Extrémně zpomalený PC- Prosím o kontrolu Vyřešeno

[Exuctioner]

FRST.txt

MEMTEST DOPADL BEZ CHYB

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-01-2015
Ran by PC (administrator) on PC-PC on 12-01-2015 15:24:02
Running from C:\Users\PC\Desktop
Loaded Profile: PC (Available profiles: PC)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) D:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AVAST Software) D:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(BitTorrent Inc.) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [CmPCIaudio] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CMICNFG3.dll,CMICtrlWnd
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-09] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\...\Run: [GoogleChromeAutoLaunch_73B90D4D0D4A45E4E1249D0D8EDB5EB0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [856904 2014-12-06] (Google Inc.)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => D:\Microsoft Office 2013\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => D:\Microsoft Office 2013\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => D:\Microsoft Office 2013\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3788455234-4125237215-3820227731-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> D:\Microsoft Office 2013\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Microsoft Office 2013\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> D:\Microsoft Office 2013\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - D:\Microsoft Office 2013\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> D:\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3788455234-4125237215-3820227731-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\PC\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3788455234-4125237215-3820227731-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - D:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - D:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-13]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> google
CHR DefaultSearchURL: Default -> http://www.google.com/search?q={searchTerms}
CHR DefaultSuggestURL: Default ->
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-23]
CHR Extension: (Dokumenty Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-23]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-23]
CHR Extension: (WOT) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-07-22]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-23]
CHR Extension: (Adblock Plus) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-06-23]
CHR Extension: (Steam inventory helper) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2014-11-10]
CHR Extension: (Vyhledávání Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-23]
CHR Extension: (Lounge Assistant) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\enjonnlehciedbcidabdglnnihcncbml [2015-01-04]
CHR Extension: (Tabulky Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-23]
CHR Extension: (Деревянный хром) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmngljdjkkpkpkgkbdgepfbcjomclban [2015-01-04]
CHR Extension: (Twitch Now) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2014-12-15]
CHR Extension: (Peněženka Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-06]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-23]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - D:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-13]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [116224 2014-11-20] (Advanced Micro Devices) [File not signed]
R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-13] (AVAST Software)
R2 avast! Firewall; D:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2014-12-13] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [448384 2015-01-03] ()
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe [56648 2014-12-15] (Google Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-19] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-12-21] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [294600 2014-11-21] (Advanced Micro Devices)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-13] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-12-13] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-13] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449936 2014-12-13] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-13] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-13] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-13] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-13] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-13] ()
R3 cmuda3; C:\Windows\System32\drivers\cmudax3.sys [1155072 2014-05-06] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-05-30] (Disc Soft Ltd)
S3 KbFilter_Kb_FlexDef3x; C:\Windows\System32\DRIVERS\KbFilter_FlexDef3x.sys [22016 2012-10-16] (Siliten)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-12] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [38912 2014-10-30] (SteelSeries ApS)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S4 NVHDA; system32\drivers\nvhda64v.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-12 15:24 - 2015-01-12 15:24 - 00016595 _____ () C:\Users\PC\Desktop\FRST.txt
2015-01-12 15:23 - 2015-01-12 15:24 - 00000000 ____D () C:\FRST
2015-01-12 14:19 - 2015-01-12 14:20 - 02124288 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2015-01-12 06:46 - 2015-01-12 06:46 - 00015201 _____ () C:\Users\PC\Downloads\MemTest.zip
2015-01-08 18:19 - 2015-01-08 18:52 - 00000000 ____D () C:\Users\PC\AppData\Local\SteelSeries Engine 3 Client
2015-01-08 18:17 - 2015-01-08 18:19 - 00009500 _____ () C:\Windows\DPINST.LOG
2015-01-07 16:14 - 2015-01-12 15:23 - 00005181 _____ () C:\Windows\setupact.log
2015-01-07 16:14 - 2015-01-07 16:14 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-06 17:22 - 2015-01-06 19:46 - 00000000 ____D () C:\Users\PC\Desktop\Documents\dominik
2015-01-06 16:58 - 2015-01-06 17:15 - 00000512 _____ () C:\Users\PC\Desktop\MBR.dat
2015-01-04 10:46 - 2015-01-04 10:46 - 00000000 ____D () C:\Users\PC\Desktop\backups
2015-01-02 23:21 - 2015-01-07 16:12 - 00000000 ____D () C:\Users\PC\AppData\Local\CrashDumps
2015-01-02 18:04 - 2015-01-02 18:04 - 00000000 __SHD () C:\Users\PC\AppData\Local\EmieUserList
2015-01-02 18:04 - 2015-01-02 18:04 - 00000000 __SHD () C:\Users\PC\AppData\Local\EmieSiteList
2015-01-02 18:04 - 2015-01-02 17:41 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-01-02 17:42 - 2015-01-02 18:39 - 00007184 _____ () C:\zoek-results.log
2015-01-02 16:23 - 2015-01-02 16:23 - 01295360 _____ () C:\Users\PC\Desktop\zoek.exe
2015-01-01 13:33 - 2015-01-01 13:33 - 00000628 _____ () C:\Users\PC\Desktop\JRT.txt
2014-12-31 13:49 - 2014-12-31 13:50 - 18423384 _____ () C:\Users\PC\Desktop\RogueKillerX64.exe
2014-12-31 13:49 - 2014-12-31 13:49 - 01707939 _____ (Thisisu) C:\Users\PC\Desktop\JRT.exe
2014-12-30 16:42 - 2014-12-30 16:42 - 02173952 _____ () C:\Users\PC\Desktop\adwcleaner_4.106.exe
2014-12-30 16:41 - 2014-12-30 16:41 - 00448512 _____ (OldTimer Tools) C:\Users\PC\Desktop\TFC.exe
2014-12-30 16:41 - 2014-12-30 16:41 - 00050688 _____ (Atribune.org) C:\Users\PC\Desktop\ATF-Cleaner.exe
2014-12-30 02:45 - 2015-01-06 19:31 - 00009322 _____ () C:\Users\PC\Desktop\hijackthis.log
2014-12-30 02:45 - 2014-12-30 02:45 - 00388608 _____ (Trend Micro Inc.) C:\Users\PC\Desktop\hijackthis.exe
2014-12-30 01:05 - 2014-12-30 01:05 - 00000219 _____ () C:\Users\PC\Desktop\Counter-Strike Global Offensive.url
2014-12-30 01:03 - 2014-12-30 01:03 - 00000000 ____D () C:\Users\PC\Desktop\cfg
2014-12-28 23:54 - 2014-12-28 23:55 - 58227312 _____ () C:\Users\PC\Downloads\SteelSeriesEngine_3.3.1Setup.exe
2014-12-27 23:34 - 2014-12-27 23:34 - 00002024 _____ () C:\Users\PC\Desktop\AMD Catalyst Control Center.lnk
2014-12-22 11:54 - 2014-12-22 12:03 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-12-22 11:53 - 2014-12-22 11:53 - 00053392 _____ () C:\Windows\SysWOW64\CCCInstall_201412221153285243.log
2014-12-22 11:53 - 2014-12-22 11:53 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-12-22 11:51 - 2014-12-22 11:51 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-12-19 18:39 - 2014-12-28 01:02 - 00109056 ___SH () C:\Users\PC\Desktop\Documents\Thumbs.db
2014-12-19 18:39 - 2014-12-19 18:39 - 00000951 _____ () C:\Users\PC\Desktop\VTFEdit.lnk
2014-12-19 18:37 - 2014-12-19 18:50 - 00000000 ____D () C:\Users\PC\Desktop\Documents\VIOLETA
2014-12-19 15:42 - 2014-12-19 15:43 - 00000000 ____D () C:\Program Files (x86)\VTFEdit
2014-12-19 12:57 - 2014-12-19 12:57 - 00000000 ____D () C:\Users\PC\AppData\Local\EA Games
2014-12-19 11:53 - 2014-12-19 11:54 - 00000000 ____D () C:\Users\PC\Desktop\Documents\FIFA World
2014-12-19 05:46 - 2014-12-19 05:46 - 00000777 _____ () C:\Users\Public\Desktop\EA SPORTS FIFA World.lnk
2014-12-19 05:30 - 2014-12-19 05:30 - 00000745 _____ () C:\Users\Public\Desktop\The Godfather II.lnk
2014-12-19 05:11 - 2015-01-06 21:07 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-12-19 05:11 - 2014-12-19 05:11 - 00000983 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-12-19 01:30 - 2014-12-19 01:30 - 00000000 ____D () C:\Users\PC\AppData\Local\Downloaded Installations
2014-12-19 01:24 - 2014-12-19 01:24 - 00003024 _____ () C:\Windows\System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6}
2014-12-18 07:43 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-18 07:43 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-13 18:36 - 2014-12-15 14:29 - 00000000 ___RD () C:\Users\PC\Dropbox
2014-12-13 18:29 - 2014-12-15 14:30 - 00000000 ____D () C:\Users\PC\AppData\Roaming\Dropbox
2014-12-13 18:29 - 2014-12-13 18:29 - 00000000 ____D () C:\Users\PC\AppData\Roaming\AVAST Software
2014-12-13 18:26 - 2015-01-10 21:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-12-13 18:26 - 2014-12-13 18:26 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-12-13 18:26 - 2014-12-13 18:25 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-12-13 18:26 - 2014-12-13 18:25 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-12-13 18:25 - 2014-12-13 18:25 - 00449936 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-12-13 18:25 - 2014-12-13 18:25 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-12 15:23 - 2014-05-16 21:53 - 00000000 ____D () C:\Users\PC\AppData\Roaming\uTorrent
2015-01-12 14:19 - 2014-06-07 10:10 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-12 12:56 - 2014-08-16 14:32 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-12 09:29 - 2014-11-14 12:38 - 00004932 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-PC-PC PC-PC
2015-01-12 09:05 - 2014-08-13 21:32 - 00000000 ____D () C:\Users\PC\AppData\Roaming\vlc
2015-01-12 06:55 - 2014-11-23 02:00 - 00000000 ____D () C:\Users\PC\AppData\Local\Adobe
2015-01-12 06:50 - 2009-07-14 05:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-12 06:50 - 2009-07-14 05:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-12 06:48 - 2014-06-23 13:21 - 01581498 _____ () C:\Windows\WindowsUpdate.log
2015-01-12 06:47 - 2014-05-16 20:02 - 00000000 ____D () C:\Users\PC\AppData\Roaming\Skype
2015-01-12 06:42 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-11 23:58 - 2014-06-29 12:07 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2015-01-11 19:30 - 2014-08-10 16:20 - 00000000 ____D () C:\Users\PC\AppData\Roaming\TS3Client
2015-01-11 14:23 - 2014-11-10 17:26 - 00845824 ___SH () C:\Users\PC\Desktop\Thumbs.db
2015-01-09 16:57 - 2014-11-29 21:08 - 00000000 ____D () C:\Users\PC\Desktop\Documents\Euro Truck Simulator 2
2015-01-08 18:19 - 2014-10-07 12:55 - 00000000 ____D () C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2015-01-07 18:35 - 2009-07-14 16:18 - 00672122 _____ () C:\Windows\system32\perfh005.dat
2015-01-07 18:35 - 2009-07-14 16:18 - 00142810 _____ () C:\Windows\system32\perfc005.dat
2015-01-07 18:35 - 2009-07-14 06:13 - 01593258 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-07 15:58 - 2014-11-23 13:45 - 00000000 ____D () C:\Windows\erdnt
2015-01-06 19:13 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2015-01-06 16:38 - 2014-05-06 12:42 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-06 04:36 - 2014-05-06 12:45 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-04 10:48 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-03 05:48 - 2014-05-18 20:20 - 00000132 _____ () C:\Users\PC\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-01-02 20:21 - 2014-10-11 18:12 - 00000829 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-01-02 18:00 - 2014-11-23 12:46 - 00000000 ____D () C:\zoek_backup
2015-01-02 16:24 - 2014-11-22 19:14 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-12-31 13:52 - 2014-11-22 12:57 - 00000000 ____D () C:\AdwCleaner
2014-12-29 22:11 - 2014-05-30 02:45 - 00000000 ____D () C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
2014-12-24 00:03 - 2014-08-04 23:46 - 00007595 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2014-12-23 13:43 - 2014-10-12 10:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-22 12:15 - 2014-06-21 06:01 - 00000000 ____D () C:\Users\PC\Desktop\Documents\DayZ
2014-12-22 12:05 - 2014-08-04 21:37 - 00000000 ____D () C:\Users\PC\AppData\Roaming\Raptr
2014-12-22 11:53 - 2014-08-04 21:33 - 00000000 ____D () C:\Program Files\AMD
2014-12-22 11:47 - 2014-06-29 12:02 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-12-22 11:47 - 2014-06-29 12:02 - 00000000 ____D () C:\AMD
2014-12-21 11:08 - 2014-07-01 06:56 - 00347464 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-12-21 11:08 - 2014-06-18 17:39 - 00347464 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-12-21 11:08 - 2014-06-18 17:39 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-12-21 11:00 - 2014-06-18 17:44 - 00000000 ____D () C:\Users\PC\AppData\Local\PunkBuster
2014-12-21 11:00 - 2014-06-18 17:39 - 00281288 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-12-20 13:06 - 2014-11-22 12:51 - 00116432 _____ () C:\Users\PC\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-20 13:03 - 2009-07-14 05:45 - 05061832 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-20 01:13 - 2009-07-14 03:34 - 00000478 _____ () C:\Windows\win.ini
2014-12-20 01:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-12-19 18:37 - 2014-12-07 16:32 - 00000000 ____D () C:\Users\PC\Desktop\Documents\lll
2014-12-19 18:36 - 2014-05-22 14:58 - 00000132 _____ () C:\Users\PC\AppData\Roaming\Adobe Formát Targa CS6 – předvolby
2014-12-19 12:52 - 2014-10-04 08:36 - 00000000 ____D () C:\Users\PC\Desktop\Documents\EA Games
2014-12-19 11:52 - 2014-05-31 06:01 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-12-13 18:36 - 2014-05-06 11:52 - 00000000 ____D () C:\Users\PC

