Prosím o kontrolu Vyřešeno

[854005]

Dobrý večer, zdravím, děda si koupil nový NTB, ale není tak opatrný a dostal se mu do PC nějaký záškodník. Je tam totiž "program" MyPC Backup, tváří se jako od Nortonu, ale prý je to spyware. Nikde ani není možnost to odinstalovat, což spíš svědčí o nějakém spywaru či co. Takže zatím jsem mu zatrhl autospouštění při startu a přikládám logy - prosím o kontrolu. Nic jsem zatím nemazal. Děkuji.

MBAM log:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
http://www.malwarebytes.org

Verze: v2013.12.10.05

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16736
Milan :: MILAN [administrátor]

Ochrana: Povolena

10. 12. 2013 17:49:01
MBAM-log-2013-12-10 (19-02-27).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 500779
Uplynulý čas: 1 hodin, 12 minut, 20 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 4
HKCR\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6} (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\Milan\AppData\Local\SLICK SAVINGS (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 7
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\Coupons.dll (PUP.Optional.Spigot) -> Nebyla provedena žádná instrukce.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\COUPONS_2.4.CRX (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\Coupons64.dll (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\CouponsHelper.exe (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\coupons_2.8.xpi (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\Uninstall.exe (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\Milan\AppData\Local\SLICK SAVINGS\coupons.crx (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.

(konec)

HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:03:48, on 10. 12. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Users\Milan\Documents\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.3\iobitappsToolbarIE.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.3\iobitappsToolbarIE.dll
O2 - BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Milan\AppData\Roaming\Slick Savings\Coupons.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.3\iobitappsToolbarIE.dll
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKUS\S-1-5-19\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Startup: MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files (x86)\MyPC Backup\BackupStack.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe

--
End of file - 10647 bytes

MWAV:

10 XII 2013 19:22:31 [1500] - **********************************************************
10 XII 2013 19:22:31 [1500] - MWAV - eScanAV AntiVirus Toolkit.
10 XII 2013 19:22:31 [1500] - Copyright © MicroWorld Technologies
10 XII 2013 19:22:31 [1500] - **********************************************************
10 XII 2013 19:22:31 [1500] - Source: C:\Users\Milan\Documents\mwav.exe
10 XII 2013 19:22:31 [1500] - Version 14.0.99 (C:\USERS\MILAN\APPDATA\LOCAL\TEMP\MEXE.COM)
10 XII 2013 19:22:31 [1500] - Log File: C:\Users\Milan\AppData\Local\Temp\MWAV.LOG
10 XII 2013 19:22:31 [1500] - MWAV Registered: TRUE
10 XII 2013 19:22:31 [1500] - User Account: Milan (Administrator Mode)
10 XII 2013 19:22:31 [1500] - OS Type: Windows Workstation
10 XII 2013 19:22:31 [1500] - OS: Windows 8 64-Bit [OS Install Date: 29 Nov 2013 18:54:40]
10 XII 2013 19:22:31 [1500] - Ver: Personal Build 9200
10 XII 2013 19:22:31 [1500] - System Up Time: 1 Hour, 46 Minutes, 4 Seconds


10 XII 2013 19:22:31 [1500] - Parent Process Name : C:\Users\Milan\Documents\mwav.exe
10 XII 2013 19:22:31 [1500] - Windows Root Folder: C:\Windows
10 XII 2013 19:22:31 [1500] - Windows Sys32 Folder: C:\Windows\system32
10 XII 2013 19:22:31 [1500] - DHCP NameServer: 192.168.0.1
10 XII 2013 19:22:31 [1500] - Interface0 DHCPNameServer: 192.168.0.1
10 XII 2013 19:22:31 [1500] - Interface1 DHCPNameServer: 192.168.0.1
10 XII 2013 19:22:31 [1500] - Local Fixed Drives: c:\,d:\
10 XII 2013 19:22:31 [1500] - MWAV Mode: Scan and Clean files (for viruses, adware and spyware)
10 XII 2013 19:22:31 [1500] - [CREATED ZIP FILE: C:\Users\Milan\AppData\Local\Temp\pinfect.zip]
10 XII 2013 19:22:31 [1500] - Latest Date of files inside MWAV: Wed Oct 23 08:10:39 2013.
10 XII 2013 19:22:31 [1500] - Sign Version: 7.51069
10 XII 2013 19:22:33 [1500] - ** Changed Value of "Path"
10 XII 2013 19:22:33 [1500] - Loading/Creating FileScan Cache Database C:\ProgramData\MicroWorld\MWAV\ESCANDBX.MDB [Log: C:\Users\Milan\AppData\Local\Temp\ESCANDB.LOG]
10 XII 2013 19:22:35 [1500] - Loaded/Created FileScan Cache Database...
10 XII 2013 19:22:35 [1500] - Loading AV Library [DB]...
10 XII 2013 19:23:03 [1500] - ArchiveScan: DISABLED
10 XII 2013 19:23:04 [1500] - AV Library Loaded - MultiThreaded - 8 : [DB-DIRECT].
10 XII 2013 19:23:04 [1500] - MWAV doing self scanning...
10 XII 2013 19:23:04 [1500] - MWAV files are clean.
10 XII 2013 19:23:33 [1500] - ArchiveScan: DISABLED
10 XII 2013 19:23:33 [1500] - Virus Database Date: 23 Oct 2013
10 XII 2013 19:23:33 [1500] - Virus Database Count: 10199004
10 XII 2013 19:23:47 [1500] - ArchiveScan: ENABLED
10 XII 2013 19:23:55 [1500] - Downloading AntiVirus and Anti-Spyware Databases...
10 XII 2013 19:23:56 [1500] - Update Not Successful!
10 XII 2013 19:24:00 [1500] - Downloading AntiVirus and Anti-Spyware Databases...
10 XII 2013 19:24:01 [1500] - Update Not Successful!

10 XII 2013 19:24:07 [1500] - **********************************************************
10 XII 2013 19:24:07 [1500] - MWAV - eScanAV AntiVirus Toolkit.
10 XII 2013 19:24:07 [1500] - Copyright © MicroWorld Technologies
10 XII 2013 19:24:07 [1500] -
10 XII 2013 19:24:07 [1500] - Support: support@escanav.com
10 XII 2013 19:24:07 [1500] - Web: http://www.escanav.com
10 XII 2013 19:24:07 [1500] - **********************************************************
10 XII 2013 19:24:07 [1500] - Version 14.0.99[DB] (C:\USERS\MILAN\APPDATA\LOCAL\TEMP\MEXE.COM)
10 XII 2013 19:24:07 [1500] - Log File: C:\Users\Milan\AppData\Local\Temp\MWAV.LOG
10 XII 2013 19:24:07 [1500] - User Account: Milan (Administrator Mode)
10 XII 2013 19:24:07 [1500] - Parent Process Name : C:\Users\Milan\Documents\mwav.exe
10 XII 2013 19:24:07 [1500] - Windows Root Folder: C:\Windows
10 XII 2013 19:24:07 [1500] - Windows Sys32 Folder: C:\Windows\system32
10 XII 2013 19:24:07 [1500] - OS: Windows 8 64-Bit [OS Install Date: 29 Nov 2013 18:54:40]
10 XII 2013 19:24:07 [1500] - Ver: Personal Build 9200
10 XII 2013 19:24:07 [1500] - Latest Date of files inside MWAV: Wed Oct 23 08:10:39 2013.
10 XII 2013 19:24:07 [1500] - Sign Version: 7.51069

10 XII 2013 19:24:17 [1430] - Options Selected by User:
10 XII 2013 19:24:17 [1430] - Memory Check: Enabled
10 XII 2013 19:24:17 [1430] - Registry Check: Enabled
10 XII 2013 19:24:17 [1430] - StartUp Folder Check: Enabled
10 XII 2013 19:24:17 [1430] - System Folder Check: Enabled
10 XII 2013 19:24:17 [1430] - Services Check: Enabled
10 XII 2013 19:24:17 [1430] - Scan Spyware: Enabled
10 XII 2013 19:24:17 [1430] - Scan Archives: Enabled
10 XII 2013 19:24:17 [1430] - Drive Check: Disabled
10 XII 2013 19:24:17 [1430] - All Drive Check :Enabled
10 XII 2013 19:24:17 [1430] - Folder Check: Disabled
10 XII 2013 19:24:17 [1430] - SCAN: All_Files
10 XII 2013 19:24:17 [1430] - MWAV Mode: Only Scan files (Do Not Clean)

10 XII 2013 19:24:17 [1430] - Scanning DNS Records...
10 XII 2013 19:24:17 [1430] - Scanning Master Boot Record (User)...
10 XII 2013 19:24:17 [1430] - Scanning Logical Boot Records...
10 XII 2013 19:24:18 [1430] - ***** Scanning For Hidden Rootkit Processes *****
10 XII 2013 19:24:18 [1430] - ***** Scanning For Hidden Rootkit Services *****

10 XII 2013 19:24:24 [1430] - ***** Scanning Memory Files *****

10 XII 2013 19:24:36 [1430] - ***** Scanning Registry Files *****
10 XII 2013 19:24:38 [1430] - ERROR(j)!!! Invalid Entry mcui_exe = "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey (in key HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.

10 XII 2013 19:24:38 [1430] - ***** Scanning StartUp Folders *****

10 XII 2013 19:24:55 [1430] - ***** Scanning Service Files *****
10 XII 2013 19:24:55 [1430] - Scanning File C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10 XII 2013 19:24:55 [1430] - ERROR(2)!!! ScanFile Fails for C:\PROGRA~2\COMMON~1\Adobe\ARM\1.0\armsvc.exe...

10 XII 2013 19:25:06 [1430] - ***** Scanning Registry and File system for Adware/Spyware *****
10 XII 2013 19:25:06 [1430] - Loading Spyware Signatures from new External Database [Name: C:\Users\Milan\AppData\Local\Temp\spydb.avs, Size: 464654]...
10 XII 2013 19:25:06 [1430] - Indexed Spyware Databases Successfully Created...


