PC-HELP.CZ

Ahoj chalani.poprosil by som vás o pomoc pri odstránení Qone8
tu je log z Malvarebytes AM
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2014.04.30.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16866
Molnarovci :: KAMI [administrátor]

6. 5. 2014 18:12:20
MBAM-log-2014-05-06 (18-18-19).txt

Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 258866
Uplynutý čas: 5 min, 45 sek

Detegované služby pamäte: 3
C:\ProgramData\IePluginService\PluginService.exe (PUP.Optional.IePluginService.A) -> 1596 -> Žiadna úloha nevykonaná.
C:\ProgramData\WPM\wprotectmanager.exe (PUP.Optional.WpManager) -> 1636 -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\FilesFrog Update Checker\update_checker.exe (PUP.Optional.FilesFrog.A) -> 2868 -> Žiadna úloha nevykonaná.

Detegované moduly pamäte: 1
C:\Program Files (x86)\SupTab\DpInterface32.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.

Detegované registračné kľúče: 11
HKLM\SYSTEM\CurrentControlSet\Services\IePluginService (PUP.Optional.IePluginService.A) -> Žiadna úloha nevykonaná.
HKLM\SYSTEM\CurrentControlSet\Services\Wpm (PUP.Optional.WpManager) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WPM (PUP.Optional.WpManager) -> Žiadna úloha nevykonaná.
HKCR\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
HKCR\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D} (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
HKCR\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker (PUP.Optional.Somoto) -> Žiadna úloha nevykonaná.
HKCU\SOFTWARE\SOMOTO\SDP (PUP.Optional.Somoto.A) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\qone8Software (PUP.Optional.Qone8.A) -> Žiadna úloha nevykonaná.

Detegované registračné hodnoty: 3
HKCU\Software\Somoto\SDP|affid (PUP.Optional.Somoto.A) -> Dáta: sothinkflvplayer -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|quick_start@gmail.com (PUP.Optional.QuickStart.A) -> Dáta: C:\Users\Molnarovci\AppData\Roaming\Mozilla\Firefox\Profiles\4boft7gz.default\extensions\quick_start@gmail.com -> Žiadna úloha nevykonaná.
HKLM\SYSTEM\CurrentControlSet\Services\Wpm|ImagePath (PUP.Optional.WpManager.A) -> Dáta: C:\ProgramData\WPM\wprotectmanager.exe -service -> Žiadna úloha nevykonaná.

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 53
C:\Program Files (x86)\SupTab (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\weather (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\en-US (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\es-419 (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\es-ES (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-BE (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-CA (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-CH (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-FR (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-LU (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\it-CH (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\it-IT (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\pl (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\pt (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\pt-BR (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\ru (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\ru-MO (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\tr-TR (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\vi-VI (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\zh-CN (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\zh-TW (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\FilesFrog Update Checker (PUP.Optional.FilesFrog.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker (PUP.Optional.FilesFrog.A) -> Žiadna úloha nevykonaná.
C:\ProgramData\IePluginService (PUP.Optional.IePluginService.A) -> Žiadna úloha nevykonaná.
C:\ProgramData\IePluginService\update (PUP.Optional.IePluginService.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0 (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\en (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es_419 (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-BE (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CA (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CH (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-LU (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it-CH (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pl (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt_BR (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru-MO (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\tr (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\vi (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_CN (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_TW (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.

Detegované súbory: 110
C:\ProgramData\IePluginService\PluginService.exe (PUP.Optional.IePluginService.A) -> Žiadna úloha nevykonaná.
C:\ProgramData\WPM\wprotectmanager.exe (PUP.Optional.WpManager) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\SupTab.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Roaming\SupTab\SupTab.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Temp\14238367\14238367.zipDir\tmp\wpm_v18.8.0.273.exe (PUP.Optional.WpManager) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\FilesFrog Update Checker\uninstall.exe (PUP.Optional.Somoto) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\install.data (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\BHOEnabler.exe (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\DpInterface32.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\DpInterface64.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\DpInterfacef32.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\ient.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\RSHP.exe (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\SearchProtect32.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\SearchProtect64.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\SpAPPSv32.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\SpAPPSv64.dll (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\uninstall.exe (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\WebDataJs (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\data.html (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\indexIE.html (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\indexIE8.html (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\main.css (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\ver.txt (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\arrow.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\default_add_logo.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\default_add_logo_hover.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\default_logo.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\googlelogo.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\googlelogo2.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\google_trends.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\icon128.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\icon16.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\icon48.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\loading.gif (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\logo32.ico (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\img\weather\0.png (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\common.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\ga.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\ie8.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\jquery-1.11.0.min.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\jquery.autocomplete.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\js.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\library.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\js\xagainit.js (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\en-US\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\es-419\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\es-ES\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-BE\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-CA\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-CH\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-FR\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\fr-LU\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\it-CH\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\it-IT\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\pl\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\pt\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\pt-BR\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\ru\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\ru-MO\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\tr-TR\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\vi-VI\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\zh-CN\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\SupTab\web\_locales\zh-TW\messages.json (PUP.Optional.SupTab.A) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\qone8.xml (PUP.Optional.Qone8.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\FilesFrog Update Checker\update_checker.exe (PUP.Optional.FilesFrog.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Check for Updates.lnk (PUP.Optional.FilesFrog.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Uninstall.lnk (PUP.Optional.FilesFrog.A) -> Žiadna úloha nevykonaná.
C:\ProgramData\IePluginService\update\conf (PUP.Optional.IePluginService.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\background.html (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\index.html (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\manifest.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\style.css (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\default_logo.png (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\icon128.png (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\icon16.png (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\icon48.png (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\loading.gif (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\search.png (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.eot (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.svg (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.ttf (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.woff (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\background.js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\ga.js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\inject.js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\jquery-base.js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\jquery.autocomplete.js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\js.js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\xagainit.js (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\en\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es_419\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-BE\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CA\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CH\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-LU\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it-CH\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pl\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt_BR\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru-MO\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\tr\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\vi\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_CN\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_TW\messages.json (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.

(koniec)

a tu je z hijackthis

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:21:25, on 6. 5. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16866)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
C:\Users\Molnarovci\Downloads\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.qone8.com/web/?type=ds&ts=13 ... CC438AF&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.qone8.com/web/?type=ds&ts=13 ... CC438AF&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.qone8.com/web/?type=ds&ts=13 ... CC438AF&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.qone8.com/web/?type=ds&ts=13 ... CC438AF&q={searchTerms}
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\programy\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stiahnuť &všetky odkazy pomocou BitComet - res://D:\programy\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Stiahnuť odkaz &pomocou BitComet - res://D:\programy\BitComet\BitComet.exe/AddLink.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - (no file)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://D:\programy\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{E423EFB3-508B-4900-802E-4F919277EDE4}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - D:\programy\BitComet\tools\BitCometService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IePlugin Service (IePluginService) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginService\PluginService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wpm Service (Wpm) - Cherished Technololgy LIMITED - C:\ProgramData\WPM\wprotectmanager.exe

--
End of file - 11439 bytes

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Molnarovci on ut 06. 05. 2014 at 19:33:36.69
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Brothersoftdownloader_for_Incredibasketball_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Brothersoftdownloader_for_Incredibasketball_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Brothersoftdownloader_for_Incredibasketball_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Brothersoftdownloader_for_Incredibasketball_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5FE7D58A-B2E0-40C0-B461-31858FDA3736}
Successfully deleted: [Registry Key] "hkey_current_user\software\microsoft\internet explorer\low rights\elevationpolicy\{a5aa24ea-11b8-4113-95ae-9ed71deaf12a}"



