Fake policie vir- Prosím o kontrolu LOGU

[Delete]

Ahoj včera jsem chytl vir s tím policejním podtextem že mám zaplatit 2000 a ták.. V nouzovém režimu jsem PC pročistil ATF cleanerem, antivirem.. Teď pc už jeden normálně na normální režim. Ale mám pocit že to tu někde pořád je a tak pro kontrolu:)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:30:22, on 9.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.b1.org/?bsrc=hmior&chid=c167991
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.b1.org/?bsrc=hmior&chid=c167991
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: LinkAirBrowserHelper HistoryTriggerBHO - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [LG LinkAir] C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Global Startup: GamePark klient 2.lnk = C:\Program Files\GamePark2\gpcl.exe
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Image - res://C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/206
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Memo - res://C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/208
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Text file - res://C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/210
O8 - Extra context menu item: LG Air Sync (R-Click) - Set as Mobile Wallpaper - res://C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/205
O8 - Extra context menu item: LG Air Sync Option - res://C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/209
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll c:\progra~2\sprote~1\sprote~1.dll,c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: UltiDev Cassini Web Server for ASP.NET 2.0 - UltiDev LLC - C:\Program Files (x86)\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12179 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Delete]

Další odpověd odemně bude asi až v pátek, až přijedu z intru ale díky moc !
ATF Cleaner hotovo
Malwarebytes log je tady:




Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.11.09.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
DnB :: DNB-PC [administrátor]

10.11.2013 0:04:16
MBAM-log-2013-11-10 (00-10-07).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 254807
Uplynulý čas: 5 minut, 13 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 1
C:\Users\DnB\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 6
C:\ProgramData\bn8z9odto.pss (Trojan.FakeMS) -> Nebyla provedena žádná instrukce.
C:\ProgramData\otdo9z8nb.dss (Trojan.FakeMS) -> Nebyla provedena žádná instrukce.
C:\Users\DnB\AppData\Local\Temp\otdo9z8nb.dss (Trojan.FakeMS) -> Nebyla provedena žádná instrukce.
C:\Users\DnB\AppData\Local\Application Data\Bundled software uninstaller\bi_client.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\OptimizerPro1UpdaterTask{DD64427A-7E1B-4EF2-A67E-E6E6868D840E}.job (PUP.Optional.Optimizerpro) -> Nebyla provedena žádná instrukce.
C:\Users\DnB\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.

(konec)

[Delete]

ADW cleaner log je tady!


# AdwCleaner v3.011 - Report created 10/11/2013 at 00:11:49
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : DnB - DNB-PC
# Running from : C:\Users\DnB\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\Premium
Folder Found C:\Users\DnB\AppData\LocalLow\SaveAs
Folder Found C:\Users\DnB\AppData\Roaming\B1Toolbar
Folder Found C:\Users\DnB\AppData\Roaming\Babylon

***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\sprote~1\sprote~1.dll,c:\windows\syswow64\nvinit.dll
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.b1.org/?bsrc=hmior&chid=c167991
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.b1.org/?bsrc=hmior&chid=c167991

-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\DnB\AppData\Roaming\Mozilla\Firefox\Profiles\v5hu839j.default-1383208968709\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\DnB\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3095 octets] - [10/11/2013 00:11:49]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3155 octets] ##########

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Delete]

Ahoj, U mbam to chtělo hned po logu restart tak jsem to nestihl ani ulož, ale mám starý a nový log:

ADWCLEANER log:

# AdwCleaner v3.012 - Report created 15/11/2013 at 16:14:01
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : DnB - DNB-PC
# Running from : C:\Users\DnB\Downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\Premium
Folder Found C:\Users\DnB\AppData\LocalLow\SaveAs
Folder Found C:\Users\DnB\AppData\Roaming\B1Toolbar
Folder Found C:\Users\DnB\AppData\Roaming\Babylon

***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\sprote~1\sprote~1.dll,c:\windows\syswow64\nvinit.dll
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.b1.org/?bsrc=hmior&chid=c167991
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.b1.org/?bsrc=hmior&chid=c167991

-\\ Mozilla Firefox v25.0 (cs)

[ File : C:\Users\DnB\AppData\Roaming\Mozilla\Firefox\Profiles\v5hu839j.default-1383208968709\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\DnB\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3259 octets] - [10/11/2013 00:11:49]
AdwCleaner[R1].txt - [3317 octets] - [15/11/2013 16:14:01]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [3377 octets] ##########