10 XII 2013 19:25:11 [1430] - ***** Scanning System32 Folders *****


10 XII 2013 19:26:06 [1430] - ***** Scanning All Drives *****
10 XII 2013 19:26:06 [1430] - ***** C:,D: *****
10 XII 2013 19:26:06 [1430] - Scanning C:\ Drive
10 XII 2013 19:26:15 [060c] - ScanFile (C:\OEM\Preload\Autorun\APP\Acer Recovery Management v6\Setup_x86.msi) took 6578 ms
10 XII 2013 19:26:16 [15f4] - ScanFile (C:\OEM\Preload\Autorun\APP\Acer Recovery Management v6\Setup_x64.msi) took 6969 ms
10 XII 2013 19:26:22 [1110] - ScanFile (C:\OEM\Preload\Autorun\APP\clear.fi Photo v2.01\clear.fi_Photo.exe) took 11735 ms
10 XII 2013 19:26:23 [10b0] - ScanFile (C:\OEM\Preload\Autorun\APP\NTI Media Maker v9.0\NTI Media Maker 9.msi) took 6312 ms
10 XII 2013 19:26:34 [17c0] - ScanFile (C:\OEM\Preload\Autorun\APP\MediaEspresso\Data1.cab) took 22735 ms
10 XII 2013 19:26:50 [0db8] - ScanFile (C:\OEM\Preload\Autorun\APP\NTI Media Maker v9.0\Data1.cab) took 35609 ms
10 XII 2013 19:27:10 [0654] - ScanFile (C:\OEM\Preload\Autorun\APP\Acer Backup Manager V4.0.0\Data1.cab) took 62813 ms
10 XII 2013 19:27:10 [0654] - Scanning of C:\OEM\Preload\Autorun\APP\Acer Backup Manager V4.0.0\Data1.cab Timed out!!!
10 XII 2013 19:27:24 [0ac0] - ScanFile (C:\OEM\Preload\Autorun\DRV\nVidia NVIDIA VGA N14MGL\PhysX\PhysX_9.12.0613_SystemSoftware.msi) took 19094 ms
10 XII 2013 19:28:43 [1110] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.PhysX.0\PhysX_9.12.0613_SystemSoftware.msi) took 22125 ms
10 XII 2013 19:32:11 [10b0] - ScanFile (C:\Program Files\WindowsApps\Microsoft.BingFinance_2.0.0.308_x64__8wekyb3d8bbwe\Configuration\Configuration.zip) took 10328 ms
10 XII 2013 19:38:46 [15f4] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\a76a0bbe1cef35a0b\WLXSuite.msi) took 5953 ms
10 XII 2013 19:38:49 [1110] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\bd6c2d261cef35a13\Writer.msi) took 6047 ms
10 XII 2013 19:38:50 [17c0] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\b43879c81cef35a10\UXPlatform.msi) took 9438 ms
10 XII 2013 19:38:51 [0db8] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\ce5f9ffa1cef35a1a\writerlang.msi) took 6281 ms
10 XII 2013 19:38:53 [15f4] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\d6cd6e871cef35a1c\MailLang.msi) took 6953 ms
10 XII 2013 19:38:56 [0654] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\bef334041cef35a14\Mail.msi) took 12781 ms
10 XII 2013 19:38:57 [0ac0] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\c91edf621cef35a18\MovieMaker.msi) took 13250 ms
10 XII 2013 19:39:08 [060c] - ScanFile (C:\Program Files (x86)\Common Files\Windows Live\.cache\d123c3e81cef35a1b\PhotoLibrary.msi) took 23765 ms
10 XII 2013 19:39:20 [1110] - ScanFile (C:\Program Files (x86)\Common Files\Wise Installation Wizard\WIS766D51EF3F9E490F84900F24910F18BC_6_0_4000_6.MSI) took 28000 ms
10 XII 2013 19:39:39 [15f4] - C:\Program Files (x86)\InstallShield Installation Information\{35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}\SupportFiles.7z not Scanned. Possibly password protected...
10 XII 2013 19:39:45 [1110] - ScanFile (C:\Program Files (x86)\InstallShield Installation Information\{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}\MyWinLocker.exe) took 7906 ms
10 XII 2013 19:39:46 [060c] - C:\Program Files (x86)\InstallShield Installation Information\{EBA33CAD-E071-48d5-A168-FBA4EEB42E93}\SupportFiles.7z not Scanned. Possibly password protected...
10 XII 2013 19:40:07 [0db8] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2742614.cab) took 7203 ms
10 XII 2013 19:40:08 [10b0] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2742616.cab) took 8187 ms
10 XII 2013 19:40:16 [0654] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2795944.cab) took 10828 ms
10 XII 2013 19:40:17 [0db8] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2798162.cab) took 9688 ms
10 XII 2013 19:40:17 [0ac0] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2805227.cab) took 8875 ms
10 XII 2013 19:40:23 [17c0] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2750149.cab) took 23281 ms
10 XII 2013 19:40:27 [15f4] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2805222.cab) took 19453 ms
10 XII 2013 19:40:37 [10b0] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2822241.cab) took 21625 ms
10 XII 2013 19:40:38 [060c] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2769165.cab) took 36672 ms
10 XII 2013 19:40:42 [0654] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2871389.cab) took 5953 ms
10 XII 2013 19:40:45 [1110] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2769166.cab) took 42703 ms
10 XII 2013 19:40:49 [0db8] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2836988.cab) took 26546 ms
10 XII 2013 19:40:50 [0ac0] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2845533.cab) took 23422 ms
10 XII 2013 19:40:55 [17c0] - ScanFile (C:\Program Files (x86)\IObit\Advanced SystemCare 7\SecurityHole_Backup\KB2888505.cab) took 16906 ms
10 XII 2013 19:41:20 [060c] - ScanFile (C:\Program Files (x86)\Java\jre7\lib\rt.jar) took 5125 ms
10 XII 2013 19:42:33 [060c] - ScanFile (C:\Program Files (x86)\Mozilla Firefox\omni.ja) took 6562 ms
10 XII 2013 19:44:32 [17c0] - Scanning File C:\System Volume Information\{e0fa96d4-5c12-11e3-be86-f4b7e27bd3c1}{3808876b-c176-4e48-b7ae-04046e6cc752}
10 XII 2013 19:44:32 [0654] - Scanning File C:\System Volume Information\{700b047a-59b5-11e3-be74-2089845a4f43}{3808876b-c176-4e48-b7ae-04046e6cc752}
10 XII 2013 19:44:32 [10b0] - Scanning File C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
10 XII 2013 19:44:32 [15f4] - Scanning File C:\System Volume Information\{d3483ddc-59b4-11e3-be73-2089845a4f43}{3808876b-c176-4e48-b7ae-04046e6cc752}
10 XII 2013 19:44:32 [060c] - Scanning File C:\System Volume Information\{022d81ec-5f4b-11e3-be8b-2089845a4f43}{3808876b-c176-4e48-b7ae-04046e6cc752}
10 XII 2013 19:44:38 [0654] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-DiscoveryService-https???go.microsoft.com?fwlink??LinkID=195324&clcid=0x409.dat
10 XII 2013 19:44:38 [0db8] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-Channel-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?Channel.dat
10 XII 2013 19:44:38 [1110] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-Namespace-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?en-us?c?CZ?Namespace?pc?00000000-0000-0000-0000-000000000000?00000000-0000-0000-0000-000000000000.dat
10 XII 2013 19:44:38 [17c0] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-ProductTileExtendedByProductGuid-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?en-US_cs-CZ?c?CZ?cp?10011732?Apps?cb9608e7-ac6b-4127-85b7-f81e27c9ebf0.dat
10 XII 2013 19:44:38 [0ac0] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-ProductTileExtendedByProductGuid-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?en-US_cs-CZ?c?CZ?cp?10011732?Apps?64b22df1-5a9c-4c88-aa1f-42cefaf8b281.dat
10 XII 2013 19:44:38 [15f4] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-ProductTileExtendedByProductGuid-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?en-US_cs-CZ?c?CZ?cp?10011732?Apps?2d85eb97-3ee6-4aff-9618-3f6cdfd68291.dat
10 XII 2013 19:44:38 [060c] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-ProductTileExtendedByProductGuid-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?en-US_cs-CZ?c?CZ?cp?10011732?Apps?9c10bc10-75bf-41e3-a26a-01aba908af85.dat
10 XII 2013 19:44:39 [10b0] - Scanning File C:\Users\Milan\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-ProductTileExtendedByProductGuid-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?en-US_cs-CZ?c?CZ?cp?10011732?Apps?80703976-7271-478b-909d-c1805a297206.dat
10 XII 2013 19:44:59 [10b0] - Too Long FileName (snameA: C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Namespace-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?cs-CZ?c?CZ?Namespace?pc?00000000-0000-0000-0000-000000000000?00000000-0000-0000-0000-000000000000.dat)
10 XII 2013 19:44:59 [10b0] - Too Long FileName (snameA: C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuidForOS-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?cs-CZ_cs-CZ?c?CZ?OsUpgrade?0df8a05e-9676-4948-a544-090d978ebee7?pt?x64.dat)
10 XII 2013 19:45:01 [060c] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Channel-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?Channel.dat
10 XII 2013 19:45:01 [17c0] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-DiscoveryService-https???go.microsoft.com?fwlink??LinkID=195324&clcid=0x409.dat
10 XII 2013 19:45:01 [1110] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-HomePageData-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?cs-CZ_cs-CZ?c?CZ?cp?10011732?HomePageData?pt?x64?lf?1?os?Core?OEM?DM.dat
10 XII 2013 19:45:01 [0ac0] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Featured-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?c?CZ?Featured?10914877.dat
10 XII 2013 19:45:01 [0654] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-HomePageData-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?cs-CZ_cs-CZ?c?CZ?cp?10011732?HomePageData?pt?x64?lf?1?os?edition?type.dat
10 XII 2013 19:45:01 [15f4] - ScanFile (C:\Users\Milan\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat) took 5610 ms
10 XII 2013 19:45:01 [0db8] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?cs-cz?0?22?Home.htm.dat
10 XII 2013 19:45:01 [10b0] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?cs-cz?0?22?Installs.htm.dat
10 XII 2013 19:45:05 [0ac0] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?cs-cz?0?22?Upgrade.htm.dat
10 XII 2013 19:45:05 [17c0] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?cs-cz?0?22?Settings.htm.dat
10 XII 2013 19:45:05 [1110] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?cs-cz?0?22?Updates.htm.dat
10 XII 2013 19:45:05 [060c] - Scanning File C:\Users\Milan\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?cs-cz?0?22?Results.htm.dat
10 XII 2013 19:45:16 [17c0] - ScanFile (C:\Users\Milan\AppData\LocalLow\Sun\Java\jre1.7.0_45\Data1.cab) took 5453 ms
10 XII 2013 19:45:27 [1110] - ScanFile (C:\Windows\AppCompat\Programs\Amcache.hve) took 8234 ms
10 XII 2013 19:45:48 [15f4] - ScanFile (C:\Users\Milan\Downloads\irfanview_plugins_436_setup.exe) took 31000 ms
10 XII 2013 19:46:18 [17c0] - ScanFile (C:\Users\Milan\Downloads\LibreOffice_4.1.3_Win_x86.msi) took 60141 ms
10 XII 2013 19:46:18 [17c0] - Scanning of C:\Users\Milan\Downloads\LibreOffice_4.1.3_Win_x86.msi Timed out!!!
10 XII 2013 19:47:24 [15f4] - ScanFile (C:\Windows\Installer\3a4ad.msi) took 6750 ms
10 XII 2013 19:47:26 [10b0] - ScanFile (C:\Windows\Installer\3a4a9.msi) took 8687 ms
10 XII 2013 19:47:26 [17c0] - ScanFile (C:\Windows\Installer\6198f.msi) took 5312 ms
10 XII 2013 19:47:31 [0db8] - ScanFile (C:\Windows\Installer\4a3835.msi) took 10953 ms
10 XII 2013 19:47:38 [10b0] - ScanFile (C:\Windows\Installer\9ea54.msi) took 5719 ms
10 XII 2013 19:47:41 [0db8] - ScanFile (C:\Windows\Installer\9ea4f.msi) took 8906 ms
10 XII 2013 19:47:42 [0654] - ScanFile (C:\Windows\Installer\13aa17.msi) took 31500 ms
10 XII 2013 19:47:46 [060c] - ScanFile (C:\Windows\Installer\3a4a1.msi) took 29531 ms
10 XII 2013 19:47:49 [1110] - ScanFile (C:\Windows\Installer\42406.msi) took 29485 ms
10 XII 2013 19:48:03 [0ac0] - ScanFile (C:\Windows\Installer\1effeb.msi) took 49875 ms
10 XII 2013 19:48:24 [17c0] - ScanFile (C:\Windows\Installer\c6e74.msi) took 42078 ms
10 XII 2013 19:48:28 [15f4] - ScanFile (C:\Windows\Installer\73efd.msi) took 59688 ms
10 XII 2013 19:52:14 [0ac0] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\nvac.inf_amd64_533776f9ccc79ddd\NvCplSetupInt.exe) took 9047 ms
10 XII 2013 19:53:17 [1110] - C:\Windows\System32\log.txt not Scanned. Possibly password protected...
10 XII 2013 20:14:48 [1430] - Scanning D:\ Drive
10 XII 2013 20:16:52 [10b0] - ScanFile (D:\MOJE SLOŽKA\Osobní věci dědy\Doklady_Tenglerovi a Duškovi st\Doklady Tengelrovi a Duškovi st.zip) took 11703 ms
10 XII 2013 20:17:10 [17c0] - Scanning File D:\MOJE SLOŽKA\Politika\Různé\Lži politiku.rtf
10 XII 2013 20:25:21 [1430] - INVALID ATTRIBUTES FOR FOLDER [D:\MOJE SLOŽKA\VOJENSTVI]. IGNORING.
10 XII 2013 20:26:02 [17c0] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Krajinné oblasti\ČESKË\Krkonoše\Krkonoše_2_2012_Saska\první vyjí3ika.jpg
10 XII 2013 20:26:02 [060c] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Krajinné oblasti\ČESKË\Krkonoše\Krkonoše_2_2012_Saska\to samé s jiným ly3aoem.jpg
10 XII 2013 20:26:02 [0db8] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Krajinné oblasti\ČESKË\Krkonoše\Krkonoše_2_2012_Saska\ráno-Studniení h.s Pra3skou b..jpg
10 XII 2013 20:26:02 [0ac0] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Krajinné oblasti\ČESKË\Krkonoše\Krkonoše_2_2012_Saska\v chati Na Lučinách.jpg
10 XII 2013 20:26:02 [15f4] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Krajinné oblasti\ČESKË\Krkonoše\Krkonoše_2_2012_Saska\u vleku z Pece.jpg
10 XII 2013 20:26:02 [1110] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Krajinné oblasti\ČESKË\Krkonoše\Krkonoše_2_2012_Saska\Va1ek se Zdenkem na Pardubkách.jpg
10 XII 2013 20:26:02 [10b0] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Krajinné oblasti\ČESKË\Krkonoše\Krkonoše_2_2012_Saska\eekáme na ostatní.jpg
10 XII 2013 20:26:27 [060c] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Umění\Obrazy_malby\Geniá!lní maíř- realista.pps
10 XII 2013 20:26:29 [1110] - Scanning File D:\MOJE SLOŽKA\Zajímavosti, kuriozity\Umění\Staré pullitry.pps

10 XII 2013 20:27:49 [1430] - ***** Checking for specific ITW Viruses *****

10 XII 2013 20:27:50 [1430] - ***** Scanning complete. *****

10 XII 2013 20:27:50 [1430] - Total Objects Scanned: 313393
10 XII 2013 20:27:50 [1430] - Total Critical Objects: 0
10 XII 2013 20:27:50 [1430] - Total Disinfected Objects: 0
10 XII 2013 20:27:50 [1430] - Total Objects Renamed: 0
10 XII 2013 20:27:50 [1430] - Total Deleted Objects: 0
10 XII 2013 20:27:50 [1430] - Total Errors: 2
10 XII 2013 20:27:50 [1430] - Time Elapsed: 01:03:31
10 XII 2013 20:27:50 [1430] - Virus Database Date: 23 Oct 2013
10 XII 2013 20:27:50 [1430] - Virus Database Count: 10199004

10 XII 2013 20:27:50 [1430] - Scan Completed.

[Reklama]

[jaro3]

MWAV nepoužívej , odinstaluj ho.

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.


Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[854005]

ADW Cleaner:

# AdwCleaner v3.015 - Report created 11/12/2013 at 20:16:25
# Updated 10/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Milan - MILAN
# Running from : C:\Users\Milan\Documents\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : BackupStack

***** [ Files / Folders ] *****

File Found : C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
File Found : C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\user.js
File Found : C:\Windows\System32\roboot64.exe
Folder Found C:\Program Files (x86)\Common Files\Spigot
Folder Found C:\Program Files (x86)\MyPC Backup
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKCU\Software\WEDLMNGR
Key Found : [x64] HKCU\Software\WEDLMNGR
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [2128 octets] - [11/12/2013 20:16:25]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2188 octets] ##########


MBAM:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.10.05

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16736
Milan :: MILAN [administrátor]

Ochrana: Povolena

11. 12. 2013 18:30:28
mbam-log-2013-12-11 (18-30-28).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 502924
Uplynulý čas: 1 hodin, 29 minut, 33 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 4
HKCR\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6} (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Milan\AppData\Local\SLICK SAVINGS (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené soubory: 7
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\Coupons.dll (PUP.Optional.Spigot) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\COUPONS_2.4.CRX (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\Coupons64.dll (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\CouponsHelper.exe (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\coupons_2.8.xpi (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Milan\AppData\Roaming\SLICK SAVINGS\Uninstall.exe (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Milan\AppData\Local\SLICK SAVINGS\coupons.crx (PUP.Optional.Spigot.A) -> Přesun do karantény a smazání se zdařilo.

(konec)

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.


Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[854005]

Tady je ten ADWCleaner. Zbytek udělám hned.

# AdwCleaner v3.015 - Report created 12/12/2013 at 21:46:19
# Updated 10/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Milan - MILAN
# Running from : C:\Users\Milan\Documents\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : BackupStack

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
File Deleted : C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\WEDLMNGR
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [2280 octets] - [11/12/2013 20:17:21]
AdwCleaner[R1].txt - [2340 octets] - [12/12/2013 21:46:03]
AdwCleaner[S0].txt - [2259 octets] - [12/12/2013 21:46:19]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2319 octets] ##########

[854005]

JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8 x64
Ran by Milan on źt 12. 12. 2013 at 22:07:38,98
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\mypc backup"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Milan\AppData\Roaming\mozilla\firefox\profiles\d5hj2ziy.default\extensions\savingsslider@mybrowserbar.com



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 12. 12. 2013 at 22:16:32,98
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


RogueKiller

RogueKiller V8.7.11 _x64_ [Nov 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Milan [Práva správce]
Mód : Kontrola -- Datum : 12/12/2013 22:25:54
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyEnable (1) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST750LM022 HN-M750MBB +++++
--- User ---
[MBR] ecce24364a075de7743a348008519ae3
[BSP] df78c1ab2c17013a0beb8ded88fb44b5 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_12122013_222554.txt >>

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[854005]

Rogue Killer:

RogueKiller V8.7.11 _x64_ [Nov 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Milan [Práva správce]
Mód : Odebrat -- Datum : 12/13/2013 12:50:48
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST750LM022 HN-M750MBB +++++
--- User ---
[MBR] ecce24364a075de7743a348008519ae3
[BSP] df78c1ab2c17013a0beb8ded88fb44b5 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_12132013_125048.txt >>
RKreport[0]_S_12122013_222554.txt;RKreport[0]_S_12132013_125032.txt