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Molnarovci\AppData\Roaming\mozilla\firefox\profiles\4boft7gz.default\minidumps [1078 files]



~~~ Event Viewer Logs were cleared

nezobrazila sa mi hlaska o uložení do karanteny


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2014.04.30.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16866
Molnarovci :: KAMI [administrátor]

6. 5. 2014 19:43:25
MBAM-log-2014-05-06 (19-49-00) 2.txt

Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 258620
Uplynutý čas: 4 min, 48 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 0
(Škodlivé položky neboli zistené)

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 1
C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma (PUP.Optional.QuickStart.A) -> Žiadna úloha nevykonaná.

Detegované súbory: 2
C:\Users\Molnarovci\AppData\Local\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto) -> Žiadna úloha nevykonaná.
C:\Users\Molnarovci\AppData\Local\Temp\14238367\14238367.zipDir\tmp\wpm_v18.8.0.273.exe (PUP.Optional.WpManager) -> Žiadna úloha nevykonaná.

(koniec)

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operačný systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spustené v : Normálny režim
Užívateľ : Molnarovci [Práva Správcu]
Režim : Kontrola -- Dátum : 05/06/2014 19:55:38
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 0 ¤¤¤

¤¤¤ Záznamy Registrov : 7 ¤¤¤
[DNS][PUM] HKLM\[...]\CCSet\[...]\{E423EFB3-508B-4900-802E-4F919277EDE4} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 [UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - PHILIPPINES (PH) - UNITED STATES (US)]) -> NÁJDENÉ
[DNS][PUM] HKLM\[...]\CS001\[...]\{E423EFB3-508B-4900-802E-4F919277EDE4} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 [UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - PHILIPPINES (PH) - UNITED STATES (US)]) -> NÁJDENÉ
[DNS][PUM] HKLM\[...]\CS002\[...]\{E423EFB3-508B-4900-802E-4F919277EDE4} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 [UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - PHILIPPINES (PH) - UNITED STATES (US)]) -> NÁJDENÉ
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NÁJDENÉ
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ

¤¤¤ naplánované úlohy : 1 ¤¤¤
[V1][SUSP PATH] Norton Product InstallerIdle.job : C:\Users\MOLNAR~1\AppData\Local\Temp\Adobe\Shockwave 11\SymInstallStub.exe - /partnerid=adobe /productlist=rm /staging=false /delay=0 /debug /desktopshortcut=1 /startmenushortcut=1 /launchedby=4 [x] -> NÁJDENÉ

¤¤¤ spustenie položky : 0 ¤¤¤

¤¤¤ webové prehliadače : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤

¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤

¤¤¤ Vonkajšie Hives: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ SCSI) SAMSUNG HD161GJ SCSI Disk Device +++++
--- User ---
[MBR] 22e2ba54ea40160a1f3da05d73c9cc34
[BSP] e851d884470d464ee58c2158da200d3d : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 49900 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 102402048 | Size: 102625 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x1] Nesprávna funkcia. )

Dokončené : << RKreport[0]_S_05062014_195538.txt >>

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2014.04.30.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16866
Molnarovci :: KAMI [administrátor]

7. 5. 2014 17:24:26
mbam-log-2014-05-07 (17-24-26).txt

Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 258370
Uplynutý čas: 5 min, 13 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 0
(Škodlivé položky neboli zistené)

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 0
(Škodlivé položky neboli zistené)

(koniec)

# AdwCleaner v3.207 - Report created 07/05/2014 at 17:31:13
# Updated 05/05/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Molnarovci - KAMI
# Running from : C:\Users\Molnarovci\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16866


-\\ Mozilla Firefox v29.0 (sk)

[ File : C:\Users\Molnarovci\AppData\Roaming\Mozilla\Firefox\Profiles\4boft7gz.default\prefs.js ]

Line Found : user_pref("extensions.greenwebplayer@greentube.com.install-event-fired", true);

-\\ Google Chrome v34.0.1847.131

[ File : C:\Users\Molnarovci\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [19556 octets] - [06/05/2014 19:16:20]
AdwCleaner[R1].txt - [926 octets] - [07/05/2014 17:31:13]
AdwCleaner[S0].txt - [18857 octets] - [06/05/2014 19:16:57]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1046 octets] ##########

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operačný systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spustené v : Normálny režim
Užívateľ : Molnarovci [Práva Správcu]
Režim : Odebrať -- Dátum : 05/07/2014 17:39:13
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 0 ¤¤¤

¤¤¤ Záznamy Registrov : 2 ¤¤¤
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRADENÉ (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRADENÉ (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spustenie položky : 0 ¤¤¤

¤¤¤ webové prehliadače : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤

¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
[Address] EAT @explorer.exe (DllCanUnloadNow) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\System32\AltTab.dll @ 0xFB4920D8)
[Address] EAT @explorer.exe (DllGetClassObject) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\System32\AltTab.dll @ 0xFB4920EC)

¤¤¤ Vonkajšie Hives: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ SCSI) SAMSUNG HD161GJ SCSI Disk Device +++++
--- User ---
[MBR] 22e2ba54ea40160a1f3da05d73c9cc34
[BSP] e851d884470d464ee58c2158da200d3d : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 49900 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 102402048 | Size: 102625 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x1] Nesprávna funkcia. )

Dokončené : << RKreport[0]_D_05072014_173913.txt >>
RKreport[0]_S_05072014_173909.txt

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.

18:45:10.0066 0x0450 TDSS rootkit removing tool 3.0.0.34 Apr 29 2014 18:20:10
18:45:13.0530 0x0450 ============================================================
18:45:13.0530 0x0450 Current date / time: 2014/05/07 18:45:13.0530
18:45:13.0530 0x0450 SystemInfo:
18:45:13.0530 0x0450
18:45:13.0530 0x0450 OS Version: 6.1.7601 ServicePack: 1.0
18:45:13.0530 0x0450 Product type: Workstation
18:45:13.0530 0x0450 ComputerName: KAMI
18:45:13.0530 0x0450 UserName: Molnarovci
18:45:13.0530 0x0450 Windows directory: C:\Windows
18:45:13.0530 0x0450 System windows directory: C:\Windows
18:45:13.0530 0x0450 Running under WOW64
18:45:13.0530 0x0450 Processor architecture: Intel x64
18:45:13.0530 0x0450 Number of processors: 2
18:45:13.0530 0x0450 Page size: 0x1000
18:45:13.0530 0x0450 Boot type: Normal boot
18:45:13.0530 0x0450 ============================================================
18:45:15.0214 0x0450 KLMD registered as C:\Windows\system32\drivers\96953726.sys
18:45:15.0526 0x0450 System UUID: {D74C345E-22F3-1018-A1F8-85F5BDCCE03C}
18:45:16.0213 0x0450 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
18:45:16.0213 0x0450 ============================================================
18:45:16.0213 0x0450 \Device\Harddisk0\DR0:
18:45:16.0213 0x0450 MBR partitions:
18:45:16.0213 0x0450 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:45:16.0213 0x0450 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6176000
18:45:16.0213 0x0450 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x61A8800, BlocksNum 0xC870800
18:45:16.0213 0x0450 ============================================================
18:45:16.0228 0x0450 C: <-> \Device\Harddisk0\DR0\Partition2
18:45:16.0275 0x0450 D: <-> \Device\Harddisk0\DR0\Partition3
18:45:16.0275 0x0450 ============================================================
18:45:16.0275 0x0450 Initialize success
18:45:16.0275 0x0450 ============================================================
18:45:19.0707 0x0acc ============================================================
18:45:19.0707 0x0acc Scan started
18:45:19.0707 0x0acc Mode: Manual;
18:45:19.0707 0x0acc ============================================================
18:45:19.0707 0x0acc KSN ping started
18:45:33.0607 0x0acc KSN ping finished: true
18:45:34.0262 0x0acc ================ Scan system memory ========================
18:45:34.0262 0x0acc System memory - ok
