Prosím o kontrolu logu Vyřešeno

[M4RTY]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.10.08.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16686
Martin :: MARTIN-PC [administrátor]

8.10.2013 14:00:25
MBAM-log-2013-10-08 (14-14-09).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 250733
Uplynulý čas: 13 minut, 17 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 8
C:\$RECYCLE.BIN\S-1-5-21-1016948174-364442444-1613984613-1000\$RLMSLGJ\swa1_23.exe (PUP.Optional.SevereWeatherAlerts) -> Nebyla provedena žádná instrukce.
C:\$RECYCLE.BIN\S-1-5-21-1016948174-364442444-1613984613-1000\$RMEWYYJ\Rolimno_vt.exe (PUP.Optional.Rolimno.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\MLion 1.0.zip (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\wegameinstall.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Application Data\Bundled software uninstaller\biclient.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\5LX98Y48\swa1_23[1].exe (PUP.Optional.SevereWeatherAlerts) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\9GG8ZLLT\Rolimno_vt[1].exe (PUP.Optional.Rolimno.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\KB6AQGVK\Setup[1].exe (PUP.Optional.Rolimno.A) -> Nebyla provedena žádná instrukce.

(konec)

RogueKiller V8.7.1 _x64_ [Oct 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Oprava HOSTS -- Datum : 10/08/2013 14:16:47
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com 3dns.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.adobe.com activate.wip.adobe.com activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com adobe-dns-4.adobe.com adobe-dns.adobe.com adobeereg.com crl.verisign.net ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com ood.opsource.net practivate.adobe practivate.adobe.com
127.0.0.1 practivate.adobe.ipp practivate.adobe.newoa practivate.adobe.ntp wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com wwis-dubc1-vip60.adobe.com www.adobeereg.com www.wip.adobe.com www.wip1.adobe.com www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com


¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost


Dokončeno : << RKreport[0]_H_10082013_141647.txt >>
RKreport[0]_D_10062013_225408.txt;RKreport[0]_S_10062013_195657.txt;RKreport[0]_S_10082013_141640.txt

[Reklama]

[M4RTY]

Shortcut Cleaner 1.2.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
http://www.bleepingcomputer.com/downloa ... t-cleaner/

Windows Version: Windows 7 Professional Service Pack 1
Program started at: 10/08/2013 02:18:27 PM.

Scanning for registry hijacks:

* No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

Searching C:\Users\Martin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

Searching C:\Users\Public\Desktop\

Searching C:\Users\Martin\Desktop


0 bad shortcuts found.

Program finished at: 10/08/2013 02:18:34 PM
Execution time: 0 hours(s), 0 minute(s), and 7 seconds(s)


exeHelper by Raktor
Build 20100414
Run at 14:19:14 on 10/08/13
Now searching...
Checking for numerical processes...
Checking for sysguard processes...
Checking for bad processes...
Checking for bad files...
Checking for bad registry entries...
Resetting filetype association for .exe
Resetting filetype association for .com
Resetting userinit and shell values...
Resetting policies...
--Finished--

A vše při starém.

[memphisto]

V Mbam nech vše smazat a dodej log

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.

[M4RTY]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.10.08.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16686
Martin :: MARTIN-PC [administrátor]

8.10.2013 14:00:25
mbam-log-2013-10-08 (14-00-25).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 250733
Uplynulý čas: 13 minut, 17 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 8
C:\$RECYCLE.BIN\S-1-5-21-1016948174-364442444-1613984613-1000\$RLMSLGJ\swa1_23.exe (PUP.Optional.SevereWeatherAlerts) -> Nebyla provedena žádná instrukce.
C:\$RECYCLE.BIN\S-1-5-21-1016948174-364442444-1613984613-1000\$RMEWYYJ\Rolimno_vt.exe (PUP.Optional.Rolimno.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\MAC OS X Mountain_Lion 1.0.zip (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\wegameinstall.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Application Data\Bundled software uninstaller\biclient.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\5LX98Y48\swa1_23[1].exe (PUP.Optional.SevereWeatherAlerts) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\9GG8ZLLT\Rolimno_vt[1].exe (PUP.Optional.Rolimno.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\KB6AQGVK\Setup[1].exe (PUP.Optional.Rolimno.A) -> Nebyla provedena žádná instrukce.

(konec)

[jaro3]

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[M4RTY]

Tyjo nevím co jsem dělal, že jsem to nesmazal,když jsem to četl od memphista. Asi jsem neměl vybrané ty soubory.

Jdu na ten zbytek

[M4RTY]

Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Verze: v2013.10.08.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16686
Martin :: MARTIN-PC [administrátor]

8.10.2013 20:36:04
mbam-log-2013-10-08 (20-36-04).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 251054
Uplynulý čas: 13 minut, 20 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 8
C:\$RECYCLE.BIN\S-1-5-21-1016948174-364442444-1613984613-1000\$RLMSLGJ\swa1_23.exe (PUP.Optional.SevereWeatherAlerts) -> Přesun do karantény a smazání se zdařilo.
C:\$RECYCLE.BIN\S-1-5-21-1016948174-364442444-1613984613-1000\$RMEWYYJ\Rolimno_vt.exe (PUP.Optional.Rolimno.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Martin\Downloads\MAC OS X Mountain_Lion 1.0.zip (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Martin\Downloads\wegameinstall.exe (PUP.Optional.Softonic.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Martin\AppData\Local\Application Data\Bundled software uninstaller\biclient.exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\5LX98Y48\swa1_23[1].exe (PUP.Optional.SevereWeatherAlerts) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\9GG8ZLLT\Rolimno_vt[1].exe (PUP.Optional.Rolimno.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Martin\Local Settings\Temporary Internet Files\Content.IE5\KB6AQGVK\Setup[1].exe (PUP.Optional.Rolimno.A) -> Přesun do karantény a smazání se zdařilo.

(konec)

[M4RTY]

