log HJT - virus

[Fucza]

Zdravm. Prosm moc o kontrolu, napriklad nepise diakritiku a po stlaceni diakriticke klavesy spusti jinou akci. NAvic jsem si vsiml, ze se divne chova kurzor, viz screenshoty. Dale me trapi "prazdne" soubory, ktere zustaly na plose a nejdou odstranit (ani minule combofix to neodstranil, i kdyz pri praci psal, ze to maze). Moc diky. Napriklad pri stisknuti klavesy enter se otevre Media player ci co to je.Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:15:57, on 26.11.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.17267)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\SMART Technologies\Education Software\FloatingTools.exe
C:\Program Files (x86)\SMART Technologies\Education Software\SMARTNotification.exe
C:\Program Files (x86)\SMART Technologies\Education Software\SMARTTrayIcon.exe
C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardService.exe
C:\Program Files (x86)\SMART Technologies\Education Software\SMARTInk.exe
C:\Program Files (x86)\SMART Technologies\Education Software\sbsdk-server\SBWDKService.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\SMART Technologies\Education Software\Office\SMARTInk-SBSDKProxy.exe
C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
C:\Program Files (x86)\SMART Technologies\Education Software\SMARTInkPrivilegedAccess.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
C:\Programy\Trend Micro\HiJackThis\HiJackThis.exe
C:\windows\SysWOW64\DllHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: SMART Notebook Download Utility - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files (x86)\SMART Technologies\Education Software\NotebookPlugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SMART Floating Tools] "C:\Program Files (x86)\SMART Technologies\Education Software\FloatingTools.exe"
O4 - HKLM\..\Run: [SMARTNotification] "C:\Program Files (x86)\SMART Technologies\Education Software\SMARTNotification.exe"
O4 - HKLM\..\Run: [SMART Tray Tools] "C:\Program Files (x86)\SMART Technologies\Education Software\SMARTTrayIcon.exe"
O4 - HKLM\..\Run: [SMART Board Service] "C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardService.exe" -d
O4 - HKLM\..\Run: [sbsdk-server] "C:\Program Files (x86)\SMART Technologies\Education Software\sbsdk-server\NodeLauncher.exe"
O4 - HKLM\..\Run: [SMART Ink] "C:\Program Files (x86)\SMART Technologies\Education Software\SMARTInk.exe" -a
O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Device Manager - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
O23 - Service: Bluetooth Media Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\audiosrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\obexsrv.exe
O23 - Service: DEBridge - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SMART Helper Service (SMARTHelperService) - SMART Technologies - C:\Program Files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14166 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Fucza]

Zapoměl jsem připojit screenshoty s divným chováním kurzoru. Zde jsou:

v1.jpg (1.87 KiB) Zobrazeno 308 x

v2.jpg (6.59 KiB) Zobrazeno 308 x

Je to divné. Připomělo mi to několik let starou záhadu ve wordu, když jsem omylem zmáčkl klávesu "insert":-)

Zde jsou ty logy. Podaří se soubory z plochy odstranit? Prozatím moc díky.

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.11.27.07

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Martin :: MARTIN-HP [administrátor]

27.11.2013 16:59:35
mbam-log-2013-11-27 (16-59-35).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 212667
Uplynulý čas: 4 minut, 9 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)


-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

# AdwCleaner v3.013 - Report created 27/11/2013 at 17:04:36
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : Martin - MARTIN-HP
# Running from : C:\Users\Martin\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\windows\System32\Tasks\Your File Updater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.17267


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\14ydu06m.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1581 octets] - [16/09/2013 17:38:28]
AdwCleaner[R1].txt - [1641 octets] - [16/09/2013 21:00:55]
AdwCleaner[R2].txt - [939 octets] - [16/09/2013 21:18:13]
AdwCleaner[R3].txt - [1114 octets] - [27/11/2013 17:04:36]
AdwCleaner[S0].txt - [1687 octets] - [16/09/2013 21:01:42]
AdwCleaner[S1].txt - [999 octets] - [16/09/2013 21:19:12]

########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [1293 octets] ##########

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Fucza]

Zde jsou požadované logy. Díky.


# AdwCleaner v3.013 - Report created 27/11/2013 at 17:35:22
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : Martin - MARTIN-HP
# Running from : C:\Users\Martin\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

File Deleted : C:\windows\System32\Tasks\Your File Updater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.17267


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\14ydu06m.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1581 octets] - [16/09/2013 17:38:28]
AdwCleaner[R1].txt - [1641 octets] - [16/09/2013 21:00:55]
AdwCleaner[R2].txt - [939 octets] - [16/09/2013 21:18:13]
AdwCleaner[R3].txt - [1373 octets] - [27/11/2013 17:04:36]
AdwCleaner[R4].txt - [1433 octets] - [27/11/2013 17:34:35]
AdwCleaner[S0].txt - [1687 octets] - [16/09/2013 21:01:42]
AdwCleaner[S1].txt - [999 octets] - [16/09/2013 21:19:12]
AdwCleaner[S2].txt - [1364 octets] - [27/11/2013 17:35:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1424 octets] ##########
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Martin on st 27.11.2013 at 17:42:50,30
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\14ydu06m.default\minidumps [7 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 27.11.2013 at 17:49:52,65
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
RogueKiller V8.7.9 _x64_ [Nov 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Kontrola -- Datum : 11/27/2013 17:53:59
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 6 ¤¤¤
[Administrator][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] -> NALEZENO
[All Users][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\All Users\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] -> NALEZENO
[Default][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] -> NALEZENO
[Default User][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] -> NALEZENO
[desktop.ini][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\desktop.ini\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] -> NALEZENO
[Public][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Public\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] -> NALEZENO

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000BPVT-00HXZT1 +++++
--- User ---
[MBR] d40f084ed81a9db0854c5ab93bc73e08
[BSP] cd27ed3eb96aab5c994ff939e1f9cca6 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 459235 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 941129728 | Size: 15360 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 972587008 | Size: 2043 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_11272013_175359.txt >>

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[Fucza]

Zdravím. Zde jsou požadované logy. Moc díky.

RogueKiller V8.7.9 _x64_ [Nov 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Odebrat -- Datum : 11/28/2013 19:55:23
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> [0x2] Systém nemůže nalézt uvedený soubor.

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 6 ¤¤¤
[Administrator][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] ->
[All Users][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\All Users\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] ->
[Default][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] ->
[Default User][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] ->
[desktop.ini][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\desktop.ini\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] ->
[Public][SUSP UNIC] HP_TOOLS (E) ??� zástupce.lnk : C:\Users\Public\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP_TOOLS (E) ??� zástupce.lnk [x] ->

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000BPVT-00HXZT1 +++++
--- User ---
[MBR] d40f084ed81a9db0854c5ab93bc73e08
[BSP] cd27ed3eb96aab5c994ff939e1f9cca6 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 459235 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 941129728 | Size: 15360 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 972587008 | Size: 2043 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_11282013_195523.txt >>
RKreport[0]_S_11272013_175359.txt;RKreport[0]_S_11282013_195456.txt



------------------------------------------------------------------------------------------------------------------------------------------------------------------------

