Prosím kontolu logu (facbook viry a spam)

Auro · Příspěvekod **Auro** » 28 črc 2014 14:42

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:32:57, on 28.7.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17207)
CHROME: 36.0.1985.125

Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Users\Lucie\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe
E:\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.strakonice.eu:3128
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 192.168.*.*;*.mu-st.cz;*.strakonice.eu;*.csobpoj.cz;*.csob.cz;wwwinfo.mfcr.cz;adisrws.mfcr.cz<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstall ... gBQAEEATgA"&"inst=NwA3AC0AMQA0ADkANAAwADMANwA2ADgANwAtAEQARABUACsAMAAtAFgATwA5ACsAMQAtAEYATAArADkALQBTAFQAOQAwAEYAQQBQAFAAKwAxAC0ARgA5ADAATQAxADIARQBUACsAMQAtAFQAQgBOACsAMQA"&"prod=90"&"ver=9.0.914
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Lucie\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Lucie\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Facebook Messenger.lnk = C:\Users\Lucie\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: SmarThru4 Capture Selection - C:\Program Files\SmarThru 4\WebCapture.dll2.htm
O8 - Extra context menu item: SmarThru4 Save as HTML - C:\Program Files\SmarThru 4\WebCapture.dll1.htm
O8 - Extra context menu item: SmarThru4 Save Selected Text - C:\Program Files\SmarThru 4\WebCapture.dll.htm
O8 - Extra context menu item: SmarThru4 Web Capture - C:\Program Files\SmarThru 4\WebCapture.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.13.0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {EC71A2BE-E211-41F9-BCAF-4EFF13426DFE} (RossmCZActiveFormX Element) - https://shop.rossmanncz.orwonet.de/shop ... upload.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
O23 - Service: gDoc PDF Service (GDOCService) - Unknown owner - C:\Users\Lucie\Downloads\MWFSrv.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PACSPTISVR-Sound_Organizer - Sony Corporation - C:\Program Files\Sony\Sound Organizer\Sony.Earth\PACSPTISVR.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe

--
End of file - 11595 bytes

Reklama

Příspěvekod **jaro3** » 29 črc 2014 10:21

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

Auro · Příspěvekod **Auro** » 29 črc 2014 13:38

# AdwCleaner v3.301 - Report created 29/07/2014 at 13:17:33
# Updated 28/07/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Lucie - LUCIEPC
# Running from : C:\Users\Lucie\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{2318C2B1-4965-11D4-9B18-009027A5CD4F}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{2318C2B1-4965-11D4-9B18-009027A5CD4F}]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17207

-\\ Mozilla Firefox v

[ File : C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\qbczzx0m.default\prefs.js ]

-\\ Google Chrome v

[ File : C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found [Search Provider] : hxxp://www.urologieprostudenty.cz/?mact ... archinput={searchTerms}&submit=%0D%0A%C2%A0Hledej

*************************

AdwCleaner[R0].txt - [2398 octets] - [29/07/2014 13:17:33]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2458 octets] ##########

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 29.7.2014
Scan Time: 13:28:28
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Lucie

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 217803
Time Elapsed: 8 min, 2 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.FunWebProducts.A, HKU\S-1-5-21-1828856494-8014242-1113375377-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}, , [cb7e8b745525aa8c075472030bf7ee12],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

Příspěvekod **Orcus** » 29 črc 2014 18:24

- Znovu spusť MbAM a dej Skenovat nyní
- Po proběhnutí programu se ti objeví hláška, tak klikni na „Vše do karantény“ -> „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a ulož na Plochu.
- Zkopíruj sem celý obsah toho logu.

====================================================

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Smazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

====================================================

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

====================================================

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Auro · Příspěvekod **Auro** » 31 črc 2014 13:30

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 31.7.2014
Scan Time: 12:53:54
Logfile: mbamlog.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Lucie

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 217835
Time Elapsed: 10 min, 3 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.FunWebProducts.A, HKU\S-1-5-21-1828856494-8014242-1113375377-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}, Quarantined, [10394eb1fb7f3ef8203b85f03dc543bd],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)
-----------------------------------------------------------------------------------------------------------------------------------------------

# AdwCleaner v3.301 - Report created 31/07/2014 at 13:11:11
# Updated 28/07/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Lucie - LUCIEPC
# Running from : C:\Users\Lucie\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{2318C2B1-4965-11D4-9B18-009027A5CD4F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{2318C2B1-4965-11D4-9B18-009027A5CD4F}]
Key Deleted : HKCU\Software\YahooPartnerToolbar

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17207

-\\ Mozilla Firefox v

[ File : C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\qbczzx0m.default\prefs.js ]

-\\ Google Chrome v

[ File : C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://www.urologieprostudenty.cz/?mact ... archinput={searchTerms}&submit=%0D%0A%C2%A0Hledej

*************************

AdwCleaner[R0].txt - [2538 octets] - [29/07/2014 13:17:33]
AdwCleaner[R1].txt - [2489 octets] - [31/07/2014 13:09:31]
AdwCleaner[S0].txt - [2440 octets] - [31/07/2014 13:11:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2500 octets] ##########

-------------------------------------------------------------------------------------------------------------------------------------------------------------------------

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x86
Ran by Lucie on źt 31.07.2014 at 13:17:02,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "\software"

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 31.07.2014 at 13:18:47,20
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

RogueKiller V9.2.4.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lucie [Práva správce]
Mód : Kontrola -- Datum : 07/31/2014 13:26:34

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[PUM.Proxy] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> NALEZENO
[PUM.Proxy] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy.strakonice.eu:3128 -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
[Tr.Poweliks] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\classes\clsid\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5} -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost

¤¤¤ Antirootkit : 0 (Driver: NAHRÁNO) ¤¤¤

¤¤¤ Webové prohlížeče : 3 ¤¤¤
[PUM.Proxy][FIREFX:Config] qbczzx0m.default : user_pref("network.proxy.http", "web.strakonice.eu"); -> NALEZENO
[PUM.Proxy][FIREFX:Config] qbczzx0m.default : user_pref("network.proxy.http_port", 3128); -> NALEZENO
[PUM.Proxy][FIREFX:Config] qbczzx0m.default : user_pref("network.proxy.type", 1); -> NALEZENO

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST3250318AS ATA Device +++++
--- User ---
[MBR] 2fd7adfcc95b2adfaaa49757b9c28954
[BSP] 7bbe13a9254adb3703e35dbeac8323ea : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 78 MB
1 - [ACTIVE] FAT32 (0xb) [VISIBLE] Offset (sectors): 160650 | Size: 2055 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 4370432 | Size: 236283 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Sony Storage Media USB Device +++++
--- User ---
[MBR] 47a397d1ad224d18cfd877dc8af86577
[BSP] f7868eedb706a7ac61a35a9501793498 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 63 | Size: 7498 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

Příspěvekod **jaro3** » 31 črc 2014 18:44

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:

- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)

- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

Auro · Příspěvekod **Auro** » 04 srp 2014 13:24

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 4.8.2014
Scan Time: 12:53:46
Logfile: mbam.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Lucie

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 217573
Time Elapsed: 6 min, 16 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

--------------------------------------------------------------------------------------------------------------------------------

RogueKiller V9.2.4.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lucie [Práva správce]
Mód : Odebrat -- Datum : 08/04/2014 13:12:14

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[PUM.Proxy] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> NAHRAZENO (0)
[PUM.Proxy] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy.strakonice.eu:3128 -> VYMAZÁNO
[PUM.Policies] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> VYMAZÁNO
[PUM.Policies] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> VYMAZÁNO
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> NAHRAZENO (1)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[Tr.Poweliks] HKEY_USERS\S-1-5-21-1828856494-8014242-1113375377-1000\Software\classes\clsid\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5} -> VYMAZÁNO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost -> VYMAZÁNO
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost -> VYMAZÁNO

¤¤¤ Antirootkit : 0 (Driver: NAHRÁNO) ¤¤¤

¤¤¤ Webové prohlížeče : 11 ¤¤¤
[PUM.Proxy][FIREFX:Config] qbczzx0m.default : user_pref("network.proxy.http", "web.strakonice.eu"); -> VYMAZÁNO
[PUM.Proxy][FIREFX:Config] qbczzx0m.default : user_pref("network.proxy.http_port", 3128); -> VYMAZÁNO
[PUM.Proxy][FIREFX:Config] qbczzx0m.default : user_pref("network.proxy.type", 1); -> NAHRAZENO (0)
[CHROME:Addon] Default : GNU Slovník [afccbacddjaiabcgjbkphbcdnkmmlcff] -> VYMAZÁNO
[CHROME:Addon] Default : Google Docs [aohghmighlieiainnegkcijnfilokake] -> ERROR [2]
[CHROME:Addon] Default : Google Drive [apdfllckaahabafndbhieahigkjlhalf] -> ERROR [2]
[CHROME:Addon] Default : YouTube [blpcfgokakmgnkcojhhkbfbldkacnbeo] -> ERROR [2]
[CHROME:Addon] Default : Google Search [coobgpohoikkiipiblmjeljniedjpjpf] -> ERROR [2]
[CHROME:Addon] Default : [godimpbmfohihoaikgfknnnmlncabkkp] -> ERROR [2]
[CHROME:Addon] Default : Google Wallet [nmmhkkegccagdldgiimedpiccmgmieda] -> ERROR [2]
[CHROME:Addon] Default : Gmail [pjkljhegncpnkpknbcohdijeoejaedia] -> ERROR [2]

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST3250318AS ATA Device +++++
--- User ---
[MBR] 2fd7adfcc95b2adfaaa49757b9c28954
[BSP] 7bbe13a9254adb3703e35dbeac8323ea : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 78 MB
1 - [ACTIVE] FAT32 (0xb) [VISIBLE] Offset (sectors): 160650 | Size: 2055 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 4370432 | Size: 236283 MB
User = LL1 ... OK
User = LL2 ... OK

============================================
RKreport_SCN_07312014_132634.log - RKreport_SCN_08042014_130844.log

-----------------------------------------------------------------------------------------------------------------------------------------------------

