PC-HELP.CZ

Ahoj, prosím vás nedávno mi přišel uplně prazdny ntb ze záruky takže jsem nainstaloval aktualni drivery a pod. a pc šlapal perfektně hend první dva dny hry makali super Mass Effects 3 na plny detaily a spouštěly se do 5 sekund ted čekám tak 5-10 minut než se spustí hra o velikosti 600mb

Pls o log :)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:57, on 2.5.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Users\Woytman\Desktop\HijackThis(1).exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\coIEPlg.dll
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-2000845088-3818977652-3785840965-1002\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun (User '?')
O4 - HKUS\S-1-5-21-2000845088-3818977652-3785840965-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-21-2000845088-3818977652-3785840965-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9536 bytes

Ahoj!
Nějaký cracky a keygeny?

Norton Internet Security---to máš legal?

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod



Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Ahoj tak hry se spouští pomalu i u orginálek jako je GTA IV (original) Masseffet 3(Or) Mafia II (OR) Emergency IV (OR) a spousta Hjt zkliknu
Norton je od výrobcu NTB original je to trialka na 60 dní nechám ho kdyžtak sem chtěll Avast ale ten žere Ramku, nebo Aviru :) Co doporučuješ ? :)



Mvaw Malwarebytes Anti-Malware (PRO) 1.61.0.1400
http://www.malwarebytes.org

Verze databáze: v2012.05.02.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Woytman :: WOYTMAN-PC [administrátor]

Ochrana: Zakázána

2.5.2012 21:10:57
mbam-log-2012-05-02 (21-10-57).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 550627
Uplynulý čas: 2 hodin, 18 minut, 10 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 1
HKCR\regfile\shell\open\command| (Broken.OpenCommand) -> Špatný: ("regedit.exe" "%1") Dobrý: (regedit.exe "%1") -> Žádná instrukce nebyla provedena.