18:45:34.0262 0x0acc ================ Scan services =============================
18:45:34.0449 0x0acc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:45:34.0465 0x0acc 1394ohci - ok
18:45:34.0527 0x0acc [ A3769020F7E8A70FD3E824C050F33306, BAAB18DD28C753EC90E9552BD5FFC316AD8815505A7998BCE51D21448B373D86 ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
18:45:34.0543 0x0acc acedrv11 - ok
18:45:34.0574 0x0acc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:45:34.0590 0x0acc ACPI - ok
18:45:34.0605 0x0acc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:45:34.0605 0x0acc AcpiPmi - ok
18:45:34.0699 0x0acc [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:45:34.0714 0x0acc AdobeARMservice - ok
18:45:34.0855 0x0acc [ 7C7E868E1D8096ED08D80FF7712BB9D8, EB4438F3CC377728173E018A763F0D0A8D5BBA4A289F554036D06B24030D2D62 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:45:34.0870 0x0acc AdobeFlashPlayerUpdateSvc - ok
18:45:34.0917 0x0acc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:45:34.0948 0x0acc adp94xx - ok
18:45:34.0980 0x0acc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:45:34.0980 0x0acc adpahci - ok
18:45:35.0011 0x0acc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:45:35.0011 0x0acc adpu320 - ok
18:45:35.0042 0x0acc [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:45:35.0042 0x0acc AeLookupSvc - ok
18:45:35.0120 0x0acc [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
18:45:35.0136 0x0acc AFD - ok
18:45:35.0167 0x0acc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
18:45:35.0182 0x0acc agp440 - ok
18:45:35.0198 0x0acc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
18:45:35.0214 0x0acc ALG - ok
18:45:35.0229 0x0acc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
18:45:35.0229 0x0acc aliide - ok
18:45:35.0292 0x0acc [ 87E226C0E11182943D28E8BEC61618CD, 909BFFF6E016321E6A7A722F219E23BB244B3C29EEFAD7F007C53A4EB5CCB6AF ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:45:35.0307 0x0acc AMD External Events Utility - ok
18:45:35.0385 0x0acc AMD FUEL Service - ok
18:45:35.0401 0x0acc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
18:45:35.0401 0x0acc amdide - ok
18:45:35.0416 0x0acc [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
18:45:35.0432 0x0acc amdiox64 - ok
18:45:35.0463 0x0acc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:45:35.0463 0x0acc AmdK8 - ok
18:45:35.0806 0x0acc [ 446A1AAD34191665A8DF6092BD8EB5A8, B7E03FACF220DBD9891471F0525CFA0F24E9D76F7DFB17EBD752270B80D6498D ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:45:35.0978 0x0acc amdkmdag - ok
18:45:36.0025 0x0acc [ F8F8A908FDB005A65DDF7238C814EEA5, 6FAC5532508227DDD5EE424AF5C72C0D3A7F592B57C1C8A6718C7F21D5506F21 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:45:36.0040 0x0acc amdkmdap - ok
18:45:36.0072 0x0acc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:45:36.0072 0x0acc AmdPPM - ok
18:45:36.0103 0x0acc [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:45:36.0118 0x0acc amdsata - ok
18:45:36.0165 0x0acc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:45:36.0165 0x0acc amdsbs - ok
18:45:36.0181 0x0acc [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:45:36.0181 0x0acc amdxata - ok
18:45:36.0196 0x0acc [ 5A528A540B1AEE8B1C77ED65094E8CDF, 6E3DE68E630B81425056AB58E64721DD41F56491DD2D281CBB86AA7EF9CAD0E0 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:45:36.0212 0x0acc AODDriver4.01 - ok
18:45:36.0243 0x0acc [ 5A528A540B1AEE8B1C77ED65094E8CDF, 6E3DE68E630B81425056AB58E64721DD41F56491DD2D281CBB86AA7EF9CAD0E0 ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:45:36.0243 0x0acc AODDriver4.2 - ok
18:45:36.0274 0x0acc [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
18:45:36.0274 0x0acc AppID - ok
18:45:36.0306 0x0acc [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:45:36.0306 0x0acc AppIDSvc - ok
18:45:36.0352 0x0acc [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
18:45:36.0352 0x0acc Appinfo - ok
18:45:36.0430 0x0acc [ 20F6F19FE9E753F2780DC2FA083AD597, 5106F0F9BA8A7DE49260A9B13BF8EC45ACA6A166FA8B10B4F69C3BB54F6840A1 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:45:36.0430 0x0acc Apple Mobile Device - ok
18:45:36.0493 0x0acc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
18:45:36.0508 0x0acc arc - ok
18:45:36.0524 0x0acc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:45:36.0540 0x0acc arcsas - ok
18:45:36.0664 0x0acc [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:45:36.0664 0x0acc aspnet_state - ok
18:45:36.0727 0x0acc [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
18:45:36.0727 0x0acc aswHwid - ok
18:45:36.0774 0x0acc [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
18:45:36.0774 0x0acc aswMonFlt - ok
18:45:36.0805 0x0acc [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
18:45:36.0820 0x0acc aswRdr - ok
18:45:36.0867 0x0acc [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
18:45:36.0883 0x0acc aswRvrt - ok
18:45:36.0945 0x0acc [ 1C159A357210CAB8974D5FBA068DC38F, 6FEBFCDD75F2929E47E979A32834944373EC6A7523D9C4A8722AEBCF6E4B8C8F ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
18:45:36.0976 0x0acc aswSnx - ok
18:45:37.0023 0x0acc [ 5545FB5B49268C903F311849DB1942ED, 3C7FDD6A9A8A600F07A475595E48F947C36D9A6DAB6D3D84C44686B5A56FB40F ] aswSP C:\Windows\system32\drivers\aswSP.sys
18:45:37.0023 0x0acc aswSP - ok
18:45:37.0070 0x0acc [ 708689376A3FD6C6897C69D272E19F4B, 8F6151C46D8EE75872EB43E08337C7EC22EE7DD5344EA4DF33F026FE640A1336 ] aswStm C:\Windows\system32\drivers\aswStm.sys
18:45:37.0086 0x0acc aswStm - ok
18:45:37.0117 0x0acc [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
18:45:37.0132 0x0acc aswVmm - ok
18:45:37.0148 0x0acc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:45:37.0148 0x0acc AsyncMac - ok
18:45:37.0195 0x0acc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
18:45:37.0195 0x0acc atapi - ok
18:45:37.0226 0x0acc [ ED3A041014FBBFDC23D6C04F9C7A5D79, A039D8F4C0EA2101898A253E13DFED5FA8500C412ACC47835415E27C9BD068FF ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:45:37.0242 0x0acc AtiHDAudioService - ok
18:45:37.0554 0x0acc [ 446A1AAD34191665A8DF6092BD8EB5A8, B7E03FACF220DBD9891471F0525CFA0F24E9D76F7DFB17EBD752270B80D6498D ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:45:37.0725 0x0acc atikmdag - ok
18:45:37.0819 0x0acc [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:45:37.0834 0x0acc AudioEndpointBuilder - ok
18:45:37.0866 0x0acc [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:45:37.0866 0x0acc AudioSrv - ok
18:45:37.0928 0x0acc [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:45:37.0928 0x0acc avast! Antivirus - ok
18:45:37.0990 0x0acc [ 371428CF0F71934CB0F2344823ADFA32, E63A58953FAB8B205D92A5BF95619833583BE4CAE319FB5954B3728919D20240 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
18:45:37.0990 0x0acc avgtp - ok
18:45:38.0037 0x0acc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:45:38.0053 0x0acc AxInstSV - ok
18:45:38.0115 0x0acc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:45:38.0131 0x0acc b06bdrv - ok
18:45:38.0162 0x0acc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:45:38.0162 0x0acc b57nd60a - ok
18:45:38.0193 0x0acc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
18:45:38.0193 0x0acc BDESVC - ok
18:45:38.0209 0x0acc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
18:45:38.0209 0x0acc Beep - ok
18:45:38.0287 0x0acc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
18:45:38.0318 0x0acc BFE - ok
18:45:38.0396 0x0acc BITCOMET_HELPER_SERVICE - ok
18:45:38.0474 0x0acc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
18:45:38.0505 0x0acc BITS - ok
18:45:38.0521 0x0acc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:45:38.0536 0x0acc blbdrive - ok
18:45:38.0630 0x0acc [ F2060A34C8A75BC24A9222EB4F8C07BD, 14EE16BF7E55716C1ADC3F133582A03339844088CF01E929B5A8FB8FA515F714 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
18:45:38.0630 0x0acc Bonjour Service - ok
18:45:38.0661 0x0acc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:45:38.0661 0x0acc bowser - ok
18:45:38.0692 0x0acc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:45:38.0692 0x0acc BrFiltLo - ok
18:45:38.0692 0x0acc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:45:38.0692 0x0acc BrFiltUp - ok