Junkware remowal tool-

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by DnB on p  15.11.2013 at 16:19:17,17
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{0FB50C68-A2D0-404E-8F58-EFBD9D107CEF}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{115D29D4-AA76-4D8D-A65C-26FB3D84182B}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{1917B7B0-EE55-41B9-82F8-CB1785EC67F5}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{4581E315-9C48-41CE-8105-11DF8BB6A673}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{62163435-5F22-417D-998F-99CE820C8F79}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{66052533-FE19-45F1-96BC-C9604D4E2816}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{667546DD-5EE9-444C-9DF9-58FAA1AD5DB4}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{76D51377-A552-4297-A4E6-020885D3F45D}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{8191A195-164E-4AD3-8E95-DC6B850C805B}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{E38B6027-324A-4EF3-A1BB-876B9DF8A2FA}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{F3A7CEE9-B11E-4153-B8DD-AD567E225852}
Successfully deleted: [Empty Folder] C:\Users\DnB\appdata\local\{FF20FD10-C35A-41C0-BD1C-EED103BF70B6}



~~~ FireFox

Emptied folder: C:\Users\DnB\AppData\Roaming\mozilla\firefox\profiles\v5hu839j.default-1383208968709\minidumps [7 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  15.11.2013 at 16:28:06,32
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



MBAM Log starý!-

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.11.09.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
DnB :: DNB-PC [administrátor]

15.11.2013 16:32:07
mbam.txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 254770
Uplynulý čas: 4 minut, 58 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 5
C:\ProgramData\bn8z9odto.pss (Trojan.FakeMS) -> Nebyla provedena žádná instrukce.
C:\ProgramData\otdo9z8nb.dss (Trojan.FakeMS) -> Nebyla provedena žádná instrukce.
C:\Users\DnB\AppData\Local\Temp\otdo9z8nb.dss (Trojan.FakeMS) -> Nebyla provedena žádná instrukce.
C:\Users\DnB\AppData\Local\Application Data\Bundled software uninstaller\bi_client.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\OptimizerPro1UpdaterTask{DD64427A-7E1B-4EF2-A67E-E6E6868D840E}.job (PUP.Optional.Optimizerpro) -> Nebyla provedena žádná instrukce.

(konec)



MBAM nový!

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.11.09.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
DnB :: DNB-PC [administrátor]

15.11.2013 16:49:30
mbam-log-2013-11-15 (16-49-30).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 254555
Uplynulý čas: 6 minut, 5 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)



RogueKiller:


RogueKiller V8.7.8 _x64_ [Nov 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : DnB [Práva správce]
Mód : Kontrola -- Datum : 11/15/2013 17:00:28
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9500325AS +++++
--- User ---
[MBR] d1349d7621eece3dde8850d282f2115b
[BSP] ed966db6f5fed20ad8750049472e72a8 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15360 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 31459328 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 31664128 | Size: 461478 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_11152013_170028.txt >>

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[Delete]

Netuším jestli jsem to udělal ty obadva logy dobře ale snad ano
Rogue killer:


RogueKiller V8.7.8 _x64_ [Nov 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : DnB [Práva správce]
Mód : Odebrat -- Datum : 11/15/2013 23:59:16
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9500325AS +++++
--- User ---
[MBR] d1349d7621eece3dde8850d282f2115b
[BSP] ed966db6f5fed20ad8750049472e72a8 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15360 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 31459328 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 31664128 | Size: 461478 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_11152013_235916.txt >>
RKreport[0]_S_11152013_170028.txt;RKreport[0]_S_11152013_235907.txt

[Delete]

TDS KILLER:

00:00:52.0080 1908 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
00:01:05.0309 1908 ============================================================
00:01:05.0309 1908 Current date / time: 2013/11/16 00:01:05.0309
00:01:05.0309 1908 SystemInfo:
00:01:05.0309 1908
00:01:05.0309 1908 OS Version: 6.1.7601 ServicePack: 1.0
00:01:05.0309 1908 Product type: Workstation
00:01:05.0309 1908 ComputerName: DNB-PC
00:01:05.0309 1908 UserName: DnB
00:01:05.0309 1908 Windows directory: C:\Windows
00:01:05.0309 1908 System windows directory: C:\Windows
00:01:05.0309 1908 Running under WOW64
00:01:05.0309 1908 Processor architecture: Intel x64
00:01:05.0309 1908 Number of processors: 2
00:01:05.0309 1908 Page size: 0x1000
00:01:05.0309 1908 Boot type: Normal boot
00:01:05.0309 1908 ============================================================
00:01:06.0011 1908 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:01:06.0026 1908 ============================================================
00:01:06.0026 1908 \Device\Harddisk0\DR0:
00:01:06.0026 1908 MBR partitions:
00:01:06.0026 1908 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
00:01:06.0026 1908 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x38553000
00:01:06.0026 1908 ============================================================
00:01:06.0042 1908 C: <-> \Device\Harddisk0\DR0\Partition2
00:01:06.0104 1908 ============================================================
00:01:06.0104 1908 Initialize success
00:01:06.0104 1908 ============================================================
00:01:18.0475 1696 ============================================================
00:01:18.0475 1696 Scan started
00:01:18.0475 1696 Mode: Manual;
00:01:18.0475 1696 ============================================================
00:01:18.0631 1696 ================ Scan system memory ========================
00:01:18.0631 1696 System memory - ok
00:01:18.0631 1696 ================ Scan services =============================
00:01:18.0849 1696 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
00:01:18.0849 1696 1394ohci - ok
00:01:18.0896 1696 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
00:01:18.0896 1696 ACPI - ok
00:01:18.0943 1696 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
00:01:18.0943 1696 AcpiPmi - ok
00:01:19.0083 1696 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:01:19.0083 1696 AdobeARMservice - ok
00:01:19.0224 1696 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:01:19.0224 1696 AdobeFlashPlayerUpdateSvc - ok
00:01:19.0302 1696 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
00:01:19.0302 1696 adp94xx - ok
00:01:19.0333 1696 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
00:01:19.0333 1696 adpahci - ok
00:01:19.0349 1696 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
00:01:19.0349 1696 adpu320 - ok
00:01:19.0380 1696 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:01:19.0380 1696 AeLookupSvc - ok
00:01:19.0442 1696 [ 314C17917AC8523EC77A710215012A65 ] AFD C:\Windows\system32\drivers\afd.sys
00:01:19.0442 1696 AFD - ok
00:01:19.0489 1696 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
00:01:19.0489 1696 agp440 - ok
00:01:19.0520 1696 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
00:01:19.0536 1696 ALG - ok
00:01:19.0583 1696 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
00:01:19.0583 1696 aliide - ok
00:01:19.0614 1696 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
00:01:19.0614 1696 amdide - ok
00:01:19.0661 1696 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
00:01:19.0661 1696 AmdK8 - ok
00:01:19.0661 1696 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
