Zdravím,
již tu řeším problém s grafickou kartou (viz. zde). A bylo mi doporučeno, abych si radši udělal HJT. MiliNess mi napsal toto: „asi tam máš nějaký spyware, jehož dynamická knihovna se zbytečně natahuje do spousty procesů.”.
Tak jestli by jste mi mohli prosím zkontrolovat log. Děkuji.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:09:07, on 10.11.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16506)
Boot mode: Normal
Running processes:
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.shoutcast.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MIF5BA~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MIF5BA~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BitGuard - Unknown owner - C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VNC Server (vncserver) - RealVNC Ltd - C:\Program Files\RealVNC\VNC Server\vncserver.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11150 bytes
Prosím o kontrolu logu/zřejmě spyware
Prosím o kontrolu logu/zřejmě spyware
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu/zřejmě spyware
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
===================================================
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
====================================================
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
====================================================
Stáhni si Junkware Removal Tool
na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
===================================================
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
====================================================
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
====================================================
Stáhni si Junkware Removal Tool
na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Re: Prosím o kontrolu logu/zřejmě spyware
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.11.10.02
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
LincolNn :: LINCOLNN [administrátor]
10.11.2013 17:22:02
MBAM-log-2013-11-10 (17-29-23).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 226975
Uplynulý čas: 6 minut, 49 sekund
Nalezené procesy v paměti: 2
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> 1712 -> Nebyla provedena žádná instrukce.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> 2212 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 1
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll (Trojan.BProtector) -> Nebyla provedena žádná instrukce.
Nalezené klíče v registru: 7
HKLM\SYSTEM\CurrentControlSet\Services\BitGuard (PUP.Optional.Mediasoft) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 2
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|bProtector Start Page (PUP.BProtector) -> Data: http://www.delta-search.com/?affID=1198 ... 2B34911AD4 -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|bProtectorDefaultScope (PUP.BProtector) -> Data: {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (Trojan.BProtector) -> Špatný: (c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll) Dobrý: () -> Nebyla provedena žádná instrukce.
Nalezené složky: 5
C:\Users\LincolNn\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\CR (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\File Scout (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 16
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll (Trojan.BProtector) -> Nebyla provedena žádná instrukce.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\File Scout\filescout.exe (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bprotector web data (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\CR\Delta.crx (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BabMaint.exe (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BUSolution.dll (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BUSolution.zpb (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BUSUninstall.exe (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\chu.js (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\chu.zpb (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\Delta.ico (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\GUninstaller.exe (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\File Scout\uninst.exe (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
(konec)
# AdwCleaner v3.011 - Report created 10/11/2013 at 17:31:24
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : LincolNn - LINCOLNN
# Running from : C:\Users\LincolNn\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : BitGuard
***** [ Files / Folders ] *****
File Found : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Windows\System32\Tasks\BitGuard
Folder Found C:\Program Files (x86)\myfree codec
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BitGuard
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\Users\LincolNn\AppData\Roaming\BabSolution
Folder Found C:\Users\LincolNn\AppData\Roaming\Babylon
Folder Found C:\Users\LincolNn\AppData\Roaming\file scout
Folder Found C:\Users\LincolNn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
***** [ Shortcuts ] *****
***** [ Registry ] *****
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll
Key Found : HKCU\Software\59538dd0b73cb812
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKCU\Software\Myfree Codec
Key Found : HKCU\Software\OCS
Key Found : HKCU\Software\PIP
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\BabSolution
Key Found : [x64] HKCU\Software\BabylonToolbar
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Myfree Codec
Key Found : [x64] HKCU\Software\OCS
Key Found : [x64] HKCU\Software\PIP
Key Found : HKLM\SOFTWARE\59538dd0b73cb812
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Found : HKLM\Software\Myfree Codec
Key Found : HKLM\Software\PIP
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16506
-\\ Google Chrome v30.0.1599.101
[ File : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [4883 octets] - [10/11/2013 17:31:24]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [4943 octets] ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by LincolNn on ne 10.11.2013 at 17:36:49,71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope
Successfully deleted [Registry Value] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\bProtectTabs
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\secman.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babsolution
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babylontoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\filescout
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3323472497-44360149-3043929110-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\delta chrome toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15d2d75c-9cb2-4efd-bad7-b9b4cb4bc693}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASMANCS
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{40439b93-f815-4122-8073-d03bed94c303}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{40439b93-f815-4122-8073-d03bed94c303}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] "hkey_current_user\software\pip"
~~~ Files
Successfully deleted: [File] "C:\Users\LincolNn\appdata\local\google\chrome\user data\default\bprotector web data"
Successfully deleted: [File] "C:\Users\LincolNn\appdata\local\google\chrome\user data\default\bprotectorpreferences"
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\babylon"
Failed to delete: [Folder] "C:\ProgramData\bitguard"
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\LincolNn\AppData\Roaming\babsolution"
Successfully deleted: [Folder] "C:\Users\LincolNn\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\LincolNn\AppData\Roaming\file scout"
Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 10.11.2013 at 18:05:38,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
www.malwarebytes.org
Verze: v2013.11.10.02
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
LincolNn :: LINCOLNN [administrátor]
10.11.2013 17:22:02
MBAM-log-2013-11-10 (17-29-23).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 226975
Uplynulý čas: 6 minut, 49 sekund
Nalezené procesy v paměti: 2
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> 1712 -> Nebyla provedena žádná instrukce.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> 2212 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 1
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll (Trojan.BProtector) -> Nebyla provedena žádná instrukce.
Nalezené klíče v registru: 7
HKLM\SYSTEM\CurrentControlSet\Services\BitGuard (PUP.Optional.Mediasoft) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 2
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|bProtector Start Page (PUP.BProtector) -> Data: http://www.delta-search.com/?affID=1198 ... 2B34911AD4 -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|bProtectorDefaultScope (PUP.BProtector) -> Data: {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (Trojan.BProtector) -> Špatný: (c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll) Dobrý: () -> Nebyla provedena žádná instrukce.
Nalezené složky: 5
C:\Users\LincolNn\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\CR (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\File Scout (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 16
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll (Trojan.BProtector) -> Nebyla provedena žádná instrukce.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\File Scout\filescout.exe (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bprotector web data (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\CR\Delta.crx (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BabMaint.exe (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BUSolution.dll (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BUSolution.zpb (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\BUSUninstall.exe (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\chu.js (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\chu.zpb (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\Delta.ico (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\BabSolution\Shared\GUninstaller.exe (PUP.Optional.BabSolution.A) -> Nebyla provedena žádná instrukce.