18:45:38.0724 0x0acc [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:45:38.0724 0x0acc BridgeMP - ok
18:45:38.0755 0x0acc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
18:45:38.0755 0x0acc Browser - ok
18:45:38.0770 0x0acc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:45:38.0786 0x0acc Brserid - ok
18:45:38.0786 0x0acc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:45:38.0786 0x0acc BrSerWdm - ok
18:45:38.0802 0x0acc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:45:38.0802 0x0acc BrUsbMdm - ok
18:45:38.0817 0x0acc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:45:38.0817 0x0acc BrUsbSer - ok
18:45:38.0833 0x0acc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:45:38.0833 0x0acc BTHMODEM - ok
18:45:38.0880 0x0acc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
18:45:38.0880 0x0acc bthserv - ok
18:45:38.0895 0x0acc catchme - ok
18:45:38.0926 0x0acc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:45:38.0926 0x0acc cdfs - ok
18:45:38.0973 0x0acc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:45:38.0989 0x0acc cdrom - ok
18:45:39.0036 0x0acc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
18:45:39.0036 0x0acc CertPropSvc - ok
18:45:39.0051 0x0acc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:45:39.0067 0x0acc circlass - ok
18:45:39.0082 0x0acc [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
18:45:39.0098 0x0acc CLFS - ok
18:45:39.0145 0x0acc [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:45:39.0145 0x0acc clr_optimization_v2.0.50727_32 - ok
18:45:39.0207 0x0acc [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:45:39.0207 0x0acc clr_optimization_v2.0.50727_64 - ok
18:45:39.0301 0x0acc [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:45:39.0316 0x0acc clr_optimization_v4.0.30319_32 - ok
18:45:39.0332 0x0acc [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:45:39.0363 0x0acc clr_optimization_v4.0.30319_64 - ok
18:45:39.0379 0x0acc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:45:39.0379 0x0acc CmBatt - ok
18:45:39.0394 0x0acc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:45:39.0394 0x0acc cmdide - ok
18:45:39.0441 0x0acc [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
18:45:39.0457 0x0acc CNG - ok
18:45:39.0472 0x0acc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:45:39.0472 0x0acc Compbatt - ok
18:45:39.0519 0x0acc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:45:39.0519 0x0acc CompositeBus - ok
18:45:39.0535 0x0acc COMSysApp - ok
18:45:39.0566 0x0acc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:45:39.0566 0x0acc crcdisk - ok
18:45:39.0628 0x0acc [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:45:39.0644 0x0acc CryptSvc - ok
18:45:39.0691 0x0acc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:45:39.0706 0x0acc DcomLaunch - ok
18:45:39.0738 0x0acc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
18:45:39.0753 0x0acc defragsvc - ok
18:45:39.0784 0x0acc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:45:39.0784 0x0acc DfsC - ok
18:45:39.0831 0x0acc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:45:39.0847 0x0acc Dhcp - ok
18:45:39.0862 0x0acc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
18:45:39.0878 0x0acc discache - ok
18:45:39.0894 0x0acc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:45:39.0894 0x0acc Disk - ok
18:45:39.0940 0x0acc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:45:39.0956 0x0acc Dnscache - ok
18:45:39.0987 0x0acc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
18:45:40.0003 0x0acc dot3svc - ok
18:45:40.0034 0x0acc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
18:45:40.0050 0x0acc DPS - ok
18:45:40.0096 0x0acc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:45:40.0096 0x0acc drmkaud - ok
18:45:40.0190 0x0acc [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:45:40.0206 0x0acc DXGKrnl - ok
18:45:40.0221 0x0acc EagleX64 - ok
18:45:40.0252 0x0acc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
18:45:40.0252 0x0acc EapHost - ok
18:45:40.0377 0x0acc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:45:40.0455 0x0acc ebdrv - ok
18:45:40.0502 0x0acc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
18:45:40.0502 0x0acc EFS - ok
18:45:40.0596 0x0acc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:45:40.0611 0x0acc ehRecvr - ok
18:45:40.0642 0x0acc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
18:45:40.0642 0x0acc ehSched - ok
18:45:40.0705 0x0acc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:45:40.0720 0x0acc elxstor - ok
18:45:40.0752 0x0acc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:45:40.0752 0x0acc ErrDev - ok
18:45:40.0798 0x0acc [ DF96C3CD6AE15F6D0A6BCB70F9C1E88D, 4D9E779684D19137D43472CA18C8A955AD29C82C5F9D7C7E248A1400EE40EE59 ] esgiguard C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys
18:45:40.0798 0x0acc esgiguard - ok
18:45:40.0861 0x0acc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
18:45:40.0876 0x0acc EventSystem - ok
18:45:40.0908 0x0acc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
18:45:40.0954 0x0acc exfat - ok
18:45:41.0001 0x0acc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:45:41.0064 0x0acc fastfat - ok
18:45:41.0204 0x0acc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
18:45:41.0235 0x0acc Fax - ok
18:45:41.0251 0x0acc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:45:41.0251 0x0acc fdc - ok
18:45:41.0266 0x0acc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
18:45:41.0266 0x0acc fdPHost - ok
18:45:41.0282 0x0acc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
18:45:41.0282 0x0acc FDResPub - ok
18:45:41.0313 0x0acc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:45:41.0313 0x0acc FileInfo - ok
18:45:41.0329 0x0acc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:45:41.0329 0x0acc Filetrace - ok
18:45:41.0344 0x0acc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:45:41.0344 0x0acc flpydisk - ok
18:45:41.0391 0x0acc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:45:41.0407 0x0acc FltMgr - ok
18:45:41.0485 0x0acc [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
18:45:41.0516 0x0acc FontCache - ok
18:45:41.0563 0x0acc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:45:41.0578 0x0acc FontCache3.0.0.0 - ok
18:45:41.0610 0x0acc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:45:41.0610 0x0acc FsDepends - ok
18:45:41.0641 0x0acc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:45:41.0656 0x0acc Fs_Rec - ok
18:45:41.0703 0x0acc [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:45:41.0719 0x0acc fvevol - ok
18:45:41.0734 0x0acc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:45:41.0734 0x0acc gagp30kx - ok
18:45:41.0750 0x0acc gdrv - ok
18:45:41.0828 0x0acc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
18:45:41.0859 0x0acc gpsvc - ok
18:45:41.0937 0x0acc [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:45:41.0937 0x0acc gupdate - ok
18:45:41.0953 0x0acc [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:45:41.0968 0x0acc gupdatem - ok
18:45:42.0015 0x0acc [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:45:42.0015 0x0acc gusvc - ok
18:45:42.0046 0x0acc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:45:42.0046 0x0acc hcw85cir - ok
18:45:42.0109 0x0acc [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:45:42.0140 0x0acc HdAudAddService - ok
18:45:42.0156 0x0acc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:45:42.0156 0x0acc HDAudBus - ok
18:45:42.0171 0x0acc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:45:42.0171 0x0acc HidBatt - ok
18:45:42.0202 0x0acc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:45:42.0202 0x0acc HidBth - ok
18:45:42.0218 0x0acc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:45:42.0218 0x0acc HidIr - ok
18:45:42.0249 0x0acc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
18:45:42.0249 0x0acc hidserv - ok
18:45:42.0296 0x0acc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:45:42.0296 0x0acc HidUsb - ok
18:45:42.0312 0x0acc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:45:42.0327 0x0acc hkmsvc - ok
18:45:42.0358 0x0acc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:45:42.0374 0x0acc HomeGroupListener - ok
18:45:42.0405 0x0acc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:45:42.0405 0x0acc HomeGroupProvider - ok
18:45:42.0421 0x0acc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:45:42.0436 0x0acc HpSAMD - ok