00:01:19.0661 1696 AmdPPM - ok
00:01:19.0707 1696 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
00:01:19.0707 1696 amdsata - ok
00:01:19.0754 1696 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
00:01:19.0754 1696 amdsbs - ok
00:01:19.0770 1696 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
00:01:19.0770 1696 amdxata - ok
00:01:19.0785 1696 Andbus - ok
00:01:19.0801 1696 AndDiag - ok
00:01:19.0801 1696 AndGps - ok
00:01:19.0817 1696 ANDModem - ok
00:01:19.0817 1696 androidusb - ok
00:01:19.0863 1696 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
00:01:19.0863 1696 AppID - ok
00:01:19.0895 1696 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
00:01:19.0895 1696 AppIDSvc - ok
00:01:19.0926 1696 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
00:01:19.0941 1696 Appinfo - ok
00:01:19.0957 1696 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
00:01:19.0957 1696 arc - ok
00:01:19.0988 1696 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
00:01:19.0988 1696 arcsas - ok
00:01:20.0113 1696 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:01:20.0160 1696 aspnet_state - ok
00:01:20.0222 1696 [ 1EC6777695564CA7EB3ADB36C78322E5 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
00:01:20.0222 1696 aswFsBlk - ok
00:01:20.0285 1696 [ FAF7B0B0C44A2FBD6FBC54E3E0F38545 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
00:01:20.0285 1696 aswMonFlt - ok
00:01:20.0300 1696 [ 679712B7A353EE665B9301592164A172 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
00:01:20.0300 1696 aswRdr - ok
00:01:20.0347 1696 [ C04F7B373881009D7994D9BF55D24AB4 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
00:01:20.0347 1696 aswRvrt - ok
00:01:20.0378 1696 [ 3E07C93A2CB67840E4CD56C00959A402 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
00:01:20.0394 1696 aswSnx - ok
00:01:20.0441 1696 [ 79ADA401A6E2054F110E7FBDFAC71942 ] aswSP C:\Windows\system32\drivers\aswSP.sys
00:01:20.0441 1696 aswSP - ok
00:01:20.0472 1696 [ 81C42096CE90B45C03DCFF017A8A49C7 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
00:01:20.0472 1696 aswTdi - ok
00:01:20.0534 1696 [ 59787B95DD9CA44CB139D96863438587 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
00:01:20.0534 1696 aswVmm - ok
00:01:20.0565 1696 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:01:20.0581 1696 AsyncMac - ok
00:01:20.0628 1696 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
00:01:20.0628 1696 atapi - ok
00:01:20.0690 1696 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:01:20.0706 1696 AudioEndpointBuilder - ok
00:01:20.0737 1696 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
00:01:20.0737 1696 AudioSrv - ok
00:01:20.0893 1696 [ 7A189530FD0CFD415DBE41123F8A6A59 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
00:01:20.0909 1696 avast! Antivirus - ok
00:01:20.0971 1696 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
00:01:20.0971 1696 AxInstSV - ok
00:01:21.0033 1696 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
00:01:21.0033 1696 b06bdrv - ok
00:01:21.0049 1696 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
00:01:21.0049 1696 b57nd60a - ok
00:01:21.0174 1696 [ 11F844B46B631337395651ABE9C4167B ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
00:01:21.0205 1696 BCM43XX - ok
00:01:21.0267 1696 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
00:01:21.0267 1696 BDESVC - ok
00:01:21.0314 1696 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
00:01:21.0314 1696 Beep - ok
00:01:21.0377 1696 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
00:01:21.0408 1696 BFE - ok
00:01:21.0439 1696 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
00:01:21.0470 1696 BITS - ok
00:01:21.0501 1696 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
00:01:21.0501 1696 blbdrive - ok
00:01:21.0517 1696 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:01:21.0517 1696 bowser - ok
00:01:21.0564 1696 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
00:01:21.0564 1696 BrFiltLo - ok
00:01:21.0579 1696 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
00:01:21.0579 1696 BrFiltUp - ok
00:01:21.0611 1696 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
00:01:21.0611 1696 Browser - ok
00:01:21.0642 1696 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
00:01:21.0642 1696 Brserid - ok
00:01:21.0657 1696 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
00:01:21.0657 1696 BrSerWdm - ok
00:01:21.0657 1696 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
00:01:21.0657 1696 BrUsbMdm - ok
00:01:21.0673 1696 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
00:01:21.0673 1696 BrUsbSer - ok
00:01:21.0704 1696 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
00:01:21.0704 1696 BTHMODEM - ok
00:01:21.0767 1696 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
00:01:21.0767 1696 bthserv - ok
00:01:21.0798 1696 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:01:21.0798 1696 cdfs - ok
00:01:21.0860 1696 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:01:21.0860 1696 cdrom - ok
00:01:21.0907 1696 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
00:01:21.0907 1696 CertPropSvc - ok
00:01:21.0938 1696 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
00:01:21.0938 1696 circlass - ok
00:01:21.0954 1696 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
00:01:21.0954 1696 CLFS - ok
00:01:22.0001 1696 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:01:22.0001 1696 clr_optimization_v2.0.50727_32 - ok
00:01:22.0032 1696 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:01:22.0047 1696 clr_optimization_v2.0.50727_64 - ok
00:01:22.0125 1696 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:01:22.0172 1696 clr_optimization_v4.0.30319_32 - ok
00:01:22.0203 1696 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:01:22.0235 1696 clr_optimization_v4.0.30319_64 - ok
00:01:22.0281 1696 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
00:01:22.0281 1696 CmBatt - ok
00:01:22.0297 1696 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:01:22.0297 1696 cmdide - ok
00:01:22.0359 1696 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
00:01:22.0359 1696 CNG - ok
00:01:22.0391 1696 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
00:01:22.0391 1696 Compbatt - ok
00:01:22.0406 1696 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
00:01:22.0406 1696 CompositeBus - ok
00:01:22.0437 1696 COMSysApp - ok
00:01:22.0453 1696 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
00:01:22.0453 1696 crcdisk - ok
00:01:22.0515 1696 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:01:22.0515 1696 CryptSvc - ok
00:01:22.0547 1696 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
00:01:22.0562 1696 DcomLaunch - ok
00:01:22.0593 1696 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
00:01:22.0593 1696 defragsvc - ok
00:01:22.0609 1696 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:01:22.0609 1696 DfsC - ok
00:01:22.0640 1696 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
00:01:22.0656 1696 Dhcp - ok
00:01:22.0671 1696 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
00:01:22.0671 1696 discache - ok
00:01:22.0734 1696 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
00:01:22.0734 1696 Disk - ok
00:01:22.0765 1696 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:01:22.0765 1696 Dnscache - ok
00:01:22.0796 1696 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
00:01:22.0796 1696 dot3svc - ok
00:01:22.0812 1696 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
00:01:22.0812 1696 DPS - ok
00:01:22.0859 1696 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:01:22.0859 1696 drmkaud - ok
00:01:22.0968 1696 [ 9CF46FDF163E06B83D03FF929EF2296C ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