C:\Users\LincolNn\AppData\Roaming\File Scout\uninst.exe (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
(konec)
# AdwCleaner v3.011 - Report created 10/11/2013 at 17:31:24
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : LincolNn - LINCOLNN
# Running from : C:\Users\LincolNn\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : BitGuard
***** [ Files / Folders ] *****
File Found : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Windows\System32\Tasks\BitGuard
Folder Found C:\Program Files (x86)\myfree codec
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BitGuard
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\Users\LincolNn\AppData\Roaming\BabSolution
Folder Found C:\Users\LincolNn\AppData\Roaming\Babylon
Folder Found C:\Users\LincolNn\AppData\Roaming\file scout
Folder Found C:\Users\LincolNn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
***** [ Shortcuts ] *****
***** [ Registry ] *****
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll
Key Found : HKCU\Software\59538dd0b73cb812
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKCU\Software\Myfree Codec
Key Found : HKCU\Software\OCS
Key Found : HKCU\Software\PIP
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\BabSolution
Key Found : [x64] HKCU\Software\BabylonToolbar
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Myfree Codec
Key Found : [x64] HKCU\Software\OCS
Key Found : [x64] HKCU\Software\PIP
Key Found : HKLM\SOFTWARE\59538dd0b73cb812
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Found : HKLM\Software\Myfree Codec
Key Found : HKLM\Software\PIP
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16506
-\\ Google Chrome v30.0.1599.101
[ File : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [4883 octets] - [10/11/2013 17:31:24]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [4943 octets] ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by LincolNn on ne 10.11.2013 at 17:36:49,71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope
Successfully deleted [Registry Value] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\bProtectTabs
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\secman.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babsolution
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babylontoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\filescout
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3323472497-44360149-3043929110-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\delta chrome toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15d2d75c-9cb2-4efd-bad7-b9b4cb4bc693}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASMANCS
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{40439b93-f815-4122-8073-d03bed94c303}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{40439b93-f815-4122-8073-d03bed94c303}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] "hkey_current_user\software\pip"
~~~ Files
Successfully deleted: [File] "C:\Users\LincolNn\appdata\local\google\chrome\user data\default\bprotector web data"
Successfully deleted: [File] "C:\Users\LincolNn\appdata\local\google\chrome\user data\default\bprotectorpreferences"
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\babylon"
Failed to delete: [Folder] "C:\ProgramData\bitguard"
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\LincolNn\AppData\Roaming\babsolution"
Successfully deleted: [Folder] "C:\Users\LincolNn\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\LincolNn\AppData\Roaming\file scout"
Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 10.11.2013 at 18:05:38,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43339
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu/zřejmě spyware
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu/zřejmě spyware
Divné, MbAN mi nic nenašel. 
# AdwCleaner v3.011 - Report created 11/11/2013 at 16:23:12
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : LincolNn - LINCOLNN
# Running from : C:\Users\LincolNn\Desktop\HjT\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
Service Deleted : BitGuard
***** [ Files / Folders ] *****
[!] Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Deleted : C:\Users\LincolNn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
File Deleted : C:\Windows\System32\Tasks\BitGuard
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKCU\Software\59538dd0b73cb812
Key Deleted : HKLM\SOFTWARE\59538dd0b73cb812
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\OCS
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKLM\Software\PIP
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16506
-\\ Google Chrome v30.0.1599.101
[ File : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [5075 octets] - [10/11/2013 17:31:24]
AdwCleaner[R1].txt - [2658 octets] - [11/11/2013 16:21:24]
AdwCleaner[S0].txt - [2536 octets] - [11/11/2013 16:23:12]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2596 octets] ##########
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.11.10.02
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
LincolNn :: LINCOLNN [administrátor]
11.11.2013 16:29:37
mbam-log-2013-11-11 (16-29-37).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 226550
Uplynulý čas: 7 minut,
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
RogueKiller V8.7.7 _x64_ [Nov 11 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : LincolNn [Práva správce]
Mód : Kontrola -- Datum : 11/11/2013 17:06:26
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 static3.cdn.ubi.com
127.0.0.1 ubisoft-orbit.s3.amazonaws.com
127.0.0.1 onlineconfigservice.ubi.com
127.0.0.1 orbitservice.ubi.com
127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9160310AS ATA Device +++++
--- User ---
[MBR] 3d7f3192d085dbd5486215e29e00327a
[BSP] e397e455e6832a92750b6552166bbcc1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 152324 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 312166400 | Size: 201 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) USB DISK 2.0 USB Device +++++
--- User ---
[MBR] dcec3873ee0666d72db9e90756499511
[BSP] 3c49a9201153ff922e0a91650a4a11f8 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 15257 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[0]_S_11112013_170626.txt >>
# AdwCleaner v3.011 - Report created 11/11/2013 at 16:23:12
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : LincolNn - LINCOLNN
# Running from : C:\Users\LincolNn\Desktop\HjT\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
Service Deleted : BitGuard
***** [ Files / Folders ] *****
[!] Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Deleted : C:\Users\LincolNn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
File Deleted : C:\Windows\System32\Tasks\BitGuard
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKCU\Software\59538dd0b73cb812
Key Deleted : HKLM\SOFTWARE\59538dd0b73cb812
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\OCS
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKLM\Software\PIP
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16506
-\\ Google Chrome v30.0.1599.101
[ File : C:\Users\LincolNn\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [5075 octets] - [10/11/2013 17:31:24]
AdwCleaner[R1].txt - [2658 octets] - [11/11/2013 16:21:24]
AdwCleaner[S0].txt - [2536 octets] - [11/11/2013 16:23:12]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2596 octets] ##########
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.11.10.02
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
LincolNn :: LINCOLNN [administrátor]
11.11.2013 16:29:37
mbam-log-2013-11-11 (16-29-37).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 226550
Uplynulý čas: 7 minut,
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
RogueKiller V8.7.7 _x64_ [Nov 11 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : LincolNn [Práva správce]
Mód : Kontrola -- Datum : 11/11/2013 17:06:26
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 static3.cdn.ubi.com
127.0.0.1 ubisoft-orbit.s3.amazonaws.com
127.0.0.1 onlineconfigservice.ubi.com
127.0.0.1 orbitservice.ubi.com
127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9160310AS ATA Device +++++
--- User ---
[MBR] 3d7f3192d085dbd5486215e29e00327a
[BSP] e397e455e6832a92750b6552166bbcc1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 152324 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 312166400 | Size: 201 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) USB DISK 2.0 USB Device +++++
--- User ---
[MBR] dcec3873ee0666d72db9e90756499511
[BSP] 3c49a9201153ff922e0a91650a4a11f8 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 15257 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[0]_S_11112013_170626.txt >>
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43339
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu/zřejmě spyware
Odinstaluj:
BitGuard
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
BitGuard
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu/zřejmě spyware
Ať hledám jak hledám, tak BitGuard nemohu v PC nalézt. Jak v Programy a funkce nebo CCleaneru (Nástroje->Odinstalovat) tak ani tam ho nemůžu nalézt.
Bohužel log z TDSSkiller mi jsem nejde vložit, tak ho jsem upnu.
Uživatel : LincolNn [Práva správce]
Mód : Odebrat -- Datum : 11/12/2013 10:23:18
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 static3.cdn.ubi.com
127.0.0.1 ubisoft-orbit.s3.amazonaws.com
127.0.0.1 onlineconfigservice.ubi.com
127.0.0.1 orbitservice.ubi.com
127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9160310AS ATA Device +++++
--- User ---
[MBR] 3d7f3192d085dbd5486215e29e00327a
[BSP] e397e455e6832a92750b6552166bbcc1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 152324 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 312166400 | Size: 201 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_11122013_102318.txt >>
RKreport[0]_S_11112013_170626.txt;RKreport[0]_S_11122013_102311.txt
Bohužel log z TDSSkiller mi jsem nejde vložit, tak ho jsem upnu.
Uživatel : LincolNn [Práva správce]
Mód : Odebrat -- Datum : 11/12/2013 10:23:18
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 static3.cdn.ubi.com
127.0.0.1 ubisoft-orbit.s3.amazonaws.com
127.0.0.1 onlineconfigservice.ubi.com
127.0.0.1 orbitservice.ubi.com
127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9160310AS ATA Device +++++
--- User ---
[MBR] 3d7f3192d085dbd5486215e29e00327a
[BSP] e397e455e6832a92750b6552166bbcc1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 152324 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 312166400 | Size: 201 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_11122013_102318.txt >>
RKreport[0]_S_11112013_170626.txt;RKreport[0]_S_11122013_102311.txt
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43339
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu/zřejmě spyware
Ještě ten TDSSKiller. Vlož sem , naněkolikrát.