TDSS

12:57:58.0742 0x1020 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:57:58.0742 0x1020 UEFI system
12:58:02.0492 0x1020 ============================================================
12:58:02.0492 0x1020 Current date / time: 2013/12/13 12:58:02.0492
12:58:02.0492 0x1020 SystemInfo:
12:58:02.0492 0x1020
12:58:02.0492 0x1020 OS Version: 6.2.9200 ServicePack: 0.0
12:58:02.0492 0x1020 Product type: Workstation
12:58:02.0492 0x1020 ComputerName: MILAN
12:58:02.0492 0x1020 UserName: Milan
12:58:02.0492 0x1020 Windows directory: C:\Windows
12:58:02.0492 0x1020 System windows directory: C:\Windows
12:58:02.0492 0x1020 Running under WOW64
12:58:02.0492 0x1020 Processor architecture: Intel x64
12:58:02.0492 0x1020 Number of processors: 4
12:58:02.0492 0x1020 Page size: 0x1000
12:58:02.0492 0x1020 Boot type: Normal boot
12:58:02.0492 0x1020 ============================================================
12:58:03.0477 0x1020 KLMD registered as C:\Windows\system32\drivers\07016316.sys
12:58:03.0758 0x1020 System UUID: {CC4E98CD-681F-15DF-C609-25DB29069EB3}
12:58:04.0649 0x1020 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:58:04.0664 0x1020 ============================================================
12:58:04.0664 0x1020 \Device\Harddisk0\DR0:
12:58:04.0664 0x1020 GPT partitions:
12:58:04.0664 0x1020 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {45295DE5-156D-4065-AB89-E46DD26CB260}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
12:58:04.0664 0x1020 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {15351728-C8EE-48C5-95AB-5808030D681E}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x96000
12:58:04.0664 0x1020 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6EA64399-9092-4CD7-AF64-16F354921AA8}, Name: Microsoft reserved partition, StartLBA 0x15E800, BlocksNum 0x40000
12:58:04.0664 0x1020 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {3CF43E10-84D4-4C80-AFFB-314C0436B015}, Name: Basic data partition, StartLBA 0x19E800, BlocksNum 0xC800000
12:58:04.0664 0x1020 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {00028F57-0960-8EE7-C1ED-DF0DAE1E0500}, Name: Basic data partition, StartLBA 0xC99E800, BlocksNum 0x48661800
12:58:04.0664 0x1020 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C9F45B07-4BCB-4F54-BFA2-14F121A26D60}, Name: Basic data partition, StartLBA 0x55000800, BlocksNum 0x2545800
12:58:04.0664 0x1020 MBR partitions:
12:58:04.0664 0x1020 ============================================================
12:58:04.0695 0x1020 C: <-> \Device\Harddisk0\DR0\Partition4
12:58:04.0727 0x1020 D: <-> \Device\Harddisk0\DR0\Partition5
12:58:04.0727 0x1020 ============================================================
12:58:04.0727 0x1020 Initialize success
12:58:04.0727 0x1020 ============================================================
12:58:19.0634 0x1430 ============================================================
12:58:19.0634 0x1430 Scan started
12:58:19.0634 0x1430 Mode: Manual;
12:58:19.0634 0x1430 ============================================================
12:58:19.0634 0x1430 KSN ping started
12:58:22.0134 0x1430 KSN ping finished: true
12:58:22.0743 0x1430 ================ Scan system memory ========================
12:58:22.0743 0x1430 System memory - ok
12:58:22.0759 0x1430 ================ Scan services =============================
12:58:22.0900 0x1430 [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
12:58:22.0915 0x1430 1394ohci - ok
12:58:23.0025 0x1430 [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware C:\Windows\system32\drivers\3ware.sys
12:58:23.0025 0x1430 3ware - ok
12:58:23.0087 0x1430 [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:58:23.0103 0x1430 ACPI - ok
12:58:23.0103 0x1430 [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex C:\Windows\system32\Drivers\acpiex.sys
12:58:23.0118 0x1430 acpiex - ok
12:58:23.0134 0x1430 [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
12:58:23.0134 0x1430 acpipagr - ok
12:58:23.0134 0x1430 [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
12:58:23.0134 0x1430 AcpiPmi - ok
12:58:23.0196 0x1430 [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime C:\Windows\System32\drivers\acpitime.sys
12:58:23.0196 0x1430 acpitime - ok
12:58:23.0306 0x1430 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:58:23.0384 0x1430 AdobeARMservice - ok
12:58:23.0446 0x1430 [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:58:23.0462 0x1430 adp94xx - ok
12:58:23.0509 0x1430 [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:58:23.0525 0x1430 adpahci - ok
12:58:23.0540 0x1430 [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:58:23.0556 0x1430 adpu320 - ok
12:58:23.0665 0x1430 [ 9D35F4CD788ED5FF8CC22F89317E7C83, 8A8FEC3A61927B76106E84F53DC6B5B53AC11C18DCECD548D464B47171B75A99 ] AdvancedSystemCareService7 C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
12:58:23.0696 0x1430 AdvancedSystemCareService7 - ok
12:58:23.0743 0x1430 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:58:23.0759 0x1430 AeLookupSvc - ok
12:58:23.0821 0x1430 [ 7C0E0EDF18D6CC565D7BFBB451709FA5, 47C21CD9D87B5C1B5EB14F6166B5E3349B1A6F10501E63CCED8D52A9FE22765D ] AFD C:\Windows\system32\drivers\afd.sys
12:58:23.0837 0x1430 AFD - ok
12:58:23.0868 0x1430 [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:58:23.0868 0x1430 agp440 - ok
12:58:23.0900 0x1430 [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG C:\Windows\System32\alg.exe
12:58:23.0900 0x1430 ALG - ok
12:58:23.0931 0x1430 [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
12:58:23.0946 0x1430 AllUserInstallAgent - ok
12:58:23.0978 0x1430 [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
12:58:23.0993 0x1430 AmdK8 - ok
12:58:24.0009 0x1430 [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
12:58:24.0009 0x1430 AmdPPM - ok
12:58:24.0040 0x1430 [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:58:24.0040 0x1430 amdsata - ok
12:58:24.0071 0x1430 [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
12:58:24.0087 0x1430 amdsbs - ok
12:58:24.0087 0x1430 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:58:24.0087 0x1430 amdxata - ok
12:58:24.0103 0x1430 [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID C:\Windows\system32\drivers\appid.sys
12:58:24.0103 0x1430 AppID - ok
12:58:24.0118 0x1430 [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:58:24.0118 0x1430 AppIDSvc - ok
12:58:24.0150 0x1430 [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo C:\Windows\System32\appinfo.dll
12:58:24.0150 0x1430 Appinfo - ok
12:58:24.0212 0x1430 [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc C:\Windows\system32\drivers\arc.sys
12:58:24.0212 0x1430 arc - ok
12:58:24.0228 0x1430 [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:58:24.0243 0x1430 arcsas - ok
12:58:24.0275 0x1430 [ 9F34AA1124EEA112E49E48258B1D6394, F8648E5EDD7DDFE8D0F5F410E90D0713381A5DB0980D4F0D13D6A5B1F9F4E9A6 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
12:58:24.0275 0x1430 aswFsBlk - ok
12:58:24.0306 0x1430 [ 5C49AB607897C94E123EC8364FF4BF61, 77F69B00DDE1433C115AA617E0063CB93EE29B3E8D168EF2497E31DD573D5A13 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
12:58:24.0306 0x1430 aswMonFlt - ok
12:58:24.0353 0x1430 [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
12:58:24.0353 0x1430 aswRdr - ok
12:58:24.0368 0x1430 [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
12:58:24.0368 0x1430 aswRvrt - ok
12:58:24.0462 0x1430 [ 1BA60C77EB3CDB6129DAD25BAF675F43, 1D5BB6B427E065494C8A363996974048C890F9DBBEEF305B7034873696DFD969 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
12:58:24.0493 0x1430 aswSnx - ok
12:58:24.0540 0x1430 [ 79ADA401A6E2054F110E7FBDFAC71942, 0E551FB9E5FE598900036E872E16EB407F7F63FD7A8A0AFAB5094D9DFA75CFCF ] aswSP C:\Windows\system32\drivers\aswSP.sys
12:58:24.0572 0x1430 aswSP - ok
12:58:24.0603 0x1430 [ 59787B95DD9CA44CB139D96863438587, C36E1A812931BBEACE38BF1E621C950439144979E31961C016AD1AE323579058 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
12:58:24.0618 0x1430 aswVmm - ok
12:58:24.0634 0x1430 [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:58:24.0634 0x1430 AsyncMac - ok
12:58:24.0650 0x1430 [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi C:\Windows\system32\drivers\atapi.sys
12:58:24.0650 0x1430 atapi - ok
12:58:24.0697 0x1430 [ 51C6777AD7649F6C3ED389151CFD9DE6, B010089D83A9D96DC5D1C525B8EA913CF2F80FA0254684A16DD29CCA9BE84620 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
12:58:24.0697 0x1430 AthBTPort - ok
12:58:24.0775 0x1430 [ D3B0A608057455B6B8E6A02FBDC33C62, A6DE8FA4B118F0F5D7084EA9245B97110A04198C2DED4CF1FC38DE52905712CA ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
12:58:24.0790 0x1430 AtherosSvc - ok
12:58:25.0025 0x1430 [ 1DA32C4ED8D3928B0DAC570557B8A09B, F828CD4FCA70D6F231D2C8DB0DBD428AA690ACC698B6F4631C8E12E72241F625 ] athr C:\Windows\system32\DRIVERS\athw8x.sys
12:58:25.0103 0x1430 athr - ok
12:58:25.0150 0x1430 [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
12:58:25.0165 0x1430 AudioEndpointBuilder - ok
12:58:25.0259 0x1430 [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:58:25.0290 0x1430 Audiosrv - ok
12:58:25.0353 0x1430 [ 4D41D30E2FAB3307967C7A0B045DC874, 620482D08544478862C78285E17DEE9BC3466DF8B62BD502B0C17AE6501D2B5E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:58:25.0353 0x1430 avast! Antivirus - ok
12:58:25.0384 0x1430 [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:58:25.0400 0x1430 AxInstSV - ok
12:58:25.0478 0x1430 [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
12:58:25.0509 0x1430 b06bdrv - ok
12:58:25.0525 0x1430 [ 0630C8915B747E88E825CE7F73B66A5D, E9B465EE23487B59B1C906B04F9235B0BFBF254C1760E2462A7D1D7FE1655088 ] b57xdbd C:\Windows\System32\drivers\b57xdbd.sys
12:58:25.0525 0x1430 b57xdbd - ok
12:58:25.0540 0x1430 [ CA8457E528E13B38F8DC3B86B6BA4C6B, 532E48BBBA806608EBEFE10A94DCE2BFE8918D8DD6DEF6871F44FEEDA51238B8 ] b57xdmp C:\Windows\System32\drivers\b57xdmp.sys
12:58:25.0540 0x1430 b57xdmp - ok
12:58:25.0572 0x1430 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
12:58:25.0572 0x1430 BasicDisplay - ok
12:58:25.0634 0x1430 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
12:58:25.0650 0x1430 BasicRender - ok
12:58:25.0712 0x1430 [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC C:\Windows\System32\bdesvc.dll
12:58:25.0728 0x1430 BDESVC - ok
12:58:25.0759 0x1430 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep C:\Windows\system32\drivers\Beep.sys
12:58:25.0759 0x1430 Beep - ok
12:58:25.0884 0x1430 [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE C:\Windows\System32\bfe.dll
12:58:25.0915 0x1430 BFE - ok
12:58:25.0993 0x1430 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS C:\Windows\System32\qmgr.dll
12:58:26.0025 0x1430 BITS - ok
12:58:26.0040 0x1430 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:58:26.0040 0x1430 bowser - ok
12:58:26.0087 0x1430 [ 5C6ADD0111E1C6601B5911F7ACF85BB8, 1653E8725478C8118D2AF15399A1A44464AFDC6F66EB1A90BB268A0692831AEE ] BrcmCardReader C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
12:58:26.0087 0x1430 BrcmCardReader - ok
12:58:26.0134 0x1430 [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
12:58:26.0150 0x1430 BrokerInfrastructure - ok
12:58:26.0212 0x1430 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser C:\Windows\System32\browser.dll
12:58:26.0228 0x1430 Browser - ok
12:58:26.0259 0x1430 [ 0E9B28782D0E5DE7C25207432B791B33, FE33E3B27BEED03922DB2565DECC0E12F8CD586B5060EE4A1A87FF99EEC77B22 ] bScsiMSa C:\Windows\System32\drivers\bScsiMSa.sys
12:58:26.0275 0x1430 bScsiMSa - ok
12:58:26.0290 0x1430 [ 8F62F985BDD2F333A3EE34D54894363D, 44755CEEE5B1823990547C1F22FFC833D7BD693E6C3DD056B0C41615ED61ED4C ] bScsiSDa C:\Windows\System32\drivers\bScsiSDa.sys
12:58:26.0306 0x1430 bScsiSDa - ok
12:58:26.0353 0x1430 [ B600D86961C6DF87EEB637D4C4ABB663, 1847B661373AFC14607682C51A786D5E450E10A10ADCEE4A3951055552531301 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
12:58:26.0368 0x1430 BTATH_A2DP - ok
12:58:26.0400 0x1430 [ 43C965027229D9FF6E52E4C71C03B09E, AF0E39EAD8B17A65F885272BEF12BF91578289C183FB39BB803183BE0E5547D1 ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys
12:58:26.0415 0x1430 btath_avdt - ok
12:58:26.0431 0x1430 [ 23CEDCD7527A26B222732A158F76EB24, 5A45D7FC8DFB96A938EEB8604B79413A10C0C16A17D3139B712263211D8215E9 ] BTATH_BUS C:\Windows\System32\drivers\btath_bus.sys
12:58:26.0431 0x1430 BTATH_BUS - ok
12:58:26.0462 0x1430 [ 3DD64966A764BCAFF07C9DC064BD410E, 456252339BCA224549E4CBCD5A0501AF10340211CFD567C577067ABF5DABB21F ] BTATH_HCRP C:\Windows\System32\drivers\btath_hcrp.sys
12:58:26.0478 0x1430 BTATH_HCRP - ok
12:58:26.0509 0x1430 [ B68EE0721EAC305AB1C9C989CDF1AEFF, 3F7CE8E244836E23456E519E48E53E4B9331C9AD9BAF13C208C922404575638A ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
12:58:26.0509 0x1430 BTATH_LWFLT - ok
12:58:26.0587 0x1430 [ 057DA8351AD21AE485A11A8237DC9263, 151C0A591A26E26C7700F00EC8E95C6D8A5406869109A0CA01A3C38D1C5FBA2A ] BTATH_RCP C:\Windows\System32\drivers\btath_rcp.sys
12:58:26.0587 0x1430 BTATH_RCP - ok
12:58:26.0665 0x1430 [ F0B7281CE5B52BF847ADCA5846DE3CC8, 0F3DCB4C03BED812050D7B2EF54537A7EC77C3EFD70B1D0621A44C54903D881D ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
12:58:26.0681 0x1430 BtFilter - ok
12:58:26.0697 0x1430 [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
12:58:26.0712 0x1430 BthAvrcpTg - ok
12:58:26.0744 0x1430 [ A8B20D852B07AE19A13B5D47EC4E4C3B, 86571C9E2BA15BB169CAB2D24C4D0598154C02FD173638CAFC685A7F6B09472D ] BthEnum C:\Windows\System32\drivers\BthEnum.sys
12:58:26.0744 0x1430 BthEnum - ok