20:59:02.0524 2716 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:59:02.0804 2716 ============================================================
20:59:02.0804 2716 Current date / time: 2013/10/08 20:59:02.0804
20:59:02.0804 2716 SystemInfo:
20:59:02.0804 2716
20:59:02.0804 2716 OS Version: 6.1.7601 ServicePack: 1.0
20:59:02.0804 2716 Product type: Workstation
20:59:02.0804 2716 ComputerName: MARTIN-PC
20:59:02.0804 2716 UserName: Martin
20:59:02.0804 2716 Windows directory: C:\Windows
20:59:02.0804 2716 System windows directory: C:\Windows
20:59:02.0804 2716 Running under WOW64
20:59:02.0804 2716 Processor architecture: Intel x64
20:59:02.0804 2716 Number of processors: 3
20:59:02.0804 2716 Page size: 0x1000
20:59:02.0804 2716 Boot type: Normal boot
20:59:02.0804 2716 ============================================================
20:59:04.0115 2716 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:59:04.0614 2716 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:59:04.0614 2716 Drive \Device\Harddisk2\DR2 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:59:06.0486 2716 ============================================================
20:59:06.0486 2716 \Device\Harddisk0\DR0:
20:59:06.0486 2716 MBR partitions:
20:59:06.0502 2716 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0xF0F4D12
20:59:06.0517 2716 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xF0F9000, BlocksNum 0x141F800
20:59:06.0517 2716 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x10518C12, BlocksNum 0x14F14AAF
20:59:06.0517 2716 \Device\Harddisk1\DR1:
20:59:06.0517 2716 MBR partitions:
20:59:06.0517 2716 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x5AB69000
20:59:06.0517 2716 \Device\Harddisk2\DR2:
20:59:06.0517 2716 MBR partitions:
20:59:06.0517 2716 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x2542D681
20:59:06.0517 2716 ============================================================
20:59:06.0564 2716 C: <-> \Device\Harddisk0\DR0\Partition1
20:59:06.0595 2716 D: <-> \Device\Harddisk0\DR0\Partition2
20:59:06.0626 2716 G: <-> \Device\Harddisk2\DR2\Partition1
20:59:06.0658 2716 H: <-> \Device\Harddisk0\DR0\Partition3
20:59:06.0704 2716 J: <-> \Device\Harddisk1\DR1\Partition1
20:59:06.0704 2716 ============================================================
20:59:06.0704 2716 Initialize success
20:59:06.0704 2716 ============================================================
20:59:08.0311 0980 ============================================================
20:59:08.0311 0980 Scan started
20:59:08.0311 0980 Mode: Manual;
20:59:08.0311 0980 ============================================================
20:59:09.0310 0980 ================ Scan system memory ========================
20:59:09.0310 0980 System memory - ok
20:59:09.0310 0980 ================ Scan services =============================
20:59:09.0450 0980 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:59:09.0450 0980 1394ohci - ok
20:59:09.0481 0980 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:59:09.0481 0980 ACPI - ok
20:59:09.0481 0980 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:59:09.0497 0980 AcpiPmi - ok
20:59:09.0544 0980 [ 303C174A7303A7702A68653152FC65A0 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
20:59:09.0544 0980 Adobe LM Service - ok
20:59:09.0606 0980 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:59:09.0606 0980 AdobeARMservice - ok
20:59:09.0700 0980 [ 24A0876D07EF356DCBC1D7A7929354AB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:59:09.0700 0980 AdobeFlashPlayerUpdateSvc - ok
20:59:09.0731 0980 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:59:09.0731 0980 adp94xx - ok
20:59:09.0762 0980 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:59:09.0762 0980 adpahci - ok
20:59:09.0778 0980 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:59:09.0778 0980 adpu320 - ok
20:59:09.0809 0980 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:59:09.0809 0980 AeLookupSvc - ok
20:59:09.0856 0980 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:59:09.0856 0980 AFD - ok
20:59:09.0871 0980 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:59:09.0871 0980 agp440 - ok
20:59:09.0887 0980 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:59:09.0887 0980 ALG - ok
20:59:09.0934 0980 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:59:09.0934 0980 aliide - ok
20:59:09.0965 0980 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:59:09.0965 0980 AMD External Events Utility - ok
20:59:10.0043 0980 AMD FUEL Service - ok
20:59:10.0074 0980 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:59:10.0074 0980 amdide - ok
20:59:10.0105 0980 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
20:59:10.0105 0980 amdiox64 - ok
20:59:10.0121 0980 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:59:10.0121 0980 AmdK8 - ok
20:59:10.0292 0980 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:59:10.0386 0980 amdkmdag - ok
20:59:10.0433 0980 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:59:10.0433 0980 amdkmdap - ok
20:59:10.0448 0980 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:59:10.0448 0980 AmdPPM - ok
20:59:10.0480 0980 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:59:10.0480 0980 amdsata - ok
20:59:10.0511 0980 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
20:59:10.0511 0980 amdsbs - ok
20:59:10.0542 0980 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:59:10.0542 0980 amdxata - ok
20:59:10.0573 0980 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
20:59:10.0573 0980 AODDriver4.2 - ok
20:59:10.0620 0980 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:59:10.0620 0980 AppID - ok
20:59:10.0651 0980 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:59:10.0651 0980 AppIDSvc - ok
20:59:10.0667 0980 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
20:59:10.0667 0980 Appinfo - ok
20:59:10.0729 0980 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:59:10.0729 0980 Apple Mobile Device - ok
20:59:10.0760 0980 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
20:59:10.0776 0980 AppMgmt - ok
20:59:10.0776 0980 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
20:59:10.0792 0980 arc - ok
20:59:10.0792 0980 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:59:10.0792 0980 arcsas - ok
20:59:10.0838 0980 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:59:10.0838 0980 aswFsBlk - ok
20:59:10.0854 0980 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:59:10.0854 0980 aswMonFlt - ok
20:59:10.0854 0980 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
20:59:10.0854 0980 aswRdr - ok
20:59:10.0885 0980 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:59:10.0885 0980 aswSnx - ok
20:59:10.0901 0980 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:59:10.0901 0980 aswSP - ok
20:59:10.0916 0980 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:59:10.0916 0980 aswTdi - ok
20:59:10.0932 0980 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:59:10.0932 0980 AsyncMac - ok
20:59:10.0963 0980 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:59:10.0963 0980 atapi - ok
20:59:11.0010 0980 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:59:11.0026 0980 AudioEndpointBuilder - ok
20:59:11.0026 0980 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:59:11.0041 0980 AudioSrv - ok
20:59:11.0072 0980 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:59:11.0072 0980 avast! Antivirus - ok
20:59:11.0088 0980 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:59:11.0088 0980 AxInstSV - ok
20:59:11.0119 0980 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
20:59:11.0135 0980 b06bdrv - ok
20:59:11.0150 0980 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:59:11.0150 0980 b57nd60a - ok
20:59:11.0182 0980 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:59:11.0197 0980 BDESVC - ok
20:59:11.0213 0980 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:59:11.0213 0980 Beep - ok
20:59:11.0244 0980 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:59:11.0244 0980 BFE - ok
20:59:11.0275 0980 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
20:59:11.0291 0980 BITS - ok