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

18:17:18.0195 3340 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
18:17:18.0601 3340 ============================================================
18:17:18.0601 3340 Current date / time: 2012/05/03 18:17:18.0601
18:17:18.0601 3340 SystemInfo:
18:17:18.0601 3340
18:17:18.0601 3340 OS Version: 6.1.7601 ServicePack: 1.0
18:17:18.0601 3340 Product type: Workstation
18:17:18.0601 3340 ComputerName: WOYTMAN-PC
18:17:18.0601 3340 UserName: Woytman
18:17:18.0601 3340 Windows directory: C:\Windows
18:17:18.0601 3340 System windows directory: C:\Windows
18:17:18.0601 3340 Running under WOW64
18:17:18.0601 3340 Processor architecture: Intel x64
18:17:18.0601 3340 Number of processors: 4
18:17:18.0601 3340 Page size: 0x1000
18:17:18.0601 3340 Boot type: Normal boot
18:17:18.0601 3340 ============================================================
18:17:19.0474 3340 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:17:19.0490 3340 ============================================================
18:17:19.0490 3340 \Device\Harddisk0\DR0:
18:17:19.0490 3340 MBR partitions:
18:17:19.0490 3340 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x251C800, BlocksNum 0x32000
18:17:19.0490 3340 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x254E800, BlocksNum 0x48308800
18:17:19.0490 3340 ============================================================
18:17:19.0506 3340 C: <-> \Device\Harddisk0\DR0\Partition1
18:17:19.0506 3340 ============================================================
18:17:19.0506 3340 Initialize success
18:17:19.0506 3340 ============================================================
18:17:21.0019 4604 ============================================================
18:17:21.0019 4604 Scan started
18:17:21.0019 4604 Mode: Manual;
18:17:21.0019 4604 ============================================================
18:17:21.0830 4604 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:17:21.0846 4604 1394ohci - ok
18:17:21.0924 4604 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:17:21.0955 4604 ACPI - ok
18:17:22.0002 4604 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:17:22.0017 4604 AcpiPmi - ok
18:17:22.0158 4604 AdobeActiveFileMonitor9.0 (1474f121c3df1232d3e7239c03691ee6) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
18:17:22.0173 4604 AdobeActiveFileMonitor9.0 - ok
18:17:22.0360 4604 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:17:22.0392 4604 AdobeFlashPlayerUpdateSvc - ok
18:17:22.0485 4604 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
18:17:22.0485 4604 adp94xx - ok
18:17:22.0594 4604 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
18:17:22.0610 4604 adpahci - ok
18:17:22.0657 4604 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
18:17:22.0657 4604 adpu320 - ok
18:17:22.0688 4604 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:17:22.0688 4604 AeLookupSvc - ok
18:17:22.0782 4604 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:17:22.0813 4604 AFD - ok
18:17:22.0875 4604 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:17:22.0906 4604 agp440 - ok
18:17:22.0953 4604 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:17:22.0984 4604 ALG - ok
18:17:23.0016 4604 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:17:23.0016 4604 aliide - ok
18:17:23.0047 4604 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:17:23.0078 4604 amdide - ok
18:17:23.0125 4604 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
18:17:23.0125 4604 AmdK8 - ok
18:17:23.0125 4604 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
18:17:23.0156 4604 AmdPPM - ok
18:17:23.0187 4604 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:17:23.0187 4604 amdsata - ok
18:17:23.0296 4604 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
18:17:23.0312 4604 amdsbs - ok
18:17:23.0343 4604 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:17:23.0343 4604 amdxata - ok
18:17:23.0390 4604 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:17:23.0390 4604 AppID - ok
18:17:23.0437 4604 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:17:23.0468 4604 AppIDSvc - ok
18:17:23.0499 4604 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:17:23.0515 4604 Appinfo - ok
18:17:23.0593 4604 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
18:17:23.0593 4604 arc - ok
18:17:23.0640 4604 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
18:17:23.0640 4604 arcsas - ok
18:17:23.0811 4604 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:17:23.0889 4604 aspnet_state - ok
18:17:23.0936 4604 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:17:23.0952 4604 AsyncMac - ok
18:17:24.0014 4604 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:17:24.0030 4604 atapi - ok
18:17:24.0092 4604 AthBTPort (cbe61b4494165f458bd87e37181ee934) C:\Windows\system32\DRIVERS\btath_flt.sys
18:17:24.0092 4604 AthBTPort - ok
18:17:24.0186 4604 AtherosSvc (21753130331188c4b474e1d3b396e629) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
18:17:24.0201 4604 AtherosSvc - ok
18:17:24.0622 4604 athr (de9fb3dade8fd39ae2c587df22d36b8e) C:\Windows\system32\DRIVERS\athrx.sys
18:17:24.0716 4604 athr - ok
18:17:24.0856 4604 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:17:24.0872 4604 AudioEndpointBuilder - ok
18:17:24.0888 4604 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:17:24.0888 4604 AudioSrv - ok
18:17:24.0919 4604 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:17:24.0919 4604 AxInstSV - ok
18:17:24.0997 4604 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
18:17:25.0028 4604 b06bdrv - ok
18:17:25.0090 4604 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:17:25.0106 4604 b57nd60a - ok
18:17:25.0184 4604 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:17:25.0215 4604 BDESVC - ok
18:17:25.0246 4604 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:17:25.0278 4604 Beep - ok
18:17:25.0387 4604 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:17:25.0402 4604 BFE - ok
18:17:25.0652 4604 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120413.001\BHDrvx64.sys
18:17:25.0668 4604 BHDrvx64 - ok
18:17:25.0902 4604 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:17:25.0917 4604 BITS - ok
18:17:26.0011 4604 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
18:17:26.0026 4604 blbdrive - ok
18:17:26.0104 4604 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:17:26.0120 4604 bowser - ok
18:17:26.0167 4604 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
18:17:26.0198 4604 BrFiltLo - ok
18:17:26.0198 4604 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
18:17:26.0198 4604 BrFiltUp - ok
18:17:26.0292 4604 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:17:26.0292 4604 Browser - ok
18:17:26.0323 4604 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:17:26.0370 4604 Brserid - ok
18:17:26.0385 4604 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:17:26.0494 4604 BrSerWdm - ok
18:17:26.0510 4604 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:17:26.0510 4604 BrUsbMdm - ok
18:17:26.0541 4604 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:17:26.0541 4604 BrUsbSer - ok
18:17:26.0635 4604 BTATH_A2DP (fe70889a85c57a9268101b2db0474509) C:\Windows\system32\drivers\btath_a2dp.sys
18:17:26.0650 4604 BTATH_A2DP - ok
18:17:26.0728 4604 BTATH_BUS (a83a91d07d1fe6bbe7a9db46ca00434b) C:\Windows\system32\DRIVERS\btath_bus.sys
18:17:26.0760 4604 BTATH_BUS - ok
18:17:26.0869 4604 BTATH_HCRP (c864ff85ee16d61c2bdd5ef76824625f) C:\Windows\system32\DRIVERS\btath_hcrp.sys
18:17:26.0916 4604 BTATH_HCRP - ok
18:17:26.0947 4604 BTATH_LWFLT (0dea505efb5d771826d177ef8b8a208f) C:\Windows\system32\DRIVERS\btath_lwflt.sys
18:17:26.0978 4604 BTATH_LWFLT - ok
18:17:27.0025 4604 BTATH_RCP (724c8088c96efe7a3e63fec21d4681c0) C:\Windows\system32\DRIVERS\btath_rcp.sys
18:17:27.0040 4604 BTATH_RCP - ok
18:17:27.0103 4604 BtFilter (aa0f5afcf077c5246589b32eceeae566) C:\Windows\system32\DRIVERS\btfilter.sys
18:17:27.0118 4604 BtFilter - ok
18:17:27.0165 4604 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
18:17:27.0196 4604 BthEnum - ok
18:17:27.0274 4604 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
18:17:27.0274 4604 BTHMODEM - ok
18:17:27.0352 4604 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
18:17:27.0352 4604 BthPan - ok
18:17:27.0446 4604 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys
18:17:27.0493 4604 BTHPORT - ok
18:17:27.0602 4604 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:17:27.0602 4604 bthserv - ok
18:17:27.0649 4604 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys
18:17:27.0649 4604 BTHUSB - ok
18:17:27.0727 4604 ccSet_NIS (9a2a298479be9354fed42c9a40a9c214) C:\Windows\system32\drivers\NISx64\1300000.080\ccSetx64.sys
18:17:27.0789 4604 ccSet_NIS - ok
18:17:27.0836 4604 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:17:27.0836 4604 cdfs - ok
18:17:27.0945 4604 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:17:28.0054 4604 cdrom - ok
18:17:28.0148 4604 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:17:28.0195 4604 CertPropSvc - ok
