dobrý den, prosím o kontrolu logu.
furt mi vyskakují uplne brutalne reklamní okna a nevím čím toi, nainstaloval sem všechny možné antivity ale nic nepomaha ani ccleaner. nevím si s tím rady.děkuji
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:30:01, on 13.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\AuthenTec TrueSuite\x86\BioMonitor.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files (x86)\Symantec\VIP Access Client\WhiteList.exe
C:\Program Files (x86)\Symantec\VIP Access Client\GreenList.exe
C:\Users\Peter\Desktop\hijackthis.exe
C:\Windows\SysWOW64\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: Shell=C:\PROGRA~3\dsgsdgdsgdsgw.bat
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\AuthenTec TrueSuite\x86\IEBHO.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: IEPlugin - {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAddOnForIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: TrueSuite Toolbar - {C98EE38D-21E4-4A50-907D-2B56FEC7013E} - C:\Program Files\AuthenTec TrueSuite\x86\IEBHO.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
O4 - HKLM\..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
O4 - HKLM\..\Run: [IntelSBA] C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\SBALaunchDelay.exe "C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe -minimized" 60
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [AllShareAgent] C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [InboxToolbar] "C:\Program Files (x86)\Inbox Toolbar\Inbox.exe" /STARTUP
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\PROGRA~2\INBOXT~1\Inbox.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll c:\progra~2\browse~1\sprote~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BCL EasyConverter SDK 3 Loader (becldr3Service) - Unknown owner - C:\Program Files (x86)\BCL Technologies\easyConverter SDK 3\Common\becldr.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Small Business Advantage - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung AllShare PC (SamsungAllShareV2.0) - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
O23 - Service: SimpleSlideShowServer - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIPAppService - Symantec Corporation - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 18471 bytes
vyskakující reklamy
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: vyskakující reklamy
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: vyskakující reklamy
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.10.13.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
Peter :: PETER-THINK [administrátor]
Ochrana: Povolena
13.10.2013 12:51:50
MBAM-log-2013-10-13 (12-55-11).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 224050
Uplynulý čas: 3 minut, 2 sekund
Nalezené procesy v paměti: 1
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> 6032 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 11
HKCR\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{042DA63B-0933-403D-9395-B49307691690} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.JSServer (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.Toolbar (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1 (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|InboxToolbar (PUP.Optional.Inbox) -> Data: "C:\Program Files (x86)\Inbox Toolbar\Inbox.exe" /STARTUP -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Exploit.Drop.GSA) -> Špatný: (C:\PROGRA~3\dsgsdgdsgdsgw.bat) Dobrý: () -> Nebyla provedena žádná instrukce.
Nalezené složky: 6
C:\Program Files (x86)\Inbox Toolbar (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Plugins (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 22
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.dll (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\trz2EE5.tmp (Trojan.Ransom) -> Nebyla provedena žádná instrukce.
C:\ProgramData\dsgsdgdsgdsgw.bat (Exploit.Drop.GSA) -> Nebyla provedena žádná instrukce.
C:\ProgramData\dsgsdgdsgdsgw.reg (Exploit.Drop.GSA) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\setupcfg.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\IUpdate.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.dat (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.msg (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\uninstall.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\burgundy_green.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\general_youtube2.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_news_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_online_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_programs_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_search_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox64.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1\TuneUpUtilities2013_2200329_cs-CZ.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
(konec)
# AdwCleaner v3.007 - Report created 13/10/2013 at 12:56:48
# Updated 09/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Peter - PETER-THINK
# Running from : C:\Users\Peter\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Windows\System32\roboot64.exe
Folder Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\diojilpkaiapmdgpjcbajnfedkmbddna
Folder Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Folder Found : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\inboxcomtoolbar@inbox.com
Folder Found : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\knhlmd@hjqvcqq.com
Folder Found C:\Program Files (x86)\goforfiles
Folder Found C:\Program Files (x86)\Inbox Toolbar
Folder Found C:\ProgramData\Ask
Folder Found C:\ProgramData\Birowsie2syaaVee
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Found C:\ProgramData\Partner
Folder Found C:\Users\Peter\AppData\LocalLow\Inbox Toolbar
Folder Found C:\Users\Peter\AppData\Roaming\goforfiles
Folder Found C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Inbox Toolbar
Folder Found C:\Users\Peter\AppData\Roaming\OpenCandy
Folder Found C:\Users\Peter\AppData\Roaming\Systweak
***** [ Shortcuts ] *****
***** [ Registry ] *****
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\browse~1\sprote~1.dll
Key Found : HKCU\Software\Alexa Internet
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\smartbar
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\PIP
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\systweak
Key Found : [x64] HKCU\Software\Alexa Internet
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : [x64] HKCU\Software\PIP
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\systweak
Key Found : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Classes\Inbox.AppServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.IBX404
Key Found : HKLM\SOFTWARE\Classes\Inbox.JSServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Key Found : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Key Found : HKLM\Software\Inbox Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\systweak
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Value Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
-\\ Mozilla Firefox v20.0.1 (cs)
[ File : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\prefs.js ]
Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("extensions.50d65192f1011.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement(\"script\");[...]
Line Found : user_pref("extensions.514a59ef61f0c.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};new function(){var a=this;a.domain_storage=\"hxxp://xls.searchfun.in\";a.p[...]
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");
-\\ Google Chrome v30.0.1599.69
[ File : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [8571 octets] - [13/10/2013 12:56:48]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [8631 octets] ##########
www.malwarebytes.org
Verze: v2013.10.13.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
Peter :: PETER-THINK [administrátor]
Ochrana: Povolena
13.10.2013 12:51:50
MBAM-log-2013-10-13 (12-55-11).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 224050
Uplynulý čas: 3 minut, 2 sekund
Nalezené procesy v paměti: 1
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> 6032 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 11
HKCR\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{042DA63B-0933-403D-9395-B49307691690} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.JSServer (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.Toolbar (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1 (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|InboxToolbar (PUP.Optional.Inbox) -> Data: "C:\Program Files (x86)\Inbox Toolbar\Inbox.exe" /STARTUP -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Exploit.Drop.GSA) -> Špatný: (C:\PROGRA~3\dsgsdgdsgdsgw.bat) Dobrý: () -> Nebyla provedena žádná instrukce.
Nalezené složky: 6
C:\Program Files (x86)\Inbox Toolbar (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Plugins (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 22
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.dll (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\trz2EE5.tmp (Trojan.Ransom) -> Nebyla provedena žádná instrukce.
C:\ProgramData\dsgsdgdsgdsgw.bat (Exploit.Drop.GSA) -> Nebyla provedena žádná instrukce.
C:\ProgramData\dsgsdgdsgdsgw.reg (Exploit.Drop.GSA) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\setupcfg.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\IUpdate.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.dat (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.msg (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\uninstall.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\burgundy_green.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\general_youtube2.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_news_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_online_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_programs_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_search_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox64.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1\TuneUpUtilities2013_2200329_cs-CZ.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
(konec)
# AdwCleaner v3.007 - Report created 13/10/2013 at 12:56:48
# Updated 09/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Peter - PETER-THINK
# Running from : C:\Users\Peter\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Windows\System32\roboot64.exe
Folder Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\diojilpkaiapmdgpjcbajnfedkmbddna
Folder Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Folder Found : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\inboxcomtoolbar@inbox.com
Folder Found : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\knhlmd@hjqvcqq.com
Folder Found C:\Program Files (x86)\goforfiles
Folder Found C:\Program Files (x86)\Inbox Toolbar
Folder Found C:\ProgramData\Ask
Folder Found C:\ProgramData\Birowsie2syaaVee
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Found C:\ProgramData\Partner
Folder Found C:\Users\Peter\AppData\LocalLow\Inbox Toolbar
Folder Found C:\Users\Peter\AppData\Roaming\goforfiles
Folder Found C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Inbox Toolbar
Folder Found C:\Users\Peter\AppData\Roaming\OpenCandy
Folder Found C:\Users\Peter\AppData\Roaming\Systweak
***** [ Shortcuts ] *****
***** [ Registry ] *****
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\browse~1\sprote~1.dll
Key Found : HKCU\Software\Alexa Internet
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\smartbar
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\PIP
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\systweak
Key Found : [x64] HKCU\Software\Alexa Internet
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : [x64] HKCU\Software\PIP
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\systweak
Key Found : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Classes\Inbox.AppServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.IBX404
Key Found : HKLM\SOFTWARE\Classes\Inbox.JSServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Key Found : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Key Found : HKLM\Software\Inbox Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\systweak
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Value Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
-\\ Mozilla Firefox v20.0.1 (cs)
[ File : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\prefs.js ]
Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("extensions.50d65192f1011.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement(\"script\");[...]
Line Found : user_pref("extensions.514a59ef61f0c.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};new function(){var a=this;a.domain_storage=\"hxxp://xls.searchfun.in\";a.p[...]
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");
-\\ Google Chrome v30.0.1599.69
[ File : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [8571 octets] - [13/10/2013 12:56:48]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [8631 octets] ##########
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: vyskakující reklamy
V obou programech nech vše smazat a dodej logy
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Stáhni si Junkware Removal Tool
na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Stáhni si Junkware Removal Tool
na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: vyskakující reklamy
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.10.15.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
Peter :: PETER-THINK [administrátor]
Ochrana: Povolena
16.10.2013 12:01:40
mbam-log-2013-10-16 (12-01-40).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 224603
Uplynulý čas: 3 minut, 16 sekund
Nalezené procesy v paměti: 1
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> 5732 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 11
HKCR\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{042DA63B-0933-403D-9395-B49307691690} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.JSServer (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.Toolbar (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1 (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|InboxToolbar (PUP.Optional.Inbox) -> Data: "C:\Program Files (x86)\Inbox Toolbar\Inbox.exe" /STARTUP -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Exploit.Drop.GSA) -> Špatný: (C:\PROGRA~3\dsgsdgdsgdsgw.bat) Dobrý: () -> Přesun do karantény a opravení se zdařilo.
Nalezené složky: 6
C:\Program Files (x86)\Inbox Toolbar (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Plugins (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 22
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.dll (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\setupcfg.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\IUpdate.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.dat (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.msg (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\uninstall.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\burgundy_green.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\general_youtube2.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_news_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_online_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_programs_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_search_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox64.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1\TuneUpUtilities2013_2200329_cs-CZ.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\trz2EE5.tmp (Trojan.Ransom) -> Přesun do karantény a smazání se zdařilo.
C:\ProgramData\dsgsdgdsgdsgw.bat (Exploit.Drop.GSA) -> Přesun do karantény a smazání se zdařilo.
C:\ProgramData\dsgsdgdsgdsgw.reg (Exploit.Drop.GSA) -> Přesun do karantény a smazání se zdařilo.
(konec)
# AdwCleaner v3.007 - Report created 16/10/2013 at 12:12:15
# Updated 09/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Peter - PETER-THINK
# Running from : C:\Users\Peter\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Birowsie2syaaVee
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Deleted : C:\Program Files (x86)\goforfiles
Folder Deleted : C:\Program Files (x86)\Inbox Toolbar
Folder Deleted : C:\Users\Peter\AppData\LocalLow\Inbox Toolbar
Folder Deleted : C:\Users\Peter\AppData\Roaming\goforfiles
Folder Deleted : C:\Users\Peter\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Peter\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Inbox Toolbar
Folder Deleted : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\inboxcomtoolbar@inbox.com
Folder Deleted : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\knhlmd@hjqvcqq.com
Folder Deleted : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Folder Deleted : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\diojilpkaiapmdgpjcbajnfedkmbddna
File Deleted : C:\Windows\System32\roboot64.exe
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.AppServer
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.IBX404
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.JSServer
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\PIP
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Inbox Toolbar
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\browse~1\sprote~1.dll
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
-\\ Mozilla Firefox v20.0.1 (cs)
[ File : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\prefs.js ]
Line Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Line Deleted : user_pref("aol_toolbar.default.search.check", false);
Line Deleted : user_pref("extensions.50d65192f1011.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement(\"script\");[...]
Line Deleted : user_pref("extensions.514a59ef61f0c.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};new function(){var a=this;a.domain_storage=\"hxxp://xls.searchfun.in\";a.p[...]
Line Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");
-\\ Google Chrome v30.0.1599.69
[ File : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [8799 octets] - [13/10/2013 12:56:48]
AdwCleaner[R1].txt - [8859 octets] - [16/10/2013 12:10:28]
AdwCleaner[S0].txt - [8485 octets] - [16/10/2013 12:12:15]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8545 octets] ##########
jdu na rogue killer
www.malwarebytes.org
Verze: v2013.10.15.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
Peter :: PETER-THINK [administrátor]
Ochrana: Povolena
16.10.2013 12:01:40
mbam-log-2013-10-16 (12-01-40).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 224603
Uplynulý čas: 3 minut, 16 sekund
Nalezené procesy v paměti: 1
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> 5732 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 11
HKCR\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887} (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{042DA63B-0933-403D-9395-B49307691690} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.JSServer (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Inbox.Toolbar (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1 (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|InboxToolbar (PUP.Optional.Inbox) -> Data: "C:\Program Files (x86)\Inbox Toolbar\Inbox.exe" /STARTUP -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Exploit.Drop.GSA) -> Špatný: (C:\PROGRA~3\dsgsdgdsgdsgw.bat) Dobrý: () -> Přesun do karantény a opravení se zdařilo.
Nalezené složky: 6
C:\Program Files (x86)\Inbox Toolbar (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Plugins (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 22
C:\Program Files (x86)\Inbox Toolbar\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.dll (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\setupcfg.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Inbox.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\IUpdate.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.dat (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\unins000.msg (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\uninstall.ini (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\burgundy_green.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\general_youtube2.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_news_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_online_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_programs_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Buttons\tv_search_cz.xml (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox.exe (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Inbox Toolbar\Update\Inbox64.dll (PUP.Optional.Inbox) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\AppData\Roaming\OpenCandy\D7BF2EA1BA3D4000B89D5AF9138A6EC1\TuneUpUtilities2013_2200329_cs-CZ.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Peter\trz2EE5.tmp (Trojan.Ransom) -> Přesun do karantény a smazání se zdařilo.
C:\ProgramData\dsgsdgdsgdsgw.bat (Exploit.Drop.GSA) -> Přesun do karantény a smazání se zdařilo.
C:\ProgramData\dsgsdgdsgdsgw.reg (Exploit.Drop.GSA) -> Přesun do karantény a smazání se zdařilo.
(konec)
# AdwCleaner v3.007 - Report created 16/10/2013 at 12:12:15
# Updated 09/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Peter - PETER-THINK
# Running from : C:\Users\Peter\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Birowsie2syaaVee
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Deleted : C:\Program Files (x86)\goforfiles
Folder Deleted : C:\Program Files (x86)\Inbox Toolbar
Folder Deleted : C:\Users\Peter\AppData\LocalLow\Inbox Toolbar
Folder Deleted : C:\Users\Peter\AppData\Roaming\goforfiles
Folder Deleted : C:\Users\Peter\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Peter\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Inbox Toolbar
Folder Deleted : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\inboxcomtoolbar@inbox.com
Folder Deleted : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\Extensions\knhlmd@hjqvcqq.com
Folder Deleted : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Folder Deleted : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\diojilpkaiapmdgpjcbajnfedkmbddna
File Deleted : C:\Windows\System32\roboot64.exe
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.AppServer
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.IBX404
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.JSServer
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\PIP
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Inbox Toolbar
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\browse~1\sprote~1.dll
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
-\\ Mozilla Firefox v20.0.1 (cs)
[ File : C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\pn827v07.default-1354228200579\prefs.js ]
Line Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Line Deleted : user_pref("aol_toolbar.default.search.check", false);
Line Deleted : user_pref("extensions.50d65192f1011.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement(\"script\");[...]
Line Deleted : user_pref("extensions.514a59ef61f0c.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};new function(){var a=this;a.domain_storage=\"hxxp://xls.searchfun.in\";a.p[...]
Line Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");
-\\ Google Chrome v30.0.1599.69
[ File : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [8799 octets] - [13/10/2013 12:56:48]
AdwCleaner[R1].txt - [8859 octets] - [16/10/2013 12:10:28]
AdwCleaner[S0].txt - [8485 octets] - [16/10/2013 12:12:15]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8545 octets] ##########
jdu na rogue killer
Re: vyskakující reklamy
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Home Premium x64
Ran by Peter on st 16.10.2013 at 12:28:43,50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Program Files (x86)\free video converter"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{17D53967-B2B3-4926-A22C-B9F29501E987}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{2DAD5982-55A8-4541-A5B4-1B0FBCBD991F}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{37A1F6CF-7B63-4C21-916D-A4DB0CC9AB5E}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{39B52A02-187F-4D54-9E9F-44F76A92BC2E}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{9BA300A7-039F-41FC-AD3E-E42E38C5C6A0}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{A90C62B0-F1C3-4BDC-B4CC-0394458D245C}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{B959F8E4-A779-4C1B-AAE4-EBF593FA2974}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{D0D2E12E-FDC0-41B7-BFB0-10176E5E26EC}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{F8BEE793-47FB-4772-ABF2-11079855279C}
~~~ FireFox
Successfully deleted the following from C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\pn827v07.default-1354228200579\prefs.js
user_pref("extensions.50d65192f1011.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.c
Emptied folder: C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\pn827v07.default-1354228200579\minidumps [314 files]
~~~ Chrome
Successfully deleted: [Folder] C:\Users\Peter\appdata\local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 16.10.2013 at 12:37:31,33
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
RogueKiller V8.7.3 _x64_ [Oct 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Peter [Práva správce]
Mód : Kontrola -- Datum : 10/16/2013 12:26:21
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 1 ¤¤¤
[V2][SUSP PATH] KMS Activation for Office : C:\Windows\KMSAct.exe [x] -> NALEZENO
¤¤¤ spuštění položky : 1 ¤¤¤
[Peter][SUSP UNIC] Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk : C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk @C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE /tsr [-][7] -> NALEZENO
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standardní diskové jednotky) - WDC WD7500BPVT-08HXZT3 +++++
--- User ---
[MBR] a0575552fcfe2947027df946a962c664
[BSP] 4c7c53e4ed1dc059e575932925b95457 : Lenovo MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 695902 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1428281344 | Size: 18000 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_10162013_122621.txt >>
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Home Premium x64
Ran by Peter on st 16.10.2013 at 12:28:43,50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Program Files (x86)\free video converter"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{17D53967-B2B3-4926-A22C-B9F29501E987}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{2DAD5982-55A8-4541-A5B4-1B0FBCBD991F}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{37A1F6CF-7B63-4C21-916D-A4DB0CC9AB5E}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{39B52A02-187F-4D54-9E9F-44F76A92BC2E}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{9BA300A7-039F-41FC-AD3E-E42E38C5C6A0}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{A90C62B0-F1C3-4BDC-B4CC-0394458D245C}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{B959F8E4-A779-4C1B-AAE4-EBF593FA2974}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{D0D2E12E-FDC0-41B7-BFB0-10176E5E26EC}
Successfully deleted: [Empty Folder] C:\Users\Peter\appdata\local\{F8BEE793-47FB-4772-ABF2-11079855279C}
~~~ FireFox
Successfully deleted the following from C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\pn827v07.default-1354228200579\prefs.js
user_pref("extensions.50d65192f1011.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.c
Emptied folder: C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\pn827v07.default-1354228200579\minidumps [314 files]
~~~ Chrome
Successfully deleted: [Folder] C:\Users\Peter\appdata\local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 16.10.2013 at 12:37:31,33
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
RogueKiller V8.7.3 _x64_ [Oct 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Peter [Práva správce]
Mód : Kontrola -- Datum : 10/16/2013 12:26:21
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 1 ¤¤¤
[V2][SUSP PATH] KMS Activation for Office : C:\Windows\KMSAct.exe [x] -> NALEZENO
¤¤¤ spuštění položky : 1 ¤¤¤
[Peter][SUSP UNIC] Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk : C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk @C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE /tsr [-][7] -> NALEZENO
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standardní diskové jednotky) - WDC WD7500BPVT-08HXZT3 +++++
--- User ---
[MBR] a0575552fcfe2947027df946a962c664
[BSP] 4c7c53e4ed1dc059e575932925b95457 : Lenovo MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 695902 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1428281344 | Size: 18000 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_10162013_122621.txt >>
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: vyskakující reklamy
mbam je před mazáním!