20:59:11.0306 0980 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:59:11.0306 0980 blbdrive - ok
20:59:11.0384 0980 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:59:11.0384 0980 Bonjour Service - ok
20:59:11.0400 0980 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:59:11.0400 0980 bowser - ok
20:59:11.0416 0980 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
20:59:11.0416 0980 BrFiltLo - ok
20:59:11.0431 0980 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
20:59:11.0431 0980 BrFiltUp - ok
20:59:11.0478 0980 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
20:59:11.0478 0980 BridgeMP - ok
20:59:11.0509 0980 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:59:11.0509 0980 Browser - ok
20:59:11.0525 0980 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:59:11.0525 0980 Brserid - ok
20:59:11.0556 0980 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:59:11.0556 0980 BrSerWdm - ok
20:59:11.0572 0980 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:59:11.0572 0980 BrUsbMdm - ok
20:59:11.0572 0980 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:59:11.0572 0980 BrUsbSer - ok
20:59:11.0618 0980 [ 832B121E4532919CC49F2438F1DCAA21 ] BthAvrcp C:\Windows\system32\DRIVERS\BthAvrcp.sys
20:59:11.0618 0980 BthAvrcp - ok
20:59:11.0650 0980 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:59:11.0650 0980 BthEnum - ok
20:59:11.0650 0980 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:59:11.0650 0980 BTHMODEM - ok
20:59:11.0681 0980 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:59:11.0681 0980 BthPan - ok
20:59:11.0696 0980 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:59:11.0696 0980 BTHPORT - ok
20:59:11.0728 0980 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:59:11.0728 0980 bthserv - ok
20:59:11.0743 0980 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:59:11.0743 0980 BTHUSB - ok
20:59:11.0759 0980 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:59:11.0759 0980 cdfs - ok
20:59:11.0790 0980 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:59:11.0790 0980 cdrom - ok
20:59:11.0806 0980 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:59:11.0806 0980 CertPropSvc - ok
20:59:11.0821 0980 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
20:59:11.0821 0980 circlass - ok
20:59:11.0837 0980 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:59:11.0852 0980 CLFS - ok
20:59:11.0899 0980 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:59:11.0899 0980 clr_optimization_v2.0.50727_32 - ok
20:59:11.0946 0980 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:59:11.0946 0980 clr_optimization_v2.0.50727_64 - ok
20:59:11.0993 0980 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:59:11.0993 0980 clr_optimization_v4.0.30319_32 - ok
20:59:12.0008 0980 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:59:12.0008 0980 clr_optimization_v4.0.30319_64 - ok
20:59:12.0024 0980 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
20:59:12.0024 0980 CmBatt - ok
20:59:12.0071 0980 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:59:12.0071 0980 cmdide - ok
20:59:12.0102 0980 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:59:12.0102 0980 CNG - ok
20:59:12.0118 0980 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
20:59:12.0118 0980 Compbatt - ok
20:59:12.0149 0980 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:59:12.0149 0980 CompositeBus - ok
20:59:12.0164 0980 COMSysApp - ok
20:59:12.0196 0980 cpuz135 - ok
20:59:12.0211 0980 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:59:12.0211 0980 crcdisk - ok
20:59:12.0258 0980 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:59:12.0274 0980 CryptSvc - ok
20:59:12.0305 0980 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
20:59:12.0305 0980 CSC - ok
20:59:12.0336 0980 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
20:59:12.0336 0980 CscService - ok
20:59:12.0367 0980 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:59:12.0367 0980 DcomLaunch - ok
20:59:12.0398 0980 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:59:12.0414 0980 defragsvc - ok
20:59:12.0414 0980 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:59:12.0414 0980 DfsC - ok
20:59:12.0430 0980 dgderdrv - ok
20:59:12.0461 0980 [ E428DFFA96FAD07D8CA3C9082563A225 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
20:59:12.0461 0980 dg_ssudbus - ok
20:59:12.0492 0980 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:59:12.0508 0980 Dhcp - ok
20:59:12.0508 0980 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:59:12.0523 0980 discache - ok
20:59:12.0539 0980 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
20:59:12.0539 0980 Disk - ok
20:59:12.0570 0980 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
20:59:12.0570 0980 dmvsc - ok
20:59:12.0586 0980 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:59:12.0601 0980 Dnscache - ok
20:59:12.0632 0980 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:59:12.0632 0980 dot3svc - ok
20:59:12.0648 0980 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:59:12.0664 0980 DPS - ok
20:59:12.0679 0980 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:59:12.0679 0980 drmkaud - ok
20:59:12.0710 0980 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
20:59:12.0710 0980 dtsoftbus01 - ok
20:59:12.0757 0980 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:59:12.0757 0980 DXGKrnl - ok
20:59:12.0773 0980 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:59:12.0773 0980 EapHost - ok
20:59:12.0898 0980 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
20:59:12.0929 0980 ebdrv - ok
20:59:12.0944 0980 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:59:12.0944 0980 EFS - ok
20:59:13.0022 0980 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:59:13.0038 0980 ehRecvr - ok
20:59:13.0054 0980 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:59:13.0054 0980 ehSched - ok
20:59:13.0069 0980 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:59:13.0069 0980 elxstor - ok
20:59:13.0085 0980 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:59:13.0085 0980 ErrDev - ok
20:59:13.0116 0980 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:59:13.0116 0980 EventSystem - ok
20:59:13.0132 0980 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:59:13.0147 0980 exfat - ok
20:59:13.0163 0980 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:59:13.0163 0980 fastfat - ok
20:59:13.0210 0980 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:59:13.0210 0980 Fax - ok
20:59:13.0225 0980 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
20:59:13.0241 0980 fdc - ok
20:59:13.0256 0980 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:59:13.0288 0980 fdPHost - ok
20:59:13.0303 0980 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:59:13.0303 0980 FDResPub - ok
20:59:13.0303 0980 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:59:13.0303 0980 FileInfo - ok
20:59:13.0319 0980 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:59:13.0319 0980 Filetrace - ok
20:59:13.0334 0980 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
20:59:13.0334 0980 flpydisk - ok
20:59:13.0350 0980 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:59:13.0350 0980 FltMgr - ok
20:59:13.0397 0980 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
20:59:13.0397 0980 FontCache - ok
20:59:13.0444 0980 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:59:13.0459 0980 FontCache3.0.0.0 - ok
20:59:13.0459 0980 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:59:13.0475 0980 FsDepends - ok
20:59:13.0490 0980 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:59:13.0490 0980 Fs_Rec - ok
20:59:13.0522 0980 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:59:13.0522 0980 fvevol - ok
20:59:13.0537 0980 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:59:13.0537 0980 gagp30kx - ok
20:59:13.0553 0980 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:59:13.0553 0980 GEARAspiWDM - ok
20:59:13.0600 0980 [ 16C2A6BCDDA8952C2035DEC861492A19 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
20:59:13.0600 0980 ggflt - ok
20:59:13.0631 0980 [ 6B503DF845EABF3457E49FBBDA26C10E ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
20:59:13.0631 0980 ggsemc - ok