18:17:28.0257 4604 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
18:17:28.0257 4604 circlass - ok
18:17:28.0398 4604 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:17:28.0413 4604 CLFS - ok
18:17:28.0522 4604 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:17:28.0522 4604 clr_optimization_v2.0.50727_32 - ok
18:17:28.0600 4604 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:17:28.0632 4604 clr_optimization_v2.0.50727_64 - ok
18:17:28.0803 4604 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:17:28.0944 4604 clr_optimization_v4.0.30319_32 - ok
18:17:29.0115 4604 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:17:29.0240 4604 clr_optimization_v4.0.30319_64 - ok
18:17:29.0287 4604 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:17:29.0334 4604 CmBatt - ok
18:17:29.0365 4604 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:17:29.0365 4604 cmdide - ok
18:17:29.0427 4604 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:17:29.0458 4604 CNG - ok
18:17:29.0521 4604 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
18:17:29.0552 4604 Compbatt - ok
18:17:29.0646 4604 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:17:29.0646 4604 CompositeBus - ok
18:17:29.0677 4604 COMSysApp - ok
18:17:29.0755 4604 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
18:17:29.0817 4604 crcdisk - ok
18:17:29.0895 4604 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
18:17:29.0911 4604 CryptSvc - ok
18:17:30.0067 4604 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:17:30.0082 4604 DcomLaunch - ok
18:17:30.0192 4604 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:17:30.0270 4604 defragsvc - ok
18:17:30.0348 4604 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:17:30.0379 4604 DfsC - ok
18:17:30.0488 4604 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:17:30.0488 4604 Dhcp - ok
18:17:30.0535 4604 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:17:30.0550 4604 discache - ok
18:17:30.0613 4604 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
18:17:30.0644 4604 Disk - ok
18:17:30.0722 4604 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:17:30.0722 4604 Dnscache - ok
18:17:30.0784 4604 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:17:30.0862 4604 dot3svc - ok
18:17:30.0909 4604 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:17:30.0925 4604 DPS - ok
18:17:30.0987 4604 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:17:31.0003 4604 drmkaud - ok
18:17:31.0112 4604 DsiWMIService (9cf46fdf163e06b83d03ff929ef2296c) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
18:17:31.0112 4604 DsiWMIService - ok
18:17:31.0159 4604 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:17:31.0252 4604 dtsoftbus01 - ok
18:17:31.0393 4604 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:17:31.0408 4604 DXGKrnl - ok
18:17:31.0642 4604 E1G60 (edc6e9c057c9d7f83eea22b4cef5dcad) C:\Windows\system32\DRIVERS\E1G6032E.sys
18:17:31.0674 4604 E1G60 - ok
18:17:31.0736 4604 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:17:31.0752 4604 EapHost - ok
18:17:32.0142 4604 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
18:17:32.0266 4604 ebdrv - ok
18:17:32.0469 4604 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:17:32.0485 4604 eeCtrl - ok
18:17:32.0688 4604 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:17:32.0688 4604 EFS - ok
18:17:32.0844 4604 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:17:32.0906 4604 ehRecvr - ok
18:17:32.0984 4604 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:17:33.0015 4604 ehSched - ok
18:17:33.0202 4604 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
18:17:33.0218 4604 elxstor - ok
18:17:33.0405 4604 ePowerSvc (2aee0416c54a1a86d035366de192b2f0) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
18:17:33.0436 4604 ePowerSvc - ok
18:17:33.0608 4604 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:17:33.0608 4604 EraserUtilRebootDrv - ok
18:17:33.0780 4604 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:17:33.0780 4604 ErrDev - ok
18:17:33.0826 4604 ETD (0975bf32399a24117e317b5bf1d5d0aa) C:\Windows\system32\DRIVERS\ETD.sys
18:17:33.0858 4604 ETD - ok
18:17:33.0920 4604 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:17:33.0936 4604 EventSystem - ok
18:17:33.0982 4604 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:17:33.0998 4604 exfat - ok
18:17:34.0045 4604 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:17:34.0076 4604 fastfat - ok
18:17:34.0170 4604 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:17:34.0216 4604 Fax - ok
18:17:34.0263 4604 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
18:17:34.0263 4604 fdc - ok
18:17:34.0326 4604 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:17:34.0326 4604 fdPHost - ok
18:17:34.0341 4604 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:17:34.0341 4604 FDResPub - ok
18:17:34.0404 4604 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:17:34.0435 4604 FileInfo - ok
18:17:34.0482 4604 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:17:34.0482 4604 Filetrace - ok
18:17:34.0513 4604 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
18:17:34.0544 4604 flpydisk - ok
18:17:34.0606 4604 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:17:34.0622 4604 FltMgr - ok
18:17:34.0700 4604 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:17:34.0716 4604 FontCache - ok
18:17:34.0903 4604 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:17:34.0934 4604 FontCache3.0.0.0 - ok
18:17:34.0996 4604 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:17:34.0996 4604 FsDepends - ok
18:17:35.0059 4604 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:17:35.0074 4604 Fs_Rec - ok
18:17:35.0137 4604 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:17:35.0137 4604 fvevol - ok
18:17:35.0184 4604 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
18:17:35.0215 4604 gagp30kx - ok
18:17:35.0433 4604 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
18:17:35.0464 4604 GamesAppService - ok
18:17:35.0636 4604 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:17:35.0636 4604 gpsvc - ok
18:17:35.0792 4604 GREGService (c9b2d1d3f86fd3673ef847def73b6f9e) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
18:17:35.0792 4604 GREGService - ok
18:17:35.0995 4604 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:17:35.0995 4604 gupdate - ok
18:17:36.0057 4604 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:17:36.0057 4604 gupdatem - ok
18:17:36.0135 4604 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:17:36.0166 4604 hcw85cir - ok
18:17:36.0322 4604 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:17:36.0432 4604 HdAudAddService - ok
18:17:36.0541 4604 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:17:36.0556 4604 HDAudBus - ok
18:17:36.0572 4604 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
18:17:36.0588 4604 HECIx64 - ok
18:17:36.0619 4604 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
18:17:36.0650 4604 HidBatt - ok
18:17:36.0666 4604 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
18:17:36.0666 4604 HidBth - ok
18:17:36.0712 4604 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
18:17:36.0712 4604 HidIr - ok
18:17:36.0775 4604 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:17:36.0775 4604 hidserv - ok
18:17:36.0853 4604 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:17:36.0900 4604 HidUsb - ok
18:17:36.0978 4604 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:17:36.0993 4604 hkmsvc - ok
18:17:37.0071 4604 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:17:37.0087 4604 HomeGroupListener - ok
18:17:37.0118 4604 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:17:37.0134 4604 HomeGroupProvider - ok
18:17:37.0196 4604 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:17:37.0227 4604 HpSAMD - ok
18:17:37.0352 4604 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:17:37.0368 4604 HTTP - ok
18:17:37.0399 4604 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:17:37.0414 4604 hwpolicy - ok
18:17:37.0492 4604 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
18:17:37.0524 4604 i8042prt - ok
18:17:37.0648 4604 iaStor (1384872112e8e7fd5786eceb8bddf4c9) C:\Windows\system32\DRIVERS\iaStor.sys
18:17:37.0664 4604 iaStor - ok
18:17:37.0914 4604 IAStorDataMgrSvc (6b24d1c3096de796d15571079ea5e98c) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:17:37.0914 4604 IAStorDataMgrSvc - ok
18:17:37.0960 4604 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:17:37.0960 4604 iaStorV - ok
18:17:38.0132 4604 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:17:38.0194 4604 idsvc - ok
18:17:38.0366 4604 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120502.001\IDSvia64.sys
18:17:38.0382 4604 IDSVia64 - ok
18:17:39.0645 4604 igfx (f4f91789c7c7a159ce8215c1f69f2a85) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:17:39.0942 4604 igfx - ok
18:17:40.0160 4604 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
18:17:40.0160 4604 iirsp - ok
18:17:40.0316 4604 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:17:40.0347 4604 IKEEXT - ok