18:45:42.0483 0x0acc [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:45:42.0514 0x0acc HTTP - ok
18:45:42.0530 0x0acc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:45:42.0546 0x0acc hwpolicy - ok
18:45:42.0592 0x0acc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:45:42.0608 0x0acc i8042prt - ok
18:45:42.0670 0x0acc [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:45:42.0686 0x0acc iaStorV - ok
18:45:42.0733 0x0acc [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:45:42.0764 0x0acc idsvc - ok
18:45:42.0780 0x0acc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:45:42.0795 0x0acc iirsp - ok
18:45:42.0842 0x0acc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
18:45:42.0873 0x0acc IKEEXT - ok
18:45:42.0998 0x0acc [ 96B0A408842B0E214EDCB41E89438999, 7197284D9585EF34A0376EA773F9B7C68E3AEBB8C9F7A3E44DFAA461872F2600 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:45:43.0060 0x0acc IntcAzAudAddService - ok
18:45:43.0092 0x0acc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
18:45:43.0092 0x0acc intelide - ok
18:45:43.0123 0x0acc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:45:43.0123 0x0acc intelppm - ok
18:45:43.0201 0x0acc [ 67F6D2A931F194396BDA9B05690008D2, A7416A7D9573F1D8873EC1B3109EC683E85412BA817E0001C3AB2D2C92043D4D ] IObitUnlocker D:\programy\IObit Unlocker\IObitUnlocker.sys
18:45:43.0201 0x0acc IObitUnlocker - ok
18:45:43.0232 0x0acc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:45:43.0248 0x0acc IPBusEnum - ok
18:45:43.0294 0x0acc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:45:43.0294 0x0acc IpFilterDriver - ok
18:45:43.0372 0x0acc [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:45:43.0388 0x0acc iphlpsvc - ok
18:45:43.0419 0x0acc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:45:43.0435 0x0acc IPMIDRV - ok
18:45:43.0450 0x0acc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:45:43.0450 0x0acc IPNAT - ok
18:45:43.0466 0x0acc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:45:43.0466 0x0acc IRENUM - ok
18:45:43.0482 0x0acc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:45:43.0482 0x0acc isapnp - ok
18:45:43.0497 0x0acc [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:45:43.0513 0x0acc iScsiPrt - ok
18:45:43.0528 0x0acc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:45:43.0528 0x0acc kbdclass - ok
18:45:43.0560 0x0acc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:45:43.0560 0x0acc kbdhid - ok
18:45:43.0560 0x0acc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
18:45:43.0575 0x0acc KeyIso - ok
18:45:43.0606 0x0acc [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:45:43.0606 0x0acc KSecDD - ok
18:45:43.0606 0x0acc [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:45:43.0622 0x0acc KSecPkg - ok
18:45:43.0622 0x0acc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:45:43.0638 0x0acc ksthunk - ok
18:45:43.0669 0x0acc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
18:45:43.0700 0x0acc KtmRm - ok
18:45:43.0747 0x0acc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:45:43.0747 0x0acc LanmanServer - ok
18:45:43.0778 0x0acc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:45:43.0794 0x0acc LanmanWorkstation - ok
18:45:43.0809 0x0acc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:45:43.0809 0x0acc lltdio - ok
18:45:43.0840 0x0acc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:45:43.0856 0x0acc lltdsvc - ok
18:45:43.0856 0x0acc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:45:43.0872 0x0acc lmhosts - ok
18:45:43.0887 0x0acc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:45:43.0887 0x0acc LSI_FC - ok
18:45:43.0903 0x0acc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:45:43.0903 0x0acc LSI_SAS - ok
18:45:43.0918 0x0acc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:45:43.0918 0x0acc LSI_SAS2 - ok
18:45:43.0934 0x0acc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:45:43.0934 0x0acc LSI_SCSI - ok
18:45:43.0950 0x0acc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
18:45:43.0950 0x0acc luafv - ok
18:45:43.0981 0x0acc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:45:43.0981 0x0acc Mcx2Svc - ok
18:45:43.0996 0x0acc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:45:43.0996 0x0acc megasas - ok
18:45:44.0028 0x0acc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:45:44.0028 0x0acc MegaSR - ok
18:45:44.0090 0x0acc [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
18:45:44.0090 0x0acc Microsoft Office Groove Audit Service - ok
18:45:44.0121 0x0acc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
18:45:44.0121 0x0acc MMCSS - ok
18:45:44.0137 0x0acc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
18:45:44.0137 0x0acc Modem - ok
18:45:44.0152 0x0acc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:45:44.0152 0x0acc monitor - ok
18:45:44.0199 0x0acc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:45:44.0199 0x0acc mouclass - ok
18:45:44.0230 0x0acc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:45:44.0230 0x0acc mouhid - ok
18:45:44.0277 0x0acc [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:45:44.0277 0x0acc mountmgr - ok
18:45:44.0340 0x0acc [ 4F65CBD93B9807BFD4C95598CAA390EE, 1AB3332F401A98A7E3CE99E6126D63E103B360C947BD73735B32C24FCD673D25 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:45:44.0355 0x0acc MozillaMaintenance - ok
18:45:44.0371 0x0acc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
18:45:44.0386 0x0acc mpio - ok
18:45:44.0402 0x0acc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:45:44.0418 0x0acc mpsdrv - ok
18:45:44.0464 0x0acc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:45:44.0496 0x0acc MpsSvc - ok
18:45:44.0527 0x0acc [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:45:44.0527 0x0acc MRxDAV - ok
18:45:44.0558 0x0acc [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:45:44.0558 0x0acc mrxsmb - ok
18:45:44.0574 0x0acc [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:45:44.0589 0x0acc mrxsmb10 - ok
18:45:44.0605 0x0acc [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:45:44.0605 0x0acc mrxsmb20 - ok
18:45:44.0636 0x0acc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
18:45:44.0636 0x0acc msahci - ok
18:45:44.0667 0x0acc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:45:44.0683 0x0acc msdsm - ok
18:45:44.0698 0x0acc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
18:45:44.0714 0x0acc MSDTC - ok
18:45:44.0745 0x0acc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:45:44.0745 0x0acc Msfs - ok
18:45:44.0761 0x0acc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:45:44.0761 0x0acc mshidkmdf - ok
18:45:44.0776 0x0acc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:45:44.0776 0x0acc msisadrv - ok
18:45:44.0792 0x0acc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:45:44.0808 0x0acc MSiSCSI - ok
18:45:44.0808 0x0acc msiserver - ok
18:45:44.0839 0x0acc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:45:44.0839 0x0acc MSKSSRV - ok
18:45:44.0839 0x0acc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:45:44.0839 0x0acc MSPCLOCK - ok
18:45:44.0854 0x0acc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:45:44.0854 0x0acc MSPQM - ok
18:45:44.0901 0x0acc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:45:44.0917 0x0acc MsRPC - ok
18:45:44.0932 0x0acc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:45:44.0932 0x0acc mssmbios - ok
18:45:44.0948 0x0acc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:45:44.0948 0x0acc MSTEE - ok
18:45:44.0948 0x0acc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:45:44.0948 0x0acc MTConfig - ok
18:45:44.0979 0x0acc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
18:45:44.0979 0x0acc Mup - ok
18:45:45.0026 0x0acc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
18:45:45.0042 0x0acc napagent - ok
18:45:45.0073 0x0acc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:45:45.0073 0x0acc NativeWifiP - ok
18:45:45.0135 0x0acc [ 79B47FD40D9A817E932F9D26FAC0A81C, 53E260B8BFC50BA45FA73BFCF4E58C233890D0EAA9DEFDCCBB55FD3EB992FF2D ] NDIS C:\Windows\system32\drivers\ndis.sys
18:45:45.0151 0x0acc NDIS - ok
18:45:45.0166 0x0acc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:45:45.0166 0x0acc NdisCap - ok
18:45:45.0182 0x0acc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:45:45.0198 0x0acc NdisTapi - ok