20:59:13.0662 0980 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:59:13.0678 0980 gpsvc - ok
20:59:13.0740 0980 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:59:13.0756 0980 gupdate - ok
20:59:13.0771 0980 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:59:13.0771 0980 gupdatem - ok
20:59:13.0787 0980 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:59:13.0787 0980 hcw85cir - ok
20:59:13.0818 0980 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:59:13.0818 0980 HdAudAddService - ok
20:59:13.0834 0980 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:59:13.0834 0980 HDAudBus - ok
20:59:13.0849 0980 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
20:59:13.0849 0980 HidBatt - ok
20:59:13.0865 0980 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:59:13.0865 0980 HidBth - ok
20:59:13.0880 0980 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
20:59:13.0880 0980 HidIr - ok
20:59:13.0896 0980 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
20:59:13.0896 0980 hidserv - ok
20:59:13.0927 0980 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:59:13.0927 0980 HidUsb - ok
20:59:13.0943 0980 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:59:13.0943 0980 hkmsvc - ok
20:59:13.0958 0980 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:59:13.0974 0980 HomeGroupListener - ok
20:59:13.0990 0980 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:59:14.0005 0980 HomeGroupProvider - ok
20:59:14.0005 0980 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:59:14.0005 0980 HpSAMD - ok
20:59:14.0036 0980 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
20:59:14.0036 0980 htcnprot - ok
20:59:14.0068 0980 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:59:14.0068 0980 HTTP - ok
20:59:14.0083 0980 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:59:14.0083 0980 hwpolicy - ok
20:59:14.0099 0980 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:59:14.0099 0980 i8042prt - ok
20:59:14.0130 0980 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:59:14.0130 0980 iaStorV - ok
20:59:14.0224 0980 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:59:14.0255 0980 idsvc - ok
20:59:14.0255 0980 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:59:14.0255 0980 iirsp - ok
20:59:14.0286 0980 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:59:14.0302 0980 IKEEXT - ok
20:59:14.0364 0980 [ A5F7CEF8A939EBE270462EDEFD629F20 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:59:14.0380 0980 IntcAzAudAddService - ok
20:59:14.0426 0980 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:59:14.0426 0980 intelide - ok
20:59:14.0442 0980 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
20:59:14.0458 0980 intelppm - ok
20:59:14.0473 0980 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:59:14.0473 0980 IPBusEnum - ok
20:59:14.0489 0980 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:59:14.0489 0980 IpFilterDriver - ok
20:59:14.0504 0980 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:59:14.0520 0980 iphlpsvc - ok
20:59:14.0551 0980 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:59:14.0551 0980 IPMIDRV - ok
20:59:14.0567 0980 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:59:14.0582 0980 IPNAT - ok
20:59:14.0660 0980 [ 71F993192EB04B2C4C80F2DEE9119229 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:59:14.0676 0980 iPod Service - ok
20:59:14.0723 0980 [ 02DEF37AB75E0032C50724646F708DE8 ] iPodDrv C:\Windows\system32\drivers\iPodDrv.sys
20:59:14.0723 0980 iPodDrv - ok
20:59:14.0738 0980 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:59:14.0738 0980 IRENUM - ok
20:59:14.0754 0980 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:59:14.0754 0980 isapnp - ok
20:59:14.0785 0980 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:59:14.0785 0980 iScsiPrt - ok
20:59:14.0801 0980 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:59:14.0801 0980 kbdclass - ok
20:59:14.0816 0980 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:59:14.0816 0980 kbdhid - ok
20:59:14.0832 0980 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:59:14.0832 0980 KeyIso - ok
20:59:14.0863 0980 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:59:14.0863 0980 KSecDD - ok
20:59:14.0879 0980 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:59:14.0879 0980 KSecPkg - ok
20:59:14.0894 0980 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:59:14.0894 0980 ksthunk - ok
20:59:14.0926 0980 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:59:14.0926 0980 KtmRm - ok
20:59:14.0957 0980 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
20:59:14.0957 0980 LanmanServer - ok
20:59:14.0988 0980 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:59:14.0988 0980 LanmanWorkstation - ok
20:59:15.0019 0980 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:59:15.0019 0980 lltdio - ok
20:59:15.0035 0980 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:59:15.0035 0980 lltdsvc - ok
20:59:15.0082 0980 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:59:15.0082 0980 lmhosts - ok
20:59:15.0097 0980 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:59:15.0113 0980 LSI_FC - ok
20:59:15.0113 0980 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:59:15.0128 0980 LSI_SAS - ok
20:59:15.0128 0980 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
20:59:15.0128 0980 LSI_SAS2 - ok
20:59:15.0144 0980 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:59:15.0160 0980 LSI_SCSI - ok
20:59:15.0175 0980 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:59:15.0175 0980 luafv - ok
20:59:15.0191 0980 [ DE585D1D266805E5EEDAE911FDD16F38 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
20:59:15.0191 0980 ManyCam - ok
20:59:15.0253 0980 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:59:15.0253 0980 MBAMProtector - ok
20:59:15.0347 0980 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:59:15.0362 0980 MBAMScheduler - ok
20:59:15.0409 0980 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:59:15.0409 0980 MBAMService - ok
20:59:15.0425 0980 [ 2E7FFDEF8BAFD04CBB517507B821E878 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
20:59:15.0425 0980 mcaudrv_simple - ok
20:59:15.0456 0980 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:59:15.0456 0980 Mcx2Svc - ok
20:59:15.0472 0980 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
20:59:15.0472 0980 megasas - ok
20:59:15.0503 0980 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
20:59:15.0503 0980 MegaSR - ok
20:59:15.0581 0980 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
20:59:15.0581 0980 Microsoft Office Groove Audit Service - ok
20:59:15.0612 0980 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:59:15.0612 0980 MMCSS - ok
20:59:15.0612 0980 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:59:15.0612 0980 Modem - ok
20:59:15.0628 0980 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:59:15.0628 0980 monitor - ok
20:59:15.0643 0980 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:59:15.0643 0980 mouclass - ok
20:59:15.0659 0980 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:59:15.0674 0980 mouhid - ok
20:59:15.0674 0980 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:59:15.0674 0980 mountmgr - ok
20:59:15.0737 0980 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:59:15.0737 0980 MozillaMaintenance - ok
20:59:15.0752 0980 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:59:15.0752 0980 mpio - ok
20:59:15.0752 0980 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:59:15.0768 0980 mpsdrv - ok
20:59:15.0799 0980 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:59:15.0799 0980 MpsSvc - ok
20:59:15.0815 0980 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:59:15.0815 0980 MRxDAV - ok
20:59:15.0846 0980 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:59:15.0846 0980 mrxsmb - ok
20:59:15.0862 0980 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:59:15.0862 0980 mrxsmb10 - ok
20:59:15.0877 0980 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:59:15.0877 0980 mrxsmb20 - ok
20:59:15.0924 0980 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:59:15.0924 0980 msahci - ok
