB37D42FD9AD04098C0D ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:45:57.0742 0x09a4 Stereo Service - ok
15:45:57.0778 0x09a4 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:45:57.0781 0x09a4 stexstor - ok
15:45:57.0985 0x09a4 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
15:45:58.0014 0x09a4 StiSvc - ok
15:45:58.0045 0x09a4 [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
15:45:58.0048 0x09a4 storflt - ok
15:45:58.0124 0x09a4 [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc C:\Windows\system32\drivers\storvsc.sys
15:45:58.0151 0x09a4 storvsc - ok
15:45:58.0199 0x09a4 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
15:45:58.0227 0x09a4 swenum - ok
15:45:58.0268 0x09a4 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
15:45:58.0284 0x09a4 swprv - ok
15:45:58.0290 0x09a4 Synth3dVsc - ok
15:45:58.0689 0x09a4 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
15:45:58.0728 0x09a4 SysMain - ok
15:45:58.0774 0x09a4 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
15:45:58.0779 0x09a4 TabletInputService - ok
15:45:58.0862 0x09a4 [ 8CF6E2AE1707D82E904ECCA68CEF8B87, 623765F0E5521B9EDDDEF3A3683C2E4A1FB6D96E80CC7CD22426066FE0D4843A ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
15:45:58.0889 0x09a4 tap0901 - ok
15:45:58.0995 0x09a4 taphss6 - ok
15:45:59.0046 0x09a4 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
15:45:59.0075 0x09a4 TapiSrv - ok
15:45:59.0185 0x09a4 [ 827C8058C284FF0013E4462EFE2591A3, CC97766296666B924970F8371127BB74AB96053C556886DD396E788A6C3A2218 ] tapoas C:\Windows\system32\DRIVERS\tapoas.sys
15:45:59.0234 0x09a4 tapoas - ok
15:45:59.0273 0x09a4 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
15:45:59.0278 0x09a4 TBS - ok
15:45:59.0784 0x09a4 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:45:59.0861 0x09a4 Tcpip - ok
15:45:59.0974 0x09a4 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:46:00.0002 0x09a4 TCPIP6 - ok
15:46:00.0048 0x09a4 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:46:00.0051 0x09a4 tcpipreg - ok
15:46:00.0108 0x09a4 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:46:00.0247 0x09a4 TDPIPE - ok
15:46:00.0299 0x09a4 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:46:00.0301 0x09a4 TDTCP - ok
15:46:00.0415 0x09a4 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:46:00.0505 0x09a4 tdx - ok
15:46:02.0013 0x09a4 [ 576918B02840A360702051BC4269B13F, ADC9798F280FB0238C63C798912264E88E244257DF8ACF1854343D14FAC73E19 ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
15:46:02.0302 0x09a4 TeamViewer8 - ok
15:46:02.0343 0x09a4 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:46:02.0369 0x09a4 TermDD - ok
15:46:02.0588 0x09a4 [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService C:\Windows\System32\termsrv.dll
15:46:02.0614 0x09a4 TermService - ok
15:46:02.0650 0x09a4 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
15:46:02.0655 0x09a4 Themes - ok
15:46:02.0668 0x09a4 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
15:46:02.0672 0x09a4 THREADORDER - ok
15:46:02.0700 0x09a4 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
15:46:02.0708 0x09a4 TrkWks - ok
15:46:02.0895 0x09a4 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:46:02.0929 0x09a4 TrustedInstaller - ok
15:46:02.0970 0x09a4 [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:46:02.0973 0x09a4 tssecsrv - ok
15:46:03.0035 0x09a4 [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:46:03.0062 0x09a4 TsUsbFlt - ok
15:46:03.0100 0x09a4 tsusbhub - ok
15:46:04.0515 0x09a4 [ 1338BCAFD1C465E6F5082721E2C1B095, B79D1410774C7496F856A25F6CD8713F3EB7E3D15E6F0A3BC229A264B7C72B1E ] TuneUp.UtilitiesSvc C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
15:46:04.0585 0x09a4 TuneUp.UtilitiesSvc - ok
15:46:04.0985 0x09a4 [ E5049C43601473B5A909058596111229, 96CFE481F767C66FA2877594384086C1BE8B2BADBF12DBF4CB72CF73898D0876 ] TuneUpUtilitiesDrv C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys
15:46:05.0011 0x09a4 TuneUpUtilitiesDrv - ok
15:46:05.0201 0x09a4 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:46:05.0231 0x09a4 tunnel - ok
15:46:05.0278 0x09a4 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:46:05.0310 0x09a4 uagp35 - ok
15:46:05.0367 0x09a4 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:46:05.0385 0x09a4 udfs - ok
15:46:05.0424 0x09a4 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:46:05.0461 0x09a4 UI0Detect - ok
15:46:05.0595 0x09a4 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:46:05.0670 0x09a4 uliagpkx - ok
15:46:05.0750 0x09a4 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\drivers\umbus.sys
15:46:05.0775 0x09a4 umbus - ok
15:46:05.0805 0x09a4 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:46:05.0834 0x09a4 UmPass - ok
15:46:06.0000 0x09a4 [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService C:\Windows\System32\umrdp.dll
15:46:06.0028 0x09a4 UmRdpService - ok
15:46:06.0062 0x09a4 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
15:46:06.0081 0x09a4 upnphost - ok
15:46:06.0115 0x09a4 [ 71D97F1A3CC47A56728F7A400A3F8295, ED3FDB73D8A98D9BAF702C0F5C7AD79D525D19DCE1487D442536913BEA5C7F15 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:46:06.0200 0x09a4 usbccgp - ok
15:46:06.0261 0x09a4 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:46:06.0292 0x09a4 usbcir - ok
15:46:06.0310 0x09a4 [ C4FB8E7ADEA9B5CEEA885A1B504B7E40, 3E0AE5D236890452F2EA33504309A7E5FE49C567FF6F68A83A5987F05ED01BF0 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:46:06.0313 0x09a4 usbehci - ok
15:46:06.0410 0x09a4 [ 86AA95ACB611001E26CD2C0145F2225A, 584D26E8C9407A4E717DCBF2D3819DB441C2D455B5FDA6654FBA3794E19B4D51 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:46:06.0430 0x09a4 usbhub - ok
15:46:06.0449 0x09a4 [ DCDF9855145A14DFCA0AB32308871961, 9A21013AD032195D54CE655DE5363E78BB74CC55C40B889520B478892F4BA40A ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:46:06.0451 0x09a4 usbohci - ok
15:46:06.0490 0x09a4 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:46:06.0492 0x09a4 usbprint - ok
15:46:06.0523 0x09a4 [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan C:\Windows\system32\drivers\usbscan.sys
15:46:06.0525 0x09a4 usbscan - ok
15:46:06.0541 0x09a4 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:46:06.0544 0x09a4 USBSTOR - ok
15:46:06.0566 0x09a4 [ 8E51D04175BAA14C4F79AA5F6D248770, 6CE2E45E272734A5D1D0C4CE2BD7B61C61C7538903E87203E376495D198EFBD0 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:46:06.0595 0x09a4 usbuhci - ok
15:46:06.0625 0x09a4 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
15:46:06.0655 0x09a4 UxSms - ok
15:46:07.0051 0x09a4 [ 0BEE56F765615BCED33ECCBA2155D8C8, 6CEC6D91DCCB6997CE00AC2D1F7BEFE866D0F25BE557AD60F10867758ECD5A45 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
15:46:07.0076 0x09a4 UxTuneUp - ok
15:46:07.0102 0x09a4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] VaultSvc C:\Windows\system32\lsass.exe
15:46:07.0104 0x09a4 VaultSvc - ok
15:46:07.0245 0x09a4 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:46:07.0248 0x09a4 vdrvroot - ok
15:46:07.0490 0x09a4 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
15:46:07.0515 0x09a4 vds - ok
15:46:07.0605 0x09a4 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:46:07.0655 0x09a4 vga - ok
15:46:07.0721 0x09a4 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:46:07.0785 0x09a4 VgaSave - ok