19:59:04.0910 0x2658 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
19:59:12.0342 0x2658 ============================================================
19:59:12.0342 0x2658 Current date / time: 2013/11/28 19:59:12.0342
19:59:12.0342 0x2658 SystemInfo:
19:59:12.0342 0x2658
19:59:12.0342 0x2658 OS Version: 6.1.7600 ServicePack: 0.0
19:59:12.0342 0x2658 Product type: Workstation
19:59:12.0342 0x2658 ComputerName: MARTIN-HP
19:59:12.0342 0x2658 UserName: Martin
19:59:12.0342 0x2658 Windows directory: C:\windows
19:59:12.0342 0x2658 System windows directory: C:\windows
19:59:12.0342 0x2658 Running under WOW64
19:59:12.0342 0x2658 Processor architecture: Intel x64
19:59:12.0342 0x2658 Number of processors: 4
19:59:12.0342 0x2658 Page size: 0x1000
19:59:12.0342 0x2658 Boot type: Normal boot
19:59:12.0342 0x2658 ============================================================
19:59:12.0639 0x2658 KLMD registered as C:\windows\system32\drivers\97385667.sys
19:59:12.0900 0x2658 System UUID: {93CC7E60-3AAE-DF18-A23B-235E12A61562}
19:59:13.0412 0x2658 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:59:13.0420 0x2658 ============================================================
19:59:13.0421 0x2658 \Device\Harddisk0\DR0:
19:59:13.0421 0x2658 MBR partitions:
19:59:13.0421 0x2658 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
19:59:13.0421 0x2658 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x380F1800
19:59:13.0421 0x2658 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38188000, BlocksNum 0x1E00000
19:59:13.0421 0x2658 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x39F88000, BlocksNum 0x3FD800
19:59:13.0421 0x2658 ============================================================
19:59:13.0466 0x2658 C: <-> \Device\Harddisk0\DR0\Partition2
19:59:13.0491 0x2658 E: <-> \Device\Harddisk0\DR0\Partition4
19:59:13.0492 0x2658 ============================================================
19:59:13.0492 0x2658 Initialize success
19:59:13.0492 0x2658 ============================================================
19:59:15.0924 0x0bf4 ============================================================
19:59:15.0924 0x0bf4 Scan started
19:59:15.0924 0x0bf4 Mode: Manual;
19:59:15.0924 0x0bf4 ============================================================
19:59:15.0924 0x0bf4 KSN ping started
19:59:29.0614 0x0bf4 KSN ping finished: true
19:59:29.0814 0x0bf4 ================ Scan system memory ========================
19:59:29.0814 0x0bf4 System memory - ok
19:59:29.0815 0x0bf4 ================ Scan services =============================
19:59:30.0055 0x0bf4 [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] 1394ohci C:\windows\system32\DRIVERS\1394ohci.sys
19:59:30.0064 0x0bf4 1394ohci - ok
19:59:30.0141 0x0bf4 [ 1CFFE9C06E66A57DAE1452E449A58240, F337852EEF9DCF33FB1B85EEF61FA8D28A780B13488B144DFAD2234FC24CB430 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
19:59:30.0143 0x0bf4 Accelerometer - ok
19:59:30.0242 0x0bf4 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
19:59:30.0247 0x0bf4 ACDaemon - ok
19:59:30.0303 0x0bf4 [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI C:\windows\system32\DRIVERS\ACPI.sys
19:59:30.0313 0x0bf4 ACPI - ok
19:59:30.0343 0x0bf4 [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi C:\windows\system32\DRIVERS\acpipmi.sys
19:59:30.0344 0x0bf4 AcpiPmi - ok
19:59:30.0740 0x0bf4 [ 438F31336B3DC248ABC632F1C8F34A24, 94C1218E7EC2EC6D4870A6FDC118097D7D3A359DA073DCD3A9770F399F830991 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:59:30.0751 0x0bf4 AdobeFlashPlayerUpdateSvc - ok
19:59:30.0812 0x0bf4 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
19:59:30.0828 0x0bf4 adp94xx - ok
19:59:30.0872 0x0bf4 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
19:59:30.0878 0x0bf4 adpahci - ok
19:59:30.0893 0x0bf4 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
19:59:30.0896 0x0bf4 adpu320 - ok
19:59:30.0935 0x0bf4 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
19:59:30.0937 0x0bf4 AeLookupSvc - ok
19:59:31.0104 0x0bf4 [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
19:59:31.0108 0x0bf4 AESTFilters - ok
19:59:31.0164 0x0bf4 [ 6CCD1135320109D6B219F1A6E04AD9F6, B97D4DF46DF0EFC106BD3E248C70809F3F47DF3FD1CA039A0A3923E1FA05A969 ] Afc C:\windows\syswow64\drivers\Afc.sys
19:59:31.0197 0x0bf4 Afc - ok
19:59:31.0275 0x0bf4 [ DB9D6C6B2CD95A9CA414D045B627422E, A4A0B2ACBFE311C20EF9F06A49DBE02CE90433C2364B292F6E8F78F6C274DF88 ] AFD C:\windows\system32\drivers\afd.sys
19:59:31.0291 0x0bf4 AFD - ok
19:59:31.0433 0x0bf4 [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
19:59:31.0455 0x0bf4 AgereSoftModem - ok
19:59:31.0527 0x0bf4 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\windows\system32\DRIVERS\agp440.sys
19:59:31.0529 0x0bf4 agp440 - ok
19:59:31.0553 0x0bf4 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe
19:59:31.0557 0x0bf4 ALG - ok
19:59:31.0598 0x0bf4 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\DRIVERS\aliide.sys
19:59:31.0600 0x0bf4 aliide - ok
19:59:31.0710 0x0bf4 [ 5A06AB7AB4D389DFE3C109599DF0BB65, 317AA0BD3319C67339EE7E7B15E2C176E9E85480C84728571D8F1690F8A0844B ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
19:59:31.0718 0x0bf4 AMD External Events Utility - ok
19:59:31.0768 0x0bf4 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\DRIVERS\amdide.sys
19:59:31.0768 0x0bf4 amdide - ok
19:59:31.0815 0x0bf4 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
19:59:31.0818 0x0bf4 AmdK8 - ok
19:59:32.0249 0x0bf4 [ 650DDCCD6657E20737433CB774521B81, 0D38128D1C71070CB697130C9186610D41D2912CD472AEFACA9E641DF0FC1DDF ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
19:59:32.0360 0x0bf4 amdkmdag - ok
19:59:32.0405 0x0bf4 [ F51B013C55B30DBE3AD59A7FE197C5BA, 3BED69D56FC6AB7A294FB8C322E0E9F454BA91E8FB6CDC2C36DD7F9FEBEAB95F ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
19:59:32.0410 0x0bf4 amdkmdap - ok
19:59:32.0443 0x0bf4 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
19:59:32.0444 0x0bf4 AmdPPM - ok
19:59:32.0509 0x0bf4 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9, 786B30C86FA7FEC6BA2569FF818044AA0F7C134693304ED0FF7BD0541F9A755F ] amdsata C:\windows\system32\drivers\amdsata.sys
19:59:32.0514 0x0bf4 amdsata - ok
19:59:32.0532 0x0bf4 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
19:59:32.0538 0x0bf4 amdsbs - ok
19:59:32.0555 0x0bf4 [ DB27766102C7BF7E95140A2AA81D042E, 489F812B596EA06E53D891CD05047AA17CDF752854BBD553BA65D10799AF78DF ] amdxata C:\windows\system32\drivers\amdxata.sys
19:59:32.0556 0x0bf4 amdxata - ok
19:59:32.0586 0x0bf4 [ 42FD751B27FA0E9C69BB39F39E409594, DE349CAA570957868CA1CB0BE0FAF551CD4D44FD53EBC4391B9C1C7B9CF295D2 ] AppID C:\windows\system32\drivers\appid.sys
19:59:32.0588 0x0bf4 AppID - ok
19:59:32.0609 0x0bf4 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\windows\System32\appidsvc.dll
19:59:32.0610 0x0bf4 AppIDSvc - ok
19:59:32.0631 0x0bf4 [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo C:\windows\System32\appinfo.dll
19:59:32.0634 0x0bf4 Appinfo - ok
19:59:32.0666 0x0bf4 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\DRIVERS\arc.sys
19:59:32.0669 0x0bf4 arc - ok
19:59:32.0681 0x0bf4 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
19:59:32.0684 0x0bf4 arcsas - ok
19:59:32.0717 0x0bf4 [ CE2168C926927BA926301BAF172BC693, FC3DFCD5390DD3E80211E09177C762B7F8B2565A9A663D764AED8C6B4EAAA3C9 ] ARCVCAM C:\windows\system32\DRIVERS\ArcSoftVCapture.sys
19:59:32.0718 0x0bf4 ARCVCAM - ok
19:59:32.0828 0x0bf4 [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:59:32.0851 0x0bf4 aspnet_state - ok
19:59:32.0891 0x0bf4 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
19:59:32.0893 0x0bf4 AsyncMac - ok
19:59:32.0925 0x0bf4 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\DRIVERS\atapi.sys
19:59:32.0926 0x0bf4 atapi - ok
19:59:32.0999 0x0bf4 [ 2D648572BA9A610952FCAFBA1E119C2D, 4CD7E7D3C878DEF8CC18A925EAB1E0E8E8893BE99DA1E1F78FE9AD12EF1C48BC ] AtiHdmiService C:\windows\system32\drivers\AtiHdmi.sys
19:59:33.0004 0x0bf4 AtiHdmiService - ok
19:59:33.0085 0x0bf4 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
19:59:33.0112 0x0bf4 AudioEndpointBuilder - ok
19:59:33.0141 0x0bf4 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioSrv C:\windows\System32\Audiosrv.dll
19:59:33.0155 0x0bf4 AudioSrv - ok
19:59:33.0182 0x0bf4 [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV C:\windows\System32\AxInstSV.dll
19:59:33.0186 0x0bf4 AxInstSV - ok
19:59:33.0249 0x0bf4 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
19:59:33.0262 0x0bf4 b06bdrv - ok
19:59:33.0307 0x0bf4 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
19:59:33.0313 0x0bf4 b57nd60a - ok
19:59:33.0343 0x0bf4 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll
19:59:33.0347 0x0bf4 BDESVC - ok
19:59:33.0364 0x0bf4 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys
19:59:33.0365 0x0bf4 Beep - ok
19:59:33.0416 0x0bf4 [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] BFE C:\windows\System32\bfe.dll
19:59:33.0451 0x0bf4 BFE - ok
19:59:33.0504 0x0bf4 [ 7F0C323FE3DA28AA4AA1BDA3F575707F, 7FF09CBC16A9E5F357A76FF79A3F0DD047957D474031F51A6BB4916C7911F005 ] BITS C:\windows\System32\qmgr.dll
19:59:33.0538 0x0bf4 BITS - ok
19:59:33.0582 0x0bf4 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
19:59:33.0584 0x0bf4 blbdrive - ok
19:59:33.0806 0x0bf4 [ 2BBD2AB07D779278114BA6A694972F1A, 8E16856679AE4C25DA14CCFB8A93D5CA54E575D99D71A7D86CA47C85E73F5EF1 ] Bluetooth Device Manager C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
19:59:33.0873 0x0bf4 Bluetooth Device Manager - ok
19:59:33.0931 0x0bf4 [ 87D6A02028E47CA696C4294C658E3EE6, ADFB4C5BD98C5642C4C94D38F22606C4316EBEBA9A81D86F8B2AFB75E66DE58D ] Bluetooth Media Service C:\Program Files\Motorola\Bluetooth\audiosrv.exe
19:59:33.0951 0x0bf4 Bluetooth Media Service - ok
19:59:33.0971 0x0bf4 [ 9AF4B2CF2F98CF6157CDFD917AE5785B, 5E2D31FA0C08FF181FF4B763555DFBA91806F09564FF2CB3089B3CDB59FC9DB6 ] Bluetooth OBEX Service C:\Program Files\Motorola\Bluetooth\obexsrv.exe
19:59:33.0982 0x0bf4 Bluetooth OBEX Service - ok
19:59:34.0030 0x0bf4 [ 19D20159708E152267E53B66677A4995, 6401FA5C3EFF26BED075FEC68F868CD8D0598FDB45EA9381810615F7252F7A9A ] bowser C:\windows\system32\DRIVERS\bowser.sys
19:59:34.0032 0x0bf4 bowser - ok
19:59:34.0059 0x0bf4 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
19:59:34.0060 0x0bf4 BrFiltLo - ok
19:59:34.0073 0x0bf4 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
19:59:34.0074 0x0bf4 BrFiltUp - ok
19:59:34.0107 0x0bf4 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
19:59:34.0111 0x0bf4 BridgeMP - ok
19:59:34.0205 0x0bf4 [ 6B054C67AAA87843504E8E3C09102009, 284AA58625FBDBFECB851A35407331B40BAEC141F2DCEDB9F15733BAB22F5C81 ] Browser C:\windows\System32\browser.dll
19:59:34.0212 0x0bf4 Browser - ok
19:59:34.0242 0x0bf4 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys
19:59:34.0252 0x0bf4 Brserid - ok
19:59:34.0273 0x0bf4 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
19:59:34.0275 0x0bf4 BrSerWdm - ok
19:59:34.0288 0x0bf4 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
19:59:34.0289 0x0bf4 BrUsbMdm - ok