20:59:15.0955 0980 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:59:15.0955 0980 msdsm - ok
20:59:15.0971 0980 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:59:15.0986 0980 MSDTC - ok
20:59:16.0002 0980 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:59:16.0002 0980 Msfs - ok
20:59:16.0018 0980 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:59:16.0018 0980 mshidkmdf - ok
20:59:16.0033 0980 MSICDSetup - ok
20:59:16.0033 0980 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:59:16.0033 0980 msisadrv - ok
20:59:16.0064 0980 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:59:16.0064 0980 MSiSCSI - ok
20:59:16.0064 0980 msiserver - ok
20:59:16.0080 0980 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:59:16.0096 0980 MSKSSRV - ok
20:59:16.0096 0980 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:59:16.0096 0980 MSPCLOCK - ok
20:59:16.0111 0980 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:59:16.0111 0980 MSPQM - ok
20:59:16.0158 0980 [ 9DA8FD98E368730E38589AA1952AC37F ] MSR Service C:\Program Files (x86)\Clarus\Samsung SecretZone\MSSvc.exe
20:59:16.0158 0980 MSR Service - ok
20:59:16.0174 0980 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:59:16.0189 0980 MsRPC - ok
20:59:16.0205 0980 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:59:16.0205 0980 mssmbios - ok
20:59:16.0220 0980 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:59:16.0220 0980 MSTEE - ok
20:59:16.0236 0980 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
20:59:16.0236 0980 MTConfig - ok
20:59:16.0252 0980 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:59:16.0252 0980 Mup - ok
20:59:16.0267 0980 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:59:16.0283 0980 napagent - ok
20:59:16.0314 0980 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:59:16.0314 0980 NativeWifiP - ok
20:59:16.0361 0980 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:59:16.0376 0980 NDIS - ok
20:59:16.0392 0980 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:59:16.0392 0980 NdisCap - ok
20:59:16.0423 0980 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:59:16.0423 0980 NdisTapi - ok
20:59:16.0439 0980 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:59:16.0439 0980 Ndisuio - ok
20:59:16.0454 0980 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:59:16.0454 0980 NdisWan - ok
20:59:16.0470 0980 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:59:16.0470 0980 NDProxy - ok
20:59:16.0486 0980 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:59:16.0486 0980 NetBIOS - ok
20:59:16.0501 0980 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:59:16.0501 0980 NetBT - ok
20:59:16.0517 0980 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:59:16.0517 0980 Netlogon - ok
20:59:16.0548 0980 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:59:16.0579 0980 Netman - ok
20:59:16.0595 0980 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:59:16.0595 0980 netprofm - ok
20:59:16.0610 0980 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:59:16.0610 0980 NetTcpPortSharing - ok
20:59:16.0626 0980 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:59:16.0626 0980 nfrd960 - ok
20:59:16.0657 0980 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:59:16.0673 0980 NlaSvc - ok
20:59:16.0688 0980 NLNdisMP - ok
20:59:16.0688 0980 NLNdisPT - ok
20:59:16.0704 0980 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:59:16.0704 0980 Npfs - ok
20:59:16.0720 0980 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:59:16.0720 0980 nsi - ok
20:59:16.0720 0980 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:59:16.0720 0980 nsiproxy - ok
20:59:16.0782 0980 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:59:16.0798 0980 Ntfs - ok
20:59:16.0798 0980 NTIOLib_1_0_C - ok
20:59:16.0813 0980 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:59:16.0813 0980 Null - ok
20:59:16.0860 0980 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:59:16.0860 0980 nvraid - ok
20:59:16.0876 0980 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:59:16.0876 0980 nvstor - ok
20:59:16.0907 0980 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:59:16.0907 0980 nv_agp - ok
20:59:17.0047 0980 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:59:17.0063 0980 odserv - ok
20:59:17.0078 0980 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:59:17.0078 0980 ohci1394 - ok
20:59:17.0110 0980 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:59:17.0110 0980 ose - ok
20:59:17.0141 0980 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:59:17.0141 0980 p2pimsvc - ok
20:59:17.0156 0980 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:59:17.0172 0980 p2psvc - ok
20:59:17.0203 0980 [ 0950875BC5F7348B263B2A3FC56CBA34 ] PAC7302 C:\Windows\system32\DRIVERS\PAC7302.SYS
20:59:17.0203 0980 PAC7302 - ok
20:59:17.0234 0980 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
20:59:17.0234 0980 Parport - ok
20:59:17.0266 0980 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:59:17.0266 0980 partmgr - ok
20:59:17.0328 0980 [ 3CAE2BBC86FCF7F94C9696994AF30386 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
20:59:17.0328 0980 PassThru Service - ok
20:59:17.0359 0980 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:59:17.0375 0980 PcaSvc - ok
20:59:17.0390 0980 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:59:17.0390 0980 pci - ok
20:59:17.0437 0980 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:59:17.0437 0980 pciide - ok
20:59:17.0453 0980 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:59:17.0453 0980 pcmcia - ok
20:59:17.0468 0980 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:59:17.0468 0980 pcw - ok
20:59:17.0484 0980 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:59:17.0500 0980 PEAUTH - ok
20:59:17.0546 0980 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:59:17.0562 0980 PeerDistSvc - ok
20:59:17.0624 0980 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:59:17.0624 0980 PerfHost - ok
20:59:17.0827 0980 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:59:17.0843 0980 pla - ok
20:59:17.0874 0980 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:59:17.0874 0980 PlugPlay - ok
20:59:17.0890 0980 PnkBstrA - ok
20:59:17.0905 0980 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:59:17.0905 0980 PNRPAutoReg - ok
20:59:17.0921 0980 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:59:17.0936 0980 PNRPsvc - ok
20:59:17.0968 0980 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:59:17.0968 0980 PolicyAgent - ok
20:59:17.0999 0980 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:59:18.0014 0980 Power - ok
20:59:18.0030 0980 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:59:18.0030 0980 PptpMiniport - ok
20:59:18.0046 0980 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
20:59:18.0046 0980 Processor - ok
20:59:18.0077 0980 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:59:18.0077 0980 ProfSvc - ok
20:59:18.0092 0980 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:59:18.0092 0980 ProtectedStorage - ok
20:59:18.0108 0980 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:59:18.0108 0980 Psched - ok
20:59:18.0155 0980 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:59:18.0170 0980 ql2300 - ok
20:59:18.0186 0980 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:59:18.0186 0980 ql40xx - ok
20:59:18.0217 0980 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:59:18.0233 0980 QWAVE - ok
20:59:18.0233 0980 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:59:18.0233 0980 QWAVEdrv - ok
20:59:18.0311 0980 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
20:59:18.0326 0980 RapiMgr - ok
20:59:18.0326 0980 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:59:18.0342 0980 RasAcd - ok
20:59:18.0358 0980 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:59:18.0358 0980 RasAgileVpn - ok
20:59:18.0373 0980 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:59:18.0373 0980 RasAuto - ok
20:59:18.0389 0980 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:59:18.0389 0980 Rasl2tp - ok
20:59:18.0404 0980 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:59:18.0404 0980 RasMan - ok