13:17:02.0387 0x0874 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
13:17:08.0611 0x0874 ============================================================
13:17:08.0611 0x0874 Current date / time: 2014/08/04 13:17:08.0611
13:17:08.0611 0x0874 SystemInfo:
13:17:08.0611 0x0874
13:17:08.0611 0x0874 OS Version: 6.1.7601 ServicePack: 1.0
13:17:08.0611 0x0874 Product type: Workstation
13:17:08.0611 0x0874 ComputerName: LUCIEPC
13:17:08.0611 0x0874 UserName: Lucie
13:17:08.0611 0x0874 Windows directory: C:\Windows
13:17:08.0611 0x0874 System windows directory: C:\Windows
13:17:08.0611 0x0874 Processor architecture: Intel x86
13:17:08.0611 0x0874 Number of processors: 2
13:17:08.0611 0x0874 Page size: 0x1000
13:17:08.0611 0x0874 Boot type: Normal boot
13:17:08.0611 0x0874 ============================================================
13:17:10.0280 0x0874 KLMD registered as C:\Windows\system32\drivers\78350626.sys
13:17:10.0873 0x0874 System UUID: {751A543C-1A59-64C7-3D36-B7A9E615BF68}
13:17:12.0246 0x0874 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 ( 232.83 Gb ), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:17:12.0246 0x0874 Drive \Device\Harddisk1\DR2 - Size: 0x1D4A20000 ( 7.32 Gb ), SectorSize: 0x200, Cylinders: 0x3BB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:17:12.0261 0x0874 ============================================================
13:17:12.0261 0x0874 \Device\Harddisk0\DR0:
13:17:12.0261 0x0874 MBR partitions:
13:17:12.0261 0x0874 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x2738A, BlocksNum 0x403986
13:17:12.0261 0x0874 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x42B000, BlocksNum 0x1CD7D800
13:17:12.0261 0x0874 \Device\Harddisk1\DR2:
13:17:12.0261 0x0874 MBR partitions:
13:17:12.0261 0x0874 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0xEA50C1
13:17:12.0261 0x0874 ============================================================
13:17:12.0277 0x0874 C: <-> \Device\Harddisk0\DR0\Partition2
13:17:12.0277 0x0874 ============================================================
13:17:12.0277 0x0874 Initialize success
13:17:12.0277 0x0874 ============================================================
13:17:19.0515 0x0864 ============================================================
13:17:19.0515 0x0864 Scan started
13:17:19.0515 0x0864 Mode: Manual;
13:17:19.0515 0x0864 ============================================================
13:17:19.0515 0x0864 KSN ping started
13:17:22.0589 0x0864 KSN ping finished: true
13:17:23.0353 0x0864 ================ Scan system memory ========================
13:17:23.0353 0x0864 System memory - ok
13:17:23.0353 0x0864 ================ Scan services =============================
13:17:23.0478 0x0864 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:17:23.0493 0x0864 1394ohci - ok
13:17:23.0603 0x0864 [ F11D68E40ED62FDB7C460C445F1EC4E5, FE0C6B90209CFE4485176B977B26732F3E087961C75768EC7C33398309D334D9 ] 602XML Updater C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
13:17:23.0603 0x0864 602XML Updater - ok
13:17:23.0665 0x0864 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:17:23.0665 0x0864 ACPI - ok
13:17:23.0696 0x0864 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:17:23.0712 0x0864 AcpiPmi - ok
13:17:23.0805 0x0864 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
13:17:23.0805 0x0864 AdobeARMservice - ok
13:17:23.0883 0x0864 [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:17:23.0883 0x0864 AdobeFlashPlayerUpdateSvc - ok
13:17:23.0946 0x0864 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:17:23.0961 0x0864 adp94xx - ok
13:17:23.0977 0x0864 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:17:23.0977 0x0864 adpahci - ok
13:17:23.0993 0x0864 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:17:24.0008 0x0864 adpu320 - ok
13:17:24.0039 0x0864 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:17:24.0039 0x0864 AeLookupSvc - ok
13:17:24.0086 0x0864 [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD C:\Windows\system32\drivers\afd.sys
13:17:24.0102 0x0864 AFD - ok
13:17:24.0133 0x0864 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
13:17:24.0133 0x0864 agp440 - ok
13:17:24.0164 0x0864 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
13:17:24.0164 0x0864 aic78xx - ok
13:17:24.0211 0x0864 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
13:17:24.0211 0x0864 ALG - ok
13:17:24.0242 0x0864 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
13:17:24.0258 0x0864 aliide - ok
13:17:24.0258 0x0864 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
13:17:24.0258 0x0864 amdagp - ok
13:17:24.0305 0x0864 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
13:17:24.0305 0x0864 amdide - ok
13:17:24.0336 0x0864 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:17:24.0336 0x0864 AmdK8 - ok
13:17:24.0351 0x0864 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:17:24.0351 0x0864 AmdPPM - ok
13:17:24.0383 0x0864 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:17:24.0398 0x0864 amdsata - ok
13:17:24.0414 0x0864 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:17:24.0414 0x0864 amdsbs - ok
13:17:24.0429 0x0864 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:17:24.0445 0x0864 amdxata - ok
13:17:24.0476 0x0864 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
13:17:24.0492 0x0864 AppID - ok
13:17:24.0507 0x0864 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:17:24.0523 0x0864 AppIDSvc - ok
13:17:24.0554 0x0864 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
13:17:24.0554 0x0864 Appinfo - ok
13:17:24.0585 0x0864 [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
13:17:24.0585 0x0864 AppMgmt - ok
13:17:24.0617 0x0864 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
13:17:24.0617 0x0864 arc - ok
13:17:24.0632 0x0864 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:17:24.0632 0x0864 arcsas - ok
13:17:24.0788 0x0864 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
13:17:24.0804 0x0864 aspnet_state - ok
13:17:24.0819 0x0864 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:17:24.0819 0x0864 AsyncMac - ok
13:17:24.0851 0x0864 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
13:17:24.0851 0x0864 atapi - ok
13:17:24.0913 0x0864 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:17:24.0929 0x0864 AudioEndpointBuilder - ok
13:17:24.0944 0x0864 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
13:17:24.0944 0x0864 Audiosrv - ok
13:17:24.0991 0x0864 [ 0FE7773CD592DAE0CA994BA987F44E85, F4404D2ACCF2173E5382C4002C21D7AA711157DEF26D2F17699843DE2DAFBCED ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6x.sys
13:17:24.0991 0x0864 Avgfwfd - ok
13:17:25.0131 0x0864 [ 8A0D857EE0D05FDF1FAC51D3CC03E18C, 0806BCC1593B2CCFA26B0C8BA17088801D850401505A486B17BC49B28B058D01 ] avgfws C:\Program Files\AVG\AVG2013\avgfws.exe
13:17:25.0163 0x0864 avgfws - ok
13:17:25.0334 0x0864 [ 4DB93F4DB7077801D2D82013506AC1D0, 3D71655D1557021D5D828E37EAFDBA35C631061E48D64B9D376746F8FCC760B3 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
13:17:25.0475 0x0864 AVGIDSAgent - ok
13:17:25.0537 0x0864 [ 5BCAE36134162830ED283F4C3D88476A, A47EE816A88A8C18458BA721AB829E49D492128BA8D5BF6FF317C2B5A1FFA60F ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
13:17:25.0553 0x0864 AVGIDSDriver - ok
13:17:25.0599 0x0864 [ 7C8E88549BCDAAC965B1B724C175F7A9, 86240BF965C60FFAF381879D1B2DD7190FAD597E7534AEE9A9E48A2BDEC119BA ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
13:17:25.0599 0x0864 AVGIDSHX - ok
13:17:25.0599 0x0864 [ F8D2E76EA51B3B4119DF3D6A7A6D99F3, 417E05BA987345ED48223404DEBC10043A18CBC749462186CC3EE9C20F47C86D ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
13:17:25.0599 0x0864 AVGIDSShim - ok
13:17:25.0662 0x0864 [ 2018C4E9A40B122408763A5635CF14D9, E0BF5D5C7CFDD078F8BBA9627F1F8E0434B38A23FA9E039B37A22D7E1AD4EFFA ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
13:17:25.0662 0x0864 Avgldx86 - ok
13:17:25.0724 0x0864 [ E2B9CF2CF787C6978E7CC898E9684E48, 73D5D8514EF1BF3BCC64DC158C68189D07B3940641F1155823C6822D03BC761B ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
13:17:25.0724 0x0864 Avglogx - ok
13:17:25.0771 0x0864 [ 3F59750A3AA55C46663801E7C2FD1E2B, F748EB6552889974CB1FC6F666F2D78F654CAA990A339C741255355295CD46E8 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
13:17:25.0771 0x0864 Avgmfx86 - ok
13:17:25.0833 0x0864 [ 90FA3A4BB1039701D68FD1CC2ED3EE22, 5842AECBF76163BCAEE19DED708291DD8402E2D24DD48453E6067A9AE5BABB11 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
13:17:25.0833 0x0864 Avgrkx86 - ok
13:17:25.0880 0x0864 [ 3663FCC6C41647E02D043CDB0D2C0FD9, 02F47B25A9C69A35B62A9C63F1926E895E82668F1ABC204F89E4CB618409592E ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
13:17:25.0896 0x0864 Avgtdix - ok
13:17:25.0911 0x0864 [ D646FA5135A1CD795877AFE9D17FA9ED, 2F97FBCD7BD75727A77C17D75D2482AE819D5D2EB9760D96412F9C20AA7D9473 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
13:17:25.0927 0x0864 avgwd - ok
13:17:25.0974 0x0864 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:17:25.0974 0x0864 AxInstSV - ok
13:17:26.0005 0x0864 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
13:17:26.0021 0x0864 b06bdrv - ok
13:17:26.0052 0x0864 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
13:17:26.0052 0x0864 b57nd60x - ok
13:17:26.0099 0x0864 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
13:17:26.0099 0x0864 BDESVC - ok
13:17:26.0114 0x0864 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
13:17:26.0114 0x0864 Beep - ok
13:17:26.0177 0x0864 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
13:17:26.0192 0x0864 BFE - ok
13:17:26.0208 0x0864 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\System32\qmgr.dll
13:17:26.0239 0x0864 BITS - ok
13:17:26.0270 0x0864 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:17:26.0270 0x0864 blbdrive - ok
13:17:26.0317 0x0864 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:17:26.0317 0x0864 bowser - ok
13:17:26.0333 0x0864 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:17:26.0348 0x0864 BrFiltLo - ok
13:17:26.0348 0x0864 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:17:26.0364 0x0864 BrFiltUp - ok
13:17:26.0395 0x0864 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
13:17:26.0395 0x0864 Browser - ok
13:17:26.0442 0x0864 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:17:26.0442 0x0864 Brserid - ok
13:17:26.0457 0x0864 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:17:26.0457 0x0864 BrSerWdm - ok
13:17:26.0473 0x0864 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:17:26.0473 0x0864 BrUsbMdm - ok
13:17:26.0489 0x0864 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:17:26.0489 0x0864 BrUsbSer - ok
13:17:26.0504 0x0864 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:17:26.0504 0x0864 BTHMODEM - ok
13:17:26.0535 0x0864 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
13:17:26.0535 0x0864 bthserv - ok
13:17:26.0551 0x0864 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:17:26.0551 0x0864 cdfs - ok
13:17:26.0613 0x0864 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:17:26.0613 0x0864 cdrom - ok
13:17:26.0645 0x0864 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
13:17:26.0660 0x0864 CertPropSvc - ok
13:17:26.0691 0x0864 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:17:26.0691 0x0864 circlass - ok
13:17:26.0738 0x0864 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
13:17:26.0738 0x0864 CLFS - ok
13:17:26.0785 0x0864 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:17:26.0801 0x0864 clr_optimization_v2.0.50727_32 - ok
13:17:26.0847 0x0864 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:17:26.0863 0x0864 clr_optimization_v4.0.30319_32 - ok
13:17:26.0894 0x0864 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:17:26.0894 0x0864 CmBatt - ok
13:17:26.0925 0x0864 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:17:26.0925 0x0864 cmdide - ok
13:17:26.0972 0x0864 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
13:17:26.0988 0x0864 CNG - ok
13:17:27.0003 0x0864 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:17:27.0003 0x0864 Compbatt - ok
13:17:27.0019 0x0864 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:17:27.0035 0x0864 CompositeBus - ok
13:17:27.0050 0x0864 COMSysApp - ok
13:17:27.0066 0x0864 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:17:27.0066 0x0864 crcdisk - ok
13:17:27.0113 0x0864 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:17:27.0113 0x0864 CryptSvc - ok
13:17:27.0159 0x0864 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
13:17:27.0175 0x0864 CSC - ok
13:17:27.0206 0x0864 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
13:17:27.0237 0x0864 CscService - ok
13:17:27.0253 0x0864 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
13:17:27.0269 0x0864 DcomLaunch - ok
13:17:27.0284 0x0864 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
13:17:27.0284 0x0864 defragsvc - ok
13:17:27.0331 0x0864 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:17:27.0331 0x0864 DfsC - ok
13:17:27.0378 0x0864 [ 7F19DBA1A467B838CCB23124A2C55568, 9D7C81AD7C4AAC69E8B263029F292B46FD8BFF9721349C2AB8A111C8CB670BB2 ] DgiVecp C:\Windows\system32\Drivers\DgiVecp.sys
13:17:27.0378 0x0864 DgiVecp - ok
13:17:27.0425 0x0864 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
13:17:27.0440 0x0864 Dhcp - ok
13:17:27.0456 0x0864 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
13:17:27.0456 0x0864 discache - ok
13:17:27.0503 0x0864 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:17:27.0503 0x0864 Disk - ok
13:17:27.0549 0x0864 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:17:27.0549 0x0864 Dnscache - ok
13:17:27.0596 0x0864 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
13:17:27.0596 0x0864 dot3svc - ok
13:17:27.0643 0x0864 [ B5E479EB83707DD698F66953E922042C, 82891A4699F180A20EB25A0EC49A7E008B007A374BAA3279483AC1C95D125FE8 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
13:17:27.0659 0x0864 Dot4 - ok
13:17:27.0690 0x0864 [ CAEFD09B6A6249C53A67D55A9A9FCABF, A76C951EA8A830E5BA22D8D393A946BBAEEDB76478539F647E58199B383F786B ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