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: vyskakující reklamy
prosím jak dál???
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: vyskakující reklamy
LOg z Mbam je pžed mazání, kde je TDDS?
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: vyskakující reklamy
v mbanu není nic - 0rhozeb a to samo v TDSS ted už mi okna vyskakuje ale není v nich reklama ale otravuje to neskutecne.
zde log z tdds
11:35:58.0658 0x21b8 TDSS rootkit removing tool 3.0.0.14 Oct 15 2013 15:35:38
11:36:02.0090 0x21b8 ============================================================
11:36:02.0090 0x21b8 Current date / time: 2013/10/20 11:36:02.0090
11:36:02.0090 0x21b8 SystemInfo:
11:36:02.0090 0x21b8
11:36:02.0090 0x21b8 OS Version: 6.1.7601 ServicePack: 1.0
11:36:02.0090 0x21b8 Product type: Workstation
11:36:02.0090 0x21b8 ComputerName: PETER-THINK
11:36:02.0090 0x21b8 UserName: Peter
11:36:02.0090 0x21b8 Windows directory: C:\Windows
11:36:02.0090 0x21b8 System windows directory: C:\Windows
11:36:02.0090 0x21b8 Running under WOW64
11:36:02.0090 0x21b8 Processor architecture: Intel x64
11:36:02.0090 0x21b8 Number of processors: 4
11:36:02.0090 0x21b8 Page size: 0x1000
11:36:02.0090 0x21b8 Boot type: Normal boot
11:36:02.0090 0x21b8 ============================================================
11:36:02.0589 0x21b8 System UUID: {61D07AE7-43C8-44DD-BCA6-857362AFDD57}
11:36:03.0385 0x21b8 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:36:03.0401 0x21b8 ============================================================
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0:
11:36:03.0401 0x21b8 MBR partitions:
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2EE000
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x54F2F000
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x5521D800, BlocksNum 0x2328000
11:36:03.0401 0x21b8 ============================================================
11:36:03.0432 0x21b8 C: <-> \Device\Harddisk0\DR0\Partition2
11:36:03.0479 0x21b8 Q: <-> \Device\Harddisk0\DR0\Partition3
11:36:03.0479 0x21b8 ============================================================
11:36:03.0479 0x21b8 Initialize success
11:36:03.0479 0x21b8 ============================================================
11:36:05.0195 0x1d3c ============================================================
11:36:05.0195 0x1d3c Scan started
11:36:05.0195 0x1d3c Mode: Manual;
11:36:05.0195 0x1d3c ============================================================
11:36:05.0195 0x1d3c KSN ping started
11:36:19.0235 0x1d3c KSN ping finished: true
11:36:19.0469 0x1d3c ================ Scan system memory ========================
11:36:19.0469 0x1d3c System memory - ok
11:36:19.0469 0x1d3c ================ Scan services =============================
11:36:19.0703 0x1d3c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:36:19.0703 0x1d3c 1394ohci - ok
11:36:19.0765 0x1d3c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:36:19.0796 0x1d3c ACPI - ok
11:36:19.0812 0x1d3c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:36:19.0812 0x1d3c AcpiPmi - ok
11:36:19.0921 0x1d3c [ D19C4EE2AC7C47B8F5F84FFF1A789D8A, F419E159D3E428A3929A1A983142E7B0783D3F104EE9587585418E51011E4B8F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:36:19.0937 0x1d3c AdobeARMservice - ok
11:36:20.0077 0x1d3c [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:36:20.0077 0x1d3c AdobeFlashPlayerUpdateSvc - ok
11:36:20.0155 0x1d3c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:36:20.0171 0x1d3c adp94xx - ok
11:36:20.0217 0x1d3c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:36:20.0233 0x1d3c adpahci - ok
11:36:20.0249 0x1d3c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:36:20.0249 0x1d3c adpu320 - ok
11:36:20.0280 0x1d3c [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:36:20.0295 0x1d3c AeLookupSvc - ok
11:36:20.0373 0x1d3c [ 314C17917AC8523EC77A710215012A65, 725CF2D5F63C06F7704C24FE0CFA696215DADC6C0EC445D9671E82F8E23E56AD ] AFD C:\Windows\system32\drivers\afd.sys
11:36:20.0389 0x1d3c AFD - ok
11:36:20.0436 0x1d3c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
11:36:20.0436 0x1d3c agp440 - ok
11:36:20.0451 0x1d3c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
11:36:20.0467 0x1d3c ALG - ok
11:36:20.0529 0x1d3c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
11:36:20.0529 0x1d3c aliide - ok
11:36:20.0561 0x1d3c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
11:36:20.0561 0x1d3c amdide - ok
11:36:20.0576 0x1d3c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:36:20.0576 0x1d3c AmdK8 - ok
11:36:20.0592 0x1d3c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
11:36:20.0592 0x1d3c AmdPPM - ok
11:36:20.0623 0x1d3c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:36:20.0623 0x1d3c amdsata - ok
11:36:20.0670 0x1d3c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:36:20.0670 0x1d3c amdsbs - ok
11:36:20.0685 0x1d3c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:36:20.0685 0x1d3c amdxata - ok
11:36:20.0732 0x1d3c [ 4DE0D5D747A73797C95A97DCCE5018B5, 17EC669675C2E43515EFE2D8BCC9DDFFBE64F99EBFB9A6DAB429F65A2B504560 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
11:36:20.0748 0x1d3c androidusb - ok
11:36:20.0779 0x1d3c [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
11:36:20.0779 0x1d3c AppID - ok
11:36:20.0810 0x1d3c [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:36:20.0810 0x1d3c AppIDSvc - ok
11:36:20.0826 0x1d3c [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
11:36:20.0841 0x1d3c Appinfo - ok
11:36:20.0841 0x1d3c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
11:36:20.0841 0x1d3c arc - ok
11:36:20.0873 0x1d3c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:36:20.0873 0x1d3c arcsas - ok
11:36:21.0013 0x1d3c [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:36:21.0044 0x1d3c aspnet_state - ok
11:36:21.0075 0x1d3c [ 4FCAEF0C5BE7629AEB878998E0FE959B, B792796DEC82CB81CC834DCD4109908C0294556B7FAC9DD6EE329F6508DFA63C ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
11:36:21.0075 0x1d3c aswFsBlk - ok
11:36:21.0169 0x1d3c [ B50CDD87772D6A11CB90924AAD399DF8, 0B42764FD632DB9D5A276904B3D55BC36610BB461591BC730AAE4DC25EBE354A ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
11:36:21.0169 0x1d3c aswMonFlt - ok
11:36:21.0200 0x1d3c [ 57768C7DB4681F2510F247F82EF31D4F, AFD99BEBCE4BD7BFDF65DDC1D69EBE46613B4FF49CC4E4397FFCA7EAF80AAF12 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
11:36:21.0200 0x1d3c aswRdr - ok
11:36:21.0278 0x1d3c [ E71D826A1F3CE9C9DE3E77F2D02AFFBF, 0BC40A3A3AE43B8A20D8C81EFDF716628500295D8C79CD6CD4458900D31CF41E ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
11:36:21.0309 0x1d3c aswSnx - ok
11:36:21.0341 0x1d3c [ 538A32E2C99BF073D4CA76C30BEDAA60, 89D1C35AB914923AB9B19A4E6DB968AC08303522AFAF55A907146182E7E8DAA5 ] aswSP C:\Windows\system32\drivers\aswSP.sys
11:36:21.0356 0x1d3c aswSP - ok
11:36:21.0372 0x1d3c [ 6EDC79D73745FD44C41B55B2D13D0B70, CDC35864852D1576B1A4372B55F945628092AECCFC9A01693753100225AF5DD1 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
11:36:21.0372 0x1d3c aswTdi - ok
11:36:21.0403 0x1d3c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:36:21.0403 0x1d3c AsyncMac - ok
11:36:21.0465 0x1d3c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
11:36:21.0465 0x1d3c atapi - ok
11:36:21.0528 0x1d3c [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:36:21.0559 0x1d3c AudioEndpointBuilder - ok
11:36:21.0590 0x1d3c [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:36:21.0606 0x1d3c AudioSrv - ok
11:36:21.0699 0x1d3c [ 8FA553E9AE69808D99C164733A0F9590, D3F5BA7000EF311A0E4772B5BF9B0BFFCA721FA971D87DD76B7E8B9B06E9BBC3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:36:21.0699 0x1d3c avast! Antivirus - ok
11:36:21.0746 0x1d3c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:36:21.0746 0x1d3c AxInstSV - ok
11:36:21.0809 0x1d3c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:36:21.0824 0x1d3c b06bdrv - ok
11:36:21.0855 0x1d3c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:36:21.0855 0x1d3c b57nd60a - ok
11:36:21.0902 0x1d3c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
11:36:21.0902 0x1d3c BDESVC - ok
11:36:21.0965 0x1d3c [ CB7CE2E47139B620D2B87078165F1AD0, 2859F85C463FD34D659EAFDDFE4DE472D04D3D2D639BE4876E19F5DC775D0BA1 ] becldr3Service C:\Program Files (x86)\BCL Technologies\easyConverter SDK 3\Common\becldr.exe
11:36:21.0965 0x1d3c becldr3Service - ok
11:36:21.0980 0x1d3c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
11:36:21.0980 0x1d3c Beep - ok
11:36:22.0043 0x1d3c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
11:36:22.0089 0x1d3c BFE - ok
11:36:22.0152 0x1d3c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
11:36:22.0199 0x1d3c BITS - ok
11:36:22.0245 0x1d3c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:36:22.0245 0x1d3c blbdrive - ok
11:36:22.0370 0x1d3c [ A52EA1D8C2900055323C93DDB252A3DA, 70C30AACE3948DFD2E4C52818F93F03AF32430B43229F613FEE3C4CD4FA1EFE6 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
11:36:22.0401 0x1d3c Bluetooth Device Monitor - ok
11:36:22.0479 0x1d3c [ 091210450CA7CED08F360D9D7FEC5D11, 52298A6FE7DCF5EA484E6A1CBE48E2B1106D006E18F2278CB38AAAB10BB905BD ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
11:36:22.0526 0x1d3c Bluetooth Media Service - ok
11:36:22.0589 0x1d3c [ 392450754E17FF778CBC5B9D20583AD1, 4E2CC0D5D41303202EE7655FB1F779C41808A714486BAFF22A321A5BAF9FD0F6 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
11:36:22.0635 0x1d3c Bluetooth OBEX Service - ok
11:36:22.0682 0x1d3c [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:36:22.0682 0x1d3c bowser - ok
11:36:22.0713 0x1d3c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:36:22.0713 0x1d3c BrFiltLo - ok
11:36:22.0745 0x1d3c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:36:22.0745 0x1d3c BrFiltUp - ok
11:36:22.0791 0x1d3c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
11:36:22.0791 0x1d3c Browser - ok
11:36:22.0823 0x1d3c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:36:22.0838 0x1d3c Brserid - ok
11:36:22.0854 0x1d3c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:36:22.0854 0x1d3c BrSerWdm - ok
11:36:22.0869 0x1d3c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:36:22.0885 0x1d3c BrUsbMdm - ok
11:36:22.0885 0x1d3c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:36:22.0885 0x1d3c BrUsbSer - ok
11:36:22.0932 0x1d3c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:36:22.0932 0x1d3c BthEnum - ok
11:36:22.0947 0x1d3c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:36:22.0947 0x1d3c BTHMODEM - ok
11:36:22.0963 0x1d3c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:36:22.0979 0x1d3c BthPan - ok
11:36:23.0025 0x1d3c [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:36:23.0041 0x1d3c BTHPORT - ok
11:36:23.0088 0x1d3c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
11:36:23.0088 0x1d3c bthserv - ok
11:36:23.0103 0x1d3c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:36:23.0103 0x1d3c BTHUSB - ok
11:36:23.0135 0x1d3c [ 988CC6CC49303665D3B2435C51505C3F, 5217A7A1BAD77EBF4E5D68D191FCFD7CE4FB96ABB91638383A077BE9CE794EE3 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
11:36:23.0150 0x1d3c btmaux - ok
11:36:23.0213 0x1d3c [ 2B4B508AFAC2A563931AF1FE875A5B16, F6A5261BD3FB8AE7BF26F32B681A15E56317EF8A9D8AB84B9B6BCA66F5484698 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
11:36:23.0228 0x1d3c btmhsf - ok
11:36:23.0259 0x1d3c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:36:23.0259 0x1d3c cdfs - ok
11:36:23.0322 0x1d3c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:36:23.0322 0x1d3c cdrom - ok
11:36:23.0369 0x1d3c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
11:36:23.0369 0x1d3c CertPropSvc - ok
11:36:23.0400 0x1d3c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
11:36:23.0400 0x1d3c circlass - ok
11:36:23.0431 0x1d3c [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
11:36:23.0447 0x1d3c CLFS - ok
11:36:23.0509 0x1d3c [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:36:23.0509 0x1d3c clr_optimization_v2.0.50727_32 - ok
11:36:23.0556 0x1d3c [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:36:23.0556 0x1d3c clr_optimization_v2.0.50727_64 - ok
11:36:23.0649 0x1d3c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:36:23.0696 0x1d3c clr_optimization_v4.0.30319_32 - ok
11:36:23.0727 0x1d3c [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:36:23.0743 0x1d3c clr_optimization_v4.0.30319_64 - ok
11:36:23.0774 0x1d3c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:36:23.0774 0x1d3c CmBatt - ok
11:36:23.0805 0x1d3c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:36:23.0805 0x1d3c cmdide - ok
11:36:23.0868 0x1d3c [ AAFCB52FE0037207FB6FBEA070D25EFE, 7D035BFB6DD86944CCDE6D71811891406D7FD08344EF8CF57C4D932E096F1377 ] CNG C:\Windows\system32\Drivers\cng.sys
11:36:23.0883 0x1d3c CNG - ok
11:36:23.0930 0x1d3c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:36:23.0930 0x1d3c Compbatt - ok
11:36:23.0961 0x1d3c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:36:23.0961 0x1d3c CompositeBus - ok
11:36:23.0977 0x1d3c COMSysApp - ok
11:36:24.0024 0x1d3c [ 7818398FBEF79E5FB6AB8D7B4703B49C, 0B32BCB7ADFC57DE464404250A5E9C70ED0A1C58245B7F7D1BFC8F7E68A7B2A2 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:36:24.0039 0x1d3c cphs - ok
11:36:24.0055 0x1d3c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:36:24.0055 0x1d3c crcdisk - ok
11:36:24.0117 0x1d3c [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:36:24.0117 0x1d3c CryptSvc - ok
11:36:24.0164 0x1d3c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:36:24.0195 0x1d3c DcomLaunch - ok
11:36:24.0242 0x1d3c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
11:36:24.0258 0x1d3c defragsvc - ok
11:36:24.0289 0x1d3c [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:36:24.0289 0x1d3c DfsC - ok
11:36:24.0336 0x1d3c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:36:24.0367 0x1d3c Dhcp - ok
11:36:24.0398 0x1d3c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
11:36:24.0398 0x1d3c discache - ok
11:36:31.0153 0x1d3c [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
11:36:31.0153 0x1d3c Disk - ok
11:36:31.0652 0x1d3c [ 4453DA8650DA827BC33B8D41A8F97894, 543A88C85D0D5299D430736ABF88E7DA5A3BAE63C3D8ACA0AC4B4E6D26EDF4F6 ] DisplayLinkService C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
11:36:31.0933 0x1d3c DisplayLinkService - ok
11:36:31.0980 0x1d3c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:36:31.0995 0x1d3c Dnscache - ok
11:36:32.0027 0x1d3c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
11:36:32.0027 0x1d3c dot3svc - ok
11:36:32.0089 0x1d3c [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
11:36:32.0105 0x1d3c Dot4 - ok
11:36:32.0136 0x1d3c [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:36:32.0136 0x1d3c Dot4Print - ok
11:36:32.0151 0x1d3c [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
11:36:32.0151 0x1d3c dot4usb - ok
11:36:32.0183 0x1d3c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
11:36:32.0198 0x1d3c DPS - ok
11:36:32.0229 0x1d3c [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:36:32.0229 0x1d3c drmkaud - ok
11:36:32.0307 0x1d3c [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:36:32.0307 0x1d3c dtsoftbus01 - ok
11:36:32.0401 0x1d3c [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:36:32.0432 0x1d3c DXGKrnl - ok
11:36:32.0463 0x1d3c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
11:36:32.0463 0x1d3c EapHost - ok
11:36:32.0619 0x1d3c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:36:32.0729 0x1d3c ebdrv - ok
11:36:32.0853 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS C:\Windows\System32\lsass.exe
11:36:32.0853 0x1d3c EFS - ok
11:36:32.0931 0x1d3c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:36:32.0963 0x1d3c ehRecvr - ok
11:36:32.0978 0x1d3c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
11:36:32.0978 0x1d3c ehSched - ok
11:36:33.0041 0x1d3c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:36:33.0056 0x1d3c elxstor - ok
11:36:33.0072 0x1d3c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:36:33.0072 0x1d3c ErrDev - ok
11:36:33.0165 0x1d3c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
11:36:33.0181 0x1d3c EventSystem - ok
11:36:33.0275 0x1d3c [ 23D401A43DADED10A153B9F3A7E66C91, 3B6466108FFB04EC07CA07D2EAAA9F6537CBE1F2D800AAADE9C1E0C8DBADDFB5 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
11:36:33.0290 0x1d3c EvtEng - ok
11:36:33.0321 0x1d3c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
11:36:33.0321 0x1d3c exfat - ok
11:36:33.0353 0x1d3c [ EB3A7D5663ACAC417DF986D4AEE12170, E2E7A0DEF42E0E9D8E2A70FAEC84D4BB67D8C6F9F6B4C0DE884FA4A12C031F91 ] Fastboot C:\Windows\system32\DRIVERS\Fastboot.sys
11:36:33.0353 0x1d3c Fastboot - ok
11:36:33.0431 0x1d3c [ 63511240AF70D10343A4AE05F8E2CA12, E4A873CE9F685E42347390F7D7D50CD8D3C9A5FCFFEA26093438F679D1CE275D ] FastbootService C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