+
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
+
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu/zřejmě spyware
10:25:45.0145 8328 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:25:53.0320 8328 ============================================================
10:25:53.0320 8328 Current date / time: 2013/11/12 10:25:53.0320
10:25:53.0320 8328 SystemInfo:
10:25:53.0320 8328
10:25:53.0320 8328 OS Version: 6.1.7600 ServicePack: 0.0
10:25:53.0320 8328 Product type: Workstation
10:25:53.0320 8328 ComputerName: LINCOLNN
10:25:53.0320 8328 UserName: LincolNn
10:25:53.0320 8328 Windows directory: C:\Windows
10:25:53.0320 8328 System windows directory: C:\Windows
10:25:53.0320 8328 Running under WOW64
10:25:53.0320 8328 Processor architecture: Intel x64
10:25:53.0320 8328 Number of processors: 4
10:25:53.0320 8328 Page size: 0x1000
10:25:53.0320 8328 Boot type: Normal boot
10:25:53.0320 8328 ============================================================
10:25:55.0722 8328 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
10:25:55.0722 8328 ============================================================
10:25:55.0722 8328 \Device\Harddisk0\DR0:
10:25:55.0722 8328 MBR partitions:
10:25:55.0738 8328 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x12982000
10:25:55.0785 8328 ============================================================
10:25:55.0847 8328 C: <-> \Device\Harddisk0\DR0\Partition1
10:25:55.0847 8328 ============================================================
10:25:55.0847 8328 Initialize success
10:25:55.0863 8328 ============================================================
10:26:02.0118 6524 ============================================================
10:26:02.0118 6524 Scan started
10:26:02.0118 6524 Mode: Manual;
10:26:02.0118 6524 ============================================================
10:26:03.0834 6524 ================ Scan system memory ========================
10:26:03.0834 6524 System memory - ok
10:26:03.0834 6524 ================ Scan services =============================
10:26:03.0975 6524 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:26:03.0975 6524 1394ohci - ok
10:26:04.0006 6524 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
10:26:04.0006 6524 ACPI - ok
10:26:04.0037 6524 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
10:26:04.0037 6524 AcpiPmi - ok
10:26:04.0224 6524 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:26:04.0224 6524 AdobeARMservice - ok
10:26:04.0333 6524 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:26:04.0333 6524 AdobeFlashPlayerUpdateSvc - ok
10:26:04.0365 6524 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:26:04.0380 6524 adp94xx - ok
10:26:04.0411 6524 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:26:04.0411 6524 adpahci - ok
10:26:04.0427 6524 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:26:04.0427 6524 adpu320 - ok
10:26:04.0458 6524 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:26:04.0458 6524 AeLookupSvc - ok
10:26:04.0536 6524 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
10:26:04.0536 6524 AFD - ok
10:26:04.0552 6524 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
10:26:04.0552 6524 agp440 - ok
10:26:04.0567 6524 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:26:04.0567 6524 ALG - ok
10:26:04.0583 6524 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
10:26:04.0583 6524 aliide - ok
10:26:04.0661 6524 [ 13AE8D986A8D61FBAFAF5CD3F8B3B89C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:26:04.0661 6524 AMD External Events Utility - ok
10:26:04.0723 6524 AMD FUEL Service - ok
10:26:04.0786 6524 [ D39CB7B4BB3A46BC84AD0CC1B8261FB8 ] amdhub30 C:\Windows\system32\DRIVERS\amdhub30.sys
10:26:04.0786 6524 amdhub30 - ok
10:26:04.0817 6524 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
10:26:04.0817 6524 amdide - ok
10:26:04.0817 6524 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
10:26:04.0817 6524 amdiox64 - ok
10:26:04.0848 6524 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:26:04.0848 6524 AmdK8 - ok
10:26:05.0098 6524 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:26:05.0160 6524 amdkmdag - ok
10:26:05.0223 6524 [ 4DD3339D3818356145A4945C1B4CB4C5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:26:05.0223 6524 amdkmdap - ok
10:26:05.0254 6524 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:26:05.0254 6524 AmdPPM - ok
10:26:05.0347 6524 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:26:05.0347 6524 amdsata - ok
10:26:05.0379 6524 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:26:05.0394 6524 amdsbs - ok
10:26:05.0441 6524 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:26:05.0441 6524 amdxata - ok
10:26:05.0472 6524 [ 990E896740E42C6B88284AFD1799AA56 ] amdxhc C:\Windows\system32\DRIVERS\amdxhc.sys
10:26:05.0472 6524 amdxhc - ok
10:26:05.0519 6524 [ F2154A205F4B784B61A72AEBC72BDC5F ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
10:26:05.0519 6524 AODDriver4.2 - ok
10:26:05.0550 6524 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
10:26:05.0550 6524 AppID - ok
10:26:05.0675 6524 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:26:05.0675 6524 AppIDSvc - ok
10:26:05.0691 6524 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
10:26:05.0691 6524 Appinfo - ok
10:26:05.0722 6524 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:26:05.0722 6524 arc - ok
10:26:05.0722 6524 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:26:05.0722 6524 arcsas - ok
10:26:05.0862 6524 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:26:05.0862 6524 aspnet_state - ok
10:26:05.0893 6524 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
10:26:05.0893 6524 aswFsBlk - ok
10:26:05.0925 6524 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
10:26:05.0925 6524 aswMonFlt - ok
10:26:05.0940 6524 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
10:26:05.0956 6524 aswRdr - ok
10:26:05.0971 6524 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
10:26:05.0971 6524 aswRvrt - ok
10:26:06.0003 6524 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
10:26:06.0018 6524 aswSnx - ok
10:26:06.0034 6524 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\Windows\system32\drivers\aswSP.sys
10:26:06.0034 6524 aswSP - ok
10:26:06.0049 6524 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
10:26:06.0049 6524 aswTdi - ok
10:26:06.0081 6524 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
10:26:06.0081 6524 aswVmm - ok
10:26:06.0112 6524 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:26:06.0112 6524 AsyncMac - ok
10:26:06.0127 6524 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
10:26:06.0127 6524 atapi - ok
10:26:06.0174 6524 [ 37CB595C0AB20ECBFA5170D3185690DB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
10:26:06.0174 6524 AtiHDAudioService - ok
10:26:06.0237 6524 [ FE8349936B49F7E315A629FB0AF4F2AB ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
10:26:06.0237 6524 AtiHdmiService - ok
10:26:06.0486 6524 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:26:06.0564 6524 atikmdag - ok
10:26:06.0595 6524 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:26:06.0627 6524 AudioEndpointBuilder - ok
10:26:06.0642 6524 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:26:06.0658 6524 AudioSrv - ok
10:26:06.0705 6524 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:26:06.0705 6524 avast! Antivirus - ok
10:26:06.0751 6524 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:26:06.0751 6524 AxInstSV - ok
10:26:06.0783 6524 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:26:06.0783 6524 b06bdrv - ok
10:26:06.0829 6524 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:26:06.0829 6524 b57nd60a - ok
10:26:06.0845 6524 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:26:06.0845 6524 BDESVC - ok
10:26:06.0861 6524 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:26:06.0861 6524 Beep - ok
10:26:06.0907 6524 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
10:26:06.0939 6524 BFE - ok
10:26:06.0985 6524 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
10:26:07.0017 6524 BITS - ok
10:26:07.0048 6524 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:26:07.0048 6524 blbdrive - ok
10:26:07.0126 6524 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:26:07.0126 6524 bowser - ok
10:26:07.0157 6524 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:26:07.0157 6524 BrFiltLo - ok
10:26:07.0173 6524 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:26:07.0173 6524 BrFiltUp - ok
10:26:07.0251 6524 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
10:26:07.0251 6524 Browser - ok
10:26:07.0266 6524 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:26:07.0266 6524 Brserid - ok
10:26:07.0282 6524 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:26:07.0282 6524 BrSerWdm - ok
10:26:07.0329 6524 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:26:07.0329 6524 BrUsbMdm - ok
10:26:07.0329 6524 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:26:07.0329 6524 BrUsbSer - ok