13:17:27.0690 0x0864 Dot4Print - ok
13:17:27.0705 0x0864 [ CF491FF38D62143203C065260567E2F7, 4315FD8FC88CF627EBE469A2DF0F280B17C95D3004FC7A93D6F8E47F0D91A037 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
13:17:27.0705 0x0864 dot4usb - ok
13:17:27.0752 0x0864 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
13:17:27.0752 0x0864 DPS - ok
13:17:27.0799 0x0864 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:17:27.0799 0x0864 drmkaud - ok
13:17:27.0877 0x0864 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:17:27.0908 0x0864 DXGKrnl - ok
13:17:27.0939 0x0864 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
13:17:27.0939 0x0864 EapHost - ok
13:17:28.0049 0x0864 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
13:17:28.0142 0x0864 ebdrv - ok
13:17:28.0189 0x0864 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS C:\Windows\System32\lsass.exe
13:17:28.0189 0x0864 EFS - ok
13:17:28.0267 0x0864 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:17:28.0283 0x0864 ehRecvr - ok
13:17:28.0298 0x0864 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
13:17:28.0298 0x0864 ehSched - ok
13:17:28.0345 0x0864 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:17:28.0345 0x0864 elxstor - ok
13:17:28.0376 0x0864 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:17:28.0376 0x0864 ErrDev - ok
13:17:28.0439 0x0864 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
13:17:28.0454 0x0864 EventSystem - ok
13:17:28.0470 0x0864 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
13:17:28.0485 0x0864 exfat - ok
13:17:28.0501 0x0864 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:17:28.0501 0x0864 fastfat - ok
13:17:28.0579 0x0864 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
13:17:28.0595 0x0864 Fax - ok
13:17:28.0610 0x0864 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:17:28.0610 0x0864 fdc - ok
13:17:28.0641 0x0864 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
13:17:28.0641 0x0864 fdPHost - ok
13:17:28.0657 0x0864 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
13:17:28.0657 0x0864 FDResPub - ok
13:17:28.0673 0x0864 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:17:28.0673 0x0864 FileInfo - ok
13:17:28.0688 0x0864 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:17:28.0688 0x0864 Filetrace - ok
13:17:28.0688 0x0864 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:17:28.0704 0x0864 flpydisk - ok
13:17:28.0719 0x0864 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:17:28.0735 0x0864 FltMgr - ok
13:17:28.0813 0x0864 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
13:17:28.0844 0x0864 FontCache - ok
13:17:28.0875 0x0864 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:17:28.0875 0x0864 FontCache3.0.0.0 - ok
13:17:28.0907 0x0864 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:17:28.0907 0x0864 FsDepends - ok
13:17:28.0938 0x0864 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:17:28.0953 0x0864 Fs_Rec - ok
13:17:29.0000 0x0864 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:17:29.0016 0x0864 fvevol - ok
13:17:29.0047 0x0864 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:17:29.0047 0x0864 gagp30kx - ok
13:17:29.0078 0x0864 GDOCService - ok
13:17:29.0125 0x0864 [ 93CA4D9A0433BE0EDD0B9F2F26D5E54C, ACD6BBB639CAF092809927F84F5693B7BA11080684A4993029D713ACF67D4C79 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
13:17:29.0125 0x0864 ggflt - ok
13:17:29.0156 0x0864 [ 17E678AAB82CCDFB80E7614504933895, 43935C8C5C30DA415957B789DC9FA10721C240C603DC8733D9B791A2F58BE1BD ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
13:17:29.0172 0x0864 ggsemc - ok
13:17:29.0219 0x0864 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
13:17:29.0250 0x0864 gpsvc - ok
13:17:29.0343 0x0864 [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
13:17:29.0359 0x0864 gupdate - ok
13:17:29.0375 0x0864 [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
13:17:29.0375 0x0864 gupdatem - ok
13:17:29.0406 0x0864 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
13:17:29.0421 0x0864 gusvc - ok
13:17:29.0437 0x0864 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:17:29.0437 0x0864 hcw85cir - ok
13:17:29.0484 0x0864 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:17:29.0499 0x0864 HdAudAddService - ok
13:17:29.0515 0x0864 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:17:29.0515 0x0864 HDAudBus - ok
13:17:29.0531 0x0864 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:17:29.0531 0x0864 HidBatt - ok
13:17:29.0546 0x0864 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:17:29.0546 0x0864 HidBth - ok
13:17:29.0562 0x0864 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:17:29.0562 0x0864 HidIr - ok
13:17:29.0593 0x0864 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\system32\hidserv.dll
13:17:29.0593 0x0864 hidserv - ok
13:17:29.0655 0x0864 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
13:17:29.0655 0x0864 HidUsb - ok
13:17:29.0687 0x0864 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
13:17:29.0687 0x0864 hkmsvc - ok
13:17:29.0718 0x0864 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:17:29.0718 0x0864 HomeGroupListener - ok
13:17:29.0749 0x0864 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:17:29.0749 0x0864 HomeGroupProvider - ok
13:17:29.0796 0x0864 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:17:29.0796 0x0864 HpSAMD - ok
13:17:29.0858 0x0864 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:17:29.0874 0x0864 HTTP - ok
13:17:29.0905 0x0864 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:17:29.0905 0x0864 hwpolicy - ok
13:17:29.0952 0x0864 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:17:29.0967 0x0864 i8042prt - ok
13:17:29.0999 0x0864 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:17:30.0014 0x0864 iaStorV - ok
13:17:30.0077 0x0864 [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:17:30.0092 0x0864 idsvc - ok
13:17:30.0139 0x0864 IEEtwCollectorService - ok
13:17:30.0435 0x0864 [ 1EC36A3CA56B0A31B4920399EE6D77EB, 8FE6F396855729A937C6BD9DE5DAFE200E87CAD2FE3A745625E58A8B9437CD1A ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
13:17:30.0669 0x0864 igfx - ok
13:17:30.0732 0x0864 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:17:30.0732 0x0864 iirsp - ok
13:17:30.0794 0x0864 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
13:17:30.0825 0x0864 IKEEXT - ok
13:17:30.0857 0x0864 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
13:17:30.0857 0x0864 intelide - ok
13:17:30.0888 0x0864 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:17:30.0903 0x0864 intelppm - ok
13:17:30.0935 0x0864 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:17:30.0935 0x0864 IPBusEnum - ok
13:17:30.0950 0x0864 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:17:30.0950 0x0864 IpFilterDriver - ok
13:17:31.0013 0x0864 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:17:31.0044 0x0864 iphlpsvc - ok
13:17:31.0075 0x0864 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:17:31.0075 0x0864 IPMIDRV - ok
13:17:31.0106 0x0864 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:17:31.0106 0x0864 IPNAT - ok
13:17:31.0122 0x0864 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:17:31.0137 0x0864 IRENUM - ok
13:17:31.0169 0x0864 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:17:31.0169 0x0864 isapnp - ok
13:17:31.0200 0x0864 [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:17:31.0215 0x0864 iScsiPrt - ok
13:17:31.0247 0x0864 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:17:31.0247 0x0864 kbdclass - ok
13:17:31.0262 0x0864 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:17:31.0262 0x0864 kbdhid - ok
13:17:31.0278 0x0864 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso C:\Windows\system32\lsass.exe
13:17:31.0278 0x0864 KeyIso - ok
13:17:31.0309 0x0864 [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:17:31.0309 0x0864 KSecDD - ok
13:17:31.0340 0x0864 [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:17:31.0340 0x0864 KSecPkg - ok
13:17:31.0371 0x0864 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
13:17:31.0387 0x0864 KtmRm - ok
13:17:31.0418 0x0864 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:17:31.0418 0x0864 LanmanServer - ok
13:17:31.0434 0x0864 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:17:31.0434 0x0864 LanmanWorkstation - ok
13:17:31.0465 0x0864 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:17:31.0481 0x0864 lltdio - ok
13:17:31.0496 0x0864 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:17:31.0512 0x0864 lltdsvc - ok
13:17:31.0543 0x0864 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:17:31.0559 0x0864 lmhosts - ok
13:17:31.0574 0x0864 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:17:31.0590 0x0864 LSI_FC - ok
13:17:31.0605 0x0864 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:17:31.0605 0x0864 LSI_SAS - ok
13:17:31.0621 0x0864 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:17:31.0621 0x0864 LSI_SAS2 - ok
13:17:31.0637 0x0864 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:17:31.0637 0x0864 LSI_SCSI - ok
13:17:31.0668 0x0864 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
13:17:31.0668 0x0864 luafv - ok
13:17:31.0699 0x0864 [ 12E71DA845D76665B56753AD149E32B3, 0E403710CCBACD5AB85FD4C32AAB6CB2C27BC1F043E8008EE49EE96ECA944146 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
13:17:31.0699 0x0864 MBAMSwissArmy - ok
13:17:31.0777 0x0864 [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
13:17:31.0777 0x0864 McComponentHostService - ok
13:17:31.0824 0x0864 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:17:31.0824 0x0864 Mcx2Svc - ok
13:17:31.0855 0x0864 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:17:31.0855 0x0864 megasas - ok
13:17:31.0886 0x0864 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:17:31.0886 0x0864 MegaSR - ok
13:17:31.0933 0x0864 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
13:17:31.0933 0x0864 MMCSS - ok
13:17:31.0949 0x0864 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
13:17:31.0949 0x0864 Modem - ok
13:17:31.0964 0x0864 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:17:31.0980 0x0864 monitor - ok
13:17:32.0011 0x0864 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:17:32.0027 0x0864 mouclass - ok
13:17:32.0042 0x0864 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:17:32.0042 0x0864 mouhid - ok
13:17:32.0073 0x0864 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:17:32.0089 0x0864 mountmgr - ok
13:17:32.0151 0x0864 [ F60E017313E0F1EEB21D87C434CF538D, 5418A716AD23E21FFF7CDACD0C4EF2CD7F1D45E391E72196B4D036DBF9E9559C ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:17:32.0151 0x0864 MozillaMaintenance - ok
13:17:32.0198 0x0864 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
13:17:32.0198 0x0864 mpio - ok
13:17:32.0229 0x0864 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:17:32.0229 0x0864 mpsdrv - ok
13:17:32.0292 0x0864 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:17:32.0307 0x0864 MpsSvc - ok
13:17:32.0354 0x0864 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:17:32.0354 0x0864 MRxDAV - ok
13:17:32.0401 0x0864 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:17:32.0401 0x0864 mrxsmb - ok
13:17:32.0417 0x0864 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:17:32.0417 0x0864 mrxsmb10 - ok
13:17:32.0432 0x0864 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:17:32.0432 0x0864 mrxsmb20 - ok
13:17:32.0463 0x0864 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
13:17:32.0463 0x0864 msahci - ok
13:17:32.0479 0x0864 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:17:32.0495 0x0864 msdsm - ok
13:17:32.0526 0x0864 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
13:17:32.0526 0x0864 MSDTC - ok
13:17:32.0557 0x0864 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:17:32.0557 0x0864 Msfs - ok
13:17:32.0573 0x0864 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:17:32.0573 0x0864 mshidkmdf - ok
13:17:32.0604 0x0864 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:17:32.0604 0x0864 msisadrv - ok
13:17:32.0651 0x0864 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:17:32.0651 0x0864 MSiSCSI - ok
13:17:32.0666 0x0864 msiserver - ok
13:17:32.0682 0x0864 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:17:32.0682 0x0864 MSKSSRV - ok
13:17:32.0697 0x0864 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:17:32.0697 0x0864 MSPCLOCK - ok
13:17:32.0713 0x0864 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:17:32.0713 0x0864 MSPQM - ok
13:17:32.0729 0x0864 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:17:32.0729 0x0864 MsRPC - ok
13:17:32.0775 0x0864 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:17:32.0775 0x0864 mssmbios - ok
13:17:32.0775 0x0864 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:17:32.0791 0x0864 MSTEE - ok
13:17:32.0807 0x0864 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:17:32.0807 0x0864 MTConfig - ok
13:17:32.0807 0x0864 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
13:17:32.0822 0x0864 Mup - ok
13:17:32.0853 0x0864 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
13:17:32.0869 0x0864 napagent - ok
13:17:32.0900 0x0864 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:17:32.0916 0x0864 NativeWifiP - ok
13:17:32.0978 0x0864 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:17:32.0994 0x0864 NDIS - ok
13:17:33.0025 0x0864 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:17:33.0025 0x0864 NdisCap - ok
13:17:33.0041 0x0864 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:17:33.0041 0x0864 NdisTapi - ok
13:17:33.0072 0x0864 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:17:33.0072 0x0864 Ndisuio - ok
13:17:33.0119 0x0864 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:17:33.0119 0x0864 NdisWan - ok
13:17:33.0181 0x0864 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:17:33.0181 0x0864 NDProxy - ok
13:17:33.0228 0x0864 [ 284B0066C7BBB63E49E2D3E19ACC2F08, C360B0F25A07C5E886A1AD38697DED5D70454932F08DD399B29C558FFDFD6FF7 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll

Auro · Příspěvekod **Auro** » 04 srp 2014 13:25

13:17:33.0228 0x0864 Net Driver HPZ12 - ok
13:17:33.0259 0x0864 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:17:33.0259 0x0864 NetBIOS - ok
13:17:33.0306 0x0864 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:17:33.0321 0x0864 NetBT - ok
13:17:33.0337 0x0864 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] Netlogon C:\Windows\system32\lsass.exe
13:17:33.0337 0x0864 Netlogon - ok
13:17:33.0384 0x0864 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
13:17:33.0384 0x0864 Netman - ok
13:17:33.0462 0x0864 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:17:33.0462 0x0864 NetMsmqActivator - ok
13:17:33.0493 0x0864 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:17:33.0493 0x0864 NetPipeActivator - ok
13:17:33.0524 0x0864 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
13:17:33.0540 0x0864 netprofm - ok
13:17:33.0540 0x0864 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:17:33.0555 0x0864 NetTcpActivator - ok
13:17:33.0555 0x0864 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:17:33.0555 0x0864 NetTcpPortSharing - ok
13:17:33.0587 0x0864 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:17:33.0587 0x0864 nfrd960 - ok
13:17:33.0633 0x0864 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:17:33.0633 0x0864 NlaSvc - ok
13:17:33.0649 0x0864 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:17:33.0649 0x0864 Npfs - ok
13:17:33.0680 0x0864 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
13:17:33.0680 0x0864 nsi - ok
13:17:33.0711 0x0864 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:17:33.0711 0x0864 nsiproxy - ok
13:17:33.0774 0x0864 [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:17:33.0821 0x0864 Ntfs - ok
13:17:33.0821 0x0864 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
13:17:33.0836 0x0864 Null - ok
13:17:33.0852 0x0864 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:17:33.0852 0x0864 nvraid - ok
13:17:33.0899 0x0864 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:17:33.0899 0x0864 nvstor - ok
13:17:33.0914 0x0864 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:17:33.0914 0x0864 nv_agp - ok
13:17:33.0930 0x0864 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:17:33.0945 0x0864 ohci1394 - ok
13:17:33.0992 0x0864 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:17:33.0992 0x0864 ose - ok
13:17:34.0179 0x0864 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:17:34.0320 0x0864 osppsvc - ok
13:17:34.0367 0x0864 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:17:34.0367 0x0864 p2pimsvc - ok
13:17:34.0382 0x0864 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
13:17:34.0398 0x0864 p2psvc - ok
13:17:34.0507 0x0864 [ 34A947ACB48B2085D0FBF2D025169962, 2BC10BA4BF37EEB9CDD5E4CDB558FE5F73A121986F2DBA0D626A129A1FECB669 ] PACSPTISVR-Sound_Organizer C:\Program Files\Sony\Sound Organizer\Sony.Earth\PACSPTISVR.exe
13:17:34.0507 0x0864 PACSPTISVR-Sound_Organizer - ok
13:17:34.0538 0x0864 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:17:34.0538 0x0864 Parport - ok
13:17:34.0585 0x0864 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:17:34.0585 0x0864 partmgr - ok
13:17:34.0601 0x0864 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
13:17:34.0601 0x0864 Parvdm - ok
13:17:34.0647 0x0864 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:17:34.0647 0x0864 PcaSvc - ok
13:17:34.0679 0x0864 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
13:17:34.0679 0x0864 pci - ok
13:17:34.0725 0x0864 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
13:17:34.0725 0x0864 pciide - ok
13:17:34.0741 0x0864 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:17:34.0757 0x0864 pcmcia - ok
13:17:34.0772 0x0864 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
13:17:34.0772 0x0864 pcw - ok
13:17:34.0803 0x0864 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:17:34.0819 0x0864 PEAUTH - ok
13:17:34.0866 0x0864 [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
13:17:34.0897 0x0864 PeerDistSvc - ok
13:17:34.0975 0x0864 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
13:17:35.0022 0x0864 pla - ok
13:17:35.0069 0x0864 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:17:35.0084 0x0864 PlugPlay - ok
13:17:35.0131 0x0864 [ B1016E89CA8964EA0AB8F13466099CAB, FEE9D100B936FF3BAC97CF12F945BA9F00E9E69E7B1291641FB5ADB6DBBEA98C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
13:17:35.0131 0x0864 Pml Driver HPZ12 - ok
13:17:35.0147 0x0864 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:17:35.0147 0x0864 PNRPAutoReg - ok
13:17:35.0162 0x0864 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:17:35.0162 0x0864 PNRPsvc - ok
13:17:35.0225 0x0864 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:17:35.0240 0x0864 PolicyAgent - ok
13:17:35.0271 0x0864 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
13:17:35.0271 0x0864 Power - ok
13:17:35.0303 0x0864 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:17:35.0303 0x0864 PptpMiniport - ok
13:17:35.0303 0x0864 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:17:35.0303 0x0864 Processor - ok
13:17:35.0349 0x0864 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:17:35.0365 0x0864 ProfSvc - ok
13:17:35.0365 0x0864 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:17:35.0365 0x0864 ProtectedStorage - ok
13:17:35.0396 0x0864 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:17:35.0396 0x0864 Psched - ok
13:17:35.0443 0x0864 [ 40FEDD328F98245AD201CF5F9F311724, CE1582652B6A7CACE46D8B492CAA8E51EA46C3890EF640E8C5E1E053731A4D74 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
13:17:35.0443 0x0864 PxHelp20 - ok
13:17:35.0505 0x0864 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:17:35.0537 0x0864 ql2300 - ok
13:17:35.0568 0x0864 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:17:35.0568 0x0864 ql40xx - ok
13:17:35.0599 0x0864 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
13:17:35.0599 0x0864 QWAVE - ok
13:17:35.0615 0x0864 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:17:35.0615 0x0864 QWAVEdrv - ok
13:17:35.0630 0x0864 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:17:35.0630 0x0864 RasAcd - ok
13:17:35.0646 0x0864 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:17:35.0646 0x0864 RasAgileVpn - ok
13:17:35.0661 0x0864 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
13:17:35.0661 0x0864 RasAuto - ok
13:17:35.0677 0x0864 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:17:35.0677 0x0864 Rasl2tp - ok
13:17:35.0724 0x0864 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
13:17:35.0739 0x0864 RasMan - ok
13:17:35.0755 0x0864 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:17:35.0755 0x0864 RasPppoe - ok
13:17:35.0771 0x0864 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:17:35.0771 0x0864 RasSstp - ok
13:17:35.0786 0x0864 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:17:35.0802 0x0864 rdbss - ok
13:17:35.0817 0x0864 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:17:35.0817 0x0864 rdpbus - ok
13:17:35.0849 0x0864 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:17:35.0849 0x0864 RDPCDD - ok
13:17:35.0864 0x0864 [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
13:17:35.0880 0x0864 RDPDR - ok
13:17:35.0895 0x0864 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:17:35.0895 0x0864 RDPENCDD - ok
13:17:35.0895 0x0864 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:17:35.0911 0x0864 RDPREFMP - ok
13:17:35.0958 0x0864 [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:17:35.0958 0x0864 RdpVideoMiniport - ok
13:17:36.0005 0x0864 [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:17:36.0005 0x0864 RDPWD - ok
13:17:36.0051 0x0864 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:17:36.0067 0x0864 rdyboost - ok
13:17:36.0083 0x0864 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:17:36.0098 0x0864 RemoteAccess - ok
13:17:36.0114 0x0864 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:17:36.0129 0x0864 RemoteRegistry - ok
13:17:36.0176 0x0864 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:17:36.0176 0x0864 RpcEptMapper - ok
13:17:36.0192 0x0864 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
13:17:36.0192 0x0864 RpcLocator - ok
13:17:36.0223 0x0864 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
13:17:36.0239 0x0864 RpcSs - ok
13:17:36.0270 0x0864 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:17:36.0270 0x0864 rspndr - ok
13:17:36.0301 0x0864 [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
13:17:36.0301 0x0864 RTL8167 - ok
13:17:36.0348 0x0864 [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap C:\Windows\system32\drivers\vms3cap.sys
13:17:36.0348 0x0864 s3cap - ok
13:17:36.0363 0x0864 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs C:\Windows\system32\lsass.exe
13:17:36.0363 0x0864 SamSs - ok
13:17:36.0395 0x0864 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:17:36.0395 0x0864 sbp2port - ok
13:17:36.0426 0x0864 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:17:36.0426 0x0864 SCardSvr - ok
13:17:36.0457 0x0864 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:17:36.0457 0x0864 scfilter - ok
13:17:36.0535 0x0864 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
13:17:36.0566 0x0864 Schedule - ok
13:17:36.0597 0x0864 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:17:36.0597 0x0864 SCPolicySvc - ok
13:17:36.0644 0x0864 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:17:36.0644 0x0864 SDRSVC - ok
13:17:36.0675 0x0864 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:17:36.0691 0x0864 secdrv - ok