11:36:33.0431 0x1d3c FastbootService - ok
11:36:33.0477 0x1d3c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:36:33.0493 0x1d3c fastfat - ok
11:36:33.0555 0x1d3c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
11:36:33.0602 0x1d3c Fax - ok
11:36:33.0618 0x1d3c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
11:36:33.0618 0x1d3c fdc - ok
11:36:33.0649 0x1d3c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
11:36:33.0649 0x1d3c fdPHost - ok
11:36:33.0665 0x1d3c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
11:36:33.0665 0x1d3c FDResPub - ok
11:36:33.0711 0x1d3c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:36:33.0711 0x1d3c FileInfo - ok
11:36:33.0727 0x1d3c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:36:33.0727 0x1d3c Filetrace - ok
11:36:33.0743 0x1d3c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
11:36:33.0743 0x1d3c flpydisk - ok
11:36:33.0774 0x1d3c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:36:33.0774 0x1d3c FltMgr - ok
11:36:33.0867 0x1d3c [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
11:36:33.0930 0x1d3c FontCache - ok
11:36:33.0992 0x1d3c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:36:33.0992 0x1d3c FontCache3.0.0.0 - ok
11:36:34.0055 0x1d3c [ 87100772372E769A5F15032027344F9D, A4FBBF85573DBD339F5D01806FBA27F6EB595DB66136B7B14C1D7BB4123D3C8F ] FPLService C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe
11:36:34.0070 0x1d3c FPLService - ok
11:36:34.0086 0x1d3c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:36:34.0086 0x1d3c FsDepends - ok
11:36:34.0117 0x1d3c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:36:34.0133 0x1d3c Fs_Rec - ok
11:36:34.0164 0x1d3c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:36:34.0179 0x1d3c fvevol - ok
11:36:34.0211 0x1d3c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:36:34.0211 0x1d3c gagp30kx - ok
11:36:34.0289 0x1d3c [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
11:36:34.0335 0x1d3c gpsvc - ok
11:36:34.0398 0x1d3c [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:34.0398 0x1d3c gupdate - ok
11:36:34.0429 0x1d3c [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:34.0429 0x1d3c gupdatem - ok
11:36:34.0460 0x1d3c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:36:34.0460 0x1d3c hcw85cir - ok
11:36:34.0507 0x1d3c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:36:34.0523 0x1d3c HdAudAddService - ok
11:36:34.0554 0x1d3c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:36:34.0554 0x1d3c HDAudBus - ok
11:36:34.0554 0x1d3c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:36:34.0554 0x1d3c HidBatt - ok
11:36:34.0585 0x1d3c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:36:34.0585 0x1d3c HidBth - ok
11:36:34.0601 0x1d3c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
11:36:34.0601 0x1d3c HidIr - ok
11:36:34.0632 0x1d3c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
11:36:34.0632 0x1d3c hidserv - ok
11:36:34.0679 0x1d3c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:36:34.0694 0x1d3c HidUsb - ok
11:36:34.0725 0x1d3c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:36:34.0725 0x1d3c hkmsvc - ok
11:36:34.0757 0x1d3c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:36:34.0757 0x1d3c HomeGroupListener - ok
11:36:34.0803 0x1d3c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:36:34.0819 0x1d3c HomeGroupProvider - ok
11:36:34.0913 0x1d3c [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
11:36:34.0913 0x1d3c hpqcxs08 - ok
11:36:34.0928 0x1d3c [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
11:36:34.0944 0x1d3c hpqddsvc - ok
11:36:34.0975 0x1d3c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:36:34.0975 0x1d3c HpSAMD - ok
11:36:35.0022 0x1d3c [ 7F57926169C1B8ABA9274EA7D4B70F18, A2BB01054737C6B0461381221D1C344951AC2BE9E5AE01E15A6871B31B62BE78 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
11:36:35.0069 0x1d3c HPSLPSVC - ok
11:36:35.0115 0x1d3c [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:36:35.0147 0x1d3c HTTP - ok
11:36:35.0162 0x1d3c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:36:35.0162 0x1d3c hwpolicy - ok
11:36:35.0256 0x1d3c [ 46FD38CBD57D2EC86C42DCCE05C82F67, 808CCA666DBB1BB2600C48E4ABB69546296C5BC161E85A53667D7EE65953734A ] HyperW7Svc C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
11:36:35.0256 0x1d3c HyperW7Svc - ok
11:36:35.0287 0x1d3c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:36:35.0287 0x1d3c i8042prt - ok
11:36:35.0349 0x1d3c [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
11:36:35.0365 0x1d3c iaStor - ok
11:36:35.0427 0x1d3c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:36:35.0443 0x1d3c iaStorV - ok
11:36:35.0474 0x1d3c [ B21087E1A64FD474BF3E1A602A714F1F, 1122D26F938E1A331D0BEBBEA4BACC75276E8502291B3FCB45D53ACA1562C422 ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
11:36:35.0474 0x1d3c IBMPMDRV - ok
11:36:35.0490 0x1d3c [ A3E4DE0F77031061972485EF9BD8E4D0, 5F9E293898553281DAECE577CCB3F83178C46FB9078FB7D2E9FF609EF5709373 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
11:36:35.0490 0x1d3c IBMPMSVC - ok
11:36:35.0537 0x1d3c [ 60CC7AE9AEDB4D1E7923BD053B176D97, 52783EE81DCA8267267ADD862A1BF049765BB154F904196B55C0CA26E30FD393 ] ibtfltcoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
11:36:35.0537 0x1d3c ibtfltcoex - ok
11:36:35.0693 0x1d3c [ 3CC7B3BB1A9EA201A040883EDFAA67A0, F543A779BA8CBFD5E0B939844B9CB47A2C05A400C693635F520438C18FFDFAF1 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
11:36:35.0771 0x1d3c IconMan_R - ok
11:36:35.0849 0x1d3c [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:36:35.0880 0x1d3c idsvc - ok
11:36:36.0597 0x1d3c [ 7054941241807E91663A83A38BCE3F0D, 340F724554CCF4F52C1F426A7E3C8B0C4DE73C38DA102AFBD375D0FC8AF31086 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:36:37.0081 0x1d3c igfx - ok
11:36:37.0159 0x1d3c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:36:37.0159 0x1d3c iirsp - ok
11:36:37.0221 0x1d3c [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT C:\Windows\System32\ikeext.dll
11:36:37.0268 0x1d3c IKEEXT - ok
11:36:37.0315 0x1d3c [ CADDF0927DAC63EDAE48F5C35A61D87D, C46006461311B1563C1D149B9D60B202F30147265B9D93069B084D03A09D2BEC ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
11:36:37.0315 0x1d3c intaud_WaveExtensible - ok
11:36:37.0549 0x1d3c [ 8BD7EB761F4341E6F9FD066099F24B01, 9B4B5D6F9D75699773E58CB3BAEB1C17605EFF9B86422F22EF9082279E91D1F6 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:36:37.0721 0x1d3c IntcAzAudAddService - ok
11:36:37.0814 0x1d3c [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
11:36:37.0814 0x1d3c IntcDAud - ok
11:36:37.0923 0x1d3c [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:36:37.0939 0x1d3c Intel(R) Capability Licensing Service Interface - ok
11:36:38.0001 0x1d3c [ FB166D86AFCBD9A9BFD342DC2564F5DF, 788C0CBC298572566584BD8762D931CC423EBCC1C5D551B3820E939FF667AA65 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
11:36:38.0001 0x1d3c Intel(R) ME Service - ok
11:36:38.0079 0x1d3c [ 5529614F79A407FD40845A8011D86082, 7F9D24F1094845F8CA36807D82D753228CC435DD2685AEFFA965FCE7E9BADDA5 ] Intel(R) Small Business Advantage C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
11:36:38.0079 0x1d3c Intel(R) Small Business Advantage - ok
11:36:38.0126 0x1d3c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
11:36:38.0126 0x1d3c intelide - ok
11:36:38.0157 0x1d3c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:36:38.0157 0x1d3c intelppm - ok
11:36:38.0204 0x1d3c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:36:38.0204 0x1d3c IPBusEnum - ok
11:36:38.0220 0x1d3c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:36:38.0235 0x1d3c IpFilterDriver - ok
11:36:38.0298 0x1d3c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:36:38.0329 0x1d3c iphlpsvc - ok
11:36:38.0345 0x1d3c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:36:38.0345 0x1d3c IPMIDRV - ok
11:36:38.0360 0x1d3c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:36:38.0360 0x1d3c IPNAT - ok
11:36:38.0391 0x1d3c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:36:38.0391 0x1d3c IRENUM - ok
11:36:38.0407 0x1d3c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:36:38.0407 0x1d3c isapnp - ok
11:36:38.0438 0x1d3c [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:36:38.0454 0x1d3c iScsiPrt - ok
11:36:38.0501 0x1d3c [ DC0DBA5164F657DE2AE94B9D1FF75DA4, 8A98283BB6DA44C55CC3936ACE45FD45B47641684A5C11CBEE007E8B97970279 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
11:36:38.0516 0x1d3c iusb3hcs - ok
11:36:38.0532 0x1d3c [ BA4F3A70F03584E5B907DA815677727D, 36081727AFCD51E0F20BA18BC2F310779BD33ACA975576F55E7294DF13CB13CF ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
11:36:38.0547 0x1d3c iusb3hub - ok
11:36:38.0594 0x1d3c [ E6130F70D61867C7EFC13A2F808EDC58, 622F8AD2C5361D8F05091D4FF6BE69E006D8B4AEDA7BF7FC5B4F101FF57DF38E ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
11:36:38.0625 0x1d3c iusb3xhc - ok
11:36:38.0672 0x1d3c [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] iwdbus C:\Windows\system32\DRIVERS\iwdbus.sys
11:36:38.0672 0x1d3c iwdbus - ok
zde log z tdds
11:35:58.0658 0x21b8 TDSS rootkit removing tool 3.0.0.14 Oct 15 2013 15:35:38
11:36:02.0090 0x21b8 ============================================================
11:36:02.0090 0x21b8 Current date / time: 2013/10/20 11:36:02.0090
11:36:02.0090 0x21b8 SystemInfo:
11:36:02.0090 0x21b8
11:36:02.0090 0x21b8 OS Version: 6.1.7601 ServicePack: 1.0
11:36:02.0090 0x21b8 Product type: Workstation
11:36:02.0090 0x21b8 ComputerName: PETER-THINK
11:36:02.0090 0x21b8 UserName: Peter
11:36:02.0090 0x21b8 Windows directory: C:\Windows
11:36:02.0090 0x21b8 System windows directory: C:\Windows
11:36:02.0090 0x21b8 Running under WOW64
11:36:02.0090 0x21b8 Processor architecture: Intel x64
11:36:02.0090 0x21b8 Number of processors: 4
11:36:02.0090 0x21b8 Page size: 0x1000
11:36:02.0090 0x21b8 Boot type: Normal boot
11:36:02.0090 0x21b8 ============================================================
11:36:02.0589 0x21b8 System UUID: {61D07AE7-43C8-44DD-BCA6-857362AFDD57}
11:36:03.0385 0x21b8 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:36:03.0401 0x21b8 ============================================================
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0:
11:36:03.0401 0x21b8 MBR partitions:
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2EE000
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x54F2F000
11:36:03.0401 0x21b8 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x5521D800, BlocksNum 0x2328000
11:36:03.0401 0x21b8 ============================================================
11:36:03.0432 0x21b8 C: <-> \Device\Harddisk0\DR0\Partition2
11:36:03.0479 0x21b8 Q: <-> \Device\Harddisk0\DR0\Partition3
11:36:03.0479 0x21b8 ============================================================
11:36:03.0479 0x21b8 Initialize success
11:36:03.0479 0x21b8 ============================================================
11:36:05.0195 0x1d3c ============================================================
11:36:05.0195 0x1d3c Scan started
11:36:05.0195 0x1d3c Mode: Manual;
11:36:05.0195 0x1d3c ============================================================
11:36:05.0195 0x1d3c KSN ping started
11:36:19.0235 0x1d3c KSN ping finished: true
11:36:19.0469 0x1d3c ================ Scan system memory ========================
11:36:19.0469 0x1d3c System memory - ok
11:36:19.0469 0x1d3c ================ Scan services =============================
11:36:19.0703 0x1d3c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:36:19.0703 0x1d3c 1394ohci - ok
11:36:19.0765 0x1d3c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:36:19.0796 0x1d3c ACPI - ok
11:36:19.0812 0x1d3c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:36:19.0812 0x1d3c AcpiPmi - ok
11:36:19.0921 0x1d3c [ D19C4EE2AC7C47B8F5F84FFF1A789D8A, F419E159D3E428A3929A1A983142E7B0783D3F104EE9587585418E51011E4B8F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:36:19.0937 0x1d3c AdobeARMservice - ok
11:36:20.0077 0x1d3c [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:36:20.0077 0x1d3c AdobeFlashPlayerUpdateSvc - ok
11:36:20.0155 0x1d3c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:36:20.0171 0x1d3c adp94xx - ok
11:36:20.0217 0x1d3c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:36:20.0233 0x1d3c adpahci - ok
11:36:20.0249 0x1d3c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:36:20.0249 0x1d3c adpu320 - ok
11:36:20.0280 0x1d3c [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:36:20.0295 0x1d3c AeLookupSvc - ok
11:36:20.0373 0x1d3c [ 314C17917AC8523EC77A710215012A65, 725CF2D5F63C06F7704C24FE0CFA696215DADC6C0EC445D9671E82F8E23E56AD ] AFD C:\Windows\system32\drivers\afd.sys
11:36:20.0389 0x1d3c AFD - ok
11:36:20.0436 0x1d3c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
11:36:20.0436 0x1d3c agp440 - ok
11:36:20.0451 0x1d3c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
11:36:20.0467 0x1d3c ALG - ok
11:36:20.0529 0x1d3c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
11:36:20.0529 0x1d3c aliide - ok
11:36:20.0561 0x1d3c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
11:36:20.0561 0x1d3c amdide - ok
11:36:20.0576 0x1d3c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:36:20.0576 0x1d3c AmdK8 - ok
11:36:20.0592 0x1d3c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
11:36:20.0592 0x1d3c AmdPPM - ok
11:36:20.0623 0x1d3c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:36:20.0623 0x1d3c amdsata - ok
11:36:20.0670 0x1d3c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:36:20.0670 0x1d3c amdsbs - ok
11:36:20.0685 0x1d3c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:36:20.0685 0x1d3c amdxata - ok
11:36:20.0732 0x1d3c [ 4DE0D5D747A73797C95A97DCCE5018B5, 17EC669675C2E43515EFE2D8BCC9DDFFBE64F99EBFB9A6DAB429F65A2B504560 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
11:36:20.0748 0x1d3c androidusb - ok
11:36:20.0779 0x1d3c [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
11:36:20.0779 0x1d3c AppID - ok
11:36:20.0810 0x1d3c [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:36:20.0810 0x1d3c AppIDSvc - ok
11:36:20.0826 0x1d3c [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
11:36:20.0841 0x1d3c Appinfo - ok
11:36:20.0841 0x1d3c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
11:36:20.0841 0x1d3c arc - ok
11:36:20.0873 0x1d3c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:36:20.0873 0x1d3c arcsas - ok
11:36:21.0013 0x1d3c [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:36:21.0044 0x1d3c aspnet_state - ok
11:36:21.0075 0x1d3c [ 4FCAEF0C5BE7629AEB878998E0FE959B, B792796DEC82CB81CC834DCD4109908C0294556B7FAC9DD6EE329F6508DFA63C ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
11:36:21.0075 0x1d3c aswFsBlk - ok
11:36:21.0169 0x1d3c [ B50CDD87772D6A11CB90924AAD399DF8, 0B42764FD632DB9D5A276904B3D55BC36610BB461591BC730AAE4DC25EBE354A ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
11:36:21.0169 0x1d3c aswMonFlt - ok
11:36:21.0200 0x1d3c [ 57768C7DB4681F2510F247F82EF31D4F, AFD99BEBCE4BD7BFDF65DDC1D69EBE46613B4FF49CC4E4397FFCA7EAF80AAF12 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
11:36:21.0200 0x1d3c aswRdr - ok
11:36:21.0278 0x1d3c [ E71D826A1F3CE9C9DE3E77F2D02AFFBF, 0BC40A3A3AE43B8A20D8C81EFDF716628500295D8C79CD6CD4458900D31CF41E ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
11:36:21.0309 0x1d3c aswSnx - ok
11:36:21.0341 0x1d3c [ 538A32E2C99BF073D4CA76C30BEDAA60, 89D1C35AB914923AB9B19A4E6DB968AC08303522AFAF55A907146182E7E8DAA5 ] aswSP C:\Windows\system32\drivers\aswSP.sys
11:36:21.0356 0x1d3c aswSP - ok
11:36:21.0372 0x1d3c [ 6EDC79D73745FD44C41B55B2D13D0B70, CDC35864852D1576B1A4372B55F945628092AECCFC9A01693753100225AF5DD1 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
11:36:21.0372 0x1d3c aswTdi - ok
11:36:21.0403 0x1d3c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:36:21.0403 0x1d3c AsyncMac - ok
11:36:21.0465 0x1d3c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
11:36:21.0465 0x1d3c atapi - ok
11:36:21.0528 0x1d3c [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:36:21.0559 0x1d3c AudioEndpointBuilder - ok
11:36:21.0590 0x1d3c [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:36:21.0606 0x1d3c AudioSrv - ok
11:36:21.0699 0x1d3c [ 8FA553E9AE69808D99C164733A0F9590, D3F5BA7000EF311A0E4772B5BF9B0BFFCA721FA971D87DD76B7E8B9B06E9BBC3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:36:21.0699 0x1d3c avast! Antivirus - ok
11:36:21.0746 0x1d3c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:36:21.0746 0x1d3c AxInstSV - ok
11:36:21.0809 0x1d3c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:36:21.0824 0x1d3c b06bdrv - ok
11:36:21.0855 0x1d3c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:36:21.0855 0x1d3c b57nd60a - ok
11:36:21.0902 0x1d3c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
11:36:21.0902 0x1d3c BDESVC - ok