00:01:22.0968 1696 DsiWMIService - ok
00:01:22.0999 1696 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:01:23.0015 1696 DXGKrnl - ok
00:01:23.0061 1696 EagleX64 - ok
00:01:23.0093 1696 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
00:01:23.0093 1696 EapHost - ok
00:01:23.0171 1696 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
00:01:23.0186 1696 ebdrv - ok
00:01:23.0217 1696 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
00:01:23.0217 1696 EFS - ok
00:01:23.0264 1696 [ 5332EC2BA1C112BD4BB1F38127848FEF ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
00:01:23.0280 1696 EgisTec Ticket Service - ok
00:01:23.0358 1696 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
00:01:23.0373 1696 ehRecvr - ok
00:01:23.0389 1696 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
00:01:23.0389 1696 ehSched - ok
00:01:23.0451 1696 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
00:01:23.0451 1696 elxstor - ok
00:01:23.0529 1696 [ 2AEE0416C54A1A86D035366DE192B2F0 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
00:01:23.0529 1696 ePowerSvc - ok
00:01:23.0545 1696 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
00:01:23.0545 1696 ErrDev - ok
00:01:23.0592 1696 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
00:01:23.0592 1696 EventSystem - ok
00:01:23.0639 1696 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
00:01:23.0639 1696 exfat - ok
00:01:23.0670 1696 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:01:23.0670 1696 fastfat - ok
00:01:23.0717 1696 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
00:01:23.0748 1696 Fax - ok
00:01:23.0763 1696 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
00:01:23.0763 1696 fdc - ok
00:01:23.0779 1696 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
00:01:23.0779 1696 fdPHost - ok
00:01:23.0795 1696 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
00:01:23.0795 1696 FDResPub - ok
00:01:23.0826 1696 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:01:23.0826 1696 FileInfo - ok
00:01:23.0841 1696 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:01:23.0841 1696 Filetrace - ok
00:01:23.0873 1696 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
00:01:23.0888 1696 FLEXnet Licensing Service - ok
00:01:23.0904 1696 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
00:01:23.0904 1696 flpydisk - ok
00:01:23.0919 1696 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:01:23.0919 1696 FltMgr - ok
00:01:23.0997 1696 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
00:01:24.0029 1696 FontCache - ok
00:01:24.0107 1696 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:01:24.0107 1696 FontCache3.0.0.0 - ok
00:01:24.0122 1696 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
00:01:24.0122 1696 FsDepends - ok
00:01:24.0153 1696 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:01:24.0153 1696 Fs_Rec - ok
00:01:24.0185 1696 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
00:01:24.0200 1696 fvevol - ok
00:01:24.0247 1696 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
00:01:24.0247 1696 gagp30kx - ok
00:01:24.0278 1696 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
00:01:24.0309 1696 gpsvc - ok
00:01:24.0387 1696 [ C9B2D1D3F86FD3673EF847DEF73B6F9E ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
00:01:24.0387 1696 GREGService - ok
00:01:24.0419 1696 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
00:01:24.0419 1696 hamachi - ok
00:01:24.0590 1696 [ A5DB93213D55EE179099D01A849E7CEB ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
00:01:24.0606 1696 Hamachi2Svc - ok
00:01:24.0621 1696 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
00:01:24.0637 1696 hcw85cir - ok
00:01:24.0653 1696 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:01:24.0653 1696 HdAudAddService - ok
00:01:24.0684 1696 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
00:01:24.0684 1696 HDAudBus - ok
00:01:24.0731 1696 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\drivers\HECIx64.sys
00:01:24.0731 1696 HECIx64 - ok
00:01:24.0746 1696 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
00:01:24.0746 1696 HidBatt - ok
00:01:24.0762 1696 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
00:01:24.0762 1696 HidBth - ok
00:01:24.0809 1696 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
00:01:24.0809 1696 HidIr - ok
00:01:24.0824 1696 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
00:01:24.0840 1696 hidserv - ok
00:01:24.0871 1696 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
00:01:24.0871 1696 HidUsb - ok
00:01:24.0902 1696 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
00:01:24.0902 1696 hkmsvc - ok
00:01:24.0918 1696 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:01:24.0918 1696 HomeGroupListener - ok
00:01:24.0933 1696 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:01:24.0949 1696 HomeGroupProvider - ok
00:01:24.0996 1696 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
00:01:24.0996 1696 HpSAMD - ok
00:01:25.0058 1696 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:01:25.0058 1696 HTTP - ok
00:01:25.0074 1696 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
00:01:25.0074 1696 hwpolicy - ok
00:01:25.0105 1696 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
00:01:25.0105 1696 i8042prt - ok
00:01:25.0167 1696 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\drivers\iaStor.sys
00:01:25.0167 1696 iaStor - ok
00:01:25.0230 1696 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
00:01:25.0230 1696 IAStorDataMgrSvc - ok
00:01:25.0277 1696 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
00:01:25.0277 1696 iaStorV - ok
00:01:25.0323 1696 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:01:25.0355 1696 idsvc - ok
00:01:25.0620 1696 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
00:01:25.0698 1696 igfx - ok
00:01:25.0745 1696 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
00:01:25.0745 1696 iirsp - ok
00:01:25.0776 1696 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
00:01:25.0807 1696 IKEEXT - ok
00:01:25.0854 1696 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
00:01:25.0854 1696 Impcd - ok
00:01:25.0979 1696 [ 235362D403D9D677514649D88DB31914 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
00:01:25.0979 1696 IntcAzAudAddService - ok
00:01:26.0057 1696 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
00:01:26.0057 1696 IntcDAud - ok
00:01:26.0103 1696 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
00:01:26.0103 1696 intelide - ok
00:01:26.0150 1696 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:01:26.0150 1696 intelppm - ok
00:01:26.0181 1696 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:01:26.0181 1696 IPBusEnum - ok
00:01:26.0197 1696 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:01:26.0197 1696 IpFilterDriver - ok
00:01:26.0259 1696 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:01:26.0275 1696 iphlpsvc - ok
00:01:26.0275 1696 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
00:01:26.0275 1696 IPMIDRV - ok
00:01:26.0291 1696 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
00:01:26.0291 1696 IPNAT - ok
00:01:26.0322 1696 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:01:26.0322 1696 IRENUM - ok
00:01:26.0369 1696 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:01:26.0369 1696 isapnp - ok
00:01:26.0384 1696 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
00:01:26.0384 1696 iScsiPrt - ok
00:01:26.0415 1696 k57nd60a - ok
00:01:26.0431 1696 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:01:26.0431 1696 kbdclass - ok
00:01:26.0478 1696 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:01:26.0478 1696 kbdhid - ok
00:01:26.0509 1696 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
00:01:26.0509 1696 KeyIso - ok