15:46:07.0881 0x09a4 VGPU - ok
15:46:08.0032 0x09a4 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:46:08.0069 0x09a4 vhdmp - ok
15:46:08.0188 0x09a4 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:46:08.0222 0x09a4 viaagp - ok
15:46:08.0273 0x09a4 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
15:46:08.0289 0x09a4 ViaC7 - ok
15:46:08.0357 0x09a4 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
15:46:08.0388 0x09a4 viaide - ok
15:46:08.0511 0x09a4 [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus C:\Windows\system32\drivers\vmbus.sys
15:46:08.0610 0x09a4 vmbus - ok
15:46:08.0647 0x09a4 [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
15:46:08.0684 0x09a4 VMBusHID - ok
15:46:08.0748 0x09a4 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:46:08.0792 0x09a4 volmgr - ok
15:46:08.0913 0x09a4 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:46:08.0944 0x09a4 volmgrx - ok
15:46:09.0022 0x09a4 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:46:09.0096 0x09a4 volsnap - ok
15:46:09.0285 0x09a4 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:46:09.0369 0x09a4 vsmraid - ok
15:46:09.0860 0x09a4 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
15:46:09.0929 0x09a4 VSS - ok
15:46:09.0979 0x09a4 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:46:10.0001 0x09a4 vwifibus - ok
15:46:10.0065 0x09a4 [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:46:10.0119 0x09a4 vwififlt - ok
15:46:10.0257 0x09a4 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
15:46:10.0296 0x09a4 W32Time - ok
15:46:10.0327 0x09a4 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:46:10.0330 0x09a4 WacomPen - ok
15:46:10.0373 0x09a4 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:46:10.0376 0x09a4 WANARP - ok
15:46:10.0381 0x09a4 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:46:10.0383 0x09a4 Wanarpv6 - ok
15:46:10.0989 0x09a4 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:46:11.0084 0x09a4 WatAdminSvc - ok
15:46:11.0524 0x09a4 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
15:46:11.0611 0x09a4 wbengine - ok
15:46:11.0857 0x09a4 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:46:12.0003 0x09a4 WbioSrvc - ok
15:46:12.0226 0x09a4 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:46:12.0304 0x09a4 wcncsvc - ok
15:46:12.0410 0x09a4 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:46:12.0435 0x09a4 WcsPlugInService - ok
15:46:12.0483 0x09a4 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:46:12.0512 0x09a4 Wd - ok
15:46:12.0883 0x09a4 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:46:12.0940 0x09a4 Wdf01000 - ok
15:46:13.0130 0x09a4 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:46:13.0179 0x09a4 WdiServiceHost - ok
15:46:13.0186 0x09a4 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:46:13.0192 0x09a4 WdiSystemHost - ok
15:46:13.0484 0x09a4 [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
15:46:13.0654 0x09a4 WebClient - ok
15:46:13.0886 0x09a4 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:46:13.0893 0x09a4 Wecsvc - ok
15:46:13.0924 0x09a4 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:46:13.0930 0x09a4 wercplsupport - ok
15:46:14.0169 0x09a4 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
15:46:14.0235 0x09a4 WerSvc - ok
15:46:14.0577 0x09a4 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:46:14.0708 0x09a4 WfpLwf - ok
15:46:14.0762 0x09a4 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:46:14.0805 0x09a4 WIMMount - ok
15:46:15.0126 0x09a4 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:46:15.0153 0x09a4 WinDefend - ok
15:46:15.0214 0x09a4 WinHttpAutoProxySvc - ok
15:46:15.0350 0x09a4 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:46:15.0560 0x09a4 Winmgmt - ok
15:46:15.0937 0x09a4 [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
15:46:15.0975 0x09a4 WinRM - ok
15:46:16.0051 0x09a4 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:46:16.0123 0x09a4 Wlansvc - ok
15:46:16.0558 0x09a4 [ 5144AE67D60EC653F97DDF3FEED29E77, F6238767284B2356A9F502E2ACCFAAC283FA13CBF238E98B5115A55179526B10 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:46:16.0601 0x09a4 wlidsvc - ok
15:46:16.0638 0x09a4 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:46:16.0640 0x09a4 WmiAcpi - ok
15:46:16.0717 0x09a4 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:46:16.0788 0x09a4 wmiApSrv - ok
15:46:17.0368 0x09a4 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:46:17.0402 0x09a4 WMPNetworkSvc - ok
15:46:17.0482 0x09a4 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:46:17.0495 0x09a4 WPCSvc - ok
15:46:17.0581 0x09a4 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:46:17.0679 0x09a4 WPDBusEnum - ok
15:46:17.0766 0x09a4 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:46:17.0797 0x09a4 ws2ifsl - ok
15:46:17.0835 0x09a4 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\System32\wscsvc.dll
15:46:17.0841 0x09a4 wscsvc - ok
15:46:17.0847 0x09a4 WSearch - ok
15:46:18.0477 0x09a4 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
15:46:18.0572 0x09a4 wuauserv - ok
15:46:18.0662 0x09a4 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:46:18.0692 0x09a4 WudfPf - ok
15:46:18.0860 0x09a4 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:46:18.0912 0x09a4 WUDFRd - ok
15:46:18.0966 0x09a4 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:46:18.0972 0x09a4 wudfsvc - ok
15:46:19.0001 0x09a4 [ 3C5E51C05BE9B56EAFF4E388C3AB25E4, 10D9FDEDAB1FB2E76D54661AFA5C1A6B1B0980525F38F5D061537077841C6AEE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:46:19.0018 0x09a4 WwanSvc - ok
15:46:19.0153 0x09a4 XDva401 - ok
15:46:19.0281 0x09a4 ================ Scan global ===============================
15:46:19.0358 0x09a4 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
15:46:19.0413 0x09a4 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
15:46:19.0479 0x09a4 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
15:46:19.0542 0x09a4 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
15:46:19.0600 0x09a4 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
15:46:19.0616 0x09a4 [ Global ] - ok
15:46:19.0617 0x09a4 ================ Scan MBR ==================================
15:46:19.0656 0x09a4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:46:20.0503 0x09a4 \Device\Harddisk0\DR0 - ok
15:46:20.0504 0x09a4 ================ Scan VBR ==================================
15:46:20.0506 0x09a4 [ F814818E1944D99F9A620025323898F9 ] \Device\Harddisk0\DR0\Partition1
15:46:20.0508 0x09a4 \Device\Harddisk0\DR0\Partition1 - ok
15:46:20.0536 0x09a4 [ 3C0B6C4ED4744A40222F62779D1F9452 ] \Device\Harddisk0\DR0\Partition2
15:46:20.0537 0x09a4 \Device\Harddisk0\DR0\Partition2 - ok
15:46:20.0538 0x09a4 Waiting for KSN requests completion. In queue: 196
15:46:21.0538 0x09a4 Waiting for KSN requests completion. In queue: 196
15:46:22.0538 0x09a4 Waiting for KSN requests completion. In queue: 196
15:46:23.0552 0x09a4 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
15:46:23.0584 0x09a4 Win FW state via NFP2: disabled
15:46:26.0270 0x09a4 ============================================================
15:46:26.0270 0x09a4 Scan finished
15:46:26.0270 0x09a4 ============================================================
15:46:26.0281 0x13a0 Detected object count: 0
15:46:26.0281 0x13a0 Actual detected object count: 0
15:54:23.0511 0x13ac Deinitialize success