18:45:45.0229 0x0acc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:45:45.0229 0x0acc Ndisuio - ok
18:45:45.0276 0x0acc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:45:45.0291 0x0acc NdisWan - ok
18:45:45.0322 0x0acc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

18:45:45.0322 0x0acc NDProxy - ok
18:45:45.0354 0x0acc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:45:45.0354 0x0acc NetBIOS - ok
18:45:45.0400 0x0acc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:45:45.0400 0x0acc NetBT - ok
18:45:45.0416 0x0acc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe
18:45:45.0416 0x0acc Netlogon - ok
18:45:45.0447 0x0acc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
18:45:45.0463 0x0acc Netman - ok
18:45:45.0494 0x0acc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:45:45.0494 0x0acc NetMsmqActivator - ok
18:45:45.0494 0x0acc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:45:45.0510 0x0acc NetPipeActivator - ok
18:45:45.0525 0x0acc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
18:45:45.0541 0x0acc netprofm - ok
18:45:45.0541 0x0acc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:45:45.0541 0x0acc NetTcpActivator - ok
18:45:45.0556 0x0acc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:45:45.0556 0x0acc NetTcpPortSharing - ok
18:45:45.0572 0x0acc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:45:45.0572 0x0acc nfrd960 - ok
18:45:45.0588 0x0acc [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:45:45.0603 0x0acc NlaSvc - ok
18:45:45.0619 0x0acc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:45:45.0619 0x0acc Npfs - ok
18:45:45.0634 0x0acc npggsvc - ok
18:45:45.0650 0x0acc NPPTNT2 - ok
18:45:45.0666 0x0acc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
18:45:45.0666 0x0acc nsi - ok
18:45:45.0681 0x0acc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:45:45.0681 0x0acc nsiproxy - ok
18:45:45.0790 0x0acc [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:45:45.0822 0x0acc Ntfs - ok
18:45:45.0837 0x0acc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
18:45:45.0837 0x0acc Null - ok
18:45:45.0884 0x0acc [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
18:45:45.0884 0x0acc NVENETFD - ok
18:45:45.0931 0x0acc [ BD25E03EAD63AC3365F25175B4DBD56A, 503AB5D064672E1F1A56BBF1339909BDE641ADAA05C6FA6794ED7E045C557062 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
18:45:45.0931 0x0acc NVNET - ok
18:45:45.0962 0x0acc [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:45:45.0962 0x0acc nvraid - ok
18:45:45.0978 0x0acc [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:45:45.0993 0x0acc nvstor - ok
18:45:46.0009 0x0acc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:45:46.0024 0x0acc nv_agp - ok
18:45:46.0102 0x0acc [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:45:46.0118 0x0acc odserv - ok
18:45:46.0134 0x0acc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:45:46.0149 0x0acc ohci1394 - ok
18:45:46.0165 0x0acc [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:45:46.0165 0x0acc ose - ok
18:45:46.0243 0x0acc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:45:46.0274 0x0acc p2pimsvc - ok
18:45:46.0290 0x0acc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
18:45:46.0305 0x0acc p2psvc - ok
18:45:46.0336 0x0acc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:45:46.0336 0x0acc Parport - ok
18:45:46.0368 0x0acc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:45:46.0368 0x0acc partmgr - ok
18:45:46.0383 0x0acc [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
18:45:46.0383 0x0acc PcaSvc - ok
18:45:46.0414 0x0acc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
18:45:46.0414 0x0acc pci - ok
18:45:46.0446 0x0acc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
18:45:46.0446 0x0acc pciide - ok
18:45:46.0477 0x0acc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:45:46.0492 0x0acc pcmcia - ok
18:45:46.0508 0x0acc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
18:45:46.0524 0x0acc pcw - ok
18:45:46.0539 0x0acc [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:45:46.0555 0x0acc PEAUTH - ok
18:45:46.0633 0x0acc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:45:46.0648 0x0acc PerfHost - ok
18:45:46.0742 0x0acc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
18:45:46.0773 0x0acc pla - ok
18:45:46.0820 0x0acc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:45:46.0820 0x0acc PlugPlay - ok
18:45:46.0836 0x0acc PnkBstrA - ok
18:45:46.0851 0x0acc PnkBstrB - ok
18:45:46.0867 0x0acc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:45:46.0867 0x0acc PNRPAutoReg - ok
18:45:46.0882 0x0acc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:45:46.0898 0x0acc PNRPsvc - ok
18:45:46.0945 0x0acc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:45:46.0960 0x0acc PolicyAgent - ok
18:45:46.0992 0x0acc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
18:45:46.0992 0x0acc Power - ok
18:45:47.0038 0x0acc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:45:47.0038 0x0acc PptpMiniport - ok
18:45:47.0070 0x0acc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:45:47.0070 0x0acc Processor - ok
18:45:47.0101 0x0acc [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc C:\Windows\system32\profsvc.dll
18:45:47.0101 0x0acc ProfSvc - ok
18:45:47.0116 0x0acc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:45:47.0116 0x0acc ProtectedStorage - ok
18:45:47.0163 0x0acc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:45:47.0163 0x0acc Psched - ok
18:45:47.0241 0x0acc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:45:47.0272 0x0acc ql2300 - ok
18:45:47.0304 0x0acc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:45:47.0304 0x0acc ql40xx - ok
18:45:47.0335 0x0acc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
18:45:47.0335 0x0acc QWAVE - ok
18:45:47.0350 0x0acc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:45:47.0350 0x0acc QWAVEdrv - ok
18:45:47.0366 0x0acc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:45:47.0366 0x0acc RasAcd - ok
18:45:47.0397 0x0acc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:45:47.0397 0x0acc RasAgileVpn - ok
18:45:47.0413 0x0acc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
18:45:47.0413 0x0acc RasAuto - ok
18:45:47.0444 0x0acc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:45:47.0444 0x0acc Rasl2tp - ok
18:45:47.0491 0x0acc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
18:45:47.0491 0x0acc RasMan - ok
18:45:47.0522 0x0acc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:45:47.0522 0x0acc RasPppoe - ok
18:45:47.0538 0x0acc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:45:47.0553 0x0acc RasSstp - ok
18:45:47.0584 0x0acc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:45:47.0584 0x0acc rdbss - ok
18:45:47.0616 0x0acc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:45:47.0616 0x0acc rdpbus - ok
18:45:47.0662 0x0acc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:45:47.0662 0x0acc RDPCDD - ok
18:45:47.0694 0x0acc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:45:47.0694 0x0acc RDPENCDD - ok
18:45:47.0709 0x0acc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:45:47.0709 0x0acc RDPREFMP - ok
18:45:47.0756 0x0acc [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:45:47.0756 0x0acc RDPWD - ok
18:45:47.0803 0x0acc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:45:47.0803 0x0acc rdyboost - ok
18:45:47.0834 0x0acc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:45:47.0834 0x0acc RemoteAccess - ok
18:45:47.0865 0x0acc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:45:47.0865 0x0acc RemoteRegistry - ok
18:45:47.0896 0x0acc [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
18:45:47.0912 0x0acc Revoflt - ok
18:45:47.0912 0x0acc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:45:47.0928 0x0acc RpcEptMapper - ok
18:45:47.0928 0x0acc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
18:45:47.0943 0x0acc RpcLocator - ok
18:45:47.0990 0x0acc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
18:45:48.0006 0x0acc RpcSs - ok
18:45:48.0037 0x0acc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:45:48.0037 0x0acc rspndr - ok
18:45:48.0052 0x0acc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe
18:45:48.0052 0x0acc SamSs - ok