[M4RTY]

20:59:18.0420 0980 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:59:18.0436 0980 RasPppoe - ok
20:59:18.0451 0980 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:59:18.0451 0980 RasSstp - ok
20:59:18.0467 0980 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:59:18.0467 0980 rdbss - ok
20:59:18.0482 0980 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:59:18.0482 0980 rdpbus - ok
20:59:18.0498 0980 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:59:18.0498 0980 RDPCDD - ok
20:59:18.0529 0980 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:59:18.0529 0980 RDPDR - ok
20:59:18.0545 0980 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:59:18.0545 0980 RDPENCDD - ok
20:59:18.0560 0980 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:59:18.0576 0980 RDPREFMP - ok
20:59:18.0592 0980 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:59:18.0592 0980 RDPWD - ok
20:59:18.0607 0980 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:59:18.0623 0980 rdyboost - ok
20:59:18.0638 0980 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:59:18.0638 0980 RemoteAccess - ok
20:59:18.0654 0980 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:59:18.0654 0980 RemoteRegistry - ok
20:59:18.0685 0980 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:59:18.0685 0980 RFCOMM - ok
20:59:18.0794 0980 [ 0B169FE016039571ECC6DB70073F8979 ] RichVideo64 C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
20:59:18.0794 0980 RichVideo64 - ok
20:59:18.0826 0980 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:59:18.0857 0980 RpcEptMapper - ok
20:59:18.0872 0980 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:59:18.0872 0980 RpcLocator - ok
20:59:18.0904 0980 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:59:18.0904 0980 RpcSs - ok
20:59:18.0935 0980 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:59:18.0935 0980 rspndr - ok
20:59:18.0966 0980 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:59:18.0966 0980 RTL8167 - ok
20:59:18.0997 0980 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:59:19.0013 0980 s3cap - ok
20:59:19.0028 0980 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:59:19.0028 0980 SamSs - ok
20:59:19.0044 0980 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:59:19.0044 0980 sbp2port - ok
20:59:19.0075 0980 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:59:19.0075 0980 SCardSvr - ok
20:59:19.0091 0980 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:59:19.0091 0980 scfilter - ok
20:59:19.0122 0980 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:59:19.0122 0980 Schedule - ok
20:59:19.0153 0980 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:59:19.0153 0980 SCPolicySvc - ok
20:59:19.0184 0980 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:59:19.0200 0980 SDRSVC - ok
20:59:19.0231 0980 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:59:19.0231 0980 secdrv - ok
20:59:19.0247 0980 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:59:19.0247 0980 seclogon - ok
20:59:19.0247 0980 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
20:59:19.0262 0980 SENS - ok
20:59:19.0262 0980 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:59:19.0278 0980 SensrSvc - ok
20:59:19.0294 0980 [ 052D4299E72FFFCCD9A168ADCDF5C450 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys
20:59:19.0294 0980 Ser2pl - ok
20:59:19.0309 0980 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:59:19.0309 0980 Serenum - ok
20:59:19.0325 0980 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:59:19.0325 0980 Serial - ok
20:59:19.0340 0980 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:59:19.0340 0980 sermouse - ok
20:59:19.0372 0980 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:59:19.0372 0980 SessionEnv - ok
20:59:19.0387 0980 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:59:19.0387 0980 sffdisk - ok
20:59:19.0387 0980 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:59:19.0403 0980 sffp_mmc - ok
20:59:19.0418 0980 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:59:19.0418 0980 sffp_sd - ok
20:59:19.0418 0980 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:59:19.0434 0980 sfloppy - ok
20:59:19.0465 0980 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:59:19.0465 0980 SharedAccess - ok
20:59:19.0481 0980 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:59:19.0496 0980 ShellHWDetection - ok
20:59:19.0496 0980 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
20:59:19.0512 0980 SiSRaid2 - ok
20:59:19.0528 0980 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:59:19.0528 0980 SiSRaid4 - ok
20:59:19.0606 0980 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:59:19.0621 0980 SkypeUpdate - ok
20:59:19.0637 0980 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:59:19.0637 0980 Smb - ok
20:59:19.0668 0980 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:59:19.0684 0980 SNMPTRAP - ok
20:59:19.0762 0980 [ 3A4F2C0BB87A0895ABEBA341AA1E341B ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
20:59:19.0777 0980 Sony PC Companion - ok
20:59:19.0808 0980 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\Windows\syswow64\speedfan.sys
20:59:19.0808 0980 speedfan - ok
20:59:19.0840 0980 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:59:19.0840 0980 spldr - ok
20:59:19.0871 0980 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:59:19.0871 0980 Spooler - ok
20:59:19.0964 0980 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:59:20.0011 0980 sppsvc - ok
20:59:20.0027 0980 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:59:20.0027 0980 sppuinotify - ok
20:59:20.0089 0980 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:59:20.0105 0980 srv - ok
20:59:20.0120 0980 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:59:20.0120 0980 srv2 - ok
20:59:20.0136 0980 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:59:20.0136 0980 srvnet - ok
20:59:20.0167 0980 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:59:20.0167 0980 SSDPSRV - ok
20:59:20.0183 0980 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:59:20.0183 0980 SstpSvc - ok
20:59:20.0214 0980 [ AAF6F247F1DC370C593B4430974EAD9C ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
20:59:20.0230 0980 ssudmdm - ok
20:59:20.0261 0980 Steam Client Service - ok
20:59:20.0292 0980 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
20:59:20.0292 0980 stexstor - ok
20:59:20.0323 0980 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:59:20.0339 0980 stisvc - ok
20:59:20.0354 0980 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:59:20.0354 0980 storflt - ok
20:59:20.0370 0980 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
20:59:20.0386 0980 StorSvc - ok
20:59:20.0401 0980 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:59:20.0401 0980 storvsc - ok
20:59:20.0417 0980 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:59:20.0417 0980 swenum - ok
20:59:20.0432 0980 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:59:20.0432 0980 swprv - ok
20:59:20.0479 0980 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:59:20.0495 0980 SysMain - ok
20:59:20.0526 0980 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:59:20.0526 0980 TabletInputService - ok
20:59:20.0526 0980 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:59:20.0542 0980 TapiSrv - ok
20:59:20.0557 0980 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:59:20.0557 0980 TBS - ok
20:59:20.0666 0980 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:59:20.0698 0980 Tcpip - ok
20:59:20.0729 0980 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:59:20.0744 0980 TCPIP6 - ok
20:59:20.0776 0980 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:59:20.0776 0980 tcpipreg - ok
20:59:20.0807 0980 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:59:20.0807 0980 TDPIPE - ok
20:59:20.0822 0980 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:59:20.0822 0980 TDTCP - ok
20:59:20.0854 0980 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:59:20.0854 0980 tdx - ok
20:59:20.0963 0980 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
20:59:20.0963 0980 TeamViewer7 - ok
20:59:20.0994 0980 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:59:20.0994 0980 TermDD - ok
20:59:21.0244 0980 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:59:21.0259 0980 TermService - ok
20:59:21.0290 0980 [ 9201BE2BAB8A9FF8E20D8439AE3BB04D ] Themes C:\Windows\system32\themeservice.dll
20:59:21.0290 0980 Themes - ok
20:59:21.0306 0980 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:59:21.0306 0980 THREADORDER - ok
20:59:21.0322 0980 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:59:21.0337 0980 TrkWks - ok
20:59:21.0368 0980 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:59:21.0368 0980 TrustedInstaller - ok
20:59:21.0400 0980 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:59:21.0415 0980 tssecsrv - ok
20:59:21.0446 0980 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:59:21.0446 0980 TsUsbFlt - ok
20:59:21.0462 0980 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
20:59:21.0462 0980 TsUsbGD - ok
20:59:21.0493 0980 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:59:21.0493 0980 tunnel - ok
20:59:21.0509 0980 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:59:21.0509 0980 uagp35 - ok