[memphisto]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.

[keeman808]

Nyní se počítač o 50% zhoršil, každá hra mi freezuje,seká se. ( I ta, která nepotřebuje pomalu nic ).
Všechny ikony mi to hází jako (neodpovídá), Skype nereaguje.
Nemluvím o zapínání PC, to je opravdu hodně pomalé.

[keeman808]

ComboFix 13-12-18.01 - Petr 19.12.2013 15:13:13.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2047.1148 [GMT 1:00]
Spuštěný z: c:\users\Petr\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\OpenVPN Technologies\OpenVPN Client\core\uiboot.exe
c:\windows\IsUn0405.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-19 do 2013-12-19 )))))))))))))))))))))))))))))))
.
.
2013-12-19 14:44 . 2013-12-19 14:44 -------- d-----w- c:\users\Petr\AppData\Local\temp
2013-12-19 14:44 . 2013-12-19 14:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-12-19 14:00 . 2013-12-19 14:00 40392 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{EEA8F586-DBAE-44DB-9033-114111BB7554}\MpKsl8c880b0e.sys
2013-12-18 15:17 . 2013-12-18 15:17 -------- d-----w- c:\program files\Rockstar Games
2013-12-18 14:32 . 2013-12-18 15:08 -------- d-----w- C:\GTATTA
2013-12-18 14:09 . 2013-12-18 14:19 -------- d-----w- c:\program files\MTA San Andreas 1.3
2013-12-17 15:58 . 2013-12-18 14:18 -------- d-----w- C:\Gtacko
2013-12-16 21:10 . 2013-12-04 02:57 7760024 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{EEA8F586-DBAE-44DB-9033-114111BB7554}\mpengine.dll
2013-12-16 14:15 . 2013-12-18 20:07 -------- d-----w- c:\users\Petr\AppData\Local\CrashDumps
2013-12-15 15:14 . 2013-11-07 16:15 7772552 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-12-12 21:43 . 2013-11-26 08:16 4243968 ----a-w- c:\windows\system32\jscript9.dll
2013-12-12 19:06 . 2013-12-12 19:09 -------- d-----w- C:\AdwCleaner
2013-12-12 18:53 . 2013-12-12 18:53 -------- d-----w- c:\windows\ERUNT
2013-12-12 14:03 . 2013-12-12 14:03 -------- d-----w- c:\users\Petr\AppData\Roaming\Malwarebytes
2013-12-12 14:02 . 2013-12-12 14:02 -------- d-----w- c:\programdata\Malwarebytes
2013-12-12 14:02 . 2013-12-12 14:02 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-12-12 14:02 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-12-12 13:27 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2013-12-12 13:27 . 2013-05-10 03:48 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2013-12-12 13:26 . 2013-11-23 18:26 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2013-12-12 13:25 . 2013-10-30 02:19 301568 ----a-w- c:\windows\system32\msieftp.dll
2013-12-12 13:25 . 2013-11-12 02:07 2048 ----a-w- c:\windows\system32\tzres.dll
2013-12-12 13:25 . 2013-10-12 02:04 121856 ----a-w- c:\windows\system32\wshom.ocx
2013-12-12 13:25 . 2013-10-12 02:03 163840 ----a-w- c:\windows\system32\scrrun.dll
2013-12-12 13:25 . 2013-10-12 01:15 141824 ----a-w- c:\windows\system32\wscript.exe
2013-12-12 13:25 . 2013-10-12 01:15 126976 ----a-w- c:\windows\system32\cscript.exe
2013-12-12 13:25 . 2013-10-19 01:36 159232 ----a-w- c:\windows\system32\imagehlp.dll
2013-12-12 13:25 . 2013-10-30 01:27 2349056 ----a-w- c:\windows\system32\win32k.sys
2013-12-12 13:24 . 2013-10-04 01:17 177152 ----a-w- c:\windows\system32\drivers\portcls.sys
2013-12-12 13:24 . 2013-10-04 01:49 81408 ----a-w- c:\windows\system32\drivers\drmk.sys
2013-12-11 20:21 . 2013-12-11 20:21 388096 ----a-r- c:\users\Petr\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-12-11 20:21 . 2013-12-11 20:21 -------- d-----w- c:\program files\Trend Micro
2013-12-11 19:44 . 2013-10-30 10:27 25400 ----a-w- c:\windows\system32\authuitu.dll
2013-12-11 19:44 . 2013-10-30 10:27 35640 ----a-w- c:\windows\system32\uxtuneup.dll
2013-12-11 19:26 . 2013-10-30 10:27 36152 ----a-w- c:\windows\system32\TURegOpt.exe
2013-12-11 19:24 . 2013-12-11 19:24 -------- d-----w- c:\users\Petr\AppData\Roaming\AVG
2013-12-11 19:22 . 2013-12-11 19:22 -------- d-----w- c:\program files\AVG
2013-12-11 19:15 . 2013-12-11 19:32 -------- d-----w- c:\programdata\AVG
2013-12-11 19:15 . 2013-12-11 19:15 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-12-11 19:15 . 2013-12-11 19:15 -------- d--h--w- c:\programdata\Common Files
2013-12-10 19:13 . 2013-12-10 19:13 -------- d-----w- C:\Nová složka
2013-12-10 17:17 . 2013-12-10 17:16 719224 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{173AC8C0-6009-4E63-B33D-3D03E6A33E47}\gapaengine.dll
2013-12-10 17:11 . 2013-12-10 17:12 -------- d-----w- c:\program files\Microsoft Security Client
2013-12-10 17:05 . 2013-12-10 17:06 -------- d-----w- c:\programdata\AVAST Software
2013-12-09 18:08 . 2013-12-10 18:08 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA Corporation
2013-12-09 18:03 . 2013-10-30 17:03 34080 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2013-12-04 12:52 . 2013-12-04 12:52 -------- d-----w- c:\program files\LogMeIn Hamachi
2013-11-28 18:01 . 2013-12-18 14:09 -------- d---a-w- c:\programdata\MTA San Andreas All
2013-11-21 21:25 . 2013-11-21 21:25 -------- d-----w- c:\program files\AGEIA Technologies
2013-11-21 21:17 . 2013-11-14 11:57 22951200 ----a-w- c:\windows\system32\nvoglv32.dll
2013-11-21 21:17 . 2013-11-14 11:57 609568 ----a-w- c:\windows\system32\NvFBC.dll
2013-11-21 21:17 . 2013-11-14 11:57 562464 ----a-w- c:\windows\system32\NvIFR.dll
2013-11-21 21:17 . 2013-11-14 11:57 10446112 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-11-21 21:17 . 2013-11-14 11:57 893728 ----a-w- c:\windows\system32\nvdispgenco3233182.dll
2013-11-21 21:17 . 2013-11-14 11:57 2947872 ----a-w- c:\windows\system32\nvcuvid.dll
2013-11-21 21:17 . 2013-11-14 11:57 1049888 ----a-w- c:\windows\system32\nvdispco3233182.dll
2013-11-21 21:17 . 2013-11-14 11:57 9663656 ----a-w- c:\windows\system32\nvcuda.dll
2013-11-21 21:17 . 2013-11-14 11:57 2747680 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-11-21 21:17 . 2013-11-14 11:57 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-11-21 21:06 . 2013-12-09 18:04 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA
2013-11-21 21:03 . 2013-11-29 16:58 979744 ----a-w- c:\windows\system32\nvspcap.dll
2013-11-21 20:53 . 2013-10-30 17:02 32544 ----a-w- c:\windows\system32\nvaudcap32v.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-16 13:43 . 2013-12-16 13:43 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 16384 ----a-w- c:\windows\system32\drivers\ws2ifsl.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 14912 ----a-w- c:\windows\system32\drivers\wmilib.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 11264 ----a-w- c:\windows\system32\drivers\wmiacpi.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 43392 ----a-w- c:\windows\system32\drivers\winhv.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19008 ----a-w- c:\windows\system32\drivers\wimmount.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 9728 ----a-w- c:\windows\system32\drivers\wfplwf.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 63488 ----a-w- c:\windows\system32\drivers\wanarp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 35328 ----a-w- c:\windows\system32\drivers\watchdog.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19024 ----a-w- c:\windows\system32\drivers\wd.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 21632 ----a-w- c:\windows\system32\drivers\wacompen.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 48128 ----a-w- c:\windows\system32\drivers\vwififlt.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19968 ----a-w- c:\windows\system32\drivers\vwifibus.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 14336 ----a-w- c:\windows\system32\drivers\vwifimp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 297040 ----a-w- c:\windows\system32\drivers\volmgrx.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 245632 ----a-w- c:\windows\system32\drivers\volsnap.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 141904 ----a-w- c:\windows\system32\drivers\vsmraid.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 53120 ----a-w- c:\windows\system32\drivers\volmgr.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 5632 ----a-w- c:\windows\system32\drivers\vms3cap.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 40704 ----a-w- c:\windows\system32\drivers\vmstorfl.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 17920 ----a-w- c:\windows\system32\drivers\VMBusHID.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 175360 ----a-w- c:\windows\system32\drivers\vmbus.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 111616 ----a-w- c:\windows\system32\drivers\videoprt.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 53328 ----a-w- c:\windows\system32\drivers\VIAAGP.SYS.bak
2013-12-16 13:43 . 2013-12-16 13:43 52736 ----a-w- c:\windows\system32\drivers\viac7.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 16976 ----a-w- c:\windows\system32\drivers\viaide.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 160128 ----a-w- c:\windows\system32\drivers\vhdmp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 26112 ----a-w- c:\windows\system32\drivers\vgapnp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 25088 ----a-w- c:\windows\system32\drivers\vga.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 32832 ----a-w- c:\windows\system32\drivers\vdrvroot.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 76288 ----a-w- c:\windows\system32\drivers\USBSTOR.SYS.bak
2013-12-16 13:43 . 2013-12-16 13:43 36352 ----a-w- c:\windows\system32\drivers\usbscan.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 26112 ----a-w- c:\windows\system32\drivers\usbrpm.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 284672 ----a-w- c:\windows\system32\drivers\usbport.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19968 ----a-w- c:\windows\system32\drivers\usbprint.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 6016 ----a-w- c:\windows\system32\drivers\usbd.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 86016 ----a-w- c:\windows\system32\drivers\usbcir.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 76288 ----a-w- c:\windows\system32\drivers\usbccgp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 25856 ----a-w- c:\windows\system32\drivers\USBCAMD2.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 25856 ----a-w- c:\windows\system32\drivers\USBCAMD.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 8192 ----a-w- c:\windows\system32\drivers\umpass.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 39936 ----a-w- c:\windows\system32\drivers\umbus.sys.bak