00:01:26.0540 1696 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:01:26.0540 1696 KSecDD - ok
00:01:26.0571 1696 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
00:01:26.0571 1696 KSecPkg - ok
00:01:26.0587 1696 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
00:01:26.0587 1696 ksthunk - ok
00:01:26.0618 1696 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
00:01:26.0618 1696 KtmRm - ok
00:01:26.0665 1696 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
00:01:26.0665 1696 LanmanServer - ok
00:01:26.0712 1696 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:01:26.0727 1696 LanmanWorkstation - ok
00:01:26.0790 1696 [ 174803F2EEA3B22165DFE0E5A1F20685 ] LgBttPort C:\Windows\system32\DRIVERS\lgbtpt64.sys
00:01:26.0790 1696 LgBttPort - ok
00:01:26.0821 1696 [ 565F93BB7C0361E61B3DAEA670C354D6 ] lgbusenum C:\Windows\system32\DRIVERS\lgbtbs64.sys
00:01:26.0821 1696 lgbusenum - ok
00:01:26.0837 1696 [ ABF477857B7CED873362EC92C6CE10A7 ] LGVMODEM C:\Windows\system32\DRIVERS\lgvmdm64.sys
00:01:26.0837 1696 LGVMODEM - ok
00:01:26.0915 1696 [ B705C7097F9A0EC941D02DCE7C7D426C ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
00:01:26.0915 1696 Live Updater Service - ok
00:01:26.0961 1696 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:01:26.0961 1696 lltdio - ok
00:01:26.0993 1696 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:01:27.0008 1696 lltdsvc - ok
00:01:27.0039 1696 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
00:01:27.0039 1696 lmhosts - ok
00:01:27.0133 1696 [ 02468469C450CD16FB66A56FAB70138B ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
00:01:27.0133 1696 LMIGuardianSvc - ok
00:01:27.0195 1696 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
00:01:27.0195 1696 LMS - ok
00:01:27.0258 1696 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
00:01:27.0258 1696 LSI_FC - ok
00:01:27.0273 1696 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
00:01:27.0273 1696 LSI_SAS - ok
00:01:27.0289 1696 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
00:01:27.0289 1696 LSI_SAS2 - ok
00:01:27.0305 1696 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
00:01:27.0305 1696 LSI_SCSI - ok
00:01:27.0320 1696 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
00:01:27.0320 1696 luafv - ok
00:01:27.0351 1696 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
00:01:27.0367 1696 Mcx2Svc - ok
00:01:27.0367 1696 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
00:01:27.0367 1696 megasas - ok
00:01:27.0398 1696 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
00:01:27.0398 1696 MegaSR - ok
00:01:27.0414 1696 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
00:01:27.0429 1696 MMCSS - ok
00:01:27.0445 1696 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
00:01:27.0445 1696 Modem - ok
00:01:27.0476 1696 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:01:27.0476 1696 monitor - ok
00:01:27.0492 1696 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:01:27.0492 1696 mouclass - ok
00:01:27.0539 1696 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:01:27.0539 1696 mouhid - ok
00:01:27.0570 1696 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
00:01:27.0570 1696 mountmgr - ok
00:01:27.0663 1696 [ 5D494509432897338AFC19DB78A76DCB ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:01:27.0663 1696 MozillaMaintenance - ok
00:01:27.0679 1696 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
00:01:27.0679 1696 mpio - ok
00:01:27.0695 1696 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:01:27.0695 1696 mpsdrv - ok
00:01:27.0741 1696 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
00:01:27.0757 1696 MpsSvc - ok
00:01:27.0788 1696 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:01:27.0788 1696 MRxDAV - ok
00:01:27.0804 1696 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:01:27.0804 1696 mrxsmb - ok
00:01:27.0835 1696 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:01:27.0835 1696 mrxsmb10 - ok
00:01:27.0851 1696 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:01:27.0851 1696 mrxsmb20 - ok
00:01:27.0866 1696 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
00:01:27.0866 1696 msahci - ok
00:01:27.0882 1696 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:01:27.0882 1696 msdsm - ok
00:01:27.0913 1696 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
00:01:27.0913 1696 MSDTC - ok
00:01:27.0944 1696 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:01:27.0944 1696 Msfs - ok
00:01:27.0991 1696 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
00:01:27.0991 1696 mshidkmdf - ok
00:01:28.0007 1696 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:01:28.0007 1696 msisadrv - ok
00:01:28.0038 1696 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:01:28.0038 1696 MSiSCSI - ok
00:01:28.0038 1696 msiserver - ok
00:01:28.0069 1696 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:01:28.0069 1696 MSKSSRV - ok
00:01:28.0085 1696 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:01:28.0085 1696 MSPCLOCK - ok
00:01:28.0100 1696 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:01:28.0100 1696 MSPQM - ok
00:01:28.0116 1696 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:01:28.0131 1696 MsRPC - ok
00:01:28.0131 1696 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
00:01:28.0147 1696 mssmbios - ok
00:01:28.0147 1696 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:01:28.0147 1696 MSTEE - ok
00:01:28.0163 1696 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
00:01:28.0163 1696 MTConfig - ok
00:01:28.0178 1696 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
00:01:28.0178 1696 Mup - ok
00:01:28.0209 1696 [ C009123B206C56854F4E88596035231D ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
00:01:28.0209 1696 mwlPSDFilter - ok
00:01:28.0209 1696 [ BF3739EEB9F008B1DEBAC115089A53F8 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
00:01:28.0209 1696 mwlPSDNServ - ok
00:01:28.0225 1696 [ 38DD143D95E7A01B86F219DDA9C28779 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
00:01:28.0225 1696 mwlPSDVDisk - ok
00:01:28.0256 1696 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
00:01:28.0272 1696 napagent - ok
00:01:28.0350 1696 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:01:28.0350 1696 NativeWifiP - ok
00:01:28.0397 1696 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
00:01:28.0397 1696 NDIS - ok
00:01:28.0443 1696 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
00:01:28.0443 1696 NdisCap - ok
00:01:28.0490 1696 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:01:28.0490 1696 NdisTapi - ok
00:01:28.0537 1696 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:01:28.0537 1696 Ndisuio - ok
00:01:28.0553 1696 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:01:28.0553 1696 NdisWan - ok
00:01:28.0568 1696 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:01:28.0568 1696 NDProxy - ok
00:01:28.0599 1696 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:01:28.0599 1696 NetBIOS - ok
00:01:28.0615 1696 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
00:01:28.0615 1696 NetBT - ok
00:01:28.0646 1696 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
00:01:28.0646 1696 Netlogon - ok
00:01:28.0709 1696 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
00:01:28.0724 1696 Netman - ok
00:01:28.0771 1696 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:01:28.0787 1696 NetMsmqActivator - ok
00:01:28.0802 1696 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:01:28.0802 1696 NetPipeActivator - ok
00:01:28.0818 1696 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
00:01:28.0833 1696 netprofm - ok
00:01:28.0849 1696 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:01:28.0849 1696 NetTcpActivator - ok
00:01:28.0849 1696 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:01:28.0849 1696 NetTcpPortSharing - ok
00:01:28.0896 1696 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
00:01:28.0896 1696 nfrd960 - ok
00:01:28.0943 1696 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:01:28.0943 1696 NlaSvc - ok
00:01:28.0958 1696 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:01:28.0958 1696 Npfs - ok
00:01:28.0974 1696 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
00:01:28.0989 1696 nsi - ok
00:01:28.0989 1696 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:01:29.0005 1696 nsiproxy - ok
00:01:29.0067 1696 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:01:29.0067 1696 Ntfs - ok
00:01:29.0130 1696 [ 874C6BEB44845D56D5F6B01ABE409E9C ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
00:01:29.0145 1696 NTI IScheduleSvc - ok
00:01:29.0192 1696 [ EE3BA1024594D5D09E314F206B94069E ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
00:01:29.0192 1696 NTIDrvr - ok
00:01:29.0192 1696 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
00:01:29.0192 1696 Null - ok
00:01:29.0504 1696 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:01:29.0582 1696 nvlddmkm - ok
00:01:29.0613 1696 [ 918841B2454F4F2BD94479692079490B ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
00:01:29.0629 1696 nvpciflt - ok
00:01:29.0660 1696 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:01:29.0660 1696 nvraid - ok
00:01:29.0676 1696 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:01:29.0676 1696 nvstor - ok
00:01:29.0754 1696 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
00:01:29.0769 1696 nvsvc - ok
00:01:29.0863 1696 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
00:01:29.0879 1696 nvUpdatusService - ok
00:01:29.0925 1696 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:01:29.0925 1696 nv_agp - ok
00:01:29.0957 1696 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
00:01:29.0957 1696 ohci1394 - ok
00:01:29.0972 1696 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
00:01:29.0988 1696 p2pimsvc - ok
00:01:30.0003 1696 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
00:01:30.0019 1696 p2psvc - ok
00:01:30.0035 1696 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
00:01:30.0035 1696 Parport - ok
00:01:30.0066 1696 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:01:30.0066 1696 partmgr - ok
00:01:30.0081 1696 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
00:01:30.0081 1696 PcaSvc - ok
00:01:30.0097 1696 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
00:01:30.0097 1696 pci - ok
00:01:30.0128 1696 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
00:01:30.0128 1696 pciide - ok
00:01:30.0144 1696 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
00:01:30.0144 1696 pcmcia - ok
00:01:30.0159 1696 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
00:01:30.0175 1696 pcw - ok
00:01:30.0191 1696 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:01:30.0191 1696 PEAUTH - ok
00:01:30.0269 1696 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
00:01:30.0284 1696 PerfHost - ok
00:01:30.0331 1696 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
00:01:30.0362 1696 pla - ok
00:01:30.0409 1696 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:01:30.0425 1696 PlugPlay - ok
00:01:30.0471 1696 PnkBstrA - ok
00:01:30.0487 1696 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
00:01:30.0503 1696 PNRPAutoReg - ok
00:01:30.0518 1696 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
00:01:30.0518 1696 PNRPsvc - ok
00:01:30.0549 1696 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:01:30.0565 1696 PolicyAgent - ok
00:01:30.0581 1696 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
00:01:30.0581 1696 Power - ok
00:01:30.0627 1696 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:01:30.0627 1696 PptpMiniport - ok
00:01:30.0643 1696 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
00:01:30.0643 1696 Processor - ok
00:01:30.0674 1696 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
00:01:30.0674 1696 ProfSvc - ok
00:01:30.0690 1696 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:01:30.0690 1696 ProtectedStorage - ok
00:01:30.0705 1696 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
00:01:30.0705 1696 Psched - ok
00:01:30.0783 1696 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
00:01:30.0799 1696 ql2300 - ok
00:01:30.0815 1696 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
00:01:30.0815 1696 ql40xx - ok
00:01:30.0846 1696 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
00:01:30.0846 1696 QWAVE - ok
00:01:30.0861 1696 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:01:30.0861 1696 QWAVEdrv - ok
00:01:30.0877 1696 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:01:30.0877 1696 RasAcd - ok
00:01:30.0908 1696 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
00:01:30.0908 1696 RasAgileVpn - ok
00:01:30.0924 1696 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
00:01:30.0939 1696 RasAuto - ok
00:01:30.0955 1696 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:01:30.0955 1696 Rasl2tp - ok
00:01:31.0002 1696 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
00:01:31.0002 1696 RasMan - ok
00:01:31.0017 1696 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:01:31.0017 1696 RasPppoe - ok
00:01:31.0064 1696 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:01:31.0064 1696 RasSstp - ok
00:01:31.0080 1696 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:01:31.0080 1696 rdbss - ok
00:01:31.0095 1696 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
00:01:31.0095 1696 rdpbus - ok
00:01:31.0127 1696 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:01:31.0127 1696 RDPCDD - ok
00:01:31.0142 1696 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:01:31.0142 1696 RDPENCDD - ok
00:01:31.0158 1696 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
00:01:31.0173 1696 RDPREFMP - ok
00:01:31.0220 1696 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
00:01:31.0220 1696 RdpVideoMiniport - ok
00:01:31.0236 1696 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:01:31.0236 1696 RDPWD - ok
00:01:31.0283 1696 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
00:01:31.0298 1696 rdyboost - ok
00:01:31.0329 1696 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
00:01:31.0329 1696 RemoteAccess - ok
00:01:31.0345 1696 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:01:31.0361 1696 RemoteRegistry - ok
00:01:31.0376 1696 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
00:01:31.0392 1696 RpcEptMapper - ok
00:01:31.0407 1696 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
00:01:31.0407 1696 RpcLocator - ok
00:01:31.0439 1696 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
00:01:31.0439 1696 RpcSs - ok
00:01:31.0485 1696 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:01:31.0485 1696 rspndr - ok
00:01:31.0563 1696 [ 0E3DCF76F11DC431B088A2DFD7265CDA ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
00:01:31.0563 1696 RSUSBSTOR - ok
00:01:31.0579 1696 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
00:01:31.0579 1696 SamSs - ok
00:01:31.0595 1696 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:01:31.0595 1696 sbp2port - ok
00:01:31.0626 1696 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:01:31.0626 1696 SCardSvr - ok
00:01:31.0641 1696 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
00:01:31.0641 1696 scfilter - ok
00:01:31.0673 1696 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
00:01:31.0719 1696 Schedule - ok
00:01:31.0735 1696 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
00:01:31.0735 1696 SCPolicySvc - ok
00:01:31.0766 1696 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:01:31.0766 1696 SDRSVC - ok
00:01:31.0813 1696 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:01:31.0813 1696 secdrv - ok
00:01:31.0829 1696 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
00:01:31.0829 1696 seclogon - ok
00:01:31.0860 1696 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
00:01:31.0875 1696 SENS - ok
00:01:31.0875 1696 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
00:01:31.0891 1696 SensrSvc - ok
00:01:31.0891 1696 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
00:01:31.0891 1696 Serenum - ok
00:01:31.0938 1696 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
00:01:31.0938 1696 Serial - ok
00:01:31.0985 1696 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
00:01:31.0985 1696 sermouse - ok
00:01:32.0016 1696 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
00:01:32.0016 1696 SessionEnv - ok
00:01:32.0031 1696 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
00:01:32.0031 1696 sffdisk - ok
00:01:32.0047 1696 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:01:32.0047 1696 sffp_mmc - ok
00:01:32.0063 1696 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
00:01:32.0063 1696 sffp_sd - ok
00:01:32.0063 1696 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
00:01:32.0063 1696 sfloppy - ok
00:01:32.0094 1696 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:01:32.0094 1696 SharedAccess - ok
00:01:32.0125 1696 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:01:32.0125 1696 ShellHWDetection - ok
00:01:32.0172 1696 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
00:01:32.0172 1696 SiSRaid2 - ok
00:01:32.0187 1696 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
00:01:32.0203 1696 SiSRaid4 - ok
00:01:32.0343 1696 [ 9F712B26EE3B0242DE997A42FD302E2C ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
00:01:32.0359 1696 Skype C2C Service - ok
00:01:32.0484 1696 [ F5BBEDF602C310B00036EB2DBF4348A5 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
00:01:32.0484 1696 SkypeUpdate - ok
00:01:32.0515 1696 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:01:32.0515 1696 Smb - ok
00:01:32.0562 1696 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:01:32.0577 1696 SNMPTRAP - ok
00:01:32.0593 1696 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
00:01:32.0593 1696 spldr - ok
00:01:32.0624 1696 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
00:01:32.0640 1696 Spooler - ok
00:01:32.0702 1696 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
00:01:32.0733 1696 sppsvc - ok
00:01:32.0749 1696 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
00:01:32.0749 1696 sppuinotify - ok
00:01:32.0796 1696 [ AA90A319BB067E0D149B4C95608C4B05 ] sptd C:\Windows\system32\Drivers\sptd.sys
00:01:32.0811 1696 sptd - ok
00:01:32.0827 1696 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
00:01:32.0827 1696 srv - ok
00:01:32.0858 1696 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:01:32.0858 1696 srv2 - ok
00:01:32.0874 1696 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:01:32.0874 1696 srvnet - ok
00:01:32.0921 1696 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:01:32.0921 1696 SSDPSRV - ok
00:01:32.0936 1696 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:01:32.0952 1696 SstpSvc - ok
00:01:32.0967 1696 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys

[Delete]

00:01:32.0967 1696 stexstor - ok
00:01:33.0014 1696 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
00:01:33.0045 1696 stisvc - ok
00:01:33.0061 1696 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
00:01:33.0061 1696 swenum - ok
00:01:33.0092 1696 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
00:01:33.0108 1696 swprv - ok
00:01:33.0170 1696 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
00:01:33.0217 1696 SysMain - ok
00:01:33.0233 1696 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:01:33.0233 1696 TabletInputService - ok
00:01:33.0248 1696 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
00:01:33.0279 1696 TapiSrv - ok
00:01:33.0295 1696 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
00:01:33.0295 1696 TBS - ok
00:01:33.0389 1696 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:01:33.0389 1696 Tcpip - ok
00:01:33.0482 1696 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
00:01:33.0482 1696 TCPIP6 - ok
00:01:33.0513 1696 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:01:33.0529 1696 tcpipreg - ok
00:01:33.0545 1696 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:01:33.0545 1696 TDPIPE - ok
00:01:33.0576 1696 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:01:33.0576 1696 TDTCP - ok
00:01:33.0576 1696 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:01:33.0591 1696 tdx - ok
00:01:33.0607 1696 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
00:01:33.0607 1696 TermDD - ok
00:01:33.0638 1696 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
00:01:33.0669 1696 TermService - ok
00:01:33.0685 1696 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
00:01:33.0685 1696 Themes - ok
00:01:33.0701 1696 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
00:01:33.0701 1696 THREADORDER - ok
00:01:33.0716 1696 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
00:01:33.0732 1696 TrkWks - ok
00:01:33.0779 1696 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:01:33.0779 1696 TrustedInstaller - ok
00:01:33.0810 1696 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:01:33.0810 1696 tssecsrv - ok
00:01:33.0841 1696 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
00:01:33.0857 1696 TsUsbFlt - ok
00:01:33.0872 1696 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
00:01:33.0872 1696 TsUsbGD - ok
00:01:33.0935 1696 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:01:33.0935 1696 tunnel - ok
00:01:33.0950 1696 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
00:01:33.0950 1696 uagp35 - ok
00:01:33.0950 1696 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
00:01:33.0950 1696 UBHelper - ok
00:01:33.0981 1696 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:01:33.0981 1696 udfs - ok
00:01:34.0013 1696 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:01:34.0013 1696 UI0Detect - ok
00:01:34.0044 1696 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:01:34.0044 1696 uliagpkx - ok
00:01:34.0122 1696 [ 3B7E264485F361EA5A65FEEF89F2352F ] UltiDev Cassini Web Server for ASP.NET 2.0 C:\Program Files (x86)\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe
00:01:34.0122 1696 UltiDev Cassini Web Server for ASP.NET 2.0 - ok
00:01:34.0169 1696 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:01:34.0169 1696 umbus - ok
00:01:34.0184 1696 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
00:01:34.0184 1696 UmPass - ok
00:01:34.0309 1696 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
00:01:34.0325 1696 UNS - ok
00:01:34.0371 1696 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
00:01:34.0387 1696 upnphost - ok
00:01:34.0449 1696 [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
00:01:34.0449 1696 usbaudio - ok
00:01:34.0496 1696 [ E4EB7DD07EECA792A2982CE4622BE04B ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
00:01:34.0512 1696 usbbus - ok
00:01:34.0527 1696 [ ACCEA6BC68D0C9A78EB97EE159028B4E ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:01:34.0527 1696 usbccgp - ok
00:01:34.0574 1696 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:01:34.0574 1696 usbcir - ok
00:01:34.0590 1696 [ B4074DD520E0E66BD122D510EBF94468 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
00:01:34.0590 1696 UsbDiag - ok
00:01:34.0621 1696 [ 311C1DD1088E55BEAE15954D17F50646 ] usbehci C:\Windows\system32\drivers\usbehci.sys
00:01:34.0621 1696 usbehci - ok
00:01:34.0668 1696 [ 280E90CBF4B2DDD169F0728CB44D726F ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:01:34.0668 1696 usbhub - ok