10:26:07.0375 6524 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:26:07.0375 6524 BTHMODEM - ok
10:26:07.0391 6524 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:26:07.0391 6524 bthserv - ok
10:26:07.0407 6524 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:26:07.0407 6524 cdfs - ok
10:26:07.0453 6524 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:26:07.0453 6524 cdrom - ok
10:26:07.0485 6524 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
10:26:07.0485 6524 CertPropSvc - ok
10:26:07.0500 6524 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:26:07.0500 6524 circlass - ok
10:26:07.0531 6524 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:26:07.0531 6524 CLFS - ok
10:26:07.0594 6524 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:26:07.0594 6524 clr_optimization_v2.0.50727_32 - ok
10:26:07.0625 6524 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:26:07.0625 6524 clr_optimization_v2.0.50727_64 - ok
10:26:07.0750 6524 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:26:07.0765 6524 clr_optimization_v4.0.30319_32 - ok
10:26:07.0781 6524 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:26:07.0812 6524 clr_optimization_v4.0.30319_64 - ok
10:26:07.0859 6524 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:26:07.0859 6524 CmBatt - ok
10:26:07.0859 6524 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
10:26:07.0859 6524 cmdide - ok
10:26:07.0937 6524 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
10:26:07.0937 6524 CNG - ok
10:26:07.0953 6524 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:26:07.0953 6524 Compbatt - ok
10:26:07.0984 6524 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:26:07.0984 6524 CompositeBus - ok
10:26:07.0999 6524 COMSysApp - ok
10:26:08.0015 6524 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:26:08.0015 6524 crcdisk - ok
10:26:08.0077 6524 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:26:08.0077 6524 CryptSvc - ok
10:26:08.0109 6524 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:26:08.0124 6524 DcomLaunch - ok
10:26:08.0155 6524 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:26:08.0155 6524 defragsvc - ok
10:26:08.0202 6524 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:26:08.0202 6524 DfsC - ok
10:26:08.0265 6524 [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
10:26:08.0265 6524 dg_ssudbus - ok
10:26:08.0389 6524 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
10:26:08.0405 6524 Dhcp - ok
10:26:08.0421 6524 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:26:08.0421 6524 discache - ok
10:26:08.0467 6524 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:26:08.0467 6524 Disk - ok
10:26:08.0530 6524 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:26:08.0530 6524 Dnscache - ok
10:26:08.0561 6524 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
10:26:08.0561 6524 dot3svc - ok
10:26:08.0592 6524 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
10:26:08.0592 6524 DPS - ok
10:26:08.0623 6524 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:26:08.0623 6524 drmkaud - ok
10:26:08.0670 6524 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:26:08.0670 6524 dtsoftbus01 - ok
10:26:08.0748 6524 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:26:08.0748 6524 DXGKrnl - ok
10:26:08.0764 6524 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:26:08.0764 6524 EapHost - ok
10:26:08.0857 6524 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:26:08.0873 6524 ebdrv - ok
10:26:08.0951 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
10:26:08.0951 6524 EFS - ok
10:26:09.0013 6524 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:26:09.0029 6524 ehRecvr - ok
10:26:09.0045 6524 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:26:09.0060 6524 ehSched - ok
10:26:09.0107 6524 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:26:09.0107 6524 elxstor - ok
10:26:09.0123 6524 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
10:26:09.0123 6524 ErrDev - ok
10:26:09.0169 6524 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:26:09.0169 6524 EventSystem - ok
10:26:09.0185 6524 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:26:09.0185 6524 exfat - ok
10:26:09.0201 6524 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:26:09.0201 6524 fastfat - ok
10:26:09.0247 6524 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
10:26:09.0263 6524 Fax - ok
10:26:09.0279 6524 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:26:09.0294 6524 fdc - ok
10:26:09.0341 6524 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:26:09.0357 6524 fdPHost - ok
10:26:09.0388 6524 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:26:09.0388 6524 FDResPub - ok
10:26:09.0403 6524 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:26:09.0403 6524 FileInfo - ok
10:26:09.0419 6524 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:26:09.0419 6524 Filetrace - ok
10:26:09.0528 6524 [ 1A18EBD87AA9FBF6EFE8CFADA08D0275 ] FirebirdGuardianDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
10:26:09.0528 6524 FirebirdGuardianDefaultInstance - ok
10:26:09.0622 6524 [ 53C740150C082AAF3C7D21C1D6A9FF98 ] FirebirdServerDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
10:26:09.0637 6524 FirebirdServerDefaultInstance - ok
10:26:09.0669 6524 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:26:09.0669 6524 flpydisk - ok
10:26:09.0684 6524 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:26:09.0684 6524 FltMgr - ok
10:26:09.0778 6524 [ BC00505CFDA789ED3BE95D2FF38C4875 ] FontCache C:\Windows\system32\FntCache.dll
10:26:09.0809 6524 FontCache - ok
10:26:09.0856 6524 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:26:09.0856 6524 FontCache3.0.0.0 - ok
10:26:09.0887 6524 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:26:09.0887 6524 FsDepends - ok
10:26:09.0949 6524 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:26:09.0949 6524 Fs_Rec - ok
10:26:10.0012 6524 [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:26:10.0027 6524 fvevol - ok
10:26:10.0043 6524 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:26:10.0043 6524 gagp30kx - ok
10:26:10.0074 6524 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
10:26:10.0105 6524 gpsvc - ok
10:26:10.0152 6524 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:26:10.0152 6524 gupdate - ok
10:26:10.0152 6524 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:26:10.0168 6524 gupdatem - ok
10:26:10.0183 6524 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
10:26:10.0183 6524 hamachi - ok
10:26:10.0324 6524 [ 243424EDDC9563B7912268B54307783D ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
10:26:10.0339 6524 Hamachi2Svc - ok
10:26:10.0355 6524 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:26:10.0355 6524 hcw85cir - ok
10:26:10.0386 6524 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:26:10.0386 6524 HdAudAddService - ok
10:26:10.0417 6524 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:26:10.0417 6524 HDAudBus - ok
10:26:10.0433 6524 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:26:10.0433 6524 HidBatt - ok
10:26:10.0449 6524 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:26:10.0449 6524 HidBth - ok
10:26:10.0449 6524 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:26:10.0449 6524 HidIr - ok
10:26:10.0480 6524 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:26:10.0480 6524 hidserv - ok
10:26:10.0527 6524 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:26:10.0527 6524 HidUsb - ok
10:26:10.0542 6524 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:26:10.0542 6524 hkmsvc - ok
10:26:10.0573 6524 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:26:10.0573 6524 HomeGroupListener - ok
10:26:10.0605 6524 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:26:10.0605 6524 HomeGroupProvider - ok
10:26:10.0636 6524 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
10:26:10.0636 6524 HpSAMD - ok
10:26:10.0683 6524 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:26:10.0683 6524 HTTP - ok
10:26:10.0714 6524 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:26:10.0714 6524 hwpolicy - ok
10:26:10.0729 6524 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:26:10.0729 6524 i8042prt - ok
10:26:10.0761 6524 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:26:10.0761 6524 iaStorV - ok
10:26:10.0807 6524 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:26:10.0839 6524 idsvc - ok
10:26:10.0854 6524 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:26:10.0870 6524 iirsp - ok
10:26:10.0901 6524 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
10:26:10.0932 6524 IKEEXT - ok
10:26:11.0026 6524 [ 4BBB5A55EEB5EC11B20FCBB4CBB49357 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:26:11.0041 6524 IntcAzAudAddService - ok
10:26:11.0041 6524 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
10:26:11.0041 6524 intelide - ok
10:26:11.0073 6524 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:26:11.0073 6524 intelppm - ok