2013-12-16 13:43 . 2013-12-16 13:42 57424 ----a-w- c:\windows\system32\drivers\ULIAGPKX.SYS.bak
2013-12-16 13:42 . 2013-12-16 13:42 55888 ----a-w- c:\windows\system32\drivers\UAGP35.SYS.bak
2013-12-16 13:42 . 2013-12-16 13:42 246784 ----a-w- c:\windows\system32\drivers\udfs.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 108544 ----a-w- c:\windows\system32\drivers\tunnel.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 52224 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 53120 ----a-w- c:\windows\system32\drivers\termdd.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 74752 ----a-w- c:\windows\system32\drivers\tdx.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 18432 ----a-w- c:\windows\system32\drivers\tdpipe.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 21504 ----a-w- c:\windows\system32\drivers\tdi.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 26624 ----a-w- c:\windows\system32\drivers\tap0901.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 26112 ----a-w- c:\windows\system32\drivers\tapoas.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 24576 ----a-w- c:\windows\system32\drivers\tape.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 12240 ----a-w- c:\windows\system32\drivers\swenum.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 53632 ----a-w- c:\windows\system32\drivers\stream.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 28032 ----a-w- c:\windows\system32\drivers\storvsc.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 148864 ----a-w- c:\windows\system32\drivers\storport.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 21072 ----a-w- c:\windows\system32\drivers\stexstor.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 310272 ----a-w- c:\windows\system32\drivers\srv2.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 311808 ----a-w- c:\windows\system32\drivers\srv.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 405504 ----a-w- c:\windows\system32\drivers\spsys.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 17472 ----a-w- c:\windows\system32\drivers\spldr.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 17408 ----a-w- c:\windows\system32\drivers\smclib.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 71168 ----a-w- c:\windows\system32\drivers\smb.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 77888 ----a-w- c:\windows\system32\drivers\sisraid4.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 40016 ----a-w- c:\windows\system32\drivers\sisraid2.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 52304 ----a-w- c:\windows\system32\drivers\SISAGP.SYS.bak
2013-12-16 13:42 . 2013-12-16 13:42 13824 ----a-w- c:\windows\system32\drivers\sfloppy.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 12800 ----a-w- c:\windows\system32\drivers\sffp_sd.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 12288 ----a-w- c:\windows\system32\drivers\sffp_mmc.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 11264 ----a-w- c:\windows\system32\drivers\sffdisk.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 19968 ----a-w- c:\windows\system32\drivers\sermouse.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 83456 ----a-w- c:\windows\system32\drivers\serial.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 20480 ----a-w- c:\windows\system32\drivers\secdrv.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 17920 ----a-w- c:\windows\system32\drivers\serenum.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 140160 ----a-w- c:\windows\system32\drivers\scsiport.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 26624 ----a-w- c:\windows\system32\drivers\scfilter.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 85376 ----a-w- c:\windows\system32\drivers\sbp2port.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 60928 ----a-w- c:\windows\system32\drivers\rspndr.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 8192 ----a-w- c:\windows\system32\drivers\rootmdm.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 117760 ----a-w- c:\windows\system32\drivers\rmcast.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 173440 ----a-w- c:\windows\system32\drivers\rdyboost.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 7168 ----a-w- c:\windows\system32\drivers\RDPREFMP.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 6656 ----a-w- c:\windows\system32\drivers\RDPENCDD.sys.bak
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-11-14 20584608]
"Steam"="c:\program files\Steam\Steam.exe" [2013-12-11 1823656]
"CursorFX"="c:\program files\Stardock\CursorFX\CursorFX.exe" [2012-05-10 432784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"VNT"="c:\program files\VNT\vntldr.exe" [2013-11-08 202192]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-08 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap.dll" [2013-11-29 979744]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-11-29 3806544]
"NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-11-29 2273056]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 948440]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-05-17 280576]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.8.130\SSScheduler.exe [2013-9-6 273296]
TP-LINK Wireless Configuration Utility.lnk - c:\program files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe -nogui [2013-5-6 788992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R1 dlajyvmu;dlajyvmu;c:\windows\system32\drivers\dlajyvmu.sys [x]
R1 isuvrmxg;isuvrmxg;c:\windows\system32\drivers\isuvrmxg.sys [x]
R1 miunkuab;miunkuab;c:\windows\system32\drivers\miunkuab.sys [x]
R1 pwtusvba;pwtusvba;c:\windows\system32\drivers\pwtusvba.sys [x]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 OpenVPNAccessClient;OpenVPN Access Client;c:\program files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [2010-08-12 24064]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-09-05 171680]
R3 CGVPNCliSrvc;CyberGhost VPN Client;c:\program files\CyberGhost VPN\CGVPNCliService.exe [x]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 FairplayKD;FairplayKD;c:\programdata\MTA San Andreas All\Common\temp\FairplayKD.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena Plus\Room\safedrv.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2013-11-26 108032]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.130\McCHSvc.exe [2013-09-06 235216]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-05-08 1343400]
R3 XDva401;XDva401;c:\windows\system32\XDva401.sys [x]
S1 MpKsl8c880b0e;MpKsl8c880b0e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{EEA8F586-DBAE-44DB-9033-114111BB7554}\MpKsl8c880b0e.sys [2013-12-19 40392]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2013-11-29 1664336]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 375056]
S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-11-29 1370912]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-29 14657824]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-11-11 414496]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2013-09-12 5071712]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [2013-10-30 1739064]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athur.sys [2011-04-20 1570304]
S3 ipshtap;IP-SHIELD TAP Adapter;c:\windows\system32\DRIVERS\ipshtap.sys [2011-10-16 28240]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x86.sys [2009-07-13 50688]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-10-30 34080]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\DRIVERS\tapoas.sys [2010-08-03 26112]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [2013-09-18 12320]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MPKSL8C880B0E
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-06 13:02 1210320 ----a-w- c:\program files\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-18 15:09]
.
2013-12-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-14 11:35]
.
2013-12-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-14 11:35]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\
FF - ExtSQL: 2013-12-04 15:11; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{5054562D-5247-006A-76A7-7A786E7484D7} - c:\program files\AskPartnerNetwork\Toolbar\PTV-RG\Passport.dll
Toolbar-{5054562D-5247-006A-76A7-7A786E7484D7} - c:\program files\AskPartnerNetwork\Toolbar\PTV-RG\Passport.dll
HKCU-Run-GarenaPlus - c:\program files\Garena Plus\GarenaMessenger.exe
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\OpenVPN Client.lnk - c:\program files\OpenVPN Technologies\OpenVPN Client\core\uiboot.exe
AddRemove-Counter-Strike 1.6 v42b_is1 - c:\counter-strike 1.6 v42b full client\unins000.exe
AddRemove-CyberGhost VPN_is1 - c:\program files\CyberGhost VPN\unins000.exe
AddRemove-Dll-Files Fixer_is1 - c:\program files\Dll-Files.com Fixer\unins000.exe
AddRemove-MixiDJ chrome Toolbar - c:\users\Petr\AppData\Roaming\BabSolution\Shared\GUninstaller.exe
AddRemove-Tzar - c:\windows\IsUn0405.exe
AddRemove-ClubCooee - c:\users\Petr\AppData\Local\ClubCooee\Program\uninstall.exe
AddRemove-FLV Player - c:\users\Petr\AppData\Local\WebPlayer\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\TrueSight]
"ImagePath"="\??\"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-4181382291-2862123988-1253626650-1000\Software\SecuROM\License information*]
"datasecu"=hex:7d,0c,99,eb,2a,b0,ae,f9,be,83,b3,f5,4d,72,f9,08,b6,db,aa,0e,3a,
bd,06,42,64,75,6d,23,ad,df,ac,cf,3d,b3,2d,2f,a7,f3,77,fe,74,cd,9b,ae,fb,45,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-12-19 15:53:19
ComboFix-quarantined-files.txt 2013-12-19 14:53
.
Před spuštěním: Volných bajtů: 51 585 564 672
Po spuštění: Volných bajtů: 56 987 189 248
.
- - End Of File - - CEC986E0BB062754E05A88B636D5C127
A36C5E4F47E84449FF07ED3517B43A31