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-04 22:38

==================== End Of Log ============================

Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2015
Ran by PC at 2015-01-12 15:24:59
Running from C:\Users\PC\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
ACP Application (Version: 2.15.10.0003 - Advanced Micro Devices, Inc.) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Avast Premier (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: - ) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
C-Media PCI Audio Device (HKLM\...\C-Media PCI Audio Driver) (Version: - )
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version: - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 6.2.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.2.1 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
DiRT 3 (HKLM-x32\...\Steam App 44320) (Version: - Codemasters Racing Studio)
EA SPORTS™ FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 9.3.0.58666 - Electronic Arts, Inc.)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.1.1 R2 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.1 R2 Alpha - ETS2MP Team)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version: - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
HD Tune Pro 5.50 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
HeavyLoad V3.2 (HKLM-x32\...\HeavyLoad_is1) (Version: 3.2 - JAM Software)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
Chrome Remote Desktop Host (HKLM-x32\...\{6FC79C95-F54F-4515-8012-01F33D894492}) (Version: 40.0.2214.44 - Google Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Mafia II (HKLM-x32\...\Steam App 50130) (Version: - 2K Czech)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Language Pack 2013 - Czech/čeština (HKLM\...\Office15.OMUI.cs-cz) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version: - DICE)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Need for Speed™ ProStreet (HKLM-x32\...\{CC419DDC-E0F0-4013-B25A-6FA036516F0D}) (Version: 1.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.3.636 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Rapture3D 2.4.8 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0100-0405-1000-0000000FF1CE}_Office15.OMUI.cs-cz_{010BF41A-4D78-40C3-90BA-117DF64A0AE2}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version: - Rebellion)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
SteelSeries Engine 3.3.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.1 - SteelSeries ApS)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Godfather II (HKLM-x32\...\The Godfather II_is1) (Version: - )
Unity Web Player (HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\...\UnityWebPlayer) (Version: 4.5.5f1 - Unity Technologies ApS)
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7500970-FE98-11E1-B560-F04DA23A5C58}) (Version: 12.0.367 - Sony)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version: - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

07-01-2015 15:58:42 ComboFix created restore point
10-01-2015 04:52:11 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-01-06 19:12 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0FF049A5-9035-45BC-B140-1C4F36393E13} - System32\Tasks\{546BFB29-6BC3-467A-806D-DE504005255C} => pcalua.exe -a C:\Users\PC\AppData\Roaming\Seznam.cz\szninstall.exe -c -X
Task: {416A7A5B-CB09-48CE-9448-44D3B5EEB370} - System32\Tasks\{22A988F5-6D1C-4204-9E6F-33D12B7EAC7B} => pcalua.exe -a "E:\Install Pack\Setup.exe"
Task: {4CF6F984-7AB7-405F-B6B9-E6D384EFF462} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {5A51CCD5-5200-4A3D-98D5-3E9EC3749F9E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {7B2694AA-4678-4B9C-9477-6CE951B698E9} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-PC-PC PC-PC => D:\Microsoft Office 2013\Office15\MsoSync.exe [2014-11-12] (Microsoft Corporation)
Task: {A22965E0-D09B-4253-A11E-7A2D98C90D8C} - System32\Tasks\AdobeAAMUpdater-1.0-PC-PC-PC => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {AADD427A-39D8-49F9-B33C-F0752E94A0BC} - System32\Tasks\{C704224B-C3FA-4A4C-814D-E49033551CE4} => pcalua.exe -a "C:\Program Files (x86)\YouTube Accelerator\YTAUninstall.exe"
Task: {AF7D2F82-3AF1-4228-99DB-9A543E1E9AFD} - \YTAUpdate No Task File <==== ATTENTION
Task: {B79EF5F9-5D55-4BC1-84D8-033CE99E0051} - System32\Tasks\{F98DAFA2-5F83-4B3B-A4E5-BD576A035857} => D:\Hry\The Sims 4\The SIMS 4-Deluxe Edition\Game\Bin\The.Sims.4.Launcher.exe
Task: {B94C938E-433E-44B4-BF4E-9A2B8E633724} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {BD6075F4-4907-4FA5-BE07-8CC4E98051C1} - System32\Tasks\avast! Emergency Update => D:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-13] (AVAST Software)
Task: {D420CA52-0CE4-4910-9CBE-D9B9D7173133} - \SPBIW_UpdateTask_Time_343037333530363533352d3437415a556c2a3223346c41 No Task File <==== ATTENTION
Task: {DF54503D-A46F-4C49-A6EE-A5672BC0AF75} - System32\Tasks\{DE38FD04-1E36-4A81-BE6B-A4C3B54FD3F3} => D:\Hry\The Sims 4\The SIMS 4-Deluxe Edition\Game\Bin\The.Sims.4.Launcher.exe
Task: {EE84D64A-A52B-4112-9245-171244380DA4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {F3BC4E9C-D71F-4231-B7D0-6E84FCDAEDDB} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {FB8A38A9-4219-4DAB-8531-7C7CC942041E} - System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6} => pcalua.exe -a D:\pm_demo.exe -d D:\

==================== Loaded Modules (whitelisted) =============

2014-11-13 22:19 - 2014-11-13 22:19 - 17542656 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
2014-10-14 15:10 - 2014-10-14 15:10 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\x2api.dll
2014-06-18 17:39 - 2014-12-21 11:08 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-01-11 18:11 - 2015-01-11 18:11 - 02909696 _____ () D:\Program Files\AVAST Software\Avast\defs\15011101\algo.dll
2015-01-12 09:54 - 2015-01-12 09:54 - 02909696 _____ () D:\Program Files\AVAST Software\Avast\defs\15011200\algo.dll
2014-12-13 18:25 - 2014-12-13 18:25 - 38562088 _____ () D:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-10 15:15 - 2014-12-06 02:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-10 15:15 - 2014-12-06 02:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-10 15:15 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-10 15:15 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
2014-12-10 15:15 - 2014-12-06 02:50 - 14913352 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll
2014-08-22 12:58 - 2014-11-11 19:48 - 01171456 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-08-22 12:58 - 2014-11-11 19:48 - 00442368 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-08-22 12:58 - 2014-11-11 19:48 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-06-07 10:10 - 2014-11-11 19:47 - 00774656 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-06-07 10:10 - 2014-11-18 21:23 - 02227904 _____ () C:\Program Files (x86)\Steam\video.dll
2014-08-22 12:58 - 2014-11-11 19:48 - 00403968 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-08-22 12:58 - 2014-11-11 19:48 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-06-07 10:13 - 2014-11-18 21:23 - 00690880 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-06-07 10:13 - 2014-11-11 19:48 - 34589888 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-07-23 21:34 - 2014-11-11 19:48 - 00837824 _____ () C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup

========================= Accounts: ==========================

Administrator (S-1-5-21-3788455234-4125237215-3820227731-500 - Administrator - Disabled)
Guest (S-1-5-21-3788455234-4125237215-3820227731-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3788455234-4125237215-3820227731-1002 - Limited - Enabled)
PC (S-1-5-21-3788455234-4125237215-3820227731-1000 - Administrator - Enabled) => C:\Users\PC

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/11/2015 01:15:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program memtest.exe verze 4.1.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: d9c

Čas spuštění: 01d02d97ef892cbf

Čas ukončení: 192

Cesta k aplikaci: C:\Users\PC\AppData\Local\Temp\Rar$EXa0.023\memtest.exe

ID hlášení: 81d639c1-998b-11e4-9299-001a92d57ed0

Error: (01/02/2015 11:19:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifaworld.exe, verze: 9.3.0.58666, časové razítko: 0x54893e68
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea8e7
Kód výjimky: 0xc0000005
Posun chyby: 0x0005a30e
ID chybujícího procesu: 0x488
Čas spuštění chybující aplikace: 0xfifaworld.exe0
Cesta k chybující aplikaci: fifaworld.exe1
Cesta k chybujícímu modulu: fifaworld.exe2
ID zprávy: fifaworld.exe3


System errors:
=============
Error: (01/12/2015 08:53:10 AM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače MACHINENAME,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{A253E99B-7020-4076-8484-DBB8CA17CC9C}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (01/12/2015 06:49:59 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).