19:59:34.0300 0x0bf4 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
19:59:34.0301 0x0bf4 BrUsbSer - ok
19:59:34.0332 0x0bf4 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
19:59:34.0333 0x0bf4 BthEnum - ok
19:59:34.0353 0x0bf4 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
19:59:34.0355 0x0bf4 BTHMODEM - ok
19:59:34.0388 0x0bf4 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
19:59:34.0391 0x0bf4 BthPan - ok
19:59:34.0420 0x0bf4 [ E10D1912634974EA273A1588C75CCB76, C011DA7691AE4227230891460E1F89674C0CCD37D6498B776CC86119C552281B ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
19:59:34.0430 0x0bf4 BTHPORT - ok
19:59:34.0474 0x0bf4 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll
19:59:34.0478 0x0bf4 bthserv - ok
19:59:34.0512 0x0bf4 [ 19B784B6ECBB3ADBB2242700FEE90BEC, AE5C727506A344C5C2059C89D1D3020F4C5398FD08E31DF9C434B7A2E91915A5 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
19:59:34.0513 0x0bf4 BTHUSB - ok
19:59:34.0561 0x0bf4 [ E588420B950DAC5AC397F76660BCE520, C688FDFBCED77624C36684521C03C966AC73D6A55355568B9767D4831F986C6B ] BTMCOM C:\windows\system32\Drivers\btmcom.sys
19:59:34.0563 0x0bf4 BTMCOM - ok
19:59:34.0709 0x0bf4 [ 4EEF6B894E05FC245640DCEE9190A053, 01EE6D9B3D97DB447ACF2A6A4D65C6F50E40015F916092EC69941B85A71A3787 ] BTMUSB C:\windows\system32\Drivers\btmusb.sys
19:59:34.0761 0x0bf4 BTMUSB - ok
19:59:34.0797 0x0bf4 catchme - ok
19:59:34.0819 0x0bf4 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
19:59:34.0821 0x0bf4 cdfs - ok
19:59:34.0856 0x0bf4 [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
19:59:34.0859 0x0bf4 cdrom - ok
19:59:34.0901 0x0bf4 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc C:\windows\System32\certprop.dll
19:59:34.0904 0x0bf4 CertPropSvc - ok
19:59:34.0933 0x0bf4 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\DRIVERS\circlass.sys
19:59:34.0936 0x0bf4 circlass - ok
19:59:34.0964 0x0bf4 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\windows\system32\CLFS.sys
19:59:34.0972 0x0bf4 CLFS - ok
19:59:35.0043 0x0bf4 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:59:35.0047 0x0bf4 clr_optimization_v2.0.50727_32 - ok
19:59:35.0076 0x0bf4 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:59:35.0084 0x0bf4 clr_optimization_v2.0.50727_64 - ok
19:59:35.0162 0x0bf4 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:59:35.0416 0x0bf4 clr_optimization_v4.0.30319_32 - ok
19:59:35.0458 0x0bf4 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:59:35.0464 0x0bf4 clr_optimization_v4.0.30319_64 - ok
19:59:35.0523 0x0bf4 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
19:59:35.0524 0x0bf4 CmBatt - ok
19:59:35.0591 0x0bf4 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\DRIVERS\cmdide.sys
19:59:35.0592 0x0bf4 cmdide - ok
19:59:35.0751 0x0bf4 [ CA7720B73446FDDEC5C69519C1174C98, F24796765587CC1D653A04783B1659564F42E600DA3AFA3DED724592B291D033 ] CNG C:\windows\system32\Drivers\cng.sys
19:59:35.0767 0x0bf4 CNG - ok
19:59:35.0826 0x0bf4 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
19:59:35.0827 0x0bf4 Compbatt - ok
19:59:35.0853 0x0bf4 [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
19:59:35.0855 0x0bf4 CompositeBus - ok
19:59:35.0866 0x0bf4 COMSysApp - ok
19:59:35.0907 0x0bf4 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
19:59:35.0909 0x0bf4 crcdisk - ok
19:59:35.0962 0x0bf4 [ BAF19B633933A9FB4883D27D66C39E9A, 2D8ABB5161736CCCADA67B3E6A8D70B0B5E1E3FE6084561891F394DA191B3439 ] CryptSvc C:\windows\system32\cryptsvc.dll
19:59:35.0970 0x0bf4 CryptSvc - ok
19:59:35.0998 0x0bf4 [ A8BA4DA23AC20BDA23CA15234D42A3FA, 951C59CD83F7D931EFE68CC950602834187E2225B11261C92F9E0DC0A6F5F544 ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
19:59:36.0000 0x0bf4 DAMDrv - ok
19:59:36.0067 0x0bf4 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch C:\windows\system32\rpcss.dll
19:59:36.0093 0x0bf4 DcomLaunch - ok
19:59:36.0190 0x0bf4 [ 0FD1090009949C58C86B40DD705D0F5D, C3B9B10A53B4D9678D7C71562BF3EAC3ED9293B5857D7266811C66B35907D747 ] DEBridge c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
19:59:36.0210 0x0bf4 DEBridge - ok
19:59:36.0243 0x0bf4 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll
19:59:36.0251 0x0bf4 defragsvc - ok
19:59:36.0278 0x0bf4 [ 9C253CE7311CA60FC11C774692A13208, 23507138576DB75AA8B7415140F7B5D8A90CB2661796223870461C721A36AEBF ] DfsC C:\windows\system32\Drivers\dfsc.sys
19:59:36.0280 0x0bf4 DfsC - ok
19:59:36.0305 0x0bf4 [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp C:\windows\system32\dhcpcore.dll
19:59:36.0313 0x0bf4 Dhcp - ok
19:59:36.0360 0x0bf4 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys
19:59:36.0362 0x0bf4 discache - ok
19:59:36.0428 0x0bf4 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\windows\system32\DRIVERS\disk.sys
19:59:36.0431 0x0bf4 Disk - ok
19:59:36.0478 0x0bf4 [ 85CF424C74A1D5EC33533E1DBFF9920A, 882D5FA0D5EC053D76A0C46A6047A621D607651693CF94E5506219EECCC8D079 ] Dnscache C:\windows\System32\dnsrslvr.dll
19:59:36.0486 0x0bf4 Dnscache - ok
19:59:36.0501 0x0bf4 DolBoot - ok
19:59:36.0531 0x0bf4 [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc C:\windows\System32\dot3svc.dll
19:59:36.0542 0x0bf4 dot3svc - ok
19:59:36.0617 0x0bf4 [ EF8004B4A9552C77FD0E99AB08841D13, B3C4F70BCC4148A766585997AE56871EBF9912CFD997ED22D73D5BCE3A27D37F ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
19:59:36.0636 0x0bf4 DpHost - ok
19:59:36.0654 0x0bf4 [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS C:\windows\system32\dps.dll
19:59:36.0659 0x0bf4 DPS - ok
19:59:36.0691 0x0bf4 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
19:59:36.0692 0x0bf4 drmkaud - ok
19:59:36.0791 0x0bf4 [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\windows\system32\DRIVERS\dtsoftbus01.sys
19:59:36.0802 0x0bf4 dtsoftbus01 - ok
19:59:36.0874 0x0bf4 [ 1633B9ABF52784A1331476397A48CBEF, 697780697C4C55FCCF5FB65C93FB37B3F5A43BF0C59FDBB9EF822D0E993E47BD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
19:59:36.0896 0x0bf4 DXGKrnl - ok
19:59:36.0956 0x0bf4 [ D00EAE9C735A7DEE8049E50D73D25434, 26F17401C8255F590885442424171CA906DFEF9DBC34B6D9AC5F53B6F16C52BF ] eamonm C:\windows\system32\DRIVERS\eamonm.sys
19:59:36.0965 0x0bf4 eamonm - ok
19:59:37.0010 0x0bf4 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll
19:59:37.0016 0x0bf4 EapHost - ok
19:59:37.0151 0x0bf4 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
19:59:37.0204 0x0bf4 ebdrv - ok
19:59:37.0235 0x0bf4 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] EFS C:\windows\System32\lsass.exe
19:59:37.0236 0x0bf4 EFS - ok
19:59:37.0268 0x0bf4 [ E5EDDE3C8158DD0CBC5812F201DCDED0, F9F429EAE7C20BD7E12F2DD414127502358F5D751DCEFCE74C2695E4157C2AA6 ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys
19:59:37.0271 0x0bf4 ehdrv - ok
19:59:37.0362 0x0bf4 [ 47C071994C3F649F23D9CD075AC9304A, B7AA2DD6AD14F18A19620F5FB79D50C630D3750E72DD67BF8D105CC4F5CE1D46 ] ehRecvr C:\windows\ehome\ehRecvr.exe
19:59:37.0394 0x0bf4 ehRecvr - ok
19:59:37.0419 0x0bf4 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe
19:59:37.0423 0x0bf4 ehSched - ok
19:59:37.0536 0x0bf4 [ AD4FAADE819E0DA9933BEA7C01D2C763, C29A9FEF45AA7B9D80C545715006C0EDA4729D4E50BB400136619459601449EA ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
19:59:37.0558 0x0bf4 ekrn - ok
19:59:37.0624 0x0bf4 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
19:59:37.0641 0x0bf4 elxstor - ok
19:59:37.0691 0x0bf4 [ 3EBB7FD3C605262B942868A1D840F4F1, 80C365C1E04C95E0EF15FC97ADFBF78B055E222172A7FC103774010640F50582 ] epfwwfpr C:\windows\system32\DRIVERS\epfwwfpr.sys
19:59:37.0695 0x0bf4 epfwwfpr - ok
19:59:37.0715 0x0bf4 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\windows\system32\DRIVERS\errdev.sys
19:59:37.0716 0x0bf4 ErrDev - ok
19:59:37.0775 0x0bf4 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll
19:59:37.0784 0x0bf4 EventSystem - ok
19:59:37.0816 0x0bf4 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\windows\system32\drivers\exfat.sys
19:59:37.0820 0x0bf4 exfat - ok
19:59:37.0839 0x0bf4 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\windows\system32\drivers\fastfat.sys
19:59:37.0843 0x0bf4 fastfat - ok
19:59:37.0916 0x0bf4 [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax C:\windows\system32\fxssvc.exe
19:59:37.0981 0x0bf4 Fax - ok
19:59:38.0011 0x0bf4 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\DRIVERS\fdc.sys
19:59:38.0012 0x0bf4 fdc - ok
19:59:38.0045 0x0bf4 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll
19:59:38.0046 0x0bf4 fdPHost - ok
19:59:38.0062 0x0bf4 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll
19:59:38.0064 0x0bf4 FDResPub - ok
19:59:38.0084 0x0bf4 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys
19:59:38.0086 0x0bf4 FileInfo - ok
19:59:38.0100 0x0bf4 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys
19:59:38.0101 0x0bf4 Filetrace - ok
19:59:38.0212 0x0bf4 [ 7E728680AA428506A82351D859C32C95, 20C5FC186E6779E88BFA6E18B98B3728AFA274BF105E9210A30FA647885F57B5 ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
19:59:38.0233 0x0bf4 FLCDLOCK - ok
19:59:38.0387 0x0bf4 [ DFADECE1B66095F3F247ACC0EBDC5F8D, 65D8CCCE382554A4DD197AFC323D591B3D0B1C4BF13134ED6A09C9CB843E061F ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:59:38.0423 0x0bf4 FLEXnet Licensing Service - ok
19:59:38.0516 0x0bf4 [ 52C0312AB35EB7187015FB6A99136BB5, 54A45B0BF8108D018C86FD0542DA92E7A6F58CDB92C9E3674E115CD770031732 ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
19:59:38.0538 0x0bf4 FLEXnet Licensing Service 64 - ok
19:59:38.0582 0x0bf4 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
19:59:38.0583 0x0bf4 flpydisk - ok
19:59:38.0611 0x0bf4 [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
19:59:38.0618 0x0bf4 FltMgr - ok
19:59:38.0710 0x0bf4 [ CB5E4B9C319E3C6BB363EB7E58A4A051, C9DCF2C2A6AFE0A0F3E23A265843D0C423C08B2E54702C5B389CF293D9A6BAC5 ] FontCache C:\windows\system32\FntCache.dll
19:59:38.0764 0x0bf4 FontCache - ok
19:59:38.0830 0x0bf4 [ 8D89E3131C27FDD6932189CB785E1B7A, AC7DA4C5E6D2E41D1A1DE146E46F034FAF0FB11AD801F070F2D5CD08166E9EB7 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:59:38.0832 0x0bf4 FontCache3.0.0.0 - ok
19:59:38.0861 0x0bf4 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys
19:59:38.0864 0x0bf4 FsDepends - ok
19:59:38.0918 0x0bf4 [ D3E3F93D67821A2DB2B3D9FAC2DC2064, 727FAA7E15A20ED3A37668D294ABDE6EAF1C87C34EE283C99EE3303E85001404 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
19:59:38.0919 0x0bf4 Fs_Rec - ok
19:59:38.0973 0x0bf4 [ 1F44F8559E61A8306ECC67BB1E168B7C, 5B7CDD4EDF128B48817145357BB36E2107F0D081C26004B44BFF7C63AD29D99B ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
19:59:38.0981 0x0bf4 fvevol - ok
19:59:39.0011 0x0bf4 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
19:59:39.0014 0x0bf4 gagp30kx - ok
19:59:39.0070 0x0bf4 [ 16C2A6BCDDA8952C2035DEC861492A19, 9023CD3A2C1009786A48EF7FBCC97ED1724C836279424A4D465CCE1AFA2DBDDA ] ggflt C:\windows\system32\DRIVERS\ggflt.sys
19:59:39.0072 0x0bf4 ggflt - ok
19:59:39.0126 0x0bf4 [ 6B503DF845EABF3457E49FBBDA26C10E, A1553E3822EDEA26D8E67FCC7F9EA40DFBED49EC92FD5674AAF938F2D58CF964 ] ggsemc C:\windows\system32\DRIVERS\ggsemc.sys