[jaro3]

Spuštěný z: c:\users\Petr\Downloads\ComboFix.exe

Přesuň Combofix.exe na plochu!


Stáhni si FindAWF
a ulož si ho na plochu.Poklepej na něj (u 64bit. systémů klikněte pravým a vyberte „odstranit problémy s kompatibilitou , „zkusit doporučená nastavení., spustit program), otevře se , požádá Tě o stisknutí kterékoliv klávesy k pokračování..Dostaneš se na menu, zvol 1 a potom Enter. AWF začne skenování.Může to trvat několik minut. Když skončí sken automaticky se objeví text.soubor AWF.txt, ten sem prosím zkopíruj.


Odinstaluj:
McAfee Security Scan

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
Collect::
c:\windows\system32\drivers\dlajyvmu.sys
c:\windows\system32\drivers\isuvrmxg.sys
c:\windows\system32\drivers\miunkuab.sys
c:\windows\system32\drivers\pwtusvba.sys
c:\windows\system32\XDva401.sys

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\program files\Skype\Updater
c:\program files\McAfee Security Scan
c:\program files\Google\Update

Driver::
dlajyvmu
isuvrmxg
miunkuab
pwtusvba
SkypeUpdate
McComponentHostService
XDva401

Registry::
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\TrueSight]

RegLock::
[HKEY_USERS\S-1-5-21-4181382291-2862123988-1253626650-1000\Software\SecuROM\License information*]
"datasecu"=hex:7d,0c,99,eb,2a,b0,ae,f9,be,83,b3,f5,4d,72,f9,08,b6,db,aa,0e,3a,
 bd,06,42,64,75,6d,23,ad,df,ac,cf,3d,b3,2d,2f,a7,f3,77,fe,74,cd,9b,ae,fb,45,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[keeman808]

Combofix.exe, mám opravdu na ploše, nevím proč to tam vypisuje že je to spuštěné ze složky download.
Spouštěl jsem to teď opravdu přes plochu.

[keeman808]