Error: (01/11/2015 11:56:20 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:57:27, ‎11.‎1.‎2015) bylo neočekávané.

Error: (01/11/2015 09:05:19 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:31:37, ‎10.‎1.‎2015) bylo neočekávané.

Error: (01/10/2015 09:51:37 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:50:05, ‎10.‎1.‎2015) bylo neočekávané.

Error: (01/10/2015 09:46:05 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:44:40, ‎10.‎1.‎2015) bylo neočekávané.

Error: (01/10/2015 09:40:40 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:35:19, ‎10.‎1.‎2015) bylo neočekávané.

Error: (01/10/2015 09:28:19 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:22:51, ‎10.‎1.‎2015) bylo neočekávané.

Error: (01/10/2015 06:32:42 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:29:15, ‎10.‎1.‎2015) bylo neočekávané.

Error: (01/10/2015 06:29:15 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:27:33, ‎10.‎1.‎2015) bylo neočekávané.


Microsoft Office Sessions:
=========================
Error: (01/11/2015 01:15:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: memtest.exe4.1.0.0d9c01d02d97ef892cbf192C:\Users\PC\AppData\Local\Temp\Rar$EXa0.023\memtest.exe81d639c1-998b-11e4-9299-001a92d57ed0

Error: (01/02/2015 11:19:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: fifaworld.exe9.3.0.5866654893e68ntdll.dll6.1.7601.18247521ea8e7c00000050005a30e48801d026da19693de7D:\Hry\OriginLibrary\FIFA World\fifaworld.exeC:\Windows\SysWOW64\ntdll.dll5e846b8c-92cd-11e4-a422-001a92d57ed0


CodeIntegrity Errors:
===================================
Date: 2015-01-06 18:32:41.725
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 18:32:41.672
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 18:32:41.614
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 18:32:41.560
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 16:34:41.058
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 16:34:41.004
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 16:34:40.947
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 16:34:40.892
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 16:26:48.875
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-06 16:26:48.820
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Quad CPU Q8200 @ 2.33GHz
Percentage of memory in use: 65%
Total physical RAM: 3071.18 MB
Available physical RAM: 1047.16 MB
Total Pagefile: 6140.54 MB
Available Pagefile: 2958.14 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:122 GB) (Free:75.09 GB) NTFS
Drive d: () (Fixed) (Total:474.07 GB) (Free:250.99 GB) NTFS
Drive f: (GFCZ) (CDROM) (Total:4.34 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 596.2 GB) (Disk ID: BA033343)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=122 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=474.1 GB) - (Type=07 NTFS)

==================== End Of Log ============================

[Reklama]

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3788455234-4125237215-3820227731-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-3788455234-4125237215-3820227731-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
C:\Windows\System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6}
Task: {AF7D2F82-3AF1-4228-99DB-9A543E1E9AFD} - \YTAUpdate No Task File <==== ATTENTION
Task: {B79EF5F9-5D55-4BC1-84D8-033CE99E0051} - System32\Tasks\{F98DAFA2-5F83-4B3B-A4E5-BD576A035857} => D:\Hry\The Sims 4\The SIMS 4-Deluxe Edition\Game\Bin\The.Sims.4.Launcher.exe
Task: {D420CA52-0CE4-4910-9CBE-D9B9D7173133} - \SPBIW_UpdateTask_Time_343037333530363533352d3437415a556c2a3223346c41 No Task File <==== ATTENTION
Task: {DF54503D-A46F-4C49-A6EE-A5672BC0AF75} - System32\Tasks\{DE38FD04-1E36-4A81-BE6B-A4C3B54FD3F3} => D:\Hry\The Sims 4\The SIMS 4-Deluxe Edition\Game\Bin\The.Sims.4.Launcher.exe
Task: {FB8A38A9-4219-4DAB-8531-7C7CC942041E} - System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6} => pcalua.exe -a D:\pm_demo.exe -d D:\


(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

[Exuctioner]

FRST - TDSSKiller za moment

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-01-2015
Ran by PC at 2015-01-12 21:38:50 Run:1
Running from C:\Users\PC\Desktop
Loaded Profile: PC (Available profiles: PC)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3788455234-4125237215-3820227731-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-3788455234-4125237215-3820227731-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
C:\Windows\System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6}
Task: {AF7D2F82-3AF1-4228-99DB-9A543E1E9AFD} - \YTAUpdate No Task File <==== ATTENTION
Task: {B79EF5F9-5D55-4BC1-84D8-033CE99E0051} - System32\Tasks\{F98DAFA2-5F83-4B3B-A4E5-BD576A035857} => D:\Hry\The Sims 4\The SIMS 4-Deluxe Edition\Game\Bin\The.Sims.4.Launcher.exe
Task: {D420CA52-0CE4-4910-9CBE-D9B9D7173133} - \SPBIW_UpdateTask_Time_343037333530363533352d3437415a556c2a3223346c41 No Task File <==== ATTENTION
Task: {DF54503D-A46F-4C49-A6EE-A5672BC0AF75} - System32\Tasks\{DE38FD04-1E36-4A81-BE6B-A4C3B54FD3F3} => D:\Hry\The Sims 4\The SIMS 4-Deluxe Edition\Game\Bin\The.Sims.4.Launcher.exe
Task: {FB8A38A9-4219-4DAB-8531-7C7CC942041E} - System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6} => pcalua.exe -a D:\pm_demo.exe -d D:\
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => Key deleted successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}" => Key deleted successfully.
HKCR\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} => Key not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully.
"HKU\S-1-5-21-3788455234-4125237215-3820227731-1000\Software\MozillaPlugins\ubisoft.com/uplaypc" => Key deleted successfully.
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll not found.
C:\Windows\System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF7D2F82-3AF1-4228-99DB-9A543E1E9AFD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF7D2F82-3AF1-4228-99DB-9A543E1E9AFD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\YTAUpdate" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B79EF5F9-5D55-4BC1-84D8-033CE99E0051}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B79EF5F9-5D55-4BC1-84D8-033CE99E0051}" => Key deleted successfully.
C:\Windows\System32\Tasks\{F98DAFA2-5F83-4B3B-A4E5-BD576A035857} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F98DAFA2-5F83-4B3B-A4E5-BD576A035857}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D420CA52-0CE4-4910-9CBE-D9B9D7173133}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D420CA52-0CE4-4910-9CBE-D9B9D7173133}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SPBIW_UpdateTask_Time_343037333530363533352d3437415a556c2a3223346c41" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DF54503D-A46F-4C49-A6EE-A5672BC0AF75}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF54503D-A46F-4C49-A6EE-A5672BC0AF75}" => Key deleted successfully.
C:\Windows\System32\Tasks\{DE38FD04-1E36-4A81-BE6B-A4C3B54FD3F3} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DE38FD04-1E36-4A81-BE6B-A4C3B54FD3F3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB8A38A9-4219-4DAB-8531-7C7CC942041E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB8A38A9-4219-4DAB-8531-7C7CC942041E}" => Key deleted successfully.
C:\Windows\System32\Tasks\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6} not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{52405E5C-6F78-4FA9-AB1E-ADB7EA8E46E6}" => Key deleted successfully.

==== End of Fixlog 21:38:53 ====

[Exuctioner]

