Zpomaleny Start up her Vyřešeno

[autoprd]

Ahoj, prosím vás nedávno mi přišel uplně prazdny ntb ze záruky takže jsem nainstaloval aktualni drivery a pod. a pc šlapal perfektně hend první dva dny hry makali super Mass Effects 3 na plny detaily a spouštěly se do 5 sekund ted čekám tak 5-10 minut než se spustí hra o velikosti 600mb

Pls o log :)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:57, on 2.5.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Users\Woytman\Desktop\HijackThis(1).exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\coIEPlg.dll
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-2000845088-3818977652-3785840965-1002\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun (User '?')
O4 - HKUS\S-1-5-21-2000845088-3818977652-3785840965-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-21-2000845088-3818977652-3785840965-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9536 bytes

[Reklama]

[jaro3]

Ahoj!
Nějaký cracky a keygeny?

Norton Internet Security---to máš legal?

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-2000845088-3818977652-3785840965-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

[autoprd]

Ahoj tak hry se spouští pomalu i u orginálek jako je GTA IV (original) Masseffet 3(Or) Mafia II (OR) Emergency IV (OR) a spousta Hjt zkliknu
Norton je od výrobcu NTB original je to trialka na 60 dní nechám ho kdyžtak sem chtěll Avast ale ten žere Ramku, nebo Aviru :) Co doporučuješ ? :)



Mvaw Malwarebytes Anti-Malware (PRO) 1.61.0.1400
http://www.malwarebytes.org

Verze databáze: v2012.05.02.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Woytman :: WOYTMAN-PC [administrátor]

Ochrana: Zakázána

2.5.2012 21:10:57
mbam-log-2012-05-02 (21-10-57).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 550627
Uplynulý čas: 2 hodin, 18 minut, 10 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 1
HKCR\regfile\shell\open\command| (Broken.OpenCommand) -> Špatný: ("regedit.exe" "%1") Dobrý: (regedit.exe "%1") -> Žádná instrukce nebyla provedena.

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[autoprd]

18:17:18.0195 3340 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
18:17:18.0601 3340 ============================================================
18:17:18.0601 3340 Current date / time: 2012/05/03 18:17:18.0601
18:17:18.0601 3340 SystemInfo:
18:17:18.0601 3340
18:17:18.0601 3340 OS Version: 6.1.7601 ServicePack: 1.0
18:17:18.0601 3340 Product type: Workstation
18:17:18.0601 3340 ComputerName: WOYTMAN-PC
18:17:18.0601 3340 UserName: Woytman
18:17:18.0601 3340 Windows directory: C:\Windows
18:17:18.0601 3340 System windows directory: C:\Windows
18:17:18.0601 3340 Running under WOW64
18:17:18.0601 3340 Processor architecture: Intel x64
18:17:18.0601 3340 Number of processors: 4
18:17:18.0601 3340 Page size: 0x1000
18:17:18.0601 3340 Boot type: Normal boot
18:17:18.0601 3340 ============================================================
18:17:19.0474 3340 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:17:19.0490 3340 ============================================================
18:17:19.0490 3340 \Device\Harddisk0\DR0:
18:17:19.0490 3340 MBR partitions:
18:17:19.0490 3340 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x251C800, BlocksNum 0x32000
18:17:19.0490 3340 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x254E800, BlocksNum 0x48308800
18:17:19.0490 3340 ============================================================
18:17:19.0506 3340 C: <-> \Device\Harddisk0\DR0\Partition1
18:17:19.0506 3340 ============================================================
18:17:19.0506 3340 Initialize success
18:17:19.0506 3340 ============================================================
18:17:21.0019 4604 ============================================================
18:17:21.0019 4604 Scan started
18:17:21.0019 4604 Mode: Manual;
18:17:21.0019 4604 ============================================================
18:17:21.0830 4604 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:17:21.0846 4604 1394ohci - ok
18:17:21.0924 4604 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:17:21.0955 4604 ACPI - ok
18:17:22.0002 4604 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:17:22.0017 4604 AcpiPmi - ok
18:17:22.0158 4604 AdobeActiveFileMonitor9.0 (1474f121c3df1232d3e7239c03691ee6) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
18:17:22.0173 4604 AdobeActiveFileMonitor9.0 - ok
18:17:22.0360 4604 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:17:22.0392 4604 AdobeFlashPlayerUpdateSvc - ok
18:17:22.0485 4604 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
18:17:22.0485 4604 adp94xx - ok
18:17:22.0594 4604 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
18:17:22.0610 4604 adpahci - ok
18:17:22.0657 4604 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
18:17:22.0657 4604 adpu320 - ok
18:17:22.0688 4604 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:17:22.0688 4604 AeLookupSvc - ok
18:17:22.0782 4604 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:17:22.0813 4604 AFD - ok
18:17:22.0875 4604 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:17:22.0906 4604 agp440 - ok
18:17:22.0953 4604 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:17:22.0984 4604 ALG - ok
18:17:23.0016 4604 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:17:23.0016 4604 aliide - ok
18:17:23.0047 4604 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:17:23.0078 4604 amdide - ok
18:17:23.0125 4604 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
18:17:23.0125 4604 AmdK8 - ok
18:17:23.0125 4604 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
18:17:23.0156 4604 AmdPPM - ok
18:17:23.0187 4604 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:17:23.0187 4604 amdsata - ok
18:17:23.0296 4604 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
18:17:23.0312 4604 amdsbs - ok
18:17:23.0343 4604 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:17:23.0343 4604 amdxata - ok
18:17:23.0390 4604 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:17:23.0390 4604 AppID - ok
18:17:23.0437 4604 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:17:23.0468 4604 AppIDSvc - ok
18:17:23.0499 4604 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:17:23.0515 4604 Appinfo - ok
18:17:23.0593 4604 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
18:17:23.0593 4604 arc - ok
18:17:23.0640 4604 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
18:17:23.0640 4604 arcsas - ok
18:17:23.0811 4604 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:17:23.0889 4604 aspnet_state - ok
18:17:23.0936 4604 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:17:23.0952 4604 AsyncMac - ok
18:17:24.0014 4604 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:17:24.0030 4604 atapi - ok
18:17:24.0092 4604 AthBTPort (cbe61b4494165f458bd87e37181ee934) C:\Windows\system32\DRIVERS\btath_flt.sys
18:17:24.0092 4604 AthBTPort - ok
18:17:24.0186 4604 AtherosSvc (21753130331188c4b474e1d3b396e629) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
18:17:24.0201 4604 AtherosSvc - ok
18:17:24.0622 4604 athr (de9fb3dade8fd39ae2c587df22d36b8e) C:\Windows\system32\DRIVERS\athrx.sys
18:17:24.0716 4604 athr - ok
18:17:24.0856 4604 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:17:24.0872 4604 AudioEndpointBuilder - ok
18:17:24.0888 4604 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:17:24.0888 4604 AudioSrv - ok
18:17:24.0919 4604 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:17:24.0919 4604 AxInstSV - ok
18:17:24.0997 4604 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
18:17:25.0028 4604 b06bdrv - ok
18:17:25.0090 4604 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:17:25.0106 4604 b57nd60a - ok
18:17:25.0184 4604 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:17:25.0215 4604 BDESVC - ok
18:17:25.0246 4604 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:17:25.0278 4604 Beep - ok
18:17:25.0387 4604 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:17:25.0402 4604 BFE - ok
18:17:25.0652 4604 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120413.001\BHDrvx64.sys
18:17:25.0668 4604 BHDrvx64 - ok
18:17:25.0902 4604 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:17:25.0917 4604 BITS - ok
18:17:26.0011 4604 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
18:17:26.0026 4604 blbdrive - ok
18:17:26.0104 4604 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:17:26.0120 4604 bowser - ok
18:17:26.0167 4604 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
18:17:26.0198 4604 BrFiltLo - ok
18:17:26.0198 4604 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
18:17:26.0198 4604 BrFiltUp - ok
18:17:26.0292 4604 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:17:26.0292 4604 Browser - ok
18:17:26.0323 4604 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:17:26.0370 4604 Brserid - ok
18:17:26.0385 4604 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:17:26.0494 4604 BrSerWdm - ok
18:17:26.0510 4604 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:17:26.0510 4604 BrUsbMdm - ok
18:17:26.0541 4604 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:17:26.0541 4604 BrUsbSer - ok
18:17:26.0635 4604 BTATH_A2DP (fe70889a85c57a9268101b2db0474509) C:\Windows\system32\drivers\btath_a2dp.sys
18:17:26.0650 4604 BTATH_A2DP - ok
18:17:26.0728 4604 BTATH_BUS (a83a91d07d1fe6bbe7a9db46ca00434b) C:\Windows\system32\DRIVERS\btath_bus.sys
18:17:26.0760 4604 BTATH_BUS - ok
18:17:26.0869 4604 BTATH_HCRP (c864ff85ee16d61c2bdd5ef76824625f) C:\Windows\system32\DRIVERS\btath_hcrp.sys
18:17:26.0916 4604 BTATH_HCRP - ok
18:17:26.0947 4604 BTATH_LWFLT (0dea505efb5d771826d177ef8b8a208f) C:\Windows\system32\DRIVERS\btath_lwflt.sys
18:17:26.0978 4604 BTATH_LWFLT - ok
18:17:27.0025 4604 BTATH_RCP (724c8088c96efe7a3e63fec21d4681c0) C:\Windows\system32\DRIVERS\btath_rcp.sys
18:17:27.0040 4604 BTATH_RCP - ok
18:17:27.0103 4604 BtFilter (aa0f5afcf077c5246589b32eceeae566) C:\Windows\system32\DRIVERS\btfilter.sys
18:17:27.0118 4604 BtFilter - ok
18:17:27.0165 4604 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
18:17:27.0196 4604 BthEnum - ok
18:17:27.0274 4604 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
18:17:27.0274 4604 BTHMODEM - ok
18:17:27.0352 4604 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
18:17:27.0352 4604 BthPan - ok
18:17:27.0446 4604 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys
18:17:27.0493 4604 BTHPORT - ok
18:17:27.0602 4604 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:17:27.0602 4604 bthserv - ok
18:17:27.0649 4604 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys
18:17:27.0649 4604 BTHUSB - ok
18:17:27.0727 4604 ccSet_NIS (9a2a298479be9354fed42c9a40a9c214) C:\Windows\system32\drivers\NISx64\1300000.080\ccSetx64.sys
18:17:27.0789 4604 ccSet_NIS - ok
18:17:27.0836 4604 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:17:27.0836 4604 cdfs - ok
18:17:27.0945 4604 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:17:28.0054 4604 cdrom - ok
18:17:28.0148 4604 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:17:28.0195 4604 CertPropSvc - ok
18:17:28.0257 4604 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
18:17:28.0257 4604 circlass - ok
18:17:28.0398 4604 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:17:28.0413 4604 CLFS - ok
18:17:28.0522 4604 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:17:28.0522 4604 clr_optimization_v2.0.50727_32 - ok
18:17:28.0600 4604 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:17:28.0632 4604 clr_optimization_v2.0.50727_64 - ok
18:17:28.0803 4604 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:17:28.0944 4604 clr_optimization_v4.0.30319_32 - ok
18:17:29.0115 4604 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:17:29.0240 4604 clr_optimization_v4.0.30319_64 - ok
18:17:29.0287 4604 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:17:29.0334 4604 CmBatt - ok
18:17:29.0365 4604 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:17:29.0365 4604 cmdide - ok
18:17:29.0427 4604 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:17:29.0458 4604 CNG - ok
18:17:29.0521 4604 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
18:17:29.0552 4604 Compbatt - ok
18:17:29.0646 4604 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:17:29.0646 4604 CompositeBus - ok
18:17:29.0677 4604 COMSysApp - ok
18:17:29.0755 4604 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
18:17:29.0817 4604 crcdisk - ok
18:17:29.0895 4604 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
18:17:29.0911 4604 CryptSvc - ok
18:17:30.0067 4604 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:17:30.0082 4604 DcomLaunch - ok
18:17:30.0192 4604 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:17:30.0270 4604 defragsvc - ok
18:17:30.0348 4604 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:17:30.0379 4604 DfsC - ok
18:17:30.0488 4604 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:17:30.0488 4604 Dhcp - ok
18:17:30.0535 4604 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:17:30.0550 4604 discache - ok
18:17:30.0613 4604 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
18:17:30.0644 4604 Disk - ok
18:17:30.0722 4604 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:17:30.0722 4604 Dnscache - ok
18:17:30.0784 4604 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:17:30.0862 4604 dot3svc - ok
18:17:30.0909 4604 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:17:30.0925 4604 DPS - ok
18:17:30.0987 4604 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:17:31.0003 4604 drmkaud - ok
18:17:31.0112 4604 DsiWMIService (9cf46fdf163e06b83d03ff929ef2296c) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
18:17:31.0112 4604 DsiWMIService - ok
18:17:31.0159 4604 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:17:31.0252 4604 dtsoftbus01 - ok
18:17:31.0393 4604 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:17:31.0408 4604 DXGKrnl - ok
18:17:31.0642 4604 E1G60 (edc6e9c057c9d7f83eea22b4cef5dcad) C:\Windows\system32\DRIVERS\E1G6032E.sys
18:17:31.0674 4604 E1G60 - ok
18:17:31.0736 4604 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:17:31.0752 4604 EapHost - ok
18:17:32.0142 4604 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
18:17:32.0266 4604 ebdrv - ok
18:17:32.0469 4604 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:17:32.0485 4604 eeCtrl - ok
18:17:32.0688 4604 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:17:32.0688 4604 EFS - ok
18:17:32.0844 4604 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:17:32.0906 4604 ehRecvr - ok
18:17:32.0984 4604 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:17:33.0015 4604 ehSched - ok
18:17:33.0202 4604 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
18:17:33.0218 4604 elxstor - ok
18:17:33.0405 4604 ePowerSvc (2aee0416c54a1a86d035366de192b2f0) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
18:17:33.0436 4604 ePowerSvc - ok
18:17:33.0608 4604 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:17:33.0608 4604 EraserUtilRebootDrv - ok
18:17:33.0780 4604 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:17:33.0780 4604 ErrDev - ok
18:17:33.0826 4604 ETD (0975bf32399a24117e317b5bf1d5d0aa) C:\Windows\system32\DRIVERS\ETD.sys
18:17:33.0858 4604 ETD - ok
18:17:33.0920 4604 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:17:33.0936 4604 EventSystem - ok
18:17:33.0982 4604 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:17:33.0998 4604 exfat - ok
18:17:34.0045 4604 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:17:34.0076 4604 fastfat - ok
18:17:34.0170 4604 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:17:34.0216 4604 Fax - ok
18:17:34.0263 4604 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
18:17:34.0263 4604 fdc - ok
18:17:34.0326 4604 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:17:34.0326 4604 fdPHost - ok
18:17:34.0341 4604 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:17:34.0341 4604 FDResPub - ok
18:17:34.0404 4604 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:17:34.0435 4604 FileInfo - ok
18:17:34.0482 4604 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:17:34.0482 4604 Filetrace - ok
18:17:34.0513 4604 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
18:17:34.0544 4604 flpydisk - ok
18:17:34.0606 4604 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:17:34.0622 4604 FltMgr - ok
18:17:34.0700 4604 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:17:34.0716 4604 FontCache - ok
18:17:34.0903 4604 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:17:34.0934 4604 FontCache3.0.0.0 - ok
18:17:34.0996 4604 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:17:34.0996 4604 FsDepends - ok
18:17:35.0059 4604 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:17:35.0074 4604 Fs_Rec - ok
18:17:35.0137 4604 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:17:35.0137 4604 fvevol - ok
18:17:35.0184 4604 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
18:17:35.0215 4604 gagp30kx - ok
18:17:35.0433 4604 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
18:17:35.0464 4604 GamesAppService - ok
18:17:35.0636 4604 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:17:35.0636 4604 gpsvc - ok
18:17:35.0792 4604 GREGService (c9b2d1d3f86fd3673ef847def73b6f9e) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
18:17:35.0792 4604 GREGService - ok
18:17:35.0995 4604 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:17:35.0995 4604 gupdate - ok
18:17:36.0057 4604 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:17:36.0057 4604 gupdatem - ok
18:17:36.0135 4604 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:17:36.0166 4604 hcw85cir - ok
18:17:36.0322 4604 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:17:36.0432 4604 HdAudAddService - ok
18:17:36.0541 4604 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:17:36.0556 4604 HDAudBus - ok
18:17:36.0572 4604 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
18:17:36.0588 4604 HECIx64 - ok
18:17:36.0619 4604 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
18:17:36.0650 4604 HidBatt - ok
18:17:36.0666 4604 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
18:17:36.0666 4604 HidBth - ok
18:17:36.0712 4604 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
18:17:36.0712 4604 HidIr - ok
18:17:36.0775 4604 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:17:36.0775 4604 hidserv - ok
18:17:36.0853 4604 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:17:36.0900 4604 HidUsb - ok
18:17:36.0978 4604 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:17:36.0993 4604 hkmsvc - ok
18:17:37.0071 4604 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:17:37.0087 4604 HomeGroupListener - ok
18:17:37.0118 4604 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:17:37.0134 4604 HomeGroupProvider - ok
18:17:37.0196 4604 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:17:37.0227 4604 HpSAMD - ok
18:17:37.0352 4604 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:17:37.0368 4604 HTTP - ok
18:17:37.0399 4604 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:17:37.0414 4604 hwpolicy - ok
18:17:37.0492 4604 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
18:17:37.0524 4604 i8042prt - ok
18:17:37.0648 4604 iaStor (1384872112e8e7fd5786eceb8bddf4c9) C:\Windows\system32\DRIVERS\iaStor.sys
18:17:37.0664 4604 iaStor - ok
18:17:37.0914 4604 IAStorDataMgrSvc (6b24d1c3096de796d15571079ea5e98c) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:17:37.0914 4604 IAStorDataMgrSvc - ok
18:17:37.0960 4604 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:17:37.0960 4604 iaStorV - ok
18:17:38.0132 4604 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:17:38.0194 4604 idsvc - ok
18:17:38.0366 4604 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120502.001\IDSvia64.sys
18:17:38.0382 4604 IDSVia64 - ok
18:17:39.0645 4604 igfx (f4f91789c7c7a159ce8215c1f69f2a85) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:17:39.0942 4604 igfx - ok
18:17:40.0160 4604 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
18:17:40.0160 4604 iirsp - ok
18:17:40.0316 4604 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:17:40.0347 4604 IKEEXT - ok
18:17:40.0456 4604 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
18:17:40.0472 4604 Impcd - ok
18:17:40.0690 4604 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
18:17:40.0722 4604 IntcAzAudAddService - ok
18:17:40.0893 4604 IntcDAud (ae594cc17c33ac146739494615e14851) C:\Windows\system32\DRIVERS\IntcDAud.sys
18:17:40.0940 4604 IntcDAud - ok
18:17:40.0956 4604 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:17:40.0956 4604 intelide - ok
18:17:41.0002 4604 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:17:41.0018 4604 intelppm - ok
18:17:41.0080 4604 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:17:41.0096 4604 IPBusEnum - ok
18:17:41.0143 4604 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:17:41.0205 4604 IpFilterDriver - ok
18:17:41.0314 4604 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:17:41.0330 4604 iphlpsvc - ok
18:17:41.0377 4604 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:17:41.0408 4604 IPMIDRV - ok
18:17:41.0424 4604 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:17:41.0424 4604 IPNAT - ok
18:17:41.0470 4604 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:17:41.0470 4604 IRENUM - ok
18:17:41.0486 4604 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:17:41.0502 4604 isapnp - ok
18:17:41.0564 4604 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:17:41.0611 4604 iScsiPrt - ok
18:17:41.0673 4604 k57nd60a (37e053a2cf8f0082b689ed74106e0cec) C:\Windows\system32\DRIVERS\k57nd60a.sys
18:17:41.0673 4604 k57nd60a - ok
18:17:41.0751 4604 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:17:41.0751 4604 kbdclass - ok
18:17:41.0782 4604 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
18:17:41.0782 4604 kbdhid - ok
18:17:41.0845 4604 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:41.0845 4604 KeyIso - ok
18:17:41.0876 4604 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:17:41.0876 4604 KSecDD - ok
18:17:41.0907 4604 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:17:41.0923 4604 KSecPkg - ok
18:17:42.0016 4604 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:17:42.0016 4604 ksthunk - ok
18:17:42.0079 4604 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:17:42.0141 4604 KtmRm - ok
18:17:42.0235 4604 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:17:42.0250 4604 LanmanServer - ok
18:17:42.0297 4604 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:17:42.0297 4604 LanmanWorkstation - ok
18:17:42.0391 4604 Live Updater Service (b705c7097f9a0ec941d02dce7c7d426c) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
18:17:42.0391 4604 Live Updater Service - ok
18:17:42.0422 4604 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:17:42.0453 4604 lltdio - ok
18:17:42.0500 4604 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:17:42.0516 4604 lltdsvc - ok
18:17:42.0562 4604 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:17:42.0562 4604 lmhosts - ok
18:17:42.0734 4604 LMS (dbc1136a62bd4decc3632df650284c2e) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:17:42.0734 4604 LMS - ok
18:17:42.0796 4604 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
18:17:42.0812 4604 LSI_FC - ok
18:17:42.0828 4604 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
18:17:42.0843 4604 LSI_SAS - ok
18:17:42.0859 4604 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
18:17:42.0859 4604 LSI_SAS2 - ok
18:17:42.0890 4604 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
18:17:42.0906 4604 LSI_SCSI - ok
18:17:42.0937 4604 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:17:42.0937 4604 luafv - ok
18:17:43.0030 4604 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
18:17:43.0030 4604 MBAMProtector - ok
18:17:43.0108 4604 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:17:43.0124 4604 MBAMService - ok
18:17:43.0155 4604 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:17:43.0171 4604 Mcx2Svc - ok
18:17:43.0202 4604 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
18:17:43.0218 4604 megasas - ok
18:17:43.0264 4604 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
18:17:43.0264 4604 MegaSR - ok
18:17:43.0280 4604 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:17:43.0296 4604 MMCSS - ok
18:17:43.0311 4604 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:17:43.0311 4604 Modem - ok
18:17:43.0342 4604 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:17:43.0342 4604 monitor - ok
18:17:43.0374 4604 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:17:43.0405 4604 mouclass - ok
18:17:43.0436 4604 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:17:43.0452 4604 mouhid - ok
18:17:43.0467 4604 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:17:43.0483 4604 mountmgr - ok
18:17:43.0498 4604 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:17:43.0498 4604 mpio - ok
18:17:43.0530 4604 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:17:43.0530 4604 mpsdrv - ok
18:17:43.0686 4604 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:17:43.0717 4604 MpsSvc - ok
18:17:43.0764 4604 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:17:43.0810 4604 MRxDAV - ok
18:17:43.0842 4604 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:17:43.0857 4604 mrxsmb - ok
18:17:43.0888 4604 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:17:43.0888 4604 mrxsmb10 - ok
18:17:43.0904 4604 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:17:43.0920 4604 mrxsmb20 - ok
18:17:43.0935 4604 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:17:43.0935 4604 msahci - ok
18:17:43.0966 4604 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:17:43.0982 4604 msdsm - ok
18:17:44.0013 4604 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:17:44.0013 4604 MSDTC - ok
18:17:44.0076 4604 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:17:44.0076 4604 Msfs - ok
18:17:44.0107 4604 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:17:44.0138 4604 mshidkmdf - ok
18:17:44.0154 4604 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:17:44.0154 4604 msisadrv - ok
18:17:44.0200 4604 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:17:44.0216 4604 MSiSCSI - ok
18:17:44.0232 4604 msiserver - ok
18:17:44.0278 4604 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:17:44.0278 4604 MSKSSRV - ok
18:17:44.0310 4604 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:17:44.0310 4604 MSPCLOCK - ok
18:17:44.0341 4604 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:17:44.0341 4604 MSPQM - ok
18:17:44.0388 4604 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:17:44.0403 4604 MsRPC - ok
18:17:44.0450 4604 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:17:44.0450 4604 mssmbios - ok
18:17:44.0481 4604 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:17:44.0481 4604 MSTEE - ok
18:17:44.0481 4604 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
18:17:44.0481 4604 MTConfig - ok
18:17:44.0512 4604 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:17:44.0512 4604 Mup - ok
18:17:44.0559 4604 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:17:44.0575 4604 napagent - ok
18:17:44.0653 4604 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:17:44.0653 4604 NativeWifiP - ok
18:17:44.0809 4604 NAUpdate (9d1cce440552500ded3a62f9d779cdb4) C:\Program Files (x86)\Nero\Update\NASvc.exe
18:17:44.0824 4604 NAUpdate - ok
18:17:44.0934 4604 NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120502.034\ENG64.SYS
18:17:44.0934 4604 NAVENG - ok
18:17:45.0152 4604 NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120502.034\EX64.SYS
18:17:45.0183 4604 NAVEX15 - ok
18:17:45.0370 4604 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:17:45.0386 4604 NDIS - ok
18:17:45.0417 4604 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:17:45.0417 4604 NdisCap - ok
18:17:45.0448 4604 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:17:45.0480 4604 NdisTapi - ok
18:17:45.0526 4604 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:17:45.0526 4604 Ndisuio - ok
18:17:45.0558 4604 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:17:45.0558 4604 NdisWan - ok
18:17:45.0573 4604 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:17:45.0573 4604 NDProxy - ok
18:17:45.0620 4604 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:17:45.0636 4604 NetBIOS - ok
18:17:45.0682 4604 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:17:45.0682 4604 NetBT - ok
18:17:45.0729 4604 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:45.0729 4604 Netlogon - ok
18:17:45.0792 4604 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:17:45.0792 4604 Netman - ok
18:17:45.0963 4604 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:45.0994 4604 NetMsmqActivator - ok
18:17:46.0010 4604 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:46.0010 4604 NetPipeActivator - ok
18:17:46.0072 4604 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:17:46.0088 4604 netprofm - ok
18:17:46.0088 4604 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:46.0088 4604 NetTcpActivator - ok
18:17:46.0104 4604 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:17:46.0104 4604 NetTcpPortSharing - ok
18:17:46.0166 4604 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
18:17:46.0166 4604 nfrd960 - ok
18:17:46.0260 4604 NIS (efbfe525e03c7444187262c85d776532) C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
18:17:46.0260 4604 NIS - ok
18:17:46.0322 4604 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:17:46.0322 4604 NlaSvc - ok
18:17:46.0525 4604 NOBU (5839a8027d6d324a7cd494051a96628c) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
18:17:46.0572 4604 NOBU - ok
18:17:46.0728 4604 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:17:46.0728 4604 Npfs - ok
18:17:46.0774 4604 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:17:46.0774 4604 nsi - ok
18:17:46.0837 4604 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:17:46.0837 4604 nsiproxy - ok
18:17:46.0962 4604 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:17:46.0993 4604 Ntfs - ok
18:17:47.0086 4604 NTI IScheduleSvc (9a308fcdcca98a15b6f62d36a272160e) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
18:17:47.0086 4604 NTI IScheduleSvc - ok
18:17:47.0211 4604 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
18:17:47.0211 4604 NTIDrvr - ok
18:17:47.0227 4604 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:17:47.0258 4604 Null - ok
18:17:48.0241 4604 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:17:48.0412 4604 nvlddmkm - ok
18:17:48.0553 4604 nvpciflt (3629b8c7257c6231a3cfb44359c68b1d) C:\Windows\system32\DRIVERS\nvpciflt.sys
18:17:48.0568 4604 nvpciflt - ok
18:17:48.0600 4604 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:17:48.0600 4604 nvraid - ok
18:17:48.0631 4604 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:17:48.0631 4604 nvstor - ok
18:17:48.0724 4604 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe
18:17:48.0740 4604 nvsvc - ok
18:17:49.0005 4604 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:17:49.0052 4604 nvUpdatusService - ok
18:17:49.0177 4604 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:17:49.0177 4604 nv_agp - ok
18:17:49.0177 4604 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:17:49.0208 4604 ohci1394 - ok
18:17:49.0255 4604 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:17:49.0270 4604 p2pimsvc - ok
18:17:49.0302 4604 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:17:49.0317 4604 p2psvc - ok
18:17:49.0364 4604 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
18:17:49.0364 4604 Parport - ok
18:17:49.0380 4604 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
18:17:49.0395 4604 partmgr - ok
18:17:49.0426 4604 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:17:49.0426 4604 PcaSvc - ok
18:17:49.0442 4604 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:17:49.0458 4604 pci - ok
18:17:49.0473 4604 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:17:49.0473 4604 pciide - ok
18:17:49.0520 4604 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
18:17:49.0520 4604 pcmcia - ok
18:17:49.0551 4604 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:17:49.0567 4604 pcw - ok
18:17:49.0629 4604 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:17:49.0645 4604 PEAUTH - ok
18:17:49.0723 4604 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:17:49.0723 4604 PerfHost - ok
18:17:50.0004 4604 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:17:50.0066 4604 pla - ok
18:17:50.0128 4604 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:17:50.0144 4604 PlugPlay - ok
18:17:50.0191 4604 PnkBstrA - ok
18:17:50.0206 4604 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:17:50.0206 4604 PNRPAutoReg - ok
18:17:50.0253 4604 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:17:50.0253 4604 PNRPsvc - ok
18:17:50.0300 4604 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:17:50.0316 4604 PolicyAgent - ok
18:17:50.0347 4604 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:17:50.0362 4604 Power - ok
18:17:50.0425 4604 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:17:50.0440 4604 PptpMiniport - ok
18:17:50.0472 4604 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
18:17:50.0472 4604 Processor - ok
18:17:50.0503 4604 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
18:17:50.0518 4604 ProfSvc - ok
18:17:50.0534 4604 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:50.0550 4604 ProtectedStorage - ok
18:17:50.0581 4604 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:17:50.0581 4604 Psched - ok
18:17:50.0628 4604 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:17:50.0643 4604 PxHlpa64 - ok
18:17:50.0752 4604 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
18:17:50.0784 4604 ql2300 - ok
18:17:50.0955 4604 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
18:17:50.0955 4604 ql40xx - ok
18:17:51.0018 4604 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:17:51.0064 4604 QWAVE - ok
18:17:51.0096 4604 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:17:51.0111 4604 QWAVEdrv - ok
18:17:51.0142 4604 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:17:51.0142 4604 RasAcd - ok
18:17:51.0174 4604 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:17:51.0174 4604 RasAgileVpn - ok
18:17:51.0220 4604 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:17:51.0236 4604 RasAuto - ok
18:17:51.0314 4604 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:17:51.0330 4604 Rasl2tp - ok
18:17:51.0376 4604 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:17:51.0376 4604 RasMan - ok
18:17:51.0408 4604 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:17:51.0408 4604 RasPppoe - ok
18:17:51.0439 4604 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:17:51.0439 4604 RasSstp - ok
18:17:51.0470 4604 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:17:51.0486 4604 rdbss - ok
18:17:51.0501 4604 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
18:17:51.0501 4604 rdpbus - ok
18:17:51.0532 4604 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:17:51.0548 4604 RDPCDD - ok
18:17:51.0595 4604 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:17:51.0595 4604 RDPENCDD - ok
18:17:51.0610 4604 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:17:51.0610 4604 RDPREFMP - ok
18:17:51.0657 4604 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
18:17:51.0704 4604 RDPWD - ok
18:17:51.0751 4604 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:17:51.0751 4604 rdyboost - ok
18:17:51.0798 4604 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:17:51.0798 4604 RemoteAccess - ok
18:17:51.0829 4604 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:17:51.0860 4604 RemoteRegistry - ok
18:17:51.0907 4604 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
18:17:51.0907 4604 RFCOMM - ok
18:17:52.0000 4604 RimUsb (ad42432d22940b4215177be113e4919c) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
18:17:52.0016 4604 RimUsb - ok
18:17:52.0032 4604 RimVSerPort (4aafffa67ac4dfa3d9985d78573887e2) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
18:17:52.0063 4604 RimVSerPort - ok
18:17:52.0110 4604 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
18:17:52.0110 4604 ROOTMODEM - ok
18:17:52.0141 4604 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:17:52.0141 4604 RpcEptMapper - ok
18:17:52.0172 4604 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:17:52.0203 4604 RpcLocator - ok
18:17:52.0250 4604 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:17:52.0266 4604 RpcSs - ok
18:17:52.0312 4604 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:17:52.0312 4604 rspndr - ok
18:17:52.0359 4604 RSUSBSTOR (0e3dcf76f11dc431b088a2dfd7265cda) C:\Windows\system32\Drivers\RtsUStor.sys
18:17:52.0390 4604 RSUSBSTOR - ok
18:17:52.0437 4604 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:52.0437 4604 SamSs - ok
18:17:52.0453 4604 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:17:52.0468 4604 sbp2port - ok
18:17:52.0500 4604 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:17:52.0500 4604 SCardSvr - ok
18:17:52.0531 4604 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:17:52.0531 4604 scfilter - ok
18:17:52.0593 4604 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:17:52.0624 4604 Schedule - ok
18:17:52.0656 4604 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:17:52.0656 4604 SCPolicySvc - ok
18:17:52.0687 4604 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:17:52.0718 4604 SDRSVC - ok
18:17:52.0780 4604 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:17:52.0796 4604 secdrv - ok
18:17:52.0843 4604 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:17:52.0858 4604 seclogon - ok
18:17:52.0905 4604 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:17:52.0905 4604 SENS - ok
18:17:52.0936 4604 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:17:52.0936 4604 SensrSvc - ok
18:17:52.0968 4604 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
18:17:52.0999 4604 Serenum - ok
18:17:53.0046 4604 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
18:17:53.0046 4604 Serial - ok
18:17:53.0061 4604 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
18:17:53.0092 4604 sermouse - ok

[autoprd]

18:17:53.0155 4604 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:17:53.0170 4604 SessionEnv - ok
18:17:53.0186 4604 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:17:53.0186 4604 sffdisk - ok
18:17:53.0202 4604 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:17:53.0202 4604 sffp_mmc - ok
18:17:53.0217 4604 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:17:53.0233 4604 sffp_sd - ok
18:17:53.0248 4604 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
18:17:53.0248 4604 sfloppy - ok
18:17:53.0295 4604 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:17:53.0295 4604 SharedAccess - ok
18:17:53.0358 4604 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:17:53.0358 4604 ShellHWDetection - ok
18:17:53.0404 4604 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
18:17:53.0404 4604 SiSRaid2 - ok
18:17:53.0420 4604 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
18:17:53.0451 4604 SiSRaid4 - ok
18:17:53.0560 4604 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
18:17:53.0592 4604 SkypeUpdate - ok
18:17:53.0623 4604 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:17:53.0623 4604 Smb - ok
18:17:53.0685 4604 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:17:53.0685 4604 SNMPTRAP - ok
18:17:53.0701 4604 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:17:53.0701 4604 spldr - ok
18:17:53.0748 4604 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:17:53.0748 4604 Spooler - ok
18:17:53.0966 4604 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:17:54.0013 4604 sppsvc - ok
18:17:54.0106 4604 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:17:54.0122 4604 sppuinotify - ok
18:17:54.0216 4604 SRTSP (df26fa7825f9cd39fceb3f2f27e813a7) C:\Windows\system32\drivers\NISx64\1300000.080\SRTSP64.SYS
18:17:54.0231 4604 SRTSP - ok
18:17:54.0247 4604 SRTSPX (a8ade1e0092b8097ddb76c9a6dc5f193) C:\Windows\system32\drivers\NISx64\1300000.080\SRTSPX64.SYS
18:17:54.0247 4604 SRTSPX - ok
18:17:54.0294 4604 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:17:54.0309 4604 srv - ok
18:17:54.0340 4604 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:17:54.0356 4604 srv2 - ok
18:17:54.0387 4604 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:17:54.0387 4604 srvnet - ok
18:17:54.0434 4604 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:17:54.0450 4604 SSDPSRV - ok
18:17:54.0465 4604 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:17:54.0496 4604 SstpSvc - ok
18:17:54.0528 4604 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
18:17:54.0528 4604 stexstor - ok
18:17:54.0590 4604 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:17:54.0621 4604 stisvc - ok
18:17:54.0652 4604 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:17:54.0668 4604 swenum - ok
18:17:54.0715 4604 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:17:54.0730 4604 swprv - ok
18:17:54.0824 4604 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1300000.080\SYMDS64.SYS
18:17:54.0840 4604 SymDS - ok
18:17:54.0918 4604 SymEFA (f016d755aadd6a16555809d4b289497e) C:\Windows\system32\drivers\NISx64\1300000.080\SYMEFA64.SYS
18:17:54.0949 4604 SymEFA - ok
18:17:54.0996 4604 SymEvent (36b77f5c9e21f88a8c8ec67ad5415819) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:17:54.0996 4604 SymEvent - ok
18:17:55.0042 4604 SymIRON (321b635a0c0ff48047d37f6f078c5342) C:\Windows\system32\drivers\NISx64\1300000.080\Ironx64.SYS
18:17:55.0058 4604 SymIRON - ok
18:17:55.0089 4604 SymNetS (5ea027a364116963e37a281b1949ffd5) C:\Windows\system32\drivers\NISx64\1300000.080\SYMNETS.SYS
18:17:55.0089 4604 SymNetS - ok
18:17:55.0230 4604 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:17:55.0245 4604 SysMain - ok
18:17:55.0354 4604 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:17:55.0386 4604 TabletInputService - ok
18:17:55.0417 4604 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:17:55.0432 4604 TapiSrv - ok
18:17:55.0448 4604 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:17:55.0448 4604 TBS - ok
18:17:55.0651 4604 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
18:17:55.0729 4604 Tcpip - ok
18:17:55.0963 4604 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
18:17:55.0994 4604 TCPIP6 - ok
18:17:56.0119 4604 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:17:56.0119 4604 tcpipreg - ok
18:17:56.0150 4604 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:17:56.0150 4604 TDPIPE - ok
18:17:56.0181 4604 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:17:56.0181 4604 TDTCP - ok
18:17:56.0197 4604 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:17:56.0228 4604 tdx - ok
18:17:56.0478 4604 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
18:17:56.0509 4604 TeamViewer7 - ok
18:17:56.0696 4604 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:17:56.0696 4604 TermDD - ok
18:17:56.0836 4604 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:17:56.0852 4604 TermService - ok
18:17:56.0868 4604 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:17:56.0868 4604 Themes - ok
18:17:56.0899 4604 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:17:56.0899 4604 THREADORDER - ok
18:17:56.0914 4604 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:17:56.0930 4604 TrkWks - ok
18:17:56.0977 4604 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:17:56.0992 4604 TrustedInstaller - ok
18:17:57.0024 4604 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:17:57.0024 4604 tssecsrv - ok
18:17:57.0055 4604 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:17:57.0055 4604 TsUsbFlt - ok
18:17:57.0070 4604 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
18:17:57.0070 4604 TsUsbGD - ok
18:17:57.0102 4604 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:17:57.0102 4604 tunnel - ok
18:17:57.0117 4604 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
18:17:57.0117 4604 uagp35 - ok
18:17:57.0133 4604 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
18:17:57.0164 4604 UBHelper - ok
18:17:57.0211 4604 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:17:57.0211 4604 udfs - ok
18:17:57.0258 4604 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:17:57.0258 4604 UI0Detect - ok
18:17:57.0304 4604 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:17:57.0304 4604 uliagpkx - ok
18:17:57.0336 4604 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
18:17:57.0336 4604 umbus - ok
18:17:57.0351 4604 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
18:17:57.0351 4604 UmPass - ok
18:17:57.0554 4604 UNS (7466809e6da561d60c2f1ce8ede3c73f) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
18:17:57.0601 4604 UNS - ok
18:17:57.0788 4604 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:17:57.0788 4604 upnphost - ok
18:17:57.0850 4604 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:17:57.0850 4604 usbccgp - ok
18:17:57.0866 4604 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:17:57.0882 4604 usbcir - ok
18:17:57.0897 4604 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:17:57.0897 4604 usbehci - ok
18:17:57.0944 4604 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:17:57.0960 4604 usbhub - ok
18:17:57.0975 4604 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:17:57.0975 4604 usbohci - ok
18:17:57.0991 4604 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
18:17:58.0038 4604 usbprint - ok
18:17:58.0069 4604 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:17:58.0069 4604 USBSTOR - ok
18:17:58.0069 4604 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:17:58.0100 4604 usbuhci - ok
18:17:58.0162 4604 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
18:17:58.0162 4604 usbvideo - ok
18:17:58.0194 4604 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:17:58.0209 4604 UxSms - ok
18:17:58.0225 4604 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:17:58.0240 4604 VaultSvc - ok
18:17:58.0287 4604 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:17:58.0287 4604 vdrvroot - ok
18:17:58.0334 4604 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:17:58.0381 4604 vds - ok
18:17:58.0428 4604 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:17:58.0443 4604 vga - ok
18:17:58.0474 4604 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:17:58.0474 4604 VgaSave - ok
18:17:58.0506 4604 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:17:58.0506 4604 vhdmp - ok
18:17:58.0521 4604 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:17:58.0521 4604 viaide - ok
18:17:58.0552 4604 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:17:58.0552 4604 volmgr - ok
18:17:58.0584 4604 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:17:58.0615 4604 volmgrx - ok
18:17:58.0662 4604 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:17:58.0677 4604 volsnap - ok
18:17:58.0724 4604 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
18:17:58.0740 4604 vsmraid - ok
18:17:58.0849 4604 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:17:58.0880 4604 VSS - ok
18:17:58.0989 4604 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:17:58.0989 4604 vwifibus - ok
18:17:59.0020 4604 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:17:59.0052 4604 vwififlt - ok
18:17:59.0083 4604 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:17:59.0083 4604 vwifimp - ok
18:17:59.0130 4604 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:17:59.0145 4604 W32Time - ok
18:17:59.0161 4604 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
18:17:59.0176 4604 WacomPen - ok
18:17:59.0223 4604 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:17:59.0223 4604 WANARP - ok
18:17:59.0223 4604 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:17:59.0239 4604 Wanarpv6 - ok
18:17:59.0364 4604 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:17:59.0395 4604 WatAdminSvc - ok
18:17:59.0488 4604 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:17:59.0520 4604 wbengine - ok
18:17:59.0644 4604 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:17:59.0676 4604 WbioSrvc - ok
18:17:59.0722 4604 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:17:59.0722 4604 wcncsvc - ok
18:17:59.0754 4604 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:17:59.0754 4604 WcsPlugInService - ok
18:17:59.0800 4604 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
18:17:59.0816 4604 Wd - ok
18:17:59.0910 4604 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:17:59.0925 4604 Wdf01000 - ok
18:17:59.0956 4604 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:17:59.0956 4604 WdiServiceHost - ok
18:17:59.0956 4604 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:17:59.0956 4604 WdiSystemHost - ok
18:18:00.0003 4604 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:18:00.0034 4604 WebClient - ok
18:18:00.0066 4604 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:18:00.0097 4604 Wecsvc - ok
18:18:00.0128 4604 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:18:00.0144 4604 wercplsupport - ok
18:18:00.0175 4604 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:18:00.0206 4604 WerSvc - ok
18:18:00.0300 4604 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:18:00.0300 4604 WfpLwf - ok
18:18:00.0315 4604 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:18:00.0315 4604 WIMMount - ok
18:18:00.0378 4604 WinDefend - ok
18:18:00.0393 4604 WinHttpAutoProxySvc - ok
18:18:00.0456 4604 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:18:00.0471 4604 Winmgmt - ok
18:18:00.0612 4604 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:18:00.0658 4604 WinRM - ok
18:18:00.0861 4604 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:18:00.0877 4604 Wlansvc - ok
18:18:00.0955 4604 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:18:00.0986 4604 wlcrasvc - ok
18:18:01.0173 4604 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:18:01.0267 4604 wlidsvc - ok
18:18:01.0360 4604 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:18:01.0360 4604 WmiAcpi - ok
18:18:01.0438 4604 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:18:01.0438 4604 wmiApSrv - ok
18:18:01.0516 4604 WMPNetworkSvc - ok
18:18:01.0750 4604 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:18:01.0782 4604 WPCSvc - ok
18:18:01.0860 4604 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:18:01.0860 4604 WPDBusEnum - ok
18:18:01.0906 4604 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:18:01.0938 4604 ws2ifsl - ok
18:18:01.0984 4604 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:18:01.0984 4604 wscsvc - ok
18:18:02.0000 4604 WSearch - ok
18:18:02.0265 4604 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
18:18:02.0328 4604 wuauserv - ok
18:18:02.0452 4604 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:18:02.0452 4604 WudfPf - ok
18:18:02.0484 4604 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:18:02.0484 4604 WUDFRd - ok
18:18:02.0515 4604 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:18:02.0515 4604 wudfsvc - ok
18:18:02.0546 4604 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:18:02.0562 4604 WwanSvc - ok
18:18:02.0608 4604 xusb21 (2c6bc21b2d5b58d8b1d638c1704cb494) C:\Windows\system32\DRIVERS\xusb21.sys
18:18:02.0640 4604 xusb21 - ok
18:18:02.0686 4604 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:18:02.0749 4604 \Device\Harddisk0\DR0 - ok
18:18:02.0749 4604 Boot (0x1200) (a32a700cfe74e7147741cf330713c84d) \Device\Harddisk0\DR0\Partition0
18:18:02.0858 4604 \Device\Harddisk0\DR0\Partition0 - ok
18:18:02.0983 4604 Boot (0x1200) (f8d70cff2d655492abf09276a7484605) \Device\Harddisk0\DR0\Partition1
18:18:02.0998 4604 \Device\Harddisk0\DR0\Partition1 - ok
18:18:02.0998 4604 ============================================================
18:18:02.0998 4604 Scan finished
18:18:02.0998 4604 ============================================================
18:18:03.0014 4612 Detected object count: 0
18:18:03.0014 4612 Actual detected object count: 0
18:18:14.0418 4920 Deinitialize success

[jaro3]

Aviru..

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[autoprd]

Jasný CF zmáknu večír jestli newa, jinak ta Avira mě docela překvapila ale nemůžu přijít na to jak dát na soubor ochranu aby avira furt nehlásil že je to vir a mazal to :) A to vir např není je to program který si v c++ sám udělám

[jaro3]

To asi budeš mít těch souborů hodně...

Hlavní okno Aviry:
System Scanner , vpravo nahoře Configuration

Real Time Protection---Exceptions.

[autoprd]

Hele jary tak sem CF nechal od 23:00 do 08:00 abylo to na 6 fázi :) Nechci vidět kdy bych se dočkal 32 Tkže sem stornul, co teď ?

[bledulka]

Zkus ho spustit v nouzovém režimu.

[autoprd]

Díky za radu

Taky jsem přišel proč se to seklo na 6 fázi páč sem zavřel víko ntb

ComboFix 12-05-03.02 - Woytman 04.05.2012 23:53:37.2.4 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3767.2484 [GMT 2:00]
Spuštěný z: c:\users\Woytman\Desktop\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-04-04 do 2012-05-04 )))))))))))))))))))))))))))))))
.
.
2012-05-04 22:00 . 2012-05-04 22:00 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-04 20:24 . 2012-05-04 20:24 -------- d-----w- c:\program files (x86)\MegaDev
2012-05-04 17:45 . 2012-05-04 17:45 -------- d-----w- c:\program files (x86)\Rebellion
2012-05-03 21:02 . 2012-05-03 21:02 -------- d-----w- c:\program files (x86)\City Interactive
2012-05-02 20:13 . 2012-05-02 20:13 -------- d-----w- c:\program files (x86)\Milestone
2012-05-02 19:54 . 2012-05-02 19:55 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2012-05-02 19:03 . 2012-05-02 19:03 -------- d-----w- c:\programdata\Malwarebytes
2012-05-02 19:03 . 2012-05-02 19:10 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-05-02 19:03 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-04-29 13:38 . 2012-04-29 13:38 -------- d-----w- c:\program files (x86)\NFSNation
2012-04-28 22:09 . 2012-04-28 22:09 -------- d-sh--w- c:\programdata\DSS
2012-04-28 22:09 . 2012-04-28 22:09 -------- d-----w- c:\programdata\Codemasters
2012-04-28 21:53 . 2012-04-28 21:53 -------- d-----w- c:\programdata\Ubisoft
2012-04-28 16:21 . 2010-09-22 11:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2012-04-28 16:21 . 2012-04-28 16:21 -------- d-----w- c:\program files (x86)\BRS
2012-04-28 16:21 . 2011-03-19 13:16 1417216 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2012-04-28 16:07 . 2012-04-28 16:07 -------- d-----w- c:\program files (x86)\Codemasters
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\windows\SysWow64\QuickTime
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\program files (x86)\QuickTime
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\program files (x86)\Common Files\TechSmith Shared
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\programdata\TechSmith
2012-04-28 11:30 . 2012-04-28 11:30 -------- d-----w- c:\program files (x86)\TechSmith
2012-04-28 10:53 . 2012-05-03 19:50 -------- d-----w- c:\program files (x86)\SoundSpectrum
2012-04-28 09:33 . 2012-04-28 09:33 -------- d-----w- c:\program files (x86)\Bethesda Softworks
2012-04-28 08:36 . 2012-04-28 08:36 -------- d-----w- c:\programdata\Research In Motion
2012-04-28 08:33 . 2011-07-20 12:58 44032 ----a-w- c:\windows\system32\drivers\RimSerial_AMD64.sys
2012-04-28 08:33 . 2012-04-28 08:35 -------- d-----w- c:\program files (x86)\Research In Motion
2012-04-28 07:59 . 2012-04-28 07:59 -------- d-----w- C:\TopCD
2012-04-28 07:50 . 2012-05-02 18:53 -------- d-----w- c:\program files\Emergency 4
2012-04-28 07:43 . 2012-04-28 07:43 -------- d-----w- c:\program files (x86)\Electronic Arts
2012-04-28 07:38 . 2012-04-28 07:38 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2012-04-28 07:38 . 2012-04-28 16:21 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2012-04-28 07:38 . 2012-04-28 16:21 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2012-04-28 07:38 . 2012-04-28 16:21 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2012-04-28 07:38 . 2012-04-28 16:21 -------- d-----w- c:\program files (x86)\OpenAL
2012-04-28 07:38 . 2012-04-28 16:21 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2012-04-28 07:37 . 2012-04-28 07:37 -------- d-----w- c:\program files (x86)\NeutronGames
2012-04-28 07:19 . 2012-04-28 07:19 -------- d-----w- c:\program files (x86)\EA Games
2012-04-28 07:16 . 2012-05-03 17:41 183112 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-04-28 07:16 . 2012-04-28 23:14 66872 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-04-26 21:44 . 2012-05-02 18:57 -------- d-----w- c:\program files (x86)\Yontoo
2012-04-26 21:44 . 2012-04-26 21:44 -------- d-----w- c:\programdata\Tarma Installer
2012-04-25 09:10 . 2012-04-25 09:10 -------- d-----w- c:\program files (x86)\Sidhe
2012-04-24 20:58 . 2012-04-28 08:35 -------- d-----w- c:\program files (x86)\Common Files\Research In Motion
2012-04-24 20:31 . 2012-05-03 19:54 -------- d-----w- c:\program files (x86)\1ClickDownload
2012-04-23 23:56 . 2012-04-23 23:56 -------- d-----w- C:\01ff393ab0a90b3deb98
2012-04-23 15:28 . 2012-04-28 06:52 -------- d-----w- c:\program files\Deep Silver
2012-04-23 13:25 . 2009-10-24 19:15 1332224 ----a-w- c:\windows\SysWow64\SYNSOEMU.DLL
2012-04-23 12:40 . 2012-04-23 12:40 -------- d-----w- c:\program files\CCleaner
2012-04-22 20:15 . 1999-12-17 08:13 86016 ----a-w- c:\windows\unvise32.exe
2012-04-22 19:58 . 2012-04-22 19:58 -------- dc-h--w- c:\programdata\{13A9B825-42CB-4973-913D-2194B5A4CF94}
2012-04-22 19:55 . 2012-04-22 19:55 -------- d-----w- c:\program files\Common Files\Digidesign
2012-04-22 19:53 . 2012-04-22 19:55 -------- d-----w- c:\program files (x86)\Native Instruments
2012-04-21 17:09 . 2012-04-21 17:09 -------- d-----w- C:\asdasf
2012-04-21 15:27 . 2012-04-21 15:27 -------- d-----w- c:\windows\SysWow64\Wat
2012-04-21 15:27 . 2012-04-21 15:27 -------- d-----w- c:\windows\system32\Wat
2012-04-20 22:29 . 2012-04-20 22:29 -------- d-----w- c:\program files (x86)\MSXML 4.0
2012-04-20 22:24 . 2012-03-06 06:53 5559152 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-04-20 22:24 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-04-20 22:24 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-04-20 22:14 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-20 22:14 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-04-20 22:14 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-20 22:14 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-20 22:14 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-04-20 22:14 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-04-20 22:14 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-04-20 21:34 . 2012-04-21 21:25 -------- d-----w- C:\sss
2012-04-20 21:22 . 2012-04-23 15:41 -------- d-----w- C:\compilador v2
2012-04-20 12:29 . 2012-04-20 12:29 -------- d-----w- c:\program files (x86)\Square Enix
2012-04-20 12:06 . 2012-04-24 14:20 -------- d-----w- c:\program files (x86)\Battlefield 3
2012-04-20 11:58 . 2012-04-20 11:58 -------- d-----w- c:\program files (x86)\Sega
2012-04-20 11:49 . 2012-04-28 07:02 -------- d-----w- c:\program files (x86)\Ubisoft
2012-04-19 18:57 . 2012-04-19 18:57 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2012-04-19 18:40 . 2012-04-20 12:02 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2012-04-19 18:40 . 2012-04-19 18:40 -------- d-----w- c:\windows\SysWow64\xlive
2012-04-19 17:59 . 2012-04-19 20:56 -------- d-----w- c:\program files (x86)\Rockstar Games
2012-04-19 16:45 . 2012-04-19 16:46 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories
2012-04-19 16:41 . 2007-01-24 13:27 393576 ----a-w- c:\windows\system32\xactengine2_6.dll
2012-04-19 16:41 . 2007-01-24 13:27 255848 ----a-w- c:\windows\SysWow64\xactengine2_6.dll
2012-04-19 16:41 . 2007-03-05 10:42 15128 ----a-w- c:\windows\SysWow64\x3daudio1_1.dll
2012-04-19 16:41 . 2007-03-05 10:42 17688 ----a-w- c:\windows\system32\x3daudio1_1.dll
2012-04-19 16:22 . 2012-04-19 16:40 -------- d-----w- c:\program files (x86)\Mass Effect 3
2012-04-19 14:35 . 2012-04-19 14:35 -------- d-----w- c:\program files (x86)\2K Games
2012-04-18 20:59 . 2012-04-18 21:01 -------- d-----w- c:\program files (x86)\Valve
2012-04-18 20:47 . 2012-04-18 20:47 -------- d-----w- c:\program files\Common Files\Native Instruments
2012-04-18 20:47 . 2012-04-22 19:57 -------- d-----w- c:\program files (x86)\Common Files\Native Instruments
2012-04-18 20:47 . 2012-04-18 20:47 -------- d-----w- c:\program files (x86)\Common Files\Digidesign
2012-04-18 20:47 . 2012-04-18 20:47 -------- dc-h--w- c:\programdata\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2012-04-18 20:47 . 2012-04-22 19:57 -------- d-----w- c:\program files\Native Instruments
2012-04-18 20:47 . 2012-04-18 20:47 -------- d-----w- c:\programdata\Native Instruments
2012-04-18 20:46 . 2012-04-18 20:46 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2012-04-18 20:46 . 2012-04-18 20:46 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2012-04-18 20:21 . 2012-04-18 20:21 -------- d-----w- c:\program files (x86)\ASIO4ALL v2
2012-04-18 20:21 . 2012-05-02 18:30 -------- d-----w- c:\program files (x86)\VstPlugins
2012-04-18 20:21 . 2006-06-20 08:56 225280 ----a-w- c:\windows\SysWow64\rewire.dll
2012-04-18 20:21 . 2009-08-02 20:09 1554944 ----a-w- c:\windows\SysWow64\vorbis.acm
2012-04-18 20:21 . 2012-04-18 20:21 -------- d-----w- c:\program files (x86)\Outsim
2012-04-18 20:18 . 2012-04-18 20:41 -------- d-----w- c:\program files (x86)\Image-Line
2012-04-18 20:11 . 2012-04-18 20:16 -------- d-----w- c:\program files (x86)\FIFA 12
2012-04-18 17:13 . 2009-07-10 10:43 1589248 ----a-w- c:\windows\SysWow64\libmysql_d.dll
2012-04-18 17:13 . 2012-04-18 17:15 -------- d-----w- c:\program files (x86)\PremiumSoft
2012-04-18 17:13 . 2012-04-18 17:13 -------- d-----w- c:\program files (x86)\TeamViewer
2012-04-18 17:13 . 2012-04-18 17:13 -------- d-----w- c:\program files (x86)\UltraVNC
2012-04-18 17:12 . 2012-04-18 17:12 -------- d-----w- c:\program files (x86)\PSPad editor
2012-04-18 17:10 . 2012-04-18 17:10 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-04-18 17:10 . 2012-04-18 17:10 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2012-04-18 16:48 . 2012-04-18 16:52 -------- d-----w- c:\program files (x86)\Google
2012-04-18 16:47 . 2012-04-18 17:16 -------- d-----w- c:\programdata\DAEMON Tools Lite
2012-04-18 04:26 . 2011-12-16 08:46 634880 ----a-w- c:\windows\system32\msvcrt.dll
2012-04-18 04:26 . 2011-12-16 07:52 690688 ----a-w- c:\windows\SysWow64\msvcrt.dll
2012-04-18 04:26 . 2011-08-27 05:37 861696 ----a-w- c:\windows\system32\oleaut32.dll
2012-04-18 04:26 . 2011-08-27 05:37 331776 ----a-w- c:\windows\system32\oleacc.dll
2012-04-18 04:26 . 2011-08-27 04:26 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2012-04-18 04:26 . 2011-08-27 04:26 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
2012-04-18 04:26 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll
2012-04-18 04:26 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2012-04-18 04:26 . 2011-11-05 05:32 2048 ----a-w- c:\windows\system32\tzres.dll
2012-04-18 04:26 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-04-18 04:26 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-04-18 04:26 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-04-17 16:42 . 2012-04-24 13:38 -------- d-----w- c:\users\UpdatusUser
2012-04-17 16:42 . 2012-02-29 21:00 3089728 ----a-w- c:\windows\system32\nvsvc64.dll
2012-04-17 16:42 . 2012-02-29 21:00 6074176 ----a-w- c:\windows\system32\nvcpl.dll
2012-04-17 16:42 . 2012-02-29 20:59 889664 ----a-w- c:\windows\system32\nvvsvc.exe
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-04 20:31 . 2012-01-20 11:59 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-06 19:11 . 2011-03-29 02:36 19352 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-04-06 18:26 . 2012-04-06 18:26 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 5632 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 50176 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
2012-04-06 18:26 . 2012-04-06 18:26 27136 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
2012-04-06 18:26 . 2012-04-06 18:26 15360 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" [2010-06-28 263936]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-08-10 975952]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-04-13 284696]
"RIMBBLaunchAgent.exe"="c:\program files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120413.001\BHDrvx64.sys [2012-04-02 1160824]
R1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1300000.080\ccSetx64.sys [x]
R1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120504.001\IDSvia64.sys [2012-04-28 488568]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1300000.080\Ironx64.SYS [x]
R1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1300000.080\SYMNETS.SYS [x]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
R2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
R2 ePowerSvc;Acer ePower Service;c:\program files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-01-05 867712]
R2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [2011-05-30 36456]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 136176]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 Live Updater Service;Live Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2011-04-22 244624]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe [2011-05-24 138760]
R2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
R2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-06-28 255744]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]
R2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 257696]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-04-17 138360]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 136176]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1300000.080\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1300000.080\SYMEFA64.SYS [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-05-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 20:31]
.
2012-05-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 16:48]
.
2012-05-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-18 16:48]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-22 10920552]
"AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2011-03-13 617120]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-03-13 379552]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-07-29 497648]
"Acer ePower Management"="c:\program files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" [2011-01-05 860040]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-01-10 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-01-10 392984]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-10 417560]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
TCP: DhcpNameServer = 82.100.3.1 62.240.162.158
FF - ProfilePath - c:\users\Woytman\AppData\Roaming\Mozilla\Firefox\Profiles\cwcfcwac.default\
FF - user.js: extentions.y2layers.installId - 7ba8dc3a-5f63-489b-bc70-512831edd56e
FF - user.js: extentions.y2layers.defaultEnableAppsList - bestvideodownloader,ezLooker,pagerage,buzzdock,toprelatedtopics,twittube
FF - user.js: extensions.autoDisableScopes - 14
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-Driver Genius - (no file)
Toolbar-Locked - (no file)
HKLM-Run-ETDWare - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\19.0.0.128\diMaster.dll\" /prefetch:1"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2000845088-3818977652-3785840965-1002\Software\SecuROM\License information*]
"datasecu"=hex:c1,00,79,9d,38,b8,93,90,b3,e2,5b,43,4f,88,71,6d,0f,3e,d7,82,90,
7c,15,f2,0c,ec,f1,d4,11,ed,7c,e8,d4,37,d3,6f,55,7c,64,f8,fb,a6,33,eb,4e,ee,\
"rkeysecu"=hex:00,fc,a1,18,ef,68,ed,be,9c,c1,05,4f,a4,be,13,59
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-05-05 00:02:42
ComboFix-quarantined-files.txt 2012-05-04 22:02
.
Před spuštěním: Volných bajtů: 150 392 705 024
Po spuštění: Volných bajtů: 150 142 582 784
.
- - End Of File - - 1DE4D79C3E47ADB19442CFCA7DFC9679

[jaro3]

Taky jsem přišel proč se to seklo na 6 fázi páč sem zavřel víko ntb

Odinstaluj:
Yontoo

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

KillAll::
File::
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Driver::
gupdate
gupdatem

Folder::
c:\program files (x86)\Yontoo

RegNull::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\SysWow64\SYNSOEMU.DLL

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

C:\sss
c:\program files (x86)\Square Enix
Znáš to? Pokud ne , tak smazat , Square Enix odinstaluj.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.