ComboFix 13-12-20.01 - Petr 20.12.2013 19:24:50.3.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2047.906 [GMT 1:00]
Spuštěný z: c:\users\Petr\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\Petr\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Předchozí spuštění -------
.
c:\program files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
c:\program files\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
c:\program files\Google\Update\1.3.22.3\GoogleUpdate.exe
c:\program files\Google\Update\1.3.22.3\GoogleUpdateBroker.exe
c:\program files\Google\Update\1.3.22.3\GoogleUpdateHelper.msi
c:\program files\Google\Update\1.3.22.3\GoogleUpdateOnDemand.exe
c:\program files\Google\Update\1.3.22.3\GoogleUpdateSetup.exe
c:\program files\Google\Update\1.3.22.3\goopdate.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_am.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ar.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_bg.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_bn.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ca.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_cs.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_da.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_de.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_el.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_en-GB.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_en.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_es-419.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_es.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_et.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_fa.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_fi.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_fil.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_fr.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_gu.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_hi.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_hr.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_hu.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_id.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_is.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_it.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_iw.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ja.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_kn.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ko.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_lt.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_lv.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ml.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_mr.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ms.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_nl.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_no.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_pl.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_pt-BR.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_pt-PT.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ro.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ru.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_sk.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_sl.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_sr.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_sv.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_sw.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ta.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_te.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_th.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_tr.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_uk.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_ur.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_vi.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_zh-CN.dll
c:\program files\Google\Update\1.3.22.3\goopdateres_zh-TW.dll
c:\program files\Google\Update\1.3.22.3\npGoogleUpdate3.dll
c:\program files\Google\Update\1.3.22.3\psmachine.dll
c:\program files\Google\Update\1.3.22.3\psuser.dll
c:\program files\Google\Update\Download\{2BF2CA35-CCAF-4E58-BAB7-4163BFA03B88}\7.1.2.2041\GoogleEarth-Win-Plugin-7.1.2.2041.exe
c:\program files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3\GoogleUpdateSetup.exe
c:\program files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.63\31.0.1650.63_31.0.1650.57_chrome_updater.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
c:\programdata\SearchNewTab\_ZbooA0M.dat
c:\programdata\SearchNewTab\_ZbooA0M.exe
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\ilckyoic@loouuio.co.uk\bootstrap.js
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\ilckyoic@loouuio.co.uk\content\bg.js
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\ilckyoic@loouuio.co.uk\chrome.manifest
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\ilckyoic@loouuio.co.uk\install.rdf
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\pgqvje@yuvv.org\bootstrap.js
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\pgqvje@yuvv.org\content\bg.js
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\pgqvje@yuvv.org\chrome.manifest
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\pgqvje@yuvv.org\install.rdf
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\yaiaoub7-6@t-myot.net\bootstrap.js
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\yaiaoub7-6@t-myot.net\content\bg.js
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\yaiaoub7-6@t-myot.net\chrome.manifest
c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\extensions\staged\yaiaoub7-6@t-myot.net\install.rdf
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_XDVA401
-------\Service_dlajyvmu
-------\Service_isuvrmxg
-------\Service_miunkuab
-------\Service_pwtusvba
-------\Service_SkypeUpdate
-------\Service_XDva401
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-20 do 2013-12-20 )))))))))))))))))))))))))))))))
.
.
2013-12-20 18:57 . 2013-12-20 18:57 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-12-19 19:04 . 2013-12-19 19:06 -------- d-----w- c:\users\Petr\AppData\Roaming\SkypEmoticons
2013-12-19 19:04 . 2013-12-19 19:04 -------- d-----w- c:\program files\SearchNewTab
2013-12-19 19:04 . 2013-12-19 19:04 -------- d-----w- c:\program files\WebSearch
2013-12-19 19:04 . 2013-12-19 19:05 -------- d-----w- c:\programdata\QuickSet
2013-12-19 19:04 . 2013-12-19 19:04 -------- d-----w- c:\program files\ss Supporter
2013-12-19 19:03 . 2013-12-19 19:03 -------- d-----w- c:\programdata\YoutubeAdblocker
2013-12-19 19:03 . 2013-12-19 19:03 -------- d-----w- c:\program files\YoutubeAdblocker
2013-12-19 19:03 . 2013-12-19 19:03 -------- d-----w- c:\programdata\sourf and kEepp
2013-12-19 19:03 . 2013-12-19 19:03 -------- d-----w- c:\program files\sourf and kEepp
2013-12-19 19:03 . 2013-12-19 19:04 -------- d-----w- c:\programdata\f1365ed72c4af898
2013-12-19 16:45 . 2013-12-04 02:57 7760024 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BF9D865A-4B01-46A3-834B-69BA2420A630}\mpengine.dll
2013-12-19 14:53 . 2013-12-20 19:00 -------- d-----w- c:\users\Petr\AppData\Local\temp
2013-12-18 15:17 . 2013-12-18 15:17 -------- d-----w- c:\program files\Rockstar Games
2013-12-18 14:32 . 2013-12-18 15:08 -------- d-----w- C:\GTATTA
2013-12-18 14:09 . 2013-12-18 14:19 -------- d-----w- c:\program files\MTA San Andreas 1.3
2013-12-17 15:58 . 2013-12-18 14:18 -------- d-----w- C:\Gtacko
2013-12-16 21:10 . 2013-12-04 02:57 7760024 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-12-16 14:15 . 2013-12-20 13:29 -------- d-----w- c:\users\Petr\AppData\Local\CrashDumps
2013-12-12 21:43 . 2013-11-26 08:16 4243968 ----a-w- c:\windows\system32\jscript9.dll
2013-12-12 19:06 . 2013-12-12 19:09 -------- d-----w- C:\AdwCleaner
2013-12-12 18:53 . 2013-12-12 18:53 -------- d-----w- c:\windows\ERUNT
2013-12-12 14:03 . 2013-12-12 14:03 -------- d-----w- c:\users\Petr\AppData\Roaming\Malwarebytes
2013-12-12 14:02 . 2013-12-12 14:02 -------- d-----w- c:\programdata\Malwarebytes
2013-12-12 14:02 . 2013-12-12 14:02 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-12-12 14:02 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-12-12 13:27 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2013-12-12 13:27 . 2013-05-10 03:48 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2013-12-12 13:26 . 2013-11-23 18:26 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2013-12-12 13:25 . 2013-10-30 02:19 301568 ----a-w- c:\windows\system32\msieftp.dll
2013-12-12 13:25 . 2013-11-12 02:07 2048 ----a-w- c:\windows\system32\tzres.dll
2013-12-12 13:25 . 2013-10-12 02:04 121856 ----a-w- c:\windows\system32\wshom.ocx
2013-12-12 13:25 . 2013-10-12 02:03 163840 ----a-w- c:\windows\system32\scrrun.dll
2013-12-12 13:25 . 2013-10-12 01:15 141824 ----a-w- c:\windows\system32\wscript.exe
2013-12-12 13:25 . 2013-10-12 01:15 126976 ----a-w- c:\windows\system32\cscript.exe
2013-12-12 13:25 . 2013-10-19 01:36 159232 ----a-w- c:\windows\system32\imagehlp.dll
2013-12-12 13:25 . 2013-10-30 01:27 2349056 ----a-w- c:\windows\system32\win32k.sys
2013-12-12 13:24 . 2013-10-04 01:17 177152 ----a-w- c:\windows\system32\drivers\portcls.sys
2013-12-12 13:24 . 2013-10-04 01:49 81408 ----a-w- c:\windows\system32\drivers\drmk.sys
2013-12-11 20:21 . 2013-12-11 20:21 388096 ----a-r- c:\users\Petr\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-12-11 20:21 . 2013-12-11 20:21 -------- d-----w- c:\program files\Trend Micro
2013-12-11 19:44 . 2013-10-30 10:27 25400 ----a-w- c:\windows\system32\authuitu.dll
2013-12-11 19:44 . 2013-10-30 10:27 35640 ----a-w- c:\windows\system32\uxtuneup.dll
2013-12-11 19:26 . 2013-10-30 10:27 36152 ----a-w- c:\windows\system32\TURegOpt.exe
2013-12-11 19:24 . 2013-12-11 19:24 -------- d-----w- c:\users\Petr\AppData\Roaming\AVG
2013-12-11 19:22 . 2013-12-11 19:22 -------- d-----w- c:\program files\AVG
2013-12-11 19:15 . 2013-12-11 19:32 -------- d-----w- c:\programdata\AVG
2013-12-11 19:15 . 2013-12-11 19:15 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-12-11 19:15 . 2013-12-11 19:15 -------- d--h--w- c:\programdata\Common Files
2013-12-10 19:13 . 2013-12-10 19:13 -------- d-----w- C:\Nová složka
2013-12-10 17:17 . 2013-12-10 17:16 719224 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{173AC8C0-6009-4E63-B33D-3D03E6A33E47}\gapaengine.dll
2013-12-10 17:11 . 2013-12-10 17:12 -------- d-----w- c:\program files\Microsoft Security Client
2013-12-10 17:05 . 2013-12-10 17:06 -------- d-----w- c:\programdata\AVAST Software
2013-12-09 18:08 . 2013-12-10 18:08 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA Corporation
2013-12-09 18:03 . 2013-10-30 17:03 34080 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2013-12-04 12:52 . 2013-12-04 12:52 -------- d-----w- c:\program files\LogMeIn Hamachi
2013-11-28 18:01 . 2013-12-18 14:09 -------- d---a-w- c:\programdata\MTA San Andreas All
2013-11-21 21:25 . 2013-11-21 21:25 -------- d-----w- c:\program files\AGEIA Technologies
2013-11-21 21:17 . 2013-11-14 11:57 22951200 ----a-w- c:\windows\system32\nvoglv32.dll
2013-11-21 21:17 . 2013-11-14 11:57 609568 ----a-w- c:\windows\system32\NvFBC.dll
2013-11-21 21:17 . 2013-11-14 11:57 562464 ----a-w- c:\windows\system32\NvIFR.dll
2013-11-21 21:17 . 2013-11-14 11:57 10446112 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-11-21 21:17 . 2013-11-14 11:57 893728 ----a-w- c:\windows\system32\nvdispgenco3233182.dll
2013-11-21 21:17 . 2013-11-14 11:57 2947872 ----a-w- c:\windows\system32\nvcuvid.dll
2013-11-21 21:17 . 2013-11-14 11:57 1049888 ----a-w- c:\windows\system32\nvdispco3233182.dll
2013-11-21 21:17 . 2013-11-14 11:57 9663656 ----a-w- c:\windows\system32\nvcuda.dll
2013-11-21 21:17 . 2013-11-14 11:57 2747680 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-11-21 21:17 . 2013-11-14 11:57 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-11-21 21:06 . 2013-12-09 18:04 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA
2013-11-21 21:03 . 2013-11-29 16:58 979744 ----a-w- c:\windows\system32\nvspcap.dll