10:26:11.0088 6524 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:26:11.0088 6524 IPBusEnum - ok
10:26:11.0104 6524 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:26:11.0104 6524 IpFilterDriver - ok
10:26:11.0119 6524 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:26:11.0135 6524 iphlpsvc - ok
10:26:11.0151 6524 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:26:11.0151 6524 IPMIDRV - ok
10:26:11.0166 6524 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:26:11.0166 6524 IPNAT - ok
10:26:11.0182 6524 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:26:11.0182 6524 IRENUM - ok
10:26:11.0197 6524 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
10:26:11.0197 6524 isapnp - ok
10:26:11.0213 6524 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:26:11.0213 6524 iScsiPrt - ok
10:26:11.0244 6524 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:26:11.0244 6524 kbdclass - ok
10:26:11.0260 6524 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:26:11.0275 6524 kbdhid - ok
10:26:11.0307 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
10:26:11.0307 6524 KeyIso - ok
10:26:11.0385 6524 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:26:11.0385 6524 KSecDD - ok
10:26:11.0447 6524 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:26:11.0447 6524 KSecPkg - ok
10:26:11.0494 6524 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:26:11.0494 6524 ksthunk - ok
10:26:11.0525 6524 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:26:11.0525 6524 KtmRm - ok
10:26:11.0603 6524 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:26:11.0619 6524 LanmanServer - ok
10:26:11.0650 6524 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:26:11.0650 6524 LanmanWorkstation - ok
10:26:11.0681 6524 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:26:11.0681 6524 lltdio - ok
10:26:11.0712 6524 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:26:11.0712 6524 lltdsvc - ok
10:26:11.0728 6524 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:26:11.0728 6524 lmhosts - ok
10:26:11.0790 6524 [ 02468469C450CD16FB66A56FAB70138B ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
10:26:11.0790 6524 LMIGuardianSvc - ok
10:26:11.0868 6524 LMIInfo - ok
10:26:11.0946 6524 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
10:26:11.0946 6524 lmimirr - ok
10:26:11.0962 6524 LMIRfsClientNP - ok
10:26:12.0055 6524 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
10:26:12.0055 6524 LMIRfsDriver - ok
10:26:12.0087 6524 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:26:12.0087 6524 LSI_FC - ok
10:26:12.0118 6524 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:26:12.0118 6524 LSI_SAS - ok
10:26:12.0133 6524 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:26:12.0133 6524 LSI_SAS2 - ok
10:26:12.0149 6524 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:26:12.0149 6524 LSI_SCSI - ok
10:26:12.0165 6524 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:26:12.0165 6524 luafv - ok
10:26:12.0196 6524 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:26:12.0196 6524 Mcx2Svc - ok
10:26:12.0211 6524 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:26:12.0211 6524 megasas - ok
10:26:12.0227 6524 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:26:12.0227 6524 MegaSR - ok
10:26:12.0258 6524 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:26:12.0305 6524 MMCSS - ok
10:26:12.0305 6524 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:26:12.0321 6524 Modem - ok
10:26:12.0383 6524 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:26:12.0383 6524 monitor - ok
10:26:12.0414 6524 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:26:12.0414 6524 mouclass - ok
10:26:12.0430 6524 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:26:12.0430 6524 mouhid - ok
10:26:12.0430 6524 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:26:12.0430 6524 mountmgr - ok
10:26:12.0445 6524 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
10:26:12.0445 6524 mpio - ok
10:26:12.0461 6524 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:26:12.0461 6524 mpsdrv - ok
10:26:12.0508 6524 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:26:12.0539 6524 MpsSvc - ok
10:26:12.0539 6524 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:26:12.0539 6524 MRxDAV - ok
10:26:12.0617 6524 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:26:12.0617 6524 mrxsmb - ok
10:26:12.0648 6524 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:26:12.0648 6524 mrxsmb10 - ok
10:26:12.0664 6524 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:26:12.0664 6524 mrxsmb20 - ok
10:26:12.0679 6524 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
10:26:12.0679 6524 msahci - ok
10:26:12.0695 6524 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
10:26:12.0695 6524 msdsm - ok
10:26:12.0711 6524 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:26:12.0726 6524 MSDTC - ok
10:26:12.0757 6524 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:26:12.0757 6524 Msfs - ok
10:26:12.0773 6524 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:26:12.0773 6524 mshidkmdf - ok
10:26:12.0789 6524 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
10:26:12.0789 6524 msisadrv - ok
10:26:12.0820 6524 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:26:12.0820 6524 MSiSCSI - ok
10:26:12.0820 6524 msiserver - ok
10:26:12.0851 6524 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:26:12.0851 6524 MSKSSRV - ok
10:26:12.0867 6524 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:26:12.0867 6524 MSPCLOCK - ok
10:26:12.0882 6524 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:26:12.0882 6524 MSPQM - ok
10:26:12.0898 6524 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:26:12.0898 6524 MsRPC - ok
10:26:12.0913 6524 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:26:12.0913 6524 mssmbios - ok
10:26:12.0929 6524 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:26:12.0929 6524 MSTEE - ok
10:26:12.0945 6524 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:26:12.0945 6524 MTConfig - ok
10:26:12.0960 6524 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:26:12.0960 6524 Mup - ok
10:26:13.0007 6524 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
10:26:13.0007 6524 napagent - ok
10:26:13.0038 6524 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:26:13.0038 6524 NativeWifiP - ok
10:26:13.0085 6524 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
10:26:13.0085 6524 NDIS - ok
10:26:13.0116 6524 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:26:13.0116 6524 NdisCap - ok
10:26:13.0132 6524 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:26:13.0132 6524 NdisTapi - ok
10:26:13.0163 6524 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:26:13.0163 6524 Ndisuio - ok
10:26:13.0179 6524 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:26:13.0179 6524 NdisWan - ok
10:26:13.0194 6524 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:26:13.0194 6524 NDProxy - ok
10:26:13.0210 6524 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:26:13.0210 6524 NetBIOS - ok
10:26:13.0241 6524 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:26:13.0241 6524 NetBT - ok
10:26:13.0241 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
10:26:13.0241 6524 Netlogon - ok
10:26:13.0288 6524 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:26:13.0288 6524 Netman - ok
10:26:13.0366 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0366 6524 NetMsmqActivator - ok
10:26:13.0381 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0381 6524 NetPipeActivator - ok
10:26:13.0413 6524 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:26:13.0428 6524 netprofm - ok
10:26:13.0444 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0444 6524 NetTcpActivator - ok
10:26:13.0444 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0444 6524 NetTcpPortSharing - ok
10:26:13.0491 6524 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:26:13.0491 6524 nfrd960 - ok
10:26:13.0537 6524 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:26:13.0537 6524 NlaSvc - ok
10:26:13.0553 6524 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:26:13.0569 6524 Npfs - ok
10:26:13.0584 6524 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:26:13.0584 6524 nsi - ok
10:26:13.0600 6524 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:26:13.0600 6524 nsiproxy - ok
10:26:13.0662 6524 [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:26:13.0662 6524 Ntfs - ok
10:25:53.0320 8328 ============================================================
10:25:53.0320 8328 Current date / time: 2013/11/12 10:25:53.0320
10:25:53.0320 8328 SystemInfo:
10:25:53.0320 8328
10:25:53.0320 8328 OS Version: 6.1.7600 ServicePack: 0.0
10:25:53.0320 8328 Product type: Workstation
10:25:53.0320 8328 ComputerName: LINCOLNN
10:25:53.0320 8328 UserName: LincolNn
10:25:53.0320 8328 Windows directory: C:\Windows
10:25:53.0320 8328 System windows directory: C:\Windows
10:25:53.0320 8328 Running under WOW64
10:25:53.0320 8328 Processor architecture: Intel x64
10:25:53.0320 8328 Number of processors: 4
10:25:53.0320 8328 Page size: 0x1000
10:25:53.0320 8328 Boot type: Normal boot
10:25:53.0320 8328 ============================================================
10:25:55.0722 8328 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
10:25:55.0722 8328 ============================================================
10:25:55.0722 8328 \Device\Harddisk0\DR0:
10:25:55.0722 8328 MBR partitions:
10:25:55.0738 8328 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x12982000
10:25:55.0785 8328 ============================================================
10:25:55.0847 8328 C: <-> \Device\Harddisk0\DR0\Partition1
10:25:55.0847 8328 ============================================================
10:25:55.0847 8328 Initialize success
10:25:55.0863 8328 ============================================================
10:26:02.0118 6524 ============================================================
10:26:02.0118 6524 Scan started
10:26:02.0118 6524 Mode: Manual;
10:26:02.0118 6524 ============================================================
10:26:03.0834 6524 ================ Scan system memory ========================
10:26:03.0834 6524 System memory - ok
10:26:03.0834 6524 ================ Scan services =============================
10:26:03.0975 6524 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:26:03.0975 6524 1394ohci - ok
10:26:04.0006 6524 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
10:26:04.0006 6524 ACPI - ok
10:26:04.0037 6524 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
10:26:04.0037 6524 AcpiPmi - ok
10:26:04.0224 6524 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:26:04.0224 6524 AdobeARMservice - ok
10:26:04.0333 6524 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:26:04.0333 6524 AdobeFlashPlayerUpdateSvc - ok
10:26:04.0365 6524 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:26:04.0380 6524 adp94xx - ok
10:26:04.0411 6524 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:26:04.0411 6524 adpahci - ok
10:26:04.0427 6524 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:26:04.0427 6524 adpu320 - ok
10:26:04.0458 6524 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:26:04.0458 6524 AeLookupSvc - ok
10:26:04.0536 6524 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
10:26:04.0536 6524 AFD - ok
10:26:04.0552 6524 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
10:26:04.0552 6524 agp440 - ok
10:26:04.0567 6524 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:26:04.0567 6524 ALG - ok
10:26:04.0583 6524 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
10:26:04.0583 6524 aliide - ok
10:26:04.0661 6524 [ 13AE8D986A8D61FBAFAF5CD3F8B3B89C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:26:04.0661 6524 AMD External Events Utility - ok
10:26:04.0723 6524 AMD FUEL Service - ok
10:26:04.0786 6524 [ D39CB7B4BB3A46BC84AD0CC1B8261FB8 ] amdhub30 C:\Windows\system32\DRIVERS\amdhub30.sys
10:26:04.0786 6524 amdhub30 - ok
10:26:04.0817 6524 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
10:26:04.0817 6524 amdide - ok
10:26:04.0817 6524 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
10:26:04.0817 6524 amdiox64 - ok
10:26:04.0848 6524 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:26:04.0848 6524 AmdK8 - ok
10:26:05.0098 6524 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:26:05.0160 6524 amdkmdag - ok
10:26:05.0223 6524 [ 4DD3339D3818356145A4945C1B4CB4C5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:26:05.0223 6524 amdkmdap - ok
10:26:05.0254 6524 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:26:05.0254 6524 AmdPPM - ok
10:26:05.0347 6524 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:26:05.0347 6524 amdsata - ok
10:26:05.0379 6524 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:26:05.0394 6524 amdsbs - ok
10:26:05.0441 6524 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:26:05.0441 6524 amdxata - ok
10:26:05.0472 6524 [ 990E896740E42C6B88284AFD1799AA56 ] amdxhc C:\Windows\system32\DRIVERS\amdxhc.sys
10:26:05.0472 6524 amdxhc - ok
10:26:05.0519 6524 [ F2154A205F4B784B61A72AEBC72BDC5F ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
10:26:05.0519 6524 AODDriver4.2 - ok
10:26:05.0550 6524 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
10:26:05.0550 6524 AppID - ok
10:26:05.0675 6524 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:26:05.0675 6524 AppIDSvc - ok
10:26:05.0691 6524 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
10:26:05.0691 6524 Appinfo - ok
10:26:05.0722 6524 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:26:05.0722 6524 arc - ok
10:26:05.0722 6524 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:26:05.0722 6524 arcsas - ok
10:26:05.0862 6524 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:26:05.0862 6524 aspnet_state - ok
10:26:05.0893 6524 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
10:26:05.0893 6524 aswFsBlk - ok
10:26:05.0925 6524 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
10:26:05.0925 6524 aswMonFlt - ok
10:26:05.0940 6524 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
10:26:05.0956 6524 aswRdr - ok
10:26:05.0971 6524 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
10:26:05.0971 6524 aswRvrt - ok
10:26:06.0003 6524 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
10:26:06.0018 6524 aswSnx - ok
10:26:06.0034 6524 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\Windows\system32\drivers\aswSP.sys
10:26:06.0034 6524 aswSP - ok
10:26:06.0049 6524 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
10:26:06.0049 6524 aswTdi - ok
10:26:06.0081 6524 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
10:26:06.0081 6524 aswVmm - ok
10:26:06.0112 6524 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:26:06.0112 6524 AsyncMac - ok
10:26:06.0127 6524 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
10:26:06.0127 6524 atapi - ok
10:26:06.0174 6524 [ 37CB595C0AB20ECBFA5170D3185690DB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
10:26:06.0174 6524 AtiHDAudioService - ok
10:26:06.0237 6524 [ FE8349936B49F7E315A629FB0AF4F2AB ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
10:26:06.0237 6524 AtiHdmiService - ok
10:26:06.0486 6524 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:26:06.0564 6524 atikmdag - ok
10:26:06.0595 6524 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:26:06.0627 6524 AudioEndpointBuilder - ok
10:26:06.0642 6524 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:26:06.0658 6524 AudioSrv - ok
10:26:06.0705 6524 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:26:06.0705 6524 avast! Antivirus - ok
10:26:06.0751 6524 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:26:06.0751 6524 AxInstSV - ok
10:26:06.0783 6524 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:26:06.0783 6524 b06bdrv - ok
10:26:06.0829 6524 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:26:06.0829 6524 b57nd60a - ok
10:26:06.0845 6524 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:26:06.0845 6524 BDESVC - ok
10:26:06.0861 6524 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:26:06.0861 6524 Beep - ok
10:26:06.0907 6524 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
10:26:06.0939 6524 BFE - ok
10:26:06.0985 6524 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
10:26:07.0017 6524 BITS - ok
10:26:07.0048 6524 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:26:07.0048 6524 blbdrive - ok
10:26:07.0126 6524 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:26:07.0126 6524 bowser - ok
10:26:07.0157 6524 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:26:07.0157 6524 BrFiltLo - ok
10:26:07.0173 6524 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:26:07.0173 6524 BrFiltUp - ok
10:26:07.0251 6524 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
10:26:07.0251 6524 Browser - ok
10:26:07.0266 6524 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:26:07.0266 6524 Brserid - ok
10:26:07.0282 6524 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:26:07.0282 6524 BrSerWdm - ok
10:26:07.0329 6524 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:26:07.0329 6524 BrUsbMdm - ok
10:26:07.0329 6524 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:26:07.0329 6524 BrUsbSer - ok
10:26:07.0375 6524 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:26:07.0375 6524 BTHMODEM - ok
10:26:07.0391 6524 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:26:07.0391 6524 bthserv - ok
10:26:07.0407 6524 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:26:07.0407 6524 cdfs - ok
10:26:07.0453 6524 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:26:07.0453 6524 cdrom - ok
10:26:07.0485 6524 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
10:26:07.0485 6524 CertPropSvc - ok
10:26:07.0500 6524 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:26:07.0500 6524 circlass - ok
10:26:07.0531 6524 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:26:07.0531 6524 CLFS - ok
10:26:07.0594 6524 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:26:07.0594 6524 clr_optimization_v2.0.50727_32 - ok
10:26:07.0625 6524 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:26:07.0625 6524 clr_optimization_v2.0.50727_64 - ok
10:26:07.0750 6524 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:26:07.0765 6524 clr_optimization_v4.0.30319_32 - ok
10:26:07.0781 6524 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:26:07.0812 6524 clr_optimization_v4.0.30319_64 - ok
10:26:07.0859 6524 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:26:07.0859 6524 CmBatt - ok
10:26:07.0859 6524 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
10:26:07.0859 6524 cmdide - ok
10:26:07.0937 6524 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
10:26:07.0937 6524 CNG - ok
10:26:07.0953 6524 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:26:07.0953 6524 Compbatt - ok
10:26:07.0984 6524 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:26:07.0984 6524 CompositeBus - ok
10:26:07.0999 6524 COMSysApp - ok
10:26:08.0015 6524 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:26:08.0015 6524 crcdisk - ok
10:26:08.0077 6524 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:26:08.0077 6524 CryptSvc - ok
10:26:08.0109 6524 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:26:08.0124 6524 DcomLaunch - ok
10:26:08.0155 6524 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:26:08.0155 6524 defragsvc - ok
10:26:08.0202 6524 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:26:08.0202 6524 DfsC - ok
10:26:08.0265 6524 [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
10:26:08.0265 6524 dg_ssudbus - ok
10:26:08.0389 6524 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
10:26:08.0405 6524 Dhcp - ok
10:26:08.0421 6524 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:26:08.0421 6524 discache - ok
10:26:08.0467 6524 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:26:08.0467 6524 Disk - ok
10:26:08.0530 6524 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:26:08.0530 6524 Dnscache - ok
10:26:08.0561 6524 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
10:26:08.0561 6524 dot3svc - ok
10:26:08.0592 6524 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
10:26:08.0592 6524 DPS - ok
10:26:08.0623 6524 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:26:08.0623 6524 drmkaud - ok
10:26:08.0670 6524 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:26:08.0670 6524 dtsoftbus01 - ok
10:26:08.0748 6524 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:26:08.0748 6524 DXGKrnl - ok
10:26:08.0764 6524 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:26:08.0764 6524 EapHost - ok
10:26:08.0857 6524 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:26:08.0873 6524 ebdrv - ok
10:26:08.0951 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
10:26:08.0951 6524 EFS - ok
10:26:09.0013 6524 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:26:09.0029 6524 ehRecvr - ok
10:26:09.0045 6524 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:26:09.0060 6524 ehSched - ok
10:26:09.0107 6524 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:26:09.0107 6524 elxstor - ok
10:26:09.0123 6524 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
10:26:09.0123 6524 ErrDev - ok
10:26:09.0169 6524 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:26:09.0169 6524 EventSystem - ok
10:26:09.0185 6524 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:26:09.0185 6524 exfat - ok
10:26:09.0201 6524 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:26:09.0201 6524 fastfat - ok
10:26:09.0247 6524 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
10:26:09.0263 6524 Fax - ok
10:26:09.0279 6524 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:26:09.0294 6524 fdc - ok
10:26:09.0341 6524 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:26:09.0357 6524 fdPHost - ok
10:26:09.0388 6524 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:26:09.0388 6524 FDResPub - ok
10:26:09.0403 6524 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:26:09.0403 6524 FileInfo - ok
10:26:09.0419 6524 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:26:09.0419 6524 Filetrace - ok
10:26:09.0528 6524 [ 1A18EBD87AA9FBF6EFE8CFADA08D0275 ] FirebirdGuardianDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
10:26:09.0528 6524 FirebirdGuardianDefaultInstance - ok
10:26:09.0622 6524 [ 53C740150C082AAF3C7D21C1D6A9FF98 ] FirebirdServerDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
10:26:09.0637 6524 FirebirdServerDefaultInstance - ok
10:26:09.0669 6524 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:26:09.0669 6524 flpydisk - ok
10:26:09.0684 6524 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:26:09.0684 6524 FltMgr - ok
10:26:09.0778 6524 [ BC00505CFDA789ED3BE95D2FF38C4875 ] FontCache C:\Windows\system32\FntCache.dll
10:26:09.0809 6524 FontCache - ok
10:26:09.0856 6524 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:26:09.0856 6524 FontCache3.0.0.0 - ok
10:26:09.0887 6524 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:26:09.0887 6524 FsDepends - ok
10:26:09.0949 6524 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:26:09.0949 6524 Fs_Rec - ok
10:26:10.0012 6524 [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:26:10.0027 6524 fvevol - ok
10:26:10.0043 6524 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:26:10.0043 6524 gagp30kx - ok
10:26:10.0074 6524 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
10:26:10.0105 6524 gpsvc - ok
10:26:10.0152 6524 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:26:10.0152 6524 gupdate - ok
10:26:10.0152 6524 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:26:10.0168 6524 gupdatem - ok
10:26:10.0183 6524 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
10:26:10.0183 6524 hamachi - ok
10:26:10.0324 6524 [ 243424EDDC9563B7912268B54307783D ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
10:26:10.0339 6524 Hamachi2Svc - ok
10:26:10.0355 6524 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:26:10.0355 6524 hcw85cir - ok
10:26:10.0386 6524 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:26:10.0386 6524 HdAudAddService - ok
10:26:10.0417 6524 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:26:10.0417 6524 HDAudBus - ok
10:26:10.0433 6524 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:26:10.0433 6524 HidBatt - ok
10:26:10.0449 6524 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:26:10.0449 6524 HidBth - ok
10:26:10.0449 6524 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:26:10.0449 6524 HidIr - ok
10:26:10.0480 6524 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:26:10.0480 6524 hidserv - ok
10:26:10.0527 6524 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:26:10.0527 6524 HidUsb - ok
10:26:10.0542 6524 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:26:10.0542 6524 hkmsvc - ok
10:26:10.0573 6524 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:26:10.0573 6524 HomeGroupListener - ok
10:26:10.0605 6524 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:26:10.0605 6524 HomeGroupProvider - ok
10:26:10.0636 6524 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
10:26:10.0636 6524 HpSAMD - ok
10:26:10.0683 6524 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:26:10.0683 6524 HTTP - ok
10:26:10.0714 6524 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:26:10.0714 6524 hwpolicy - ok
10:26:10.0729 6524 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:26:10.0729 6524 i8042prt - ok
10:26:10.0761 6524 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:26:10.0761 6524 iaStorV - ok
10:26:10.0807 6524 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:26:10.0839 6524 idsvc - ok
10:26:10.0854 6524 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:26:10.0870 6524 iirsp - ok
10:26:10.0901 6524 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
10:26:10.0932 6524 IKEEXT - ok
10:26:11.0026 6524 [ 4BBB5A55EEB5EC11B20FCBB4CBB49357 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:26:11.0041 6524 IntcAzAudAddService - ok
10:26:11.0041 6524 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
10:26:11.0041 6524 intelide - ok
10:26:11.0073 6524 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:26:11.0073 6524 intelppm - ok
10:26:11.0088 6524 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:26:11.0088 6524 IPBusEnum - ok
10:26:11.0104 6524 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:26:11.0104 6524 IpFilterDriver - ok
10:26:11.0119 6524 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:26:11.0135 6524 iphlpsvc - ok
10:26:11.0151 6524 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:26:11.0151 6524 IPMIDRV - ok
10:26:11.0166 6524 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:26:11.0166 6524 IPNAT - ok
10:26:11.0182 6524 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:26:11.0182 6524 IRENUM - ok
10:26:11.0197 6524 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
10:26:11.0197 6524 isapnp - ok
10:26:11.0213 6524 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:26:11.0213 6524 iScsiPrt - ok