11:36:21.0965 0x1d3c [ CB7CE2E47139B620D2B87078165F1AD0, 2859F85C463FD34D659EAFDDFE4DE472D04D3D2D639BE4876E19F5DC775D0BA1 ] becldr3Service C:\Program Files (x86)\BCL Technologies\easyConverter SDK 3\Common\becldr.exe
11:36:21.0965 0x1d3c becldr3Service - ok
11:36:21.0980 0x1d3c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
11:36:21.0980 0x1d3c Beep - ok
11:36:22.0043 0x1d3c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
11:36:22.0089 0x1d3c BFE - ok
11:36:22.0152 0x1d3c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
11:36:22.0199 0x1d3c BITS - ok
11:36:22.0245 0x1d3c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:36:22.0245 0x1d3c blbdrive - ok
11:36:22.0370 0x1d3c [ A52EA1D8C2900055323C93DDB252A3DA, 70C30AACE3948DFD2E4C52818F93F03AF32430B43229F613FEE3C4CD4FA1EFE6 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
11:36:22.0401 0x1d3c Bluetooth Device Monitor - ok
11:36:22.0479 0x1d3c [ 091210450CA7CED08F360D9D7FEC5D11, 52298A6FE7DCF5EA484E6A1CBE48E2B1106D006E18F2278CB38AAAB10BB905BD ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
11:36:22.0526 0x1d3c Bluetooth Media Service - ok
11:36:22.0589 0x1d3c [ 392450754E17FF778CBC5B9D20583AD1, 4E2CC0D5D41303202EE7655FB1F779C41808A714486BAFF22A321A5BAF9FD0F6 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
11:36:22.0635 0x1d3c Bluetooth OBEX Service - ok
11:36:22.0682 0x1d3c [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:36:22.0682 0x1d3c bowser - ok
11:36:22.0713 0x1d3c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:36:22.0713 0x1d3c BrFiltLo - ok
11:36:22.0745 0x1d3c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:36:22.0745 0x1d3c BrFiltUp - ok
11:36:22.0791 0x1d3c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
11:36:22.0791 0x1d3c Browser - ok
11:36:22.0823 0x1d3c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:36:22.0838 0x1d3c Brserid - ok
11:36:22.0854 0x1d3c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:36:22.0854 0x1d3c BrSerWdm - ok
11:36:22.0869 0x1d3c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:36:22.0885 0x1d3c BrUsbMdm - ok
11:36:22.0885 0x1d3c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:36:22.0885 0x1d3c BrUsbSer - ok
11:36:22.0932 0x1d3c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:36:22.0932 0x1d3c BthEnum - ok
11:36:22.0947 0x1d3c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:36:22.0947 0x1d3c BTHMODEM - ok
11:36:22.0963 0x1d3c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:36:22.0979 0x1d3c BthPan - ok
11:36:23.0025 0x1d3c [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:36:23.0041 0x1d3c BTHPORT - ok
11:36:23.0088 0x1d3c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
11:36:23.0088 0x1d3c bthserv - ok
11:36:23.0103 0x1d3c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:36:23.0103 0x1d3c BTHUSB - ok
11:36:23.0135 0x1d3c [ 988CC6CC49303665D3B2435C51505C3F, 5217A7A1BAD77EBF4E5D68D191FCFD7CE4FB96ABB91638383A077BE9CE794EE3 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
11:36:23.0150 0x1d3c btmaux - ok
11:36:23.0213 0x1d3c [ 2B4B508AFAC2A563931AF1FE875A5B16, F6A5261BD3FB8AE7BF26F32B681A15E56317EF8A9D8AB84B9B6BCA66F5484698 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
11:36:23.0228 0x1d3c btmhsf - ok
11:36:23.0259 0x1d3c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:36:23.0259 0x1d3c cdfs - ok
11:36:23.0322 0x1d3c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:36:23.0322 0x1d3c cdrom - ok
11:36:23.0369 0x1d3c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
11:36:23.0369 0x1d3c CertPropSvc - ok
11:36:23.0400 0x1d3c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
11:36:23.0400 0x1d3c circlass - ok
11:36:23.0431 0x1d3c [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
11:36:23.0447 0x1d3c CLFS - ok
11:36:23.0509 0x1d3c [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:36:23.0509 0x1d3c clr_optimization_v2.0.50727_32 - ok
11:36:23.0556 0x1d3c [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:36:23.0556 0x1d3c clr_optimization_v2.0.50727_64 - ok
11:36:23.0649 0x1d3c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:36:23.0696 0x1d3c clr_optimization_v4.0.30319_32 - ok
11:36:23.0727 0x1d3c [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:36:23.0743 0x1d3c clr_optimization_v4.0.30319_64 - ok
11:36:23.0774 0x1d3c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:36:23.0774 0x1d3c CmBatt - ok
11:36:23.0805 0x1d3c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:36:23.0805 0x1d3c cmdide - ok
11:36:23.0868 0x1d3c [ AAFCB52FE0037207FB6FBEA070D25EFE, 7D035BFB6DD86944CCDE6D71811891406D7FD08344EF8CF57C4D932E096F1377 ] CNG C:\Windows\system32\Drivers\cng.sys
11:36:23.0883 0x1d3c CNG - ok
11:36:23.0930 0x1d3c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:36:23.0930 0x1d3c Compbatt - ok
11:36:23.0961 0x1d3c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:36:23.0961 0x1d3c CompositeBus - ok
11:36:23.0977 0x1d3c COMSysApp - ok
11:36:24.0024 0x1d3c [ 7818398FBEF79E5FB6AB8D7B4703B49C, 0B32BCB7ADFC57DE464404250A5E9C70ED0A1C58245B7F7D1BFC8F7E68A7B2A2 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:36:24.0039 0x1d3c cphs - ok
11:36:24.0055 0x1d3c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:36:24.0055 0x1d3c crcdisk - ok
11:36:24.0117 0x1d3c [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:36:24.0117 0x1d3c CryptSvc - ok
11:36:24.0164 0x1d3c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:36:24.0195 0x1d3c DcomLaunch - ok
11:36:24.0242 0x1d3c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
11:36:24.0258 0x1d3c defragsvc - ok
11:36:24.0289 0x1d3c [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:36:24.0289 0x1d3c DfsC - ok
11:36:24.0336 0x1d3c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:36:24.0367 0x1d3c Dhcp - ok
11:36:24.0398 0x1d3c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
11:36:24.0398 0x1d3c discache - ok
11:36:31.0153 0x1d3c [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
11:36:31.0153 0x1d3c Disk - ok
11:36:31.0652 0x1d3c [ 4453DA8650DA827BC33B8D41A8F97894, 543A88C85D0D5299D430736ABF88E7DA5A3BAE63C3D8ACA0AC4B4E6D26EDF4F6 ] DisplayLinkService C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
11:36:31.0933 0x1d3c DisplayLinkService - ok
11:36:31.0980 0x1d3c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:36:31.0995 0x1d3c Dnscache - ok
11:36:32.0027 0x1d3c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
11:36:32.0027 0x1d3c dot3svc - ok
11:36:32.0089 0x1d3c [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
11:36:32.0105 0x1d3c Dot4 - ok
11:36:32.0136 0x1d3c [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:36:32.0136 0x1d3c Dot4Print - ok
11:36:32.0151 0x1d3c [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
11:36:32.0151 0x1d3c dot4usb - ok
11:36:32.0183 0x1d3c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
11:36:32.0198 0x1d3c DPS - ok
11:36:32.0229 0x1d3c [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:36:32.0229 0x1d3c drmkaud - ok
11:36:32.0307 0x1d3c [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:36:32.0307 0x1d3c dtsoftbus01 - ok
11:36:32.0401 0x1d3c [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:36:32.0432 0x1d3c DXGKrnl - ok
11:36:32.0463 0x1d3c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
11:36:32.0463 0x1d3c EapHost - ok
11:36:32.0619 0x1d3c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:36:32.0729 0x1d3c ebdrv - ok
11:36:32.0853 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS C:\Windows\System32\lsass.exe
11:36:32.0853 0x1d3c EFS - ok
11:36:32.0931 0x1d3c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:36:32.0963 0x1d3c ehRecvr - ok
11:36:32.0978 0x1d3c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
11:36:32.0978 0x1d3c ehSched - ok
11:36:33.0041 0x1d3c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:36:33.0056 0x1d3c elxstor - ok
11:36:33.0072 0x1d3c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:36:33.0072 0x1d3c ErrDev - ok
11:36:33.0165 0x1d3c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
11:36:33.0181 0x1d3c EventSystem - ok
11:36:33.0275 0x1d3c [ 23D401A43DADED10A153B9F3A7E66C91, 3B6466108FFB04EC07CA07D2EAAA9F6537CBE1F2D800AAADE9C1E0C8DBADDFB5 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
11:36:33.0290 0x1d3c EvtEng - ok
11:36:33.0321 0x1d3c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
11:36:33.0321 0x1d3c exfat - ok
11:36:33.0353 0x1d3c [ EB3A7D5663ACAC417DF986D4AEE12170, E2E7A0DEF42E0E9D8E2A70FAEC84D4BB67D8C6F9F6B4C0DE884FA4A12C031F91 ] Fastboot C:\Windows\system32\DRIVERS\Fastboot.sys
11:36:33.0353 0x1d3c Fastboot - ok
11:36:33.0431 0x1d3c [ 63511240AF70D10343A4AE05F8E2CA12, E4A873CE9F685E42347390F7D7D50CD8D3C9A5FCFFEA26093438F679D1CE275D ] FastbootService C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
11:36:33.0431 0x1d3c FastbootService - ok
11:36:33.0477 0x1d3c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:36:33.0493 0x1d3c fastfat - ok
11:36:33.0555 0x1d3c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
11:36:33.0602 0x1d3c Fax - ok
11:36:33.0618 0x1d3c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
11:36:33.0618 0x1d3c fdc - ok
11:36:33.0649 0x1d3c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
11:36:33.0649 0x1d3c fdPHost - ok
11:36:33.0665 0x1d3c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
11:36:33.0665 0x1d3c FDResPub - ok
11:36:33.0711 0x1d3c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:36:33.0711 0x1d3c FileInfo - ok
11:36:33.0727 0x1d3c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:36:33.0727 0x1d3c Filetrace - ok
11:36:33.0743 0x1d3c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
11:36:33.0743 0x1d3c flpydisk - ok
11:36:33.0774 0x1d3c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:36:33.0774 0x1d3c FltMgr - ok
11:36:33.0867 0x1d3c [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
11:36:33.0930 0x1d3c FontCache - ok
11:36:33.0992 0x1d3c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:36:33.0992 0x1d3c FontCache3.0.0.0 - ok
11:36:34.0055 0x1d3c [ 87100772372E769A5F15032027344F9D, A4FBBF85573DBD339F5D01806FBA27F6EB595DB66136B7B14C1D7BB4123D3C8F ] FPLService C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe
11:36:34.0070 0x1d3c FPLService - ok
11:36:34.0086 0x1d3c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:36:34.0086 0x1d3c FsDepends - ok
11:36:34.0117 0x1d3c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:36:34.0133 0x1d3c Fs_Rec - ok
11:36:34.0164 0x1d3c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:36:34.0179 0x1d3c fvevol - ok
11:36:34.0211 0x1d3c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:36:34.0211 0x1d3c gagp30kx - ok
11:36:34.0289 0x1d3c [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
11:36:34.0335 0x1d3c gpsvc - ok
11:36:34.0398 0x1d3c [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:34.0398 0x1d3c gupdate - ok
11:36:34.0429 0x1d3c [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:34.0429 0x1d3c gupdatem - ok
11:36:34.0460 0x1d3c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:36:34.0460 0x1d3c hcw85cir - ok
11:36:34.0507 0x1d3c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:36:34.0523 0x1d3c HdAudAddService - ok
11:36:34.0554 0x1d3c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:36:34.0554 0x1d3c HDAudBus - ok
11:36:34.0554 0x1d3c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:36:34.0554 0x1d3c HidBatt - ok
11:36:34.0585 0x1d3c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:36:34.0585 0x1d3c HidBth - ok
11:36:34.0601 0x1d3c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
11:36:34.0601 0x1d3c HidIr - ok
11:36:34.0632 0x1d3c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
11:36:34.0632 0x1d3c hidserv - ok
11:36:34.0679 0x1d3c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:36:34.0694 0x1d3c HidUsb - ok
11:36:34.0725 0x1d3c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:36:34.0725 0x1d3c hkmsvc - ok
11:36:34.0757 0x1d3c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:36:34.0757 0x1d3c HomeGroupListener - ok
11:36:34.0803 0x1d3c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:36:34.0819 0x1d3c HomeGroupProvider - ok
11:36:34.0913 0x1d3c [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
11:36:34.0913 0x1d3c hpqcxs08 - ok
11:36:34.0928 0x1d3c [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
11:36:34.0944 0x1d3c hpqddsvc - ok
11:36:34.0975 0x1d3c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:36:34.0975 0x1d3c HpSAMD - ok
11:36:35.0022 0x1d3c [ 7F57926169C1B8ABA9274EA7D4B70F18, A2BB01054737C6B0461381221D1C344951AC2BE9E5AE01E15A6871B31B62BE78 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
11:36:35.0069 0x1d3c HPSLPSVC - ok
11:36:35.0115 0x1d3c [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:36:35.0147 0x1d3c HTTP - ok
11:36:35.0162 0x1d3c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:36:35.0162 0x1d3c hwpolicy - ok
11:36:35.0256 0x1d3c [ 46FD38CBD57D2EC86C42DCCE05C82F67, 808CCA666DBB1BB2600C48E4ABB69546296C5BC161E85A53667D7EE65953734A ] HyperW7Svc C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
11:36:35.0256 0x1d3c HyperW7Svc - ok
11:36:35.0287 0x1d3c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:36:35.0287 0x1d3c i8042prt - ok
11:36:35.0349 0x1d3c [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
11:36:35.0365 0x1d3c iaStor - ok
11:36:35.0427 0x1d3c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:36:35.0443 0x1d3c iaStorV - ok
11:36:35.0474 0x1d3c [ B21087E1A64FD474BF3E1A602A714F1F, 1122D26F938E1A331D0BEBBEA4BACC75276E8502291B3FCB45D53ACA1562C422 ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
11:36:35.0474 0x1d3c IBMPMDRV - ok
11:36:35.0490 0x1d3c [ A3E4DE0F77031061972485EF9BD8E4D0, 5F9E293898553281DAECE577CCB3F83178C46FB9078FB7D2E9FF609EF5709373 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
11:36:35.0490 0x1d3c IBMPMSVC - ok
11:36:35.0537 0x1d3c [ 60CC7AE9AEDB4D1E7923BD053B176D97, 52783EE81DCA8267267ADD862A1BF049765BB154F904196B55C0CA26E30FD393 ] ibtfltcoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
11:36:35.0537 0x1d3c ibtfltcoex - ok
11:36:35.0693 0x1d3c [ 3CC7B3BB1A9EA201A040883EDFAA67A0, F543A779BA8CBFD5E0B939844B9CB47A2C05A400C693635F520438C18FFDFAF1 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
11:36:35.0771 0x1d3c IconMan_R - ok
11:36:35.0849 0x1d3c [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:36:35.0880 0x1d3c idsvc - ok
11:36:36.0597 0x1d3c [ 7054941241807E91663A83A38BCE3F0D, 340F724554CCF4F52C1F426A7E3C8B0C4DE73C38DA102AFBD375D0FC8AF31086 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:36:37.0081 0x1d3c igfx - ok
11:36:37.0159 0x1d3c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:36:37.0159 0x1d3c iirsp - ok
11:36:37.0221 0x1d3c [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT C:\Windows\System32\ikeext.dll
11:36:37.0268 0x1d3c IKEEXT - ok
11:36:37.0315 0x1d3c [ CADDF0927DAC63EDAE48F5C35A61D87D, C46006461311B1563C1D149B9D60B202F30147265B9D93069B084D03A09D2BEC ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
11:36:37.0315 0x1d3c intaud_WaveExtensible - ok
11:36:37.0549 0x1d3c [ 8BD7EB761F4341E6F9FD066099F24B01, 9B4B5D6F9D75699773E58CB3BAEB1C17605EFF9B86422F22EF9082279E91D1F6 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:36:37.0721 0x1d3c IntcAzAudAddService - ok
11:36:37.0814 0x1d3c [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
11:36:37.0814 0x1d3c IntcDAud - ok
11:36:37.0923 0x1d3c [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:36:37.0939 0x1d3c Intel(R) Capability Licensing Service Interface - ok
11:36:38.0001 0x1d3c [ FB166D86AFCBD9A9BFD342DC2564F5DF, 788C0CBC298572566584BD8762D931CC423EBCC1C5D551B3820E939FF667AA65 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
11:36:38.0001 0x1d3c Intel(R) ME Service - ok
11:36:38.0079 0x1d3c [ 5529614F79A407FD40845A8011D86082, 7F9D24F1094845F8CA36807D82D753228CC435DD2685AEFFA965FCE7E9BADDA5 ] Intel(R) Small Business Advantage C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
11:36:38.0079 0x1d3c Intel(R) Small Business Advantage - ok
11:36:38.0126 0x1d3c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
11:36:38.0126 0x1d3c intelide - ok
11:36:38.0157 0x1d3c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:36:38.0157 0x1d3c intelppm - ok
11:36:38.0204 0x1d3c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:36:38.0204 0x1d3c IPBusEnum - ok
11:36:38.0220 0x1d3c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:36:38.0235 0x1d3c IpFilterDriver - ok
11:36:38.0298 0x1d3c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:36:38.0329 0x1d3c iphlpsvc - ok
11:36:38.0345 0x1d3c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:36:38.0345 0x1d3c IPMIDRV - ok
11:36:38.0360 0x1d3c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:36:38.0360 0x1d3c IPNAT - ok
11:36:38.0391 0x1d3c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:36:38.0391 0x1d3c IRENUM - ok