2013-11-21 20:53 . 2013-10-30 17:02 32544 ----a-w- c:\windows\system32\nvaudcap32v.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-16 13:43 . 2013-12-16 13:43 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 16384 ----a-w- c:\windows\system32\drivers\ws2ifsl.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 14912 ----a-w- c:\windows\system32\drivers\wmilib.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 11264 ----a-w- c:\windows\system32\drivers\wmiacpi.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 43392 ----a-w- c:\windows\system32\drivers\winhv.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19008 ----a-w- c:\windows\system32\drivers\wimmount.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 9728 ----a-w- c:\windows\system32\drivers\wfplwf.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 63488 ----a-w- c:\windows\system32\drivers\wanarp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 35328 ----a-w- c:\windows\system32\drivers\watchdog.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19024 ----a-w- c:\windows\system32\drivers\wd.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 21632 ----a-w- c:\windows\system32\drivers\wacompen.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 48128 ----a-w- c:\windows\system32\drivers\vwififlt.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19968 ----a-w- c:\windows\system32\drivers\vwifibus.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 14336 ----a-w- c:\windows\system32\drivers\vwifimp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 297040 ----a-w- c:\windows\system32\drivers\volmgrx.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 245632 ----a-w- c:\windows\system32\drivers\volsnap.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 141904 ----a-w- c:\windows\system32\drivers\vsmraid.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 53120 ----a-w- c:\windows\system32\drivers\volmgr.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 5632 ----a-w- c:\windows\system32\drivers\vms3cap.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 40704 ----a-w- c:\windows\system32\drivers\vmstorfl.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 17920 ----a-w- c:\windows\system32\drivers\VMBusHID.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 175360 ----a-w- c:\windows\system32\drivers\vmbus.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 111616 ----a-w- c:\windows\system32\drivers\videoprt.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 53328 ----a-w- c:\windows\system32\drivers\VIAAGP.SYS.bak
2013-12-16 13:43 . 2013-12-16 13:43 52736 ----a-w- c:\windows\system32\drivers\viac7.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 16976 ----a-w- c:\windows\system32\drivers\viaide.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 160128 ----a-w- c:\windows\system32\drivers\vhdmp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 26112 ----a-w- c:\windows\system32\drivers\vgapnp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 25088 ----a-w- c:\windows\system32\drivers\vga.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 32832 ----a-w- c:\windows\system32\drivers\vdrvroot.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 76288 ----a-w- c:\windows\system32\drivers\USBSTOR.SYS.bak
2013-12-16 13:43 . 2013-12-16 13:43 36352 ----a-w- c:\windows\system32\drivers\usbscan.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 26112 ----a-w- c:\windows\system32\drivers\usbrpm.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 284672 ----a-w- c:\windows\system32\drivers\usbport.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 19968 ----a-w- c:\windows\system32\drivers\usbprint.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 6016 ----a-w- c:\windows\system32\drivers\usbd.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 86016 ----a-w- c:\windows\system32\drivers\usbcir.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 76288 ----a-w- c:\windows\system32\drivers\usbccgp.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 25856 ----a-w- c:\windows\system32\drivers\USBCAMD2.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 25856 ----a-w- c:\windows\system32\drivers\USBCAMD.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 8192 ----a-w- c:\windows\system32\drivers\umpass.sys.bak
2013-12-16 13:43 . 2013-12-16 13:43 39936 ----a-w- c:\windows\system32\drivers\umbus.sys.bak
2013-12-16 13:43 . 2013-12-16 13:42 57424 ----a-w- c:\windows\system32\drivers\ULIAGPKX.SYS.bak
2013-12-16 13:42 . 2013-12-16 13:42 55888 ----a-w- c:\windows\system32\drivers\UAGP35.SYS.bak
2013-12-16 13:42 . 2013-12-16 13:42 246784 ----a-w- c:\windows\system32\drivers\udfs.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 108544 ----a-w- c:\windows\system32\drivers\tunnel.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 52224 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 53120 ----a-w- c:\windows\system32\drivers\termdd.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 74752 ----a-w- c:\windows\system32\drivers\tdx.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 18432 ----a-w- c:\windows\system32\drivers\tdpipe.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 21504 ----a-w- c:\windows\system32\drivers\tdi.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 26624 ----a-w- c:\windows\system32\drivers\tap0901.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 26112 ----a-w- c:\windows\system32\drivers\tapoas.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 24576 ----a-w- c:\windows\system32\drivers\tape.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 12240 ----a-w- c:\windows\system32\drivers\swenum.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 53632 ----a-w- c:\windows\system32\drivers\stream.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 28032 ----a-w- c:\windows\system32\drivers\storvsc.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 148864 ----a-w- c:\windows\system32\drivers\storport.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 21072 ----a-w- c:\windows\system32\drivers\stexstor.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 310272 ----a-w- c:\windows\system32\drivers\srv2.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 311808 ----a-w- c:\windows\system32\drivers\srv.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 405504 ----a-w- c:\windows\system32\drivers\spsys.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 17472 ----a-w- c:\windows\system32\drivers\spldr.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 17408 ----a-w- c:\windows\system32\drivers\smclib.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 71168 ----a-w- c:\windows\system32\drivers\smb.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 77888 ----a-w- c:\windows\system32\drivers\sisraid4.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 40016 ----a-w- c:\windows\system32\drivers\sisraid2.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 52304 ----a-w- c:\windows\system32\drivers\SISAGP.SYS.bak
2013-12-16 13:42 . 2013-12-16 13:42 13824 ----a-w- c:\windows\system32\drivers\sfloppy.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 12800 ----a-w- c:\windows\system32\drivers\sffp_sd.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 12288 ----a-w- c:\windows\system32\drivers\sffp_mmc.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 11264 ----a-w- c:\windows\system32\drivers\sffdisk.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 19968 ----a-w- c:\windows\system32\drivers\sermouse.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 83456 ----a-w- c:\windows\system32\drivers\serial.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 20480 ----a-w- c:\windows\system32\drivers\secdrv.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 17920 ----a-w- c:\windows\system32\drivers\serenum.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 140160 ----a-w- c:\windows\system32\drivers\scsiport.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 26624 ----a-w- c:\windows\system32\drivers\scfilter.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 85376 ----a-w- c:\windows\system32\drivers\sbp2port.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 60928 ----a-w- c:\windows\system32\drivers\rspndr.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 8192 ----a-w- c:\windows\system32\drivers\rootmdm.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 117760 ----a-w- c:\windows\system32\drivers\rmcast.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 173440 ----a-w- c:\windows\system32\drivers\rdyboost.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 7168 ----a-w- c:\windows\system32\drivers\RDPREFMP.sys.bak
2013-12-16 13:42 . 2013-12-16 13:42 6656 ----a-w- c:\windows\system32\drivers\RDPENCDD.sys.bak
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{21A1FDAD-3F3E-BCC8-147F-439C073A8C9A}]
2013-12-19 19:03 424960 ----a-w- c:\program files\sourf and kEepp\fA6p.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{2DB58D96-CC97-F78F-842A-BAA8205E65F9}]
2013-12-19 19:04 424960 ----a-w- c:\program files\SearchNewTab\H0o3Q5I.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{A9592A02-9C51-556C-E448-9993BB88AD10}]
2013-12-19 19:03 424960 ----a-w- c:\program files\YoutubeAdblocker\4s0eEn.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-11-14 20584608]
"Steam"="c:\program files\Steam\Steam.exe" [2013-12-11 1823656]
"CursorFX"="c:\program files\Stardock\CursorFX\CursorFX.exe" [2012-05-10 432784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"VNT"="c:\program files\VNT\vntldr.exe" [2013-11-08 202192]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-08 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap.dll" [2013-11-29 979744]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-11-29 3806544]
"NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-11-29 2273056]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 948440]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-05-17 280576]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
TP-LINK Wireless Configuration Utility.lnk - c:\program files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe -nogui [2013-5-6 788992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R3 CGVPNCliSrvc;CyberGhost VPN Client;c:\program files\CyberGhost VPN\CGVPNCliService.exe [x]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 FairplayKD;FairplayKD;c:\programdata\MTA San Andreas All\Common\temp\FairplayKD.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena Plus\Room\safedrv.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2013-11-26 108032]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-05-08 1343400]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2013-11-29 1664336]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 375056]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-11-29 1370912]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-29 14657824]
S2 OpenVPNAccessClient;OpenVPN Access Client;c:\program files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [2010-08-12 24064]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-11-11 414496]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2013-09-12 5071712]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [2013-10-30 1739064]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athur.sys [2011-04-20 1570304]
S3 ipshtap;IP-SHIELD TAP Adapter;c:\windows\system32\DRIVERS\ipshtap.sys [2011-10-16 28240]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x86.sys [2009-07-13 50688]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-10-30 34080]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\DRIVERS\tapoas.sys [2010-08-03 26112]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [2013-09-18 12320]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-06 13:02 1210320 ----a-w- c:\program files\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-18 15:09]
.
2013-12-20 c:\windows\Tasks\SK.Enabler-S-1495795506.job
- c:\programdata\quickset\sk.enabler\SK.Enabler.exe [2012-12-19 19:04]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
mStart Page = hxxp://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\
FF - prefs.js: browser.startup.homepage - hxxp://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
FF - prefs.js: browser.search.selectedEngine - WebSearch
FF - prefs.js: browser.search.defaulturl - hxxp://websearch.searchguru.info/?pid=1 ... =43&l=1&q=
FF - prefs.js: keyword.URL - hxxp://websearch.searchguru.info/?pid=1 ... =43&l=1&q=
FF - ExtSQL: 2013-12-04 15:11; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-4181382291-2862123988-1253626650-1000\Software\SecuROM\License information*]
"datasecu"=hex:7d,0c,99,eb,2a,b0,ae,f9,be,83,b3,f5,4d,72,f9,08,b6,db,aa,0e,3a,
bd,06,42,64,75,6d,23,ad,df,ac,cf,3d,b3,2d,2f,a7,f3,77,fe,74,cd,9b,ae,fb,45,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\System32\rundll32.exe
c:\windows\system32\conhost.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
.
**************************************************************************
.
Celkový čas: 2013-12-20 20:08:53 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-12-20 19:08
ComboFix2.txt 2013-12-19 14:53
.
Před spuštěním: Volných bajtů: 53 508 431 872
Po spuštění: Volných bajtů: 53 808 701 440
.
- - End Of File - - C4843B3192D4B2FB856E3BEB41573472
A36C5E4F47E84449FF07ED3517B43A31