19:59:39.0127 0x0bf4 ggsemc - ok
19:59:39.0197 0x0bf4 [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] gpsvc C:\windows\System32\gpsvc.dll
19:59:39.0239 0x0bf4 gpsvc - ok
19:59:39.0261 0x0bf4 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
19:59:39.0263 0x0bf4 hcw85cir - ok
19:59:39.0302 0x0bf4 [ 6410F6F415B2A5A9037224C41DA8BF12, 5B8452BC49FDA2215281D27B22FA9BE46B0460F51C4DC70E58B687CFB541F3A5 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
19:59:39.0310 0x0bf4 HdAudAddService - ok
19:59:39.0343 0x0bf4 [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
19:59:39.0346 0x0bf4 HDAudBus - ok
19:59:39.0389 0x0bf4 [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\windows\system32\DRIVERS\HECIx64.sys
19:59:39.0391 0x0bf4 HECIx64 - ok
19:59:39.0407 0x0bf4 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
19:59:39.0408 0x0bf4 HidBatt - ok
19:59:39.0427 0x0bf4 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
19:59:39.0430 0x0bf4 HidBth - ok
19:59:39.0448 0x0bf4 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\DRIVERS\hidir.sys
19:59:39.0449 0x0bf4 HidIr - ok
19:59:39.0483 0x0bf4 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\System32\hidserv.dll
19:59:39.0486 0x0bf4 hidserv - ok
19:59:39.0512 0x0bf4 [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
19:59:39.0514 0x0bf4 HidUsb - ok
19:59:39.0564 0x0bf4 [ EFA58EDE58DD74388FFD04CB32681518, 76D81F9BC1A4D85A779B79DEC23B79F1568AA236CD49247414093CDC1FCC150F ] hkmsvc C:\windows\system32\kmsvc.dll
19:59:39.0570 0x0bf4 hkmsvc - ok
19:59:39.0593 0x0bf4 [ 046B2673767CA626E2CFB7FDF735E9E8, 9C932DCC5DE9B1919AB38C01D76AD7BBAF491DE6D158662407974748BC0B4C6C ] HomeGroupListener C:\windows\system32\ListSvc.dll
19:59:39.0604 0x0bf4 HomeGroupListener - ok
19:59:39.0633 0x0bf4 [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] HomeGroupProvider C:\windows\system32\provsvc.dll
19:59:39.0637 0x0bf4 HomeGroupProvider - ok
19:59:39.0706 0x0bf4 [ 3F4ADD4196E2B860019539837BE305F9, CE9BE48609A85FFF42AE358112DABE4E9E566F37B20477CC142669DA24A82343 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
19:59:39.0711 0x0bf4 HP Health Check Service - ok
19:59:39.0762 0x0bf4 [ A094A4096AD7A90E2D790B590D3CBFD4, 7A40DD979EC99EF506DEA003DECAECA90F226E6EE946E1BACB2E8CB44B30407F ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
19:59:39.0767 0x0bf4 HP Power Assistant Service - ok
19:59:39.0820 0x0bf4 [ AE2A8C80205F06BE5EDC63BE0AE9A756, BC740BEFA2B63902D907B676FE2C910F75505ED184E794F415AE485B271B5493 ] HP ProtectTools Service c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
19:59:39.0829 0x0bf4 HP ProtectTools Service - ok
19:59:39.0884 0x0bf4 [ 58CC11D14D88EF70EF7ABBC75B5EEBD8, 769FAE57F3BDF81890976DA51FB9C89D520653E5D0072A6DB98C7B8FACD54E87 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
19:59:39.0888 0x0bf4 HP Wireless Assistant Service - ok
19:59:39.0938 0x0bf4 [ 94C74D758E0F7B1D962DA452B4D28C91, F7E8F0C4895C50E25C4E6073BE008099D8BC9F1AA1298C53EC2561B00D8EC2B9 ] HPDayStarterService c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
19:59:39.0941 0x0bf4 HPDayStarterService - ok
19:59:39.0995 0x0bf4 [ 881F74074963CDAD8C475D09DC3A0BB6, 946DE15BD45A76FF6386CE37CE3ADDDF242CF49A17753C914F9FA91A8C84FC02 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
19:59:39.0999 0x0bf4 HPDrvMntSvc.exe - ok
19:59:40.0012 0x0bf4 [ 05712FDDBD45A5864EB326FAABC6A4E3, 8BACA990971A331E6EC7F896EF2404F09E381DAA3519FC6E3027C0DBD991BA7F ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
19:59:40.0013 0x0bf4 hpdskflt - ok
19:59:40.0065 0x0bf4 [ 393383FE7F577B4A111B44445716FCB3, 649C6C265CE3284E483E7E92E389B6CE05ACFB835A8D9F9AD2CA719943FEF201 ] HpFkCryptService c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
19:59:40.0074 0x0bf4 HpFkCryptService - ok
19:59:40.0151 0x0bf4 [ C9D858E20AE696E7A0D9A05B595F850A, 7ECBEC97E26D89EA18E44F6F4469154F79D664BDB96E7AE451959D9E1F839B3D ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
19:59:40.0163 0x0bf4 HPFSService - ok
19:59:40.0259 0x0bf4 [ 4D94F4D7782657E79EB1352570B563DB, 5563BF93070EEA43BB15E2FE05C80374129B04B6F773502C21AA3D51BF61ECF5 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
19:59:40.0269 0x0bf4 hpHotkeyMonitor - ok
19:59:40.0305 0x0bf4 [ B98EE5D4535A685634B90F7E04DE0DF7, E37D26EF83B70E84742498D2F53037F83BE13F0E01484D85A20C872F1F02ADDA ] HpqKbFiltr C:\windows\system32\DRIVERS\HpqKbFiltr.sys
19:59:40.0306 0x0bf4 HpqKbFiltr - ok
19:59:40.0357 0x0bf4 [ FE51B163A618B1CBF015485D21C1BC68, 16C85BAC5F6E97451DD781CE96DE10E6BF7B2A33001379FB63A08848B22B5CCD ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
19:59:40.0378 0x0bf4 hpqwmiex - ok
19:59:40.0418 0x0bf4 [ 0886D440058F203EBA0E1825E4355914, BC49C4CEFE324A08C864A4BF4FEA9A70151FAB7CC30BDC28344F3FFD2F500070 ] HpSAMD C:\windows\system32\DRIVERS\HpSAMD.sys
19:59:40.0421 0x0bf4 HpSAMD - ok
19:59:40.0449 0x0bf4 [ AA036CC5F5221D9B915F4D4DCE74BA9A, B90B9F7753B45387AD56A7CE1365BEBC9EB67011B6D2F8C785717942133775AA ] hpsrv C:\windows\system32\Hpservice.exe
19:59:40.0451 0x0bf4 hpsrv - ok
19:59:40.0518 0x0bf4 [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] HTTP C:\windows\system32\drivers\HTTP.sys
19:59:40.0532 0x0bf4 HTTP - ok
19:59:40.0625 0x0bf4 [ F78FF50C486D530504B7D2BB36B1ED22, 51A0DC35947FC0AAF20E4E47EA88866CED55DC810B4C11E11626763B381225B5 ] HWiNFO32 C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS
19:59:40.0627 0x0bf4 HWiNFO32 - ok
19:59:40.0657 0x0bf4 [ F17766A19145F111856378DF337A5D79, FC1633FB865A5324EBCBE5F97D297B899FABBDD965D862C2EFC743CD36F47E62 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
19:59:40.0658 0x0bf4 hwpolicy - ok
19:59:40.0686 0x0bf4 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
19:59:40.0690 0x0bf4 i8042prt - ok
19:59:40.0737 0x0bf4 [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
19:59:40.0755 0x0bf4 iaStor - ok
19:59:40.0841 0x0bf4 [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
19:59:40.0843 0x0bf4 IAStorDataMgrSvc - ok
19:59:40.0911 0x0bf4 [ B75E45C564E944A2657167D197AB29DA, 622EA73F4D9CAE17628C18148FB241817A0AE6D80A74B099204ED27C1A750B24 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
19:59:40.0924 0x0bf4 iaStorV - ok
19:59:41.0014 0x0bf4 [ 2F2BE70D3E02B6FA877921AB9516D43C, E04255EE4BD95FC1539EB1EB9F702B039F65993D31A4531DA487274543EF5226 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:59:41.0072 0x0bf4 idsvc - ok
19:59:41.0104 0x0bf4 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
19:59:41.0105 0x0bf4 iirsp - ok
19:59:41.0167 0x0bf4 [ C5B4683680DF085B57BC53E5EF34861F, 9C06517DFCB3ED7BB1166F7EB6CCC8713E6B68283C75420C0EDC182094AA1B8F ] IKEEXT C:\windows\System32\ikeext.dll
19:59:41.0198 0x0bf4 IKEEXT - ok
19:59:41.0249 0x0bf4 [ 4B6363CD4610BB848531BB260B15DFCC, 13A8AA9571497086341AC00797EFF212FF76EE62F9CFF758D3C08B377EC7BF04 ] Impcd C:\windows\system32\DRIVERS\Impcd.sys
19:59:41.0256 0x0bf4 Impcd - ok
19:59:41.0329 0x0bf4 [ CAA8BC6737DFA3BF1A50175CFB226788, F4453E136BDD3441A95972B217784EA3A7F914A0DDE3E9F503E107682B50E248 ] InputFilter_Hid_FlexDef2b C:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys
19:59:41.0331 0x0bf4 InputFilter_Hid_FlexDef2b - ok
19:59:41.0356 0x0bf4 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\DRIVERS\intelide.sys
19:59:41.0357 0x0bf4 intelide - ok
19:59:41.0390 0x0bf4 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
19:59:41.0393 0x0bf4 intelppm - ok
19:59:41.0423 0x0bf4 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll
19:59:41.0429 0x0bf4 IPBusEnum - ok
19:59:41.0457 0x0bf4 [ 722DD294DF62483CECAAE6E094B4D695, 41ABB42EF969EA8A84B546908EBBDC2411D964DE101CE6DD3D7ECF109085E0C0 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
19:59:41.0460 0x0bf4 IpFilterDriver - ok
19:59:41.0509 0x0bf4 [ F8E058D17363EC580E4B7232778B6CB5, 02352919F349C57930A0B032FBDC45327FB473D310DE7AC721F4694FDE7D21FB ] iphlpsvc C:\windows\System32\iphlpsvc.dll
19:59:41.0544 0x0bf4 iphlpsvc - ok
19:59:41.0567 0x0bf4 [ E2B4A4494DB7CB9B89B55CA268C337C5, C59BC4AA03D10647641EC7533F78BC7E2EA6FC48B8B2CF1A49B5148EF40A90FB ] IPMIDRV C:\windows\system32\DRIVERS\IPMIDrv.sys
19:59:41.0570 0x0bf4 IPMIDRV - ok
19:59:41.0591 0x0bf4 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys
19:59:41.0595 0x0bf4 IPNAT - ok
19:59:41.0627 0x0bf4 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys
19:59:41.0628 0x0bf4 IRENUM - ok
19:59:41.0647 0x0bf4 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\windows\system32\DRIVERS\isapnp.sys
19:59:41.0648 0x0bf4 isapnp - ok
19:59:41.0679 0x0bf4 [ FA4D2557DE56D45B0A346F93564BE6E1, 2827EC3582FF59FFD55BBD4A4F0DDFFEAD4F2537FA043B3A69904FE920B1619C ] iScsiPrt C:\windows\system32\DRIVERS\msiscsi.sys
19:59:41.0686 0x0bf4 iScsiPrt - ok
19:59:41.0719 0x0bf4 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
19:59:41.0721 0x0bf4 kbdclass - ok
19:59:41.0754 0x0bf4 [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
19:59:41.0755 0x0bf4 kbdhid - ok
19:59:41.0768 0x0bf4 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] KeyIso C:\windows\system32\lsass.exe
19:59:41.0771 0x0bf4 KeyIso - ok
19:59:41.0819 0x0bf4 [ 4F4B5FDE429416877DE7143044582EB5, A28FFEA078DBD91F3CC28088810EEEB727107B3F0F48370B44D87DC8F8C55B99 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
19:59:41.0823 0x0bf4 KSecDD - ok
19:59:41.0848 0x0bf4 [ 6F40465A44ECDC1731BEFAFEC5BDD03C, 317334D414D0AF73CB4D9CA11EA80C641E786760B8800F2795D0CB38378DBB80 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
19:59:41.0854 0x0bf4 KSecPkg - ok
19:59:41.0867 0x0bf4 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys
19:59:41.0869 0x0bf4 ksthunk - ok
19:59:41.0921 0x0bf4 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll
19:59:41.0943 0x0bf4 KtmRm - ok
19:59:41.0980 0x0bf4 [ 81F1D04D4D0E433099365127375FD501, C2A81B5A482C974E8108806486EC28CB2D81400D42639682FE7B7A9BDF14BA9B ] LanmanServer C:\windows\System32\srvsvc.dll
19:59:41.0991 0x0bf4 LanmanServer - ok
19:59:42.0035 0x0bf4 [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
19:59:42.0042 0x0bf4 LanmanWorkstation - ok
19:59:42.0103 0x0bf4 [ 83D8BE94E1CBCBE2EA8372DB1A95A159, 28D18C7B93EFB6C83023D39A54489DDE98DE578AFCC06DD0712D00DE7CD48968 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:59:42.0106 0x0bf4 LightScribeService - ok
19:59:42.0141 0x0bf4 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
19:59:42.0143 0x0bf4 lltdio - ok
19:59:42.0183 0x0bf4 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll
19:59:42.0196 0x0bf4 lltdsvc - ok
19:59:42.0201 0x0bf4 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll
19:59:42.0203 0x0bf4 lmhosts - ok
19:59:42.0288 0x0bf4 [ BB4E55778D8DE3885E1CDAC795DE7BCE, 5917F1E686E8CB5144AAC28CAD4135C517D4248804AEA289AD95B2B23A111E79 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:59:42.0297 0x0bf4 LMS - ok
19:59:42.0333 0x0bf4 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
19:59:42.0336 0x0bf4 LSI_FC - ok
19:59:42.0373 0x0bf4 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
19:59:42.0376 0x0bf4 LSI_SAS - ok
19:59:42.0389 0x0bf4 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
19:59:42.0391 0x0bf4 LSI_SAS2 - ok