12:58:26.0775 0x1430 [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
12:58:26.0775 0x1430 BthHFEnum - ok
12:58:26.0806 0x1430 [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
12:58:26.0806 0x1430 bthhfhid - ok
12:58:26.0853 0x1430 [ 42201C346F0B8C458E1E9CDE04D68A2C, 6168FD0D10CD06B00B5C79D5D2B5C353AAC22FD99CE8D417DDBA33ED63CFB8BF ] BthLEEnum C:\Windows\system32\DRIVERS\BthLEEnum.sys
12:58:26.0868 0x1430 BthLEEnum - ok
12:58:26.0900 0x1430 [ EB4CBCB3288233CD964716D0A5E1CFC5, 0CE67B2D7855117B924ACC3A2979CE12F8DE45227B37AF95F9ABCC7406AD1EC3 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
12:58:26.0900 0x1430 BTHMODEM - ok
12:58:26.0931 0x1430 [ 091BB978E9504D0AD14586929431A957, ACED02B879026A228E35F40847C210BC30A5AFC948FFE922DB21663E4A8DFF1D ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
12:58:26.0931 0x1430 BthPan - ok
12:58:27.0040 0x1430 [ 13795CAA34239D97A7211E7F9D96E012, C4F3402B063A7CFCE386D1AE9255975A199164BA9E7DCDB6129725213A0642B1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
12:58:27.0072 0x1430 BTHPORT - ok
12:58:27.0103 0x1430 [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv C:\Windows\system32\bthserv.dll
12:58:27.0103 0x1430 bthserv - ok
12:58:27.0150 0x1430 [ 1F715957F5236D30B6020A19A4271F6A, C06B637C2C6919E2DE1055AE249AE3EAF7B4890799F22BF5757CC10CEF145043 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
12:58:27.0150 0x1430 BTHUSB - ok
12:58:27.0181 0x1430 [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:58:27.0181 0x1430 cdfs - ok
12:58:27.0275 0x1430 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom C:\Windows\System32\drivers\cdrom.sys
12:58:27.0275 0x1430 cdrom - ok
12:58:27.0306 0x1430 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc C:\Windows\System32\certprop.dll
12:58:27.0322 0x1430 CertPropSvc - ok
12:58:27.0337 0x1430 [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass C:\Windows\System32\drivers\circlass.sys
12:58:27.0337 0x1430 circlass - ok
12:58:27.0384 0x1430 [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS C:\Windows\system32\drivers\CLFS.sys
12:58:27.0400 0x1430 CLFS - ok
12:58:27.0415 0x1430 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
12:58:27.0431 0x1430 CmBatt - ok
12:58:27.0478 0x1430 [ E708BFF0473EC6B271EA46B65B16CA56, 2B4C661F7C5A4395CA4204122A1C3C8AA766B56C3D01CD8BAAFA18F71FC7B591 ] CNG C:\Windows\system32\Drivers\cng.sys
12:58:27.0509 0x1430 CNG - ok
12:58:27.0540 0x1430 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
12:58:27.0540 0x1430 CompositeBus - ok
12:58:27.0556 0x1430 COMSysApp - ok
12:58:27.0572 0x1430 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv C:\Windows\system32\drivers\condrv.sys
12:58:27.0572 0x1430 condrv - ok
12:58:27.0665 0x1430 [ 78AF1C499BF02F9814DF959A04A4F9C9, 9D569A57551C7ACE032C3ECC7BEB8C7606D6BAF58AC1660B4E9FBE907F47E274 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
12:58:27.0697 0x1430 cphs - ok
12:58:27.0728 0x1430 [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:58:27.0728 0x1430 CryptSvc - ok
12:58:27.0775 0x1430 [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam C:\Windows\system32\drivers\dam.sys
12:58:27.0775 0x1430 dam - ok
12:58:27.0853 0x1430 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:58:27.0884 0x1430 DcomLaunch - ok
12:58:27.0931 0x1430 [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc C:\Windows\System32\defragsvc.dll
12:58:27.0962 0x1430 defragsvc - ok
12:58:27.0994 0x1430 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll
12:58:28.0025 0x1430 DeviceAssociationService - ok
12:58:28.0103 0x1430 [ D06DB4200F9444B2386E6C0E68CD574A, 7266A22D6AF86813CF8AB13BE40384D20C24CE72EF75B0C467C5F88F5B058B1E ] DeviceFastLaneService C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
12:58:28.0134 0x1430 DeviceFastLaneService - ok
12:58:28.0181 0x1430 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
12:58:28.0197 0x1430 DeviceInstall - ok
12:58:28.0244 0x1430 [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
12:58:28.0244 0x1430 Dfsc - ok
12:58:28.0306 0x1430 [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:58:28.0322 0x1430 Dhcp - ok
12:58:28.0337 0x1430 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache C:\Windows\system32\drivers\discache.sys
12:58:28.0337 0x1430 discache - ok
12:58:28.0337 0x1430 [ 560495FF4CA22E1D9B1972FA18F43B6F, 41FFDD4C1097AA857A8177E34F101A1A9C1429A4E8DEC3D395C6135A9E112CD6 ] disk C:\Windows\system32\drivers\disk.sys
12:58:28.0353 0x1430 disk - ok
12:58:28.0369 0x1430 [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
12:58:28.0369 0x1430 dmvsc - ok
12:58:28.0415 0x1430 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:58:28.0415 0x1430 Dnscache - ok
12:58:28.0447 0x1430 [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc C:\Windows\System32\dot3svc.dll
12:58:28.0462 0x1430 dot3svc - ok
12:58:28.0494 0x1430 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS C:\Windows\system32\dps.dll
12:58:28.0509 0x1430 DPS - ok
12:58:28.0540 0x1430 [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:58:28.0540 0x1430 drmkaud - ok
12:58:28.0634 0x1430 [ D2BCDD6BBFCD068090C109854FCEE079, 6DC8C67713566ABD2CC7860359AC7ABDBA8B6949D8F7ED001730BB0D53010693 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
12:58:28.0665 0x1430 DsiWMIService - ok
12:58:28.0712 0x1430 [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
12:58:28.0728 0x1430 DsmSvc - ok
12:58:28.0837 0x1430 [ E6AF4DF1817953D73C519B17CF849756, 26A90EB368A3F572086F223ABED87B8FC6F998AE401C9E52BEB5EE76AB052702 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:58:28.0884 0x1430 DXGKrnl - ok
12:58:28.0915 0x1430 [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost C:\Windows\System32\eapsvc.dll
12:58:28.0931 0x1430 Eaphost - ok
12:58:29.0087 0x1430 [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv C:\Windows\system32\drivers\evbda.sys
12:58:29.0165 0x1430 ebdrv - ok
12:58:29.0197 0x1430 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] EFS C:\Windows\System32\lsass.exe
12:58:29.0197 0x1430 EFS - ok
12:58:29.0244 0x1430 [ AD23FC5DB336CA89A6FC2DA1F70E421C, 8C543A0057873B71F19D4D94249D6690F27708FB4D6F4056EC87DF33D7D120EF ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
12:58:29.0244 0x1430 EgisTec Ticket Service - ok
12:58:29.0291 0x1430 [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
12:58:29.0291 0x1430 EhStorClass - ok
12:58:29.0322 0x1430 [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
12:58:29.0337 0x1430 EhStorTcgDrv - ok
12:58:29.0447 0x1430 [ 5C5552BF36C443746A9808EB632B3947, 08969E5A04DECBF374C52A0A0A8DDB2188DFCDAE879D40943FE307971F03E027 ] ePowerSvc C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
12:58:29.0478 0x1430 ePowerSvc - ok
12:58:29.0478 0x1430 [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev C:\Windows\System32\drivers\errdev.sys
12:58:29.0478 0x1430 ErrDev - ok
12:58:29.0556 0x1430 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem C:\Windows\system32\es.dll
12:58:29.0587 0x1430 EventSystem - ok
12:58:29.0619 0x1430 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat C:\Windows\system32\drivers\exfat.sys
12:58:29.0619 0x1430 exfat - ok
12:58:29.0681 0x1430 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:58:29.0681 0x1430 fastfat - ok
12:58:29.0775 0x1430 [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax C:\Windows\system32\fxssvc.exe
12:58:29.0822 0x1430 Fax - ok
12:58:29.0822 0x1430 [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc C:\Windows\System32\drivers\fdc.sys
12:58:29.0822 0x1430 fdc - ok
12:58:29.0837 0x1430 [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost C:\Windows\system32\fdPHost.dll
12:58:29.0853 0x1430 fdPHost - ok
12:58:29.0853 0x1430 [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub C:\Windows\system32\fdrespub.dll
12:58:29.0869 0x1430 FDResPub - ok
12:58:29.0884 0x1430 [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc C:\Windows\system32\fhsvc.dll
12:58:29.0900 0x1430 fhsvc - ok
12:58:29.0900 0x1430 [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:58:29.0916 0x1430 FileInfo - ok
12:58:29.0994 0x1430 [ D409D4A4517865131999FAC96D366CBF, 512A80C4B180D5D6DECBAFB831A56C0DC8C5D1CC7E749465C47D29EC4DA45719 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
12:58:29.0994 0x1430 FileMonitor - ok
12:58:30.0009 0x1430 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:58:30.0025 0x1430 Filetrace - ok
12:58:30.0087 0x1430 [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
12:58:30.0103 0x1430 FLEXnet Licensing Service - ok
12:58:30.0119 0x1430 [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
12:58:30.0134 0x1430 flpydisk - ok
12:58:30.0166 0x1430 [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:58:30.0181 0x1430 FltMgr - ok
12:58:30.0306 0x1430 [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache C:\Windows\system32\FntCache.dll
12:58:30.0353 0x1430 FontCache - ok
12:58:30.0431 0x1430 [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:58:30.0431 0x1430 FontCache3.0.0.0 - ok
12:58:30.0447 0x1430 [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:58:30.0462 0x1430 FsDepends - ok
12:58:30.0494 0x1430 [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:58:30.0494 0x1430 Fs_Rec - ok
12:58:30.0556 0x1430 [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:58:30.0572 0x1430 fvevol - ok
12:58:30.0619 0x1430 [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
12:58:30.0619 0x1430 FxPPM - ok
12:58:30.0634 0x1430 [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:58:30.0650 0x1430 gagp30kx - ok
12:58:30.0681 0x1430 [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
12:58:30.0681 0x1430 gencounter - ok
12:58:30.0728 0x1430 [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
12:58:30.0728 0x1430 GPIOClx0101 - ok
12:58:30.0837 0x1430 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc C:\Windows\System32\gpsvc.dll
12:58:30.0869 0x1430 gpsvc - ok
12:58:30.0900 0x1430 [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:58:30.0916 0x1430 HdAudAddService - ok
12:58:30.0947 0x1430 [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
12:58:30.0947 0x1430 HDAudBus - ok
12:58:30.0962 0x1430 [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
12:58:30.0962 0x1430 HidBatt - ok
12:58:30.0994 0x1430 [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth C:\Windows\System32\drivers\hidbth.sys
12:58:30.0994 0x1430 HidBth - ok
12:58:31.0009 0x1430 [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
12:58:31.0009 0x1430 hidi2c - ok
12:58:31.0025 0x1430 [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr C:\Windows\System32\drivers\hidir.sys
12:58:31.0025 0x1430 HidIr - ok
12:58:31.0041 0x1430 [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv C:\Windows\system32\hidserv.dll
12:58:31.0056 0x1430 hidserv - ok
12:58:31.0056 0x1430 [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb C:\Windows\System32\drivers\hidusb.sys
12:58:31.0056 0x1430 HidUsb - ok
12:58:31.0087 0x1430 [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:58:31.0103 0x1430 hkmsvc - ok
12:58:31.0134 0x1430 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:58:31.0150 0x1430 HomeGroupListener - ok
12:58:31.0212 0x1430 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:58:31.0228 0x1430 HomeGroupProvider - ok
12:58:31.0259 0x1430 [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:58:31.0259 0x1430 HpSAMD - ok
12:58:31.0337 0x1430 [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:58:31.0369 0x1430 HTTP - ok
12:58:31.0369 0x1430 [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:58:31.0384 0x1430 hwpolicy - ok
12:58:31.0400 0x1430 [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
12:58:31.0400 0x1430 hyperkbd - ok
12:58:31.0416 0x1430 [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
12:58:31.0416 0x1430 HyperVideo - ok
12:58:31.0431 0x1430 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
12:58:31.0447 0x1430 i8042prt - ok
12:58:31.0525 0x1430 [ 6C024B3AE192D72B216166802AF345DD, 67AEDBEF4A1C1EE1DA9B684BDEB3DB07715E12B766AA72B6684CC6C583A8DCC5 ] iaStorA C:\Windows\system32\drivers\iaStorA.sys
12:58:31.0556 0x1430 iaStorA - ok
12:58:31.0587 0x1430 [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:58:31.0603 0x1430 iaStorV - ok
12:58:31.0837 0x1430 [ A1CF07D24EDCDC6870535471654D957C, FA0CD2ABA2C15E9FC4A1DEE58F365EC10D9597D521556DC2648B50CE0537926D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:58:31.0947 0x1430 igfx - ok
12:58:31.0978 0x1430 [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:58:31.0978 0x1430 iirsp - ok
12:58:32.0072 0x1430 [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT C:\Windows\System32\ikeext.dll
12:58:32.0103 0x1430 IKEEXT - ok
12:58:32.0181 0x1430 [ EAEA4B0005869A4ABE6070BD364143B7, BD439C15EFBBAFAF88ADD4C988CC7AA04128EF689B1C9CF49FEE9B57417C08B7 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
12:58:32.0197 0x1430 IMFservice - ok
12:58:32.0384 0x1430 [ FA2B7507CD49908B2260949E52F8B9FE, 0EA0B3B25A3B668CA18313E34138DADA5C9835E476A1BFC56588B946DF0A92E0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:58:32.0463 0x1430 IntcAzAudAddService - ok
12:58:32.0494 0x1430 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
12:58:32.0509 0x1430 IntcDAud - ok
12:58:32.0572 0x1430 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:58:32.0603 0x1430 Intel(R) Capability Licensing Service Interface - ok
12:58:32.0619 0x1430 [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide C:\Windows\system32\drivers\intelide.sys
12:58:32.0619 0x1430 intelide - ok
12:58:32.0666 0x1430 [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm C:\Windows