20:59:21.0540 0980 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:59:21.0540 0980 udfs - ok
20:59:21.0556 0980 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:59:21.0556 0980 UI0Detect - ok
20:59:21.0571 0980 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:59:21.0587 0980 uliagpkx - ok
20:59:21.0602 0980 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:59:21.0602 0980 umbus - ok
20:59:21.0618 0980 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
20:59:21.0618 0980 UmPass - ok
20:59:21.0649 0980 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
20:59:21.0649 0980 UmRdpService - ok
20:59:21.0665 0980 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:59:21.0680 0980 upnphost - ok
20:59:21.0696 0980 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:59:21.0696 0980 usbaudio - ok
20:59:21.0727 0980 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:59:21.0727 0980 usbccgp - ok
20:59:21.0743 0980 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:59:21.0743 0980 usbcir - ok
20:59:21.0758 0980 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:59:21.0758 0980 usbehci - ok
20:59:21.0790 0980 [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:59:21.0790 0980 usbfilter - ok
20:59:21.0805 0980 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:59:21.0805 0980 usbhub - ok
20:59:21.0821 0980 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:59:21.0836 0980 usbohci - ok
20:59:21.0852 0980 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:59:21.0868 0980 usbprint - ok
20:59:21.0868 0980 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:59:21.0883 0980 usbscan - ok
20:59:21.0899 0980 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:59:21.0899 0980 USBSTOR - ok
20:59:21.0914 0980 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:59:21.0914 0980 usbuhci - ok
20:59:21.0930 0980 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:59:21.0930 0980 UxSms - ok
20:59:21.0946 0980 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:59:21.0946 0980 VaultSvc - ok
20:59:21.0961 0980 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:59:21.0961 0980 vdrvroot - ok
20:59:21.0977 0980 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:59:21.0992 0980 vds - ok
20:59:22.0024 0980 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:59:22.0024 0980 vga - ok
20:59:22.0039 0980 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:59:22.0039 0980 VgaSave - ok
20:59:22.0055 0980 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:59:22.0070 0980 vhdmp - ok
20:59:22.0102 0980 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:59:22.0102 0980 viaide - ok
20:59:22.0133 0980 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:59:22.0133 0980 vmbus - ok
20:59:22.0148 0980 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:59:22.0148 0980 VMBusHID - ok
20:59:22.0164 0980 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:59:22.0164 0980 volmgr - ok
20:59:22.0180 0980 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:59:22.0180 0980 volmgrx - ok
20:59:22.0195 0980 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:59:22.0195 0980 volsnap - ok
20:59:22.0226 0980 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:59:22.0226 0980 vsmraid - ok
20:59:22.0273 0980 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:59:22.0289 0980 VSS - ok
20:59:22.0320 0980 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:59:22.0320 0980 vwifibus - ok
20:59:22.0336 0980 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:59:22.0336 0980 W32Time - ok
20:59:22.0351 0980 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:59:22.0351 0980 WacomPen - ok
20:59:22.0382 0980 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:59:22.0382 0980 WANARP - ok
20:59:22.0382 0980 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:59:22.0382 0980 Wanarpv6 - ok
20:59:22.0570 0980 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:59:22.0585 0980 WatAdminSvc - ok
20:59:22.0632 0980 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:59:22.0648 0980 wbengine - ok
20:59:22.0679 0980 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:59:22.0679 0980 WbioSrvc - ok
20:59:22.0726 0980 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
20:59:22.0726 0980 WcesComm - ok
20:59:22.0741 0980 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:59:22.0741 0980 wcncsvc - ok
20:59:22.0757 0980 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:59:22.0757 0980 WcsPlugInService - ok
20:59:22.0788 0980 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
20:59:22.0788 0980 Wd - ok
20:59:22.0819 0980 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:59:22.0835 0980 Wdf01000 - ok
20:59:22.0850 0980 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:59:22.0850 0980 WdiServiceHost - ok
20:59:22.0850 0980 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:59:22.0866 0980 WdiSystemHost - ok
20:59:22.0897 0980 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:59:22.0897 0980 WebClient - ok
20:59:22.0928 0980 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:59:22.0928 0980 Wecsvc - ok
20:59:22.0944 0980 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:59:22.0944 0980 wercplsupport - ok
20:59:22.0975 0980 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:59:22.0975 0980 WerSvc - ok
20:59:22.0991 0980 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:59:22.0991 0980 WfpLwf - ok
20:59:23.0006 0980 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:59:23.0006 0980 WIMMount - ok
20:59:23.0022 0980 WinDefend - ok
20:59:23.0069 0980 WinHttpAutoProxySvc - ok
20:59:23.0131 0980 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:59:23.0131 0980 Winmgmt - ok
20:59:23.0209 0980 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:59:23.0256 0980 WinRM - ok
20:59:23.0272 0980 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:59:23.0287 0980 WinUsb - ok
20:59:23.0303 0980 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:59:23.0318 0980 Wlansvc - ok
20:59:23.0412 0980 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:59:23.0443 0980 wlidsvc - ok
20:59:23.0459 0980 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:59:23.0459 0980 WmiAcpi - ok
20:59:23.0474 0980 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:59:23.0490 0980 wmiApSrv - ok
20:59:23.0506 0980 WMPNetworkSvc - ok
20:59:23.0521 0980 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:59:23.0521 0980 WPCSvc - ok
20:59:23.0537 0980 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:59:23.0537 0980 WPDBusEnum - ok
20:59:23.0568 0980 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:59:23.0584 0980 ws2ifsl - ok
20:59:23.0599 0980 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
20:59:23.0599 0980 wscsvc - ok
20:59:23.0599 0980 WSearch - ok
20:59:23.0677 0980 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:59:23.0708 0980 wuauserv - ok
20:59:23.0724 0980 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:59:23.0740 0980 WudfPf - ok
20:59:23.0755 0980 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:59:23.0771 0980 WUDFRd - ok
20:59:23.0786 0980 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:59:23.0786 0980 wudfsvc - ok
20:59:23.0802 0980 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
20:59:23.0818 0980 WwanSvc - ok
20:59:23.0833 0980 ================ Scan global ===============================
20:59:23.0849 0980 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:59:23.0880 0980 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
20:59:23.0911 0980 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
20:59:23.0927 0980 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:59:23.0942 0980 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:59:23.0942 0980 [Global] - ok
20:59:23.0942 0980 ================ Scan MBR ==================================
20:59:23.0958 0980 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:59:27.0733 0980 \Device\Harddisk0\DR0 - ok
20:59:28.0248 0980 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:59:28.0264 0980 \Device\Harddisk1\DR1 - ok
20:59:28.0264 0980 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
20:59:28.0700 0980 \Device\Harddisk2\DR2 - ok
20:59:28.0700 0980 ================ Scan VBR ==================================
20:59:28.0716 0980 [ 1333F7B51D44A9BAFA2D44409D7BC2CB ] \Device\Harddisk0\DR0\Partition1
20:59:28.0794 0980 \Device\Harddisk0\DR0\Partition1 - ok
20:59:28.0825 0980 [ FACE4A9B0BE0E2015F9507A52DE8F12A ] \Device\Harddisk0\DR0\Partition2
20:59:28.0888 0980 \Device\Harddisk0\DR0\Partition2 - ok
20:59:28.0903 0980 [ E2CCB61BE90983EBE62E45B6F2ADA39C ] \Device\Harddisk0\DR0\Partition3
20:59:28.0966 0980 \Device\Harddisk0\DR0\Partition3 - ok
20:59:28.0981 0980 [ DA4F138FB6660F5F3558BEC6D9FA4737 ] \Device\Harddisk1\DR1\Partition1
20:59:28.0981 0980 \Device\Harddisk1\DR1\Partition1 - ok
20:59:28.0981 0980 [ 53A0EE2EA9F7DD712C36CBBC64CDDF11 ] \Device\Harddisk2\DR2\Partition1
20:59:28.0981 0980 \Device\Harddisk2\DR2\Partition1 - ok
20:59:28.0981 0980 ============================================================
20:59:28.0981 0980 Scan finished
20:59:28.0981 0980 ============================================================
20:59:28.0997 3596 Detected object count: 0
20:59:28.0997 3596 Actual detected object count: 0