11:36:38.0407 0x1d3c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:36:38.0407 0x1d3c isapnp - ok
11:36:38.0438 0x1d3c [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:36:38.0454 0x1d3c iScsiPrt - ok
11:36:38.0501 0x1d3c [ DC0DBA5164F657DE2AE94B9D1FF75DA4, 8A98283BB6DA44C55CC3936ACE45FD45B47641684A5C11CBEE007E8B97970279 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
11:36:38.0516 0x1d3c iusb3hcs - ok
11:36:38.0532 0x1d3c [ BA4F3A70F03584E5B907DA815677727D, 36081727AFCD51E0F20BA18BC2F310779BD33ACA975576F55E7294DF13CB13CF ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
11:36:38.0547 0x1d3c iusb3hub - ok
11:36:38.0594 0x1d3c [ E6130F70D61867C7EFC13A2F808EDC58, 622F8AD2C5361D8F05091D4FF6BE69E006D8B4AEDA7BF7FC5B4F101FF57DF38E ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
11:36:38.0625 0x1d3c iusb3xhc - ok
11:36:38.0672 0x1d3c [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] iwdbus C:\Windows\system32\DRIVERS\iwdbus.sys
11:36:38.0672 0x1d3c iwdbus - ok
Re: vyskakující reklamy
11:36:41.0028 0x1d3c mshidkmdf - ok
11:36:41.0043 0x1d3c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:36:41.0043 0x1d3c msisadrv - ok
11:36:41.0090 0x1d3c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:36:41.0090 0x1d3c MSiSCSI - ok
11:36:41.0106 0x1d3c msiserver - ok
11:36:41.0137 0x1d3c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:36:41.0137 0x1d3c MSKSSRV - ok
11:36:41.0168 0x1d3c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:36:41.0184 0x1d3c MSPCLOCK - ok
11:36:41.0184 0x1d3c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:36:41.0184 0x1d3c MSPQM - ok
11:36:41.0215 0x1d3c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:36:41.0231 0x1d3c MsRPC - ok
11:36:41.0246 0x1d3c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:36:41.0246 0x1d3c mssmbios - ok
11:36:41.0262 0x1d3c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:36:41.0262 0x1d3c MSTEE - ok
11:36:41.0277 0x1d3c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:36:41.0277 0x1d3c MTConfig - ok
11:36:41.0293 0x1d3c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
11:36:41.0309 0x1d3c Mup - ok
11:36:41.0340 0x1d3c [ 48C9BA25EDA90E3DB07ADAC8CD32F5F3, 9CAFFECB0F59CC758C646F886D7A9A276A152B94EE58564BD03FBB48C4C7E396 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
11:36:41.0355 0x1d3c MyWiFiDHCPDNS - ok
11:36:41.0402 0x1d3c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
11:36:41.0433 0x1d3c napagent - ok
11:36:41.0496 0x1d3c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:36:41.0511 0x1d3c NativeWifiP - ok
11:36:41.0589 0x1d3c [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
11:36:41.0621 0x1d3c NDIS - ok
11:36:41.0636 0x1d3c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:36:41.0636 0x1d3c NdisCap - ok
11:36:41.0683 0x1d3c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:36:41.0683 0x1d3c NdisTapi - ok
11:36:41.0714 0x1d3c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:36:41.0714 0x1d3c Ndisuio - ok
11:36:41.0730 0x1d3c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:36:41.0745 0x1d3c NdisWan - ok
11:36:41.0761 0x1d3c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:36:41.0761 0x1d3c NDProxy - ok
11:36:41.0777 0x1d3c [ D5AC41AE382738483FAFFBD7E373D49A, 68793D15566F387650E9C5010E1CA73BDE3EB4BA431EA0A1673004CAE08413B0 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:36:41.0792 0x1d3c Net Driver HPZ12 - ok
11:36:41.0808 0x1d3c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:36:41.0808 0x1d3c NetBIOS - ok
11:36:41.0839 0x1d3c [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:36:41.0839 0x1d3c NetBT - ok
11:36:41.0870 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon C:\Windows\system32\lsass.exe
11:36:41.0870 0x1d3c Netlogon - ok
11:36:41.0917 0x1d3c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
11:36:41.0948 0x1d3c Netman - ok
11:36:42.0042 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0042 0x1d3c NetMsmqActivator - ok
11:36:42.0057 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0057 0x1d3c NetPipeActivator - ok
11:36:42.0089 0x1d3c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
11:36:42.0135 0x1d3c netprofm - ok
11:36:42.0151 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0151 0x1d3c NetTcpActivator - ok
11:36:42.0167 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0167 0x1d3c NetTcpPortSharing - ok
11:36:42.0713 0x1d3c [ FAD6C5610D020534401966CD72A1C306, 49D1AF9682464638BF7AC29A83E090F037543C3AA1F7E5970040633AFD5EAF29 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
11:36:43.0087 0x1d3c NETwNs64 - ok
11:36:43.0165 0x1d3c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:36:43.0165 0x1d3c nfrd960 - ok
11:36:43.0196 0x1d3c [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:36:43.0212 0x1d3c NlaSvc - ok
11:36:43.0243 0x1d3c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:36:43.0243 0x1d3c Npfs - ok
11:36:43.0274 0x1d3c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
11:36:43.0274 0x1d3c nsi - ok
11:36:43.0290 0x1d3c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:36:43.0290 0x1d3c nsiproxy - ok
11:36:43.0399 0x1d3c [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:36:43.0461 0x1d3c Ntfs - ok
11:36:43.0477 0x1d3c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
11:36:43.0477 0x1d3c Null - ok
11:36:44.0023 0x1d3c [ FE2909F7DFB12B9A20AD207FE23B7E96, FC34F5052CC147BEAE2D0C7F1005183A0B39116BBA8D690918FF4CEE3B17F4D9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:36:44.0413 0x1d3c nvlddmkm - ok
11:36:44.0491 0x1d3c [ 54C7D4E3A31888FA4BE822F506FE905B, 2287F332F5F2984FCBE288BA2CD7A128FD0419BF09CB91A3925EFB6B5BB4C0D6 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
11:36:44.0491 0x1d3c nvpciflt - ok
11:36:44.0522 0x1d3c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:36:44.0522 0x1d3c nvraid - ok
11:36:44.0553 0x1d3c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:36:44.0553 0x1d3c nvstor - ok
11:36:44.0616 0x1d3c [ 3341D2C91989BC87C3C0BAA97C27253B, D056278751E5DE9CAC488B60D4C203611227845494B85AFD6EBA328DB4FE34D0 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:36:44.0647 0x1d3c nvsvc - ok
11:36:44.0725 0x1d3c [ 551CE34DAD2DFF0A480781E68B286E4D, 01F1D83350715BF23C246E3CBBBB4556FAC72DEF66F5173586A1FC0D3058FEF0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
11:36:44.0772 0x1d3c nvUpdatusService - ok
11:36:44.0803 0x1d3c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:36:44.0819 0x1d3c nv_agp - ok
11:36:44.0834 0x1d3c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:36:44.0834 0x1d3c ohci1394 - ok
11:36:44.0897 0x1d3c [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:36:44.0897 0x1d3c ose64 - ok
11:36:45.0162 0x1d3c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:36:45.0333 0x1d3c osppsvc - ok
11:36:45.0396 0x1d3c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:36:45.0427 0x1d3c p2pimsvc - ok
11:36:45.0474 0x1d3c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
11:36:45.0505 0x1d3c p2psvc - ok
11:36:45.0521 0x1d3c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
11:36:45.0536 0x1d3c Parport - ok
11:36:45.0567 0x1d3c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:36:45.0567 0x1d3c partmgr - ok
11:36:45.0599 0x1d3c [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
11:36:45.0614 0x1d3c PcaSvc - ok
11:36:45.0630 0x1d3c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
11:36:45.0645 0x1d3c pci - ok
11:36:45.0692 0x1d3c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
11:36:45.0692 0x1d3c pciide - ok
11:36:45.0723 0x1d3c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:36:45.0739 0x1d3c pcmcia - ok
11:36:45.0755 0x1d3c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
11:36:45.0755 0x1d3c pcw - ok
11:36:45.0801 0x1d3c [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:36:45.0817 0x1d3c PEAUTH - ok
11:36:45.0926 0x1d3c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:36:45.0926 0x1d3c PerfHost - ok
11:36:45.0989 0x1d3c [ 2CECB15AC87B7869A40305221FD28F82, 0A8261780128B99549A0BE5036F2EB6BF3CCC447110D63D0BB0245D956FEDF7D ] PHCORE C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS
11:36:45.0989 0x1d3c PHCORE - ok
11:36:46.0082 0x1d3c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
11:36:46.0176 0x1d3c pla - ok
11:36:46.0238 0x1d3c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:36:46.0269 0x1d3c PlugPlay - ok
11:36:46.0285 0x1d3c [ 37F6046CDC630442D7DC087501FF6FC6, EFC0F3DA49839CA263CD95AE5015F4FC554D9D845A58A699C542C8C96E70ED3C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:36:46.0285 0x1d3c Pml Driver HPZ12 - ok
11:36:46.0316 0x1d3c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:36:46.0316 0x1d3c PNRPAutoReg - ok
11:36:46.0347 0x1d3c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:36:46.0363 0x1d3c PNRPsvc - ok
11:36:46.0425 0x1d3c [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:36:46.0457 0x1d3c PolicyAgent - ok
11:36:46.0488 0x1d3c [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\Windows\system32\umpo.dll
11:36:46.0503 0x1d3c Power - ok
11:36:46.0628 0x1d3c [ 518BE5EE0B8FDED721A5740DCB8FC060, F36EB9572C5DDB635ED2C70EA731B80CF1BA58DEFC5034D8E0DF97A424195D92 ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
11:36:46.0691 0x1d3c Power Manager DBC Service - ok
11:36:46.0737 0x1d3c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:36:46.0753 0x1d3c PptpMiniport - ok
11:36:46.0769 0x1d3c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
11:36:46.0769 0x1d3c Processor - ok
11:36:46.0815 0x1d3c [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
11:36:46.0831 0x1d3c ProfSvc - ok
11:36:46.0847 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
11:36:46.0862 0x1d3c ProtectedStorage - ok
11:36:46.0909 0x1d3c [ 05A4779E4994B21473EDBE85AABE8030, AFD597461B036FDE42013648A4D542B02AE1D7E128BF0B193BA4B478432F0C72 ] psadd C:\Windows\system32\DRIVERS\psadd.sys
11:36:46.0909 0x1d3c psadd - ok
11:36:46.0940 0x1d3c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:36:46.0940 0x1d3c Psched - ok
11:36:46.0971 0x1d3c [ 92349136247F3ECF96DBC13BA2955D54, 33058CEF3481AE13013A3C409E4A271A225E8FB0170E7A8BA92C52C0E4EFD714 ] PwmEWSvc C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
11:36:46.0971 0x1d3c PwmEWSvc - ok
11:36:47.0081 0x1d3c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:36:47.0127 0x1d3c ql2300 - ok
11:36:47.0159 0x1d3c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:36:47.0159 0x1d3c ql40xx - ok
11:36:47.0205 0x1d3c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
11:36:47.0221 0x1d3c QWAVE - ok
11:36:47.0268 0x1d3c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:36:47.0268 0x1d3c QWAVEdrv - ok
11:36:47.0283 0x1d3c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:36:47.0283 0x1d3c RasAcd - ok
11:36:47.0330 0x1d3c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:36:47.0330 0x1d3c RasAgileVpn - ok
11:36:47.0346 0x1d3c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
11:36:47.0361 0x1d3c RasAuto - ok
11:36:47.0393 0x1d3c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:36:47.0393 0x1d3c Rasl2tp - ok
11:36:47.0424 0x1d3c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
11:36:47.0455 0x1d3c RasMan - ok
11:36:47.0471 0x1d3c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:36:47.0486 0x1d3c RasPppoe - ok
11:36:47.0502 0x1d3c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:36:47.0517 0x1d3c RasSstp - ok
11:36:47.0533 0x1d3c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:36:47.0549 0x1d3c rdbss - ok
11:36:47.0564 0x1d3c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
11:36:47.0580 0x1d3c rdpbus - ok
11:36:47.0595 0x1d3c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:36:47.0595 0x1d3c RDPCDD - ok
11:36:47.0627 0x1d3c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:36:47.0627 0x1d3c RDPENCDD - ok
11:36:47.0658 0x1d3c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:36:47.0658 0x1d3c RDPREFMP - ok
11:36:47.0720 0x1d3c [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:36:47.0720 0x1d3c RdpVideoMiniport - ok
11:36:47.0767 0x1d3c [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:36:47.0783 0x1d3c RDPWD - ok
11:36:47.0845 0x1d3c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:36:47.0845 0x1d3c rdyboost - ok
11:36:47.0907 0x1d3c [ 0C2B4C3B10D183BE116A38353E937F62, 2523E6FAB400EA1F9B4A634C1CC427D1D6FDE4B36018FF469470961EB8E432FA ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
11:36:47.0923 0x1d3c RegSrvc - ok
11:36:47.0954 0x1d3c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:36:47.0954 0x1d3c RemoteAccess - ok
11:36:47.0985 0x1d3c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:36:48.0001 0x1d3c RemoteRegistry - ok
11:36:48.0048 0x1d3c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:36:48.0048 0x1d3c RFCOMM - ok
11:36:48.0079 0x1d3c [ 71700B4C5797DA5412E9250E26894586, 7812BA46F429588C3B9726C886077BB9FA0565D2F0928040FAB2033938DB3E06 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
11:36:48.0095 0x1d3c RimUsb - ok
11:36:48.0141 0x1d3c [ C903D49655B4AAE46673F0AAA6BE0F58, 0F861775323CC1792A4A4B43D6375532D982FBC9FCC03184B55101A2A579A832 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
11:36:48.0141 0x1d3c RimVSerPort - ok
11:36:48.0173 0x1d3c [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
11:36:48.0173 0x1d3c ROOTMODEM - ok
11:36:48.0204 0x1d3c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:36:48.0204 0x1d3c RpcEptMapper - ok
11:36:48.0235 0x1d3c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
11:36:48.0251 0x1d3c RpcLocator - ok
11:36:48.0282 0x1d3c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
11:36:48.0313 0x1d3c RpcSs - ok
11:36:48.0344 0x1d3c [ 1EA2EDA2D6CD253CE3EC3387FEAA40AC, 292A5F3B8E91617C33D86353AE584106E651BFF9CFF725A6BDD029812973C66B ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
11:36:48.0360 0x1d3c RSPCIESTOR - ok
11:36:48.0391 0x1d3c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:36:48.0407 0x1d3c rspndr - ok
11:36:48.0453 0x1d3c [ 6CF9DB101A75360E98659F823852E540, A7D48DF41A831EEF9978B51786EF80DB9CC40602BE66D46CA11BE1548BC2D10C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:36:48.0485 0x1d3c RTL8167 - ok
11:36:48.0500 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs C:\Windows\system32\lsass.exe
11:36:48.0500 0x1d3c SamSs - ok
11:36:48.0578 0x1d3c [ 328100AF2EFD951EAB657384EC361B6F, 2DECBF74E13511395AA13F931F06F4D557E67654DA3314D0095C332FB758B4D9 ] SamsungAllShareV2.0 C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
11:36:48.0578 0x1d3c SamsungAllShareV2.0 - ok
11:36:48.0609 0x1d3c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:36:48.0609 0x1d3c sbp2port - ok
11:36:48.0656 0x1d3c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:36:48.0672 0x1d3c SCardSvr - ok
11:36:48.0719 0x1d3c [ BB19E8CDFE4DADE1DDD5825289854E86, C9CC23BC8837E02C79028C077AAFF9B34FC86B5E4C5AFFDD8ED4CEFC6628B5B7 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
11:36:48.0734 0x1d3c SCDEmu - ok
11:36:48.0750 0x1d3c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:36:48.0765 0x1d3c scfilter - ok
11:36:48.0828 0x1d3c [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
11:36:48.0906 0x1d3c Schedule - ok
11:36:48.0937 0x1d3c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:36:48.0937 0x1d3c SCPolicySvc - ok
11:36:48.0953 0x1d3c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:36:48.0968 0x1d3c SDRSVC - ok
11:36:48.0984 0x1d3c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:36:48.0984 0x1d3c secdrv - ok
11:36:49.0015 0x1d3c [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
11:36:49.0015 0x1d3c seclogon - ok
11:36:49.0046 0x1d3c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
11:36:49.0046 0x1d3c SENS - ok
11:36:49.0077 0x1d3c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:36:49.0093 0x1d3c SensrSvc - ok
11:36:49.0109 0x1d3c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:36:49.0124 0x1d3c Serenum - ok
11:36:49.0155 0x1d3c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
11:36:49.0171 0x1d3c Serial - ok
11:36:49.0202 0x1d3c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:36:49.0202 0x1d3c sermouse - ok
11:36:49.0233 0x1d3c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
11:36:49.0249 0x1d3c SessionEnv - ok
11:36:49.0265 0x1d3c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:36:49.0265 0x1d3c sffdisk - ok
11:36:49.0296 0x1d3c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:36:49.0296 0x1d3c sffp_mmc - ok
11:36:49.0311 0x1d3c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:36:49.0311 0x1d3c sffp_sd - ok
11:36:49.0343 0x1d3c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:36:49.0343 0x1d3c sfloppy - ok
11:36:49.0374 0x1d3c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:36:49.0421 0x1d3c SharedAccess - ok
11:36:49.0467 0x1d3c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:36:49.0514 0x1d3c ShellHWDetection - ok