[Fucza]

Pokračování dlouhého logu:

19:59:42.0412 0x0bf4 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
19:59:42.0415 0x0bf4 LSI_SCSI - ok
19:59:42.0445 0x0bf4 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\windows\system32\drivers\luafv.sys
19:59:42.0448 0x0bf4 luafv - ok
19:59:42.0525 0x0bf4 [ 024DA28053D57E9E32BEE52600576BBB, 8EC636DAB90A835DEBA2EC6176F4547EEF557415FF77C6378EF423569702731E ] MarvinBus C:\windows\system32\DRIVERS\MarvinBus64.sys
19:59:42.0535 0x0bf4 MarvinBus - ok
19:59:42.0576 0x0bf4 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector C:\windows\system32\drivers\mbam.sys
19:59:42.0578 0x0bf4 MBAMProtector - ok
19:59:42.0635 0x0bf4 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:59:42.0649 0x0bf4 MBAMScheduler - ok
19:59:42.0709 0x0bf4 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:59:42.0726 0x0bf4 MBAMService - ok
19:59:42.0762 0x0bf4 [ F84C8F1000BC11E3B7B23CBD3BAFF111, BB4C4FFE3F6C9E5C16C06F6F666F177B94E1CF878397BCC0BDAF6EB3341AAED8 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
19:59:42.0766 0x0bf4 Mcx2Svc - ok
19:59:42.0791 0x0bf4 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\DRIVERS\megasas.sys
19:59:42.0793 0x0bf4 megasas - ok
19:59:42.0820 0x0bf4 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
19:59:42.0830 0x0bf4 MegaSR - ok
19:59:42.0854 0x0bf4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll
19:59:42.0858 0x0bf4 MMCSS - ok
19:59:42.0882 0x0bf4 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys
19:59:42.0884 0x0bf4 Modem - ok
19:59:42.0919 0x0bf4 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys
19:59:42.0921 0x0bf4 monitor - ok
19:59:42.0949 0x0bf4 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
19:59:42.0951 0x0bf4 mouclass - ok
19:59:42.0983 0x0bf4 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
19:59:42.0985 0x0bf4 mouhid - ok
19:59:43.0012 0x0bf4 [ 791AF66C4D0E7C90A3646066386FB571, BF67643099494AEADDDC85E4D97AFF1017806A1DF554F9BE6C864FFECC9EAF42 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
19:59:43.0016 0x0bf4 mountmgr - ok
19:59:43.0088 0x0bf4 [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:59:43.0095 0x0bf4 MozillaMaintenance - ok
19:59:43.0126 0x0bf4 [ 609D1D87649ECC19796F4D76D4C15CEA, 5369F4C83FBAE9C4CFB9ACD36F07479E3F3FD784D79B82AE8D95B818B9F9CE00 ] mpio C:\windows\system32\DRIVERS\mpio.sys
19:59:43.0131 0x0bf4 mpio - ok
19:59:43.0174 0x0bf4 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
19:59:43.0177 0x0bf4 mpsdrv - ok
19:59:43.0236 0x0bf4 [ AECAB449567D1846DAD63ECE49E893E3, 7A67A16A3E04574B7CAD097632ABA9B361BBEFDD6B36B7B8E3A1996EC529C2DC ] MpsSvc C:\windows\system32\mpssvc.dll
19:59:43.0268 0x0bf4 MpsSvc - ok
19:59:43.0293 0x0bf4 [ 30524261BB51D96D6FCBAC20C810183C, 19598A9CD0EAAE4ACBF1069E721AB2853452F33FCFB3B5113F023A88A90BF42D ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
19:59:43.0296 0x0bf4 MRxDAV - ok
19:59:43.0333 0x0bf4 [ 040D62A9D8AD28922632137ACDD984F2, D9457BDA88C2E3AA4E716C0657B77A4A3E212328CDABD5C18279B6440E1C1594 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
19:59:43.0336 0x0bf4 mrxsmb - ok
19:59:43.0361 0x0bf4 [ F0067552F8F9B33D7C59403AB808A3CB, 698B63528E1943BB4253BF7578DC128AA824C71BD04FF0521277E68B20656C02 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
19:59:43.0367 0x0bf4 mrxsmb10 - ok
19:59:43.0378 0x0bf4 [ 3C142D31DE9F2F193218A53FE2632051, 026B3A932A95D5160B64E470FC414F3D388D429317D5EAEA2D476F715C4CAE75 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
19:59:43.0381 0x0bf4 mrxsmb20 - ok
19:59:43.0430 0x0bf4 [ 5E939CF91EA4A841DBAFE4627E0292BB, C6C132215ABF7BE46BEC4222E4255CA210A972AC3C6E14B636BB291AC3243E8E ] msahci C:\windows\system32\DRIVERS\msahci.sys
19:59:43.0432 0x0bf4 msahci - ok
19:59:43.0452 0x0bf4 [ 8D27B597229AED79430FB9DB3BCBFBD0, 3D58E08B47E8AE419D405BF263929DFA6F2F5F0C2D79FD8D6F2CED6452F6F248 ] msdsm C:\windows\system32\DRIVERS\msdsm.sys
19:59:43.0458 0x0bf4 msdsm - ok
19:59:43.0480 0x0bf4 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe
19:59:43.0488 0x0bf4 MSDTC - ok
19:59:43.0506 0x0bf4 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys
19:59:43.0508 0x0bf4 Msfs - ok
19:59:43.0534 0x0bf4 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
19:59:43.0535 0x0bf4 mshidkmdf - ok
19:59:43.0542 0x0bf4 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\windows\system32\DRIVERS\msisadrv.sys
19:59:43.0543 0x0bf4 msisadrv - ok
19:59:43.0579 0x0bf4 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll
19:59:43.0588 0x0bf4 MSiSCSI - ok
19:59:43.0594 0x0bf4 msiserver - ok
19:59:43.0634 0x0bf4 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
19:59:43.0635 0x0bf4 MSKSSRV - ok
19:59:43.0648 0x0bf4 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
19:59:43.0649 0x0bf4 MSPCLOCK - ok
19:59:43.0670 0x0bf4 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys
19:59:43.0671 0x0bf4 MSPQM - ok
19:59:43.0697 0x0bf4 [ 89CB141AA8616D8C6A4610FA26C60964, 76E72F6A0348EDC58A8E6F88C7F024B8B077670400BD5A833811DAFCF9F517CC ] MsRPC C:\windows\system32\drivers\MsRPC.sys
19:59:43.0710 0x0bf4 MsRPC - ok
19:59:43.0730 0x0bf4 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
19:59:43.0731 0x0bf4 mssmbios - ok
19:59:43.0743 0x0bf4 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys
19:59:43.0743 0x0bf4 MSTEE - ok
19:59:43.0774 0x0bf4 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
19:59:43.0774 0x0bf4 MTConfig - ok
19:59:43.0793 0x0bf4 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys
19:59:43.0794 0x0bf4 Mup - ok
19:59:43.0832 0x0bf4 [ 4987E079A4530FA737A128BE54B63B12, 27E51CC7D4D90DC4397575491DE7EFE15808709F097E2828E46AA73C771A47A4 ] napagent C:\windows\system32\qagentRT.dll
19:59:43.0845 0x0bf4 napagent - ok
19:59:43.0919 0x0bf4 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
19:59:43.0929 0x0bf4 NativeWifiP - ok
19:59:43.0983 0x0bf4 [ CAD515DBD07D082BB317D9928CE8962C, 7AFA6D6154AC68F9FCC37B7B3324F7A170AE91035805026445F24F6EB4FB7F2E ] NDIS C:\windows\system32\drivers\ndis.sys
19:59:43.0999 0x0bf4 NDIS - ok
19:59:44.0021 0x0bf4 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
19:59:44.0022 0x0bf4 NdisCap - ok
19:59:44.0051 0x0bf4 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
19:59:44.0052 0x0bf4 NdisTapi - ok
19:59:44.0076 0x0bf4 [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
19:59:44.0077 0x0bf4 Ndisuio - ok
19:59:44.0091 0x0bf4 [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
19:59:44.0094 0x0bf4 NdisWan - ok
19:59:44.0113 0x0bf4 [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
19:59:44.0115 0x0bf4 NDProxy - ok
19:59:44.0132 0x0bf4 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
19:59:44.0133 0x0bf4 NetBIOS - ok
19:59:44.0155 0x0bf4 [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
19:59:44.0161 0x0bf4 NetBT - ok
19:59:44.0179 0x0bf4 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] Netlogon C:\windows\system32\lsass.exe
19:59:44.0180 0x0bf4 Netlogon - ok
19:59:44.0218 0x0bf4 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll
19:59:44.0230 0x0bf4 Netman - ok
19:59:44.0299 0x0bf4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:44.0326 0x0bf4 NetMsmqActivator - ok
19:59:44.0335 0x0bf4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:44.0340 0x0bf4 NetPipeActivator - ok
19:59:44.0378 0x0bf4 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll
19:59:44.0412 0x0bf4 netprofm - ok
19:59:44.0480 0x0bf4 [ B964D4C524A80ABA22DB16FC1EDED0A9, FCC6BE3BDCA1A452F02C85BCB134CCD15EAD4B33EB1575E4A165C786125C3D48 ] netr28x C:\windows\system32\DRIVERS\netr28x.sys
19:59:44.0498 0x0bf4 netr28x - ok
19:59:44.0506 0x0bf4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:44.0508 0x0bf4 NetTcpActivator - ok
19:59:44.0514 0x0bf4 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:44.0516 0x0bf4 NetTcpPortSharing - ok
19:59:44.0558 0x0bf4 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
19:59:44.0559 0x0bf4 nfrd960 - ok
19:59:44.0590 0x0bf4 [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] NlaSvc C:\windows\System32\nlasvc.dll
19:59:44.0599 0x0bf4 NlaSvc - ok
19:59:44.0613 0x0bf4 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys
19:59:44.0614 0x0bf4 Npfs - ok
19:59:44.0625 0x0bf4 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\windows\system32\nsisvc.dll
19:59:44.0628 0x0bf4 nsi - ok
19:59:44.0641 0x0bf4 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
19:59:44.0642 0x0bf4 nsiproxy - ok
19:59:44.0764 0x0bf4 [ 9A6089B056EA1B83B36424FC9D0A300E, EA60282C5A32B497921B568C1FE735F5BDB9D954DDC4E609F7F3CAE5ED823CEC ] Ntfs C:\windows\system32\drivers\Ntfs.sys
19:59:44.0794 0x0bf4 Ntfs - ok
19:59:44.0816 0x0bf4 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys
19:59:44.0816 0x0bf4 Null - ok
19:59:44.0849 0x0bf4 [ A4D9C9A608A97F59307C2F2600EDC6A4, D786F4CA2D10BAC31CE14A338C442F7027D4BB2E955AB99BC44C2F241D383BBE ] nvraid C:\windows\system32\drivers\nvraid.sys
19:59:44.0856 0x0bf4 nvraid - ok
19:59:44.0902 0x0bf4 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9, 8D5337742A0F5B04D636C163CE77D4A9B3684CF81170026912A402513B44BA77 ] nvstor C:\windows\system32\drivers\nvstor.sys
19:59:44.0909 0x0bf4 nvstor - ok
19:59:44.0957 0x0bf4 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\windows\system32\DRIVERS\nv_agp.sys
19:59:44.0961 0x0bf4 nv_agp - ok
19:59:45.0068 0x0bf4 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:59:45.0102 0x0bf4 odserv - ok
19:59:45.0118 0x0bf4 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\windows\system32\DRIVERS\ohci1394.sys
19:59:45.0120 0x0bf4 ohci1394 - ok
19:59:45.0180 0x0bf4 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:59:45.0187 0x0bf4 ose - ok
19:59:45.0243 0x0bf4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
19:59:45.0264 0x0bf4 p2pimsvc - ok
19:59:45.0302 0x0bf4 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\windows\system32\p2psvc.dll
19:59:45.0336 0x0bf4 p2psvc - ok
19:59:45.0444 0x0bf4 [ 20BD38241EDD66D8FDC9E3496A1762A3, 68E1C705758943F5EF0AA19F953396C2AE3C149A6BAD924C10C7C9E19502E06C ] PanService C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
19:59:45.0465 0x0bf4 PanService - ok
19:59:45.0500 0x0bf4 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\windows\system32\DRIVERS\parport.sys
19:59:45.0502 0x0bf4 Parport - ok
19:59:45.0528 0x0bf4 [ 90061B1ACFE8CCAA5345750FFE08D8B8, 76309683FFDF380AF9C6E1D9A52E46B011A0BF1026D747181D01F3312B7541C7 ] partmgr C:\windows\system32\drivers\partmgr.sys
19:59:45.0530 0x0bf4 partmgr - ok
19:59:45.0545 0x0bf4 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\windows\System32\pcasvc.dll
19:59:45.0551 0x0bf4 PcaSvc - ok
19:59:45.0570 0x0bf4 [ F36F6504009F2FB0DFD1B17A116AD74B, 33A4C217F7DC5E5B7E1B6CF335327C8FE6CC5D6D048D420252965574CAD83918 ] pci C:\windows\system32\DRIVERS\pci.sys
19:59:45.0573 0x0bf4 pci - ok
19:59:45.0603 0x0bf4 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\windows\system32\DRIVERS\pciide.sys
19:59:45.0604 0x0bf4 pciide - ok
19:59:45.0620 0x0bf4 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
19:59:45.0624 0x0bf4 pcmcia - ok
19:59:45.0636 0x0bf4 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\windows\system32\drivers\pcw.sys
19:59:45.0637 0x0bf4 pcw - ok
19:59:45.0655 0x0bf4 pdfcDispatcher - ok
19:59:45.0683 0x0bf4 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\windows\system32\drivers\peauth.sys
19:59:45.0695 0x0bf4 PEAUTH - ok
19:59:45.0790 0x0bf4 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\windows\SysWow64\perfhost.exe
19:59:45.0792 0x0bf4 PerfHost - ok
19:59:45.0861 0x0bf4 [ 557E9A86F65F0DE18C9B6751DFE9D3F1, 630EE5A80335929517A22D130C75CBCE882B92978372A6F36C30B9D353C7BB07 ] pla C:\windows\system32\pla.dll
19:59:45.0908 0x0bf4 pla - ok
19:59:45.0968 0x0bf4 [ 98B1721B8718164293B9701B98C52D77, 27F5F00D4AA394D4D8D0A0062EDC3F944B603E07CAAEDC5CC959BA1E8C208C2A ] PlugPlay C:\windows\system32\umpnpmgr.dll
19:59:46.0001 0x0bf4 PlugPlay - ok
19:59:46.0016 0x0bf4 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
19:59:46.0020 0x0bf4 PNRPAutoReg - ok
19:59:46.0044 0x0bf4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
19:59:46.0056 0x0bf4 PNRPsvc - ok
19:59:46.0142 0x0bf4 [ 166EB40D1F5B47E615DE3D0FFFE5F243, E32BCCA0D25CD631C221986EBE9F6C54BF2F12DE1672D69CCC4E22AD07D0525A ] PolicyAgent C:\windows\System32\ipsecsvc.dll
19:59:46.0169 0x0bf4 PolicyAgent - ok
19:59:46.0200 0x0bf4 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\windows\system32\umpo.dll
19:59:46.0206 0x0bf4 Power - ok
19:59:46.0241 0x0bf4 [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
19:59:46.0244 0x0bf4 PptpMiniport - ok
19:59:46.0262 0x0bf4 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\windows\system32\DRIVERS\processr.sys
19:59:46.0264 0x0bf4 Processor - ok
19:59:46.0315 0x0bf4 [ 97293447431311C06703368AD0F6C4BE, 302A3CA8F6961717D95469B20A8A71954D4ECFCDF4638238D3D44AAE5A8D9B8B ] ProfSvc C:\windows\system32\profsvc.dll
19:59:46.0326 0x0bf4 ProfSvc - ok
19:59:46.0345 0x0bf4 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] ProtectedStorage C:\windows\system32\lsass.exe
19:59:46.0347 0x0bf4 ProtectedStorage - ok
19:59:46.0376 0x0bf4 [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] Psched C:\windows\system32\DRIVERS\pacer.sys
19:59:46.0379 0x0bf4 Psched - ok
19:59:46.0486 0x0bf4 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
19:59:46.0511 0x0bf4 ql2300 - ok
19:59:46.0540 0x0bf4 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
19:59:46.0542 0x0bf4 ql40xx - ok
19:59:46.0574 0x0bf4 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\windows\system32\qwave.dll
19:59:46.0581 0x0bf4 QWAVE - ok
19:59:46.0601 0x0bf4 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
19:59:46.0602 0x0bf4 QWAVEdrv - ok
19:59:46.0618 0x0bf4 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
19:59:46.0618 0x0bf4 RasAcd - ok
19:59:46.0661 0x0bf4 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
19:59:46.0663 0x0bf4 RasAgileVpn - ok
19:59:46.0672 0x0bf4 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\windows\System32\rasauto.dll
19:59:46.0679 0x0bf4 RasAuto - ok
19:59:46.0705 0x0bf4 [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
19:59:46.0710 0x0bf4 Rasl2tp - ok
19:59:46.0737 0x0bf4 [ 47394ED3D16D053F5906EFE5AB51CC83, FE5D1249788DB6D85C55769251B0AED738D3BBA04DF57124E03397D3C0599286 ] RasMan C:\windows\System32\rasmans.dll
19:59:46.0757 0x0bf4 RasMan - ok
19:59:46.0776 0x0bf4 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
19:59:46.0779 0x0bf4 RasPppoe - ok
19:59:46.0790 0x0bf4 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
19:59:46.0792 0x0bf4 RasSstp - ok
19:59:46.0810 0x0bf4 [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
19:59:46.0817 0x0bf4 rdbss - ok
19:59:46.0840 0x0bf4 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
19:59:46.0841 0x0bf4 rdpbus - ok
19:59:46.0858 0x0bf4 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
19:59:46.0859 0x0bf4 RDPCDD - ok
19:59:46.0878 0x0bf4 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
19:59:46.0878 0x0bf4 RDPENCDD - ok
19:59:46.0894 0x0bf4 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
19:59:46.0895 0x0bf4 RDPREFMP - ok
19:59:46.0943 0x0bf4 [ 447DE7E3DEA39D422C1504F245B668B1, C54D90D2F9405E011E490D3C2F0F64488B87B969C95E367C076BBFCFD8654909 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
19:59:46.0952 0x0bf4 RDPWD - ok
19:59:46.0979 0x0bf4 [ 634B9A2181D98F15941236886164EC8B, 15C55F05FD3CD751F619F18E2ADF91552AE82146501CD031402277F496A5B7D8 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
19:59:46.0984 0x0bf4 rdyboost - ok