TDSSKiller 1/2
21:42:47.0286 0x0a3c TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
21:42:51.0430 0x0a3c ============================================================
21:42:51.0430 0x0a3c Current date / time: 2015/01/12 21:42:51.0430
21:42:51.0430 0x0a3c SystemInfo:
21:42:51.0430 0x0a3c
21:42:51.0430 0x0a3c OS Version: 6.1.7601 ServicePack: 1.0
21:42:51.0430 0x0a3c Product type: Workstation
21:42:51.0431 0x0a3c ComputerName: PC-PC
21:42:51.0431 0x0a3c UserName: PC
21:42:51.0431 0x0a3c Windows directory: C:\Windows
21:42:51.0431 0x0a3c System windows directory: C:\Windows
21:42:51.0431 0x0a3c Running under WOW64
21:42:51.0431 0x0a3c Processor architecture: Intel x64
21:42:51.0431 0x0a3c Number of processors: 4
21:42:51.0431 0x0a3c Page size: 0x1000
21:42:51.0431 0x0a3c Boot type: Normal boot
21:42:51.0431 0x0a3c ============================================================
21:42:55.0577 0x0a3c KLMD registered as C:\Windows\system32\drivers\13969720.sys
21:42:57.0137 0x0a3c System UUID: {42489D73-A54C-39AF-4249-7731B426C77F}
21:42:58.0769 0x0a3c Drive \Device\Harddisk0\DR0 - Size: 0x950AF4DE00 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x1A7F1A, SectorsPerTrack: 0xC, TracksPerCylinder: 0x3C, Type 'K0', Flags 0x00000040
21:42:58.0781 0x0a3c ============================================================
21:42:58.0781 0x0a3c \Device\Harddisk0\DR0:
21:42:58.0781 0x0a3c MBR partitions:
21:42:58.0781 0x0a3c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:42:58.0781 0x0a3c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xF400800
21:42:58.0781 0x0a3c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xF433000, BlocksNum 0x3B424000
21:42:58.0781 0x0a3c ============================================================
21:42:58.0823 0x0a3c C: <-> \Device\Harddisk0\DR0\Partition2
21:42:58.0878 0x0a3c D: <-> \Device\Harddisk0\DR0\Partition3
21:42:58.0976 0x0a3c ============================================================
21:42:58.0976 0x0a3c Initialize success
21:42:58.0976 0x0a3c ============================================================
21:43:02.0844 0x0ffc ============================================================
21:43:02.0844 0x0ffc Scan started
21:43:02.0844 0x0ffc Mode: Manual;
21:43:02.0844 0x0ffc ============================================================
21:43:02.0844 0x0ffc KSN ping started
21:43:05.0767 0x0ffc KSN ping finished: true
21:43:11.0151 0x0ffc ================ Scan system memory ========================
21:43:11.0151 0x0ffc System memory - ok
21:43:11.0151 0x0ffc ================ Scan services =============================
21:43:11.0615 0x0ffc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:43:11.0625 0x0ffc 1394ohci - ok
21:43:11.0698 0x0ffc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:43:11.0709 0x0ffc ACPI - ok
21:43:11.0744 0x0ffc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:43:11.0759 0x0ffc AcpiPmi - ok
21:43:11.0948 0x0ffc [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:43:11.0951 0x0ffc AdobeARMservice - ok
21:43:12.0081 0x0ffc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:43:12.0096 0x0ffc adp94xx - ok
21:43:12.0121 0x0ffc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:43:12.0140 0x0ffc adpahci - ok
21:43:12.0172 0x0ffc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:43:12.0188 0x0ffc adpu320 - ok
21:43:12.0202 0x0ffc [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:43:12.0204 0x0ffc AeLookupSvc - ok
21:43:12.0301 0x0ffc [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
21:43:12.0324 0x0ffc AFD - ok
21:43:12.0368 0x0ffc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
21:43:12.0384 0x0ffc agp440 - ok
21:43:12.0392 0x0ffc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
21:43:12.0404 0x0ffc ALG - ok
21:43:12.0446 0x0ffc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
21:43:12.0456 0x0ffc aliide - ok
21:43:12.0520 0x0ffc [ 2998362D1E550F0C990D77E34415BEB6, 36BBC575DFE0CBD5BC4AF9AD8B54DCEF950E93AF48884D6523457071296514CC ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:43:12.0531 0x0ffc AMD External Events Utility - ok
21:43:12.0625 0x0ffc [ A2737AA6B6EC398987CFBE7D79BE36A3, 45C9AB45C854D0A3FC358B5DCD6FE8C93DD25AE6A1BBE008F8416F78FF57B8A5 ] amdacpksd C:\Windows\system32\drivers\amdacpksd.sys
21:43:12.0643 0x0ffc amdacpksd - ok
21:43:12.0698 0x0ffc [ 11ECEAF7EE4FDD61A0CC6645707DB2BB, 8DB09296411AEC8F06900FA0EFBE817339EE79424584BAC5A174D478850379F1 ] amdacpusrsvc C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
21:43:12.0703 0x0ffc amdacpusrsvc - ok
21:43:12.0721 0x0ffc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
21:43:12.0739 0x0ffc amdide - ok
21:43:12.0768 0x0ffc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:43:12.0777 0x0ffc AmdK8 - ok
21:43:13.0869 0x0ffc [ A87FC6E3670DB55788184FE3A3808712, 2366E7423B4EBC6E12F0C172246E4D2D3BDD702193FA6955A08180FFFCB217B9 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:43:14.0401 0x0ffc amdkmdag - ok
21:43:14.0509 0x0ffc [ 971F3B12C24BB83B48F8CCA2ED019906, E4757480DFF2678E3C7897F6E720EEFF76D452707FC87401B209FE533BFC3210 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:43:14.0524 0x0ffc amdkmdap - ok
21:43:14.0540 0x0ffc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:43:14.0543 0x0ffc AmdPPM - ok
21:43:14.0572 0x0ffc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:43:14.0576 0x0ffc amdsata - ok
21:43:14.0607 0x0ffc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:43:14.0612 0x0ffc amdsbs - ok
21:43:14.0625 0x0ffc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:43:14.0627 0x0ffc amdxata - ok
21:43:14.0672 0x0ffc [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID C:\Windows\system32\drivers\appid.sys
21:43:14.0674 0x0ffc AppID - ok
21:43:14.0679 0x0ffc [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:43:14.0682 0x0ffc AppIDSvc - ok
21:43:14.0722 0x0ffc [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
21:43:14.0724 0x0ffc Appinfo - ok
21:43:14.0761 0x0ffc [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
21:43:14.0767 0x0ffc AppMgmt - ok
21:43:14.0784 0x0ffc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
21:43:14.0787 0x0ffc arc - ok
21:43:14.0795 0x0ffc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:43:14.0799 0x0ffc arcsas - ok
21:43:14.0903 0x0ffc [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:43:14.0949 0x0ffc aspnet_state - ok
21:43:15.0007 0x0ffc [ 9BE9F2B83DE80E2752B1405CC427E2EC, 6015CA66553B3B882083B33F24FB338249A110D9769831C3D3D3C681AAFA9411 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
21:43:15.0009 0x0ffc aswHwid - ok
21:43:15.0069 0x0ffc [ EAFC6970073525E98D4D0E2B56741227, 361A4FEE9DAA30780C9C144A7285ACC23DDB6FD2DF80DBC19CFA138E6C5BEAE5 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
21:43:15.0071 0x0ffc aswKbd - ok
21:43:15.0091 0x0ffc [ 2DA1C1AEDF454F8E32A863A1AEACDD8C, F02E4D197AE00B9A9507CF6007A7B7BEA54AF0F255B752FBA7174FA2596D1CA9 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
21:43:15.0094 0x0ffc aswMonFlt - ok
21:43:15.0149 0x0ffc [ 8025E7521EB601207627E8B4722ACE19, E4DB4CD0BAF7F1CDF71F5C01CF44654C415AEE7FB24235D9396EDC2B4D81AD5E ] aswNdisFlt C:\Windows\system32\DRIVERS\aswNdisFlt.sys
21:43:15.0160 0x0ffc aswNdisFlt - ok
21:43:15.0195 0x0ffc [ 4750016EF9CC1DEC6DA3FE5AF9A7F095, C4CF46246D8A3FF9BD8D2FE899685654ADD45EB9B032F33804D0B8131882BC74 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
21:43:15.0199 0x0ffc aswRdr - ok
21:43:15.0220 0x0ffc [ 1323269A92645705DEFA053F3596829D, 83EC58E0577A1E45D1FCBC0C0AF182099FB70B9005B9F8161166EBB4E9F58F35 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
21:43:15.0222 0x0ffc aswRvrt - ok
21:43:15.0283 0x0ffc [ E74FD717476B30E23F45354B8F3ACB30, 951D1655E1FA4CF0ACB29F2EEDDB3B42522D392F46DD826C63DCA8941E17ABA8 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
21:43:15.0317 0x0ffc aswSnx - ok
21:43:15.0368 0x0ffc [ B1881A01E301990B671694CA1623F1B6, 5299C713EA7CF96F0550943DB37E963CDA09258F65C471CCEEAB44C4736B7A08 ] aswSP C:\Windows\system32\drivers\aswSP.sys
21:43:15.0380 0x0ffc aswSP - ok
21:43:15.0399 0x0ffc [ 7509F07BA6F84C1E3B2C0D78A1F6F782, A90A36E8E23F58E430DE98B3623688DC09D34B62906EF7796DFC90F581FC385F ] aswStm C:\Windows\system32\drivers\aswStm.sys
21:43:15.0403 0x0ffc aswStm - ok
21:43:15.0427 0x0ffc [ 1A5BDDE65B648DC3AD48B6ECAA3AE9C8, 858F674C3B775F9C8C782B7AFAC0B02AE9410C9F3B7F5B3AE1C4AD3BF6448C14 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
21:43:15.0434 0x0ffc aswVmm - ok
21:43:15.0448 0x0ffc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:43:15.0450 0x0ffc AsyncMac - ok
21:43:15.0480 0x0ffc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
21:43:15.0482 0x0ffc atapi - ok
21:43:15.0511 0x0ffc [ 33497249626E7787AA5CEA99B226CCA6, EF6213B79F83334CD95E4A58A4FE64190AA3FEFF590E41C4BF302FC4A8F6D6D6 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
21:43:15.0514 0x0ffc AtiHDAudioService - ok
21:43:15.0553 0x0ffc [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:43:15.0572 0x0ffc AudioEndpointBuilder - ok
21:43:15.0607 0x0ffc [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:43:15.0621 0x0ffc AudioSrv - ok
21:43:15.0709 0x0ffc [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus D:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:43:15.0711 0x0ffc avast! Antivirus - ok
21:43:15.0758 0x0ffc [ D25195B0A2075862E988B85161DF07FD, 4CF120D958EBD5F9F1785B5576F5E37A7F508E5694C43E8336310F2B7A278A77 ] avast! Firewall D:\Program Files\AVAST Software\Avast\afwServ.exe
21:43:15.0761 0x0ffc avast! Firewall - ok
21:43:15.0791 0x0ffc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:43:15.0796 0x0ffc AxInstSV - ok
21:43:15.0830 0x0ffc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:43:15.0843 0x0ffc b06bdrv - ok
21:43:15.0864 0x0ffc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:43:15.0872 0x0ffc b57nd60a - ok
21:43:15.0900 0x0ffc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
21:43:15.0903 0x0ffc BDESVC - ok
21:43:15.0917 0x0ffc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
21:43:15.0918 0x0ffc Beep - ok
21:43:15.0960 0x0ffc [ BE43A13207D6428947248AF7EE05E772, 4118288ECD13B77738070DC298A64732693EEF9679CCFA59FD523CCAACF6335B ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
21:43:15.0971 0x0ffc BEService - ok
21:43:16.0041 0x0ffc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
21:43:16.0074 0x0ffc BFE - ok
21:43:16.0126 0x0ffc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
21:43:16.0194 0x0ffc BITS - ok
21:43:16.0219 0x0ffc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:43:16.0221 0x0ffc blbdrive - ok
21:43:16.0251 0x0ffc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:43:16.0254 0x0ffc bowser - ok
21:43:16.0272 0x0ffc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:43:16.0273 0x0ffc BrFiltLo - ok
21:43:16.0290 0x0ffc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:43:16.0291 0x0ffc BrFiltUp - ok
21:43:16.0310 0x0ffc [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:43:16.0313 0x0ffc BridgeMP - ok
21:43:16.0342 0x0ffc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
21:43:16.0345 0x0ffc Browser - ok
21:43:16.0365 0x0ffc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:43:16.0373 0x0ffc Brserid - ok
21:43:16.0388 0x0ffc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:43:16.0390 0x0ffc BrSerWdm - ok
21:43:16.0410 0x0ffc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:43:16.0412 0x0ffc BrUsbMdm - ok
21:43:16.0417 0x0ffc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:43:16.0418 0x0ffc BrUsbSer - ok
21:43:16.0438 0x0ffc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:43:16.0440 0x0ffc BTHMODEM - ok
21:43:16.0457 0x0ffc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
21:43:16.0460 0x0ffc bthserv - ok
21:43:16.0468 0x0ffc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:43:16.0471 0x0ffc cdfs - ok
21:43:16.0506 0x0ffc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:43:16.0512 0x0ffc cdrom - ok
21:43:16.0541 0x0ffc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
21:43:16.0544 0x0ffc CertPropSvc - ok
21:43:16.0614 0x0ffc [ C2E6D83BF43DE99F91FD5BE8AEB55E46, C9CA149A7A0C1FA2538ED65B17DE1C935A7D91DA9978DD859D1AC41AB7771CC3 ] chromoting C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
21:43:16.0617 0x0ffc chromoting - ok
21:43:16.0629 0x0ffc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:43:16.0631 0x0ffc circlass - ok
21:43:16.0667 0x0ffc [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
21:43:16.0676 0x0ffc CLFS - ok
21:43:16.0721 0x0ffc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:43:16.0726 0x0ffc clr_optimization_v2.0.50727_32 - ok
21:43:16.0758 0x0ffc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:43:16.0762 0x0ffc clr_optimization_v2.0.50727_64 - ok
21:43:16.0834 0x0ffc [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:43:16.0909 0x0ffc clr_optimization_v4.0.30319_32 - ok
21:43:16.0958 0x0ffc [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:43:16.0964 0x0ffc clr_optimization_v4.0.30319_64 - ok
21:43:16.0980 0x0ffc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:43:16.0982 0x0ffc CmBatt - ok
21:43:16.0998 0x0ffc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:43:17.0000 0x0ffc cmdide - ok
21:43:17.0072 0x0ffc [ 2835BF2A864CDE9184C80CF4E6A485F9, 62E0549D22E2C7142AC1F7DF9E34C5E2D3E3AA89C45E953260D7EAA10F36821D ] cmuda3 C:\Windows\system32\drivers\cmudax3.sys
21:43:17.0117 0x0ffc cmuda3 - ok
21:43:17.0171 0x0ffc [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
21:43:17.0183 0x0ffc CNG - ok
21:43:17.0202 0x0ffc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:43:17.0204 0x0ffc Compbatt - ok
21:43:17.0215 0x0ffc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:43:17.0217 0x0ffc CompositeBus - ok
21:43:17.0228 0x0ffc COMSysApp - ok
21:43:17.0248 0x0ffc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:43:17.0250 0x0ffc crcdisk - ok
21:43:17.0290 0x0ffc [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:43:17.0296 0x0ffc CryptSvc - ok
21:43:17.0332 0x0ffc [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
21:43:17.0351 0x0ffc CSC - ok
21:43:17.0390 0x0ffc [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
21:43:17.0407 0x0ffc CscService - ok
21:43:17.0453 0x0ffc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:43:17.0465 0x0ffc DcomLaunch - ok
21:43:17.0487 0x0ffc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
21:43:17.0495 0x0ffc defragsvc - ok
21:43:17.0535 0x0ffc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:43:17.0539 0x0ffc DfsC - ok
21:43:17.0578 0x0ffc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
21:43:17.0587 0x0ffc Dhcp - ok
21:43:17.0596 0x0ffc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
21:43:17.0598 0x0ffc discache - ok
21:43:17.0613 0x0ffc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:43:17.0615 0x0ffc Disk - ok
21:43:17.0643 0x0ffc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:43:17.0649 0x0ffc Dnscache - ok
21:43:17.0668 0x0ffc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
21:43:17.0676 0x0ffc dot3svc - ok
21:43:17.0699 0x0ffc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
21:43:17.0704 0x0ffc DPS - ok
21:43:17.0748 0x0ffc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:43:17.0749 0x0ffc drmkaud - ok
21:43:17.0805 0x0ffc [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:43:17.0813 0x0ffc dtsoftbus01 - ok
21:43:17.0870 0x0ffc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:43:17.0901 0x0ffc DXGKrnl - ok