18:45:48.0068 0x0acc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:45:48.0084 0x0acc sbp2port - ok
18:45:48.0115 0x0acc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:45:48.0115 0x0acc SCardSvr - ok
18:45:48.0146 0x0acc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:45:48.0146 0x0acc scfilter - ok
18:45:48.0240 0x0acc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
18:45:48.0271 0x0acc Schedule - ok
18:45:48.0302 0x0acc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:45:48.0302 0x0acc SCPolicySvc - ok
18:45:48.0333 0x0acc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:45:48.0364 0x0acc SDRSVC - ok
18:45:48.0396 0x0acc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:45:48.0396 0x0acc secdrv - ok
18:45:48.0427 0x0acc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
18:45:48.0442 0x0acc seclogon - ok
18:45:48.0458 0x0acc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
18:45:48.0474 0x0acc SENS - ok
18:45:48.0474 0x0acc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:45:48.0489 0x0acc SensrSvc - ok
18:45:48.0536 0x0acc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:45:48.0536 0x0acc Serenum - ok
18:45:48.0598 0x0acc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:45:48.0598 0x0acc Serial - ok
18:45:48.0630 0x0acc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:45:48.0630 0x0acc sermouse - ok
18:45:48.0676 0x0acc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
18:45:48.0676 0x0acc SessionEnv - ok
18:45:48.0708 0x0acc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:45:48.0708 0x0acc sffdisk - ok
18:45:48.0723 0x0acc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:45:48.0723 0x0acc sffp_mmc - ok
18:45:48.0739 0x0acc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:45:48.0739 0x0acc sffp_sd - ok
18:45:48.0754 0x0acc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:45:48.0754 0x0acc sfloppy - ok
18:45:48.0801 0x0acc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:45:48.0817 0x0acc SharedAccess - ok
18:45:48.0848 0x0acc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:45:48.0864 0x0acc ShellHWDetection - ok
18:45:48.0879 0x0acc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:45:48.0879 0x0acc SiSRaid2 - ok
18:45:48.0895 0x0acc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:45:48.0895 0x0acc SiSRaid4 - ok
18:45:48.0957 0x0acc [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:45:48.0973 0x0acc SkypeUpdate - ok
18:45:49.0004 0x0acc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:45:49.0004 0x0acc Smb - ok
18:45:49.0035 0x0acc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:45:49.0051 0x0acc SNMPTRAP - ok
18:45:49.0066 0x0acc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
18:45:49.0066 0x0acc spldr - ok
18:45:49.0113 0x0acc [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe
18:45:49.0129 0x0acc Spooler - ok
18:45:49.0285 0x0acc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
18:45:49.0363 0x0acc sppsvc - ok
18:45:49.0394 0x0acc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:45:49.0394 0x0acc sppuinotify - ok
18:45:49.0456 0x0acc [ 602884696850C86434530790B110E8EB, C9B734F070E55732B274C70381EA28AB574EF6AD3F606D3DC9B9B0038F3EDEEA ] sptd C:\Windows\system32\Drivers\sptd.sys
18:45:49.0456 0x0acc Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB, sha256: C9B734F070E55732B274C70381EA28AB574EF6AD3F606D3DC9B9B0038F3EDEEA
18:45:49.0456 0x0acc sptd - detected LockedFile.Multi.Generic ( 1 )
18:45:52.0342 0x0acc Detect skipped due to KSN trusted
18:45:52.0342 0x0acc sptd - ok
18:45:52.0420 0x0acc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:45:52.0420 0x0acc srv - ok
18:45:52.0452 0x0acc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:45:52.0452 0x0acc srv2 - ok
18:45:52.0483 0x0acc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:45:52.0483 0x0acc srvnet - ok
18:45:52.0514 0x0acc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:45:52.0530 0x0acc SSDPSRV - ok
18:45:52.0530 0x0acc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:45:52.0545 0x0acc SstpSvc - ok
18:45:52.0561 0x0acc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:45:52.0561 0x0acc stexstor - ok
18:45:52.0639 0x0acc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
18:45:52.0654 0x0acc stisvc - ok
18:45:52.0686 0x0acc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
18:45:52.0686 0x0acc swenum - ok
18:45:52.0748 0x0acc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
18:45:52.0764 0x0acc swprv - ok
18:45:52.0873 0x0acc [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
18:45:52.0904 0x0acc SysMain - ok
18:45:52.0935 0x0acc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:45:52.0935 0x0acc TabletInputService - ok
18:45:52.0951 0x0acc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
18:45:52.0966 0x0acc TapiSrv - ok
18:45:52.0982 0x0acc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
18:45:52.0982 0x0acc TBS - ok
18:45:53.0107 0x0acc [ DB74544B75566C974815E79A62433F29, 035EBF70FDA28CF2B6C1FD7EE0ED703DB4B647064B5DBA6E258878A19B1BCCA4 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:45:53.0138 0x0acc Tcpip - ok
18:45:53.0200 0x0acc [ DB74544B75566C974815E79A62433F29, 035EBF70FDA28CF2B6C1FD7EE0ED703DB4B647064B5DBA6E258878A19B1BCCA4 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:45:53.0232 0x0acc TCPIP6 - ok
18:45:53.0263 0x0acc [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:45:53.0263 0x0acc tcpipreg - ok
18:45:53.0278 0x0acc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:45:53.0294 0x0acc TDPIPE - ok
18:45:53.0310 0x0acc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:45:53.0325 0x0acc TDTCP - ok
18:45:53.0356 0x0acc [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:45:53.0356 0x0acc tdx - ok
18:45:53.0403 0x0acc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
18:45:53.0403 0x0acc TermDD - ok
18:45:53.0466 0x0acc [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
18:45:53.0481 0x0acc TermService - ok
18:45:53.0512 0x0acc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
18:45:53.0528 0x0acc Themes - ok
18:45:53.0544 0x0acc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
18:45:53.0544 0x0acc THREADORDER - ok
18:45:53.0559 0x0acc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
18:45:53.0559 0x0acc TrkWks - ok
18:45:53.0606 0x0acc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:45:53.0606 0x0acc TrustedInstaller - ok
18:45:53.0637 0x0acc [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:45:53.0637 0x0acc tssecsrv - ok
18:45:53.0684 0x0acc [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:45:53.0684 0x0acc TsUsbFlt - ok
18:45:53.0746 0x0acc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:45:53.0762 0x0acc tunnel - ok
18:45:53.0793 0x0acc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:45:53.0793 0x0acc uagp35 - ok
18:45:53.0824 0x0acc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:45:53.0840 0x0acc udfs - ok
18:45:53.0871 0x0acc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:45:53.0871 0x0acc UI0Detect - ok
18:45:53.0887 0x0acc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:45:53.0887 0x0acc uliagpkx - ok
18:45:53.0934 0x0acc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
18:45:53.0934 0x0acc umbus - ok
18:45:53.0949 0x0acc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:45:53.0949 0x0acc UmPass - ok
18:45:53.0965 0x0acc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
18:45:53.0980 0x0acc upnphost - ok
18:45:54.0027 0x0acc [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:45:54.0027 0x0acc usbaudio - ok
18:45:54.0058 0x0acc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:45:54.0058 0x0acc usbccgp - ok
18:45:54.0105 0x0acc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:45:54.0105 0x0acc usbcir - ok
18:45:54.0136 0x0acc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:45:54.0136 0x0acc usbehci - ok
18:45:54.0168 0x0acc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:45:54.0183 0x0acc usbhub - ok
18:45:54.0214 0x0acc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:45:54.0214 0x0acc usbohci - ok
18:45:54.0230 0x0acc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:45:54.0230 0x0acc usbprint - ok
18:45:54.0261 0x0acc [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:45:54.0261 0x0acc USBSTOR - ok