13:17:36.0707 0x0864 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
13:17:36.0722 0x0864 seclogon - ok
13:17:36.0753 0x0864 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\System32\sens.dll
13:17:36.0753 0x0864 SENS - ok
13:17:36.0785 0x0864 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:17:36.0785 0x0864 SensrSvc - ok
13:17:36.0800 0x0864 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:17:36.0800 0x0864 Serenum - ok
13:17:36.0816 0x0864 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:17:36.0816 0x0864 Serial - ok
13:17:36.0831 0x0864 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:17:36.0831 0x0864 sermouse - ok
13:17:36.0878 0x0864 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
13:17:36.0878 0x0864 SessionEnv - ok
13:17:36.0925 0x0864 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:17:36.0925 0x0864 sffdisk - ok
13:17:36.0925 0x0864 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:17:36.0925 0x0864 sffp_mmc - ok
13:17:36.0941 0x0864 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:17:36.0956 0x0864 sffp_sd - ok
13:17:36.0972 0x0864 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:17:36.0972 0x0864 sfloppy - ok
13:17:37.0019 0x0864 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:17:37.0034 0x0864 SharedAccess - ok
13:17:37.0065 0x0864 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:17:37.0081 0x0864 ShellHWDetection - ok
13:17:37.0097 0x0864 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
13:17:37.0097 0x0864 sisagp - ok
13:17:37.0128 0x0864 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:17:37.0128 0x0864 SiSRaid2 - ok
13:17:37.0143 0x0864 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:17:37.0143 0x0864 SiSRaid4 - ok
13:17:37.0159 0x0864 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:17:37.0159 0x0864 Smb - ok
13:17:37.0190 0x0864 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:17:37.0190 0x0864 SNMPTRAP - ok
13:17:37.0253 0x0864 [ 3A4F2C0BB87A0895ABEBA341AA1E341B, 4DADEEF3C5D181502D6F4A00FBBF3B001FA626E49569FB330D7AE2955CC7DE08 ] Sony PC Companion C:\Program Files\Sony\Sony PC Companion\PCCService.exe
13:17:37.0253 0x0864 Sony PC Companion - ok
13:17:37.0284 0x0864 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
13:17:37.0284 0x0864 spldr - ok
13:17:37.0331 0x0864 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
13:17:37.0346 0x0864 Spooler - ok
13:17:37.0471 0x0864 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
13:17:37.0565 0x0864 sppsvc - ok
13:17:37.0611 0x0864 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:17:37.0627 0x0864 sppuinotify - ok
13:17:37.0658 0x0864 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:17:37.0674 0x0864 srv - ok
13:17:37.0689 0x0864 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:17:37.0689 0x0864 srv2 - ok
13:17:37.0705 0x0864 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:17:37.0705 0x0864 srvnet - ok
13:17:37.0752 0x0864 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:17:37.0752 0x0864 SSDPSRV - ok
13:17:37.0799 0x0864 [ EF3458337D7341A05169CEFC73709264, C9D0AE966CFA02F7B72586C2A6E2AFA9818C9F4856A4E9625B79BC5A886FC193 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
13:17:37.0799 0x0864 SSPORT - ok
13:17:37.0830 0x0864 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:17:37.0830 0x0864 SstpSvc - ok
13:17:37.0861 0x0864 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:17:37.0861 0x0864 stexstor - ok
13:17:37.0908 0x0864 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
13:17:37.0939 0x0864 StiSvc - ok
13:17:37.0970 0x0864 [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
13:17:37.0970 0x0864 storflt - ok
13:17:37.0986 0x0864 [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc C:\Windows\system32\storsvc.dll
13:17:38.0001 0x0864 StorSvc - ok
13:17:38.0001 0x0864 [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc C:\Windows\system32\drivers\storvsc.sys
13:17:38.0001 0x0864 storvsc - ok
13:17:38.0017 0x0864 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
13:17:38.0017 0x0864 swenum - ok
13:17:38.0048 0x0864 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
13:17:38.0064 0x0864 swprv - ok
13:17:38.0126 0x0864 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
13:17:38.0157 0x0864 SysMain - ok
13:17:38.0204 0x0864 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
13:17:38.0204 0x0864 TabletInputService - ok
13:17:38.0251 0x0864 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
13:17:38.0267 0x0864 TapiSrv - ok
13:17:38.0298 0x0864 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
13:17:38.0298 0x0864 TBS - ok
13:17:38.0376 0x0864 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:17:38.0438 0x0864 Tcpip - ok
13:17:38.0501 0x0864 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:17:38.0516 0x0864 TCPIP6 - ok
13:17:38.0563 0x0864 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:17:38.0579 0x0864 tcpipreg - ok
13:17:38.0610 0x0864 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:17:38.0610 0x0864 TDPIPE - ok
13:17:38.0641 0x0864 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:17:38.0641 0x0864 TDTCP - ok
13:17:38.0688 0x0864 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:17:38.0688 0x0864 tdx - ok
13:17:38.0703 0x0864 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:17:38.0703 0x0864 TermDD - ok
13:17:38.0750 0x0864 [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService C:\Windows\System32\termsrv.dll
13:17:38.0781 0x0864 TermService - ok
13:17:38.0813 0x0864 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
13:17:38.0813 0x0864 Themes - ok
13:17:38.0828 0x0864 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
13:17:38.0828 0x0864 THREADORDER - ok
13:17:38.0859 0x0864 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
13:17:38.0859 0x0864 TrkWks - ok
13:17:38.0906 0x0864 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:17:38.0922 0x0864 TrustedInstaller - ok
13:17:38.0953 0x0864 [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:17:38.0953 0x0864 tssecsrv - ok
13:17:39.0000 0x0864 [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:17:39.0000 0x0864 TsUsbFlt - ok
13:17:39.0031 0x0864 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:17:39.0031 0x0864 tunnel - ok
13:17:39.0062 0x0864 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:17:39.0062 0x0864 uagp35 - ok
13:17:39.0093 0x0864 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:17:39.0093 0x0864 udfs - ok
13:17:39.0125 0x0864 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:17:39.0140 0x0864 UI0Detect - ok
13:17:39.0171 0x0864 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:17:39.0171 0x0864 uliagpkx - ok
13:17:39.0218 0x0864 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:17:39.0218 0x0864 umbus - ok
13:17:39.0249 0x0864 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:17:39.0249 0x0864 UmPass - ok
13:17:39.0296 0x0864 [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService C:\Windows\System32\umrdp.dll
13:17:39.0312 0x0864 UmRdpService - ok
13:17:39.0327 0x0864 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
13:17:39.0343 0x0864 upnphost - ok
13:17:39.0374 0x0864 [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
13:17:39.0374 0x0864 usbccgp - ok
13:17:39.0421 0x0864 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:17:39.0421 0x0864 usbcir - ok
13:17:39.0452 0x0864 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:17:39.0468 0x0864 usbehci - ok
13:17:39.0499 0x0864 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:17:39.0515 0x0864 usbhub - ok
13:17:39.0530 0x0864 [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:17:39.0530 0x0864 usbohci - ok
13:17:39.0546 0x0864 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:17:39.0546 0x0864 usbprint - ok
13:17:39.0593 0x0864 [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan C:\Windows\system32\drivers\usbscan.sys
13:17:39.0593 0x0864 usbscan - ok
13:17:39.0608 0x0864 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:17:39.0624 0x0864 USBSTOR - ok
13:17:39.0624 0x0864 [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:17:39.0639 0x0864 usbuhci - ok
13:17:39.0671 0x0864 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
13:17:39.0671 0x0864 UxSms - ok
13:17:39.0686 0x0864 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc C:\Windows\system32\lsass.exe
13:17:39.0686 0x0864 VaultSvc - ok
13:17:39.0717 0x0864 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:17:39.0717 0x0864 vdrvroot - ok
13:17:39.0764 0x0864 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
13:17:39.0780 0x0864 vds - ok
13:17:39.0795 0x0864 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:17:39.0811 0x0864 vga - ok
13:17:39.0811 0x0864 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:17:39.0827 0x0864 VgaSave - ok
13:17:39.0858 0x0864 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:17:39.0873 0x0864 vhdmp - ok
13:17:39.0889 0x0864 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
13:17:39.0905 0x0864 viaagp - ok
13:17:39.0920 0x0864 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
13:17:39.0920 0x0864 ViaC7 - ok
13:17:39.0951 0x0864 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
13:17:39.0951 0x0864 viaide - ok
13:17:39.0998 0x0864 [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus C:\Windows\system32\drivers\vmbus.sys
13:17:39.0998 0x0864 vmbus - ok
13:17:40.0014 0x0864 [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
13:17:40.0029 0x0864 VMBusHID - ok
13:17:40.0045 0x0864 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:17:40.0045 0x0864 volmgr - ok