19:59:47.0021 0x0bf4 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\windows\System32\mprdim.dll
19:59:47.0025 0x0bf4 RemoteAccess - ok
19:59:47.0059 0x0bf4 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\windows\system32\regsvc.dll
19:59:47.0067 0x0bf4 RemoteRegistry - ok
19:59:47.0114 0x0bf4 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
19:59:47.0121 0x0bf4 RFCOMM - ok
19:59:47.0140 0x0bf4 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
19:59:47.0145 0x0bf4 RpcEptMapper - ok
19:59:47.0185 0x0bf4 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\windows\system32\locator.exe
19:59:47.0187 0x0bf4 RpcLocator - ok
19:59:47.0224 0x0bf4 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] RpcSs C:\windows\system32\rpcss.dll
19:59:47.0236 0x0bf4 RpcSs - ok
19:59:47.0274 0x0bf4 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
19:59:47.0276 0x0bf4 rspndr - ok
19:59:47.0333 0x0bf4 [ 30F463768D5143BFD7B2DF822B53CF4D, 3DD94DDF95086C7C2A83617B499627C04D020BF9F230C0F080B169CB846F796F ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
19:59:47.0343 0x0bf4 RSUSBSTOR - ok
19:59:47.0360 0x0bf4 [ ECBAB4CD65CBEDBE26EC6838E4FB7C1C, 8286107274E8A0F77F536B7986ADCC050A326E8F2D39194503A0EB6AD7096EEC ] RsvLock C:\windows\system32\drivers\RsvLock.sys
19:59:47.0362 0x0bf4 RsvLock - ok
19:59:47.0407 0x0bf4 [ FD978B2BF8A9B2390DCBEF435E9C1F9F, 52CFFE354006CCF087D3651D9D2AF201FD8A8FE8FB7D9CAAC8A527E91838ACE6 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
19:59:47.0414 0x0bf4 RTL8167 - ok
19:59:47.0441 0x0bf4 [ 317A99735C3A26C5CD60AB59E5E7E4E2, 92155F1C5757DEBB135B68F910A975162F02269B420D53A8F7F78206793231B9 ] SafeBoot C:\windows\system32\drivers\SafeBoot.sys
19:59:47.0441 0x0bf4 Suspicious file ( NoAccess ): C:\windows\system32\drivers\SafeBoot.sys. md5: 317A99735C3A26C5CD60AB59E5E7E4E2, sha256: 92155F1C5757DEBB135B68F910A975162F02269B420D53A8F7F78206793231B9
19:59:47.0441 0x0bf4 SafeBoot - detected LockedFile.Multi.Generic ( 1 )
19:59:50.0324 0x0bf4 Detect skipped due to KSN trusted
19:59:50.0324 0x0bf4 SafeBoot - ok
19:59:50.0367 0x0bf4 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] SamSs C:\windows\system32\lsass.exe
19:59:50.0370 0x0bf4 SamSs - ok
19:59:50.0388 0x0bf4 [ FD8714A36C4646DE22DDC7E36F6D09EF, DA91F0360B7869897D1BC9F24A3473D429B3C6E4605CBD675CDC96F30661C7C5 ] SbAlg C:\windows\system32\drivers\SbAlg.sys
19:59:50.0390 0x0bf4 SbAlg - ok
19:59:50.0408 0x0bf4 [ FCAA034231E58B0DE64D0A7904015535, ED8DFACD2C398E0756C30160741680EEEC15B7BDF3B6F5BD0B0E32FB10E6EB99 ] SbFsLock C:\windows\system32\drivers\SbFsLock.sys
19:59:50.0410 0x0bf4 SbFsLock - ok
19:59:50.0434 0x0bf4 [ E3BBB89983DAF5622C1D50CF49F28227, 49370DC142D577D657BF5755AA9B8625C35D3DDAF1F9466B4888507FB8E6FF07 ] sbp2port C:\windows\system32\DRIVERS\sbp2port.sys
19:59:50.0438 0x0bf4 sbp2port - ok
19:59:50.0513 0x0bf4 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\windows\System32\SCardSvr.dll
19:59:50.0525 0x0bf4 SCardSvr - ok
19:59:50.0540 0x0bf4 [ C94DA20C7E3BA1DCA269BC8460D98387, E1A5629728A79233B62BA87B4354BC3A332A853CC36A60E77B34923F4BCA8A61 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
19:59:50.0541 0x0bf4 scfilter - ok
19:59:50.0604 0x0bf4 [ 624D0F5FF99428BB90A5B8A4123E918E, 90A43E6F09B56CB86A3E3851F8E5ABB74905AEB70296F4B87BEDBC3027E65E86 ] Schedule C:\windows\system32\schedsvc.dll
19:59:50.0649 0x0bf4 Schedule - ok
19:59:50.0678 0x0bf4 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] SCPolicySvc C:\windows\System32\certprop.dll
19:59:50.0680 0x0bf4 SCPolicySvc - ok
19:59:50.0708 0x0bf4 [ 54E47AD086782D3AE9417C155CDCEB9B, 5143DC43B89F9143A56505FA20841AF15E7785A87F88195B08B3E09B87472A07 ] sdbus C:\windows\system32\DRIVERS\sdbus.sys
19:59:50.0710 0x0bf4 sdbus - ok
19:59:50.0719 0x0bf4 [ 765A27C3279CE11D14CB9E4F5869FCA5, B6C2EFFBA938828FEF7FE992A4C88B3154D053763C38762DCE13252FE9571FA1 ] SDRSVC C:\windows\System32\SDRSVC.dll
19:59:50.0725 0x0bf4 SDRSVC - ok
19:59:50.0753 0x0bf4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
19:59:50.0754 0x0bf4 secdrv - ok
19:59:50.0770 0x0bf4 [ 463B386EBC70F98DA5DFF85F7E654346, 8E27B18B04AF587719D1DAE75A042DB998E06CAE112BD68626EF046036D2DCDC ] seclogon C:\windows\system32\seclogon.dll
19:59:50.0773 0x0bf4 seclogon - ok
19:59:50.0786 0x0bf4 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\windows\system32\sens.dll
19:59:50.0790 0x0bf4 SENS - ok
19:59:50.0802 0x0bf4 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\windows\system32\sensrsvc.dll
19:59:50.0805 0x0bf4 SensrSvc - ok
19:59:50.0833 0x0bf4 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\windows\system32\DRIVERS\serenum.sys
19:59:50.0835 0x0bf4 Serenum - ok
19:59:50.0878 0x0bf4 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\windows\system32\DRIVERS\serial.sys
19:59:50.0882 0x0bf4 Serial - ok
19:59:50.0903 0x0bf4 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
19:59:50.0905 0x0bf4 sermouse - ok
19:59:50.0936 0x0bf4 [ C3BC61CE47FF6F4E88AB8A3B429A36AF, 6CA53AD0CB7215BAE3467EC1FD490E3A18504BD6CD4F0FABF9BD37516AB9DFE0 ] SessionEnv C:\windows\system32\sessenv.dll
19:59:50.0943 0x0bf4 SessionEnv - ok
19:59:50.0966 0x0bf4 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\windows\system32\DRIVERS\sffdisk.sys
19:59:50.0967 0x0bf4 sffdisk - ok
19:59:50.0981 0x0bf4 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\windows\system32\DRIVERS\sffp_mmc.sys
19:59:50.0982 0x0bf4 sffp_mmc - ok
19:59:51.0004 0x0bf4 [ 178298F767FE638C9FEDCBDEF58BB5E4, 053D12CFEE5C54EA7D06F9C9CAE93544FE258A4825CDE2A14090BC81A96E1CF7 ] sffp_sd C:\windows\system32\DRIVERS\sffp_sd.sys
19:59:51.0005 0x0bf4 sffp_sd - ok
19:59:51.0020 0x0bf4 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
19:59:51.0021 0x0bf4 sfloppy - ok
19:59:51.0074 0x0bf4 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\windows\System32\ipnathlp.dll
19:59:51.0093 0x0bf4 SharedAccess - ok
19:59:51.0120 0x0bf4 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] ShellHWDetection C:\windows\System32\shsvcs.dll
19:59:51.0142 0x0bf4 ShellHWDetection - ok
19:59:51.0162 0x0bf4 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
19:59:51.0164 0x0bf4 SiSRaid2 - ok
19:59:51.0187 0x0bf4 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
19:59:51.0191 0x0bf4 SiSRaid4 - ok
19:59:51.0317 0x0bf4 [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:59:51.0325 0x0bf4 SkypeUpdate - ok
19:59:51.0497 0x0bf4 [ 8CBD520381A4B139598084BA89B79481, 0D62611C7B77B361F7BC5B5C40346062F4E113060D051D5AC5DA5A2015DB6F40 ] SMARTHelperService C:\Program Files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe
19:59:51.0587 0x0bf4 SMARTHelperService - ok
19:59:51.0630 0x0bf4 [ BCE703FE67976C57B789F19A77C4C7D1, 6D249386924AA443B3237BF71D9EFDB8C6D2CEE6E40823519694554224FB1538 ] SMARTMouseFilterx64 C:\windows\system32\DRIVERS\SMARTMouseFilterx64.sys
19:59:51.0631 0x0bf4 SMARTMouseFilterx64 - ok
19:59:51.0675 0x0bf4 [ C02C2D6EBC48A52C0C2922BD86CCEEDE, 07FB67B4EFEF315E071671884FFCCE5B39B486C8901BF9C8D62AEBF3CACF6937 ] SMARTVHidMiniVistaAmd64 C:\windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys
19:59:51.0676 0x0bf4 SMARTVHidMiniVistaAmd64 - ok
19:59:51.0716 0x0bf4 [ 8588412F05C55E397374F97588CC7381, BF8A6AAA4FD0A2208EDE92294095A38337785EA3D5961DD069F2596344772ADD ] SMARTVTabletPCx64 C:\windows\system32\DRIVERS\SMARTVTabletPCx64.sys
19:59:51.0718 0x0bf4 SMARTVTabletPCx64 - ok
19:59:51.0764 0x0bf4 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\windows\system32\DRIVERS\smb.sys
19:59:51.0767 0x0bf4 Smb - ok
19:59:51.0819 0x0bf4 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\windows\System32\snmptrap.exe
19:59:51.0823 0x0bf4 SNMPTRAP - ok
19:59:51.0948 0x0bf4 [ 6FC63B4B19FB809336034D5C5C4D2BC0, A3713383FD874A42B312F08568C854C0B93203EF21611EE64F37FC3F169C7A5D ] SNP2UVC C:\windows\system32\DRIVERS\snp2uvc.sys
19:59:51.0984 0x0bf4 SNP2UVC - ok
19:59:52.0024 0x0bf4 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\windows\syswow64\speedfan.sys
19:59:52.0027 0x0bf4 speedfan - ok
19:59:52.0035 0x0bf4 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\windows\system32\drivers\spldr.sys
19:59:52.0036 0x0bf4 spldr - ok
19:59:52.0098 0x0bf4 [ 567977DC43CC13C4C35ED7084C0B84D5, 93EEC3ABA66DA83157F49F056EF1CB3355122204F2BB0F8B618064AF47D59A61 ] Spooler C:\windows\System32\spoolsv.exe
19:59:52.0110 0x0bf4 Spooler - ok
19:59:52.0235 0x0bf4 [ 913D843498553A1BC8F8DBAD6358E49F, F8B931FDABF669D642CBDCD2FF31E07F8A5E2D5F72E11D4A8FF219CCFB5825E9 ] sppsvc C:\windows\system32\sppsvc.exe
19:59:52.0293 0x0bf4 sppsvc - ok
19:59:52.0312 0x0bf4 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\windows\system32\sppuinotify.dll
19:59:52.0315 0x0bf4 sppuinotify - ok
19:59:52.0349 0x0bf4 [ 2408C0366D96BCDF63E8F1C78E4A29C5, 66F646890695B5D80536E88B1566C8765D89CFE25954ED650F6D773EFF045016 ] srv C:\windows\system32\DRIVERS\srv.sys
19:59:52.0357 0x0bf4 srv - ok
19:59:52.0376 0x0bf4 [ 76548F7B818881B47D8D1AE1BE9C11F8, 8F1356B07A6A55746FC71B6DB0322128941AE890850196F2B19BC01E6FC9B41C ] srv2 C:\windows\system32\DRIVERS\srv2.sys
19:59:52.0383 0x0bf4 srv2 - ok
19:59:52.0415 0x0bf4 [ 0AF6E19D39C70844C5CAA8FB0183C36E, 4494EEFDEA7198888D32E74727E5BC0AC628FFA70B1FE7EB59DBEEDC1A95D0DD ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
19:59:52.0418 0x0bf4 srvnet - ok
19:59:52.0430 0x0bf4 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
19:59:52.0436 0x0bf4 SSDPSRV - ok
19:59:52.0446 0x0bf4 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\windows\system32\sstpsvc.dll
19:59:52.0449 0x0bf4 SstpSvc - ok
19:59:52.0583 0x0bf4 [ E455F5FE92EDC3CAD3F2963C5CCA47E6, 51433C6F770BBE9B3542B3A798B3E1BF412AAB2546BC9DD844452DFFDAB211ED ] STacSV C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe
19:59:52.0593 0x0bf4 STacSV - ok
19:59:52.0627 0x0bf4 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
19:59:52.0628 0x0bf4 stexstor - ok
19:59:52.0690 0x0bf4 [ 4A9D087C9A97071B9D06DB38567DA906, BF12E7D1DEE926E84072BCB4ABCF2F3D3D434F3EEB0A1F35673FB2F1F84A7166 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
19:59:52.0703 0x0bf4 STHDA - ok
19:59:52.0756 0x0bf4 [ 52D0E33B681BD0F33FDC08812FEE4F7D, BBEBC0773402F6697D2F14F63E5E4FDC2180466E7FDBD306E408535B10160249 ] stisvc C:\windows\System32\wiaservc.dll
19:59:52.0790 0x0bf4 stisvc - ok
19:59:52.0805 0x0bf4 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\windows\system32\DRIVERS\swenum.sys
19:59:52.0805 0x0bf4 swenum - ok
19:59:52.0863 0x0bf4 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\windows\System32\swprv.dll
19:59:52.0891 0x0bf4 swprv - ok
19:59:52.0999 0x0bf4 [ D268D2A0DB2A2BBE963E688D0B039267, DBEF7A1E1E015825E4C2BD80FE3D468E8A6840A44027381CDD4B96605D2FC12A ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
19:59:53.0023 0x0bf4 SynTP - ok
19:59:53.0085 0x0bf4 [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] SysMain C:\windows\system32\sysmain.dll
19:59:53.0166 0x0bf4 SysMain - ok
19:59:53.0181 0x0bf4 [ 238935C3CF2854886DC7CBB2A0E2CC66, BBF7A70BF218A544CC1A6FB81F75EAD29D418794162936BE197D6D61FE0DB1C4 ] TabletInputService C:\windows\System32\TabSvc.dll
19:59:53.0185 0x0bf4 TabletInputService - ok
19:59:53.0204 0x0bf4 [ 884264AC597B690C5707C89723BB8E7B, 9BF209A4128019421F7EC4AFF71103C5F411DB6CFB32AAC1633E789AD7A30708 ] TapiSrv C:\windows\System32\tapisrv.dll
19:59:53.0213 0x0bf4 TapiSrv - ok
19:59:53.0229 0x0bf4 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\windows\System32\tbssvc.dll
19:59:53.0233 0x0bf4 TBS - ok
19:59:53.0355 0x0bf4 [ 5CFB7AB8F9524D1A1E14369DE63B83CC, BC22FC5714A6A8F8CF95D3D9656332D7B315FF7CFA50C0DEB7437A30651D10C7 ] Tcpip C:\windows\system32\drivers\tcpip.sys
19:59:53.0385 0x0bf4 Tcpip - ok
19:59:53.0473 0x0bf4 [ 5CFB7AB8F9524D1A1E14369DE63B83CC, BC22FC5714A6A8F8CF95D3D9656332D7B315FF7CFA50C0DEB7437A30651D10C7 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
19:59:53.0504 0x0bf4 TCPIP6 - ok
19:59:53.0543 0x0bf4 [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
19:59:53.0544 0x0bf4 tcpipreg - ok
19:59:53.0560 0x0bf4 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
19:59:53.0561 0x0bf4 TDPIPE - ok
19:59:53.0599 0x0bf4 [ 7518F7BCFD4B308ABC9192BACAF6C970, CF08E547EF4059DA3F5A2FCBA98939E84092BB6E0E37F9BBCD1E4D9EBB8A58BB ] TDTCP C:\windows\system32\drivers\tdtcp.sys
19:59:53.0601 0x0bf4 TDTCP - ok
19:59:53.0621 0x0bf4 [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] tdx C:\windows\system32\DRIVERS\tdx.sys
19:59:53.0626 0x0bf4 tdx - ok
19:59:53.0861 0x0bf4 [ 6B1B2F8D62D606B200C2072564090104, 5EC2A32CAC5729CD26C2A5E1EFF65B4CE24E41BB89F098FF9B9C4968756712FA ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
19:59:53.0918 0x0bf4 TeamViewer8 - ok
19:59:53.0944 0x0bf4 [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
19:59:53.0945 0x0bf4 TermDD - ok
19:59:53.0988 0x0bf4 [ 0F05EC2887BFE197AD82A13287D2F404, 78C8A8FE9B1101430CA79875DA34413C35B6D7A5EE1932E454C50731335437A6 ] TermService C:\windows\System32\termsrv.dll
19:59:54.0022 0x0bf4 TermService - ok
19:59:54.0033 0x0bf4 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\windows\system32\themeservice.dll
19:59:54.0036 0x0bf4 Themes - ok
19:59:54.0063 0x0bf4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\windows\system32\mmcss.dll
19:59:54.0066 0x0bf4 THREADORDER - ok
19:59:54.0107 0x0bf4 [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM C:\windows\system32\drivers\tpm.sys
19:59:54.0109 0x0bf4 TPM - ok
19:59:54.0131 0x0bf4 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\windows\System32\trkwks.dll
19:59:54.0139 0x0bf4 TrkWks - ok
19:59:54.0206 0x0bf4 [ 840F7FB849F5887A49BA18C13B2DA920, A59C40A090E03C0136A865FC54508BA938E7B467C8198BC009FE263E6C275781 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
19:59:54.0214 0x0bf4 TrustedInstaller - ok
19:59:54.0229 0x0bf4 [ 61B96C26131E37B24E93327A0BD1FB95, 7C551B6FD0447258BC3FDED72D8D41A0E8B731562170C264295592D45F85D9FF ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
19:59:54.0230 0x0bf4 tssecsrv - ok
19:59:54.0273 0x0bf4 [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
19:59:54.0276 0x0bf4 tunnel - ok
19:59:54.0301 0x0bf4 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
19:59:54.0303 0x0bf4 uagp35 - ok
19:59:54.0347 0x0bf4 [ 9EEA84226ED2A028BC3FDFDDE03FE95C, 5DF9428D0B2078CD0C391B0721117C989D680E78A2B8D54DAA9662B1894F772A ] uArcCapture C:\windows\system\uArcCapture.exe
19:59:54.0358 0x0bf4 uArcCapture - ok
19:59:54.0392 0x0bf4 [ C06E6F4679CEB8F430B90A51D76D8D3C, A403592780F75425F40F8E443EBE83CEF9FA8A20EB9597FBFF691298CE323B57 ] udfs C:\windows\system32\DRIVERS\udfs.sys
19:59:54.0400 0x0bf4 udfs - ok
19:59:54.0424 0x0bf4 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\windows\system32\UI0Detect.exe
19:59:54.0427 0x0bf4 UI0Detect - ok
19:59:54.0459 0x0bf4 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\windows\system32\DRIVERS\uliagpkx.sys
19:59:54.0460 0x0bf4 uliagpkx - ok
19:59:54.0484 0x0bf4 [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] umbus C:\windows\system32\DRIVERS\umbus.sys
19:59:54.0486 0x0bf4 umbus - ok
19:59:54.0507 0x0bf4 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\windows\system32\DRIVERS\umpass.sys
19:59:54.0507 0x0bf4 UmPass - ok
19:59:54.0694 0x0bf4 [ 44AA8D5D3B3B5610FEF46CA8A9C52D8C, 5BEDCAB90084D570394B6C209E9F0DAB32468FF11548479480E985059B78CE6E ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
19:59:54.0733 0x0bf4 UNS - ok
19:59:54.0768 0x0bf4 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\windows\System32\upnphost.dll
19:59:54.0777 0x0bf4 upnphost - ok
19:59:54.0821 0x0bf4 [ 77B01BC848298223A95D4EC23E1785A1, 7D0FBBA746588401400226BB966507EE34EEBB2F4F16607601E3D7383CAD34E2 ] usbaudio C:\windows\system32\drivers\usbaudio.sys