[854005]

\System32\drivers\intelppm.sys
12:58:32.0666 0x1430 intelppm - ok
12:58:32.0697 0x1430 [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:58:32.0697 0x1430 IpFilterDriver - ok
12:58:32.0806 0x1430 [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:58:32.0853 0x1430 iphlpsvc - ok
12:58:32.0853 0x1430 [ 6E98A046A12AA113F8898AA5D612BD6E, 28816CC1F03F2BFBF099C087C0BB6949E959F44C888DD2D0528FF7ED5D665ECF ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
12:58:32.0853 0x1430 IPMIDRV - ok
12:58:32.0884 0x1430 [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:58:32.0884 0x1430 IPNAT - ok
12:58:32.0900 0x1430 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:58:32.0900 0x1430 IRENUM - ok
12:58:32.0900 0x1430 [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:58:32.0900 0x1430 isapnp - ok
12:58:32.0931 0x1430 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF, 8FFF92828C3DC20F0F42C42E58A03B59A4E0187963F728DC618C9595FB2D0239 ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
12:58:32.0947 0x1430 iScsiPrt - ok
12:58:33.0025 0x1430 [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
12:58:33.0025 0x1430 jhi_service - ok
12:58:33.0103 0x1430 [ 6EEB253FABF511192D05841B47A15FF9, 395F31E8FC186C07B4DF86FEC84429F00FA2BCA892864F616F1D2B3113A2288D ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
12:58:33.0134 0x1430 k57nd60a - ok
12:58:33.0150 0x1430 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
12:58:33.0150 0x1430 kbdclass - ok
12:58:33.0166 0x1430 [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
12:58:33.0166 0x1430 kbdhid - ok
12:58:33.0181 0x1430 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
12:58:33.0181 0x1430 kdnic - ok
12:58:33.0197 0x1430 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] KeyIso C:\Windows\system32\lsass.exe
12:58:33.0213 0x1430 KeyIso - ok
12:58:33.0228 0x1430 [ DFA480F6DED551464F3A5B959F437800, C07AB6F28A09FCBE11EECAD03B06CEAE1016EC24031FCA0C092639E90FBA84CF ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:58:33.0244 0x1430 KSecDD - ok
12:58:33.0291 0x1430 [ 127FB0AAD232BAAD2C9BBACD374F4FC5, 3BC56F6B4374062C96149D69ACE053DF81A278F0361599F5A2F3DB1F76F0AD68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:58:33.0306 0x1430 KSecPkg - ok
12:58:33.0306 0x1430 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:58:33.0322 0x1430 ksthunk - ok
12:58:33.0369 0x1430 [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm C:\Windows\system32\msdtckrm.dll
12:58:33.0400 0x1430 KtmRm - ok
12:58:33.0447 0x1430 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:58:33.0463 0x1430 LanmanServer - ok
12:58:33.0509 0x1430 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:58:33.0541 0x1430 LanmanWorkstation - ok
12:58:33.0697 0x1430 [ BEFF149A82F78B648046108EB9D28893, 255851BD47CB0CA2A56442992772E780A3757F569BE6A853AF8588F597F97037 ] LiveUpdateSvc C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
12:58:33.0744 0x1430 LiveUpdateSvc - ok
12:58:33.0760 0x1430 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:58:33.0760 0x1430 lltdio - ok
12:58:33.0806 0x1430 [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:58:33.0822 0x1430 lltdsvc - ok
12:58:33.0838 0x1430 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:58:33.0853 0x1430 lmhosts - ok
12:58:33.0900 0x1430 [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:58:33.0916 0x1430 LMS - ok
12:58:33.0947 0x1430 [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:58:33.0947 0x1430 LSI_SAS - ok
12:58:33.0978 0x1430 [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
12:58:33.0978 0x1430 LSI_SAS2 - ok
12:58:33.0994 0x1430 [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:58:34.0009 0x1430 LSI_SCSI - ok
12:58:34.0025 0x1430 [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
12:58:34.0025 0x1430 LSI_SSS - ok
12:58:34.0088 0x1430 [ A57BA284F5996FFD32DCDBC41A4657DB, 2106B83873A824BC83EF42FAC9DD9A0F741209535A84AE65EA8E786519920043 ] LSM C:\Windows\System32\lsm.dll
12:58:34.0103 0x1430 LSM - ok
12:58:34.0134 0x1430 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv C:\Windows\system32\drivers\luafv.sys
12:58:34.0134 0x1430 luafv - ok
12:58:34.0181 0x1430 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
12:58:34.0181 0x1430 MBAMProtector - ok
12:58:34.0275 0x1430 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:58:34.0291 0x1430 MBAMScheduler - ok
12:58:34.0338 0x1430 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
12:58:34.0353 0x1430 MBAMService - ok
12:58:34.0400 0x1430 [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas C:\Windows\system32\drivers\megasas.sys
12:58:34.0400 0x1430 megasas - ok
12:58:34.0431 0x1430 [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
12:58:34.0447 0x1430 MegaSR - ok
12:58:34.0478 0x1430 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\Windows\System32\drivers\HECIx64.sys
12:58:34.0478 0x1430 MEIx64 - ok
12:58:34.0525 0x1430 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS C:\Windows\system32\mmcss.dll
12:58:34.0525 0x1430 MMCSS - ok
12:58:34.0541 0x1430 [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem C:\Windows\system32\drivers\modem.sys
12:58:34.0541 0x1430 Modem - ok
12:58:34.0588 0x1430 [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor C:\Windows\System32\drivers\monitor.sys
12:58:34.0588 0x1430 monitor - ok
12:58:34.0603 0x1430 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass C:\Windows\System32\drivers\mouclass.sys
12:58:34.0619 0x1430 mouclass - ok
12:58:34.0635 0x1430 [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid C:\Windows\System32\drivers\mouhid.sys
12:58:34.0635 0x1430 mouhid - ok
12:58:34.0650 0x1430 [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:58:34.0666 0x1430 mountmgr - ok
12:58:34.0713 0x1430 [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:58:34.0713 0x1430 MozillaMaintenance - ok
12:58:34.0760 0x1430 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C, BCBFF081FAFB822CE29D291FB329FC310D90F0EC0D1BB69CF8CB09ED5A2E84D1 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:58:34.0760 0x1430 mpsdrv - ok
12:58:34.0869 0x1430 [ 3031573A739DBEE8923851929D0AF423, E9EA6C0D12A896AC745173B1F1A58192B52724AA424718B16B8D05E9AC091741 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:58:34.0916 0x1430 MpsSvc - ok
12:58:34.0931 0x1430 [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:58:34.0931 0x1430 MRxDAV - ok
12:58:34.0994 0x1430 [ 93179D48066918323628CB016D8C94DC, FE110BF7A10EDD1DF7F6B933D373FCA51F37413282EBC4187E7C9B1965186BCC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:58:35.0010 0x1430 mrxsmb - ok
12:58:35.0041 0x1430 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:58:35.0041 0x1430 mrxsmb10 - ok
12:58:35.0088 0x1430 [ 5C7DD2E5759FFCCD2C7341C1B90F2B26, 9822FA53E6067C0E39B7A3A3F1E88719D5D8B055D86FF894F0475B158289EA45 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:58:35.0103 0x1430 mrxsmb20 - ok
12:58:35.0150 0x1430 [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
12:58:35.0166 0x1430 MsBridge - ok
12:58:35.0213 0x1430 [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC C:\Windows\System32\msdtc.exe
12:58:35.0228 0x1430 MSDTC - ok
12:58:35.0244 0x1430 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:58:35.0244 0x1430 Msfs - ok
12:58:35.0275 0x1430 [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
12:58:35.0291 0x1430 msgpiowin32 - ok
12:58:35.0322 0x1430 [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:58:35.0322 0x1430 mshidkmdf - ok
12:58:35.0338 0x1430 [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
12:58:35.0338 0x1430 mshidumdf - ok
12:58:35.0353 0x1430 [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:58:35.0369 0x1430 msisadrv - ok
12:58:35.0400 0x1430 [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:58:35.0416 0x1430 MSiSCSI - ok
12:58:35.0431 0x1430 msiserver - ok
12:58:35.0463 0x1430 [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:58:35.0463 0x1430 MSKSSRV - ok
12:58:35.0494 0x1430 [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
12:58:35.0494 0x1430 MsLldp - ok
12:58:35.0510 0x1430 [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:58:35.0510 0x1430 MSPCLOCK - ok
12:58:35.0525 0x1430 [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:58:35.0525 0x1430 MSPQM - ok
12:58:35.0572 0x1430 [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:58:35.0588 0x1430 MsRPC - ok
12:58:35.0603 0x1430 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
12:58:35.0619 0x1430 mssmbios - ok
12:58:35.0635 0x1430 [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:58:35.0635 0x1430 MSTEE - ok
12:58:35.0650 0x1430 [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
12:58:35.0650 0x1430 MTConfig - ok
12:58:35.0666 0x1430 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup C:\Windows\system32\Drivers\mup.sys
12:58:35.0681 0x1430 Mup - ok
12:58:35.0697 0x1430 [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis C:\Windows\system32\drivers\mvumis.sys
12:58:35.0697 0x1430 mvumis - ok
12:58:35.0713 0x1430 [ C009123B206C56854F4E88596035231D, 670403A40B425F77C90ECB048A0C8BC11FB19E40A8CECC2C3DCF79175B745863 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
12:58:35.0713 0x1430 mwlPSDFilter - ok
12:58:35.0713 0x1430 [ BF3739EEB9F008B1DEBAC115089A53F8, 8546AB69087656259BBE17D6F80F4AB164B04171673CE2BF9FFD1B5C9584E9A4 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
12:58:35.0728 0x1430 mwlPSDNServ - ok
12:58:35.0744 0x1430 [ 38DD143D95E7A01B86F219DDA9C28779, 5FA8C0595CCF835DBCE1CC5322E8FD4BFB6DFB6CF869BB7CB73F919445D469AA ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
12:58:35.0760 0x1430 mwlPSDVDisk - ok
12:58:35.0822 0x1430 [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent C:\Windows\system32\qagentRT.dll
12:58:35.0853 0x1430 napagent - ok
12:58:35.0885 0x1430 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:58:35.0900 0x1430 NativeWifiP - ok
12:58:35.0931 0x1430 [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc C:\Windows\System32\ncasvc.dll
12:58:35.0947 0x1430 NcaSvc - ok
12:58:35.0963 0x1430 [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
12:58:35.0963 0x1430 NcdAutoSetup - ok
12:58:36.0056 0x1430 [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS C:\Windows\system32\drivers\ndis.sys
12:58:36.0088 0x1430 NDIS - ok
12:58:36.0119 0x1430 [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:58:36.0119 0x1430 NdisCap - ok
12:58:36.0135 0x1430 [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
12:58:36.0135 0x1430 NdisImPlatform - ok
12:58:36.0150 0x1430 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:58:36.0150 0x1430 NdisTapi - ok
12:58:36.0150 0x1430 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:58:36.0150 0x1430 Ndisuio - ok
12:58:36.0181 0x1430 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:58:36.0181 0x1430 NdisWan - ok
12:58:36.0181 0x1430 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
12:58:36.0197 0x1430 NDISWANLEGACY - ok
12:58:36.0213 0x1430 [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:58:36.0213 0x1430 NDProxy - ok
12:58:36.0228 0x1430 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu C:\Windows\system32\drivers\Ndu.sys
12:58:36.0228 0x1430 Ndu - ok
12:58:36.0244 0x1430 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:58:36.0244 0x1430 NetBIOS - ok
12:58:36.0260 0x1430 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:58:36.0260 0x1430 NetBT - ok
12:58:36.0275 0x1430 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] Netlogon C:\Windows\system32\lsass.exe
12:58:36.0275 0x1430 Netlogon - ok
12:58:36.0322 0x1430 [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman C:\Windows\System32\netman.dll
12:58:36.0353 0x1430 Netman - ok
12:58:36.0416 0x1430 [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm C:\Windows\System32\netprofmsvc.dll
12:58:36.0447 0x1430 netprofm - ok
12:58:36.0525 0x1430 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:58:36.0525 0x1430 NetTcpPortSharing - ok
12:58:36.0557 0x1430 [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:58:36.0557 0x1430 nfrd960 - ok
12:58:36.0603 0x1430 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:58:36.0635 0x1430 NlaSvc - ok
12:58:36.0650 0x1430 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:58:36.0650 0x1430 Npfs - ok
12:58:36.0666 0x1430 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
12:58:36.0666 0x1430 npsvctrig - ok
12:58:36.0682 0x1430 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi C:\Windows\system32\nsisvc.dll
12:58:36.0697 0x1430 nsi - ok
12:58:36.0697 0x1430 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:58:36.0697 0x1430 nsiproxy - ok
12:58:36.0838 0x1430 [ 76929F4A69E425911A63B407E26C2589, 17896DB6EDEF2637D159432DB61E8B5FA2F4F54B5F50BCD6215827C321ED2C2A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:58:36.0885 0x1430 Ntfs - ok
12:58:36.0900 0x1430 [ EE3BA1024594D5D09E314F206B94069E, 34C8EC3DF1C3088D8A0442CAA4F5506665AFB2DF016709457ED2AB7DA45F53A6 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
12:58:36.0900 0x1430 NTIDrvr - ok
12:58:36.0932 0x1430 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null C:\Windows\system32\drivers\Null.sys
12:58:36.0932 0x1430 Null - ok
12:58:37.0400 0x1430 [ 076C32433B06AAAD72742774E56FB854, 198D522AABA406EB0C36BEF25FD48A1BD914D877A7E8534605957F4FF3A3135B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:58:37.0682 0x1430 nvlddmkm - ok
12:58:37.0713 0x1430 [ 0AFB4857ADD1D11012E6B38C9F4B625B, 08FFD7DF327462CC2BFCBC251A075603B46E338156396C6A3AFD5896E9A9B8A1 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
12:58:37.0713 0x1430 nvpciflt - ok
12:58:37.0744 0x1430 [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:58:37.0760 0x1430 nvraid - ok
12:58:37.0775 0x1430 [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:58:37.0791 0x1430 nvstor - ok
12:58:37.0869 0x1430 [ A9495A3AAAB5E470F2460F85849A5F66, C84675F39BD07E2A7B0FB491709A2D83476208D235CD78F4ECB947BED82CE01C ] nvsvc C:\Windows\system32\nvvsvc.exe
12:58:37.0916 0x1430 nvsvc - ok
12:58:38.0025 0x1430 [ FAA2048284D763409F7BB84F61601C80, 9ED505AC0D0E124D2EBD2AC7EF463FC4640F67B54533FA560DF47A6CBB86E623 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
12:58:38.0057 0x1430 nvUpdatusService - ok
12:58:38.0072 0x1430 [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:58:38.0088 0x1430 nv_agp - ok
12:58:38.0119 0x1430 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:58:38.0119 0x1430 p2pimsvc - ok
12:58:38.0182 0x1430 [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc C:\Windows\system32\p2psvc.dll
12:58:38.0213 0x1430 p2psvc - ok
12:58:38.0244 0x1430 [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport C:\Windows\System32\drivers\parport.sys
12:58:38.0244 0x1430 Parport - ok
12:58:38.0291 0x1430 [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:58:38.0291 0x1430 partmgr - ok
12:58:38.0369 0x1430 [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:58:38.0400 0x1430 PcaSvc - ok
12:58:38.0432 0x1430 [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci C:\Windows\system32\drivers\pci.sys
12:58:38.0432 0x1430 pci - ok
12:58:38.0447 0x1430 [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide C:\Windows\system32\drivers\pciide.sys
12:58:38.0447 0x1430 pciide - ok
12:58:38.0478 0x1430 [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:58:38.0478 0x1430 pcmcia - ok
12:58:38.0494 0x1430 [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw C:\Windows\system32\drivers\pcw.sys
12:58:38.0494 0x1430 pcw - ok
12:58:38.0525 0x1430 [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc C:\Windows\system32\drivers\pdc.sys
12:58:38.0541 0x1430 pdc - ok
12:58:38.0588 0x1430 [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:58:38.0619 0x1430 PEAUTH - ok
12:58:38.0682 0x1430 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:58:38.0697 0x1430 PerfHost - ok
12:58:38.0775 0x1430 [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla C:\Windows\system32\pla.dll
12:58:38.0807 0x1430 pla - ok
12:58:38.0838 0x1430 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:58:38.0838 0x1430 PlugPlay - ok
12:58:38.0853 0x1430 [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:58:38.0869 0x1430 PNRPAutoReg - ok
12:58:38.0885 0x1430 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:58:38.0900 0x1430 PNRPsvc - ok
12:58:38.0963 0x1430 [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:58:38.0994 0x1430 PolicyAgent - ok
12:58:39.0010 0x1430 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power C:\Windows\system32\umpo.dll
12:58:39.0010 0x1430 Power - ok
12:58:39.0057 0x1430 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:58:39.0057 0x1430 PptpMiniport - ok
12:58:39.0291 0x1430 [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE, 878E46E308BC3AC689CFC401BAA12D217BFB9911C29A10DB5DFFAC250A58CE55 ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
12:58:39.0353 0x1430 PrintNotify - ok
12:58:39.0385 0x1430 [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor C:\Windows\System32\drivers\processr.sys
12:58:39.0385 0x1430 Processor - ok
12:58:39.0447 0x1430 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc C:\Windows\system32\profsvc.dll
12:58:39.0463 0x1430 ProfSvc - ok
12:58:39.0494 0x1430 [ 138DBAE80F390B22297ACD861BDA996E, F0799F40266A11058710AD8ED5D8797A350DCB2A55D3DEF179C1D8C87AFB5208 ] Ps2Kb2Hid C:\Windows\System32\drivers\aPs2Kb2Hid.sys
12:58:39.0494 0x1430 Ps2Kb2Hid - ok
12:58:39.0525 0x1430 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:58:39.0525 0x1430 Psched - ok
12:58:39.0541 0x1430 [ C32ECB99AD25E9A04F01C8665DF29EF8, 0489B3DEC6A33E50D8A48A8DAD3F5B923A81F7300E4A71358D90D2879BAC9AA2 ] pwdrvio C:\Windows\system32\pwdrvio.sys
12:58:39.0557 0x1430 pwdrvio - ok
12:58:39.0588 0x1430 [ D619356B955EEFA642F5FF72755E8B3C, 1FD54978A77ACD6FBF1236E177ED074894743A9141E4169FE9AFE28680FC93C5 ] pwdspio C:\Windows\system32\pwdspio.sys