13:17:40.0076 0x0864 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:17:40.0092 0x0864 volmgrx - ok
13:17:40.0107 0x0864 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:17:40.0123 0x0864 volsnap - ok
13:17:40.0154 0x0864 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:17:40.0154 0x0864 vsmraid - ok
13:17:40.0232 0x0864 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
13:17:40.0263 0x0864 VSS - ok
13:17:40.0279 0x0864 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
13:17:40.0279 0x0864 vwifibus - ok
13:17:40.0310 0x0864 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
13:17:40.0310 0x0864 W32Time - ok
13:17:40.0326 0x0864 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:17:40.0326 0x0864 WacomPen - ok
13:17:40.0357 0x0864 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:17:40.0357 0x0864 WANARP - ok
13:17:40.0357 0x0864 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:17:40.0357 0x0864 Wanarpv6 - ok
13:17:40.0451 0x0864 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:17:40.0497 0x0864 WatAdminSvc - ok
13:17:40.0560 0x0864 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
13:17:40.0607 0x0864 wbengine - ok
13:17:40.0638 0x0864 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:17:40.0638 0x0864 WbioSrvc - ok
13:17:40.0669 0x0864 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:17:40.0685 0x0864 wcncsvc - ok
13:17:40.0700 0x0864 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:17:40.0700 0x0864 WcsPlugInService - ok
13:17:40.0716 0x0864 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:17:40.0716 0x0864 Wd - ok
13:17:40.0778 0x0864 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:17:40.0809 0x0864 Wdf01000 - ok
13:17:40.0841 0x0864 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:17:40.0841 0x0864 WdiServiceHost - ok
13:17:40.0856 0x0864 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:17:40.0856 0x0864 WdiSystemHost - ok
13:17:40.0903 0x0864 [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
13:17:40.0919 0x0864 WebClient - ok
13:17:40.0934 0x0864 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:17:40.0934 0x0864 Wecsvc - ok
13:17:40.0950 0x0864 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:17:40.0950 0x0864 wercplsupport - ok
13:17:40.0981 0x0864 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
13:17:40.0981 0x0864 WerSvc - ok
13:17:41.0012 0x0864 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:17:41.0012 0x0864 WfpLwf - ok
13:17:41.0012 0x0864 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:17:41.0028 0x0864 WIMMount - ok
13:17:41.0090 0x0864 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
13:17:41.0121 0x0864 WinDefend - ok
13:17:41.0137 0x0864 WinHttpAutoProxySvc - ok
13:17:41.0199 0x0864 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:17:41.0215 0x0864 Winmgmt - ok
13:17:41.0277 0x0864 [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
13:17:41.0324 0x0864 WinRM - ok
13:17:41.0371 0x0864 [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:17:41.0387 0x0864 WinUsb - ok
13:17:41.0433 0x0864 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:17:41.0449 0x0864 Wlansvc - ok
13:17:41.0465 0x0864 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:17:41.0465 0x0864 WmiAcpi - ok
13:17:41.0496 0x0864 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:17:41.0511 0x0864 wmiApSrv - ok
13:17:41.0605 0x0864 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
13:17:41.0636 0x0864 WMPNetworkSvc - ok
13:17:41.0652 0x0864 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:17:41.0652 0x0864 WPCSvc - ok
13:17:41.0699 0x0864 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:17:41.0699 0x0864 WPDBusEnum - ok
13:17:41.0714 0x0864 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:17:41.0714 0x0864 ws2ifsl - ok
13:17:41.0761 0x0864 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\System32\wscsvc.dll
13:17:41.0761 0x0864 wscsvc - ok
13:17:41.0777 0x0864 WSearch - ok
13:17:41.0964 0x0864 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
13:17:42.0026 0x0864 wuauserv - ok
13:17:42.0057 0x0864 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:17:42.0073 0x0864 WudfPf - ok
13:17:42.0104 0x0864 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:17:42.0120 0x0864 WUDFRd - ok
13:17:42.0135 0x0864 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:17:42.0151 0x0864 wudfsvc - ok
13:17:42.0182 0x0864 [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc C:\Windows\System32\wwansvc.dll
13:17:42.0198 0x0864 WwanSvc - ok
13:17:42.0213 0x0864 ================ Scan global ===============================
13:17:42.0245 0x0864 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
13:17:42.0291 0x0864 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
13:17:42.0307 0x0864 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
13:17:42.0354 0x0864 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
13:17:42.0385 0x0864 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
13:17:42.0401 0x0864 [ Global ] - ok
13:17:42.0401 0x0864 ================ Scan MBR ==================================
13:17:42.0416 0x0864 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:17:42.0572 0x0864 \Device\Harddisk0\DR0 - ok
13:17:42.0572 0x0864 [ 180DBDE3AF7EA48B3DB3AC27B1DDF401 ] \Device\Harddisk1\DR2
13:17:42.0572 0x0864 \Device\Harddisk1\DR2 - ok
13:17:42.0572 0x0864 ================ Scan VBR ==================================
13:17:42.0588 0x0864 [ 92BB3F8A736B3D177EC66829D25300C2 ] \Device\Harddisk0\DR0\Partition1
13:17:42.0603 0x0864 \Device\Harddisk0\DR0\Partition1 - ok
13:17:42.0603 0x0864 [ 1758B6BD28BEE31B2F569EE64C274C48 ] \Device\Harddisk0\DR0\Partition2
13:17:42.0619 0x0864 \Device\Harddisk0\DR0\Partition2 - ok
13:17:42.0619 0x0864 [ FD6B390C4E164B64BADC588BA7FAD47C ] \Device\Harddisk1\DR2\Partition1
13:17:42.0635 0x0864 \Device\Harddisk1\DR2\Partition1 - ok
13:17:42.0635 0x0864 ================ Scan generic autorun ======================
13:17:42.0744 0x0864 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
13:17:42.0759 0x0864 Adobe ARM - ok
13:17:42.0931 0x0864 [ 8335E440B93C3FD3B699B74583DDE295, CE9C574954EB46674A5753E389FDA6C362C53FDEED3D781A23952F70AEEB1CC9 ] C:\Program Files\AVG\AVG2013\avgui.exe
13:17:43.0056 0x0864 AVG_UI - ok
13:17:43.0087 0x0864 [ F71E9F4B1A816C5A180901372415BFF5, E411C03C19B61E1994E9EA7937A3A8C08AD304D08CABC77280859F677BECC124 ] C:\Windows\system32\igfxtray.exe
13:17:43.0087 0x0864 IgfxTray - ok
13:17:43.0103 0x0864 [ 27044650FA30414BEC7F9BEB7F937386, 0521B0546EC39015AB613E757FDF915D3319FE1207ECC80E582DEF8447F125B9 ] C:\Windows\system32\hkcmd.exe
13:17:43.0103 0x0864 HotKeysCmds - ok
13:17:43.0118 0x0864 [ 313C8854EBDAFA0DDA8AD4757BD0E5DC, DA9002161C080232097D6D41FDB4ECB4923654D84406D39758CD578DF8D122F3 ] C:\Windows\system32\igfxpers.exe
13:17:43.0134 0x0864 Persistence - ok
13:17:43.0181 0x0864 [ 12916E0642E92561C98B18A2A2D01B14, 4C28478CFE25E1F29AEF8BA6F2FAF3E6C2B34BF18CA77052813903E10ADDCCD5 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
13:17:43.0196 0x0864 SunJavaUpdateSched - ok
13:17:43.0259 0x0864 [ B5C2B8DD12E1DDA55DDA0A22B11200C4, 5FD64D505CCFB81F7AE1DD23516273930F4983D632A0DEF1ED93E2090986E7D7 ] C:\Windows\Samsung\PanelMgr\ssmmgr.exe
13:17:43.0274 0x0864 Samsung PanelMgr - ok
13:17:43.0461 0x0864 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
13:17:43.0493 0x0864 Sidebar - ok
13:17:43.0508 0x0864 [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
13:17:43.0524 0x0864 mctadmin - ok
13:17:43.0555 0x0864 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
13:17:43.0586 0x0864 Sidebar - ok
13:17:43.0586 0x0864 [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
13:17:43.0586 0x0864 mctadmin - ok
13:17:43.0617 0x0864 [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
13:17:43.0633 0x0864 swg - ok
13:17:43.0727 0x0864 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Lucie\AppData\Local\Google\Update\GoogleUpdate.exe
13:17:43.0727 0x0864 Google Update - ok
13:17:43.0773 0x0864 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\sidebar.exe
13:17:43.0805 0x0864 Sidebar - ok
13:17:43.0867 0x0864 [ 9EB925EDC8CF1C3D06E50E9348B54A0A, 99C1F8D40A65E1F4975B0D1180B3056712832E0E8FBE829785FDD505B6222AEA ] C:\Users\Lucie\AppData\Local\Facebook\Update\FacebookUpdate.exe
13:17:43.0883 0x0864 Facebook Update - ok
13:17:43.0914 0x0864 [ 00E10C74F2C0350277B5B0500D51D7D2, 92A41B0CCACE751DDBF0369354FC5182B94B035775CE79BE96C0CF6E944B9024 ] C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
13:17:43.0929 0x0864 Sony PC Companion - ok
13:17:43.0992 0x0864 Zoner Photo Studio Service 16 - ok
13:17:44.0054 0x0864 [ 09FC318C96B9319B3005C15F3687F1D5, D0D63F14835073C7A70B89BD292597F3332A8A67F28C7F9CC6A112960563325D ] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE
13:17:44.0085 0x0864 Zoner Photo Studio Autoupdate - ok
13:17:44.0085 0x0864 Waiting for KSN requests completion. In queue: 101
13:17:45.0177 0x0864 AV detected via SS2: AVG AntiVirus Business Edition, C:\Program Files\AVG\AVG2013\avgwsc.exe ( 13.0.0.3300 ), 0x41000 ( enabled : updated )
13:17:45.0177 0x0864 FW detected via SS2: AVG AntiVirus Business Edition, C:\Program Files\AVG\AVG2013\avgwsc.exe ( 13.0.0.3300 ), 0x41010 ( enabled )
13:17:48.0360 0x0864 ============================================================
13:17:48.0360 0x0864 Scan finished
13:17:48.0360 0x0864 ============================================================
13:17:48.0360 0x105c Detected object count: 0
13:17:48.0360 0x105c Actual detected object count: 0
13:18:02.0649 0x0e94 Deinitialize success