18:17:40.0456 4604 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
18:17:40.0472 4604 Impcd - ok
18:17:40.0690 4604 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
18:17:40.0722 4604 IntcAzAudAddService - ok
18:17:40.0893 4604 IntcDAud (ae594cc17c33ac146739494615e14851) C:\Windows\system32\DRIVERS\IntcDAud.sys
18:17:40.0940 4604 IntcDAud - ok
18:17:40.0956 4604 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:17:40.0956 4604 intelide - ok
18:17:41.0002 4604 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:17:41.0018 4604 intelppm - ok
18:17:41.0080 4604 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:17:41.0096 4604 IPBusEnum - ok
18:17:41.0143 4604 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:17:41.0205 4604 IpFilterDriver - ok
18:17:41.0314 4604 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:17:41.0330 4604 iphlpsvc - ok
18:17:41.0377 4604 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:17:41.0408 4604 IPMIDRV - ok
18:17:41.0424 4604 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:17:41.0424 4604 IPNAT - ok
18:17:41.0470 4604 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:17:41.0470 4604 IRENUM - ok
18:17:41.0486 4604 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:17:41.0502 4604 isapnp - ok
18:17:41.0564 4604 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:17:41.0611 4604 iScsiPrt - ok
18:17:41.0673 4604 k57nd60a (37e053a2cf8f0082b689ed74106e0cec) C:\Windows\system32\DRIVERS\k57nd60a.sys
18:17:41.0673 4604 k57nd60a - ok
18:17:41.0751 4604 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:17:41.0751 4604 kbdclass - ok
18:17:41.0782 4604 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
18:17:41.0782 4604 kbdhid - ok
18:17:41.0845 4604 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:41.0845 4604 KeyIso - ok
18:17:41.0876 4604 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:17:41.0876 4604 KSecDD - ok
18:17:41.0907 4604 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:17:41.0923 4604 KSecPkg - ok
18:17:42.0016 4604 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:17:42.0016 4604 ksthunk - ok
18:17:42.0079 4604 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:17:42.0141 4604 KtmRm - ok
18:17:42.0235 4604 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:17:42.0250 4604 LanmanServer - ok
18:17:42.0297 4604 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:17:42.0297 4604 LanmanWorkstation - ok
18:17:42.0391 4604 Live Updater Service (b705c7097f9a0ec941d02dce7c7d426c) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
18:17:42.0391 4604 Live Updater Service - ok
18:17:42.0422 4604 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:17:42.0453 4604 lltdio - ok
18:17:42.0500 4604 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:17:42.0516 4604 lltdsvc - ok
18:17:42.0562 4604 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:17:42.0562 4604 lmhosts - ok
18:17:42.0734 4604 LMS (dbc1136a62bd4decc3632df650284c2e) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:17:42.0734 4604 LMS - ok
18:17:42.0796 4604 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
18:17:42.0812 4604 LSI_FC - ok
18:17:42.0828 4604 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
18:17:42.0843 4604 LSI_SAS - ok
18:17:42.0859 4604 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
18:17:42.0859 4604 LSI_SAS2 - ok
18:17:42.0890 4604 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
18:17:42.0906 4604 LSI_SCSI - ok
18:17:42.0937 4604 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:17:42.0937 4604 luafv - ok
18:17:43.0030 4604 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
18:17:43.0030 4604 MBAMProtector - ok
18:17:43.0108 4604 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:17:43.0124 4604 MBAMService - ok
18:17:43.0155 4604 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:17:43.0171 4604 Mcx2Svc - ok
18:17:43.0202 4604 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
18:17:43.0218 4604 megasas - ok
18:17:43.0264 4604 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
18:17:43.0264 4604 MegaSR - ok
18:17:43.0280 4604 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:17:43.0296 4604 MMCSS - ok
18:17:43.0311 4604 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:17:43.0311 4604 Modem - ok
18:17:43.0342 4604 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:17:43.0342 4604 monitor - ok
18:17:43.0374 4604 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:17:43.0405 4604 mouclass - ok
18:17:43.0436 4604 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:17:43.0452 4604 mouhid - ok
18:17:43.0467 4604 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:17:43.0483 4604 mountmgr - ok
18:17:43.0498 4604 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:17:43.0498 4604 mpio - ok
18:17:43.0530 4604 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:17:43.0530 4604 mpsdrv - ok
18:17:43.0686 4604 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:17:43.0717 4604 MpsSvc - ok
18:17:43.0764 4604 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:17:43.0810 4604 MRxDAV - ok
18:17:43.0842 4604 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:17:43.0857 4604 mrxsmb - ok
18:17:43.0888 4604 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:17:43.0888 4604 mrxsmb10 - ok
18:17:43.0904 4604 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:17:43.0920 4604 mrxsmb20 - ok
18:17:43.0935 4604 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:17:43.0935 4604 msahci - ok
18:17:43.0966 4604 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:17:43.0982 4604 msdsm - ok
18:17:44.0013 4604 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:17:44.0013 4604 MSDTC - ok
18:17:44.0076 4604 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:17:44.0076 4604 Msfs - ok
18:17:44.0107 4604 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:17:44.0138 4604 mshidkmdf - ok
18:17:44.0154 4604 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:17:44.0154 4604 msisadrv - ok
18:17:44.0200 4604 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:17:44.0216 4604 MSiSCSI - ok
18:17:44.0232 4604 msiserver - ok
18:17:44.0278 4604 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:17:44.0278 4604 MSKSSRV - ok
18:17:44.0310 4604 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:17:44.0310 4604 MSPCLOCK - ok
18:17:44.0341 4604 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:17:44.0341 4604 MSPQM - ok
18:17:44.0388 4604 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:17:44.0403 4604 MsRPC - ok
18:17:44.0450 4604 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:17:44.0450 4604 mssmbios - ok
18:17:44.0481 4604 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:17:44.0481 4604 MSTEE - ok
18:17:44.0481 4604 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
18:17:44.0481 4604 MTConfig - ok
18:17:44.0512 4604 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:17:44.0512 4604 Mup - ok
18:17:44.0559 4604 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:17:44.0575 4604 napagent - ok
18:17:44.0653 4604 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:17:44.0653 4604 NativeWifiP - ok
18:17:44.0809 4604 NAUpdate (9d1cce440552500ded3a62f9d779cdb4) C:\Program Files (x86)\Nero\Update\NASvc.exe
18:17:44.0824 4604 NAUpdate - ok
18:17:44.0934 4604 NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120502.034\ENG64.SYS
18:17:44.0934 4604 NAVENG - ok
18:17:45.0152 4604 NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120502.034\EX64.SYS
18:17:45.0183 4604 NAVEX15 - ok
18:17:45.0370 4604 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:17:45.0386 4604 NDIS - ok
18:17:45.0417 4604 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:17:45.0417 4604 NdisCap - ok
18:17:45.0448 4604 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:17:45.0480 4604 NdisTapi - ok
18:17:45.0526 4604 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:17:45.0526 4604 Ndisuio - ok
18:17:45.0558 4604 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:17:45.0558 4604 NdisWan - ok
18:17:45.0573 4604 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:17:45.0573 4604 NDProxy - ok
18:17:45.0620 4604 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:17:45.0636 4604 NetBIOS - ok
18:17:45.0682 4604 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:17:45.0682 4604 NetBT - ok
18:17:45.0729 4604 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:45.0729 4604 Netlogon - ok
18:17:45.0792 4604 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:17:45.0792 4604 Netman - ok
18:17:45.0963 4604 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:45.0994 4604 NetMsmqActivator - ok
18:17:46.0010 4604 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:46.0010 4604 NetPipeActivator - ok
18:17:46.0072 4604 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:17:46.0088 4604 netprofm - ok
18:17:46.0088 4604 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:46.0088 4604 NetTcpActivator - ok
18:17:46.0104 4604 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:46.0104 4604 NetTcpPortSharing - ok