11:36:49.0545 0x1d3c [ 7AC6FBFC13ABA3F15B05986412D10E10, B93E0E18C9883BAE7238389B8E2E3D66CB925BD62B293625FF8B6C3AF4501EC8 ] Shockprf C:\Windows\system32\DRIVERS\Apsx64.sys
11:36:49.0545 0x1d3c Shockprf - ok
11:36:49.0577 0x1d3c [ 1980FE1F5A32067DAD1D8776B63C2669, 26B53EAF89CDBBA8FFA154DBB1F1DA348F894FE1F1D0CA4060E32496464DD5D2 ] SimpleSlideShowServer C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
11:36:49.0577 0x1d3c SimpleSlideShowServer - ok
11:36:49.0639 0x1d3c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:36:49.0639 0x1d3c SiSRaid2 - ok
11:36:49.0655 0x1d3c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:36:49.0655 0x1d3c SiSRaid4 - ok
11:36:49.0717 0x1d3c [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:36:49.0733 0x1d3c SkypeUpdate - ok
11:36:49.0764 0x1d3c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:36:49.0764 0x1d3c Smb - ok
11:36:49.0811 0x1d3c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:36:49.0826 0x1d3c SNMPTRAP - ok
11:36:49.0826 0x1d3c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
11:36:49.0826 0x1d3c spldr - ok
11:36:49.0889 0x1d3c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
11:36:49.0904 0x1d3c Spooler - ok
11:36:50.0091 0x1d3c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
11:36:50.0201 0x1d3c sppsvc - ok
11:36:50.0279 0x1d3c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:36:50.0279 0x1d3c sppuinotify - ok
11:36:50.0325 0x1d3c [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:36:50.0341 0x1d3c srv - ok
11:36:50.0372 0x1d3c [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:36:50.0388 0x1d3c srv2 - ok
11:36:50.0419 0x1d3c [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:36:50.0419 0x1d3c srvnet - ok
11:36:50.0481 0x1d3c [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
11:36:50.0481 0x1d3c ssadbus - ok
11:36:50.0528 0x1d3c [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
11:36:50.0528 0x1d3c ssadmdfl - ok
11:36:50.0544 0x1d3c [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
11:36:50.0559 0x1d3c ssadmdm - ok
11:36:50.0591 0x1d3c [ D33D1BD3EC0E766211A234F56A12726D, 53EEAA94865554F8422D111D717B548DF553B5B8647D2A45F3718BF4AEEBEC27 ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
11:36:50.0606 0x1d3c ssadserd - ok
11:36:50.0637 0x1d3c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:36:50.0653 0x1d3c SSDPSRV - ok
11:36:50.0669 0x1d3c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:36:50.0684 0x1d3c SstpSvc - ok
11:36:50.0700 0x1d3c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:36:50.0700 0x1d3c stexstor - ok
11:36:50.0747 0x1d3c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
11:36:50.0793 0x1d3c stisvc - ok
11:36:50.0903 0x1d3c [ B4351A27305C7C009B92C40102BC9161, 3955C9DAC488166E5B6DC1FD8110F1FA1A111A128DAEF89CD5835CB59A307ADA ] SUService C:\Program Files (x86)\Lenovo\System Update\SUService.exe
11:36:50.0903 0x1d3c SUService - ok
11:36:50.0934 0x1d3c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:36:50.0934 0x1d3c swenum - ok
11:36:50.0981 0x1d3c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
11:36:51.0012 0x1d3c swprv - ok
11:36:51.0074 0x1d3c [ C0B7405C899C485AA0B6F9866A4061CD, 24D2C9038491CD718202BBBC447B16299BB17911DF02329F8C5169B77804CFE8 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:36:51.0090 0x1d3c SynTP - ok
11:36:51.0199 0x1d3c [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
11:36:51.0293 0x1d3c SysMain - ok
11:36:51.0308 0x1d3c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:36:51.0324 0x1d3c TabletInputService - ok
11:36:51.0355 0x1d3c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
11:36:51.0402 0x1d3c TapiSrv - ok
11:36:51.0417 0x1d3c [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
11:36:51.0433 0x1d3c TBS - ok
11:36:51.0573 0x1d3c [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:36:51.0636 0x1d3c Tcpip - ok
11:36:51.0745 0x1d3c [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:36:51.0823 0x1d3c TCPIP6 - ok
11:36:51.0854 0x1d3c [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:36:51.0870 0x1d3c tcpipreg - ok
11:36:51.0901 0x1d3c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:36:51.0901 0x1d3c TDPIPE - ok
11:36:51.0901 0x1d3c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:36:51.0901 0x1d3c TDTCP - ok
11:36:51.0932 0x1d3c [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:36:51.0948 0x1d3c tdx - ok
11:36:51.0963 0x1d3c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:36:51.0963 0x1d3c TermDD - ok
11:36:52.0026 0x1d3c [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
11:36:52.0073 0x1d3c TermService - ok
11:36:52.0088 0x1d3c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
11:36:52.0104 0x1d3c Themes - ok
11:36:52.0135 0x1d3c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
11:36:52.0135 0x1d3c THREADORDER - ok
11:36:52.0151 0x1d3c [ BC148E3415BF8A9DE83364966F75044F, 0F4604753E8202A7CA0F0C2E08983911327E0E44E453CE91B9B9A80A5554EC16 ] TPDIGIMN C:\Windows\system32\DRIVERS\ApsHM64.sys
11:36:52.0151 0x1d3c TPDIGIMN - ok
11:36:52.0166 0x1d3c [ BBD91008BEC4A2BA5D383BC9A15D6F9E, 6A61E05F2189CB586440E0D5CB0126282459EAE9F29C9DD2D6E4583D230BF29E ] TPHDEXLGSVC C:\Windows\system32\TPHDEXLG64.exe
11:36:52.0182 0x1d3c TPHDEXLGSVC - ok
11:36:52.0229 0x1d3c [ 83415782D47F8064FCAFEA308ABB2246, 24D407FFF78EB48A440E4929918C92AEF6F5CF8170A14019C22D36B30BB01A23 ] TPHKLOAD C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
11:36:52.0244 0x1d3c TPHKLOAD - ok
11:36:52.0244 0x1d3c [ 046A7B412E4E6C4A7B426441E143F0F2, 8E42A888087A4DE20828652049D54955806986422C6A67C7A42499A0FB1CA1E2 ] TPHKSVC C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
11:36:52.0260 0x1d3c TPHKSVC - ok
11:36:52.0275 0x1d3c [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM C:\Windows\system32\drivers\tpm.sys
11:36:52.0291 0x1d3c TPM - ok
11:36:52.0338 0x1d3c [ 1DF6E6C026AD1D428687FE3B427A87BC, DA8F17A1030A0DEC81F5356B4DC99EC1F93FAD1292779191FDD53FEE530F9520 ] TPPWRIF C:\Windows\system32\drivers\Tppwr64v.sys
11:36:52.0338 0x1d3c TPPWRIF - ok
11:36:52.0369 0x1d3c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
11:36:52.0385 0x1d3c TrkWks - ok
11:36:52.0431 0x1d3c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:36:52.0447 0x1d3c TrustedInstaller - ok
11:36:52.0478 0x1d3c [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:36:52.0478 0x1d3c tssecsrv - ok
11:36:52.0525 0x1d3c [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:36:52.0541 0x1d3c TsUsbFlt - ok
11:36:52.0572 0x1d3c [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:36:52.0572 0x1d3c TsUsbGD - ok
11:36:52.0619 0x1d3c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:36:52.0634 0x1d3c tunnel - ok
11:36:52.0665 0x1d3c [ D4915DB03B19F9FD50EC084CC0ED15FC, 1CA899C0D48E69825DB27A4A52D8A3FEBA00A47C2D0E2FC0F5F358D15B7F3496 ] TVTI2C C:\Windows\system32\DRIVERS\Tvti2c.sys
11:36:52.0681 0x1d3c TVTI2C - ok
11:36:52.0697 0x1d3c [ 760B34088C2AD8D634CC3784EF3A2CA2, 20D23EDBDE7EBBA495C032097E7C5B1C6F94037971D9B2D6B98ABE11E7FF3643 ] tvtvcamd C:\Windows\system32\DRIVERS\tvtvcamd.sys
11:36:52.0712 0x1d3c tvtvcamd - ok
11:36:52.0712 0x1d3c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:36:52.0728 0x1d3c uagp35 - ok
11:36:52.0743 0x1d3c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:36:52.0759 0x1d3c udfs - ok
11:36:52.0790 0x1d3c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:36:52.0790 0x1d3c UI0Detect - ok
11:36:52.0821 0x1d3c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:36:52.0821 0x1d3c uliagpkx - ok
11:36:52.0868 0x1d3c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:36:52.0868 0x1d3c umbus - ok
11:36:52.0899 0x1d3c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:36:52.0899 0x1d3c UmPass - ok
11:36:52.0993 0x1d3c [ 30FF46EABCA1BB18E4F357492A8F7FC9, 486CBF02CA089684F222FA52756C5442FE3F3AA5E89D814B6E7C4F411DECC86B ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
11:36:53.0009 0x1d3c UNS - ok
11:36:53.0055 0x1d3c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
11:36:53.0087 0x1d3c upnphost - ok
11:36:53.0133 0x1d3c [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:36:53.0133 0x1d3c usbccgp - ok
11:36:53.0196 0x1d3c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:36:53.0211 0x1d3c usbcir - ok
11:36:53.0227 0x1d3c [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:36:53.0227 0x1d3c usbehci - ok
11:36:53.0274 0x1d3c [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:36:53.0289 0x1d3c usbhub - ok
11:36:53.0336 0x1d3c [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:36:53.0336 0x1d3c usbohci - ok
11:36:53.0367 0x1d3c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:36:53.0367 0x1d3c usbprint - ok
11:36:53.0383 0x1d3c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:36:53.0399 0x1d3c usbscan - ok
11:36:53.0430 0x1d3c [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:36:53.0430 0x1d3c USBSTOR - ok
11:36:53.0477 0x1d3c [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:36:53.0477 0x1d3c usbuhci - ok
11:36:53.0508 0x1d3c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:36:53.0523 0x1d3c usbvideo - ok
11:36:53.0555 0x1d3c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
11:36:53.0555 0x1d3c UxSms - ok
11:36:53.0586 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc C:\Windows\system32\lsass.exe
11:36:53.0586 0x1d3c VaultSvc - ok
11:36:53.0648 0x1d3c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:36:53.0648 0x1d3c vdrvroot - ok
11:36:53.0679 0x1d3c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
11:36:53.0726 0x1d3c vds - ok
11:36:53.0742 0x1d3c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:36:53.0742 0x1d3c vga - ok
11:36:53.0757 0x1d3c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:36:53.0757 0x1d3c VgaSave - ok
11:36:53.0773 0x1d3c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:36:53.0789 0x1d3c vhdmp - ok
11:36:53.0882 0x1d3c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
11:36:53.0882 0x1d3c viaide - ok
11:36:53.0945 0x1d3c [ A9BDE7317E68D497DEFAD1C84FBCFD24, 7870CE7DC2E2E7DADB726C5E53E505EA7D25EF145AB7F4C8734EBD5A7E287BFA ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
11:36:53.0945 0x1d3c VIPAppService - ok
11:36:54.0038 0x1d3c [ 12B2BE13A5DF667F8095F66949233EA5, 1F6C576DFB334EFFD779772708CC1467C9DAA65005CDAB29A92873E1A5069C48 ] vm331avs C:\Windows\system32\Drivers\vm331avs.sys
11:36:54.0069 0x1d3c vm331avs - ok
11:36:54.0101 0x1d3c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:36:54.0101 0x1d3c volmgr - ok
11:36:54.0132 0x1d3c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:36:54.0147 0x1d3c volmgrx - ok
11:36:54.0163 0x1d3c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:36:54.0179 0x1d3c volsnap - ok
11:36:54.0210 0x1d3c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:36:54.0225 0x1d3c vsmraid - ok
11:36:54.0319 0x1d3c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
11:36:54.0397 0x1d3c VSS - ok
11:36:54.0413 0x1d3c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:36:54.0413 0x1d3c vwifibus - ok
11:36:54.0444 0x1d3c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:36:54.0444 0x1d3c vwififlt - ok
11:36:54.0459 0x1d3c [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:36:54.0459 0x1d3c vwifimp - ok
11:36:54.0491 0x1d3c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
11:36:54.0537 0x1d3c W32Time - ok
11:36:54.0569 0x1d3c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:36:54.0569 0x1d3c WacomPen - ok
11:36:54.0615 0x1d3c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:36:54.0615 0x1d3c WANARP - ok
11:36:54.0631 0x1d3c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:36:54.0631 0x1d3c Wanarpv6 - ok
11:36:54.0725 0x1d3c [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:36:54.0803 0x1d3c WatAdminSvc - ok
11:36:54.0912 0x1d3c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
11:36:54.0990 0x1d3c wbengine - ok
11:36:55.0005 0x1d3c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:36:55.0037 0x1d3c WbioSrvc - ok
11:36:55.0068 0x1d3c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:36:55.0115 0x1d3c wcncsvc - ok
11:36:55.0130 0x1d3c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:36:55.0146 0x1d3c WcsPlugInService - ok
11:36:55.0177 0x1d3c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
11:36:55.0177 0x1d3c Wd - ok
11:36:55.0239 0x1d3c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:36:55.0271 0x1d3c Wdf01000 - ok
11:36:55.0333 0x1d3c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:36:55.0333 0x1d3c WdiServiceHost - ok
11:36:55.0349 0x1d3c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:36:55.0364 0x1d3c WdiSystemHost - ok
11:36:55.0411 0x1d3c [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
11:36:55.0442 0x1d3c WebClient - ok
11:36:55.0458 0x1d3c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:36:55.0489 0x1d3c Wecsvc - ok
11:36:55.0505 0x1d3c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:36:55.0505 0x1d3c wercplsupport - ok
11:36:55.0536 0x1d3c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
11:36:55.0551 0x1d3c WerSvc - ok
11:36:55.0598 0x1d3c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:36:55.0598 0x1d3c WfpLwf - ok
11:36:55.0614 0x1d3c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:36:55.0614 0x1d3c WIMMount - ok
11:36:55.0645 0x1d3c WinDefend - ok
11:36:55.0661 0x1d3c WinHttpAutoProxySvc - ok
11:36:55.0739 0x1d3c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:36:55.0739 0x1d3c Winmgmt - ok
11:36:55.0863 0x1d3c [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
11:36:55.0973 0x1d3c WinRM - ok
11:36:56.0051 0x1d3c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:36:56.0051 0x1d3c WinUsb - ok
11:36:56.0113 0x1d3c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:36:56.0191 0x1d3c Wlansvc - ok
11:36:56.0253 0x1d3c [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:36:56.0253 0x1d3c wlcrasvc - ok
11:36:56.0409 0x1d3c [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:36:56.0487 0x1d3c wlidsvc - ok
11:36:56.0534 0x1d3c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:36:56.0534 0x1d3c WmiAcpi - ok
11:36:56.0565 0x1d3c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:36:56.0581 0x1d3c wmiApSrv - ok
11:36:56.0597 0x1d3c WMPNetworkSvc - ok
11:36:56.0643 0x1d3c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:36:56.0643 0x1d3c WPCSvc - ok
11:36:56.0659 0x1d3c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:36:56.0675 0x1d3c WPDBusEnum - ok
11:36:56.0706 0x1d3c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:36:56.0706 0x1d3c ws2ifsl - ok
11:36:56.0737 0x1d3c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
11:36:56.0753 0x1d3c wscsvc - ok
11:36:56.0753 0x1d3c WSearch - ok
11:36:56.0877 0x1d3c [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
11:36:57.0002 0x1d3c wuauserv - ok
11:36:57.0049 0x1d3c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:36:57.0049 0x1d3c WudfPf - ok
11:36:57.0080 0x1d3c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:36:57.0096 0x1d3c WUDFRd - ok
11:36:57.0127 0x1d3c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:36:57.0143 0x1d3c wudfsvc - ok
11:36:57.0189 0x1d3c [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
11:36:57.0221 0x1d3c WwanSvc - ok
11:36:57.0408 0x1d3c [ D2FE4103450E52CB248D842501F84B90, 0775E540B5ACEE6FA90FC7BE87F45EB005F6593CDA252D64EBC509A350DDA038 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
11:36:57.0501 0x1d3c ZeroConfigService - ok
11:36:57.0548 0x1d3c ================ Scan global ===============================
11:36:57.0564 0x1d3c [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
11:36:57.0626 0x1d3c [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:36:57.0657 0x1d3c [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:36:57.0689 0x1d3c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:36:57.0735 0x1d3c [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
11:36:57.0751 0x1d3c [ Global ] - ok
11:36:57.0751 0x1d3c ================ Scan MBR ==================================
11:36:57.0767 0x1d3c [ 77D8335E9CBDC198F2D432A7B30F68B8 ] \Device\Harddisk0\DR0
11:36:58.0079 0x1d3c \Device\Harddisk0\DR0 - ok
11:36:58.0079 0x1d3c ================ Scan VBR ==================================
11:36:58.0079 0x1d3c [ F109DD680DEEA993A64A4D17BC5DDA43 ] \Device\Harddisk0\DR0\Partition1
11:36:58.0094 0x1d3c \Device\Harddisk0\DR0\Partition1 - ok
11:36:58.0110 0x1d3c [ 56F82488647DB81E3522EAF366BBBFC3 ] \Device\Harddisk0\DR0\Partition2
11:36:58.0110 0x1d3c \Device\Harddisk0\DR0\Partition2 - ok
11:36:58.0141 0x1d3c [ DE71663C5D9F4286A71DBCDBA2C346EF ] \Device\Harddisk0\DR0\Partition3
11:36:58.0141 0x1d3c \Device\Harddisk0\DR0\Partition3 - ok
11:36:58.0141 0x1d3c Waiting for KSN requests completion. In queue: 85
11:36:59.0155 0x1d3c Waiting for KSN requests completion. In queue: 85
11:37:00.0169 0x1d3c Waiting for KSN requests completion. In queue: 85
11:37:01.0199 0x1d3c AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 7.0.1474.765 ), 0x40000 ( disabled : updated )