Příspěvekod **jaro3** » 04 srp 2014 18:57

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Auro · Příspěvekod **Auro** » 05 srp 2014 13:19

ComboFix 14-08-05.01 - Lucie 05.08.2014 13:09:55.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2013.1074 [GMT 2:00]
Spuštěný z: c:\users\Lucie\Desktop\ComboFix.exe
AV: AVG AntiVirus Business Edition *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG AntiVirus Business Edition *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG AntiVirus Business Edition *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\DEBUG.log
c:\windows\system32\SOCKETX.DLL
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-05 do 2014-08-05 )))))))))))))))))))))))))))))))
.
.
2014-08-05 11:15 . 2014-08-05 11:15 -------- d-----w- c:\users\Lucie\AppData\Local\temp
2014-08-05 11:15 . 2014-08-05 11:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\users\Lucie\AppData\Local\AskPartnerNetwork
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\programdata\AskPartnerNetwork
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\program files\AskPartnerNetwork
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\programdata\APN
2014-08-05 05:25 . 2014-08-05 05:25 -------- d-----w- c:\programdata\Oracle
2014-08-05 05:23 . 2014-08-05 05:23 -------- d-----w- c:\program files\Common Files\Java
2014-08-05 05:23 . 2014-08-05 05:23 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-08-05 05:23 . 2014-08-05 05:23 -------- d-----w- c:\program files\Java
2014-07-31 11:20 . 2014-08-04 11:03 29160 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-07-31 11:20 . 2014-07-31 11:20 -------- d-----w- c:\programdata\RogueKiller
2014-07-31 11:17 . 2014-07-31 11:17 -------- d-----w- c:\windows\ERUNT
2014-07-29 11:27 . 2014-08-04 10:53 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-07-29 11:27 . 2014-07-29 11:27 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-07-29 11:27 . 2014-07-29 11:27 -------- d-----w- c:\programdata\Malwarebytes
2014-07-29 11:27 . 2014-05-12 05:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-07-29 11:27 . 2014-05-12 05:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-07-29 11:27 . 2014-05-12 05:25 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-07-29 11:18 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-07-29 11:17 . 2014-07-31 11:11 -------- d-----w- C:\AdwCleaner
2014-07-25 07:59 . 2014-07-25 07:59 -------- d-----w- c:\program files\DDR - Memory Card Recovery(Demo)
2014-07-25 07:58 . 2014-07-25 07:58 -------- d-----w- c:\users\Lucie\AppData\Local\Programs
2014-07-09 06:43 . 2014-06-18 01:52 868864 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-09 10:48 . 2012-04-05 05:10 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 10:48 . 2011-06-03 04:28 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-08 09:06 . 2014-06-12 05:57 2742784 ----a-w- c:\windows\system32\rdpcorets.dll
2014-05-08 09:06 . 2014-06-12 05:57 13824 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-07-13 39408]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"Sony PC Companion"="c:\program files\Sony\Sony PC Companion\PCCompanion.exe" [2014-05-23 466656]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE" [2014-06-16 833024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2014-01-20 4411952]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-11-13 138784]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-11-13 172064]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-11-13 173600]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\ssmmgr.exe" [2009-10-13 606208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-07-25 256896]
"ApnTBMon"="c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2014-07-31 1957784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstall ... er=9.0.914" [?]
.
c:\users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Facebook Messenger.lnk - c:\users\Lucie\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe [2013-3-7 248240]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.318\SSScheduler.exe [2013-2-5 272248]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 avgfws;AVG Firewall;c:\program files\AVG\AVG2013\avgfws.exe [2013-10-22 1432080]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
R3 GDOCService;gDoc PDF Service;c:\users\Lucie\Downloads\MWFSrv.exe [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2012-08-09 12400]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-06-18 108032]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-02-05 235216]
R3 PACSPTISVR-Sound_Organizer;PACSPTISVR-Sound_Organizer;c:\program files\Sony\Sound Organizer\Sony.Earth\PACSPTISVR.exe [2010-11-19 157024]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-16 1343400]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [2013-07-19 60216]
S0 Avglogx;AVG Logging Driver;c:\windows\system32\DRIVERS\avglogx.sys [2013-07-19 246072]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2013-10-23 39224]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6x.sys [2012-09-04 50296]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdriverx.sys [2013-11-25 208184]
S1 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\avgidsshimx.sys [2013-10-23 22328]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2013-07-19 171320]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2014-04-15 182072]
S2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
S2 APNMCP;Ask Update Service;c:\program files\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-07-31 165784]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [2007-08-13 5120]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 10:48]
.
2014-08-05 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job
- c:\users\Lucie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-12 05:18]
.
2014-08-05 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job
- c:\users\Lucie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-12 05:18]
.
2014-08-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-13 04:48]
.
2014-08-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-13 04:48]
.
2014-08-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job
- c:\users\Lucie\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-11 09:43]
.
2014-08-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job
- c:\users\Lucie\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-11 09:43]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyOverride = 192.168.*.*;*.mu-st.cz;*.strakonice.eu;*.csobpoj.cz;*.csob.cz;wwwinfo.mfcr.cz;adisrws.mfcr.cz;<local>
uInternet Settings,ProxyServer = web.strakonice.eu:3128
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: SmarThru4 Capture Selection - c:\program files\SmarThru 4\WebCapture.dll2.htm
IE: SmarThru4 Save as HTML - c:\program files\SmarThru 4\WebCapture.dll1.htm
IE: SmarThru4 Save Selected Text - c:\program files\SmarThru 4\WebCapture.dll.htm
IE: SmarThru4 Web Capture - c:\program files\SmarThru 4\WebCapture.dll
TCP: DhcpNameServer = 192.168.255.1
DPF: {EC71A2BE-E211-41F9-BCAF-4EFF13426DFE} - hxxps://shop.rossmanncz.orwonet.de/shop ... upload.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-Zoner Photo Studio Service 16 - c:\program files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEc:\program files\Zoner\Photo Studio 16\Program32\ZPSService.exe
AddRemove-PowerKey3.0 - c:\windows\iun6002.exe
AddRemove-FileZilla Client - c:\software\FileZilla FTP Client\uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-08-05 13:17:31
ComboFix-quarantined-files.txt 2014-08-05 11:17
.
Před spuštěním: Volných bajtů: 148 689 485 824
Po spuštění: Volných bajtů: 148 591 325 184
.
- - End Of File - - E9D760E276F8AB37B80736776657281A
A36C5E4F47E84449FF07ED3517B43A31

Příspěvekod **Orcus** » 05 srp 2014 18:45

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok).
Zkopíruj do něj následující celý text označený červeně:

ClearJavaCache::
KillAll::

File::
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job

Folder::
c:\program files (x86)\Google\Update\
c:\users\Lucie\AppData\Local\Google\Update
c:\users\Lucie\AppData\Local\Facebook\Update

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstall ... er=9.0.914" [?]

DDS::
uInternet Settings,ProxyOverride = 192.168.*.*;*.mu-st.cz;*.strakonice.eu;*.csobpoj.cz;*.csob.cz;wwwinfo.mfcr.cz;adisrws.mfcr.cz;<local>
uInternet Settings,ProxyServer = web.strakonice.eu:3128
DPF: {EC71A2BE-E211-41F9-BCAF-4EFF13426DFE} - hxxps://shop.rossmanncz.orwonet.de/shop ... upload.cab

RegLock::
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe
a když se oba soubory překryjí, skript upusť.

- Automaticky se spustí ComboFix, oprava může trvat i déle než 10 minut. ! Nech ComboFix dokončit svou práci !
- Vlož sem log, který vyběhne v závěru čistícího procesu

Upozornění : Může se stát, že po aplikaci skriptu a restartu počítače Windows nenaběhnou, pak znovu restartuj počítač, mačkej F8 a pak zvol poslední známou funkční konfiguraci.