18:17:46.0166 4604 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
18:17:46.0166 4604 nfrd960 - ok
18:17:46.0260 4604 NIS (efbfe525e03c7444187262c85d776532) C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
18:17:46.0260 4604 NIS - ok
18:17:46.0322 4604 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:17:46.0322 4604 NlaSvc - ok
18:17:46.0525 4604 NOBU (5839a8027d6d324a7cd494051a96628c) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
18:17:46.0572 4604 NOBU - ok
18:17:46.0728 4604 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:17:46.0728 4604 Npfs - ok
18:17:46.0774 4604 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:17:46.0774 4604 nsi - ok
18:17:46.0837 4604 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:17:46.0837 4604 nsiproxy - ok
18:17:46.0962 4604 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:17:46.0993 4604 Ntfs - ok
18:17:47.0086 4604 NTI IScheduleSvc (9a308fcdcca98a15b6f62d36a272160e) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
18:17:47.0086 4604 NTI IScheduleSvc - ok
18:17:47.0211 4604 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
18:17:47.0211 4604 NTIDrvr - ok
18:17:47.0227 4604 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:17:47.0258 4604 Null - ok
18:17:48.0241 4604 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:17:48.0412 4604 nvlddmkm - ok
18:17:48.0553 4604 nvpciflt (3629b8c7257c6231a3cfb44359c68b1d) C:\Windows\system32\DRIVERS\nvpciflt.sys
18:17:48.0568 4604 nvpciflt - ok
18:17:48.0600 4604 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:17:48.0600 4604 nvraid - ok
18:17:48.0631 4604 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:17:48.0631 4604 nvstor - ok
18:17:48.0724 4604 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe
18:17:48.0740 4604 nvsvc - ok
18:17:49.0005 4604 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:17:49.0052 4604 nvUpdatusService - ok
18:17:49.0177 4604 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:17:49.0177 4604 nv_agp - ok
18:17:49.0177 4604 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:17:49.0208 4604 ohci1394 - ok
18:17:49.0255 4604 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:17:49.0270 4604 p2pimsvc - ok
18:17:49.0302 4604 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:17:49.0317 4604 p2psvc - ok
18:17:49.0364 4604 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
18:17:49.0364 4604 Parport - ok
18:17:49.0380 4604 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
18:17:49.0395 4604 partmgr - ok
18:17:49.0426 4604 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:17:49.0426 4604 PcaSvc - ok
18:17:49.0442 4604 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:17:49.0458 4604 pci - ok
18:17:49.0473 4604 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:17:49.0473 4604 pciide - ok
18:17:49.0520 4604 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
18:17:49.0520 4604 pcmcia - ok
18:17:49.0551 4604 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:17:49.0567 4604 pcw - ok
18:17:49.0629 4604 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:17:49.0645 4604 PEAUTH - ok
18:17:49.0723 4604 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:17:49.0723 4604 PerfHost - ok
18:17:50.0004 4604 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:17:50.0066 4604 pla - ok
18:17:50.0128 4604 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:17:50.0144 4604 PlugPlay - ok
18:17:50.0191 4604 PnkBstrA - ok
18:17:50.0206 4604 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:17:50.0206 4604 PNRPAutoReg - ok
18:17:50.0253 4604 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:17:50.0253 4604 PNRPsvc - ok
18:17:50.0300 4604 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:17:50.0316 4604 PolicyAgent - ok
18:17:50.0347 4604 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:17:50.0362 4604 Power - ok
18:17:50.0425 4604 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:17:50.0440 4604 PptpMiniport - ok
18:17:50.0472 4604 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
18:17:50.0472 4604 Processor - ok
18:17:50.0503 4604 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
18:17:50.0518 4604 ProfSvc - ok
18:17:50.0534 4604 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:50.0550 4604 ProtectedStorage - ok
18:17:50.0581 4604 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:17:50.0581 4604 Psched - ok
18:17:50.0628 4604 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:17:50.0643 4604 PxHlpa64 - ok
18:17:50.0752 4604 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
18:17:50.0784 4604 ql2300 - ok
18:17:50.0955 4604 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
18:17:50.0955 4604 ql40xx - ok
18:17:51.0018 4604 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:17:51.0064 4604 QWAVE - ok
18:17:51.0096 4604 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:17:51.0111 4604 QWAVEdrv - ok
18:17:51.0142 4604 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:17:51.0142 4604 RasAcd - ok
18:17:51.0174 4604 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:17:51.0174 4604 RasAgileVpn - ok
18:17:51.0220 4604 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:17:51.0236 4604 RasAuto - ok
18:17:51.0314 4604 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:17:51.0330 4604 Rasl2tp - ok
18:17:51.0376 4604 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:17:51.0376 4604 RasMan - ok
18:17:51.0408 4604 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:17:51.0408 4604 RasPppoe - ok
18:17:51.0439 4604 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:17:51.0439 4604 RasSstp - ok
18:17:51.0470 4604 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:17:51.0486 4604 rdbss - ok
18:17:51.0501 4604 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
18:17:51.0501 4604 rdpbus - ok
18:17:51.0532 4604 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:17:51.0548 4604 RDPCDD - ok
18:17:51.0595 4604 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:17:51.0595 4604 RDPENCDD - ok
18:17:51.0610 4604 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:17:51.0610 4604 RDPREFMP - ok
18:17:51.0657 4604 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
18:17:51.0704 4604 RDPWD - ok
18:17:51.0751 4604 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:17:51.0751 4604 rdyboost - ok
18:17:51.0798 4604 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:17:51.0798 4604 RemoteAccess - ok
18:17:51.0829 4604 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:17:51.0860 4604 RemoteRegistry - ok
18:17:51.0907 4604 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
18:17:51.0907 4604 RFCOMM - ok
18:17:52.0000 4604 RimUsb (ad42432d22940b4215177be113e4919c) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
18:17:52.0016 4604 RimUsb - ok
18:17:52.0032 4604 RimVSerPort (4aafffa67ac4dfa3d9985d78573887e2) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
18:17:52.0063 4604 RimVSerPort - ok
18:17:52.0110 4604 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
18:17:52.0110 4604 ROOTMODEM - ok
18:17:52.0141 4604 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:17:52.0141 4604 RpcEptMapper - ok
18:17:52.0172 4604 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:17:52.0203 4604 RpcLocator - ok
18:17:52.0250 4604 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:17:52.0266 4604 RpcSs - ok
18:17:52.0312 4604 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:17:52.0312 4604 rspndr - ok
18:17:52.0359 4604 RSUSBSTOR (0e3dcf76f11dc431b088a2dfd7265cda) C:\Windows\system32\Drivers\RtsUStor.sys
18:17:52.0390 4604 RSUSBSTOR - ok
18:17:52.0437 4604 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:52.0437 4604 SamSs - ok
18:17:52.0453 4604 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:17:52.0468 4604 sbp2port - ok
18:17:52.0500 4604 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:17:52.0500 4604 SCardSvr - ok
18:17:52.0531 4604 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:17:52.0531 4604 scfilter - ok
18:17:52.0593 4604 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:17:52.0624 4604 Schedule - ok
18:17:52.0656 4604 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:17:52.0656 4604 SCPolicySvc - ok
18:17:52.0687 4604 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:17:52.0718 4604 SDRSVC - ok
18:17:52.0780 4604 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:17:52.0796 4604 secdrv - ok
18:17:52.0843 4604 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:17:52.0858 4604 seclogon - ok
18:17:52.0905 4604 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:17:52.0905 4604 SENS - ok
18:17:52.0936 4604 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:17:52.0936 4604 SensrSvc - ok
18:17:52.0968 4604 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
18:17:52.0999 4604 Serenum - ok
18:17:53.0046 4604 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
18:17:53.0046 4604 Serial - ok
18:17:53.0061 4604 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
18:17:53.0092 4604 sermouse - ok