11:37:01.0214 0x1d3c Win FW state via NFP2: enabled
11:37:04.0100 0x1d3c ============================================================
11:37:04.0100 0x1d3c Scan finished
11:37:04.0100 0x1d3c ============================================================
11:37:04.0100 0x22f0 Detected object count: 0
11:37:04.0100 0x22f0 Actual detected object count: 0
11:38:15.0798 0x21d4 Deinitialize success
11:36:41.0043 0x1d3c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:36:41.0043 0x1d3c msisadrv - ok
11:36:41.0090 0x1d3c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:36:41.0090 0x1d3c MSiSCSI - ok
11:36:41.0106 0x1d3c msiserver - ok
11:36:41.0137 0x1d3c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:36:41.0137 0x1d3c MSKSSRV - ok
11:36:41.0168 0x1d3c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:36:41.0184 0x1d3c MSPCLOCK - ok
11:36:41.0184 0x1d3c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:36:41.0184 0x1d3c MSPQM - ok
11:36:41.0215 0x1d3c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:36:41.0231 0x1d3c MsRPC - ok
11:36:41.0246 0x1d3c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:36:41.0246 0x1d3c mssmbios - ok
11:36:41.0262 0x1d3c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:36:41.0262 0x1d3c MSTEE - ok
11:36:41.0277 0x1d3c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:36:41.0277 0x1d3c MTConfig - ok
11:36:41.0293 0x1d3c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
11:36:41.0309 0x1d3c Mup - ok
11:36:41.0340 0x1d3c [ 48C9BA25EDA90E3DB07ADAC8CD32F5F3, 9CAFFECB0F59CC758C646F886D7A9A276A152B94EE58564BD03FBB48C4C7E396 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
11:36:41.0355 0x1d3c MyWiFiDHCPDNS - ok
11:36:41.0402 0x1d3c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
11:36:41.0433 0x1d3c napagent - ok
11:36:41.0496 0x1d3c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:36:41.0511 0x1d3c NativeWifiP - ok
11:36:41.0589 0x1d3c [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
11:36:41.0621 0x1d3c NDIS - ok
11:36:41.0636 0x1d3c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:36:41.0636 0x1d3c NdisCap - ok
11:36:41.0683 0x1d3c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:36:41.0683 0x1d3c NdisTapi - ok
11:36:41.0714 0x1d3c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:36:41.0714 0x1d3c Ndisuio - ok
11:36:41.0730 0x1d3c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:36:41.0745 0x1d3c NdisWan - ok
11:36:41.0761 0x1d3c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:36:41.0761 0x1d3c NDProxy - ok
11:36:41.0777 0x1d3c [ D5AC41AE382738483FAFFBD7E373D49A, 68793D15566F387650E9C5010E1CA73BDE3EB4BA431EA0A1673004CAE08413B0 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:36:41.0792 0x1d3c Net Driver HPZ12 - ok
11:36:41.0808 0x1d3c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:36:41.0808 0x1d3c NetBIOS - ok
11:36:41.0839 0x1d3c [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:36:41.0839 0x1d3c NetBT - ok
11:36:41.0870 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon C:\Windows\system32\lsass.exe
11:36:41.0870 0x1d3c Netlogon - ok
11:36:41.0917 0x1d3c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
11:36:41.0948 0x1d3c Netman - ok
11:36:42.0042 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0042 0x1d3c NetMsmqActivator - ok
11:36:42.0057 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0057 0x1d3c NetPipeActivator - ok
11:36:42.0089 0x1d3c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
11:36:42.0135 0x1d3c netprofm - ok
11:36:42.0151 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0151 0x1d3c NetTcpActivator - ok
11:36:42.0167 0x1d3c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:42.0167 0x1d3c NetTcpPortSharing - ok
11:36:42.0713 0x1d3c [ FAD6C5610D020534401966CD72A1C306, 49D1AF9682464638BF7AC29A83E090F037543C3AA1F7E5970040633AFD5EAF29 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
11:36:43.0087 0x1d3c NETwNs64 - ok
11:36:43.0165 0x1d3c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:36:43.0165 0x1d3c nfrd960 - ok
11:36:43.0196 0x1d3c [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:36:43.0212 0x1d3c NlaSvc - ok
11:36:43.0243 0x1d3c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:36:43.0243 0x1d3c Npfs - ok
11:36:43.0274 0x1d3c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
11:36:43.0274 0x1d3c nsi - ok
11:36:43.0290 0x1d3c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:36:43.0290 0x1d3c nsiproxy - ok
11:36:43.0399 0x1d3c [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:36:43.0461 0x1d3c Ntfs - ok
11:36:43.0477 0x1d3c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
11:36:43.0477 0x1d3c Null - ok
11:36:44.0023 0x1d3c [ FE2909F7DFB12B9A20AD207FE23B7E96, FC34F5052CC147BEAE2D0C7F1005183A0B39116BBA8D690918FF4CEE3B17F4D9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:36:44.0413 0x1d3c nvlddmkm - ok
11:36:44.0491 0x1d3c [ 54C7D4E3A31888FA4BE822F506FE905B, 2287F332F5F2984FCBE288BA2CD7A128FD0419BF09CB91A3925EFB6B5BB4C0D6 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
11:36:44.0491 0x1d3c nvpciflt - ok
11:36:44.0522 0x1d3c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:36:44.0522 0x1d3c nvraid - ok
11:36:44.0553 0x1d3c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:36:44.0553 0x1d3c nvstor - ok
11:36:44.0616 0x1d3c [ 3341D2C91989BC87C3C0BAA97C27253B, D056278751E5DE9CAC488B60D4C203611227845494B85AFD6EBA328DB4FE34D0 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:36:44.0647 0x1d3c nvsvc - ok
11:36:44.0725 0x1d3c [ 551CE34DAD2DFF0A480781E68B286E4D, 01F1D83350715BF23C246E3CBBBB4556FAC72DEF66F5173586A1FC0D3058FEF0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
11:36:44.0772 0x1d3c nvUpdatusService - ok
11:36:44.0803 0x1d3c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:36:44.0819 0x1d3c nv_agp - ok
11:36:44.0834 0x1d3c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:36:44.0834 0x1d3c ohci1394 - ok
11:36:44.0897 0x1d3c [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:36:44.0897 0x1d3c ose64 - ok
11:36:45.0162 0x1d3c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:36:45.0333 0x1d3c osppsvc - ok
11:36:45.0396 0x1d3c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:36:45.0427 0x1d3c p2pimsvc - ok
11:36:45.0474 0x1d3c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
11:36:45.0505 0x1d3c p2psvc - ok
11:36:45.0521 0x1d3c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
11:36:45.0536 0x1d3c Parport - ok
11:36:45.0567 0x1d3c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:36:45.0567 0x1d3c partmgr - ok
11:36:45.0599 0x1d3c [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
11:36:45.0614 0x1d3c PcaSvc - ok
11:36:45.0630 0x1d3c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
11:36:45.0645 0x1d3c pci - ok
11:36:45.0692 0x1d3c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
11:36:45.0692 0x1d3c pciide - ok
11:36:45.0723 0x1d3c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:36:45.0739 0x1d3c pcmcia - ok
11:36:45.0755 0x1d3c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
11:36:45.0755 0x1d3c pcw - ok
11:36:45.0801 0x1d3c [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:36:45.0817 0x1d3c PEAUTH - ok
11:36:45.0926 0x1d3c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:36:45.0926 0x1d3c PerfHost - ok
11:36:45.0989 0x1d3c [ 2CECB15AC87B7869A40305221FD28F82, 0A8261780128B99549A0BE5036F2EB6BF3CCC447110D63D0BB0245D956FEDF7D ] PHCORE C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS
11:36:45.0989 0x1d3c PHCORE - ok
11:36:46.0082 0x1d3c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
11:36:46.0176 0x1d3c pla - ok
11:36:46.0238 0x1d3c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:36:46.0269 0x1d3c PlugPlay - ok
11:36:46.0285 0x1d3c [ 37F6046CDC630442D7DC087501FF6FC6, EFC0F3DA49839CA263CD95AE5015F4FC554D9D845A58A699C542C8C96E70ED3C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:36:46.0285 0x1d3c Pml Driver HPZ12 - ok
11:36:46.0316 0x1d3c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:36:46.0316 0x1d3c PNRPAutoReg - ok
11:36:46.0347 0x1d3c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:36:46.0363 0x1d3c PNRPsvc - ok
11:36:46.0425 0x1d3c [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:36:46.0457 0x1d3c PolicyAgent - ok
11:36:46.0488 0x1d3c [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\Windows\system32\umpo.dll
11:36:46.0503 0x1d3c Power - ok
11:36:46.0628 0x1d3c [ 518BE5EE0B8FDED721A5740DCB8FC060, F36EB9572C5DDB635ED2C70EA731B80CF1BA58DEFC5034D8E0DF97A424195D92 ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
11:36:46.0691 0x1d3c Power Manager DBC Service - ok
11:36:46.0737 0x1d3c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:36:46.0753 0x1d3c PptpMiniport - ok
11:36:46.0769 0x1d3c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
11:36:46.0769 0x1d3c Processor - ok
11:36:46.0815 0x1d3c [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
11:36:46.0831 0x1d3c ProfSvc - ok
11:36:46.0847 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
11:36:46.0862 0x1d3c ProtectedStorage - ok
11:36:46.0909 0x1d3c [ 05A4779E4994B21473EDBE85AABE8030, AFD597461B036FDE42013648A4D542B02AE1D7E128BF0B193BA4B478432F0C72 ] psadd C:\Windows\system32\DRIVERS\psadd.sys
11:36:46.0909 0x1d3c psadd - ok
11:36:46.0940 0x1d3c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:36:46.0940 0x1d3c Psched - ok
11:36:46.0971 0x1d3c [ 92349136247F3ECF96DBC13BA2955D54, 33058CEF3481AE13013A3C409E4A271A225E8FB0170E7A8BA92C52C0E4EFD714 ] PwmEWSvc C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
11:36:46.0971 0x1d3c PwmEWSvc - ok
11:36:47.0081 0x1d3c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:36:47.0127 0x1d3c ql2300 - ok
11:36:47.0159 0x1d3c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:36:47.0159 0x1d3c ql40xx - ok
11:36:47.0205 0x1d3c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
11:36:47.0221 0x1d3c QWAVE - ok
11:36:47.0268 0x1d3c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:36:47.0268 0x1d3c QWAVEdrv - ok
11:36:47.0283 0x1d3c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:36:47.0283 0x1d3c RasAcd - ok
11:36:47.0330 0x1d3c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:36:47.0330 0x1d3c RasAgileVpn - ok
11:36:47.0346 0x1d3c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
11:36:47.0361 0x1d3c RasAuto - ok
11:36:47.0393 0x1d3c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:36:47.0393 0x1d3c Rasl2tp - ok
11:36:47.0424 0x1d3c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
11:36:47.0455 0x1d3c RasMan - ok
11:36:47.0471 0x1d3c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:36:47.0486 0x1d3c RasPppoe - ok
11:36:47.0502 0x1d3c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:36:47.0517 0x1d3c RasSstp - ok
11:36:47.0533 0x1d3c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:36:47.0549 0x1d3c rdbss - ok
11:36:47.0564 0x1d3c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
11:36:47.0580 0x1d3c rdpbus - ok
11:36:47.0595 0x1d3c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:36:47.0595 0x1d3c RDPCDD - ok
11:36:47.0627 0x1d3c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:36:47.0627 0x1d3c RDPENCDD - ok
11:36:47.0658 0x1d3c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:36:47.0658 0x1d3c RDPREFMP - ok
11:36:47.0720 0x1d3c [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:36:47.0720 0x1d3c RdpVideoMiniport - ok
11:36:47.0767 0x1d3c [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:36:47.0783 0x1d3c RDPWD - ok
11:36:47.0845 0x1d3c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:36:47.0845 0x1d3c rdyboost - ok
11:36:47.0907 0x1d3c [ 0C2B4C3B10D183BE116A38353E937F62, 2523E6FAB400EA1F9B4A634C1CC427D1D6FDE4B36018FF469470961EB8E432FA ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
11:36:47.0923 0x1d3c RegSrvc - ok
11:36:47.0954 0x1d3c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:36:47.0954 0x1d3c RemoteAccess - ok
11:36:47.0985 0x1d3c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:36:48.0001 0x1d3c RemoteRegistry - ok
11:36:48.0048 0x1d3c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:36:48.0048 0x1d3c RFCOMM - ok
11:36:48.0079 0x1d3c [ 71700B4C5797DA5412E9250E26894586, 7812BA46F429588C3B9726C886077BB9FA0565D2F0928040FAB2033938DB3E06 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
11:36:48.0095 0x1d3c RimUsb - ok
11:36:48.0141 0x1d3c [ C903D49655B4AAE46673F0AAA6BE0F58, 0F861775323CC1792A4A4B43D6375532D982FBC9FCC03184B55101A2A579A832 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
11:36:48.0141 0x1d3c RimVSerPort - ok
11:36:48.0173 0x1d3c [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
11:36:48.0173 0x1d3c ROOTMODEM - ok
11:36:48.0204 0x1d3c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:36:48.0204 0x1d3c RpcEptMapper - ok
11:36:48.0235 0x1d3c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
11:36:48.0251 0x1d3c RpcLocator - ok
11:36:48.0282 0x1d3c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
11:36:48.0313 0x1d3c RpcSs - ok
11:36:48.0344 0x1d3c [ 1EA2EDA2D6CD253CE3EC3387FEAA40AC, 292A5F3B8E91617C33D86353AE584106E651BFF9CFF725A6BDD029812973C66B ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
11:36:48.0360 0x1d3c RSPCIESTOR - ok
11:36:48.0391 0x1d3c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:36:48.0407 0x1d3c rspndr - ok
11:36:48.0453 0x1d3c [ 6CF9DB101A75360E98659F823852E540, A7D48DF41A831EEF9978B51786EF80DB9CC40602BE66D46CA11BE1548BC2D10C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:36:48.0485 0x1d3c RTL8167 - ok
11:36:48.0500 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs C:\Windows\system32\lsass.exe
11:36:48.0500 0x1d3c SamSs - ok
11:36:48.0578 0x1d3c [ 328100AF2EFD951EAB657384EC361B6F, 2DECBF74E13511395AA13F931F06F4D557E67654DA3314D0095C332FB758B4D9 ] SamsungAllShareV2.0 C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
11:36:48.0578 0x1d3c SamsungAllShareV2.0 - ok
11:36:48.0609 0x1d3c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:36:48.0609 0x1d3c sbp2port - ok
11:36:48.0656 0x1d3c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:36:48.0672 0x1d3c SCardSvr - ok
11:36:48.0719 0x1d3c [ BB19E8CDFE4DADE1DDD5825289854E86, C9CC23BC8837E02C79028C077AAFF9B34FC86B5E4C5AFFDD8ED4CEFC6628B5B7 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
11:36:48.0734 0x1d3c SCDEmu - ok
11:36:48.0750 0x1d3c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:36:48.0765 0x1d3c scfilter - ok
11:36:48.0828 0x1d3c [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
11:36:48.0906 0x1d3c Schedule - ok
11:36:48.0937 0x1d3c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:36:48.0937 0x1d3c SCPolicySvc - ok
11:36:48.0953 0x1d3c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:36:48.0968 0x1d3c SDRSVC - ok
11:36:48.0984 0x1d3c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:36:48.0984 0x1d3c secdrv - ok
11:36:49.0015 0x1d3c [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
11:36:49.0015 0x1d3c seclogon - ok
11:36:49.0046 0x1d3c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
11:36:49.0046 0x1d3c SENS - ok
11:36:49.0077 0x1d3c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:36:49.0093 0x1d3c SensrSvc - ok
11:36:49.0109 0x1d3c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:36:49.0124 0x1d3c Serenum - ok
11:36:49.0155 0x1d3c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
11:36:49.0171 0x1d3c Serial - ok
11:36:49.0202 0x1d3c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:36:49.0202 0x1d3c sermouse - ok
11:36:49.0233 0x1d3c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
11:36:49.0249 0x1d3c SessionEnv - ok
11:36:49.0265 0x1d3c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:36:49.0265 0x1d3c sffdisk - ok
11:36:49.0296 0x1d3c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:36:49.0296 0x1d3c sffp_mmc - ok
11:36:49.0311 0x1d3c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:36:49.0311 0x1d3c sffp_sd - ok
11:36:49.0343 0x1d3c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:36:49.0343 0x1d3c sfloppy - ok
11:36:49.0374 0x1d3c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:36:49.0421 0x1d3c SharedAccess - ok
11:36:49.0467 0x1d3c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:36:49.0514 0x1d3c ShellHWDetection - ok
11:36:49.0545 0x1d3c [ 7AC6FBFC13ABA3F15B05986412D10E10, B93E0E18C9883BAE7238389B8E2E3D66CB925BD62B293625FF8B6C3AF4501EC8 ] Shockprf C:\Windows\system32\DRIVERS\Apsx64.sys
11:36:49.0545 0x1d3c Shockprf - ok
11:36:49.0577 0x1d3c [ 1980FE1F5A32067DAD1D8776B63C2669, 26B53EAF89CDBBA8FFA154DBB1F1DA348F894FE1F1D0CA4060E32496464DD5D2 ] SimpleSlideShowServer C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
11:36:49.0577 0x1d3c SimpleSlideShowServer - ok
11:36:49.0639 0x1d3c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:36:49.0639 0x1d3c SiSRaid2 - ok
11:36:49.0655 0x1d3c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:36:49.0655 0x1d3c SiSRaid4 - ok