21:43:17.0908 0x0ffc EagleX64 - ok
21:43:17.0919 0x0ffc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
21:43:17.0924 0x0ffc EapHost - ok
21:43:18.0035 0x0ffc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:43:18.0134 0x0ffc ebdrv - ok
21:43:18.0150 0x0ffc [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
21:43:18.0153 0x0ffc EFS - ok
21:43:18.0195 0x0ffc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:43:18.0213 0x0ffc ehRecvr - ok
21:43:18.0242 0x0ffc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
21:43:18.0245 0x0ffc ehSched - ok
21:43:18.0278 0x0ffc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:43:18.0291 0x0ffc elxstor - ok
21:43:18.0318 0x0ffc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:43:18.0319 0x0ffc ErrDev - ok
21:43:18.0347 0x0ffc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
21:43:18.0358 0x0ffc EventSystem - ok
21:43:18.0379 0x0ffc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
21:43:18.0384 0x0ffc exfat - ok
21:43:18.0401 0x0ffc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:43:18.0406 0x0ffc fastfat - ok
21:43:18.0439 0x0ffc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
21:43:18.0459 0x0ffc Fax - ok
21:43:18.0478 0x0ffc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:43:18.0480 0x0ffc fdc - ok
21:43:18.0498 0x0ffc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
21:43:18.0501 0x0ffc fdPHost - ok
21:43:18.0509 0x0ffc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
21:43:18.0512 0x0ffc FDResPub - ok
21:43:18.0530 0x0ffc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:43:18.0533 0x0ffc FileInfo - ok
21:43:18.0548 0x0ffc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:43:18.0551 0x0ffc Filetrace - ok
21:43:18.0568 0x0ffc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:43:18.0570 0x0ffc flpydisk - ok
21:43:18.0590 0x0ffc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:43:18.0597 0x0ffc FltMgr - ok
21:43:18.0673 0x0ffc [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
21:43:18.0719 0x0ffc FontCache - ok
21:43:18.0781 0x0ffc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:43:18.0784 0x0ffc FontCache3.0.0.0 - ok
21:43:18.0802 0x0ffc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:43:18.0819 0x0ffc FsDepends - ok
21:43:18.0844 0x0ffc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:43:18.0846 0x0ffc Fs_Rec - ok
21:43:18.0878 0x0ffc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:43:18.0885 0x0ffc fvevol - ok
21:43:18.0906 0x0ffc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:43:18.0909 0x0ffc gagp30kx - ok
21:43:18.0960 0x0ffc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
21:43:18.0976 0x0ffc gpsvc - ok
21:43:19.0002 0x0ffc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:43:19.0004 0x0ffc hcw85cir - ok
21:43:19.0043 0x0ffc [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:43:19.0052 0x0ffc HdAudAddService - ok
21:43:19.0068 0x0ffc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:43:19.0072 0x0ffc HDAudBus - ok
21:43:19.0088 0x0ffc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:43:19.0090 0x0ffc HidBatt - ok
21:43:19.0105 0x0ffc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:43:19.0109 0x0ffc HidBth - ok
21:43:19.0117 0x0ffc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:43:19.0120 0x0ffc HidIr - ok
21:43:19.0161 0x0ffc [ 3C278BE81CF405B7E635D0563EAB8F30, 8ACECF6D337F711E647ACCFDCA2CC2726793F1828F30517E41D20F50F99DAA79 ] hidkmdf C:\Windows\system32\DRIVERS\hidkmdf.sys
21:43:19.0163 0x0ffc hidkmdf - ok
21:43:19.0180 0x0ffc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
21:43:19.0183 0x0ffc hidserv - ok
21:43:19.0220 0x0ffc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:43:19.0222 0x0ffc HidUsb - ok
21:43:19.0259 0x0ffc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:43:19.0265 0x0ffc hkmsvc - ok
21:43:19.0288 0x0ffc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:43:19.0296 0x0ffc HomeGroupListener - ok
21:43:19.0318 0x0ffc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:43:19.0327 0x0ffc HomeGroupProvider - ok
21:43:19.0344 0x0ffc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:43:19.0348 0x0ffc HpSAMD - ok
21:43:19.0393 0x0ffc [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:43:19.0425 0x0ffc HTTP - ok
21:43:19.0451 0x0ffc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:43:19.0454 0x0ffc hwpolicy - ok
21:43:19.0487 0x0ffc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:43:19.0494 0x0ffc i8042prt - ok
21:43:19.0509 0x0ffc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:43:19.0519 0x0ffc iaStorV - ok
21:43:19.0587 0x0ffc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:43:19.0620 0x0ffc idsvc - ok
21:43:19.0633 0x0ffc IEEtwCollectorService - ok
21:43:19.0654 0x0ffc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:43:19.0656 0x0ffc iirsp - ok
21:43:19.0704 0x0ffc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
21:43:19.0739 0x0ffc IKEEXT - ok
21:43:19.0755 0x0ffc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
21:43:19.0757 0x0ffc intelide - ok
21:43:19.0766 0x0ffc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:43:19.0769 0x0ffc intelppm - ok
21:43:19.0794 0x0ffc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:43:19.0799 0x0ffc IPBusEnum - ok
21:43:19.0814 0x0ffc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:43:19.0817 0x0ffc IpFilterDriver - ok
21:43:19.0856 0x0ffc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:43:19.0872 0x0ffc iphlpsvc - ok
21:43:19.0885 0x0ffc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:43:19.0888 0x0ffc IPMIDRV - ok
21:43:19.0909 0x0ffc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:43:19.0913 0x0ffc IPNAT - ok
21:43:19.0927 0x0ffc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:43:19.0929 0x0ffc IRENUM - ok
21:43:19.0939 0x0ffc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:43:19.0941 0x0ffc isapnp - ok
21:43:19.0972 0x0ffc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:43:19.0980 0x0ffc iScsiPrt - ok
21:43:20.0003 0x0ffc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:43:20.0005 0x0ffc kbdclass - ok
21:43:20.0013 0x0ffc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:43:20.0015 0x0ffc kbdhid - ok
21:43:20.0049 0x0ffc [ EC7038972312D6C31800BE903A7793B8, 325F0B3F70C86B7460B8A39BDE22C7D8CBA781C60E31CEA31930D812B45773A3 ] KbFilter_Kb_FlexDef3x C:\Windows\system32\DRIVERS\KbFilter_FlexDef3x.sys
21:43:20.0051 0x0ffc KbFilter_Kb_FlexDef3x - ok
21:43:20.0072 0x0ffc [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
21:43:20.0075 0x0ffc KeyIso - ok
21:43:20.0112 0x0ffc [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:43:20.0115 0x0ffc KSecDD - ok
21:43:20.0147 0x0ffc [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:43:20.0151 0x0ffc KSecPkg - ok
21:43:20.0166 0x0ffc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:43:20.0168 0x0ffc ksthunk - ok
21:43:20.0203 0x0ffc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
21:43:20.0215 0x0ffc KtmRm - ok
21:43:20.0234 0x0ffc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:43:20.0244 0x0ffc LanmanServer - ok
21:43:20.0259 0x0ffc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:43:20.0266 0x0ffc LanmanWorkstation - ok
21:43:20.0292 0x0ffc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:43:20.0295 0x0ffc lltdio - ok
21:43:20.0333 0x0ffc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:43:20.0343 0x0ffc lltdsvc - ok
21:43:20.0364 0x0ffc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:43:20.0367 0x0ffc lmhosts - ok
21:43:20.0396 0x0ffc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:43:20.0400 0x0ffc LSI_FC - ok
21:43:20.0420 0x0ffc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:43:20.0423 0x0ffc LSI_SAS - ok
21:43:20.0440 0x0ffc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:43:20.0442 0x0ffc LSI_SAS2 - ok
21:43:20.0463 0x0ffc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:43:20.0467 0x0ffc LSI_SCSI - ok
21:43:20.0496 0x0ffc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
21:43:20.0499 0x0ffc luafv - ok
21:43:20.0522 0x0ffc [ CA43F8904E24BBE49982E4C0B29E6579, 2E3E6D02980706061C478C1643F8838310DDAC573C8722AE7F3290CE36B02CB2 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:43:20.0523 0x0ffc MBAMProtector - ok
21:43:20.0631 0x0ffc [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
21:43:20.0709 0x0ffc MBAMScheduler - ok
21:43:20.0745 0x0ffc [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:43:20.0764 0x0ffc MBAMService - ok
21:43:20.0807 0x0ffc [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
21:43:20.0810 0x0ffc MBAMSwissArmy - ok
21:43:20.0827 0x0ffc [ A646C2DDB8C46E9B20A326FAF566646C, F46E3BF392CB4EB53D323BC8CC41EFBB9C5D7C935FECF255F524EB18583A2A37 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
21:43:20.0829 0x0ffc MBAMWebAccessControl - ok
21:43:20.0853 0x0ffc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:43:20.0858 0x0ffc Mcx2Svc - ok
21:43:20.0870 0x0ffc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:43:20.0872 0x0ffc megasas - ok
21:43:20.0896 0x0ffc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:43:20.0904 0x0ffc MegaSR - ok
21:43:20.0934 0x0ffc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
21:43:20.0938 0x0ffc MMCSS - ok
21:43:20.0952 0x0ffc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
21:43:20.0954 0x0ffc Modem - ok
21:43:20.0974 0x0ffc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:43:20.0976 0x0ffc monitor - ok
21:43:21.0004 0x0ffc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:43:21.0006 0x0ffc mouclass - ok
21:43:21.0018 0x0ffc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:43:21.0020 0x0ffc mouhid - ok
21:43:21.0050 0x0ffc [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:43:21.0053 0x0ffc mountmgr - ok
21:43:21.0074 0x0ffc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
21:43:21.0079 0x0ffc mpio - ok
21:43:21.0112 0x0ffc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:43:21.0115 0x0ffc mpsdrv - ok
21:43:21.0163 0x0ffc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:43:21.0195 0x0ffc MpsSvc - ok
21:43:21.0230 0x0ffc [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:43:21.0235 0x0ffc MRxDAV - ok
21:43:21.0273 0x0ffc [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:43:21.0279 0x0ffc mrxsmb - ok
21:43:21.0302 0x0ffc [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:43:21.0309 0x0ffc mrxsmb10 - ok
21:43:21.0329 0x0ffc [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:43:21.0334 0x0ffc mrxsmb20 - ok
21:43:21.0363 0x0ffc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
21:43:21.0365 0x0ffc msahci - ok
21:43:21.0383 0x0ffc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:43:21.0387 0x0ffc msdsm - ok
21:43:21.0402 0x0ffc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
21:43:21.0408 0x0ffc MSDTC - ok
21:43:21.0428 0x0ffc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:43:21.0430 0x0ffc Msfs - ok
21:43:21.0435 0x0ffc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:43:21.0437 0x0ffc mshidkmdf - ok
21:43:21.0468 0x0ffc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:43:21.0470 0x0ffc msisadrv - ok
21:43:21.0496 0x0ffc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:43:21.0503 0x0ffc MSiSCSI - ok
21:43:21.0508 0x0ffc msiserver - ok
21:43:21.0541 0x0ffc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:43:21.0542 0x0ffc MSKSSRV - ok
21:43:21.0564 0x0ffc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:43:21.0565 0x0ffc MSPCLOCK - ok
21:43:21.0576 0x0ffc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:43:21.0577 0x0ffc MSPQM - ok
21:43:21.0602 0x0ffc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:43:21.0611 0x0ffc MsRPC - ok
21:43:21.0629 0x0ffc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:43:21.0631 0x0ffc mssmbios - ok
21:43:21.0648 0x0ffc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:43:21.0650 0x0ffc MSTEE - ok
21:43:21.0669 0x0ffc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:43:21.0671 0x0ffc MTConfig - ok
21:43:21.0700 0x0ffc [ 03B7145C889603537E9FFEABB1AD1089, B3CD93B893D4A2370CBF382366C6F596372857F8711EF6FFF83BFE2B449F424E ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
21:43:21.0701 0x0ffc MTsensor - ok
21:43:21.0707 0x0ffc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
21:43:21.0709 0x0ffc Mup - ok
21:43:21.0747 0x0ffc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
21:43:21.0761 0x0ffc napagent - ok
21:43:21.0790 0x0ffc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:43:21.0799 0x0ffc NativeWifiP - ok
21:43:21.0862 0x0ffc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
21:43:21.0894 0x0ffc NDIS - ok
21:43:21.0916 0x0ffc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:43:21.0918 0x0ffc NdisCap - ok
21:43:21.0935 0x0ffc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:43:21.0937 0x0ffc NdisTapi - ok
21:43:21.0969 0x0ffc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:43:21.0971 0x0ffc Ndisuio - ok
21:43:21.0986 0x0ffc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:43:21.0991 0x0ffc NdisWan - ok
21:43:22.0016 0x0ffc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:43:22.0019 0x0ffc NDProxy - ok
21:43:22.0032 0x0ffc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:43:22.0035 0x0ffc NetBIOS - ok
21:43:22.0077 0x0ffc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:43:22.0085 0x0ffc NetBT - ok
21:43:22.0094 0x0ffc [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
21:43:22.0098 0x0ffc Netlogon - ok
21:43:22.0123 0x0ffc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
21:43:22.0135 0x0ffc Netman - ok
21:43:22.0168 0x0ffc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:22.0195 0x0ffc NetMsmqActivator - ok
21:43:22.0202 0x0ffc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:22.0206 0x0ffc NetPipeActivator - ok
21:43:22.0222 0x0ffc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
21:43:22.0236 0x0ffc netprofm - ok
21:43:22.0243 0x0ffc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:22.0247 0x0ffc NetTcpActivator - ok
21:43:22.0253 0x0ffc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:22.0257 0x0ffc NetTcpPortSharing - ok
21:43:22.0277 0x0ffc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:43:22.0279 0x0ffc nfrd960 - ok
21:43:22.0317 0x0ffc [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:43:22.0327 0x0ffc NlaSvc - ok
21:43:22.0337 0x0ffc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:43:22.0339 0x0ffc Npfs - ok
21:43:22.0347 0x0ffc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
21:43:22.0351 0x0ffc nsi - ok
21:43:22.0356 0x0ffc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:43:22.0358 0x0ffc nsiproxy - ok
21:43:22.0443 0x0ffc [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:43:22.0497 0x0ffc Ntfs - ok
21:43:22.0517 0x0ffc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
21:43:22.0518 0x0ffc Null - ok
21:43:22.0545 0x0ffc NVHDA - ok
21:43:22.0922 0x0ffc [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:43:23.0269 0x0ffc nvlddmkm - ok
21:43:23.0334 0x0ffc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:43:23.0338 0x0ffc nvraid - ok
21:43:23.0358 0x0ffc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:43:23.0363 0x0ffc nvstor - ok
21:43:23.0424 0x0ffc [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc C:\Windows\system32\nvvsvc.exe
21:43:23.0456 0x0ffc nvsvc - ok