12:58:39.0588 0x1430 pwdspio - ok
12:58:39.0619 0x1430 [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE C:\Windows\system32\qwave.dll
12:58:39.0635 0x1430 QWAVE - ok
12:58:39.0666 0x1430 [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:58:39.0682 0x1430 QWAVEdrv - ok
12:58:39.0713 0x1430 [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:58:39.0713 0x1430 RasAcd - ok
12:58:39.0744 0x1430 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:58:39.0760 0x1430 RasAgileVpn - ok
12:58:39.0807 0x1430 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto C:\Windows\System32\rasauto.dll
12:58:39.0822 0x1430 RasAuto - ok
12:58:39.0854 0x1430 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:58:39.0854 0x1430 Rasl2tp - ok
12:58:39.0900 0x1430 [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan C:\Windows\System32\rasmans.dll
12:58:39.0932 0x1430 RasMan - ok
12:58:39.0947 0x1430 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:58:39.0947 0x1430 RasPppoe - ok
12:58:39.0963 0x1430 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:58:39.0963 0x1430 RasSstp - ok
12:58:40.0010 0x1430 [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:58:40.0025 0x1430 rdbss - ok
12:58:40.0057 0x1430 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
12:58:40.0072 0x1430 rdpbus - ok
12:58:40.0088 0x1430 [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:58:40.0088 0x1430 RDPDR - ok
12:58:40.0135 0x1430 [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:58:40.0135 0x1430 RdpVideoMiniport - ok
12:58:40.0150 0x1430 [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:58:40.0150 0x1430 RDPWD - ok
12:58:40.0182 0x1430 [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:58:40.0182 0x1430 rdyboost - ok
12:58:40.0213 0x1430 [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:58:40.0229 0x1430 RemoteAccess - ok
12:58:40.0244 0x1430 [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:58:40.0260 0x1430 RemoteRegistry - ok
12:58:40.0291 0x1430 [ F61333867216EDE1A09A7C55FEDCB6A8, 991FC810FB281F4E91B7D22A7C5AF5D11419ACE05BBB3F664812391069A336F0 ] RfButtonDriverService C:\Windows\RfBtnSvc64.exe
12:58:40.0291 0x1430 RfButtonDriverService - ok
12:58:40.0322 0x1430 [ CCBFCABDFE2BC22F0645CEAADDB36004, 279EA9075079F91165027CEFD4FBC61A213CA602EE7DE106F7D2D243468706AA ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys
12:58:40.0338 0x1430 RFCOMM - ok
12:58:40.0369 0x1430 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:58:40.0385 0x1430 RpcEptMapper - ok
12:58:40.0400 0x1430 [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator C:\Windows\system32\locator.exe
12:58:40.0416 0x1430 RpcLocator - ok
12:58:40.0479 0x1430 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs C:\Windows\system32\rpcss.dll
12:58:40.0494 0x1430 RpcSs - ok
12:58:40.0525 0x1430 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:58:40.0541 0x1430 rspndr - ok
12:58:40.0557 0x1430 [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap C:\Windows\System32\drivers\vms3cap.sys
12:58:40.0557 0x1430 s3cap - ok
12:58:40.0572 0x1430 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] SamSs C:\Windows\system32\lsass.exe
12:58:40.0572 0x1430 SamSs - ok
12:58:40.0588 0x1430 [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:58:40.0588 0x1430 sbp2port - ok
12:58:40.0619 0x1430 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:58:40.0635 0x1430 SCardSvr - ok
12:58:40.0635 0x1430 [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:58:40.0635 0x1430 scfilter - ok
12:58:40.0744 0x1430 [ ED40ED9A65F3E79A8C43DD50C5FDADBF, 2323BFAB1BC3D661A376650B7AC14C7780C92BA575DA048F3C7611CDB3F7F04A ] Schedule C:\Windows\system32\schedsvc.dll
12:58:40.0791 0x1430 Schedule - ok
12:58:40.0822 0x1430 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:58:40.0838 0x1430 SCPolicySvc - ok
12:58:40.0900 0x1430 [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus C:\Windows\System32\drivers\sdbus.sys
12:58:40.0916 0x1430 sdbus - ok
12:58:40.0947 0x1430 [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:58:40.0947 0x1430 SDRSVC - ok
12:58:40.0979 0x1430 [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor C:\Windows\System32\drivers\sdstor.sys
12:58:40.0979 0x1430 sdstor - ok
12:58:41.0010 0x1430 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:58:41.0010 0x1430 secdrv - ok
12:58:41.0025 0x1430 [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon C:\Windows\system32\seclogon.dll
12:58:41.0057 0x1430 seclogon - ok
12:58:41.0088 0x1430 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS C:\Windows\System32\sens.dll
12:58:41.0088 0x1430 SENS - ok
12:58:41.0135 0x1430 [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:58:41.0150 0x1430 SensrSvc - ok
12:58:41.0182 0x1430 [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx C:\Windows\system32\drivers\SerCx.sys
12:58:41.0182 0x1430 SerCx - ok
12:58:41.0197 0x1430 [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum C:\Windows\System32\drivers\serenum.sys
12:58:41.0197 0x1430 Serenum - ok
12:58:41.0213 0x1430 [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial C:\Windows\System32\drivers\serial.sys
12:58:41.0213 0x1430 Serial - ok
12:58:41.0229 0x1430 [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse C:\Windows\System32\drivers\sermouse.sys
12:58:41.0229 0x1430 sermouse - ok
12:58:41.0275 0x1430 [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv C:\Windows\system32\sessenv.dll
12:58:41.0307 0x1430 SessionEnv - ok
12:58:41.0307 0x1430 [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
12:58:41.0307 0x1430 sfloppy - ok
12:58:41.0354 0x1430 [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:58:41.0369 0x1430 SharedAccess - ok
12:58:41.0416 0x1430 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:58:41.0432 0x1430 ShellHWDetection - ok
12:58:41.0447 0x1430 [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
12:58:41.0447 0x1430 SiSRaid2 - ok
12:58:41.0463 0x1430 [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:58:41.0479 0x1430 SiSRaid4 - ok
12:58:41.0494 0x1430 [ DD0443BC6CC78A19FD399817F8C51401, 06D945DB1E2C45C01D9900A4C9A557269CCD7F0AD5F1864E31E03879BC4CDF7F ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
12:58:41.0510 0x1430 SmartDefragDriver - ok
12:58:41.0541 0x1430 [ 5CDEF3A06AEA1B510F3F4B09340247D5, 5B57381BAD738E05BBBFC4B95F67611D879B31E248FE96104D0333A655AF9F13 ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
12:58:41.0541 0x1430 SmbDrvI - ok
12:58:41.0572 0x1430 [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:58:41.0588 0x1430 SNMPTRAP - ok
12:58:41.0635 0x1430 [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport C:\Windows\system32\drivers\spaceport.sys
12:58:41.0651 0x1430 spaceport - ok
12:58:41.0682 0x1430 [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
12:58:41.0682 0x1430 SpbCx - ok
12:58:41.0744 0x1430 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler C:\Windows\System32\spoolsv.exe
12:58:41.0775 0x1430 Spooler - ok
12:58:42.0026 0x1430 [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc C:\Windows\system32\sppsvc.exe
12:58:42.0119 0x1430 sppsvc - ok
12:58:42.0182 0x1430 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv C:\Windows\system32\DRIVERS\srv.sys
12:58:42.0197 0x1430 srv - ok
12:58:42.0291 0x1430 [ 56218A571ECF8D55E0CDFF8DF2546CF1, 44B34722108EDDC8757A0B7C939A854457BB7EBC92A83C4284DFFAECFC2E3619 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:58:42.0322 0x1430 srv2 - ok
12:58:42.0354 0x1430 [ 14FC338B80CFF7E04215133B568D15C4, 1F437BE0EC887097F0C3409D4198A20981FC325FDF915532AB85070D337DEF2B ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:58:42.0369 0x1430 srvnet - ok
12:58:42.0432 0x1430 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:58:42.0463 0x1430 SSDPSRV - ok
12:58:42.0479 0x1430 [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:58:42.0494 0x1430 SstpSvc - ok
12:58:42.0651 0x1430 [ 0159C5A80ECEECF69952187F1C42AB37, DF4BBB22D66855C4B875EC121ED4A2917A67D955121A2919CFA192398227442C ] StartMenuService C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
12:58:42.0651 0x1430 StartMenuService - ok
12:58:42.0682 0x1430 [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor C:\Windows\system32\drivers\stexstor.sys
12:58:42.0697 0x1430 stexstor - ok
12:58:42.0760 0x1430 [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc C:\Windows\System32\wiaservc.dll
12:58:42.0791 0x1430 stisvc - ok
12:58:42.0822 0x1430 [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci C:\Windows\system32\drivers\storahci.sys
12:58:42.0838 0x1430 storahci - ok
12:58:42.0869 0x1430 [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
12:58:42.0869 0x1430 storflt - ok
12:58:42.0901 0x1430 [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc C:\Windows\system32\storsvc.dll
12:58:42.0901 0x1430 StorSvc - ok
12:58:42.0932 0x1430 [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:58:42.0932 0x1430 storvsc - ok
12:58:42.0947 0x1430 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc C:\Windows\system32\svsvc.dll
12:58:42.0963 0x1430 svsvc - ok
12:58:42.0963 0x1430 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum C:\Windows\System32\drivers\swenum.sys
12:58:42.0979 0x1430 swenum - ok
12:58:43.0010 0x1430 [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv C:\Windows\System32\swprv.dll
12:58:43.0026 0x1430 swprv - ok
12:58:43.0057 0x1430 [ 95FFE1C1C55B2E9CE45CCC7CFE25D2C3, 4F3F8A41A68076609FB5F334D8EC77423325C665FBE70404BB89371B5A3E1F22 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
12:58:43.0072 0x1430 SynTP - ok
12:58:43.0182 0x1430 [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain C:\Windows\system32\sysmain.dll
12:58:43.0229 0x1430 SysMain - ok
12:58:43.0276 0x1430 [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
12:58:43.0276 0x1430 SystemEventsBroker - ok
12:58:43.0307 0x1430 [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\Windows\System32\TabSvc.dll
12:58:43.0307 0x1430 TabletInputService - ok
12:58:43.0338 0x1430 [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:58:43.0354 0x1430 TapiSrv - ok
12:58:43.0479 0x1430 [ 37D85E873C9531A2F88DD9C63D3F8A9E, C31FF8324962B72DAED445F0A264E3E2E51296DDC98A5914DCE155693FB18868 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:58:43.0526 0x1430 Tcpip - ok
12:58:43.0588 0x1430 [ 37D85E873C9531A2F88DD9C63D3F8A9E, C31FF8324962B72DAED445F0A264E3E2E51296DDC98A5914DCE155693FB18868 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:58:43.0635 0x1430 TCPIP6 - ok
12:58:43.0666 0x1430 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:58:43.0666 0x1430 tcpipreg - ok
12:58:43.0682 0x1430 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:58:43.0697 0x1430 tdx - ok
12:58:43.0729 0x1430 [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt C:\Windows\System32\drivers\terminpt.sys
12:58:43.0729 0x1430 terminpt - ok
12:58:43.0822 0x1430 [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService C:\Windows\System32\termsrv.dll
12:58:43.0885 0x1430 TermService - ok
12:58:43.0916 0x1430 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes C:\Windows\system32\themeservice.dll
12:58:43.0932 0x1430 Themes - ok
12:58:43.0963 0x1430 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER C:\Windows\system32\mmcss.dll
12:58:43.0979 0x1430 THREADORDER - ok
12:58:44.0041 0x1430 [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
12:58:44.0057 0x1430 TimeBroker - ok
12:58:44.0104 0x1430 [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM C:\Windows\system32\drivers\tpm.sys
12:58:44.0104 0x1430 TPM - ok
12:58:44.0135 0x1430 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks C:\Windows\System32\trkwks.dll
12:58:44.0151 0x1430 TrkWks - ok
12:58:44.0213 0x1430 [ B66EE1D68197DFB9AA24F961E68ACDCC, EB7536089BAF2384437EDE964F7A20AE00C988B8CCB61A8F12CB2BBD84C4FB6E ] trufos C:\Windows\system32\drivers\trufos.sys
12:58:44.0229 0x1430 trufos - ok
12:58:44.0291 0x1430 [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:58:44.0307 0x1430 TrustedInstaller - ok
12:58:44.0338 0x1430 [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:58:44.0338 0x1430 TsUsbFlt - ok
12:58:44.0354 0x1430 [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
12:58:44.0354 0x1430 TsUsbGD - ok
12:58:44.0385 0x1430 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:58:44.0401 0x1430 tunnel - ok
12:58:44.0432 0x1430 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:58:44.0432 0x1430 uagp35 - ok
12:58:44.0463 0x1430 [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
12:58:44.0463 0x1430 UASPStor - ok
12:58:44.0479 0x1430 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D, 1EA835F172B6BF3D7F496E079DF1CDF00122B2110C08D61427582BC9405D2B7B ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
12:58:44.0479 0x1430 UBHelper - ok
12:58:44.0526 0x1430 [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
12:58:44.0541 0x1430 UCX01000 - ok
12:58:44.0573 0x1430 [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:58:44.0604 0x1430 udfs - ok
12:58:44.0635 0x1430 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:58:44.0635 0x1430 UI0Detect - ok
12:58:44.0666 0x1430 [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:58:44.0666 0x1430 uliagpkx - ok
12:58:44.0666 0x1430 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus C:\Windows\System32\drivers\umbus.sys
12:58:44.0666 0x1430 umbus - ok
12:58:44.0698 0x1430 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass C:\Windows\System32\drivers\umpass.sys
12:58:44.0698 0x1430 UmPass - ok
12:58:44.0713 0x1430 [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService C:\Windows\System32\umrdp.dll
12:58:44.0729 0x1430 UmRdpService - ok
12:58:44.0838 0x1430 [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:58:44.0854 0x1430 UNS - ok
12:58:44.0901 0x1430 [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost C:\Windows\System32\upnphost.dll
12:58:44.0916 0x1430 upnphost - ok
12:58:44.0994 0x1430 [ 893A6B67C8AA502648AD946CF50DDFD1, 9480AD8BF791E5912FC89A9F610D5B2E23FD07DF99A15F6844A8854E4ECB4095 ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
12:58:44.0994 0x1430 UrlFilter - ok
12:58:45.0041 0x1430 [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
12:58:45.0057 0x1430 usbccgp - ok
12:58:45.0088 0x1430 [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir C:\Windows\System32\drivers\usbcir.sys
12:58:45.0088 0x1430 usbcir - ok
12:58:45.0119 0x1430 [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci C:\Windows\System32\drivers\usbehci.sys
12:58:45.0135 0x1430 usbehci - ok
12:58:45.0198 0x1430 [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub C:\Windows\System32\drivers\usbhub.sys
12:58:45.0244 0x1430 usbhub - ok
12:58:45.0291 0x1430 [ E5F7328B1D29BCE791862CD3C0DD382A, E520D75CA6E4EDB06F576D97FB6B7CFD46A3EF3A3AC881537DE3BB8C862FE8C3 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
12:58:45.0307 0x1430 USBHUB3 - ok
12:58:45.0323 0x1430 [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci C:\Windows\System32\drivers\usbohci.sys
12:58:45.0323 0x1430 usbohci - ok
12:58:45.0338 0x1430 [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint C:\Windows\System32\drivers\usbprint.sys
12:58:45.0354 0x1430 usbprint - ok
12:58:45.0369 0x1430 [ AD91D1BBE5D3CF4501887DC1C09384FD, ED9E27CD1D52401087427EC20E389FBE2497193483C2E53E8DE5D70DACF5D928 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
12:58:45.0369 0x1430 usbscan - ok
12:58:45.0401 0x1430 [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
12:58:45.0416 0x1430 USBSTOR - ok
12:58:45.0432 0x1430 [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
12:58:45.0448 0x1430 usbuhci - ok
12:58:45.0573 0x1430 [ 9EF7C01D3ACCBC243B5CB1A95865B2FF, 367A7640B4992E68EB3E1BBD78D3014742F4CC4056750E389048C653251DAD33 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:58:45.0588 0x1430 usbvideo - ok
12:58:45.0635 0x1430 [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
12:58:45.0651 0x1430 USBXHCI - ok
12:58:45.0666 0x1430 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] VaultSvc C:\Windows\system32\lsass.exe
12:58:45.0682 0x1430 VaultSvc - ok
12:58:45.0713 0x1430 [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:58:45.0713 0x1430 vdrvroot - ok
12:58:45.0776 0x1430 [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds C:\Windows\System32\vds.exe
12:58:45.0807 0x1430 vds - ok
12:58:45.0807 0x1430 [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
12:58:45.0823 0x1430 VerifierExt - ok
12:58:45.0854 0x1430 [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
12:58:45.0869 0x1430 vhdmp - ok
12:58:45.0885 0x1430 [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide C:\Windows\system32\drivers\viaide.sys
12:58:45.0885 0x1430 viaide - ok
12:58:45.0901 0x1430 [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:58:45.0901 0x1430 vmbus - ok
12:58:45.0901 0x1430 [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
12:58:45.0916 0x1430 VMBusHID - ok
12:58:45.0948 0x1430 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat C:\Windows\System32\ICSvc.dll
12:58:45.0963 0x1430 vmicheartbeat - ok
12:58:45.0994 0x1430 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\Windows\System32\ICSvc.dll
12:58:46.0026 0x1430 vmickvpexchange - ok
12:58:46.0041 0x1430 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv C:\Windows\System32\ICSvc.dll
12:58:46.0057 0x1430 vmicrdv - ok
12:58:46.0073 0x1430 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown C:\Windows\System32\ICSvc.dll
12:58:46.0088 0x1430 vmicshutdown - ok
12:58:46.0104 0x1430 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync C:\Windows\System32\ICSvc.dll
12:58:46.0104 0x1430 vmictimesync - ok
12:58:46.0119 0x1430 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss C:\Windows\System32\ICSvc.dll
12:58:46.0135 0x1430 vmicvss - ok
12:58:46.0135 0x1430 [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr C:\Windows\system32\drivers\volmgr.sys