18:17:53.0155 4604 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:17:53.0170 4604 SessionEnv - ok
18:17:53.0186 4604 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:17:53.0186 4604 sffdisk - ok
18:17:53.0202 4604 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:17:53.0202 4604 sffp_mmc - ok
18:17:53.0217 4604 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:17:53.0233 4604 sffp_sd - ok
18:17:53.0248 4604 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
18:17:53.0248 4604 sfloppy - ok
18:17:53.0295 4604 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:17:53.0295 4604 SharedAccess - ok
18:17:53.0358 4604 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:17:53.0358 4604 ShellHWDetection - ok
18:17:53.0404 4604 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
18:17:53.0404 4604 SiSRaid2 - ok
18:17:53.0420 4604 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
18:17:53.0451 4604 SiSRaid4 - ok
18:17:53.0560 4604 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
18:17:53.0592 4604 SkypeUpdate - ok
18:17:53.0623 4604 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:17:53.0623 4604 Smb - ok
18:17:53.0685 4604 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:17:53.0685 4604 SNMPTRAP - ok
18:17:53.0701 4604 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:17:53.0701 4604 spldr - ok
18:17:53.0748 4604 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:17:53.0748 4604 Spooler - ok
18:17:53.0966 4604 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:17:54.0013 4604 sppsvc - ok
18:17:54.0106 4604 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:17:54.0122 4604 sppuinotify - ok
18:17:54.0216 4604 SRTSP (df26fa7825f9cd39fceb3f2f27e813a7) C:\Windows\system32\drivers\NISx64\1300000.080\SRTSP64.SYS
18:17:54.0231 4604 SRTSP - ok
18:17:54.0247 4604 SRTSPX (a8ade1e0092b8097ddb76c9a6dc5f193) C:\Windows\system32\drivers\NISx64\1300000.080\SRTSPX64.SYS
18:17:54.0247 4604 SRTSPX - ok
18:17:54.0294 4604 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:17:54.0309 4604 srv - ok
18:17:54.0340 4604 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:17:54.0356 4604 srv2 - ok
18:17:54.0387 4604 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:17:54.0387 4604 srvnet - ok
18:17:54.0434 4604 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:17:54.0450 4604 SSDPSRV - ok
18:17:54.0465 4604 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:17:54.0496 4604 SstpSvc - ok
18:17:54.0528 4604 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
18:17:54.0528 4604 stexstor - ok
18:17:54.0590 4604 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:17:54.0621 4604 stisvc - ok
18:17:54.0652 4604 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:17:54.0668 4604 swenum - ok
18:17:54.0715 4604 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:17:54.0730 4604 swprv - ok
18:17:54.0824 4604 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1300000.080\SYMDS64.SYS
18:17:54.0840 4604 SymDS - ok
18:17:54.0918 4604 SymEFA (f016d755aadd6a16555809d4b289497e) C:\Windows\system32\drivers\NISx64\1300000.080\SYMEFA64.SYS
18:17:54.0949 4604 SymEFA - ok
18:17:54.0996 4604 SymEvent (36b77f5c9e21f88a8c8ec67ad5415819) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:17:54.0996 4604 SymEvent - ok
18:17:55.0042 4604 SymIRON (321b635a0c0ff48047d37f6f078c5342) C:\Windows\system32\drivers\NISx64\1300000.080\Ironx64.SYS
18:17:55.0058 4604 SymIRON - ok
18:17:55.0089 4604 SymNetS (5ea027a364116963e37a281b1949ffd5) C:\Windows\system32\drivers\NISx64\1300000.080\SYMNETS.SYS
18:17:55.0089 4604 SymNetS - ok
18:17:55.0230 4604 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:17:55.0245 4604 SysMain - ok
18:17:55.0354 4604 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:17:55.0386 4604 TabletInputService - ok
18:17:55.0417 4604 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:17:55.0432 4604 TapiSrv - ok
18:17:55.0448 4604 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:17:55.0448 4604 TBS - ok
18:17:55.0651 4604 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
18:17:55.0729 4604 Tcpip - ok
18:17:55.0963 4604 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
18:17:55.0994 4604 TCPIP6 - ok
18:17:56.0119 4604 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:17:56.0119 4604 tcpipreg - ok
18:17:56.0150 4604 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:17:56.0150 4604 TDPIPE - ok
18:17:56.0181 4604 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:17:56.0181 4604 TDTCP - ok
18:17:56.0197 4604 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:17:56.0228 4604 tdx - ok
18:17:56.0478 4604 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
18:17:56.0509 4604 TeamViewer7 - ok
18:17:56.0696 4604 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:17:56.0696 4604 TermDD - ok
18:17:56.0836 4604 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:17:56.0852 4604 TermService - ok
18:17:56.0868 4604 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:17:56.0868 4604 Themes - ok
18:17:56.0899 4604 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:17:56.0899 4604 THREADORDER - ok
18:17:56.0914 4604 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:17:56.0930 4604 TrkWks - ok
18:17:56.0977 4604 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:17:56.0992 4604 TrustedInstaller - ok
18:17:57.0024 4604 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:17:57.0024 4604 tssecsrv - ok
18:17:57.0055 4604 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:17:57.0055 4604 TsUsbFlt - ok
18:17:57.0070 4604 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
18:17:57.0070 4604 TsUsbGD - ok
18:17:57.0102 4604 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:17:57.0102 4604 tunnel - ok
18:17:57.0117 4604 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
18:17:57.0117 4604 uagp35 - ok
18:17:57.0133 4604 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
18:17:57.0164 4604 UBHelper - ok
18:17:57.0211 4604 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:17:57.0211 4604 udfs - ok
18:17:57.0258 4604 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:17:57.0258 4604 UI0Detect - ok
18:17:57.0304 4604 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:17:57.0304 4604 uliagpkx - ok
18:17:57.0336 4604 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
18:17:57.0336 4604 umbus - ok
18:17:57.0351 4604 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
18:17:57.0351 4604 UmPass - ok
18:17:57.0554 4604 UNS (7466809e6da561d60c2f1ce8ede3c73f) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
18:17:57.0601 4604 UNS - ok
18:17:57.0788 4604 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:17:57.0788 4604 upnphost - ok
18:17:57.0850 4604 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:17:57.0850 4604 usbccgp - ok
18:17:57.0866 4604 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:17:57.0882 4604 usbcir - ok
18:17:57.0897 4604 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:17:57.0897 4604 usbehci - ok
18:17:57.0944 4604 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:17:57.0960 4604 usbhub - ok
18:17:57.0975 4604 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:17:57.0975 4604 usbohci - ok
18:17:57.0991 4604 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
18:17:58.0038 4604 usbprint - ok
18:17:58.0069 4604 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:17:58.0069 4604 USBSTOR - ok
18:17:58.0069 4604 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:17:58.0100 4604 usbuhci - ok
18:17:58.0162 4604 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
18:17:58.0162 4604 usbvideo - ok
18:17:58.0194 4604 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:17:58.0209 4604 UxSms - ok
18:17:58.0225 4604 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:58.0240 4604 VaultSvc - ok
18:17:58.0287 4604 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:17:58.0287 4604 vdrvroot - ok
18:17:58.0334 4604 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:17:58.0381 4604 vds - ok
18:17:58.0428 4604 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:17:58.0443 4604 vga - ok
18:17:58.0474 4604 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:17:58.0474 4604 VgaSave - ok
18:17:58.0506 4604 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:17:58.0506 4604 vhdmp - ok
18:17:58.0521 4604 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:17:58.0521 4604 viaide - ok
18:17:58.0552 4604 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:17:58.0552 4604 volmgr - ok
18:17:58.0584 4604 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:17:58.0615 4604 volmgrx - ok
18:17:58.0662 4604 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:17:58.0677 4604 volsnap - ok
18:17:58.0724 4604 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
18:17:58.0740 4604 vsmraid - ok
18:17:58.0849 4604 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:17:58.0880 4604 VSS - ok
18:17:58.0989 4604 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:17:58.0989 4604 vwifibus - ok
18:17:59.0020 4604 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:17:59.0052 4604 vwififlt - ok
18:17:59.0083 4604 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:17:59.0083 4604 vwifimp - ok
18:17:59.0130 4604 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:17:59.0145 4604 W32Time - ok
18:17:59.0161 4604 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
18:17:59.0176 4604 WacomPen - ok
18:17:59.0223 4604 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:17:59.0223 4604 WANARP - ok
18:17:59.0223 4604 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:17:59.0239 4604 Wanarpv6 - ok
18:17:59.0364 4604 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:17:59.0395 4604 WatAdminSvc - ok
18:17:59.0488 4604 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:17:59.0520 4604 wbengine - ok
18:17:59.0644 4604 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:17:59.0676 4604 WbioSrvc - ok
18:17:59.0722 4604 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:17:59.0722 4604 wcncsvc - ok
18:17:59.0754 4604 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:17:59.0754 4604 WcsPlugInService - ok
18:17:59.0800 4604 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
18:17:59.0816 4604 Wd - ok
18:17:59.0910 4604 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:17:59.0925 4604 Wdf01000 - ok
18:17:59.0956 4604 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:17:59.0956 4604 WdiServiceHost - ok
18:17:59.0956 4604 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:17:59.0956 4604 WdiSystemHost - ok
18:18:00.0003 4604 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:18:00.0034 4604 WebClient - ok
18:18:00.0066 4604 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:18:00.0097 4604 Wecsvc - ok
18:18:00.0128 4604 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:18:00.0144 4604 wercplsupport - ok
18:18:00.0175 4604 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:18:00.0206 4604 WerSvc - ok
18:18:00.0300 4604 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:18:00.0300 4604 WfpLwf - ok
18:18:00.0315 4604 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:18:00.0315 4604 WIMMount - ok
18:18:00.0378 4604 WinDefend - ok
18:18:00.0393 4604 WinHttpAutoProxySvc - ok
18:18:00.0456 4604 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:18:00.0471 4604 Winmgmt - ok
18:18:00.0612 4604 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:18:00.0658 4604 WinRM - ok
18:18:00.0861 4604 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:18:00.0877 4604 Wlansvc - ok
18:18:00.0955 4604 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:18:00.0986 4604 wlcrasvc - ok
18:18:01.0173 4604 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:18:01.0267 4604 wlidsvc - ok
18:18:01.0360 4604 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:18:01.0360 4604 WmiAcpi - ok
18:18:01.0438 4604 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:18:01.0438 4604 wmiApSrv - ok
18:18:01.0516 4604 WMPNetworkSvc - ok
18:18:01.0750 4604 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:18:01.0782 4604 WPCSvc - ok
18:18:01.0860 4604 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:18:01.0860 4604 WPDBusEnum - ok
18:18:01.0906 4604 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:18:01.0938 4604 ws2ifsl - ok
18:18:01.0984 4604 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:18:01.0984 4604 wscsvc - ok
18:18:02.0000 4604 WSearch - ok
18:18:02.0265 4604 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
18:18:02.0328 4604 wuauserv - ok
18:18:02.0452 4604 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:18:02.0452 4604 WudfPf - ok
18:18:02.0484 4604 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:18:02.0484 4604 WUDFRd - ok
18:18:02.0515 4604 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:18:02.0515 4604 wudfsvc - ok
18:18:02.0546 4604 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:18:02.0562 4604 WwanSvc - ok
18:18:02.0608 4604 xusb21 (2c6bc21b2d5b58d8b1d638c1704cb494) C:\Windows\system32\DRIVERS\xusb21.sys
18:18:02.0640 4604 xusb21 - ok
18:18:02.0686 4604 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:18:02.0749 4604 \Device\Harddisk0\DR0 - ok
18:18:02.0749 4604 Boot (0x1200) (a32a700cfe74e7147741cf330713c84d) \Device\Harddisk0\DR0\Partition0
18:18:02.0858 4604 \Device\Harddisk0\DR0\Partition0 - ok
18:18:02.0983 4604 Boot (0x1200) (f8d70cff2d655492abf09276a7484605) \Device\Harddisk0\DR0\Partition1
18:18:02.0998 4604 \Device\Harddisk0\DR0\Partition1 - ok
18:18:02.0998 4604 ============================================================
18:18:02.0998 4604 Scan finished
18:18:02.0998 4604 ============================================================
18:18:03.0014 4612 Detected object count: 0
18:18:03.0014 4612 Actual detected object count: 0
18:18:14.0418 4920 Deinitialize success