[Exuctioner]

TDSSKiller 2/2

21:43:23.0461 0x0ffc nvvad_WaveExtensible - ok
21:43:23.0496 0x0ffc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:43:23.0500 0x0ffc nv_agp - ok
21:43:23.0534 0x0ffc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:43:23.0537 0x0ffc ohci1394 - ok
21:43:23.0679 0x0ffc [ EF8DA126239D08B7B4734256417AE702, 4BBA0577C20E851F5B30D0D0F19382AB32AF57EFF7AA5B394E0FF6358A7AB287 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
21:43:23.0744 0x0ffc Origin Client Service - ok
21:43:23.0821 0x0ffc [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:43:23.0834 0x0ffc ose64 - ok
21:43:24.0033 0x0ffc [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:43:24.0192 0x0ffc osppsvc - ok
21:43:24.0234 0x0ffc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:43:24.0245 0x0ffc p2pimsvc - ok
21:43:24.0265 0x0ffc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
21:43:24.0278 0x0ffc p2psvc - ok
21:43:24.0293 0x0ffc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:43:24.0297 0x0ffc Parport - ok
21:43:24.0313 0x0ffc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:43:24.0316 0x0ffc partmgr - ok
21:43:24.0354 0x0ffc [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:43:24.0361 0x0ffc PcaSvc - ok
21:43:24.0389 0x0ffc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
21:43:24.0394 0x0ffc pci - ok
21:43:24.0425 0x0ffc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
21:43:24.0427 0x0ffc pciide - ok
21:43:24.0448 0x0ffc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:43:24.0455 0x0ffc pcmcia - ok
21:43:24.0466 0x0ffc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
21:43:24.0469 0x0ffc pcw - ok
21:43:24.0518 0x0ffc [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:43:24.0536 0x0ffc PEAUTH - ok
21:43:24.0594 0x0ffc [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:43:24.0688 0x0ffc PeerDistSvc - ok
21:43:24.0755 0x0ffc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:43:24.0759 0x0ffc PerfHost - ok
21:43:24.0841 0x0ffc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
21:43:24.0895 0x0ffc pla - ok
21:43:24.0950 0x0ffc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:43:24.0963 0x0ffc PlugPlay - ok
21:43:24.0968 0x0ffc PnkBstrA - ok
21:43:24.0976 0x0ffc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:43:24.0981 0x0ffc PNRPAutoReg - ok
21:43:25.0001 0x0ffc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:43:25.0010 0x0ffc PNRPsvc - ok
21:43:25.0043 0x0ffc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:43:25.0057 0x0ffc PolicyAgent - ok
21:43:25.0080 0x0ffc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
21:43:25.0088 0x0ffc Power - ok
21:43:25.0129 0x0ffc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:43:25.0133 0x0ffc PptpMiniport - ok
21:43:25.0147 0x0ffc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:43:25.0150 0x0ffc Processor - ok
21:43:25.0189 0x0ffc [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
21:43:25.0197 0x0ffc ProfSvc - ok
21:43:25.0205 0x0ffc [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:43:25.0208 0x0ffc ProtectedStorage - ok
21:43:25.0245 0x0ffc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:43:25.0249 0x0ffc Psched - ok
21:43:25.0304 0x0ffc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:43:25.0350 0x0ffc ql2300 - ok
21:43:25.0375 0x0ffc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:43:25.0379 0x0ffc ql40xx - ok
21:43:25.0396 0x0ffc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
21:43:25.0405 0x0ffc QWAVE - ok
21:43:25.0415 0x0ffc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:43:25.0417 0x0ffc QWAVEdrv - ok
21:43:25.0437 0x0ffc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:43:25.0439 0x0ffc RasAcd - ok
21:43:25.0453 0x0ffc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:43:25.0455 0x0ffc RasAgileVpn - ok
21:43:25.0462 0x0ffc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
21:43:25.0468 0x0ffc RasAuto - ok
21:43:25.0501 0x0ffc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:43:25.0506 0x0ffc Rasl2tp - ok
21:43:25.0550 0x0ffc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
21:43:25.0562 0x0ffc RasMan - ok
21:43:25.0582 0x0ffc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:43:25.0586 0x0ffc RasPppoe - ok
21:43:25.0598 0x0ffc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:43:25.0601 0x0ffc RasSstp - ok
21:43:25.0626 0x0ffc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:43:25.0634 0x0ffc rdbss - ok
21:43:25.0650 0x0ffc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:43:25.0652 0x0ffc rdpbus - ok
21:43:25.0663 0x0ffc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:43:25.0665 0x0ffc RDPCDD - ok
21:43:25.0695 0x0ffc [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:43:25.0700 0x0ffc RDPDR - ok
21:43:25.0713 0x0ffc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:43:25.0715 0x0ffc RDPENCDD - ok
21:43:25.0721 0x0ffc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:43:25.0723 0x0ffc RDPREFMP - ok
21:43:25.0747 0x0ffc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:43:25.0753 0x0ffc RDPWD - ok
21:43:25.0774 0x0ffc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:43:25.0780 0x0ffc rdyboost - ok
21:43:25.0799 0x0ffc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:43:25.0804 0x0ffc RemoteAccess - ok
21:43:25.0816 0x0ffc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:43:25.0824 0x0ffc RemoteRegistry - ok
21:43:25.0845 0x0ffc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:43:25.0851 0x0ffc RpcEptMapper - ok
21:43:25.0871 0x0ffc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
21:43:25.0875 0x0ffc RpcLocator - ok
21:43:25.0919 0x0ffc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
21:43:25.0932 0x0ffc RpcSs - ok
21:43:25.0942 0x0ffc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:43:25.0945 0x0ffc rspndr - ok
21:43:25.0968 0x0ffc [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
21:43:25.0970 0x0ffc s3cap - ok
21:43:25.0975 0x0ffc [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
21:43:25.0978 0x0ffc SamSs - ok
21:43:26.0013 0x0ffc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:43:26.0017 0x0ffc sbp2port - ok
21:43:26.0037 0x0ffc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:43:26.0045 0x0ffc SCardSvr - ok
21:43:26.0057 0x0ffc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:43:26.0059 0x0ffc scfilter - ok
21:43:26.0118 0x0ffc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
21:43:26.0149 0x0ffc Schedule - ok
21:43:26.0172 0x0ffc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
21:43:26.0174 0x0ffc SCPolicySvc - ok
21:43:26.0203 0x0ffc [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
21:43:26.0206 0x0ffc ScreamBAudioSvc - ok
21:43:26.0225 0x0ffc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:43:26.0234 0x0ffc SDRSVC - ok
21:43:26.0254 0x0ffc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:43:26.0256 0x0ffc secdrv - ok
21:43:26.0269 0x0ffc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
21:43:26.0273 0x0ffc seclogon - ok
21:43:26.0296 0x0ffc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
21:43:26.0301 0x0ffc SENS - ok
21:43:26.0317 0x0ffc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:43:26.0321 0x0ffc SensrSvc - ok
21:43:26.0342 0x0ffc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:43:26.0344 0x0ffc Serenum - ok
21:43:26.0366 0x0ffc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:43:26.0370 0x0ffc Serial - ok
21:43:26.0383 0x0ffc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:43:26.0386 0x0ffc sermouse - ok
21:43:26.0411 0x0ffc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
21:43:26.0418 0x0ffc SessionEnv - ok
21:43:26.0433 0x0ffc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:43:26.0434 0x0ffc sffdisk - ok
21:43:26.0450 0x0ffc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:43:26.0452 0x0ffc sffp_mmc - ok
21:43:26.0463 0x0ffc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:43:26.0465 0x0ffc sffp_sd - ok
21:43:26.0482 0x0ffc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:43:26.0484 0x0ffc sfloppy - ok
21:43:26.0516 0x0ffc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:43:26.0527 0x0ffc SharedAccess - ok
21:43:26.0568 0x0ffc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:43:26.0581 0x0ffc ShellHWDetection - ok
21:43:26.0593 0x0ffc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:43:26.0595 0x0ffc SiSRaid2 - ok
21:43:26.0609 0x0ffc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:43:26.0613 0x0ffc SiSRaid4 - ok
21:43:26.0638 0x0ffc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:43:26.0641 0x0ffc Smb - ok
21:43:26.0662 0x0ffc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:43:26.0667 0x0ffc SNMPTRAP - ok
21:43:26.0674 0x0ffc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
21:43:26.0676 0x0ffc spldr - ok
21:43:26.0724 0x0ffc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
21:43:26.0741 0x0ffc Spooler - ok
21:43:26.0887 0x0ffc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
21:43:27.0035 0x0ffc sppsvc - ok
21:43:27.0061 0x0ffc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:43:27.0066 0x0ffc sppuinotify - ok
21:43:27.0113 0x0ffc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:43:27.0126 0x0ffc srv - ok
21:43:27.0172 0x0ffc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:43:27.0182 0x0ffc srv2 - ok
21:43:27.0223 0x0ffc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:43:27.0228 0x0ffc srvnet - ok
21:43:27.0251 0x0ffc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:43:27.0259 0x0ffc SSDPSRV - ok
21:43:27.0287 0x0ffc [ E18127FA95EADD3BD31F37690894D2F7, E3C7FCB9EFD7616B51624B7A7343DA8AA812A8E3AB19375D1BC31D09147AE443 ] sshid C:\Windows\system32\DRIVERS\sshid.sys
21:43:27.0289 0x0ffc sshid - ok
21:43:27.0304 0x0ffc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:43:27.0310 0x0ffc SstpSvc - ok
21:43:27.0397 0x0ffc [ CC7ED069C2FC82B5B1555C2044C765CC, CE43363544A3EE2C5133CD0D47BF34AFAFA4EAD6AC9EB9A772EE55E89D4D89D4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:43:27.0430 0x0ffc Steam Client Service - ok
21:43:27.0449 0x0ffc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:43:27.0451 0x0ffc stexstor - ok
21:43:27.0489 0x0ffc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
21:43:27.0506 0x0ffc stisvc - ok
21:43:27.0519 0x0ffc [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
21:43:27.0522 0x0ffc storflt - ok
21:43:27.0537 0x0ffc [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
21:43:27.0542 0x0ffc StorSvc - ok
21:43:27.0567 0x0ffc [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
21:43:27.0569 0x0ffc storvsc - ok
21:43:27.0582 0x0ffc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
21:43:27.0584 0x0ffc swenum - ok
21:43:27.0711 0x0ffc [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:43:27.0725 0x0ffc SwitchBoard - ok
21:43:27.0753 0x0ffc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
21:43:27.0771 0x0ffc swprv - ok
21:43:27.0845 0x0ffc [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
21:43:27.0899 0x0ffc SysMain - ok
21:43:27.0928 0x0ffc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:43:27.0934 0x0ffc TabletInputService - ok
21:43:27.0961 0x0ffc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
21:43:27.0973 0x0ffc TapiSrv - ok
21:43:27.0983 0x0ffc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
21:43:27.0989 0x0ffc TBS - ok
21:43:28.0062 0x0ffc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:43:28.0119 0x0ffc Tcpip - ok
21:43:28.0171 0x0ffc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:43:28.0207 0x0ffc TCPIP6 - ok
21:43:28.0246 0x0ffc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:43:28.0248 0x0ffc tcpipreg - ok
21:43:28.0261 0x0ffc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:43:28.0263 0x0ffc TDPIPE - ok
21:43:28.0291 0x0ffc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:43:28.0293 0x0ffc TDTCP - ok