[854005]

12:58:46.0135 0x1430 volmgr - ok
12:58:46.0166 0x1430 [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:58:46.0198 0x1430 volmgrx - ok
12:58:46.0244 0x1430 [ 78A5BBA3819FFFC62FFEC3E2220D102D, A95797B97D576374C2CDA8A09E6C51A89BADE428AAA89D5093579C85062E5874 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:58:46.0276 0x1430 volsnap - ok
12:58:46.0291 0x1430 [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci C:\Windows\System32\drivers\vpci.sys
12:58:46.0307 0x1430 vpci - ok
12:58:46.0323 0x1430 [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:58:46.0338 0x1430 vsmraid - ok
12:58:46.0463 0x1430 [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] VSS C:\Windows\system32\vssvc.exe
12:58:46.0510 0x1430 VSS - ok
12:58:46.0557 0x1430 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
12:58:46.0588 0x1430 VSTXRAID - ok
12:58:46.0604 0x1430 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:58:46.0604 0x1430 vwifibus - ok
12:58:46.0619 0x1430 [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:58:46.0619 0x1430 vwififlt - ok
12:58:46.0635 0x1430 [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
12:58:46.0635 0x1430 vwifimp - ok
12:58:46.0682 0x1430 [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time C:\Windows\system32\w32time.dll
12:58:46.0713 0x1430 W32Time - ok
12:58:46.0729 0x1430 [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen C:\Windows\System32\drivers\wacompen.sys
12:58:46.0729 0x1430 WacomPen - ok
12:58:46.0776 0x1430 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
12:58:46.0776 0x1430 Wanarp - ok
12:58:46.0791 0x1430 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:58:46.0807 0x1430 Wanarpv6 - ok
12:58:46.0885 0x1430 [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine C:\Windows\system32\wbengine.exe
12:58:46.0963 0x1430 wbengine - ok
12:58:46.0995 0x1430 [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:58:47.0010 0x1430 WbioSrvc - ok
12:58:47.0057 0x1430 [ AF1349386D4C6786EF4E34FACEF15042, 6B33778409BC54C1955B92508ADDEBAFD629141961B71C94A91DC4CFE8391A13 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
12:58:47.0073 0x1430 Wcmsvc - ok
12:58:47.0120 0x1430 [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:58:47.0151 0x1430 wcncsvc - ok
12:58:47.0182 0x1430 [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:58:47.0198 0x1430 WcsPlugInService - ok
12:58:47.0213 0x1430 [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd C:\Windows\system32\drivers\wd.sys
12:58:47.0229 0x1430 Wd - ok
12:58:47.0260 0x1430 [ FD47DF026B32969B8A68721A0243E8EE, 57A7B9B40CEDADFB023AEDD9F29869F1B93EA2596F47B5DDC233D57FC585CCE1 ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
12:58:47.0260 0x1430 WdBoot - ok
12:58:47.0338 0x1430 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:58:47.0370 0x1430 Wdf01000 - ok
12:58:47.0401 0x1430 [ 5F425D842DD6ADE9F95A51A0616AFAD7, 807B8E6A4FE443A362076C225F588A8C897CFE24A6367F4D461C8F6D3EF004C5 ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
12:58:47.0416 0x1430 WdFilter - ok
12:58:47.0432 0x1430 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:58:47.0448 0x1430 WdiServiceHost - ok
12:58:47.0463 0x1430 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:58:47.0479 0x1430 WdiSystemHost - ok
12:58:47.0510 0x1430 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6, 4281100271761521F75F4D5A3D2E9FF40A9C7D81CEDAFD2EDD95788534090CA6 ] WebClient C:\Windows\System32\webclnt.dll
12:58:47.0526 0x1430 WebClient - ok
12:58:47.0557 0x1430 [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:58:47.0573 0x1430 Wecsvc - ok
12:58:47.0588 0x1430 [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:58:47.0604 0x1430 wercplsupport - ok
12:58:47.0635 0x1430 [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc C:\Windows\System32\WerSvc.dll
12:58:47.0651 0x1430 WerSvc - ok
12:58:47.0682 0x1430 [ 44BB9C31E6242C4BD1CE7C2B440C2533, E603BB001028918B687818E930340008C752679B133037367A8A8E41DA559FFE ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
12:58:47.0698 0x1430 WFPLWFS - ok
12:58:47.0729 0x1430 [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc C:\Windows\System32\wiarpc.dll
12:58:47.0745 0x1430 WiaRpc - ok
12:58:47.0776 0x1430 [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:58:47.0776 0x1430 WIMMount - ok
12:58:47.0807 0x1430 WinDefend - ok
12:58:47.0916 0x1430 [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
12:58:47.0948 0x1430 WinHttpAutoProxySvc - ok
12:58:48.0010 0x1430 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:58:48.0026 0x1430 Winmgmt - ok
12:58:48.0151 0x1430 [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM C:\Windows\system32\WsmSvc.dll
12:58:48.0213 0x1430 WinRM - ok
12:58:48.0338 0x1430 [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc C:\Windows\System32\wlansvc.dll
12:58:48.0401 0x1430 WlanSvc - ok
12:58:48.0526 0x1430 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc C:\Windows\system32\wlidsvc.dll
12:58:48.0620 0x1430 wlidsvc - ok
12:58:48.0635 0x1430 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
12:58:48.0651 0x1430 WmiAcpi - ok
12:58:48.0682 0x1430 [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:58:48.0698 0x1430 wmiApSrv - ok
12:58:48.0729 0x1430 WMPNetworkSvc - ok
12:58:48.0760 0x1430 [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
12:58:48.0760 0x1430 wpcfltr - ok
12:58:48.0807 0x1430 [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:58:48.0823 0x1430 WPCSvc - ok
12:58:48.0870 0x1430 [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:58:48.0885 0x1430 WPDBusEnum - ok
12:58:48.0901 0x1430 [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
12:58:48.0901 0x1430 WpdUpFltr - ok
12:58:48.0916 0x1430 [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:58:48.0916 0x1430 ws2ifsl - ok
12:58:48.0963 0x1430 [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc C:\Windows\System32\wscsvc.dll
12:58:48.0979 0x1430 wscsvc - ok
12:58:48.0995 0x1430 WSearch - ok
12:58:49.0151 0x1430 [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService C:\Windows\System32\WSService.dll
12:58:49.0260 0x1430 WSService - ok
12:58:49.0463 0x1430 [ 311E5E1976E0BD9110A88B93158055D5, F1AA738D6AD74C33785EEFE1FBE8A869AAB62417B7D079389293AB1209A849C1 ] wuauserv C:\Windows\system32\wuaueng.dll
12:58:49.0573 0x1430 wuauserv - ok
12:58:49.0588 0x1430 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:58:49.0588 0x1430 WudfPf - ok
12:58:49.0620 0x1430 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
12:58:49.0620 0x1430 WUDFRd - ok
12:58:49.0635 0x1430 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
12:58:49.0651 0x1430 WUDFSensorLP - ok
12:58:49.0682 0x1430 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:58:49.0698 0x1430 wudfsvc - ok
12:58:49.0713 0x1430 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
12:58:49.0729 0x1430 WUDFWpdFs - ok
12:58:49.0776 0x1430 [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc C:\Windows\System32\wwansvc.dll
12:58:49.0807 0x1430 WwanSvc - ok
12:58:49.0838 0x1430 [ BB1842E3AA602B401F7692718B0D0F9A, 6DE508F6CC917D046E61730706C70EF2965B12A7A31F180C22DF8BFA30C0CF67 ] ZAtheros Wlan Agent C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
12:58:49.0854 0x1430 ZAtheros Wlan Agent - ok
12:58:49.0854 0x1430 ================ Scan global ===============================
12:58:49.0917 0x1430 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\system32\basesrv.dll
12:58:49.0963 0x1430 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\system32\winsrv.dll
12:58:50.0010 0x1430 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\system32\sxssrv.dll
12:58:50.0057 0x1430 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\system32\services.exe
12:58:50.0088 0x1430 [ Global ] - ok
12:58:50.0088 0x1430 ================ Scan MBR ==================================
12:58:50.0088 0x1430 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:58:50.0104 0x1430 \Device\Harddisk0\DR0 - ok
12:58:50.0104 0x1430 ================ Scan VBR ==================================
12:58:50.0120 0x1430 [ 2D766D91A28E725842734923C90A73D5 ] \Device\Harddisk0\DR0\Partition1
12:58:50.0120 0x1430 \Device\Harddisk0\DR0\Partition1 - ok
12:58:50.0120 0x1430 [ ED344C9BAAAFD2A5B26CE2D81BBAD7C7 ] \Device\Harddisk0\DR0\Partition2
12:58:50.0120 0x1430 \Device\Harddisk0\DR0\Partition2 - ok
12:58:50.0135 0x1430 [ AA91CF3DAE99ACBF9FA40DC194C020AB ] \Device\Harddisk0\DR0\Partition3
12:58:50.0135 0x1430 \Device\Harddisk0\DR0\Partition3 - ok
12:58:50.0151 0x1430 [ 5B8C327F1EB9A909487F634428786B13 ] \Device\Harddisk0\DR0\Partition4
12:58:50.0167 0x1430 \Device\Harddisk0\DR0\Partition4 - ok
12:58:50.0182 0x1430 [ 67731C942A99D15CB139EEB775E81529 ] \Device\Harddisk0\DR0\Partition5
12:58:50.0182 0x1430 \Device\Harddisk0\DR0\Partition5 - ok
12:58:50.0229 0x1430 [ A78445FE063EB003A80CED0D2FE97FBE ] \Device\Harddisk0\DR0\Partition6
12:58:50.0229 0x1430 \Device\Harddisk0\DR0\Partition6 - ok
12:58:50.0229 0x1430 Waiting for KSN requests completion. In queue: 116
12:58:51.0245 0x1430 Waiting for KSN requests completion. In queue: 116
12:58:52.0260 0x1430 Waiting for KSN requests completion. In queue: 116
12:58:53.0307 0x1430 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.3.215.0 ), 0x60100 ( disabled : updated )
12:58:53.0354 0x1430 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2008.177 ), 0x42000 ( disabled : updated )
12:58:53.0448 0x1430 Win FW state via NFP2: enabled
12:59:08.0168 0x1430 ============================================================
12:59:08.0168 0x1430 Scan finished
12:59:08.0168 0x1430 ============================================================
12:59:08.0183 0x16d0 Detected object count: 0
12:59:08.0183 0x16d0 Actual detected object count: 0
13:00:24.0281 0x10f4 Deinitialize success

[memphisto]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.