====================================================

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Auro · Příspěvekod **Auro** » 06 srp 2014 10:18

tak tady jsou logy. akorat tyto dva radky - uInternet Settings,ProxyOverride = 192.168.*.*;*.mu-st.cz;*.strakonice.eu;*.csobpoj.cz;*.csob.cz;wwwinfo.mfcr.cz;adisrws.mfcr.cz;<local>
uInternet Settings,ProxyServer = web.strakonice.eu:3128 - jsem vynechal nebot bez tohoto proxy serveru tu nejde internet. minule zasahy do registru nebo jak to nazvat mi ho uplne vyhodily coz nebyl problem, nastavil jsem to zpet. tak snad jsem nic nepokazil.

ComboFix 14-08-05.01 - Lucie 06.08.2014 9:51.2.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2013.1098 [GMT 2:00]
Spuštěný z: e:\pc\ComboFix.exe
Použité ovládací přepínače :: c:\users\Lucie\Desktop\CFScript.txt
AV: AVG AntiVirus Business Edition *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG AntiVirus Business Edition *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG AntiVirus Business Edition *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\Adobe Flash Player Updater.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Lucie\AppData\Local\Facebook\Update
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdateHelper.msi
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ar.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bg.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bn.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ca.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_cs.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_da.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_de.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_el.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en-GB.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es-419.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_et.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fa.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fi.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fil.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fr.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_gu.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hi.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hr.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hu.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_id.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_is.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_it.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_iw.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ja.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_kn.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ko.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lt.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lv.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ml.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_mr.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ms.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_nl.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_no.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_or.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pl.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-BR.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-PT.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ro.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ru.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sk.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sl.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sr.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sv.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ta.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_te.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_th.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_tr.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_uk.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ur.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_vi.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-CN.dll
c:\users\Lucie\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-TW.dll
c:\users\Lucie\AppData\Local\Facebook\Update\FacebookUpdate.exe
c:\users\Lucie\AppData\Local\Google\Update
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleCrashHandler.exe
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleUpdate.exe
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateBroker.exe
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateHelper.msi
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateSetup.exe
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdate.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_am.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ar.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_bg.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_bn.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ca.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_cs.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_da.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_de.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_el.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_en-GB.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_en.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_es-419.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_es.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_et.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_fa.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_fi.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_fil.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_fr.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_gu.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_hi.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_hr.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_hu.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_id.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_is.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_it.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_iw.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ja.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_kn.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ko.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_lt.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_lv.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ml.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_mr.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ms.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_nl.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_no.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_pl.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_pt-BR.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_pt-PT.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ro.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ru.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_sk.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_sl.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_sr.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_sv.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_sw.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ta.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_te.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_th.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_tr.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_uk.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_ur.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_vi.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_zh-CN.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\goopdateres_zh-TW.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\psmachine.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\psmachine_64.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\psuser.dll
c:\users\Lucie\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll
c:\users\Lucie\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe
c:\users\Lucie\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_35.0.1916.153_chrome_updater.exe
c:\users\Lucie\AppData\Local\Google\Update\Download\{CC72D951-7724-433E-8C89-71C85F8C7DBB}\GoogleUpdateSetup.exe
c:\users\Lucie\AppData\Local\Google\Update\GoogleUpdate.exe
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1828856494-8014242-1113375377-1000UA.job
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-06 do 2014-08-06 )))))))))))))))))))))))))))))))
.
.
2014-08-06 07:57 . 2014-08-06 08:00 -------- d-----w- c:\users\Lucie\AppData\Local\temp
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\users\Lucie\AppData\Local\AskPartnerNetwork
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\programdata\AskPartnerNetwork
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\program files\AskPartnerNetwork
2014-08-05 05:26 . 2014-08-05 05:26 -------- d-----w- c:\programdata\APN
2014-08-05 05:25 . 2014-08-05 05:25 -------- d-----w- c:\programdata\Oracle
2014-08-05 05:23 . 2014-08-05 05:23 -------- d-----w- c:\program files\Common Files\Java
2014-08-05 05:23 . 2014-08-05 05:23 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-08-05 05:23 . 2014-08-05 05:23 -------- d-----w- c:\program files\Java
2014-07-31 11:20 . 2014-08-04 11:03 29160 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-07-31 11:20 . 2014-07-31 11:20 -------- d-----w- c:\programdata\RogueKiller
2014-07-31 11:17 . 2014-07-31 11:17 -------- d-----w- c:\windows\ERUNT
2014-07-29 11:27 . 2014-08-04 10:53 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-07-29 11:27 . 2014-07-29 11:27 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-07-29 11:27 . 2014-07-29 11:27 -------- d-----w- c:\programdata\Malwarebytes
2014-07-29 11:27 . 2014-05-12 05:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-07-29 11:27 . 2014-05-12 05:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-07-29 11:27 . 2014-05-12 05:25 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-07-29 11:18 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-07-29 11:17 . 2014-07-31 11:11 -------- d-----w- C:\AdwCleaner
2014-07-25 07:59 . 2014-07-25 07:59 -------- d-----w- c:\program files\DDR - Memory Card Recovery(Demo)
2014-07-25 07:58 . 2014-07-25 07:58 -------- d-----w- c:\users\Lucie\AppData\Local\Programs
2014-07-09 06:43 . 2014-06-18 01:52 868864 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-09 10:48 . 2012-04-05 05:10 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 10:48 . 2011-06-03 04:28 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-08 09:06 . 2014-06-12 05:57 2742784 ----a-w- c:\windows\system32\rdpcorets.dll
2014-05-08 09:06 . 2014-06-12 05:57 13824 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-07-13 39408]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"Sony PC Companion"="c:\program files\Sony\Sony PC Companion\PCCompanion.exe" [2014-05-23 466656]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE" [2014-06-16 833024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2014-01-20 4411952]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-11-13 138784]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-11-13 172064]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-11-13 173600]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\ssmmgr.exe" [2009-10-13 606208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-07-25 256896]
"ApnTBMon"="c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2014-07-31 1957784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstall ... er=9.0.914" [?]
.
c:\users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Facebook Messenger.lnk - c:\users\Lucie\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe [2013-3-7 248240]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.318\SSScheduler.exe [2013-2-5 272248]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R3 GDOCService;gDoc PDF Service;c:\users\Lucie\Downloads\MWFSrv.exe [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2012-08-09 12400]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-06-18 108032]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-02-05 235216]
R3 PACSPTISVR-Sound_Organizer;PACSPTISVR-Sound_Organizer;c:\program files\Sony\Sound Organizer\Sony.Earth\PACSPTISVR.exe [2010-11-19 157024]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-16 1343400]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [2013-07-19 60216]
S0 Avglogx;AVG Logging Driver;c:\windows\system32\DRIVERS\avglogx.sys [2013-07-19 246072]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2013-10-23 39224]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6x.sys [2012-09-04 50296]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdriverx.sys [2013-11-25 208184]
S1 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\avgidsshimx.sys [2013-10-23 22328]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2013-07-19 171320]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2014-04-15 182072]
S2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
S2 APNMCP;Ask Update Service;c:\program files\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-07-31 165784]
S2 avgfws;AVG Firewall;c:\program files\AVG\AVG2013\avgfws.exe [2013-10-22 1432080]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [2007-08-13 5120]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyOverride = 192.168.*.*;*.mu-st.cz;*.strakonice.eu;*.csobpoj.cz;*.csob.cz;wwwinfo.mfcr.cz;adisrws.mfcr.cz;<local>
uInternet Settings,ProxyServer = web.strakonice.eu:3128
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: SmarThru4 Capture Selection - c:\program files\SmarThru 4\WebCapture.dll2.htm
IE: SmarThru4 Save as HTML - c:\program files\SmarThru 4\WebCapture.dll1.htm
IE: SmarThru4 Save Selected Text - c:\program files\SmarThru 4\WebCapture.dll.htm
IE: SmarThru4 Web Capture - c:\program files\SmarThru 4\WebCapture.dll
TCP: DhcpNameServer = 192.168.255.1
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\progra~1\AVG\AVG2013\avgrsx.exe
c:\program files\AVG\AVG2013\avgcsrvx.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\AVG\AVG2013\avgnsx.exe
c:\program files\AVG\AVG2013\avgemcx.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\Sony\Sony PC Companion\PCCompanionInfo.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2014-08-06 10:04:27 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-08-06 08:04
ComboFix2.txt 2014-08-05 11:17
.
Před spuštěním: Volných bajtů: 148 371 800 064
Po spuštění: Volných bajtů: 148 317 839 360
.
- - End Of File - - BDC5C3D5906471A924F9227CA808B057
A36C5E4F47E84449FF07ED3517B43A31

---------------------------------------------------------------------------------------------------------------------------------------------------------------

aswMBR version 1.0.1.2041 Copyright(c) 2014 AVAST Software
Run date: 2014-08-06 10:06:20
-----------------------------
10:06:20.081 OS Version: Windows 6.1.7601 Service Pack 1
10:06:20.081 Number of processors: 2 586 0x170A
10:06:20.081 ComputerName: LUCIEPC UserName: Lucie
10:06:22.967 Initialize success
10:06:22.998 VM: initialized successfully
10:06:23.014 VM: Intel CPU supported
10:06:47.569 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
10:06:47.569 Disk 0 Vendor: ST3250318AS CC45 Size: 238418MB BusType: 11
10:06:47.662 Disk 0 MBR read successfully
10:06:47.678 Disk 0 MBR scan
10:06:47.678 Disk 0 Windows 7 default MBR code
10:06:47.678 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 78 MB offset 63
10:06:47.694 Disk 0 Partition 2 80 (A) 0B FAT32 Null 4.1 2055 MB offset 160650
10:06:47.694 Disk 0 Boot: Null 4.1 code=1
10:06:47.709 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 236283 MB offset 4370432
10:06:47.725 Disk 0 scanning sectors +488278016
10:06:47.881 Disk 0 scanning C:\Windows\system32\drivers
10:06:55.759 Service scanning
10:07:16.226 Modules scanning
10:07:24.697 Disk 0 trace - called modules:
10:07:24.697
10:07:24.712 Scan finished successfully
10:08:02.870 Disk 0 MBR has been saved successfully to "C:\Users\Lucie\Desktop\MBR.dat"
10:08:02.886 The log file has been saved successfully to "C:\Users\Lucie\Desktop\aswMBR.txt"

Prosím kontolu logu (facbook viry a spam) Vyřešeno

Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Re: Prosím kontolu logu (facbook viry a spam)

Kdo je online