21:43:28.0330 0x0ffc [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:43:28.0334 0x0ffc tdx - ok
21:43:28.0350 0x0ffc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
21:43:28.0352 0x0ffc TermDD - ok
21:43:28.0398 0x0ffc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
21:43:28.0431 0x0ffc TermService - ok
21:43:28.0447 0x0ffc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
21:43:28.0452 0x0ffc Themes - ok
21:43:28.0478 0x0ffc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
21:43:28.0481 0x0ffc THREADORDER - ok
21:43:28.0494 0x0ffc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
21:43:28.0501 0x0ffc TrkWks - ok
21:43:28.0537 0x0ffc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:43:28.0544 0x0ffc TrustedInstaller - ok
21:43:28.0583 0x0ffc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:43:28.0586 0x0ffc tssecsrv - ok
21:43:28.0606 0x0ffc [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:43:28.0609 0x0ffc TsUsbFlt - ok
21:43:28.0640 0x0ffc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:43:28.0645 0x0ffc tunnel - ok
21:43:28.0661 0x0ffc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:43:28.0664 0x0ffc uagp35 - ok
21:43:28.0694 0x0ffc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:43:28.0703 0x0ffc udfs - ok
21:43:28.0714 0x0ffc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:43:28.0720 0x0ffc UI0Detect - ok
21:43:28.0737 0x0ffc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:43:28.0740 0x0ffc uliagpkx - ok
21:43:28.0758 0x0ffc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
21:43:28.0761 0x0ffc umbus - ok
21:43:28.0779 0x0ffc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:43:28.0781 0x0ffc UmPass - ok
21:43:28.0820 0x0ffc [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
21:43:28.0830 0x0ffc UmRdpService - ok
21:43:28.0855 0x0ffc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
21:43:28.0869 0x0ffc upnphost - ok
21:43:28.0929 0x0ffc [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:43:28.0933 0x0ffc usbaudio - ok
21:43:28.0956 0x0ffc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:43:28.0960 0x0ffc usbccgp - ok
21:43:28.0981 0x0ffc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:43:28.0985 0x0ffc usbcir - ok
21:43:28.0998 0x0ffc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:43:29.0001 0x0ffc usbehci - ok
21:43:29.0020 0x0ffc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:43:29.0029 0x0ffc usbhub - ok
21:43:29.0041 0x0ffc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:43:29.0043 0x0ffc usbohci - ok
21:43:29.0057 0x0ffc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:43:29.0059 0x0ffc usbprint - ok
21:43:29.0075 0x0ffc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:43:29.0079 0x0ffc USBSTOR - ok
21:43:29.0091 0x0ffc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:43:29.0093 0x0ffc usbuhci - ok
21:43:29.0107 0x0ffc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
21:43:29.0113 0x0ffc UxSms - ok
21:43:29.0127 0x0ffc [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
21:43:29.0130 0x0ffc VaultSvc - ok
21:43:29.0141 0x0ffc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:43:29.0143 0x0ffc vdrvroot - ok
21:43:29.0175 0x0ffc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
21:43:29.0192 0x0ffc vds - ok
21:43:29.0237 0x0ffc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:43:29.0240 0x0ffc vga - ok
21:43:29.0252 0x0ffc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:43:29.0254 0x0ffc VgaSave - ok
21:43:29.0277 0x0ffc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:43:29.0284 0x0ffc vhdmp - ok
21:43:29.0295 0x0ffc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
21:43:29.0297 0x0ffc viaide - ok
21:43:29.0323 0x0ffc [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
21:43:29.0330 0x0ffc vmbus - ok
21:43:29.0345 0x0ffc [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
21:43:29.0347 0x0ffc VMBusHID - ok
21:43:29.0368 0x0ffc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:43:29.0372 0x0ffc volmgr - ok
21:43:29.0406 0x0ffc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:43:29.0416 0x0ffc volmgrx - ok
21:43:29.0441 0x0ffc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:43:29.0449 0x0ffc volsnap - ok
21:43:29.0479 0x0ffc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:43:29.0484 0x0ffc vsmraid - ok
21:43:29.0558 0x0ffc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
21:43:29.0612 0x0ffc VSS - ok
21:43:29.0628 0x0ffc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:43:29.0630 0x0ffc vwifibus - ok
21:43:29.0653 0x0ffc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
21:43:29.0664 0x0ffc W32Time - ok
21:43:29.0683 0x0ffc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:43:29.0685 0x0ffc WacomPen - ok
21:43:29.0703 0x0ffc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:43:29.0706 0x0ffc WANARP - ok
21:43:29.0712 0x0ffc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:43:29.0715 0x0ffc Wanarpv6 - ok
21:43:29.0799 0x0ffc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:43:29.0843 0x0ffc WatAdminSvc - ok
21:43:29.0913 0x0ffc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
21:43:29.0966 0x0ffc wbengine - ok
21:43:29.0999 0x0ffc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:43:30.0008 0x0ffc WbioSrvc - ok
21:43:30.0046 0x0ffc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:43:30.0059 0x0ffc wcncsvc - ok
21:43:30.0074 0x0ffc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:43:30.0080 0x0ffc WcsPlugInService - ok
21:43:30.0097 0x0ffc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:43:30.0099 0x0ffc Wd - ok
21:43:30.0144 0x0ffc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:43:30.0178 0x0ffc Wdf01000 - ok
21:43:30.0198 0x0ffc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:43:30.0205 0x0ffc WdiServiceHost - ok
21:43:30.0210 0x0ffc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:43:30.0216 0x0ffc WdiSystemHost - ok
21:43:30.0254 0x0ffc [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
21:43:30.0264 0x0ffc WebClient - ok
21:43:30.0284 0x0ffc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:43:30.0294 0x0ffc Wecsvc - ok
21:43:30.0305 0x0ffc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:43:30.0311 0x0ffc wercplsupport - ok
21:43:30.0336 0x0ffc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
21:43:30.0342 0x0ffc WerSvc - ok
21:43:30.0357 0x0ffc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:43:30.0358 0x0ffc WfpLwf - ok
21:43:30.0374 0x0ffc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:43:30.0376 0x0ffc WIMMount - ok
21:43:30.0408 0x0ffc WinDefend - ok
21:43:30.0427 0x0ffc WinHttpAutoProxySvc - ok
21:43:30.0470 0x0ffc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:43:30.0478 0x0ffc Winmgmt - ok
21:43:30.0560 0x0ffc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
21:43:30.0629 0x0ffc WinRM - ok
21:43:30.0725 0x0ffc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:43:30.0728 0x0ffc WinUsb - ok
21:43:30.0769 0x0ffc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:43:30.0801 0x0ffc Wlansvc - ok
21:43:30.0946 0x0ffc [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:43:31.0022 0x0ffc wlidsvc - ok
21:43:31.0050 0x0ffc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:43:31.0052 0x0ffc WmiAcpi - ok
21:43:31.0071 0x0ffc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:43:31.0077 0x0ffc wmiApSrv - ok
21:43:31.0090 0x0ffc WMPNetworkSvc - ok
21:43:31.0110 0x0ffc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:43:31.0116 0x0ffc WPCSvc - ok
21:43:31.0134 0x0ffc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:43:31.0141 0x0ffc WPDBusEnum - ok
21:43:31.0150 0x0ffc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:43:31.0152 0x0ffc ws2ifsl - ok
21:43:31.0167 0x0ffc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
21:43:31.0174 0x0ffc wscsvc - ok
21:43:31.0178 0x0ffc WSearch - ok
21:43:31.0286 0x0ffc [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll
21:43:31.0368 0x0ffc wuauserv - ok
21:43:31.0399 0x0ffc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:43:31.0402 0x0ffc WudfPf - ok
21:43:31.0436 0x0ffc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:43:31.0442 0x0ffc WUDFRd - ok
21:43:31.0465 0x0ffc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:43:31.0472 0x0ffc wudfsvc - ok
21:43:31.0494 0x0ffc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
21:43:31.0517 0x0ffc WwanSvc - ok
21:43:31.0557 0x0ffc [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
21:43:31.0567 0x0ffc yukonw7 - ok
21:43:31.0573 0x0ffc ================ Scan global ===============================
21:43:31.0586 0x0ffc [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
21:43:31.0618 0x0ffc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:43:31.0635 0x0ffc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:43:31.0650 0x0ffc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
21:43:31.0669 0x0ffc [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
21:43:31.0679 0x0ffc [ Global ] - ok
21:43:31.0680 0x0ffc ================ Scan MBR ==================================
21:43:31.0693 0x0ffc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:43:32.0125 0x0ffc \Device\Harddisk0\DR0 - ok
21:43:32.0125 0x0ffc ================ Scan VBR ==================================
21:43:32.0128 0x0ffc [ C8DA8B1D201693900029EE503864F1C6 ] \Device\Harddisk0\DR0\Partition1
21:43:32.0130 0x0ffc \Device\Harddisk0\DR0\Partition1 - ok
21:43:32.0133 0x0ffc [ 17E55BC05BFFA9FA7F4386CA436025D2 ] \Device\Harddisk0\DR0\Partition2
21:43:32.0145 0x0ffc \Device\Harddisk0\DR0\Partition2 - ok
21:43:32.0148 0x0ffc [ DFD8C9C4A32ADFEFD7ABAB5E05096A6F ] \Device\Harddisk0\DR0\Partition3
21:43:32.0162 0x0ffc \Device\Harddisk0\DR0\Partition3 - ok
21:43:32.0163 0x0ffc ================ Scan generic autorun ======================
21:43:32.0230 0x0ffc [ 51138BEEA3E2C21EC44D0932C71762A8, 5AD3C37E6F2B9DB3EE8B5AEEDC474645DE90C66E3D95F8620C48102F1EBA4124 ] C:\Windows\syswow64\RunDll32.exe
21:43:32.0235 0x0ffc CmPCIaudio - ok
21:43:32.0255 0x0ffc [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:43:32.0265 0x0ffc SwitchBoard - ok
21:43:32.0455 0x0ffc [ 312C7978F0A42DB0475CE31D884DCE88, 53DBEF2473F39754BB1BC352DB9A32607FD3A2E2DC5E7AA6AE821CABEC00CCD1 ] D:\Program Files\AVAST Software\Avast\AvastUI.exe
21:43:32.0602 0x0ffc AvastUI.exe - ok
21:43:32.0724 0x0ffc [ 5FC6AD6AE07F8827F954C4C6B73568E2, 6A2C1328BFBFB8D41CE268C2D1C26B1E2FCF2E426A98A740536689FB568ACFE9 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
21:43:32.0754 0x0ffc StartCCC - ok
21:43:32.0801 0x0ffc [ 9DECF401AE4CB834D89957BDBF484068, 084056EAA068F88B6168566F14D315F2AD35F2202B18CFC5F88A466C154210A3 ] D:\Program Files\AVAST Software\Avast\setup\emupdate\16ca2eaf-0cbc-4333-89f7-190e944610f5.exe
21:43:32.0808 0x0ffc 20150107 - ok
21:43:32.0945 0x0ffc [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
21:43:33.0050 0x0ffc DAEMON Tools Lite - ok
21:43:33.0083 0x0ffc Skype - ok
21:43:33.0147 0x0ffc [ 5F3587E344F2990B59C941FB405CAA0F, FECEC63F515EF66FAD84FF589E95B931574CA1F6BDFC9D6E016B0604AFF18498 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
21:43:33.0162 0x0ffc GoogleChromeAutoLaunch_73B90D4D0D4A45E4E1249D0D8EDB5EB0 - ok
21:43:33.0164 0x0ffc Waiting for KSN requests completion. In queue: 36
21:43:34.0165 0x0ffc Waiting for KSN requests completion. In queue: 36
21:43:35.0165 0x0ffc Waiting for KSN requests completion. In queue: 36
21:43:36.0432 0x0ffc AV detected via SS2: avast! Antivirus, D:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
21:43:36.0451 0x0ffc FW detected via SS2: avast! Antivirus, D:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x40010 ( disabled )
21:43:36.0621 0x0ffc Win FW state via NFP2: disabled
21:43:39.0001 0x0ffc ============================================================