[Fucza]

Dokončení:

19:59:54.0823 0x0bf4 usbaudio - ok
19:59:54.0895 0x0bf4 [ 537A4E03D7103C12D42DFD8FFDB5BDC9, 4E6F43A27E629C9769FAEF305BDCD3D7EDBEE1A98B919AF95CF045407A4297D6 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
19:59:54.0900 0x0bf4 usbccgp - ok
19:59:54.0934 0x0bf4 [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\windows\system32\DRIVERS\usbcir.sys
19:59:54.0938 0x0bf4 usbcir - ok
19:59:54.0954 0x0bf4 [ FBB21EBE49F6D560DB37AC25FBC68E66, 0F7B2F9BB4062FE24698FF6E5738E83B7FDA9E7FDE9206BEF18C8818627FF2CC ] usbehci C:\windows\system32\drivers\usbehci.sys
19:59:54.0956 0x0bf4 usbehci - ok
19:59:54.0994 0x0bf4 [ 6B7A8A99C4A459E73C286A6763EA24CC, 3A8D6AE1D970AAEC4E08B76DB1B2C06AC003AF4F50339416072973E89F660EE2 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
19:59:55.0005 0x0bf4 usbhub - ok
19:59:55.0054 0x0bf4 [ 8C88AA7617B4CBC2E4BED61D26B33A27, 4575F0DDFF68C5632CBB7BE93A66FFEDD85BD4D4AEE79C44B2EDA4F8642C6EBF ] usbohci C:\windows\system32\drivers\usbohci.sys
19:59:55.0056 0x0bf4 usbohci - ok
19:59:55.0073 0x0bf4 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
19:59:55.0075 0x0bf4 usbprint - ok
19:59:55.0129 0x0bf4 [ F39983647BC1F3E6100778DDFE9DCE29, 3BD36594F7C753680DB5A4354B1D6A33FC3011631D2D56DD4B2464AA99C85F7B ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
19:59:55.0133 0x0bf4 USBSTOR - ok
19:59:55.0158 0x0bf4 [ 0B5B3B2DF3FD1709618ACFA50B8392B0, 19F040A16C86C475DD33D935E6244593EC73FF9F8C872BC060DDD8AE4F3EDB55 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
19:59:55.0160 0x0bf4 usbuhci - ok
19:59:55.0207 0x0bf4 [ 7CB8C573C6E4A2714402CC0A36EAB4FE, FCD65AA3723617F58F77C4DA93CE910C712B8AA9411B5C4A60DC6C684EA53C1B ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
19:59:55.0213 0x0bf4 usbvideo - ok
19:59:55.0247 0x0bf4 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\windows\System32\uxsms.dll
19:59:55.0252 0x0bf4 UxSms - ok
19:59:55.0279 0x0bf4 [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] VaultSvc C:\windows\system32\lsass.exe
19:59:55.0281 0x0bf4 VaultSvc - ok
19:59:55.0394 0x0bf4 [ F81A2648BFF893C8EFD9897811B14263, 91FDC5A257EA049F1AB1503BB0BF866338AE2D8C1FDDCBC2C47937A21FE515FE ] vcsFPService C:\windows\system32\vcsFPService.exe
19:59:55.0428 0x0bf4 vcsFPService - ok
19:59:55.0460 0x0bf4 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\windows\system32\DRIVERS\vdrvroot.sys
19:59:55.0461 0x0bf4 vdrvroot - ok
19:59:55.0489 0x0bf4 [ 44D73E0BBC1D3C8981304BA15135C2F2, 2849387BBCFB0189AF5604D2F7A631BD5D6BBB2CA73AF6E870069AF382A74DED ] vds C:\windows\System32\vds.exe
19:59:55.0508 0x0bf4 vds - ok
19:59:55.0530 0x0bf4 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
19:59:55.0531 0x0bf4 vga - ok
19:59:55.0554 0x0bf4 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\windows\System32\drivers\vga.sys
19:59:55.0555 0x0bf4 VgaSave - ok
19:59:55.0581 0x0bf4 [ C82E748660F62A242B2DFAC1442F22A4, 24AD6CAA918C5AB6F461D88825885C8637C224001AAD7A80BDC240368CDB0B7E ] vhdmp C:\windows\system32\DRIVERS\vhdmp.sys
19:59:55.0586 0x0bf4 vhdmp - ok
19:59:55.0601 0x0bf4 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\windows\system32\DRIVERS\viaide.sys
19:59:55.0603 0x0bf4 viaide - ok
19:59:55.0615 0x0bf4 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3, 91F2B935E1E88C5542650F7D679A75D0562F4A5812179D1EC146D4B6351361E2 ] volmgr C:\windows\system32\DRIVERS\volmgr.sys
19:59:55.0618 0x0bf4 volmgr - ok
19:59:55.0639 0x0bf4 [ 99B0CBB569CA79ACAED8C91461D765FB, 5BE394A39A941DE2AA1212E66B7068F90D423FA816238657CB9B2DA8BBE69B9B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
19:59:55.0647 0x0bf4 volmgrx - ok
19:59:55.0713 0x0bf4 [ 9E425AC5C9A5A973273D169F43B4F5E1, 64C9A9D4A39865E56F01B4FDE1B56034C4B2A2AEF2ABE15EC1C37911C59595B0 ] volsnap C:\windows\system32\drivers\volsnap.sys
19:59:55.0725 0x0bf4 volsnap - ok
19:59:55.0760 0x0bf4 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
19:59:55.0765 0x0bf4 vsmraid - ok
19:59:55.0882 0x0bf4 [ 787898BF9FB6D7BD87A36E2D95C899BA, A6C0C7402B1A198E7B3D6D7D283FCB5815AC429DA68FC9B54C67707F3233CCB5 ] VSS C:\windows\system32\vssvc.exe
19:59:55.0941 0x0bf4 VSS - ok
19:59:56.0019 0x0bf4 [ E72B7F6AD60EC55B2BBEF6C6202CDE2A, 9218329A0C090E5AB388279D58997CD22DB2F93B329B473706DBBCDAABA6110E ] VSTWinDriver6 C:\windows\system32\drivers\VSTwindrvr6.sys
19:59:56.0028 0x0bf4 VSTWinDriver6 - ok
19:59:56.0046 0x0bf4 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
19:59:56.0048 0x0bf4 vwifibus - ok
19:59:56.0071 0x0bf4 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
19:59:56.0073 0x0bf4 vwififlt - ok
19:59:56.0079 0x0bf4 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
19:59:56.0080 0x0bf4 vwifimp - ok
19:59:56.0133 0x0bf4 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\windows\system32\w32time.dll
19:59:56.0177 0x0bf4 W32Time - ok
19:59:56.0196 0x0bf4 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
19:59:56.0197 0x0bf4 WacomPen - ok
19:59:56.0240 0x0bf4 [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
19:59:56.0243 0x0bf4 WANARP - ok
19:59:56.0251 0x0bf4 [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
19:59:56.0254 0x0bf4 Wanarpv6 - ok
19:59:56.0363 0x0bf4 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
19:59:56.0432 0x0bf4 WatAdminSvc - ok
19:59:56.0515 0x0bf4 [ 5AB1BB85BD8B5089CC5D64200DEDAE68, 28777D4F3CD07C8E3465B6DA0FCA994E0B93071A3A0D4D1D64C1DF633DD1C64F ] wbengine C:\windows\system32\wbengine.exe
19:59:56.0564 0x0bf4 wbengine - ok
19:59:56.0583 0x0bf4 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\windows\System32\wbiosrvc.dll
19:59:56.0589 0x0bf4 WbioSrvc - ok
19:59:56.0648 0x0bf4 [ DD1BAE8EBFC653824D29CCF8C9054D68, 81D6640222FE276D721168745F6BB905D4E756909A9B2C706AF25465D748772D ] wcncsvc C:\windows\System32\wcncsvc.dll
19:59:56.0691 0x0bf4 wcncsvc - ok
19:59:56.0706 0x0bf4 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
19:59:56.0711 0x0bf4 WcsPlugInService - ok
19:59:56.0747 0x0bf4 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\windows\system32\DRIVERS\wd.sys
19:59:56.0748 0x0bf4 Wd - ok
19:59:56.0817 0x0bf4 [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
19:59:56.0839 0x0bf4 Wdf01000 - ok
19:59:56.0863 0x0bf4 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\windows\system32\wdi.dll
19:59:56.0867 0x0bf4 WdiServiceHost - ok
19:59:56.0872 0x0bf4 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\windows\system32\wdi.dll
19:59:56.0875 0x0bf4 WdiSystemHost - ok
19:59:56.0906 0x0bf4 [ 733006127F235BE7C35354EBEE7B9A7B, 2C7E7030D586C36261F33F29883337695493D48CEA415D6DBA7C5635845A5B32 ] WebClient C:\windows\System32\webclnt.dll
19:59:56.0913 0x0bf4 WebClient - ok
19:59:56.0934 0x0bf4 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\windows\system32\wecsvc.dll
19:59:56.0941 0x0bf4 Wecsvc - ok
19:59:56.0958 0x0bf4 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\windows\System32\wercplsupport.dll
19:59:56.0961 0x0bf4 wercplsupport - ok
19:59:56.0997 0x0bf4 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\windows\System32\WerSvc.dll
19:59:57.0000 0x0bf4 WerSvc - ok
19:59:57.0036 0x0bf4 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
19:59:57.0037 0x0bf4 WfpLwf - ok
19:59:57.0058 0x0bf4 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\windows\system32\drivers\wimmount.sys
19:59:57.0059 0x0bf4 WIMMount - ok
19:59:57.0081 0x0bf4 WinDefend - ok
19:59:57.0092 0x0bf4 WinHttpAutoProxySvc - ok
19:59:57.0165 0x0bf4 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
19:59:57.0174 0x0bf4 Winmgmt - ok
19:59:57.0265 0x0bf4 [ 41FBB751936B387F9179E7F03A74FE29, 7A73D887BEC19DFC485ED42B4E6ABEBF824555139B81EA30731A00773E707464 ] WinRM C:\windows\system32\WsmSvc.dll
19:59:57.0332 0x0bf4 WinRM - ok
19:59:57.0407 0x0bf4 [ 817EAFF5D38674EDD7713B9DFB8E9791, F6E0BFC503BA7395F92989C11B454D1F1E58E29302BA203801449A2C5236E84D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
19:59:57.0410 0x0bf4 WinUsb - ok
19:59:57.0470 0x0bf4 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\windows\System32\wlansvc.dll
19:59:57.0505 0x0bf4 Wlansvc - ok
19:59:57.0661 0x0bf4 [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:59:57.0698 0x0bf4 wlidsvc - ok
19:59:57.0738 0x0bf4 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
19:59:57.0739 0x0bf4 WmiAcpi - ok
19:59:57.0776 0x0bf4 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
19:59:57.0784 0x0bf4 wmiApSrv - ok
19:59:57.0821 0x0bf4 WMPNetworkSvc - ok
19:59:57.0856 0x0bf4 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\windows\System32\wpcsvc.dll
19:59:57.0860 0x0bf4 WPCSvc - ok
19:59:57.0883 0x0bf4 [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
19:59:57.0891 0x0bf4 WPDBusEnum - ok
19:59:57.0948 0x0bf4 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
19:59:57.0949 0x0bf4 ws2ifsl - ok
19:59:57.0979 0x0bf4 [ 8F9F3969933C02DA96EB0F84576DB43E, C424D7B881A4DCC348433CF02044383013E32DB94CC66D1D20E1866CB3B0F952 ] wscsvc C:\windows\system32\wscsvc.dll
19:59:57.0986 0x0bf4 wscsvc - ok
19:59:57.0990 0x0bf4 WSearch - ok
19:59:58.0112 0x0bf4 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\windows\system32\wuaueng.dll
19:59:58.0192 0x0bf4 wuauserv - ok
19:59:58.0250 0x0bf4 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
19:59:58.0254 0x0bf4 WudfPf - ok
19:59:58.0302 0x0bf4 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
19:59:58.0309 0x0bf4 WUDFRd - ok
19:59:58.0361 0x0bf4 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll
19:59:58.0367 0x0bf4 wudfsvc - ok
19:59:58.0404 0x0bf4 [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\windows\System32\wwansvc.dll
19:59:58.0416 0x0bf4 WwanSvc - ok
19:59:58.0449 0x0bf4 ================ Scan global ===============================
19:59:58.0476 0x0bf4 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
19:59:58.0527 0x0bf4 [ 3FB74FF230B5D240A57AE1C4A3D0459D, 7A4036CAC3BAAEC719E4152F2CAA9D9B69DACBDC7502147D7160D04AE70BC8DF ] C:\windows\system32\winsrv.dll
19:59:58.0557 0x0bf4 [ 3FB74FF230B5D240A57AE1C4A3D0459D, 7A4036CAC3BAAEC719E4152F2CAA9D9B69DACBDC7502147D7160D04AE70BC8DF ] C:\windows\system32\winsrv.dll
19:59:58.0592 0x0bf4 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
19:59:58.0631 0x0bf4 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
19:59:58.0639 0x0bf4 [ Global ] - ok
19:59:58.0639 0x0bf4 ================ Scan MBR ==================================
19:59:58.0655 0x0bf4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:59:58.0975 0x0bf4 \Device\Harddisk0\DR0 - ok
19:59:58.0976 0x0bf4 ================ Scan VBR ==================================
19:59:58.0980 0x0bf4 [ FF6BE3BAF4E916BC3C0B45BE3137804C ] \Device\Harddisk0\DR0\Partition1
19:59:58.0983 0x0bf4 \Device\Harddisk0\DR0\Partition1 - ok
19:59:58.0996 0x0bf4 [ F48279816828875441023E35F9E4C801 ] \Device\Harddisk0\DR0\Partition2
19:59:58.0999 0x0bf4 \Device\Harddisk0\DR0\Partition2 - ok
19:59:59.0030 0x0bf4 [ 6EE6EA6814C12492CC2E2C0ADC462D81 ] \Device\Harddisk0\DR0\Partition3
19:59:59.0033 0x0bf4 \Device\Harddisk0\DR0\Partition3 - ok
19:59:59.0056 0x0bf4 [ 8E46F89E54B78165EA480068B7919E3D ] \Device\Harddisk0\DR0\Partition4
19:59:59.0058 0x0bf4 \Device\Harddisk0\DR0\Partition4 - ok
19:59:59.0059 0x0bf4 Waiting for KSN requests completion. In queue: 139
20:00:00.0059 0x0bf4 Waiting for KSN requests completion. In queue: 139
20:00:01.0059 0x0bf4 Waiting for KSN requests completion. In queue: 139
20:00:02.0160 0x0bf4 AV detected via SS2: ESET NOD32 Antivirus 5.2, C:\Program Files\ESET\ESET NOD32 Antivirus\ecmd.exe ( 5.2.7.0 ), 0x40010 ( disabled : outofdate )
20:00:02.0212 0x0bf4 Win FW state via NFP2: enabled
20:00:04.0954 0x0bf4 ============================================================
20:00:04.0954 0x0bf4 Scan finished
20:00:04.0954 0x0bf4 ============================================================
20:00:04.0969 0x0f4c Detected object count: 0
20:00:04.0969 0x0f4c Actual detected object count: 0
20:00:42.0132 0x2098 Deinitialize success