Aviru..

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Jasný CF zmáknu večír jestli newa, jinak ta Avira mě docela překvapila ale nemůžu přijít na to jak dát na soubor ochranu aby avira furt nehlásil že je to vir a mazal to :) A to vir např není je to program který si v c++ sám udělám

To asi budeš mít těch souborů hodně...

Hlavní okno Aviry:
System Scanner , vpravo nahoře Configuration

Real Time Protection---Exceptions.

Hele jary tak sem CF nechal od 23:00 do 08:00 abylo to na 6 fázi :) Nechci vidět kdy bych se dočkal 32 Tkže sem stornul, co teď ?

Zkus ho spustit v nouzovém režimu.

Díky za radu

Taky jsem přišel proč se to seklo na 6 fázi páč sem zavřel víko ntb

ComboFix 12-05-03.02 - Woytman 04.05.2012 23:53:37.2.4 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3767.2484 [GMT 2:00]
Spuštěný z: c:\users\Woytman\Desktop\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-04-04 do 2012-05-04 )))))))))))))))))))))))))))))))
.
.
2012-05-04 22:00 . 2012-05-04 22:00 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-04 20:24 . 2012-05-04 20:24 -------- d-----w- c:\program files (x86)\MegaDev
2012-05-04 17:45 . 2012-05-04 17:45 -------- d-----w- c:\program files (x86)\Rebellion
2012-05-03 21:02 . 2012-05-03 21:02 -------- d-----w- c:\program files (x86)\City Interactive
2012-05-02 20:13 . 2012-05-02 20:13 -------- d-----w- c:\program files (x86)\Milestone
2012-05-02 19:54 . 2012-05-02 19:55 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2012-05-02 19:03 . 2012-05-02 19:03 -------- d-----w- c:\programdata\Malwarebytes
2012-05-02 19:03 . 2012-05-02 19:10 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-05-02 19:03 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-04-29 13:38 . 2012-04-29 13:38 -------- d-----w- c:\program files (x86)\NFSNation
2012-04-28 22:09 . 2012-04-28 22:09 -------- d-sh--w- c:\programdata\DSS
2012-04-28 22:09 . 2012-04-28 22:09 -------- d-----w- c:\programdata\Codemasters
2012-04-28 21:53 . 2012-04-28 21:53 -------- d-----w- c:\programdata\Ubisoft
2012-04-28 16:21 . 2010-09-22 11:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2012-04-28 16:21 . 2012-04-28 16:21 -------- d-----w- c:\program files (x86)\BRS
2012-04-28 16:21 . 2011-03-19 13:16 1417216 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2012-04-28 16:07 . 2012-04-28 16:07 -------- d-----w- c:\program files (x86)\Codemasters
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\windows\SysWow64\QuickTime
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\program files (x86)\QuickTime
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\program files (x86)\Common Files\TechSmith Shared
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\programdata\TechSmith
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\program files (x86)\TechSmith
2012-04-28 10:53 . 2012-05-03 19:50 -------- d-----w- c:\program files (x86)\SoundSpectrum
2012-04-28 09:33 . 2012-04-28 09:33 -------- d-----w- c:\program files (x86)\Bethesda Softworks
2012-04-28 08:36 . 2012-04-28 08:36 -------- d-----w- c:\programdata\Research In Motion
2012-04-28 08:33 . 2011-07-20 12:58 44032 ----a-w- c:\windows\system32\drivers\RimSerial_AMD64.sys
2012-04-28 08:33 . 2012-04-28 08:35 -------- d-----w- c:\program files (x86)\Research In Motion
2012-04-28 07:59 . 2012-04-28 07:59 -------- d-----w- C:\TopCD
2012-04-28 07:50 . 2012-05-02 18:53 -------- d-----w- c:\program files\Emergency 4
2012-04-28 07:43 . 2012-04-28 07:43 -------- d-----w- c:\program files (x86)\Electronic Arts
2012-04-28 07:38 . 2012-04-28 07:38 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2012-04-28 07:38 . 2012-04-28 16:21 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2012-04-28 07:38 . 2012-04-28 16:21 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2012-04-28 07:38 . 2012-04-28 16:21 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2012-04-28 07:38 . 2012-04-28 16:21 -------- d-----w- c:\program files (x86)\OpenAL
2012-04-28 07:38 . 2012-04-28 16:21 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2012-04-28 07:37 . 2012-04-28 07:37 -------- d-----w- c:\program files (x86)\NeutronGames
2012-04-28 07:19 . 2012-04-28 07:19 -------- d-----w- c:\program files (x86)\EA Games
2012-04-28 07:16 . 2012-05-03 17:41 183112 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-04-28 07:16 . 2012-04-28 23:14 66872 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-04-26 21:44 . 2012-05-02 18:57 -------- d-----w- c:\program files (x86)\Yontoo
2012-04-26 21:44 . 2012-04-26 21:44 -------- d-----w- c:\programdata\Tarma Installer
2012-04-25 09:10 . 2012-04-25 09:10 -------- d-----w- c:\program files (x86)\Sidhe
2012-04-24 20:58 . 2012-04-28 08:35 -------- d-----w- c:\program files (x86)\Common Files\Research In Motion
2012-04-24 20:31 . 2012-05-03 19:54 -------- d-----w- c:\program files (x86)\1ClickDownload
2012-04-23 23:56 . 2012-04-23 23:56 -------- d-----w- C:\01ff393ab0a90b3deb98
2012-04-23 15:28 . 2012-04-28 06:52 -------- d-----w- c:\program files\Deep Silver
2012-04-23 13:25 . 2009-10-24 19:15 1332224 ----a-w- c:\windows\SysWow64\SYNSOEMU.DLL
2012-04-23 12:40 . 2012-04-23 12:40 -------- d-----w- c:\program files\CCleaner
2012-04-22 20:15 . 1999-12-17 08:13 86016 ----a-w- c:\windows\unvise32.exe
2012-04-22 19:58 . 2012-04-22 19:58 -------- dc-h--w- c:\programdata\{13A9B825-42CB-4973-913D-2194B5A4CF94}
2012-04-22 19:55 . 2012-04-22 19:55 -------- d-----w- c:\program files\Common Files\Digidesign
2012-04-22 19:53 . 2012-04-22 19:55 -------- d-----w- c:\program files (x86)\Native Instruments
2012-04-21 17:09 . 2012-04-21 17:09 -------- d-----w- C:\asdasf
2012-04-21 15:27 . 2012-04-21 15:27 -------- d-----w- c:\windows\SysWow64\Wat
2012-04-21 15:27 . 2012-04-21 15:27 -------- d-----w- c:\windows\system32\Wat
2012-04-20 22:29 . 2012-04-20 22:29 -------- d-----w- c:\program files (x86)\MSXML 4.0
2012-04-20 22:24 . 2012-03-06 06:53 5559152 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-04-20 22:24 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-04-20 22:24 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-04-20 22:14 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-20 22:14 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-04-20 22:14 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-20 22:14 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-20 22:14 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-04-20 22:14 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-04-20 22:14 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-04-20 21:34 . 2012-04-21 21:25 -------- d-----w- C:\sss
2012-04-20 21:22 . 2012-04-23 15:41 -------- d-----w- C:\compilador v2
2012-04-20 12:29 . 2012-04-20 12:29 -------- d-----w- c:\program files (x86)\Square Enix
2012-04-20 12:06 . 2012-04-24 14:20 -------- d-----w- c:\program files (x86)\Battlefield 3
2012-04-20 11:58 . 2012-04-20 11:58 -------- d-----w- c:\program files (x86)\Sega
2012-04-20 11:49 . 2012-04-28 07:02 -------- d-----w- c:\program files (x86)\Ubisoft
2012-04-19 18:57 . 2012-04-19 18:57 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2012-04-19 18:40 . 2012-04-20 12:02 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2012-04-19 18:40 . 2012-04-19 18:40 -------- d-----w- c:\windows\SysWow64\xlive
2012-04-19 17:59 . 2012-04-19 20:56 -------- d-----w- c:\program files (x86)\Rockstar Games
2012-04-19 16:45 . 2012-04-19 16:46 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories
2012-04-19 16:41 . 2007-01-24 13:27 393576 ----a-w- c:\windows\system32\xactengine2_6.dll
2012-04-19 16:41 . 2007-01-24 13:27 255848 ----a-w- c:\windows\SysWow64\xactengine2_6.dll
2012-04-19 16:41 . 2007-03-05 10:42 15128 ----a-w- c:\windows\SysWow64\x3daudio1_1.dll
2012-04-19 16:41 . 2007-03-05 10:42 17688 ----a-w- c:\windows\system32\x3daudio1_1.dll
2012-04-19 16:22 . 2012-04-19 16:40 -------- d-----w- c:\program files (x86)\Mass Effect 3
2012-04-19 14:35 . 2012-04-19 14:35 -------- d-----w- c:\program files (x86)\2K Games
2012-04-18 20:59 . 2012-04-18 21:01 -------- d-----w- c:\program files (x86)\Valve
2012-04-18 20:47 . 2012-04-18 20:47 -------- d-----w- c:\program files\Common Files\Native Instruments