[keeman808]

Find AWF report by noahdfear ©2006
Version 1.40



bak folders found
~~~~~~~~~~~



Duplicate files of bak directory contents
~~~~~~~~~~~~~~~~~~~~~~~



end of report

[keeman808]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:22:51, on 20.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\Explorer.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: sourf and kEepp - {21A1FDAD-3F3E-BCC8-147F-439C073A8C9A} - C:\Program Files\sourf and kEepp\fA6p.dll
O2 - BHO: SearchNewTab - {2DB58D96-CC97-F78F-842A-BAA8205E65F9} - C:\Program Files\SearchNewTab\H0o3Q5I.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: YoutubeAdblocker - {A9592A02-9C51-556C-E448-9993BB88AD10} - C:\Program Files\YoutubeAdblocker\4s0eEn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [VNT] C:\Program Files\VNT\vntldr.exe
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files\Stardock\CursorFX\CursorFX.exe"
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: CyberGhost VPN Client (CGVPNCliSrvc) - Unknown owner - C:\Program Files\CyberGhost VPN\CGVPNCliService.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: OpenVPN Access Client (OpenVPNAccessClient) - Unknown owner - C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Skype C2C Service - Unknown owner - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: OpenVPN Access Client (OpenVPNAccessClient) - Unknown owner - C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Skype C2C Service - Unknown owner - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe

--
End of file - 10175 bytes

[jaro3]

Combofix.exe, mám opravdu na ploše, nevím proč to tam vypisuje že je to spuštěné ze složky download.
Spouštěl jsem to teď opravdu přes plochu.

c:\users\Petr\Downloads\ComboFix.exe ten smaž!

Odinstaluj:
SkypEmoticons
sourf and kEepp
Garena Plus
SearchNewTab
AVG PC TuneUp
Seznam.cz
Virtual New Tab


Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: sourf and kEepp - {21A1FDAD-3F3E-BCC8-147F-439C073A8C9A} - C:\Program Files\sourf and kEepp\fA6p.dll
O2 - BHO: SearchNewTab - {2DB58D96-CC97-F78F-842A-BAA8205E65F9} - C:\Program Files\SearchNewTab\H0o3Q5I.dll
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [VNT] C:\Program Files\VNT\vntldr.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::


Folder::
c:\program files\SearchNewTab
c:\program files\WebSearch
c:\users\Petr\AppData\Roaming\AVG
c:\program files\AVG
c:\programdata\AVG
c:\programdata\AVAST Software
c:\program files\sourf and kemp
C:\Program Files\VNT


DirLook::
c:\programdata\f1365ed72c4af898
c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}


Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{21A1FDAD-3F3E-BCC8-147F-439C073A8C9A}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{2DB58D96-CC97-F78F-842A-BAA8205E65F9}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"=-

DDS::
uStart Page = hxxp://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
mStart Page = hxxp://websearch.searchguru.info/?pid=1 ... Z&unqvl=43

Firefox::
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\qo3axnxm.default\
FF - prefs.js: browser.startup.homepage - hxxp://websearch.searchguru.info/?pid=1 ... Z&unqvl=43
FF - prefs.js: browser.search.selectedEngine - WebSearch
FF - prefs.js: browser.search.defaulturl - hxxp://websearch.searchguru.info/?pid=1 ... =43&l=1&q=
FF - prefs.js: keyword.URL - hxxp://websearch.searchguru.info/?pid=1 ... =43&l=1&q=
FF - ExtSQL: 2013-12-04 15:11; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

RegLock::
[HKEY_USERS\S-1-5-21-4181382291-2862123988-1253626650-1000\Software\SecuROM\License information*]
"datasecu"=hex:7d,0c,99,eb,2a,b0,ae,f9,be,83,b3,f5,4d,72,f9,08,b6,db,aa,0e,3a,
 bd,06,42,64,75,6d,23,ad,df,ac,cf,3d,b3,2d,2f,a7,f3,77,fe,74,cd,9b,ae,fb,45,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

otestuj něco z tohot na Virustotal
c:\windows\system32\drivers\WUDFRd.sys.bak
c:\windows\system32\drivers\WUDFPf.sys.bak
c:\windows\system32\drivers\ws2ifsl.sys.bak
c:\windows\system32\drivers\wmilib.sys.bak
c:\windows\system32\drivers\wmiacpi.sys.bak
c:\windows\system32\drivers\winhv.sys.bak
c:\windows\system32\drivers\wimmount.sys.bak
c:\windows\system32\drivers\wfplwf.sys.bak
c:\windows\system32\drivers\WdfLdr.sys.bak
c:\windows\system32\drivers\Wdf01000.sys.bak

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/