[jaro3]

Co problémy?

[Exuctioner]

Nechci to zakřiknout, ale problémy se zdají být menší, až skoro žádné. Kdyžtak ještě napíšu kdyby se něco opět dělo.

[Orcus]

OK.

[Exuctioner]

Tak asi nepomohlo, dívám se na video a úplně mi to trhá uši jak se to seká. Nedá se pořádně ani nic poslechnout, zahrát.

Co si všímám, tak využití procesoru kolikrát v kuse jede na 100%, takže hádám Malware? Když mám zapnutý pouze prohlížeč s jedním oknem (bez pluginů), občas padá na 50% ale okamžitě se vymrští na 100%.

Taktéž nevím proč ale v HWMonitoru se zobrazuje teplota pouze 1 jádra... ?

[Orcus]

Těch 68°C stupňu se mi na C2Q procesor zdá už moc. Zkus trochu ochladit, jestli to pomůže.

[Exuctioner]

@Orcus

Ale problém je ten, že tahle teplota je například když mám zaplej prohlížeč a sleduji video, nebo se dívám na film. Navíc nevím ale zobrazovala se teplota pouze jednoho jádra, nevíš čím to mohlo být? Protože po restartu opět ukazovalo 4 jádra (i správce úloh) a jel svižněji. Ale stále se všelijak kouše a podobně.

Ohledně chlazení, mám BOXák a ten jede na 2500RPM Myslíš že by pomohlo koupit SilentiumPC Spartan LT HE922 ???

[jaro3]

Zkus oddělit chladfič a dát novou pastu a pořádně znovu připojit chladíč. Taky může být špatné čidlo na na jádru.

Stáhni Kaspersky VRT
na svojí plochu.
Spusť program Kaspersky VRT, .Program se nainstaluje.
Potvrď licenci a klikni na „Start“ . Pokud program nabídne aktualizaci , klikni dole na na „Download Now“.
- Klikni na ozubené kolečko v pravém horním rohu. V okně vyber kromě již zatržených , svojí jednotku disku , pokud jich máš víc , můžeš zatrhnout všechny.
- zvol „Automatic Scan“ nahoře vlevo. a stiskni tlačítko „Start Scanning“
- Program začne skenovat zatržené jednotky

Zaškrtnuté :
Hidden startup objects
System Memory
Disk boot sectors
Počítač
Místní disk C

Nezašrkrtnuté:
Dokumenty
My email
Místní disk D
Jednotka DVD-Rom (E)
Jednotka BD-ROM (G)
Disketová jednotka
A jiné , např. Flash disky , které máš připojeny.

- povol programu Virus Removal Tool odstranit všechny nalezené infekce
- jakmile sken skončí ,zvol záložku „Report“ , vpravo nahoře (vedle ozubeného kolečka)
- klikni na „Detected Threads“ a klikni na obrázek diskety („Save“)
- ulož do počítače zprávu a vložit ji sem do příspěvku