11:36:49.0717 0x1d3c [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:36:49.0733 0x1d3c SkypeUpdate - ok
11:36:49.0764 0x1d3c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:36:49.0764 0x1d3c Smb - ok
11:36:49.0811 0x1d3c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:36:49.0826 0x1d3c SNMPTRAP - ok
11:36:49.0826 0x1d3c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
11:36:49.0826 0x1d3c spldr - ok
11:36:49.0889 0x1d3c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
11:36:49.0904 0x1d3c Spooler - ok
11:36:50.0091 0x1d3c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
11:36:50.0201 0x1d3c sppsvc - ok
11:36:50.0279 0x1d3c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:36:50.0279 0x1d3c sppuinotify - ok
11:36:50.0325 0x1d3c [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:36:50.0341 0x1d3c srv - ok
11:36:50.0372 0x1d3c [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:36:50.0388 0x1d3c srv2 - ok
11:36:50.0419 0x1d3c [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:36:50.0419 0x1d3c srvnet - ok
11:36:50.0481 0x1d3c [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
11:36:50.0481 0x1d3c ssadbus - ok
11:36:50.0528 0x1d3c [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
11:36:50.0528 0x1d3c ssadmdfl - ok
11:36:50.0544 0x1d3c [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
11:36:50.0559 0x1d3c ssadmdm - ok
11:36:50.0591 0x1d3c [ D33D1BD3EC0E766211A234F56A12726D, 53EEAA94865554F8422D111D717B548DF553B5B8647D2A45F3718BF4AEEBEC27 ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
11:36:50.0606 0x1d3c ssadserd - ok
11:36:50.0637 0x1d3c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:36:50.0653 0x1d3c SSDPSRV - ok
11:36:50.0669 0x1d3c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:36:50.0684 0x1d3c SstpSvc - ok
11:36:50.0700 0x1d3c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:36:50.0700 0x1d3c stexstor - ok
11:36:50.0747 0x1d3c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
11:36:50.0793 0x1d3c stisvc - ok
11:36:50.0903 0x1d3c [ B4351A27305C7C009B92C40102BC9161, 3955C9DAC488166E5B6DC1FD8110F1FA1A111A128DAEF89CD5835CB59A307ADA ] SUService C:\Program Files (x86)\Lenovo\System Update\SUService.exe
11:36:50.0903 0x1d3c SUService - ok
11:36:50.0934 0x1d3c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:36:50.0934 0x1d3c swenum - ok
11:36:50.0981 0x1d3c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
11:36:51.0012 0x1d3c swprv - ok
11:36:51.0074 0x1d3c [ C0B7405C899C485AA0B6F9866A4061CD, 24D2C9038491CD718202BBBC447B16299BB17911DF02329F8C5169B77804CFE8 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:36:51.0090 0x1d3c SynTP - ok
11:36:51.0199 0x1d3c [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
11:36:51.0293 0x1d3c SysMain - ok
11:36:51.0308 0x1d3c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:36:51.0324 0x1d3c TabletInputService - ok
11:36:51.0355 0x1d3c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
11:36:51.0402 0x1d3c TapiSrv - ok
11:36:51.0417 0x1d3c [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
11:36:51.0433 0x1d3c TBS - ok
11:36:51.0573 0x1d3c [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:36:51.0636 0x1d3c Tcpip - ok
11:36:51.0745 0x1d3c [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:36:51.0823 0x1d3c TCPIP6 - ok
11:36:51.0854 0x1d3c [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:36:51.0870 0x1d3c tcpipreg - ok
11:36:51.0901 0x1d3c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:36:51.0901 0x1d3c TDPIPE - ok
11:36:51.0901 0x1d3c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:36:51.0901 0x1d3c TDTCP - ok
11:36:51.0932 0x1d3c [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:36:51.0948 0x1d3c tdx - ok
11:36:51.0963 0x1d3c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:36:51.0963 0x1d3c TermDD - ok
11:36:52.0026 0x1d3c [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
11:36:52.0073 0x1d3c TermService - ok
11:36:52.0088 0x1d3c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
11:36:52.0104 0x1d3c Themes - ok
11:36:52.0135 0x1d3c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
11:36:52.0135 0x1d3c THREADORDER - ok
11:36:52.0151 0x1d3c [ BC148E3415BF8A9DE83364966F75044F, 0F4604753E8202A7CA0F0C2E08983911327E0E44E453CE91B9B9A80A5554EC16 ] TPDIGIMN C:\Windows\system32\DRIVERS\ApsHM64.sys
11:36:52.0151 0x1d3c TPDIGIMN - ok
11:36:52.0166 0x1d3c [ BBD91008BEC4A2BA5D383BC9A15D6F9E, 6A61E05F2189CB586440E0D5CB0126282459EAE9F29C9DD2D6E4583D230BF29E ] TPHDEXLGSVC C:\Windows\system32\TPHDEXLG64.exe
11:36:52.0182 0x1d3c TPHDEXLGSVC - ok
11:36:52.0229 0x1d3c [ 83415782D47F8064FCAFEA308ABB2246, 24D407FFF78EB48A440E4929918C92AEF6F5CF8170A14019C22D36B30BB01A23 ] TPHKLOAD C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
11:36:52.0244 0x1d3c TPHKLOAD - ok
11:36:52.0244 0x1d3c [ 046A7B412E4E6C4A7B426441E143F0F2, 8E42A888087A4DE20828652049D54955806986422C6A67C7A42499A0FB1CA1E2 ] TPHKSVC C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
11:36:52.0260 0x1d3c TPHKSVC - ok
11:36:52.0275 0x1d3c [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM C:\Windows\system32\drivers\tpm.sys
11:36:52.0291 0x1d3c TPM - ok
11:36:52.0338 0x1d3c [ 1DF6E6C026AD1D428687FE3B427A87BC, DA8F17A1030A0DEC81F5356B4DC99EC1F93FAD1292779191FDD53FEE530F9520 ] TPPWRIF C:\Windows\system32\drivers\Tppwr64v.sys
11:36:52.0338 0x1d3c TPPWRIF - ok
11:36:52.0369 0x1d3c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
11:36:52.0385 0x1d3c TrkWks - ok
11:36:52.0431 0x1d3c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:36:52.0447 0x1d3c TrustedInstaller - ok
11:36:52.0478 0x1d3c [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:36:52.0478 0x1d3c tssecsrv - ok
11:36:52.0525 0x1d3c [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:36:52.0541 0x1d3c TsUsbFlt - ok
11:36:52.0572 0x1d3c [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:36:52.0572 0x1d3c TsUsbGD - ok
11:36:52.0619 0x1d3c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:36:52.0634 0x1d3c tunnel - ok
11:36:52.0665 0x1d3c [ D4915DB03B19F9FD50EC084CC0ED15FC, 1CA899C0D48E69825DB27A4A52D8A3FEBA00A47C2D0E2FC0F5F358D15B7F3496 ] TVTI2C C:\Windows\system32\DRIVERS\Tvti2c.sys
11:36:52.0681 0x1d3c TVTI2C - ok
11:36:52.0697 0x1d3c [ 760B34088C2AD8D634CC3784EF3A2CA2, 20D23EDBDE7EBBA495C032097E7C5B1C6F94037971D9B2D6B98ABE11E7FF3643 ] tvtvcamd C:\Windows\system32\DRIVERS\tvtvcamd.sys
11:36:52.0712 0x1d3c tvtvcamd - ok
11:36:52.0712 0x1d3c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:36:52.0728 0x1d3c uagp35 - ok
11:36:52.0743 0x1d3c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:36:52.0759 0x1d3c udfs - ok
11:36:52.0790 0x1d3c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:36:52.0790 0x1d3c UI0Detect - ok
11:36:52.0821 0x1d3c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:36:52.0821 0x1d3c uliagpkx - ok
11:36:52.0868 0x1d3c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:36:52.0868 0x1d3c umbus - ok
11:36:52.0899 0x1d3c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:36:52.0899 0x1d3c UmPass - ok
11:36:52.0993 0x1d3c [ 30FF46EABCA1BB18E4F357492A8F7FC9, 486CBF02CA089684F222FA52756C5442FE3F3AA5E89D814B6E7C4F411DECC86B ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
11:36:53.0009 0x1d3c UNS - ok
11:36:53.0055 0x1d3c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
11:36:53.0087 0x1d3c upnphost - ok
11:36:53.0133 0x1d3c [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:36:53.0133 0x1d3c usbccgp - ok
11:36:53.0196 0x1d3c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:36:53.0211 0x1d3c usbcir - ok
11:36:53.0227 0x1d3c [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:36:53.0227 0x1d3c usbehci - ok
11:36:53.0274 0x1d3c [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:36:53.0289 0x1d3c usbhub - ok
11:36:53.0336 0x1d3c [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:36:53.0336 0x1d3c usbohci - ok
11:36:53.0367 0x1d3c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:36:53.0367 0x1d3c usbprint - ok
11:36:53.0383 0x1d3c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:36:53.0399 0x1d3c usbscan - ok
11:36:53.0430 0x1d3c [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:36:53.0430 0x1d3c USBSTOR - ok
11:36:53.0477 0x1d3c [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:36:53.0477 0x1d3c usbuhci - ok
11:36:53.0508 0x1d3c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:36:53.0523 0x1d3c usbvideo - ok
11:36:53.0555 0x1d3c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
11:36:53.0555 0x1d3c UxSms - ok
11:36:53.0586 0x1d3c [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc C:\Windows\system32\lsass.exe
11:36:53.0586 0x1d3c VaultSvc - ok
11:36:53.0648 0x1d3c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:36:53.0648 0x1d3c vdrvroot - ok
11:36:53.0679 0x1d3c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
11:36:53.0726 0x1d3c vds - ok
11:36:53.0742 0x1d3c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:36:53.0742 0x1d3c vga - ok
11:36:53.0757 0x1d3c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:36:53.0757 0x1d3c VgaSave - ok
11:36:53.0773 0x1d3c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:36:53.0789 0x1d3c vhdmp - ok
11:36:53.0882 0x1d3c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
11:36:53.0882 0x1d3c viaide - ok
11:36:53.0945 0x1d3c [ A9BDE7317E68D497DEFAD1C84FBCFD24, 7870CE7DC2E2E7DADB726C5E53E505EA7D25EF145AB7F4C8734EBD5A7E287BFA ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
11:36:53.0945 0x1d3c VIPAppService - ok
11:36:54.0038 0x1d3c [ 12B2BE13A5DF667F8095F66949233EA5, 1F6C576DFB334EFFD779772708CC1467C9DAA65005CDAB29A92873E1A5069C48 ] vm331avs C:\Windows\system32\Drivers\vm331avs.sys
11:36:54.0069 0x1d3c vm331avs - ok
11:36:54.0101 0x1d3c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:36:54.0101 0x1d3c volmgr - ok
11:36:54.0132 0x1d3c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:36:54.0147 0x1d3c volmgrx - ok
11:36:54.0163 0x1d3c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:36:54.0179 0x1d3c volsnap - ok
11:36:54.0210 0x1d3c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:36:54.0225 0x1d3c vsmraid - ok
11:36:54.0319 0x1d3c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
11:36:54.0397 0x1d3c VSS - ok
11:36:54.0413 0x1d3c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:36:54.0413 0x1d3c vwifibus - ok
11:36:54.0444 0x1d3c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:36:54.0444 0x1d3c vwififlt - ok
11:36:54.0459 0x1d3c [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:36:54.0459 0x1d3c vwifimp - ok
11:36:54.0491 0x1d3c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
11:36:54.0537 0x1d3c W32Time - ok
11:36:54.0569 0x1d3c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:36:54.0569 0x1d3c WacomPen - ok
11:36:54.0615 0x1d3c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:36:54.0615 0x1d3c WANARP - ok
11:36:54.0631 0x1d3c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:36:54.0631 0x1d3c Wanarpv6 - ok
11:36:54.0725 0x1d3c [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:36:54.0803 0x1d3c WatAdminSvc - ok
11:36:54.0912 0x1d3c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
11:36:54.0990 0x1d3c wbengine - ok
11:36:55.0005 0x1d3c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:36:55.0037 0x1d3c WbioSrvc - ok
11:36:55.0068 0x1d3c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:36:55.0115 0x1d3c wcncsvc - ok
11:36:55.0130 0x1d3c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:36:55.0146 0x1d3c WcsPlugInService - ok
11:36:55.0177 0x1d3c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
11:36:55.0177 0x1d3c Wd - ok
11:36:55.0239 0x1d3c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:36:55.0271 0x1d3c Wdf01000 - ok
11:36:55.0333 0x1d3c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:36:55.0333 0x1d3c WdiServiceHost - ok
11:36:55.0349 0x1d3c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:36:55.0364 0x1d3c WdiSystemHost - ok
11:36:55.0411 0x1d3c [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
11:36:55.0442 0x1d3c WebClient - ok
11:36:55.0458 0x1d3c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:36:55.0489 0x1d3c Wecsvc - ok
11:36:55.0505 0x1d3c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:36:55.0505 0x1d3c wercplsupport - ok
11:36:55.0536 0x1d3c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
11:36:55.0551 0x1d3c WerSvc - ok
11:36:55.0598 0x1d3c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:36:55.0598 0x1d3c WfpLwf - ok
11:36:55.0614 0x1d3c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:36:55.0614 0x1d3c WIMMount - ok
11:36:55.0645 0x1d3c WinDefend - ok
11:36:55.0661 0x1d3c WinHttpAutoProxySvc - ok
11:36:55.0739 0x1d3c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:36:55.0739 0x1d3c Winmgmt - ok
11:36:55.0863 0x1d3c [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
11:36:55.0973 0x1d3c WinRM - ok
11:36:56.0051 0x1d3c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:36:56.0051 0x1d3c WinUsb - ok
11:36:56.0113 0x1d3c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:36:56.0191 0x1d3c Wlansvc - ok
11:36:56.0253 0x1d3c [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:36:56.0253 0x1d3c wlcrasvc - ok
11:36:56.0409 0x1d3c [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:36:56.0487 0x1d3c wlidsvc - ok
11:36:56.0534 0x1d3c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:36:56.0534 0x1d3c WmiAcpi - ok
11:36:56.0565 0x1d3c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:36:56.0581 0x1d3c wmiApSrv - ok
11:36:56.0597 0x1d3c WMPNetworkSvc - ok
11:36:56.0643 0x1d3c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:36:56.0643 0x1d3c WPCSvc - ok
11:36:56.0659 0x1d3c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:36:56.0675 0x1d3c WPDBusEnum - ok
11:36:56.0706 0x1d3c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:36:56.0706 0x1d3c ws2ifsl - ok
11:36:56.0737 0x1d3c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
11:36:56.0753 0x1d3c wscsvc - ok
11:36:56.0753 0x1d3c WSearch - ok
11:36:56.0877 0x1d3c [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
11:36:57.0002 0x1d3c wuauserv - ok
11:36:57.0049 0x1d3c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:36:57.0049 0x1d3c WudfPf - ok
11:36:57.0080 0x1d3c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:36:57.0096 0x1d3c WUDFRd - ok
11:36:57.0127 0x1d3c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:36:57.0143 0x1d3c wudfsvc - ok
11:36:57.0189 0x1d3c [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
11:36:57.0221 0x1d3c WwanSvc - ok
11:36:57.0408 0x1d3c [ D2FE4103450E52CB248D842501F84B90, 0775E540B5ACEE6FA90FC7BE87F45EB005F6593CDA252D64EBC509A350DDA038 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
11:36:57.0501 0x1d3c ZeroConfigService - ok
11:36:57.0548 0x1d3c ================ Scan global ===============================
11:36:57.0564 0x1d3c [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
11:36:57.0626 0x1d3c [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:36:57.0657 0x1d3c [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:36:57.0689 0x1d3c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:36:57.0735 0x1d3c [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
11:36:57.0751 0x1d3c [ Global ] - ok
11:36:57.0751 0x1d3c ================ Scan MBR ==================================
11:36:57.0767 0x1d3c [ 77D8335E9CBDC198F2D432A7B30F68B8 ] \Device\Harddisk0\DR0
11:36:58.0079 0x1d3c \Device\Harddisk0\DR0 - ok
11:36:58.0079 0x1d3c ================ Scan VBR ==================================
11:36:58.0079 0x1d3c [ F109DD680DEEA993A64A4D17BC5DDA43 ] \Device\Harddisk0\DR0\Partition1
11:36:58.0094 0x1d3c \Device\Harddisk0\DR0\Partition1 - ok
11:36:58.0110 0x1d3c [ 56F82488647DB81E3522EAF366BBBFC3 ] \Device\Harddisk0\DR0\Partition2
11:36:58.0110 0x1d3c \Device\Harddisk0\DR0\Partition2 - ok
11:36:58.0141 0x1d3c [ DE71663C5D9F4286A71DBCDBA2C346EF ] \Device\Harddisk0\DR0\Partition3
11:36:58.0141 0x1d3c \Device\Harddisk0\DR0\Partition3 - ok
11:36:58.0141 0x1d3c Waiting for KSN requests completion. In queue: 85
11:36:59.0155 0x1d3c Waiting for KSN requests completion. In queue: 85
11:37:00.0169 0x1d3c Waiting for KSN requests completion. In queue: 85
11:37:01.0199 0x1d3c AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 7.0.1474.765 ), 0x40000 ( disabled : updated )
11:37:01.0214 0x1d3c Win FW state via NFP2: enabled
11:37:04.0100 0x1d3c ============================================================
11:37:04.0100 0x1d3c Scan finished
11:37:04.0100 0x1d3c ============================================================
11:37:04.0100 0x22f0 Detected object count: 0
11:37:04.0100 0x22f0 Actual detected object count: 0
11:38:15.0798 0x21d4 Deinitialize success
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43339
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: vyskakující reklamy
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 22 hostů