18:45:54.0277 0x0acc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:45:54.0277 0x0acc usbuhci - ok
18:45:54.0339 0x0acc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:45:54.0355 0x0acc usbvideo - ok
18:45:54.0386 0x0acc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
18:45:54.0386 0x0acc UxSms - ok
18:45:54.0402 0x0acc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe
18:45:54.0417 0x0acc VaultSvc - ok
18:45:54.0433 0x0acc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:45:54.0433 0x0acc vdrvroot - ok
18:45:54.0480 0x0acc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
18:45:54.0495 0x0acc vds - ok
18:45:54.0526 0x0acc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:45:54.0526 0x0acc vga - ok
18:45:54.0542 0x0acc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:45:54.0542 0x0acc VgaSave - ok
18:45:54.0589 0x0acc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:45:54.0604 0x0acc vhdmp - ok
18:45:54.0636 0x0acc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
18:45:54.0636 0x0acc viaide - ok
18:45:54.0667 0x0acc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:45:54.0667 0x0acc volmgr - ok
18:45:54.0698 0x0acc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:45:54.0714 0x0acc volmgrx - ok
18:45:54.0729 0x0acc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:45:54.0729 0x0acc volsnap - ok
18:45:54.0760 0x0acc vproiah - ok
18:45:54.0807 0x0acc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:45:54.0807 0x0acc vsmraid - ok
18:45:54.0932 0x0acc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
18:45:54.0963 0x0acc VSS - ok
18:45:54.0979 0x0acc vToolbarUpdater13.2.0 - ok
18:45:54.0994 0x0acc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:45:54.0994 0x0acc vwifibus - ok
18:45:55.0041 0x0acc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
18:45:55.0057 0x0acc W32Time - ok
18:45:55.0088 0x0acc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:45:55.0088 0x0acc WacomPen - ok
18:45:55.0119 0x0acc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:45:55.0135 0x0acc WANARP - ok
18:45:55.0135 0x0acc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:45:55.0135 0x0acc Wanarpv6 - ok
18:45:55.0228 0x0acc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:45:55.0260 0x0acc WatAdminSvc - ok
18:45:55.0353 0x0acc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
18:45:55.0384 0x0acc wbengine - ok
18:45:55.0416 0x0acc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:45:55.0447 0x0acc WbioSrvc - ok
18:45:55.0478 0x0acc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:45:55.0494 0x0acc wcncsvc - ok
18:45:55.0509 0x0acc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:45:55.0509 0x0acc WcsPlugInService - ok
18:45:55.0540 0x0acc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:45:55.0540 0x0acc Wd - ok
18:45:55.0603 0x0acc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:45:55.0634 0x0acc Wdf01000 - ok
18:45:55.0634 0x0acc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:45:55.0650 0x0acc WdiServiceHost - ok
18:45:55.0650 0x0acc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:45:55.0650 0x0acc WdiSystemHost - ok
18:45:55.0681 0x0acc [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient C:\Windows\System32\webclnt.dll
18:45:55.0696 0x0acc WebClient - ok
18:45:55.0712 0x0acc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:45:55.0712 0x0acc Wecsvc - ok
18:45:55.0728 0x0acc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:45:55.0743 0x0acc wercplsupport - ok
18:45:55.0759 0x0acc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
18:45:55.0759 0x0acc WerSvc - ok
18:45:55.0790 0x0acc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:45:55.0790 0x0acc WfpLwf - ok
18:45:55.0806 0x0acc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:45:55.0806 0x0acc WIMMount - ok
18:45:55.0821 0x0acc WinDefend - ok
18:45:55.0837 0x0acc WinHttpAutoProxySvc - ok
18:45:55.0884 0x0acc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:45:55.0899 0x0acc Winmgmt - ok
18:45:55.0977 0x0acc [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
18:45:56.0024 0x0acc WinRM - ok
18:45:56.0086 0x0acc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:45:56.0102 0x0acc Wlansvc - ok
18:45:56.0289 0x0acc [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:45:56.0336 0x0acc wlidsvc - ok
18:45:56.0367 0x0acc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:45:56.0367 0x0acc WmiAcpi - ok
18:45:56.0398 0x0acc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:45:56.0398 0x0acc wmiApSrv - ok
18:45:56.0445 0x0acc WMPNetworkSvc - ok
18:45:56.0476 0x0acc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:45:56.0492 0x0acc WPCSvc - ok
18:45:56.0539 0x0acc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:45:56.0554 0x0acc WPDBusEnum - ok
18:45:56.0586 0x0acc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:45:56.0601 0x0acc ws2ifsl - ok
18:45:56.0632 0x0acc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
18:45:56.0648 0x0acc wscsvc - ok
18:45:56.0648 0x0acc WSearch - ok
18:45:56.0788 0x0acc [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
18:45:56.0851 0x0acc wuauserv - ok
18:45:56.0882 0x0acc [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:45:56.0882 0x0acc WudfPf - ok
18:45:56.0929 0x0acc [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:45:56.0944 0x0acc WUDFRd - ok
18:45:56.0976 0x0acc [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:45:56.0991 0x0acc wudfsvc - ok
18:45:57.0022 0x0acc [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:45:57.0022 0x0acc WwanSvc - ok
18:45:57.0116 0x0acc X6va003 - ok
18:45:57.0132 0x0acc ================ Scan global ===============================
18:45:57.0163 0x0acc [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
18:45:57.0210 0x0acc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:45:57.0225 0x0acc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:45:57.0241 0x0acc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
18:45:57.0272 0x0acc [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
18:45:57.0272 0x0acc [ Global ] - ok
18:45:57.0272 0x0acc ================ Scan MBR ==================================
18:45:57.0288 0x0acc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:45:57.0506 0x0acc \Device\Harddisk0\DR0 - ok
18:45:57.0506 0x0acc ================ Scan VBR ==================================
18:45:57.0522 0x0acc [ E456A1D9AC311F4AE4393DC303BA7B7B ] \Device\Harddisk0\DR0\Partition1
18:45:57.0522 0x0acc \Device\Harddisk0\DR0\Partition1 - ok
18:45:57.0522 0x0acc [ 39632C2178ED03684B55B324C41600FB ] \Device\Harddisk0\DR0\Partition2
18:45:57.0522 0x0acc \Device\Harddisk0\DR0\Partition2 - ok
18:45:57.0522 0x0acc [ 61A03F8681DE54CE75A01AB348257A61 ] \Device\Harddisk0\DR0\Partition3
18:45:57.0522 0x0acc \Device\Harddisk0\DR0\Partition3 - ok
18:45:57.0537 0x0acc Waiting for KSN requests completion. In queue: 351
18:45:58.0551 0x0acc Waiting for KSN requests completion. In queue: 39
18:45:59.0565 0x0acc Waiting for KSN requests completion. In queue: 39
18:46:00.0610 0x0acc AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
18:46:00.0642 0x0acc Win FW state via NFP2: enabled
18:46:03.0481 0x0acc ============================================================
18:46:03.0481 0x0acc Scan finished
18:46:03.0481 0x0acc ============================================================
18:46:03.0496 0x0b60 Detected object count: 0
18:46:03.0496 0x0b60 Actual detected object count: 0
19:00:40.0263 0x08c8 ============================================================
19:00:40.0263 0x08c8 Scan started
19:00:40.0263 0x08c8 Mode: Manual;
19:00:40.0263 0x08c8 ============================================================
19:00:40.0263 0x08c8 KSN ping started
19:00:54.0118 0x08c8 KSN ping finished: true
19:00:54.0633 0x08c8 ================ Scan system memory ========================
19:00:54.0633 0x08c8 Scan was interrupted by user!
19:00:54.0648 0x08c8 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
19:00:54.0664 0x08c8 Win FW state via NFP2: enabled
19:00:57.0612 0x08c8 ============================================================
19:00:57.0612 0x08c8 Scan finished
19:00:57.0612 0x08c8 ============================================================
19:00:57.0628 0x0fd0 Detected object count: 0
19:00:57.0628 0x0fd0 Actual detected object count: 0
19:01:04.0274 0x0910 Deinitialize success