[M4RTY]

ComboFix 13-10-08.01 - Martin 08.10.2013 21:07:10.3.3 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4095.2671 [GMT 2:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\STFB4F4.tmp
c:\windows\msxml4-KB2758694-enu.LOG
c:\windows\SysWow64\frapsvid.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-09-08 do 2013-10-08 )))))))))))))))))))))))))))))))
.
.
2013-10-08 19:15 . 2013-10-08 19:15 -------- d-----w- c:\users\Ostatní\AppData\Local\temp
2013-10-08 19:15 . 2013-10-08 19:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-08 19:04 . 2013-10-08 19:04 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{35846C56-6C7F-4969-B58F-709C64278C1F}\offreg.dll
2013-10-08 11:52 . 2013-09-05 05:32 9694160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{35846C56-6C7F-4969-B58F-709C64278C1F}\mpengine.dll
2013-10-06 17:42 . 2013-10-06 17:42 -------- d-----w- c:\windows\ERUNT
2013-10-06 09:18 . 2013-10-06 09:18 39424 ----a-w- c:\windows\zipinst.exe
2013-10-06 09:18 . 2013-10-06 09:18 -------- d--h--w- c:\windows\PIF
2013-10-06 09:18 . 2013-10-06 09:22 -------- d-----w- c:\program files (x86)\Finderbar 1.5
2013-10-05 18:41 . 2013-10-05 19:38 -------- d-----w- C:\sss
2013-10-05 15:12 . 2013-10-05 15:12 -------- d-----w- c:\users\Martin\AppData\Local\ODUI
2013-10-05 15:11 . 2013-10-05 15:11 -------- d-----w- c:\users\Martin\AppData\Local\Stardock
2013-10-05 15:10 . 2013-10-05 15:10 -------- d-----w- c:\users\Martin\AppData\Roaming\Stardock
2013-10-05 15:10 . 2013-10-05 15:10 -------- dc-h--w- c:\programdata\{0F4A7EFE-5950-4389-BF36-1E625D72456B}
2013-10-05 15:10 . 2013-10-05 15:10 -------- d-----w- c:\program files (x86)\Common Files\Stardock
2013-10-05 15:06 . 2013-10-05 15:10 -------- d-----w- c:\programdata\Stardock
2013-10-05 15:05 . 2013-10-05 15:05 -------- dc-h--w- c:\programdata\{B98A2B83-8BB0-42E7-AA1D-D6FA6E7C8F31}
2013-10-05 15:05 . 2013-10-05 15:10 -------- d-----w- c:\program files (x86)\Stardock
2013-10-05 14:36 . 2013-10-06 17:08 925184 ----a-w- c:\windows\expstart.exe
2013-10-05 14:35 . 2010-11-21 03:24 2872320 ----a-w- c:\windows\explorer.backup.exe
2013-10-03 17:03 . 2013-10-03 17:03 -------- d-----w- c:\program files\iPod
2013-10-03 17:03 . 2013-10-03 17:04 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-03 17:03 . 2013-10-03 17:04 -------- d-----w- c:\program files\iTunes
2013-10-03 17:03 . 2013-10-03 17:04 -------- d-----w- c:\program files (x86)\iTunes
2013-10-02 16:20 . 2013-10-02 16:20 -------- d-----w- c:\users\Martin\AppData\Local\Wondershare
2013-10-02 16:20 . 2013-10-02 16:20 -------- d-----w- c:\program files (x86)\Common Files\Wondershare
2013-10-02 16:20 . 2013-10-02 16:20 -------- d-----w- c:\users\Martin\AppData\Roaming\Wondershare
2013-10-02 16:20 . 2013-10-02 16:20 -------- d-----w- c:\program files (x86)\Wondershare
2013-09-28 15:05 . 2013-09-28 15:05 -------- d-----w- c:\programdata\KONAMI
2013-09-28 10:51 . 2013-09-28 10:51 -------- d-----w- c:\users\Martin\AppData\Roaming\Blender Foundation
2013-09-28 10:50 . 2013-09-28 10:50 -------- d-----w- c:\users\Martin\.thumbnails
2013-09-28 10:49 . 2013-09-28 10:49 -------- d-----w- c:\program files (x86)\Blender Foundation
2013-09-24 13:13 . 2013-07-18 12:32 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll
2013-09-19 17:54 . 2013-09-19 17:54 -------- d-----w- c:\users\Ostatní\AppData\Local\Htc
2013-09-19 16:12 . 2013-09-19 17:54 -------- d-----w- c:\users\Ostatní\AppData\Roaming\HTC
2013-09-18 19:16 . 2013-09-18 19:50 -------- d-----w- C:\DevC
2013-09-18 19:15 . 2013-09-18 19:20 -------- d-----w- c:\users\Martin\AppData\Roaming\Dev-Cpp
2013-09-18 19:15 . 2013-09-18 19:15 -------- d-----w- C:\Dev-Cpp
2013-09-18 17:03 . 2013-09-18 17:09 -------- d-----w- c:\users\Martin\MSYNC
2013-09-18 17:02 . 2013-09-18 17:02 -------- d-----w- c:\program files (x86)\Media Mushroom Limited
2013-09-18 15:37 . 2013-09-20 05:22 -------- d-----w- c:\users\Martin\AppData\Local\Htc
2013-09-18 15:37 . 2013-09-18 15:37 -------- d-----w- c:\users\Martin\AppData\Roaming\HTC
2013-09-18 15:35 . 2013-09-18 15:35 -------- d-----w- c:\program files (x86)\Spirent Communications
2013-09-18 15:34 . 2013-09-18 15:36 -------- d-----w- c:\program files (x86)\HTC
2013-09-18 14:03 . 2013-09-18 14:05 -------- d-----w- c:\windows\WindowsMobile
2013-09-17 21:05 . 2013-09-18 16:36 -------- d-----w- c:\users\Martin\AppData\Roaming\MOBILedit
2013-09-17 20:58 . 2013-09-17 20:59 -------- d-----w- c:\program files\Compiled Driver Disc (Full)
2013-09-17 20:57 . 2013-09-17 20:57 -------- d-----w- c:\program files\Phone Drivers Downloader
2013-09-17 20:41 . 2013-09-17 20:41 -------- d-----w- c:\program files (x86)\COMPELSON Labs
2013-09-17 20:40 . 2013-09-17 20:40 -------- d-----w- c:\program files (x86)\MOBILedit!
2013-09-13 12:32 . 2013-09-13 12:32 -------- d-----w- c:\users\Ostatní\AppData\Local\AMD
2013-09-13 12:32 . 2013-09-13 12:32 -------- d-----w- c:\users\Ostatní\AppData\Local\ATI
2013-09-13 12:31 . 2013-09-13 12:31 -------- d-----w- c:\users\Ostatní\AppData\Local\Adobe
2013-09-12 11:54 . 2013-10-06 17:38 -------- d-----w- C:\AdwCleaner
2013-09-11 20:12 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2013-09-11 20:11 . 2013-08-02 02:12 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-10 16:20 . 2013-09-10 16:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2013-09-10 16:20 . 2013-09-10 16:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2013-09-10 16:20 . 2013-09-10 16:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2013-09-10 16:20 . 2013-09-10 16:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2013-09-10 16:20 . 2013-09-10 16:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-06 19:39 . 2009-07-13 23:57 20778496 ----a-w- c:\windows\system32\imageres.dll
2013-09-22 17:35 . 2012-07-31 21:38 5110 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2013-09-19 17:54 . 2012-06-02 07:48 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-09-19 17:54 . 2012-06-02 07:48 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-08-20 05:02 . 2013-08-20 05:02 204568 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
2013-08-20 05:02 . 2013-08-20 05:02 103576 ----a-w- c:\windows\system32\drivers\ssudbus.sys
2013-08-08 17:08 . 2013-08-08 17:08 27760 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2013-08-08 17:08 . 2013-08-08 17:08 14448 ----a-w- c:\windows\system32\drivers\ggflt.sys
2013-08-07 02:22 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-08-02 01:48 . 2013-09-11 20:12 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-07-25 09:25 . 2013-08-14 10:29 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-07-25 08:57 . 2013-08-14 10:29 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-07-19 01:58 . 2013-08-14 10:29 2048 ----a-w- c:\windows\system32\tzres.dll
2013-07-19 01:41 . 2013-08-14 10:29 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2013-07-18 12:33 . 2012-12-28 13:08 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll
2013-07-18 12:32 . 2013-07-18 12:32 90112 ----a-w- c:\windows\MAMCityDownload.ocx
2013-07-18 12:32 . 2013-07-18 12:32 330240 ----a-w- c:\windows\MASetupCaller.dll
2013-07-18 12:32 . 2013-07-18 12:32 30568 ----a-w- c:\windows\MusiccityDownload.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 130736 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 130736 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 130736 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 130736 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"="c:\program files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE" [2012-12-04 773728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-12-19 642808]
.
c:\users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-5-25 27776968]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 MSR Service;Virtual Disk Service Manager;c:\program files (x86)\Clarus\Samsung SecretZone\MSSvc.exe;c:\program files (x86)\Clarus\Samsung SecretZone\MSSvc.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys;c:\windows\SYSNATIVE\DRIVERS\BthAvrcp.sys [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]
R3 MSICDSetup;MSICDSetup;e:\cdriver64.sys;e:\CDriver64.sys [x]
R3 NLNdisMP;NLNdisMP;c:\windows\system32\DRIVERS\nlndis.sys;c:\windows\SYSNATIVE\DRIVERS\nlndis.sys [x]
R3 NLNdisPT;NetLimiter Ndis Protocol Service;c:\windows\system32\DRIVERS\nlndis.sys;c:\windows\SYSNATIVE\DRIVERS\nlndis.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;e:\ntiolib_x64.sys;e:\NTIOLib_X64.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 iPodDrv;iPodDrv;c:\windows\system32\drivers\iPodDrv.sys;c:\windows\SYSNATIVE\drivers\iPodDrv.sys [x]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);c:\program files\Cyberlink\Shared files\RichVideo64.exe;c:\program files\Cyberlink\Shared files\RichVideo64.exe [x]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv_x64.sys;c:\windows\SYSNATIVE\DRIVERS\mcvidrv_x64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv_x64.sys;c:\windows\SYSNATIVE\drivers\mcaudrv_x64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 69883992
*Deregistered* - 69883992
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-06 08:29 1185744 ----a-w- c:\program files (x86)\Google\Chrome\Application\30.0.1599.69\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-10-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-02 17:54]
.
2013-10-08 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1016948174-364442444-1613984613-1000Core.job
- c:\users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-19 18:43]
.
2013-10-08 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1016948174-364442444-1613984613-1000UA.job
- c:\users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-19 18:43]
.
2013-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31 18:22]
.
2013-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31 18:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36 164016 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2011-08-30 7284328]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984D045-52CF-49cd-DB77-08F378FEA4DB}"= "c:\program files (x86)\Stardock\ObjectDockPlus2\ODMenu64.dll" [2010-03-24 633200]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.cz/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{D8278076-BC68-4484-9233-6E7F1628B56C} - (no file)
Wow6432Node-HKCU-Run-Clownfish - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-MyFreeCodec - c:\program files (x86)\MyFree Codec\1.0b beta\uninstall.exe
.
.
"ImagePath"="\"c:\program files\Cyberlink\Shared files\RichVideo64.exe\"\00Z
[\]^_Ú\00\00Ú\00\00\00\00\1e\00JKLMNO\00\00\00\00\00\00\00\00\03\00\00\00|}~Ú\00\00Ú\00\00\00\00f\00\00\00\00\00\00\00\00\01\00s"
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_175_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_175_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_175_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_175_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_175.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Celkový čas: 2013-10-08 21:19:40
ComboFix-quarantined-files.txt 2013-10-08 19:19
.
Před spuštěním: 1 537 966 080
Po spuštění: 2 881 167 360
.
- - End Of File - - 238E62CAD81977BA4001CE8BFBBED21D
A36C5E4F47E84449FF07ED3517B43A31

[jaro3]

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\zipinst.exe
c:\windows\expstart.exe
c:\windows\explorer.backup.exe
c:\windows\MASetupCaller.dll
c:\windows\MusiccityDownload.exe


Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

Stáhni si aswMBR
http://files.avast.com/files/rootkit-scanner/aswmbr.exe
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[M4RTY]

zipinst
expstart
backup
masetup
musiccity