2012-04-18 20:47 . 2012-04-22 19:57 -------- d-----w- c:\program files (x86)\Common Files\Native Instruments
2012-04-18 20:47 . 2012-04-18 20:47 -------- d-----w- c:\program files (x86)\Common Files\Digidesign
2012-04-18 20:47 . 2012-04-18 20:47 -------- dc-h--w- c:\programdata\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2012-04-18 20:47 . 2012-04-22 19:57 -------- d-----w- c:\program files\Native Instruments
2012-04-18 20:47 . 2012-04-18 20:47 -------- d-----w- c:\programdata\Native Instruments
2012-04-18 20:46 . 2012-04-18 20:46 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2012-04-18 20:46 . 2012-04-18 20:46 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2012-04-18 20:21 . 2012-04-18 20:21 -------- d-----w- c:\program files (x86)\ASIO4ALL v2
2012-04-18 20:21 . 2012-05-02 18:30 -------- d-----w- c:\program files (x86)\VstPlugins
2012-04-18 20:21 . 2006-06-20 08:56 225280 ----a-w- c:\windows\SysWow64\rewire.dll
2012-04-18 20:21 . 2009-08-02 20:09 1554944 ----a-w- c:\windows\SysWow64\vorbis.acm
2012-04-18 20:21 . 2012-04-18 20:21 -------- d-----w- c:\program files (x86)\Outsim
2012-04-18 20:18 . 2012-04-18 20:41 -------- d-----w- c:\program files (x86)\Image-Line
2012-04-18 20:11 . 2012-04-18 20:16 -------- d-----w- c:\program files (x86)\FIFA 12
2012-04-18 17:13 . 2009-07-10 10:43 1589248 ----a-w- c:\windows\SysWow64\libmysql_d.dll
2012-04-18 17:13 . 2012-04-18 17:15 -------- d-----w- c:\program files (x86)\PremiumSoft
2012-04-18 17:13 . 2012-04-18 17:13 -------- d-----w- c:\program files (x86)\TeamViewer
2012-04-18 17:13 . 2012-04-18 17:13 -------- d-----w- c:\program files (x86)\UltraVNC
2012-04-18 17:12 . 2012-04-18 17:12 -------- d-----w- c:\program files (x86)\PSPad editor
2012-04-18 17:10 . 2012-04-18 17:10 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-04-18 17:10 . 2012-04-18 17:10 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2012-04-18 16:48 . 2012-04-18 16:52 -------- d-----w- c:\program files (x86)\Google
2012-04-18 16:47 . 2012-04-18 17:16 -------- d-----w- c:\programdata\DAEMON Tools Lite
2012-04-18 04:26 . 2011-12-16 08:46 634880 ----a-w- c:\windows\system32\msvcrt.dll
2012-04-18 04:26 . 2011-12-16 07:52 690688 ----a-w- c:\windows\SysWow64\msvcrt.dll
2012-04-18 04:26 . 2011-08-27 05:37 861696 ----a-w- c:\windows\system32\oleaut32.dll
2012-04-18 04:26 . 2011-08-27 05:37 331776 ----a-w- c:\windows\system32\oleacc.dll
2012-04-18 04:26 . 2011-08-27 04:26 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2012-04-18 04:26 . 2011-08-27 04:26 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
2012-04-18 04:26 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll
2012-04-18 04:26 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2012-04-18 04:26 . 2011-11-05 05:32 2048 ----a-w- c:\windows\system32\tzres.dll
2012-04-18 04:26 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-04-18 04:26 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-04-18 04:26 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-04-17 16:42 . 2012-04-24 13:38 -------- d-----w- c:\users\UpdatusUser
2012-04-17 16:42 . 2012-02-29 21:00 3089728 ----a-w- c:\windows\system32\nvsvc64.dll
2012-04-17 16:42 . 2012-02-29 21:00 6074176 ----a-w- c:\windows\system32\nvcpl.dll
2012-04-17 16:42 . 2012-02-29 20:59 889664 ----a-w- c:\windows\system32\nvvsvc.exe
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-04 20:31 . 2012-01-20 11:59 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-06 19:11 . 2011-03-29 02:36 19352 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-04-06 18:26 . 2012-04-06 18:26 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 5632 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 50176 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 27136 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
2012-04-06 18:26 . 2012-04-06 18:26 15360 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" [2010-06-28 263936]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-08-10 975952]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-04-13 284696]
"RIMBBLaunchAgent.exe"="c:\program files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120413.001\BHDrvx64.sys [2012-04-02 1160824]
R1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1300000.080\ccSetx64.sys [x]
R1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120504.001\IDSvia64.sys [2012-04-28 488568]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1300000.080\Ironx64.SYS [x]
R1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1300000.080\SYMNETS.SYS [x]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
R2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
R2 ePowerSvc;Acer ePower Service;c:\program files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-01-05 867712]
R2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [2011-05-30 36456]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 136176]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 Live Updater Service;Live Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2011-04-22 244624]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe [2011-05-24 138760]
R2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
R2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-06-28 255744]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]
R2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 257696]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-04-17 138360]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 136176]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1300000.080\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1300000.080\SYMEFA64.SYS [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-05-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 20:31]
.
2012-05-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 16:48]
.
2012-05-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 16:48]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-22 10920552]
"AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2011-03-13 617120]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-03-13 379552]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-07-29 497648]
"Acer ePower Management"="c:\program files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" [2011-01-05 860040]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-01-10 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-01-10 392984]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-10 417560]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
TCP: DhcpNameServer = 82.100.3.1 62.240.162.158
FF - ProfilePath - c:\users\Woytman\AppData\Roaming\Mozilla\Firefox\Profiles\cwcfcwac.default\
FF - user.js: extentions.y2layers.installId - 7ba8dc3a-5f63-489b-bc70-512831edd56e
FF - user.js: extentions.y2layers.defaultEnableAppsList - bestvideodownloader,ezLooker,pagerage,buzzdock,toprelatedtopics,twittube
FF - user.js: extensions.autoDisableScopes - 14
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-Driver Genius - (no file)
Toolbar-Locked - (no file)
HKLM-Run-ETDWare - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\diMaster.dll\" /prefetch:1"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2000845088-3818977652-3785840965-1002\Software\SecuROM\License information*]
"datasecu"=hex:c1,00,79,9d,38,b8,93,90,b3,e2,5b,43,4f,88,71,6d,0f,3e,d7,82,90,
7c,15,f2,0c,ec,f1,d4,11,ed,7c,e8,d4,37,d3,6f,55,7c,64,f8,fb,a6,33,eb,4e,ee,\
"rkeysecu"=hex:00,fc,a1,18,ef,68,ed,be,9c,c1,05,4f,a4,be,13,59
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-05-05 00:02:42
ComboFix-quarantined-files.txt 2012-05-04 22:02
.
Před spuštěním: Volných bajtů: 150 392 705 024
Po spuštění: Volných bajtů: 150 142 582 784
.
- - End Of File - - 1DE4D79C3E47ADB19442CFCA7DFC9679

Taky jsem přišel proč se to seklo na 6 fázi páč sem zavřel víko ntb

Odinstaluj:
Yontoo

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\SysWow64\SYNSOEMU.DLL

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

C:\sss
c:\program files (x86)\Square Enix
Znáš to? Pokud ne , tak smazat , Square Enix odinstaluj.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.