[854005]

ComboFix 13-12-13.01 - Milan . 12. 2013 18:32:05.1.4 - x64
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.8005.6266 [GMT 1:00]
Spuštěný z: c:\users\Milan\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\IsUn0405.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-13 do 2013-12-13 )))))))))))))))))))))))))))))))
.
.
2013-12-13 17:37 . 2013-12-13 17:37 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-12-13 17:37 . 2013-12-13 17:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-12-12 21:07 . 2013-12-12 21:07 -------- d-----w- c:\windows\ERUNT
2013-12-11 19:16 . 2013-12-12 20:46 -------- d-----w- C:\AdwCleaner
2013-12-11 16:38 . 2013-10-25 06:18 19271168 ----a-w- c:\windows\system32\mshtml.dll
2013-12-11 16:35 . 2013-12-11 16:35 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-12-11 16:35 . 2013-09-28 03:35 288768 ----a-w- c:\windows\system32\drivers\portcls.sys
2013-12-10 18:25 . 2013-12-10 18:25 -------- d---a-w- c:\windows\VDLL.DLL
2013-12-10 18:25 . 2013-12-10 18:25 -------- d---a-w- c:\windows\SysWow64\runouce.exe
2013-12-10 18:25 . 2013-12-10 18:25 -------- d---a-w- c:\windows\rundll16.exe
2013-12-10 18:25 . 2013-12-10 18:25 -------- d---a-w- c:\windows\RUNDL132.EXE
2013-12-10 18:25 . 2013-12-10 18:25 -------- d---a-w- c:\windows\logo1_.exe
2013-12-10 18:25 . 2013-12-10 18:25 -------- d---a-w- c:\windows\logo_1.exe
2013-12-10 18:22 . 2013-12-10 18:22 350160 ----a-w- c:\windows\system32\drivers\trufos.sys
2013-12-10 18:22 . 2013-12-10 18:22 632064 ----a-w- c:\windows\SysWow64\msvcr80.dll
2013-12-10 18:22 . 2013-12-10 18:22 554240 ----a-w- c:\windows\SysWow64\msvcp80.dll
2013-12-10 18:22 . 2013-12-10 18:22 572928 ----a-w- c:\windows\SysWow64\msvcp90.dll
2013-12-10 18:22 . 2013-12-10 18:22 655872 ----a-w- c:\windows\SysWow64\msvcr90.dll
2013-12-10 18:22 . 2013-12-10 18:22 34048 ----a-w- c:\windows\SysWow64\eEmpty.exe
2013-12-10 18:22 . 2013-12-10 18:22 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2013-12-10 18:22 . 2013-12-10 18:22 -------- d-----w- c:\programdata\MicroWorld
2013-12-10 16:47 . 2013-12-10 16:47 -------- d-----w- c:\programdata\Malwarebytes
2013-12-10 16:47 . 2013-12-10 16:47 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-12-10 16:47 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-12-08 15:31 . 2013-12-08 15:31 -------- d-----w- c:\program files (x86)\Wise
2013-12-08 13:30 . 2013-12-08 13:45 -------- d-----w- c:\program files (x86)\eM Client
2013-12-08 11:57 . 2013-12-08 11:57 -------- d-----w- c:\program files (x86)\Analog Clock-7
2013-12-08 11:57 . 2012-02-07 06:35 147456 ----a-w- c:\windows\SysWow64\Analog Clock-7.scr
2013-12-07 14:50 . 2013-12-07 14:50 -------- d-----w- c:\programdata\Logs
2013-12-07 14:46 . 2013-12-07 14:46 -------- d-----w- c:\windows\cs
2013-12-07 14:45 . 2013-12-07 14:45 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2013-12-07 14:45 . 2013-12-07 14:45 -------- d-----w- c:\program files\Windows Live
2013-12-07 14:45 . 2013-12-07 14:45 -------- d-----w- c:\windows\PCHEALTH
2013-12-07 14:45 . 2013-12-07 14:45 -------- d-----w- c:\program files (x86)\Windows Live
2013-12-07 14:43 . 2010-06-02 03:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2013-12-07 14:43 . 2010-06-02 03:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2013-12-07 14:43 . 2010-06-02 03:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2013-12-07 14:43 . 2010-06-02 03:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2013-12-07 14:43 . 2010-05-26 10:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2013-12-07 14:43 . 2010-05-26 10:41 276832 ----a-w- c:\windows\system32\d3dx11_43.dll
2013-12-07 14:43 . 2010-05-26 10:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll
2013-12-07 14:43 . 2010-05-26 10:41 2106216 ----a-w- c:\windows\SysWow64\D3DCompiler_43.dll
2013-12-07 14:43 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
2013-12-07 14:43 . 2009-09-04 16:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
2013-12-07 14:43 . 2006-11-29 12:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll
2013-12-07 14:43 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll
2013-12-07 14:42 . 2013-12-07 14:42 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2013-12-03 12:38 . 2001-09-10 17:05 69632 ----a-w- c:\windows\Twunk_32.exe
2013-12-03 12:38 . 2001-09-10 17:05 48560 ----a-w- c:\windows\Twunk_16.exe
2013-12-03 12:38 . 1999-05-06 13:22 27632 ----a-w- c:\windows\SysWow64\CTL3DV2.DLL
2013-12-03 12:38 . 1997-10-14 04:19 11776 ----a-w- c:\windows\SysWow64\pmsbfn32.dll
2013-12-03 12:38 . 2013-12-03 12:38 -------- d-----w- c:\program files (x86)\Common Files\NewSoft
2013-12-03 12:37 . 2013-12-03 12:38 -------- d-----w- c:\program files (x86)\Common Files\PDFView
2013-12-03 12:37 . 2013-12-03 12:37 -------- d-----w- c:\windows\SysWow64\Color
2013-12-03 12:37 . 2013-12-03 12:37 -------- d-----w- c:\program files (x86)\NewSoft
2013-12-03 12:37 . 2005-04-03 22:02 753664 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2013-12-03 12:37 . 2005-04-03 22:02 69714 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2013-12-03 12:37 . 2005-04-03 22:01 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2013-12-03 12:37 . 2005-04-03 22:00 184320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2013-12-03 12:37 . 2005-04-03 22:00 63488 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe
2013-12-03 12:37 . 2005-04-03 21:59 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2013-12-03 12:37 . 2013-12-03 12:37 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2013-12-03 12:37 . 2013-12-03 12:37 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2013-12-03 12:34 . 2013-12-03 12:34 -------- d-----w- c:\program files (x86)\ArcSoft
2013-12-03 12:34 . 1995-08-01 03:44 212480 ----a-w- c:\windows\PCDLIB32.DLL
2013-12-03 12:33 . 2001-09-05 03:18 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2013-12-03 12:33 . 2001-09-05 03:18 225280 ------w- c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2013-12-03 12:33 . 2001-09-05 03:14 176128 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2013-12-03 12:33 . 2001-09-05 03:13 32768 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2013-12-03 12:33 . 2003-04-23 05:34 614532 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2013-12-03 12:32 . 2013-12-03 12:32 -------- d-----w- c:\program files\Common Files\CANON
2013-12-03 12:31 . 2013-12-03 12:31 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2013-12-03 12:31 . 2013-12-03 12:31 -------- d--h--w- c:\program files\CanonBJ
2013-12-03 12:30 . 2013-12-03 12:32 -------- d-----w- c:\program files (x86)\Canon
2013-12-02 17:17 . 2013-12-02 17:17 280752 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10226.bin
2013-12-02 16:40 . 2013-12-02 16:40 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-12-01 21:27 . 2008-05-07 18:59 99840 ----a-w- c:\windows\system32\Spool\prtprocs\x64\HPZPPLHN.DLL
2013-11-30 19:21 . 2013-11-30 19:21 -------- d-----w- c:\programdata\Advanced Uninstaller PRO
2013-11-30 19:21 . 2013-11-30 19:21 -------- d-----w- c:\program files (x86)\Common Files\Innovative Solutions
2013-11-30 19:21 . 2009-11-05 11:24 42496 ----a-w- c:\windows\SysWow64\AdvUninstCPL.cpl
2013-11-30 19:16 . 2013-11-30 19:21 -------- d-----w- c:\programdata\Innovative Solutions
2013-11-30 19:04 . 2013-11-30 19:04 -------- d-----w- c:\program files (x86)\VideoLAN
2013-11-30 18:56 . 2002-09-25 20:06 87392 ----a-w- c:\windows\twain.dll
2013-11-30 18:48 . 2013-11-30 18:49 -------- d-----w- C:\totalcmd
2013-11-30 18:46 . 2013-11-30 18:46 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-11-30 18:46 . 2013-11-30 18:46 -------- d-----w- c:\programdata\Oracle
2013-11-30 18:46 . 2013-11-30 18:46 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-11-30 18:46 . 2013-11-30 18:46 -------- d-----w- c:\program files (x86)\Java
2013-11-30 18:40 . 2013-11-30 18:40 -------- d-----w- c:\program files (x86)\Zoner
2013-11-30 18:39 . 2013-11-30 18:39 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-11-30 18:32 . 2013-11-30 18:32 41899 ----a-w- c:\windows\SysWow64\NeonClockUninstall.exe
2013-11-30 18:17 . 2013-11-30 18:17 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2013-11-30 18:04 . 2013-10-08 22:27 3279872 ----a-w- c:\windows\system32\wuaueng.dll
2013-11-30 18:04 . 2013-08-30 05:19 626688 ----a-w- c:\windows\system32\resutils.dll
2013-11-30 18:04 . 2013-08-30 05:18 374784 ----a-w- c:\windows\system32\clusapi.dll
2013-11-30 17:01 . 2013-11-30 17:04 -------- d-----r- c:\windows\BrowserChoice
2013-11-30 16:52 . 2013-11-30 16:54 -------- d-----w- c:\windows\system32\MRT
2013-11-30 16:48 . 2013-08-29 23:48 914432 ----a-w- c:\windows\SysWow64\UIAutomationCore.dll
2013-11-30 16:48 . 2013-09-13 22:36 247296 ----a-w- c:\windows\SysWow64\ubpm.dll
2013-11-30 16:48 . 2013-09-13 22:33 328192 ----a-w- c:\windows\system32\ubpm.dll
2013-11-30 16:48 . 2013-08-30 05:43 61784 ----a-w- c:\windows\system32\drivers\crashdmp.sys
2013-11-30 16:48 . 2013-08-21 06:39 465240 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-11-30 16:48 . 2013-08-10 06:30 151896 ----a-w- c:\windows\system32\drivers\tpm.sys
2013-11-30 16:48 . 2013-08-10 05:21 817152 ----a-w- c:\windows\system32\kerberos.dll
2013-11-30 16:48 . 2013-07-12 01:38 599040 ----a-w- c:\windows\system32\WSDApi.dll
2013-11-30 16:48 . 2013-08-10 03:58 656896 ----a-w- c:\windows\SysWow64\kerberos.dll
2013-11-30 16:48 . 2013-07-12 01:30 485376 ----a-w- c:\windows\SysWow64\WSDApi.dll
2013-11-30 16:46 . 2012-10-11 05:45 3236864 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2013-11-30 16:43 . 2013-06-21 05:04 19187712 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-11-30 16:42 . 2013-05-30 23:24 1257472 ----a-w- c:\windows\system32\kernel32.dll
2013-11-30 16:42 . 2013-05-15 02:25 888320 ----a-w- c:\windows\system32\autochk.exe
2013-11-30 16:42 . 2013-05-15 02:25 542208 ----a-w- c:\windows\system32\untfs.dll
2013-11-30 16:42 . 2013-05-15 02:24 793088 ----a-w- c:\windows\SysWow64\autochk.exe
2013-11-30 16:42 . 2013-05-15 02:24 482816 ----a-w- c:\windows\SysWow64\untfs.dll
2013-11-30 16:40 . 2012-11-06 07:52 277736 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2013-11-30 16:32 . 2013-11-30 18:14 -------- d-----w- c:\windows\SysWow64\Adobe
2013-11-30 16:26 . 2013-11-05 22:58 78296 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-30 16:26 . 2013-11-05 22:58 694232 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-11-30 16:05 . 2013-11-30 16:06 -------- d-----w- c:\program files (x86)\LibreOffice 4
2013-11-30 15:13 . 2013-05-22 17:49 17720 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2013-11-30 15:04 . 2013-11-30 15:04 8858112 ----a-w- c:\windows\SysWow64\twinui.dll
2013-11-30 15:04 . 2013-11-30 15:04 2304512 ----a-w- c:\windows\system32\authui.dll
2013-11-30 15:04 . 2013-11-30 15:04 2035712 ----a-w- c:\windows\SysWow64\authui.dll
2013-11-30 15:04 . 2013-11-30 15:04 10116608 ----a-w- c:\windows\system32\twinui.dll
2013-11-30 15:02 . 2013-11-30 15:02 2062848 ----a-w- c:\windows\system32\d3d11.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-30 14:55 . 2013-11-30 14:55 419328 ----a-w- c:\windows\system32\schannel.dll
2013-11-30 14:55 . 2013-11-30 14:55 323072 ----a-w- c:\windows\SysWow64\schannel.dll
2013-11-30 14:46 . 2013-11-30 14:46 444416 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-11-30 14:46 . 2013-11-30 14:46 39936 ----a-w- c:\windows\apppatch\apppatch64\acspecfc.dll
2013-11-30 14:46 . 2013-11-30 14:46 310784 ----a-w- c:\windows\apppatch\AcRes.dll
2013-11-30 13:37 . 2013-11-30 13:37 1285632 ----a-w- c:\windows\system32\schedsvc.dll
2013-11-29 17:51 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RadioController"="c:\program files (x86)\RadioController\RfBtnHelper.exe" [2013-01-28 111216]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-11-30 3568312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2012-07-26 62976]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Adobe Gamma Loader.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2013-11-30 113664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys;c:\windows\SYSNATIVE\drivers\aswFsBlk.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 BrcmCardReader;Broadcom Card Reader Service;c:\program files\Broadcom\MemoryCard\BrcmCardReader.exe;c:\program files\Broadcom\MemoryCard\BrcmCardReader.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 RfButtonDriverService;Dritek RF Button Command Service;c:\windows\RfBtnSvc64.exe;c:\windows\RfBtnSvc64.exe [x]
S2 StartMenuService;StartMenu8 Service;c:\program files (x86)\IObit\Start Menu 8\StartMenuServices.exe;c:\program files (x86)\IObit\Start Menu 8\StartMenuServices.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 ZAtheros Wlan Agent;ZAtheros Wlan Agent;c:\program files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe;c:\program files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [x]
S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\System32\drivers\b57xdbd.sys;c:\windows\SYSNATIVE\drivers\b57xdbd.sys [x]
S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\System32\drivers\b57xdmp.sys;c:\windows\SYSNATIVE\drivers\b57xdmp.sys [x]
S3 bScsiMSa;bScsiMSa;c:\windows\System32\drivers\bScsiMSa.sys;c:\windows\SYSNATIVE\drivers\bScsiMSa.sys [x]
S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;c:\windows\System32\drivers\aPs2Kb2Hid.sys;c:\windows\SYSNATIVE\drivers\aPs2Kb2Hid.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-08 c:\windows\Tasks\ASC7_SkipUac_Milan.job
- c:\program files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2013-11-30 18:03]
.
2013-11-30 c:\windows\Tasks\Driver Booster Update.job
- c:\program files (x86)\IObit\Driver Booster\AutoUpdate.exe [2013-11-30 10:12]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2013-11-30 12:44 2486592 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-11-30 09:59 326944 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-23 171040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-23 399392]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-10-23 441888]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-11-30 13662936]
"BtPreLoad"="c:\program files (x86)\Bluetooth Suite\BtPreLoad.exe" [2012-11-06 64640]
"CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2006-09-20 20480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: browser.search.selectedEngine - Yahoo!
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=green ... =800236&p=
FF - ExtSQL: 2013-11-30 10:59; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2013-11-30 19:21; {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
FF - ExtSQL: 2013-12-08 16:21; savingsslider@mybrowserbar.com; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\extensions\savingsslider@mybrowserbar.com
FF - ExtSQL: 2013-12-08 16:28; {58d2a791-6199-482f-a9aa-9b725ec61362}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF - ExtSQL: 2013-12-08 17:37; adsremoval@adsremoval.net; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\d5hj2ziy.default\extensions\adsremoval@adsremoval.net
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-mcui_exe - c:\program files\McAfee.com\Agent\mcagent.exe
Wow6432Node-HKLM-Run-LManager - (no file)
BHO-{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - c:\users\Milan\AppData\Roaming\Slick Savings\Coupons64.dll
Toolbar-Locked - (no file)
AddRemove-Adobe Photoshop 7.0 CE - c:\windows\ISUN0405.EXE
AddRemove-NeonClock - c:\windows\system32\NeonClockUninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Launch Manager\LMutilps32.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Launch Manager\LManager.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\IObit\Start Menu 8\StartMenu8.exe
c:\program files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
c:\windows\System32\spool\drivers\x64\3\WrtProc.exe
c:\program files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
.
**************************************************************************
.
Celkový čas: 2013-12-13 18:43:58 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-12-13 17:43
.
Před spuštěním: 55 046 410 240 bytes free
Po spuštění: 54 753 099 776 bytes free
.
- - End Of File - - 5CD69CE8FFEF5F45C5ABC52B6AFB9645