00:01:34.0730 1696 [ 52870DDCF2AD4F8C451BA1C0CF3BF838 ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
00:01:34.0730 1696 USBModem - ok
00:01:34.0746 1696 [ 9406D801042FAF859CF81B2C886413DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
00:01:34.0746 1696 usbohci - ok
00:01:34.0777 1696 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
00:01:34.0777 1696 usbprint - ok
00:01:34.0793 1696 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:01:34.0793 1696 USBSTOR - ok
00:01:34.0808 1696 [ A83D0EC9AE4C31704442099D40BA2471 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
00:01:34.0808 1696 usbuhci - ok
00:01:34.0839 1696 [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
00:01:34.0839 1696 usbvideo - ok
00:01:34.0871 1696 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
00:01:34.0871 1696 UxSms - ok
00:01:34.0886 1696 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
00:01:34.0886 1696 VaultSvc - ok
00:01:34.0964 1696 [ 58E2365E7FD880624F648C63C5D22009 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
00:01:34.0964 1696 VBoxNetAdp - ok
00:01:34.0964 1696 VBoxNetFlt - ok
00:01:35.0011 1696 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
00:01:35.0011 1696 vdrvroot - ok
00:01:35.0058 1696 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
00:01:35.0073 1696 vds - ok
00:01:35.0089 1696 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:01:35.0089 1696 vga - ok
00:01:35.0105 1696 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
00:01:35.0105 1696 VgaSave - ok
00:01:35.0120 1696 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
00:01:35.0120 1696 vhdmp - ok
00:01:35.0151 1696 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
00:01:35.0151 1696 viaide - ok
00:01:35.0167 1696 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
00:01:35.0183 1696 volmgr - ok
00:01:35.0198 1696 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
00:01:35.0198 1696 volmgrx - ok
00:01:35.0229 1696 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
00:01:35.0229 1696 volsnap - ok
00:01:35.0261 1696 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
00:01:35.0276 1696 vsmraid - ok
00:01:35.0323 1696 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
00:01:35.0385 1696 VSS - ok
00:01:35.0401 1696 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
00:01:35.0401 1696 vwifibus - ok
00:01:35.0417 1696 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
00:01:35.0417 1696 vwififlt - ok
00:01:35.0432 1696 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
00:01:35.0448 1696 W32Time - ok
00:01:35.0463 1696 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
00:01:35.0463 1696 WacomPen - ok
00:01:35.0510 1696 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
00:01:35.0510 1696 WANARP - ok
00:01:35.0526 1696 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
00:01:35.0526 1696 Wanarpv6 - ok
00:01:35.0604 1696 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
00:01:35.0635 1696 WatAdminSvc - ok
00:01:35.0682 1696 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
00:01:35.0729 1696 wbengine - ok
00:01:35.0760 1696 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
00:01:35.0760 1696 WbioSrvc - ok
00:01:35.0775 1696 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
00:01:35.0791 1696 wcncsvc - ok
00:01:35.0807 1696 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:01:35.0807 1696 WcsPlugInService - ok
00:01:35.0822 1696 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
00:01:35.0822 1696 Wd - ok
00:01:35.0853 1696 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
00:01:35.0869 1696 Wdf01000 - ok
00:01:35.0885 1696 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
00:01:35.0885 1696 WdiServiceHost - ok
00:01:35.0885 1696 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
00:01:35.0900 1696 WdiSystemHost - ok
00:01:35.0994 1696 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
00:01:36.0009 1696 WebClient - ok
00:01:36.0041 1696 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
00:01:36.0056 1696 Wecsvc - ok
00:01:36.0056 1696 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
00:01:36.0072 1696 wercplsupport - ok
00:01:36.0103 1696 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
00:01:36.0103 1696 WerSvc - ok
00:01:36.0150 1696 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
00:01:36.0150 1696 WfpLwf - ok
00:01:36.0165 1696 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
00:01:36.0165 1696 WIMMount - ok
00:01:36.0181 1696 WinDefend - ok
00:01:36.0197 1696 WinHttpAutoProxySvc - ok
00:01:36.0259 1696 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
00:01:36.0259 1696 Winmgmt - ok
00:01:36.0321 1696 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
00:01:36.0399 1696 WinRM - ok
00:01:36.0462 1696 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
00:01:36.0493 1696 Wlansvc - ok
00:01:36.0571 1696 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:01:36.0571 1696 wlcrasvc - ok
00:01:36.0649 1696 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:01:36.0727 1696 wlidsvc - ok
00:01:36.0774 1696 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
00:01:36.0774 1696 WmiAcpi - ok
00:01:36.0789 1696 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
00:01:36.0805 1696 wmiApSrv - ok
00:01:36.0852 1696 WMPNetworkSvc - ok
00:01:36.0867 1696 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
00:01:36.0883 1696 WPCSvc - ok
00:01:36.0883 1696 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:01:36.0899 1696 WPDBusEnum - ok
00:01:36.0914 1696 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:01:36.0914 1696 ws2ifsl - ok
00:01:36.0930 1696 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
00:01:36.0945 1696 wscsvc - ok
00:01:36.0945 1696 WSearch - ok
00:01:37.0023 1696 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
00:01:37.0101 1696 wuauserv - ok
00:01:37.0117 1696 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
00:01:37.0117 1696 WudfPf - ok
00:01:37.0164 1696 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:01:37.0164 1696 WUDFRd - ok
00:01:37.0195 1696 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:01:37.0211 1696 wudfsvc - ok
00:01:37.0226 1696 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
00:01:37.0242 1696 WwanSvc - ok
00:01:37.0273 1696 ================ Scan global ===============================
00:01:37.0304 1696 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:01:37.0335 1696 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
00:01:37.0351 1696 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
00:01:37.0367 1696 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:01:37.0398 1696 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:01:37.0398 1696 [Global] - ok
00:01:37.0398 1696 ================ Scan MBR ==================================
00:01:37.0413 1696 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:01:37.0694 1696 \Device\Harddisk0\DR0 - ok
00:01:37.0694 1696 ================ Scan VBR ==================================
00:01:37.0694 1696 [ 5594DA78DF8A50B667457DE72F11B919 ] \Device\Harddisk0\DR0\Partition1
00:01:37.0694 1696 \Device\Harddisk0\DR0\Partition1 - ok
00:01:37.0710 1696 [ EEB8B4D544B0F71EBBEF2147CB3B45A0 ] \Device\Harddisk0\DR0\Partition2
00:01:37.0710 1696 \Device\Harddisk0\DR0\Partition2 - ok
00:01:37.0710 1696 ============================================================
00:01:37.0710 1696 Scan finished
00:01:37.0710 1696 ============================================================
00:01:37.0725 1112 Detected object count: 0
00:01:37.0725 1112 Actual detected object count: 0

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Delete]

Ahoj jak mám vypnout ten antispywar ?? fireval a antivir mám vyplej ..