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Fucza]

Ač ComboFix psal, že maže ty mrtvé soubory z plochy, soubory tam zůstaly. Zde je log z Combofixu. Díky.

ComboFix 13-11-27.01 - Martin 29.11.2013 14:53:12.13.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.3951.2361 [GMT 1:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Martin\AppData\Local\assembly\tmp
c:\windows\PFRO.log
c:\windows\SysWow64\FlashPlayerApp.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-10-28 do 2013-11-29 )))))))))))))))))))))))))))))))
.
.
2013-11-29 14:03 . 2013-11-29 14:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-11-29 13:49 . 2013-11-29 13:49 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22FC4D1E-7C9F-4CFA-8D0B-389D8546034C}\offreg.dll
2013-11-29 07:34 . 2013-11-08 03:12 10285968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22FC4D1E-7C9F-4CFA-8D0B-389D8546034C}\mpengine.dll
2013-11-27 19:38 . 2013-11-29 14:02 -------- d-----w- c:\users\Martin\AppData\Local\assembly
2013-11-27 19:38 . 2013-11-27 19:38 -------- d-----w- c:\users\Martin\AppData\Local\Apps
2013-11-27 16:38 . 2013-11-27 16:38 -------- d-----w- c:\users\Martin\AppData\Local\ATI
2013-11-27 15:58 . 2013-11-27 15:58 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-11-27 15:58 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-11-23 12:38 . 2013-11-23 12:39 -------- d-----w- c:\program files\Crystal
2013-11-22 16:49 . 2010-07-12 15:40 37776 ----a-w- c:\windows\system32\smrtlocalmon.dll
2013-11-22 16:49 . 2010-07-12 15:40 22312 ----a-w- c:\windows\system32\smrtlocalui.dll
2013-11-22 16:48 . 2013-11-22 16:48 -------- d-----w- c:\program files (x86)\National Instruments
2013-11-22 16:48 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2013-11-22 16:46 . 2003-02-14 18:14 110592 ----a-w- c:\windows\SysWow64\tsccvid.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-22 16:24 . 2012-05-15 20:28 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-15 05:54 . 2012-05-23 15:44 82896128 ----a-w- c:\windows\system32\MRT.exe
2013-11-11 04:50 . 2012-05-18 09:03 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-10-18 15:35 . 2013-10-18 15:35 262960 ----a-w- c:\windows\SysWow64\Smart Bulb Saver.scr
2013-10-18 15:23 . 2013-10-18 15:23 9216 ----a-w- c:\windows\system32\drivers\SMARTVHidMiniVistaAmd64.sys
2013-10-18 15:22 . 2013-10-18 15:22 10240 ----a-w- c:\windows\system32\drivers\SMARTMouseFilterx64.sys
2013-10-18 15:22 . 2013-10-18 15:22 22184 ----a-w- c:\windows\system32\drivers\SMARTVTabletPCx64.sys
2013-10-08 05:50 . 2013-10-20 14:48 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-07-25 14:49 . 2006-01-19 11:32 65024 ----a-w- c:\program files (x86)\ColorCop.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPADVISOR"="c:\program files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2009-09-29 1685048]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-10-21 20549280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-03-01 256056]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2009-12-12 11265536]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-08-05 98304]
"DTRun"="c:\program files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2009-11-18 518656]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"SMART Floating Tools"="c:\program files (x86)\SMART Technologies\Education Software\FloatingTools.exe" [2013-08-22 9221424]
"SMARTNotification"="c:\program files (x86)\SMART Technologies\Education Software\SMARTNotification.exe" [2013-10-18 208688]
"SMART Tray Tools"="c:\program files (x86)\SMART Technologies\Education Software\SMARTTrayIcon.exe" [2013-10-18 754992]
"SMART Board Service"="c:\program files (x86)\SMART Technologies\Education Software\SMARTBoardService.exe" [2013-10-18 1937200]
"sbsdk-server"="c:\program files (x86)\SMART Technologies\Education Software\sbsdk-server\NodeLauncher.exe" [2013-08-22 62768]
"SMART Ink"="c:\program files (x86)\SMART Technologies\Education Software\SMARTInk.exe" [2013-09-30 147248]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
R3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys;c:\windows\SYSNATIVE\Drivers\btmcom.sys [x]
R3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys;c:\windows\SYSNATIVE\Drivers\btmusb.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 SMARTVTabletPCx64;SMART Virtual TabletPC;c:\windows\system32\DRIVERS\SMARTVTabletPCx64.sys;c:\windows\SYSNATIVE\DRIVERS\SMARTVTabletPCx64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 DolBoot;DolBoot;c:\windows\system32\dolboot.sys;c:\windows\SYSNATIVE\dolboot.sys [x]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\program files (x86)\HWiNFO32\HWiNFO64A.SYS;c:\program files (x86)\HWiNFO32\HWiNFO64A.SYS [x]
S1 RsvLock;RsvLock; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe;c:\windows\SYSNATIVE\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files\Motorola\Bluetooth\obexsrv.exe;c:\program files\Motorola\Bluetooth\obexsrv.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
S2 HP ProtectTools Service;HP ProtectTools Service;c:\program files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe;c:\program files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [x]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe;c:\program files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [x]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [x]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [x]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 SMARTHelperService;SMART Helper Service;c:\program files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe;c:\program files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 uArcCapture;ArcCapture;c:\windows\system\uArcCapture.exe;c:\windows\system\uArcCapture.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys;c:\windows\SYSNATIVE\DRIVERS\ArcSoftVCapture.sys [x]
S3 Bluetooth Device Manager;Bluetooth Device Manager;c:\program files\Motorola\Bluetooth\devmgrsrv.exe;c:\program files\Motorola\Bluetooth\devmgrsrv.exe [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files\Motorola\Bluetooth\audiosrv.exe;c:\program files\Motorola\Bluetooth\audiosrv.exe [x]
S3 DEBridge;DEBridge;c:\program files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe;c:\program files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [x]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;c:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys;c:\windows\SYSNATIVE\DRIVERS\InputFilter_FlexDef2b.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
S3 SMARTMouseFilterx64;HID-compliant mouse;c:\windows\system32\DRIVERS\SMARTMouseFilterx64.sys;c:\windows\SYSNATIVE\DRIVERS\SMARTMouseFilterx64.sys [x]
S3 SMARTVHidMiniVistaAmd64;SMART HID Device;c:\windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys;c:\windows\SYSNATIVE\DRIVERS\SMARTVHidMiniVistaAmd64.sys [x]
S3 VSTWinDriver6;VSTWinDriver6;c:\windows\system32\drivers\VSTwindrvr6.sys;c:\windows\SYSNATIVE\drivers\VSTwindrvr6.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 90200850
*NewlyCreated* - MBAMPROTECTOR
*Deregistered* - 90200850
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 19:11 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-11-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-15 16:24]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" [2010-06-18 1691192]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-04-05 8192]
"BTMTrayAgent"="c:\program files\Motorola\Bluetooth\btmshell.dll" [2010-06-10 24783624]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-03-17 487424]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2012-03-07 4081008]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mStart Page = hxxp://search.myheritage.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mDefault_Page_URL = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\14ydu06m.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{FC17E0A7-EAA9-4902-92F8-C83B9FD02246} - c:\program files (x86)\InstallShield Installation Information\{FC17E0A7-EAA9-4902-92F8-C83B9FD02246}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2013-11-29 15:05:28
ComboFix-quarantined-files.txt 2013-11-29 14:05
ComboFix2.txt 2013-09-19 11:11
.
Před spuštěním: Volných bajtů: 202 348 396 544
Po spuštění: Volných bajtů: 202 340 663 296
.
- - End Of File - - F90870C998BE134B553CAF1AA0ED1812

[Žbeky]

Nemůže být to chování kvůli SMART Tools?

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Folder::
c:\program files (x86)\Skype\Updater

Driver::
SkypeUpdate

DDS::
uLocal Page = %SystemRoot%\system32\blank.htm
mStart Page = hxxp://search.myheritage.com
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.


- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu