Prosim o kontrolu logu

[Tweety3]

Dobry den, prosim o kontrolu logu. Vcera se mi pocitac sam od sebe zacal sekat, musim ho pak manualne restartovat. Nevim o co jde, nic jsem do nej vcera neinastaloval. Diky za kontrolu a pripadnou radu.

Omlouvam se, ze pisi bez diakritiky, ale mam notebook koupeny v zahranici.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:34:24, on 2013-03-23
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16470)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Adam\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Adam\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
C:\Users\Adam\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Adam\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Adam\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Adam\Downloads\HijackThis.exe
C:\Users\Adam\AppData\Local\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [ROC_ROC_NT] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Adam\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [ChomikBox] C:\Program Files (x86)\ChomikBox\ChomikBox.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Wyślij &do programu OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: SamsungDeviceConfiguration (SamsungDeviceConfigurationWinService) - Unknown owner - C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater13.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 11914 bytes

[Reklama]

[memphisto]

Odinstaluj BingBar a AVG Secure Search

v logu fixni:
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [ROC_ROC_NT] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Adam\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Google Update] "C:\Users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe" /c

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Tweety3]

V prubehu prace se mi notebook zase dvakrat zasekl a reinstaloval...:/

Nenasel jsem AVG Secure Search, tak neni odinstalovan, snad to nevadi.

Myslite, ze to muze byt mechanicka zavada nebo se spise jedna o vir?

Logy pridam v dalsim postu.

[Tweety3]

sakra, nainstalovalo mi to polsky, snad to nevadi :)

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Wersja bazy: v2013.03.23.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Adam :: ADAM-KOMPUTER [administrator]

2013-03-23 19:13:56
mbam-log-2013-03-23 (19-13-56).txt

Typ skanowania: Szybkie skanowanie
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 209793
Upłynęło: 5 minut(y), 41 sekund(y)

Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)

Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)

Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)

wykrytych folderów: 0

[Tweety3]

# AdwCleaner v2.115 - Log utworzony 23/03/2013 o 19:21:32
# Aktualizacja 17/03/2013 przez Xplode
# System operacyjny : Windows 7 Home Premium Service Pack 1 (64 bits)
# Użytkownik : Adam - ADAM-KOMPUTER
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Users\Adam\Desktop\adwcleaner.exe
# Opcja [Szukaj]


***** [Usługi] *****


***** [Pliki / Foldery] *****

Folder Znaleziono : C:\Program Files (x86)\Common Files\AVG Secure Search
Plik Znaleziono : C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences

***** [Rejestr] *****

Klucz Znaleziono : HKCU\Software\APN PIP
Klucz Znaleziono : HKCU\Software\DataMngr_Toolbar
Klucz Znaleziono : HKCU\Software\InstallCore
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klucz Znaleziono : HKCU\Software\de8c88b43cef42
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Prod.cap
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klucz Znaleziono : HKLM\Software\PIP
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\de8c88b43cef42
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]

***** [Przeglądarki Internetowe] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Rejestr w porządku.

-\\ Google Chrome v25.0.1364.172

Plik : C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Preferences

Znaleziono [l.1745] : homepage = "hxxp://startsear.ch/?aff=1&cf=2d1811b8-283f-11e2-98cd-e4d53de65c08",

*************************

AdwCleaner[R1].txt - [6955 octets] - [30/11/2012 14:39:19]
AdwCleaner[R2].txt - [1779 octets] - [23/03/2013 19:21:32]
AdwCleaner[S1].txt - [7291 octets] - [30/11/2012 14:39:40]
AdwCleaner[S2].txt - [1163 octets] - [08/01/2013 09:33:31]

########## EOF - C:\AdwCleaner[R2].txt - [1959 octets] ##########

[memphisto]

V AdwCleaner nech vše smazat a dodej log

¨Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.

[Tweety3]

# AdwCleaner v2.115 - Log utworzony 23/03/2013 o 19:32:39
# Aktualizacja 17/03/2013 przez Xplode
# System operacyjny : Windows 7 Home Premium Service Pack 1 (64 bits)
# Użytkownik : Adam - ADAM-KOMPUTER
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Users\Adam\Desktop\adwcleaner.exe
# Opcja [Usuń]


***** [Usługi] *****


***** [Pliki / Foldery] *****

Plik Usunięto : C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Usunięto po restarcie : C:\Program Files (x86)\Common Files\AVG Secure Search

***** [Rejestr] *****

Klucz Usunięto : HKCU\Software\APN PIP
Klucz Usunięto : HKCU\Software\DataMngr_Toolbar
Klucz Usunięto : HKCU\Software\InstallCore
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klucz Usunięto : HKCU\Software\de8c88b43cef42
Klucz Usunięto : HKLM\SOFTWARE\Classes\Prod.cap
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klucz Usunięto : HKLM\Software\PIP
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\de8c88b43cef42
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Wartość Usunięto : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]

***** [Przeglądarki Internetowe] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Rejestr w porządku.

-\\ Google Chrome v25.0.1364.172

Plik : C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Preferences

Usunięto [l.1741] : homepage = "hxxp://startsear.ch/?aff=1&cf=2d1811b8-283f-11e2-98cd-e4d53de65c08",

*************************

AdwCleaner[R1].txt - [6955 octets] - [30/11/2012 14:39:19]
AdwCleaner[R2].txt - [2026 octets] - [23/03/2013 19:21:32]
AdwCleaner[R3].txt - [2086 octets] - [23/03/2013 19:32:18]
AdwCleaner[S1].txt - [7291 octets] - [30/11/2012 14:39:40]
AdwCleaner[S2].txt - [1163 octets] - [08/01/2013 09:33:31]
AdwCleaner[S3].txt - [1993 octets] - [23/03/2013 19:32:39]

########## EOF - C:\AdwCleaner[S3].txt - [2053 octets] ##########

[Tweety3]

Cast 1:
19:36:49.0915 4588 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:36:50.0461 4588 ============================================================
19:36:50.0461 4588 Current date / time: 2013/03/23 19:36:50.0461
19:36:50.0461 4588 SystemInfo:
19:36:50.0461 4588
19:36:50.0461 4588 OS Version: 6.1.7601 ServicePack: 1.0
19:36:50.0461 4588 Product type: Workstation
19:36:50.0461 4588 ComputerName: ADAM-KOMPUTER
19:36:50.0461 4588 UserName: Adam
19:36:50.0461 4588 Windows directory: C:\windows
19:36:50.0461 4588 System windows directory: C:\windows
19:36:50.0461 4588 Running under WOW64
19:36:50.0461 4588 Processor architecture: Intel x64
19:36:50.0461 4588 Number of processors: 4
19:36:50.0461 4588 Page size: 0x1000
19:36:50.0461 4588 Boot type: Normal boot
19:36:50.0461 4588 ============================================================
19:36:52.0957 4588 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:36:52.0972 4588 ============================================================
19:36:52.0972 4588 \Device\Harddisk0\DR0:
19:36:52.0972 4588 MBR partitions:
19:36:52.0972 4588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:36:52.0972 4588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3742D000
19:36:52.0972 4588 ============================================================
19:36:53.0019 4588 C: <-> \Device\Harddisk0\DR0\Partition2
19:36:53.0019 4588 ============================================================
19:36:53.0019 4588 Initialize success
19:36:53.0019 4588 ============================================================
19:36:55.0952 2448 ============================================================
19:36:55.0952 2448 Scan started
19:36:55.0952 2448 Mode: Manual;
19:36:55.0952 2448 ============================================================
19:36:57.0621 2448 ================ Scan system memory ========================
19:36:57.0621 2448 System memory - ok
19:36:57.0621 2448 ================ Scan services =============================
19:36:58.0417 2448 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
19:36:58.0448 2448 1394ohci - ok
19:36:58.0557 2448 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
19:36:58.0573 2448 ACPI - ok
19:36:58.0619 2448 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
19:36:58.0619 2448 AcpiPmi - ok
19:36:58.0822 2448 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:36:58.0838 2448 AdobeARMservice - ok
19:36:59.0041 2448 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
19:36:59.0072 2448 adp94xx - ok
19:36:59.0134 2448 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
19:36:59.0134 2448 adpahci - ok
19:36:59.0243 2448 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
19:36:59.0259 2448 adpu320 - ok
19:36:59.0306 2448 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
19:36:59.0306 2448 AeLookupSvc - ok
19:36:59.0446 2448 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
19:36:59.0462 2448 AFD - ok
19:36:59.0540 2448 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
19:36:59.0555 2448 agp440 - ok
19:36:59.0618 2448 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
19:36:59.0633 2448 ALG - ok
19:36:59.0665 2448 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
19:36:59.0665 2448 aliide - ok
19:36:59.0711 2448 [ A423FABC58A7B17CDCE783A4AA8BB170 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
19:36:59.0711 2448 AMD External Events Utility - ok
19:36:59.0727 2448 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
19:36:59.0727 2448 amdide - ok
19:36:59.0774 2448 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
19:36:59.0774 2448 AmdK8 - ok
19:37:00.0601 2448 [ 3CF80AF339FBA0FCF0875941D562B24C ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
19:37:00.0975 2448 amdkmdag - ok
19:37:01.0100 2448 [ 8E42DD898956FEFD47A2689FDA7DA0D3 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
19:37:01.0100 2448 amdkmdap - ok
19:37:01.0131 2448 [ FFCB1F4FEAC8AB77887031F8AD0D7C06 ] amdkmpfd C:\windows\system32\DRIVERS\amdkmpfd.sys
19:37:01.0131 2448 amdkmpfd - ok
19:37:01.0147 2448 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
19:37:01.0147 2448 AmdPPM - ok
19:37:01.0193 2448 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
19:37:01.0209 2448 amdsata - ok
19:37:01.0225 2448 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
19:37:01.0240 2448 amdsbs - ok
19:37:01.0256 2448 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
19:37:01.0256 2448 amdxata - ok
19:37:01.0287 2448 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
19:37:01.0287 2448 AppID - ok
19:37:01.0318 2448 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
19:37:01.0318 2448 AppIDSvc - ok
19:37:01.0334 2448 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
19:37:01.0349 2448 Appinfo - ok
19:37:01.0381 2448 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
19:37:01.0412 2448 arc - ok
19:37:01.0443 2448 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
19:37:01.0443 2448 arcsas - ok
19:37:01.0505 2448 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
19:37:01.0505 2448 aswFsBlk - ok
19:37:01.0552 2448 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
19:37:01.0552 2448 aswMonFlt - ok
19:37:01.0630 2448 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
19:37:01.0630 2448 aswRdr - ok
19:37:01.0755 2448 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\windows\system32\drivers\aswSnx.sys
19:37:01.0755 2448 aswSnx - ok
19:37:01.0833 2448 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\windows\system32\drivers\aswSP.sys
19:37:01.0833 2448 aswSP - ok
19:37:01.0911 2448 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
19:37:01.0911 2448 aswTdi - ok
19:37:01.0958 2448 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
19:37:01.0958 2448 AsyncMac - ok
19:37:01.0973 2448 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
19:37:01.0973 2448 atapi - ok
19:37:02.0036 2448 [ 78B183A794A08978EA0A8D017054352B ] AthBTPort C:\windows\system32\DRIVERS\btath_flt.sys
19:37:02.0036 2448 AthBTPort - ok
19:37:02.0192 2448 [ FBD7CEFD62A3B63372B4017FC4054348 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
19:37:02.0223 2448 AtherosSvc - ok
19:37:02.0582 2448 [ 3D68A1EEF77307142636AF5127990BCB ] athr C:\windows\system32\DRIVERS\athrx.sys
19:37:02.0863 2448 athr - ok
19:37:03.0112 2448 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
19:37:03.0143 2448 AudioEndpointBuilder - ok
19:37:03.0175 2448 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
19:37:03.0175 2448 AudioSrv - ok
19:37:03.0346 2448 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:37:03.0346 2448 avast! Antivirus - ok
19:37:03.0440 2448 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\windows\system32\drivers\avgtpx64.sys
19:37:03.0440 2448 avgtp - ok
19:37:03.0549 2448 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
19:37:03.0549 2448 AxInstSV - ok
19:37:03.0580 2448 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
19:37:03.0596 2448 b06bdrv - ok
19:37:03.0627 2448 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
19:37:03.0643 2448 b57nd60a - ok
19:37:03.0674 2448 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
19:37:03.0689 2448 BDESVC - ok
19:37:03.0721 2448 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
19:37:03.0721 2448 Beep - ok
19:37:03.0767 2448 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
19:37:03.0783 2448 BFE - ok
19:37:03.0845 2448 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
19:37:03.0892 2448 BITS - ok
19:37:03.0923 2448 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
19:37:03.0923 2448 blbdrive - ok
19:37:03.0970 2448 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
19:37:03.0970 2448 bowser - ok
19:37:04.0033 2448 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
19:37:04.0048 2448 BrFiltLo - ok
19:37:04.0048 2448 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
19:37:04.0064 2448 BrFiltUp - ok
19:37:04.0173 2448 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
19:37:04.0189 2448 Browser - ok
19:37:04.0251 2448 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
19:37:04.0267 2448 Brserid - ok
19:37:04.0298 2448 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
19:37:04.0298 2448 BrSerWdm - ok
19:37:04.0298 2448 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
19:37:04.0313 2448 BrUsbMdm - ok
19:37:04.0313 2448 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
19:37:04.0313 2448 BrUsbSer - ok
19:37:04.0376 2448 [ 3E352B570E9CD1047A596927896D6F7C ] BTATH_A2DP C:\windows\system32\drivers\btath_a2dp.sys
19:37:04.0391 2448 BTATH_A2DP - ok
19:37:04.0423 2448 [ AF715C0F2A656BDA9D4AF470224325C7 ] btath_avdt C:\windows\system32\drivers\btath_avdt.sys
19:37:04.0438 2448 btath_avdt - ok
19:37:04.0454 2448 [ D438A33D568C76C24E8D7394981F42DC ] BTATH_BUS C:\windows\system32\DRIVERS\btath_bus.sys
19:37:04.0454 2448 BTATH_BUS - ok
19:37:04.0485 2448 [ 6EFA8C93009E0BE0886C2422C7D20BC5 ] BTATH_HCRP C:\windows\system32\DRIVERS\btath_hcrp.sys
19:37:04.0501 2448 BTATH_HCRP - ok
19:37:04.0516 2448 [ 168506D0F0C8DF588F8A7E25C58A2DE6 ] BTATH_LWFLT C:\windows\system32\DRIVERS\btath_lwflt.sys
19:37:04.0532 2448 BTATH_LWFLT - ok
19:37:04.0547 2448 [ 7C8FB1D73BD279DD914CCA6ED0F4F62B ] BTATH_RCP C:\windows\system32\DRIVERS\btath_rcp.sys
19:37:04.0563 2448 BTATH_RCP - ok
19:37:04.0625 2448 [ 4F6EA72C82C05C8C67643C9E0585108A ] BtFilter C:\windows\system32\DRIVERS\btfilter.sys
19:37:04.0641 2448 BtFilter - ok
19:37:04.0672 2448 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
19:37:04.0672 2448 BthEnum - ok
19:37:04.0703 2448 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
19:37:04.0703 2448 BTHMODEM - ok
19:37:04.0735 2448 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
19:37:04.0735 2448 BthPan - ok
19:37:04.0828 2448 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
19:37:04.0844 2448 BTHPORT - ok
19:37:04.0875 2448 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
19:37:04.0875 2448 bthserv - ok
19:37:04.0891 2448 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
19:37:04.0891 2448 BTHUSB - ok
19:37:04.0922 2448 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
19:37:04.0937 2448 cdfs - ok
19:37:04.0969 2448 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
19:37:04.0969 2448 cdrom - ok
19:37:05.0000 2448 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
19:37:05.0015 2448 CertPropSvc - ok
19:37:05.0047 2448 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
19:37:05.0047 2448 circlass - ok
19:37:05.0125 2448 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
19:37:05.0140 2448 CLFS - ok
19:37:05.0327 2448 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:37:05.0343 2448 clr_optimization_v2.0.50727_32 - ok
19:37:05.0421 2448 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:37:05.0437 2448 clr_optimization_v2.0.50727_64 - ok
19:37:05.0593 2448 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:37:05.0686 2448 clr_optimization_v4.0.30319_32 - ok
19:37:05.0733 2448 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:37:05.0749 2448 clr_optimization_v4.0.30319_64 - ok
19:37:05.0811 2448 [ E13A438F9E51DD034730678E33B73290 ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
19:37:05.0811 2448 clwvd - ok
19:37:05.0842 2448 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
19:37:05.0842 2448 CmBatt - ok
19:37:05.0873 2448 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
19:37:05.0889 2448 cmdide - ok
19:37:05.0983 2448 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
19:37:06.0061 2448 CNG - ok
19:37:06.0107 2448 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
19:37:06.0107 2448 Compbatt - ok
19:37:06.0123 2448 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
19:37:06.0123 2448 CompositeBus - ok
19:37:06.0154 2448 COMSysApp - ok
19:37:06.0794 2448 [ AC0A3766C1E6DF7FA3960A04FF4526B6 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
19:37:06.0809 2448 cphs - ok
19:37:06.0841 2448 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
19:37:06.0841 2448 crcdisk - ok
19:37:06.0872 2448 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
19:37:06.0872 2448 CryptSvc - ok
19:37:06.0934 2448 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
19:37:06.0965 2448 DcomLaunch - ok
19:37:06.0997 2448 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
19:37:06.0997 2448 defragsvc - ok
19:37:07.0043 2448 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
19:37:07.0043 2448 DfsC - ok
19:37:07.0090 2448 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
19:37:07.0090 2448 Dhcp - ok
19:37:07.0121 2448 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
19:37:07.0137 2448 discache - ok
19:37:07.0184 2448 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
19:37:07.0184 2448 Disk - ok
19:37:07.0215 2448 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
19:37:07.0231 2448 Dnscache - ok
19:37:07.0262 2448 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
19:37:07.0293 2448 dot3svc - ok
19:37:07.0309 2448 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
19:37:07.0324 2448 DPS - ok
19:37:07.0355 2448 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
19:37:07.0355 2448 drmkaud - ok
19:37:07.0402 2448 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\windows\system32\DRIVERS\dtsoftbus01.sys
19:37:07.0402 2448 dtsoftbus01 - ok
19:37:07.0496 2448 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
19:37:07.0511 2448 DXGKrnl - ok
19:37:07.0558 2448 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
19:37:07.0558 2448 EapHost - ok
19:37:07.0699 2448 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
19:37:07.0823 2448 ebdrv - ok
19:37:07.0855 2448 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
19:37:07.0870 2448 EFS - ok
19:37:07.0933 2448 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
19:37:07.0979 2448 ehRecvr - ok
19:37:08.0026 2448 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
19:37:08.0026 2448 ehSched - ok
19:37:08.0120 2448 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
19:37:08.0151 2448 elxstor - ok
19:37:08.0167 2448 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
19:37:08.0167 2448 ErrDev - ok
19:37:08.0229 2448 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
19:37:08.0229 2448 EventSystem - ok
19:37:08.0276 2448 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
19:37:08.0276 2448 exfat - ok
19:37:08.0307 2448 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
19:37:08.0307 2448 fastfat - ok
19:37:08.0369 2448 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
19:37:08.0385 2448 Fax - ok
19:37:08.0401 2448 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
19:37:08.0416 2448 fdc - ok
19:37:08.0432 2448 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
19:37:08.0463 2448 fdPHost - ok
19:37:08.0479 2448 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
19:37:08.0479 2448 FDResPub - ok
19:37:08.0494 2448 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
19:37:08.0494 2448 FileInfo - ok
19:37:08.0541 2448 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
19:37:08.0541 2448 Filetrace - ok
19:37:08.0572 2448 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
19:37:08.0572 2448 flpydisk - ok
19:37:08.0588 2448 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
19:37:08.0603 2448 FltMgr - ok
19:37:08.0666 2448 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
19:37:08.0681 2448 FontCache - ok
19:37:08.0744 2448 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:37:08.0744 2448 FontCache3.0.0.0 - ok
19:37:08.0759 2448 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
19:37:08.0775 2448 FsDepends - ok
19:37:08.0806 2448 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
19:37:08.0806 2448 Fs_Rec - ok
19:37:08.0853 2448 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
19:37:08.0853 2448 fvevol - ok
19:37:08.0884 2448 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
19:37:08.0884 2448 gagp30kx - ok
19:37:09.0009 2448 [ 521A469CAF61F00E1DE081CC2099C1D6 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
19:37:09.0040 2448 GameConsoleService - ok
19:37:09.0087 2448 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
19:37:09.0103 2448 gpsvc - ok
19:37:09.0134 2448 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
19:37:09.0134 2448 hcw85cir - ok
19:37:09.0165 2448 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
19:37:09.0181 2448 HdAudAddService - ok
19:37:09.0212 2448 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
19:37:09.0212 2448 HDAudBus - ok
19:37:09.0243 2448 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
19:37:09.0243 2448 HidBatt - ok
19:37:09.0259 2448 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
19:37:09.0274 2448 HidBth - ok
19:37:09.0274 2448 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
19:37:09.0274 2448 HidIr - ok
19:37:09.0305 2448 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
19:37:09.0321 2448 hidserv - ok
19:37:09.0368 2448 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
19:37:09.0383 2448 HidUsb - ok
19:37:09.0415 2448 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
19:37:09.0415 2448 hkmsvc - ok
19:37:09.0430 2448 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
19:37:09.0446 2448 HomeGroupListener - ok
19:37:09.0477 2448 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
19:37:09.0508 2448 HomeGroupProvider - ok
19:37:09.0539 2448 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
19:37:09.0555 2448 HpSAMD - ok
19:37:09.0617 2448 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
19:37:09.0649 2448 HTTP - ok
19:37:09.0680 2448 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
19:37:09.0680 2448 hwpolicy - ok
19:37:09.0695 2448 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
19:37:09.0711 2448 i8042prt - ok
19:37:09.0789 2448 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
19:37:09.0789 2448 iaStor - ok
19:37:09.0867 2448 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
19:37:09.0883 2448 IAStorDataMgrSvc - ok
19:37:09.0945 2448 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
19:37:09.0945 2448 iaStorV - ok
19:37:10.0023 2448 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:37:10.0039 2448 idsvc - ok
19:37:11.0349 2448 [ 3FB253E8059A1AAC3A8B83A31D094CC5 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
19:37:11.0770 2448 igfx - ok
19:37:11.0817 2448 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
19:37:11.0833 2448 iirsp - ok
19:37:11.0926 2448 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
19:37:11.0973 2448 IKEEXT - ok
19:37:12.0145 2448 [ 5F6A3EA5BD7CA861863A3A06CECC115C ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
19:37:12.0223 2448 IntcAzAudAddService - ok
19:37:12.0269 2448 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
19:37:12.0285 2448 IntcDAud - ok
19:37:12.0441 2448 [ 0043EC20C06FD9FE339B5D37474B731E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
19:37:12.0472 2448 Intel(R) Capability Licensing Service Interface - ok
19:37:12.0550 2448 [ 50CA8F1A4B0AEC4EE583594F0A8EB719 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
19:37:12.0550 2448 Intel(R) ME Service - ok
19:37:12.0581 2448 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
19:37:12.0581 2448 intelide - ok
19:37:13.0299 2448 [ 3FB253E8059A1AAC3A8B83A31D094CC5 ] intelkmd C:\windows\system32\DRIVERS\igdpmd64.sys
19:37:13.0705 2448 intelkmd - ok
19:37:13.0751 2448 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
19:37:13.0751 2448 intelppm - ok
19:37:13.0798 2448 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
19:37:13.0798 2448 IPBusEnum - ok
19:37:13.0814 2448 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
19:37:13.0829 2448 IpFilterDriver - ok
19:37:13.0861 2448 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
19:37:13.0876 2448 iphlpsvc - ok
19:37:13.0892 2448 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
19:37:13.0892 2448 IPMIDRV - ok
19:37:13.0939 2448 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
19:37:13.0939 2448 IPNAT - ok
19:37:13.0970 2448 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
19:37:13.0985 2448 IRENUM - ok
19:37:14.0048 2448 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
19:37:14.0063 2448 isapnp - ok
19:37:14.0126 2448 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
19:37:14.0141 2448 iScsiPrt - ok
19:37:14.0173 2448 [ 846354992EBB373F452EB9182D501B08 ] iusb3hcs C:\windows\system32\DRIVERS\iusb3hcs.sys
19:37:14.0173 2448 iusb3hcs - ok
19:37:14.0204 2448 [ 1D88A23853387D34D52CC8F9DDBFC56C ] iusb3hub C:\windows\system32\DRIVERS\iusb3hub.sys
19:37:14.0204 2448 iusb3hub - ok
19:37:14.0251 2448 [ FC5EFD7C797DF19DFB999F0605A7924E ] iusb3xhc C:\windows\system32\DRIVERS\iusb3xhc.sys
19:37:14.0266 2448 iusb3xhc - ok
19:37:14.0297 2448 [ EF27B3B58E393E9F10FB6A6643BD8185 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
19:37:14.0297 2448 jhi_service - ok
19:37:14.0313 2448 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
19:37:14.0313 2448 kbdclass - ok
19:37:14.0360 2448 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
19:37:14.0360 2448 kbdhid - ok
19:37:14.0391 2448 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
19:37:14.0407 2448 KeyIso - ok
19:37:14.0422 2448 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
19:37:14.0438 2448 KSecDD - ok

[Tweety3]

Cast 2:
19:37:14.0453 2448 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
19:37:14.0453 2448 KSecPkg - ok
19:37:14.0485 2448 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
19:37:14.0485 2448 ksthunk - ok
19:37:14.0516 2448 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
19:37:14.0531 2448 KtmRm - ok
19:37:14.0594 2448 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
19:37:14.0609 2448 LanmanServer - ok
19:37:14.0625 2448 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
19:37:14.0641 2448 LanmanWorkstation - ok
19:37:14.0687 2448 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
19:37:14.0687 2448 lltdio - ok
19:37:14.0719 2448 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
19:37:14.0734 2448 lltdsvc - ok
19:37:14.0750 2448 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
19:37:14.0765 2448 lmhosts - ok
19:37:14.0812 2448 [ 2526FECED1625752EF4F8ABB367CAA7E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:37:14.0812 2448 LMS - ok
19:37:14.0843 2448 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
19:37:14.0859 2448 LSI_FC - ok
19:37:14.0875 2448 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
19:37:14.0875 2448 LSI_SAS - ok
19:37:14.0906 2448 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
19:37:14.0906 2448 LSI_SAS2 - ok
19:37:14.0937 2448 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
19:37:14.0953 2448 LSI_SCSI - ok
19:37:14.0968 2448 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
19:37:14.0968 2448 luafv - ok
19:37:15.0062 2448 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\windows\system32\drivers\mbam.sys
19:37:15.0077 2448 MBAMProtector - ok
19:37:15.0140 2448 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:37:15.0155 2448 MBAMScheduler - ok
19:37:15.0233 2448 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:37:15.0249 2448 MBAMService - ok
19:37:15.0280 2448 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
19:37:15.0296 2448 Mcx2Svc - ok
19:37:15.0311 2448 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
19:37:15.0311 2448 megasas - ok
19:37:15.0343 2448 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
19:37:15.0343 2448 MegaSR - ok
19:37:15.0389 2448 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
19:37:15.0389 2448 MEIx64 - ok
19:37:15.0421 2448 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
19:37:15.0421 2448 MMCSS - ok
19:37:15.0436 2448 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
19:37:15.0436 2448 Modem - ok
19:37:15.0483 2448 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
19:37:15.0483 2448 monitor - ok
19:37:15.0514 2448 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
19:37:15.0514 2448 mouclass - ok
19:37:15.0545 2448 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
19:37:15.0545 2448 mouhid - ok
19:37:15.0577 2448 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
19:37:15.0577 2448 mountmgr - ok
19:37:15.0623 2448 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
19:37:15.0623 2448 mpio - ok
19:37:15.0639 2448 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
19:37:15.0655 2448 mpsdrv - ok
19:37:15.0701 2448 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
19:37:15.0717 2448 MpsSvc - ok
19:37:15.0748 2448 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
19:37:15.0748 2448 MRxDAV - ok
19:37:15.0779 2448 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
19:37:15.0795 2448 mrxsmb - ok
19:37:15.0826 2448 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
19:37:15.0842 2448 mrxsmb10 - ok
19:37:15.0873 2448 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
19:37:15.0873 2448 mrxsmb20 - ok
19:37:15.0904 2448 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
19:37:15.0904 2448 msahci - ok
19:37:15.0935 2448 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
19:37:15.0935 2448 msdsm - ok
19:37:15.0967 2448 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
19:37:15.0967 2448 MSDTC - ok
19:37:16.0029 2448 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
19:37:16.0029 2448 Msfs - ok
19:37:16.0060 2448 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
19:37:16.0060 2448 mshidkmdf - ok
19:37:16.0076 2448 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
19:37:16.0076 2448 msisadrv - ok
19:37:16.0123 2448 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
19:37:16.0123 2448 MSiSCSI - ok
19:37:16.0138 2448 msiserver - ok
19:37:16.0169 2448 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
19:37:16.0169 2448 MSKSSRV - ok
19:37:16.0185 2448 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
19:37:16.0185 2448 MSPCLOCK - ok
19:37:16.0201 2448 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
19:37:16.0216 2448 MSPQM - ok
19:37:16.0247 2448 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
19:37:16.0247 2448 MsRPC - ok
19:37:16.0279 2448 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
19:37:16.0294 2448 mssmbios - ok
19:37:16.0325 2448 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
19:37:16.0325 2448 MSTEE - ok
19:37:16.0341 2448 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
19:37:16.0341 2448 MTConfig - ok
19:37:16.0372 2448 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
19:37:16.0372 2448 Mup - ok
19:37:16.0403 2448 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
19:37:16.0419 2448 napagent - ok
19:37:16.0466 2448 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
19:37:16.0481 2448 NativeWifiP - ok
19:37:16.0544 2448 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
19:37:16.0575 2448 NDIS - ok
19:37:16.0606 2448 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
19:37:16.0606 2448 NdisCap - ok
19:37:16.0637 2448 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
19:37:16.0637 2448 NdisTapi - ok
19:37:16.0669 2448 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
19:37:16.0669 2448 Ndisuio - ok
19:37:16.0700 2448 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
19:37:16.0700 2448 NdisWan - ok
19:37:16.0731 2448 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
19:37:16.0731 2448 NDProxy - ok
19:37:16.0747 2448 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
19:37:16.0747 2448 NetBIOS - ok
19:37:16.0762 2448 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
19:37:16.0762 2448 NetBT - ok
19:37:16.0778 2448 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
19:37:16.0793 2448 Netlogon - ok
19:37:16.0825 2448 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
19:37:16.0840 2448 Netman - ok
19:37:16.0871 2448 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
19:37:16.0887 2448 netprofm - ok
19:37:16.0918 2448 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:37:16.0934 2448 NetTcpPortSharing - ok
19:37:16.0965 2448 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
19:37:16.0965 2448 nfrd960 - ok
19:37:17.0012 2448 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
19:37:17.0027 2448 NlaSvc - ok
19:37:17.0027 2448 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
19:37:17.0043 2448 Npfs - ok
19:37:17.0059 2448 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
19:37:17.0074 2448 nsi - ok
19:37:17.0090 2448 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
19:37:17.0105 2448 nsiproxy - ok
19:37:17.0183 2448 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
19:37:17.0215 2448 Ntfs - ok
19:37:17.0246 2448 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
19:37:17.0246 2448 Null - ok
19:37:17.0261 2448 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
19:37:17.0277 2448 nvraid - ok
19:37:17.0308 2448 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
19:37:17.0308 2448 nvstor - ok
19:37:17.0339 2448 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
19:37:17.0339 2448 nv_agp - ok
19:37:17.0355 2448 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
19:37:17.0355 2448 ohci1394 - ok
19:37:17.0417 2448 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:37:17.0417 2448 ose - ok
19:37:17.0605 2448 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:37:17.0761 2448 osppsvc - ok
19:37:17.0823 2448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
19:37:17.0839 2448 p2pimsvc - ok
19:37:17.0870 2448 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
19:37:17.0885 2448 p2psvc - ok
19:37:17.0917 2448 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
19:37:17.0917 2448 Parport - ok
19:37:17.0963 2448 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
19:37:17.0963 2448 partmgr - ok
19:37:18.0026 2448 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
19:37:18.0041 2448 PcaSvc - ok
19:37:18.0057 2448 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
19:37:18.0073 2448 pci - ok
19:37:18.0088 2448 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
19:37:18.0088 2448 pciide - ok
19:37:18.0104 2448 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
19:37:18.0119 2448 pcmcia - ok
19:37:18.0119 2448 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
19:37:18.0135 2448 pcw - ok
19:37:18.0151 2448 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
19:37:18.0166 2448 PEAUTH - ok
19:37:18.0291 2448 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
19:37:18.0291 2448 PerfHost - ok
19:37:18.0369 2448 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
19:37:18.0400 2448 pla - ok
19:37:18.0463 2448 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
19:37:18.0478 2448 PlugPlay - ok
19:37:18.0509 2448 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
19:37:18.0509 2448 PNRPAutoReg - ok
19:37:18.0541 2448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
19:37:18.0541 2448 PNRPsvc - ok
19:37:18.0587 2448 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
19:37:18.0603 2448 PolicyAgent - ok
19:37:18.0650 2448 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
19:37:18.0665 2448 Power - ok
19:37:18.0697 2448 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
19:37:18.0712 2448 PptpMiniport - ok
19:37:18.0728 2448 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
19:37:18.0743 2448 Processor - ok
19:37:18.0775 2448 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
19:37:18.0790 2448 ProfSvc - ok
19:37:18.0806 2448 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
19:37:18.0806 2448 ProtectedStorage - ok
19:37:18.0853 2448 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
19:37:18.0853 2448 Psched - ok
19:37:18.0931 2448 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
19:37:18.0962 2448 ql2300 - ok
19:37:18.0962 2448 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
19:37:18.0977 2448 ql40xx - ok
19:37:19.0009 2448 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
19:37:19.0024 2448 QWAVE - ok
19:37:19.0055 2448 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
19:37:19.0055 2448 QWAVEdrv - ok
19:37:19.0071 2448 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
19:37:19.0071 2448 RasAcd - ok
19:37:19.0102 2448 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
19:37:19.0102 2448 RasAgileVpn - ok
19:37:19.0133 2448 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
19:37:19.0149 2448 RasAuto - ok
19:37:19.0196 2448 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
19:37:19.0196 2448 Rasl2tp - ok
19:37:19.0243 2448 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
19:37:19.0258 2448 RasMan - ok
19:37:19.0289 2448 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
19:37:19.0289 2448 RasPppoe - ok
19:37:19.0305 2448 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
19:37:19.0305 2448 RasSstp - ok
19:37:19.0321 2448 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
19:37:19.0321 2448 rdbss - ok
19:37:19.0352 2448 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
19:37:19.0367 2448 rdpbus - ok
19:37:19.0383 2448 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
19:37:19.0383 2448 RDPCDD - ok
19:37:19.0414 2448 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
19:37:19.0414 2448 RDPENCDD - ok
19:37:19.0430 2448 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
19:37:19.0430 2448 RDPREFMP - ok
19:37:19.0477 2448 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
19:37:19.0492 2448 RDPWD - ok
19:37:19.0523 2448 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
19:37:19.0523 2448 rdyboost - ok
19:37:19.0555 2448 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
19:37:19.0570 2448 RemoteAccess - ok
19:37:19.0617 2448 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
19:37:19.0617 2448 RemoteRegistry - ok
19:37:19.0664 2448 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
19:37:19.0664 2448 RFCOMM - ok
19:37:19.0789 2448 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
19:37:19.0804 2448 RichVideo - ok
19:37:19.0835 2448 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
19:37:19.0851 2448 RpcEptMapper - ok
19:37:19.0867 2448 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
19:37:19.0882 2448 RpcLocator - ok
19:37:19.0898 2448 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
19:37:19.0913 2448 RpcSs - ok
19:37:19.0960 2448 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
19:37:19.0976 2448 rspndr - ok
19:37:20.0007 2448 [ D4A7B5BE29413AFE27DFA2054DCEF957 ] RSUSBVSTOR C:\windows\system32\Drivers\RtsUVStor.sys
19:37:20.0023 2448 RSUSBVSTOR - ok
19:37:20.0085 2448 [ C5CD940EFFADE1F6246730BCA14E9FE6 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
19:37:20.0101 2448 RTL8167 - ok
19:37:20.0132 2448 [ 62DB6CC4B0818F1B5F3441241B098F12 ] SABI C:\windows\system32\Drivers\SABI.sys
19:37:20.0132 2448 SABI - ok
19:37:20.0147 2448 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
19:37:20.0163 2448 SamSs - ok
19:37:20.0225 2448 [ 5E66ABD041D76C46CBF55AEF910FCA56 ] SamsungDeviceConfigurationWinService C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
19:37:20.0225 2448 SamsungDeviceConfigurationWinService - ok
19:37:20.0257 2448 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
19:37:20.0257 2448 sbp2port - ok
19:37:20.0288 2448 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
19:37:20.0303 2448 SCardSvr - ok
19:37:20.0319 2448 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
19:37:20.0335 2448 scfilter - ok
19:37:20.0381 2448 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
19:37:20.0397 2448 Schedule - ok
19:37:20.0428 2448 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
19:37:20.0428 2448 SCPolicySvc - ok
19:37:20.0459 2448 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
19:37:20.0475 2448 SDRSVC - ok
19:37:20.0522 2448 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
19:37:20.0522 2448 secdrv - ok
19:37:20.0553 2448 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
19:37:20.0553 2448 seclogon - ok
19:37:20.0584 2448 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
19:37:20.0584 2448 SENS - ok
19:37:20.0600 2448 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
19:37:20.0615 2448 SensrSvc - ok
19:37:20.0647 2448 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
19:37:20.0647 2448 Serenum - ok
19:37:20.0678 2448 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
19:37:20.0678 2448 Serial - ok
19:37:20.0709 2448 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
19:37:20.0709 2448 sermouse - ok
19:37:20.0740 2448 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
19:37:20.0756 2448 SessionEnv - ok
19:37:20.0771 2448 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
19:37:20.0771 2448 sffdisk - ok
19:37:20.0803 2448 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
19:37:20.0803 2448 sffp_mmc - ok
19:37:20.0818 2448 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
19:37:20.0818 2448 sffp_sd - ok
19:37:20.0834 2448 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
19:37:20.0834 2448 sfloppy - ok
19:37:20.0881 2448 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
19:37:20.0896 2448 SharedAccess - ok
19:37:20.0927 2448 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
19:37:20.0943 2448 ShellHWDetection - ok
19:37:20.0990 2448 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
19:37:20.0990 2448 SiSRaid2 - ok
19:37:21.0021 2448 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
19:37:21.0037 2448 SiSRaid4 - ok
19:37:21.0083 2448 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:37:21.0083 2448 SkypeUpdate - ok
19:37:21.0115 2448 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
19:37:21.0115 2448 Smb - ok
19:37:21.0161 2448 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
19:37:21.0177 2448 SNMPTRAP - ok
19:37:21.0208 2448 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
19:37:21.0208 2448 spldr - ok
19:37:21.0255 2448 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
19:37:21.0286 2448 Spooler - ok
19:37:21.0395 2448 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
19:37:21.0505 2448 sppsvc - ok
19:37:21.0520 2448 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
19:37:21.0536 2448 sppuinotify - ok
19:37:21.0583 2448 [ A15860E920B02C9A7CE8F3A6C2FF1E3A ] sptd C:\windows\System32\Drivers\sptd.sys
19:37:21.0598 2448 sptd - ok
19:37:21.0645 2448 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
19:37:21.0661 2448 srv - ok
19:37:21.0676 2448 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
19:37:21.0692 2448 srv2 - ok
19:37:21.0723 2448 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
19:37:21.0739 2448 srvnet - ok
19:37:21.0770 2448 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
19:37:21.0785 2448 SSDPSRV - ok
19:37:21.0785 2448 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
19:37:21.0801 2448 SstpSvc - ok
19:37:21.0832 2448 Steam Client Service - ok
19:37:21.0879 2448 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
19:37:21.0879 2448 stexstor - ok
19:37:21.0941 2448 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
19:37:21.0957 2448 stisvc - ok
19:37:22.0004 2448 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
19:37:22.0004 2448 swenum - ok
19:37:22.0113 2448 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
19:37:22.0144 2448 swprv - ok
19:37:22.0191 2448 [ 883D2880144FD3ED9F1C04B5B5B9B562 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
19:37:22.0191 2448 SynTP - ok
19:37:22.0269 2448 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
19:37:22.0316 2448 SysMain - ok
19:37:22.0331 2448 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
19:37:22.0347 2448 TabletInputService - ok
19:37:22.0378 2448 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
19:37:22.0394 2448 TapiSrv - ok
19:37:22.0409 2448 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
19:37:22.0425 2448 TBS - ok
19:37:22.0503 2448 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\windows\system32\drivers\tcpip.sys
19:37:22.0534 2448 Tcpip - ok
19:37:22.0628 2448 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
19:37:22.0659 2448 TCPIP6 - ok
19:37:22.0690 2448 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
19:37:22.0690 2448 tcpipreg - ok
19:37:22.0721 2448 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
19:37:22.0721 2448 TDPIPE - ok
19:37:22.0753 2448 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
19:37:22.0768 2448 TDTCP - ok
19:37:22.0784 2448 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
19:37:22.0784 2448 tdx - ok
19:37:22.0815 2448 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
19:37:22.0815 2448 TermDD - ok
19:37:22.0877 2448 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
19:37:22.0893 2448 TermService - ok
19:37:22.0909 2448 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
19:37:22.0924 2448 Themes - ok
19:37:22.0955 2448 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
19:37:22.0971 2448 THREADORDER - ok
19:37:22.0987 2448 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
19:37:23.0002 2448 TrkWks - ok
19:37:23.0049 2448 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
19:37:23.0065 2448 TrustedInstaller - ok
19:37:23.0080 2448 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
19:37:23.0080 2448 tssecsrv - ok
19:37:23.0111 2448 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
19:37:23.0111 2448 TsUsbFlt - ok
19:37:23.0127 2448 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
19:37:23.0127 2448 TsUsbGD - ok
19:37:23.0158 2448 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
19:37:23.0174 2448 tunnel - ok
19:37:23.0205 2448 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
19:37:23.0205 2448 uagp35 - ok
19:37:23.0221 2448 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
19:37:23.0236 2448 udfs - ok
19:37:23.0267 2448 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
19:37:23.0283 2448 UI0Detect - ok
19:37:23.0314 2448 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
19:37:23.0314 2448 uliagpkx - ok
19:37:23.0345 2448 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
19:37:23.0345 2448 umbus - ok
19:37:23.0392 2448 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
19:37:23.0392 2448 UmPass - ok
19:37:23.0486 2448 [ 5A5D20BD5BA50B8F671CDA78585729D5 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
19:37:23.0501 2448 UNS - ok
19:37:23.0533 2448 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
19:37:23.0548 2448 upnphost - ok
19:37:23.0595 2448 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
19:37:23.0595 2448 usbccgp - ok
19:37:23.0626 2448 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
19:37:23.0642 2448 usbcir - ok
19:37:23.0673 2448 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
19:37:23.0689 2448 usbehci - ok
19:37:23.0720 2448 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
19:37:23.0735 2448 usbhub - ok
19:37:23.0767 2448 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
19:37:23.0767 2448 usbohci - ok
19:37:23.0813 2448 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
19:37:23.0813 2448 usbprint - ok
19:37:23.0845 2448 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
19:37:23.0845 2448 USBSTOR - ok
19:37:23.0876 2448 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
19:37:23.0876 2448 usbuhci - ok
19:37:23.0907 2448 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
19:37:23.0923 2448 usbvideo - ok
19:37:23.0938 2448 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
19:37:23.0954 2448 UxSms - ok
19:37:23.0969 2448 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
19:37:23.0985 2448 VaultSvc - ok
19:37:24.0047 2448 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
19:37:24.0047 2448 vdrvroot - ok
19:37:24.0079 2448 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
19:37:24.0094 2448 vds - ok
19:37:24.0141 2448 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
19:37:24.0141 2448 vga - ok
19:37:24.0157 2448 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
19:37:24.0157 2448 VgaSave - ok
19:37:24.0188 2448 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
19:37:24.0188 2448 vhdmp - ok
19:37:24.0219 2448 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
19:37:24.0219 2448 viaide - ok
19:37:24.0250 2448 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
19:37:24.0250 2448 volmgr - ok
19:37:24.0266 2448 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
19:37:24.0281 2448 volmgrx - ok
19:37:24.0328 2448 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
19:37:24.0328 2448 volsnap - ok
19:37:24.0375 2448 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
19:37:24.0375 2448 vsmraid - ok
19:37:24.0437 2448 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
19:37:24.0484 2448 VSS - ok
19:37:24.0547 2448 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
19:37:24.0547 2448 vToolbarUpdater13.2.0 - ok
19:37:24.0578 2448 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
19:37:24.0578 2448 vwifibus - ok
19:37:24.0625 2448 [ 13A0DECD1794DE60A8427862C8669D27 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
19:37:24.0625 2448 vwififlt - ok
19:37:24.0656 2448 [ 49003B357D101CDC474937437ECF5ABC ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
19:37:24.0656 2448 vwifimp - ok
19:37:24.0703 2448 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
19:37:24.0718 2448 W32Time - ok
19:37:24.0749 2448 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
19:37:24.0749 2448 WacomPen - ok
19:37:24.0765 2448 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
19:37:24.0781 2448 WANARP - ok
19:37:24.0781 2448 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
19:37:24.0796 2448 Wanarpv6 - ok
19:37:24.0874 2448 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
19:37:24.0905 2448 WatAdminSvc - ok
19:37:24.0968 2448 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
19:37:25.0015 2448 wbengine - ok
19:37:25.0030 2448 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
19:37:25.0046 2448 WbioSrvc - ok
19:37:25.0077 2448 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
19:37:25.0093 2448 wcncsvc - ok
19:37:25.0124 2448 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
19:37:25.0124 2448 WcsPlugInService - ok
19:37:25.0171 2448 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
19:37:25.0171 2448 Wd - ok
19:37:25.0217 2448 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
19:37:25.0233 2448 Wdf01000 - ok
19:37:25.0264 2448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
19:37:25.0264 2448 WdiServiceHost - ok
19:37:25.0280 2448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
19:37:25.0295 2448 WdiSystemHost - ok
19:37:25.0311 2448 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
19:37:25.0327 2448 WebClient - ok
19:37:25.0342 2448 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
19:37:25.0358 2448 Wecsvc - ok
19:37:25.0405 2448 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
19:37:25.0405 2448 wercplsupport - ok
19:37:25.0436 2448 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
19:37:25.0451 2448 WerSvc - ok
19:37:25.0483 2448 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
19:37:25.0483 2448 WfpLwf - ok
19:37:25.0529 2448 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
19:37:25.0529 2448 WIMMount - ok
19:37:25.0561 2448 WinDefend - ok
19:37:25.0576 2448 WinHttpAutoProxySvc - ok
19:37:25.0639 2448 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
19:37:25.0654 2448 Winmgmt - ok
19:37:25.0732 2448 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
19:37:25.0779 2448 WinRM - ok
19:37:25.0841 2448 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\windows\system32\DRIVERS\WinUSB.sys
19:37:25.0841 2448 WinUSB - ok
19:37:25.0888 2448 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
19:37:25.0919 2448 Wlansvc - ok
19:37:26.0013 2448 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:37:26.0013 2448 wlcrasvc - ok
19:37:26.0091 2448 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:37:26.0138 2448 wlidsvc - ok
19:37:26.0153 2448 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
19:37:26.0169 2448 WmiAcpi - ok
19:37:26.0216 2448 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
19:37:26.0216 2448 wmiApSrv - ok
19:37:26.0247 2448 WMPNetworkSvc - ok
19:37:26.0294 2448 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
19:37:26.0294 2448 WPCSvc - ok
19:37:26.0325 2448 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
19:37:26.0341 2448 WPDBusEnum - ok
19:37:26.0356 2448 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
19:37:26.0356 2448 ws2ifsl - ok
19:37:26.0387 2448 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
19:37:26.0403 2448 wscsvc - ok
19:37:26.0403 2448 WSearch - ok
19:37:26.0512 2448 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
19:37:26.0575 2448 wuauserv - ok
19:37:26.0606 2448 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
19:37:26.0606 2448 WudfPf - ok
19:37:26.0637 2448 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
19:37:26.0653 2448 WUDFRd - ok
19:37:26.0668 2448 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
19:37:26.0684 2448 wudfsvc - ok
19:37:26.0715 2448 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
19:37:26.0731 2448 WwanSvc - ok
19:37:26.0793 2448 [ D65B42FBF19C676AA01AE95EC62F7764 ] ZAtheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
19:37:26.0809 2448 ZAtheros Bt&Wlan Coex Agent - ok
19:37:26.0840 2448 ================ Scan global ===============================
19:37:26.0855 2448 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
19:37:26.0902 2448 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
19:37:26.0918 2448 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
19:37:26.0965 2448 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
19:37:26.0996 2448 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
19:37:27.0011 2448 [Global] - ok
19:37:27.0011 2448 ================ Scan MBR ==================================
19:37:27.0027 2448 [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
19:37:27.0417 2448 \Device\Harddisk0\DR0 - ok
19:37:27.0417 2448 ================ Scan VBR ==================================
19:37:27.0433 2448 [ 3E2D950CF32B92A2E02464336E69FFE2 ] \Device\Harddisk0\DR0\Partition1
19:37:27.0448 2448 \Device\Harddisk0\DR0\Partition1 - ok
19:37:27.0464 2448 [ 6D4BB39460C0CD84D5AAB548E6F329DC ] \Device\Harddisk0\DR0\Partition2
19:37:27.0464 2448 \Device\Harddisk0\DR0\Partition2 - ok
19:37:27.0464 2448 ============================================================
19:37:27.0464 2448 Scan finished
19:37:27.0464 2448 ============================================================
19:37:27.0479 2728 Detected object count: 0
19:37:27.0479 2728 Actual detected object count: 0

[Orcus]

Ještě log z Combofixu.


Stáhni si Crystal Disk Info a nainstaluj jej. Během instalace neinstaluj SpeedUpMyPC2013 - je to jen balast.
- Po dokončení instalace se Ti CDI spustí.
- V horním menu vyber "Úpravy" a zvol "Kopírovat".
- Log sem zkopíruj.

====================================================

Stáhni HWMonitor a nainstaluj jej.
- Spusť a uveď PC do zatížení (tjs. aspoň 10 minut toho při čem to padá).
- Udělej screenshot a ten sem vlož, tak jak je popsáno v návodu k tomuto fóru.

[Tweety3]

ComboFix 13-03-23.01 - Adam 2013-03-23 19:49:43.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.48.1045.18.3985.2576 [GMT 1:00]
Uruchomiony z: c:\users\Adam\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Pliki utworzone od 2013-02-23 do 2013-03-23 )))))))))))))))))))))))))))))))
.
.
2013-03-23 19:00 . 2013-03-23 19:00 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-23 18:32 . 2013-03-23 18:33 121 ----a-w- c:\windows\DeleteOnReboot.bat
2013-03-23 17:46 . 2013-03-23 17:46 -------- d-----w- c:\users\Adam\AppData\Roaming\Malwarebytes
2013-03-23 17:46 . 2013-03-23 17:46 -------- d-----w- c:\programdata\Malwarebytes
2013-03-23 17:46 . 2013-03-23 18:12 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-03-23 17:46 . 2012-12-14 15:49 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-23 17:46 . 2013-03-23 17:46 -------- d-----w- c:\users\Adam\AppData\Local\Programs
2013-03-22 12:49 . 2013-03-15 06:28 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7A8C67AD-6621-4458-A075-B13A087CC658}\mpengine.dll
2013-03-16 14:59 . 2013-03-16 14:59 -------- d-----w- c:\program files (x86)\SopCast
2013-03-16 14:42 . 2013-03-17 22:57 -------- d-----w- c:\users\Adam\AppData\Roaming\.Torrent Stream
2013-03-16 14:39 . 2013-03-17 22:49 -------- d-----w- c:\users\Adam\AppData\Roaming\TorrentStream
2013-03-16 11:54 . 2013-02-02 06:46 237056 ----a-w- c:\windows\system32\url.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-16 12:00 . 2012-11-23 13:27 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-02-12 05:45 . 2013-03-12 23:11 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-12 23:11 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-12 23:11 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-12 23:11 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-12 23:11 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-12 23:11 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-01-17 00:28 . 2010-11-21 03:27 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-05 05:53 . 2013-02-13 21:43 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-05 05:00 . 2013-02-13 21:43 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00 . 2013-02-13 21:43 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46 . 2013-02-13 21:43 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-01-04 04:51 . 2013-02-13 21:43 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-01-04 04:43 . 2013-02-13 21:43 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 03:26 . 2013-02-13 21:43 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 02:47 . 2013-02-13 21:43 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-01-04 02:47 . 2013-02-13 21:43 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-01-04 02:47 . 2013-02-13 21:43 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-01-04 02:47 . 2013-02-13 21:43 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-01-03 06:00 . 2013-02-13 21:43 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-01-03 06:00 . 2013-02-13 21:43 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2013-02-19 1597864]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2012-03-09 36480]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2012-03-09 340096]
R3 btath_avdt;Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys [2012-03-09 111232]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2012-03-09 168064]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2012-03-09 68736]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2012-03-09 281472]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2012-03-09 551552]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys [2012-03-19 314472]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-10-02 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys [2012-03-19 32896]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-02-27 16152]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-11-08 30568]
S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys [2011-09-22 13824]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-04-17 235520]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2012-03-09 107648]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2012-03-06 629984]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-04-18 127320]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-04-18 164184]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S2 SamsungDeviceConfigurationWinService;SamsungDeviceConfiguration;c:\program files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [2012-02-13 31624]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-04-18 362840]
S2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [2012-11-08 711112]
S2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2012-03-09 163456]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2012-03-09 30848]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [2012-02-16 31216]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-25 283200]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [2012-03-26 14748416]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-02-27 356120]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-02-27 788760]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-03-09 685160]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2013-03-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core.job
- c:\users\Adam\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-18 17:28]
.
2013-03-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA.job
- c:\users\Adam\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-18 17:28]
.
2013-03-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core.job
- c:\users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-30 17:58]
.
2013-03-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA.job
- c:\users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-30 17:58]
.
2013-03-23 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26 11:24]
.
2013-03-23 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26 11:24]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-03-27 12459112]
"AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-03-09 1021056]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2012-03-09 800896]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mStart Page = hxxp://samsung.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksportuj do programu Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Wyślij &do programu OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.0.0.138
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-ChomikBox - c:\program files (x86)\ChomikBox\ChomikBox.exe
Wow6432Node-HKLM-Run-vProt - c:\program files (x86)\AVG Secure Search\vprot.exe
Wow6432Node-HKLM-Run-ROC_ROC_NT - c:\program files (x86)\AVG Secure Search\ROC_ROC_NT.exe
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10u_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10u_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10u.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10u.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10u.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10u.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2013-03-23 20:04:50
ComboFix-quarantined-files.txt 2013-03-23 19:04
.
Przed: 380 536 803 328 bajtów wolnych
Po: 380 084 781 056 bajtów wolnych
.
- - End Of File - - F8DB1A07B79A4D8A749D6086D9102A08

[Tweety3]

Mam pl Windows, takze je vsechno polsky

----------------------------------------------------------------------------
CrystalDiskInfo 5.3.1 (C) 2008-2013 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium Edition SP1 [6.1 Build 7601] (x64)
Date : 2013/03/23 20:18:25

-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series Chipset Family SATA AHCI Controller [ATA]
- Hitachi HTS547550A9E384
- TSSTcorp CDDVDW SN-208BB

-- Disk List ---------------------------------------------------------------
(1) Hitachi HTS547550A9E384 : 500,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) Hitachi HTS547550A9E384
----------------------------------------------------------------------------
Model : Hitachi HTS547550A9E384
Firmware : JE3OA50A
Serial Number : J1120021C4R0HA
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 1252 godzin
Power On Count : 691 count
Temparature : 45 C (113 F)
Health Status : dobry
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Częstotliwość pojawiania się błędów podczas odczytu RAW
02 100 100 _40 000000000000 Średnia wydajność dysku
03 253 253 _33 000B00000001 Czas potrzebny do "rozkręcenia" talerzy dysku
04 100 100 __0 0000000002BA Ilość cykli start/stop
05 100 100 __5 000000000000 Ilość realokowanych sektorów
07 100 100 _67 000000000000 Częstotliwość błędów podczas pozycjonowania
08 100 100 _40 000000000000 Średnia wydajność podczas pozycjonowania
09 _98 _98 __0 0000000004E4 Liczba godzin pracy dysku
0A 100 100 _60 000000000000 Liczba prób uruchomienia osi napędowej dysku
0C 100 100 __0 0000000002B3 Llość skończonych operacji start/stop
BF 100 100 __0 000000000000 Częstotliwość występowania błędów spowodowanych wstrząsem
C0 100 100 __0 00000000000F Ilość naprawionych cykli wyłączenia
C1 _99 _99 __0 0000000027AF Ilość cykli do tak zwanej "Landing Zone"
C2 133 133 __0 003C000A002D Temperatury dysku (ogólna)
C4 100 100 __0 000000000000 Liczba remapowanych operacji
C5 100 100 __0 000000000000 Liczba sektorów niestabilnych (oczekujących na remapowanie)
C6 100 100 __0 000000000000 Ilość nie naprawionych błędów
C7 200 200 __0 000000000000 Liczba błędów CRC podczas pracy w trybie Ultra DMA
DF 100 100 __0 000000000000 Ilość obciążeń spowodowanych operacjami odczytu, zapisu, pozycjonowania

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4A31 3132 3030 3231 4334 5230 4841
020: 0003 4000 0004 4A45 334F 4135 3041 4869 7461 6368
030: 6920 4854 5335 3437 3535 3041 3945 3338 3420 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 005E 004C
080: 01FC 0028 746B 7D69 6163 7469 BC49 6163 407F 004C
090: 004D 4080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 826C 5000 CCA7
110: 2BC2 2421 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 FA00 0000 4000 0400 0108 0000
140: 0000 0A09 0A09 0A08 0A08 0000 0000 0000 0000 0000
150: 0000 0000 4532 4335 0000 2804 0000 5DAD 2518 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 6AA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 FD FD 01
020: 00 00 00 0B 00 00 04 12 00 64 64 BA 02 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 62 62 E4 04 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 B3 02 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 0F 00 00 00 00
090: 00 00 C1 12 00 63 63 AF 27 00 00 00 00 00 C2 02
0A0: 00 85 85 2D 00 0A 00 3C 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 00 00 00 00 00 00 00 DF 0A 00 64 64 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 2D 00 01 5B
170: 03 00 01 00 02 9A 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 45

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89