10:26:11.0244 6524 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:26:11.0244 6524 kbdclass - ok
10:26:11.0260 6524 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:26:11.0275 6524 kbdhid - ok
10:26:11.0307 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
10:26:11.0307 6524 KeyIso - ok
10:26:11.0385 6524 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:26:11.0385 6524 KSecDD - ok
10:26:11.0447 6524 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:26:11.0447 6524 KSecPkg - ok
10:26:11.0494 6524 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:26:11.0494 6524 ksthunk - ok
10:26:11.0525 6524 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:26:11.0525 6524 KtmRm - ok
10:26:11.0603 6524 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:26:11.0619 6524 LanmanServer - ok
10:26:11.0650 6524 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:26:11.0650 6524 LanmanWorkstation - ok
10:26:11.0681 6524 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:26:11.0681 6524 lltdio - ok
10:26:11.0712 6524 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:26:11.0712 6524 lltdsvc - ok
10:26:11.0728 6524 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:26:11.0728 6524 lmhosts - ok
10:26:11.0790 6524 [ 02468469C450CD16FB66A56FAB70138B ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
10:26:11.0790 6524 LMIGuardianSvc - ok
10:26:11.0868 6524 LMIInfo - ok
10:26:11.0946 6524 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
10:26:11.0946 6524 lmimirr - ok
10:26:11.0962 6524 LMIRfsClientNP - ok
10:26:12.0055 6524 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
10:26:12.0055 6524 LMIRfsDriver - ok
10:26:12.0087 6524 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:26:12.0087 6524 LSI_FC - ok
10:26:12.0118 6524 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:26:12.0118 6524 LSI_SAS - ok
10:26:12.0133 6524 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:26:12.0133 6524 LSI_SAS2 - ok
10:26:12.0149 6524 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:26:12.0149 6524 LSI_SCSI - ok
10:26:12.0165 6524 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:26:12.0165 6524 luafv - ok
10:26:12.0196 6524 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:26:12.0196 6524 Mcx2Svc - ok
10:26:12.0211 6524 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:26:12.0211 6524 megasas - ok
10:26:12.0227 6524 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:26:12.0227 6524 MegaSR - ok
10:26:12.0258 6524 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:26:12.0305 6524 MMCSS - ok
10:26:12.0305 6524 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:26:12.0321 6524 Modem - ok
10:26:12.0383 6524 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:26:12.0383 6524 monitor - ok
10:26:12.0414 6524 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:26:12.0414 6524 mouclass - ok
10:26:12.0430 6524 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:26:12.0430 6524 mouhid - ok
10:26:12.0430 6524 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:26:12.0430 6524 mountmgr - ok
10:26:12.0445 6524 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
10:26:12.0445 6524 mpio - ok
10:26:12.0461 6524 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:26:12.0461 6524 mpsdrv - ok
10:26:12.0508 6524 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:26:12.0539 6524 MpsSvc - ok
10:26:12.0539 6524 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:26:12.0539 6524 MRxDAV - ok
10:26:12.0617 6524 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:26:12.0617 6524 mrxsmb - ok
10:26:12.0648 6524 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:26:12.0648 6524 mrxsmb10 - ok
10:26:12.0664 6524 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:26:12.0664 6524 mrxsmb20 - ok
10:26:12.0679 6524 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
10:26:12.0679 6524 msahci - ok
10:26:12.0695 6524 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
10:26:12.0695 6524 msdsm - ok
10:26:12.0711 6524 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:26:12.0726 6524 MSDTC - ok
10:26:12.0757 6524 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:26:12.0757 6524 Msfs - ok
10:26:12.0773 6524 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:26:12.0773 6524 mshidkmdf - ok
10:26:12.0789 6524 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
10:26:12.0789 6524 msisadrv - ok
10:26:12.0820 6524 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:26:12.0820 6524 MSiSCSI - ok
10:26:12.0820 6524 msiserver - ok
10:26:12.0851 6524 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:26:12.0851 6524 MSKSSRV - ok
10:26:12.0867 6524 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:26:12.0867 6524 MSPCLOCK - ok
10:26:12.0882 6524 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:26:12.0882 6524 MSPQM - ok
10:26:12.0898 6524 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:26:12.0898 6524 MsRPC - ok
10:26:12.0913 6524 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:26:12.0913 6524 mssmbios - ok
10:26:12.0929 6524 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:26:12.0929 6524 MSTEE - ok
10:26:12.0945 6524 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:26:12.0945 6524 MTConfig - ok
10:26:12.0960 6524 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:26:12.0960 6524 Mup - ok
10:26:13.0007 6524 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
10:26:13.0007 6524 napagent - ok
10:26:13.0038 6524 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:26:13.0038 6524 NativeWifiP - ok
10:26:13.0085 6524 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
10:26:13.0085 6524 NDIS - ok
10:26:13.0116 6524 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:26:13.0116 6524 NdisCap - ok
10:26:13.0132 6524 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:26:13.0132 6524 NdisTapi - ok
10:26:13.0163 6524 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:26:13.0163 6524 Ndisuio - ok
10:26:13.0179 6524 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:26:13.0179 6524 NdisWan - ok
10:26:13.0194 6524 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:26:13.0194 6524 NDProxy - ok
10:26:13.0210 6524 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:26:13.0210 6524 NetBIOS - ok
10:26:13.0241 6524 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:26:13.0241 6524 NetBT - ok
10:26:13.0241 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
10:26:13.0241 6524 Netlogon - ok
10:26:13.0288 6524 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:26:13.0288 6524 Netman - ok
10:26:13.0366 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0366 6524 NetMsmqActivator - ok
10:26:13.0381 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0381 6524 NetPipeActivator - ok
10:26:13.0413 6524 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:26:13.0428 6524 netprofm - ok
10:26:13.0444 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0444 6524 NetTcpActivator - ok
10:26:13.0444 6524 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:13.0444 6524 NetTcpPortSharing - ok
10:26:13.0491 6524 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:26:13.0491 6524 nfrd960 - ok
10:26:13.0537 6524 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:26:13.0537 6524 NlaSvc - ok
10:26:13.0553 6524 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:26:13.0569 6524 Npfs - ok
10:26:13.0584 6524 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:26:13.0584 6524 nsi - ok
10:26:13.0600 6524 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:26:13.0600 6524 nsiproxy - ok
10:26:13.0662 6524 [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:26:13.0662 6524 Ntfs - ok
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
Re: Prosím o kontrolu logu/zřejmě spyware
10:26:13.0678 6524 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:26:13.0678 6524 Null - ok
10:26:13.0693 6524 nvlddmkm - ok
10:26:13.0725 6524 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:26:13.0725 6524 nvraid - ok
10:26:13.0756 6524 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:26:13.0756 6524 nvstor - ok
10:26:13.0771 6524 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
10:26:13.0787 6524 nv_agp - ok
10:26:13.0818 6524 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:26:13.0818 6524 ohci1394 - ok
10:26:13.0896 6524 [ 11E0B35479C895888BA3D7F619DCFFF3 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:26:13.0912 6524 ose64 - ok
10:26:14.0161 6524 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:26:14.0286 6524 osppsvc - ok
10:26:14.0317 6524 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:26:14.0317 6524 p2pimsvc - ok
10:26:14.0364 6524 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:26:14.0364 6524 p2psvc - ok
10:26:14.0395 6524 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:26:14.0395 6524 Parport - ok
10:26:14.0473 6524 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:26:14.0473 6524 partmgr - ok
10:26:14.0489 6524 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:26:14.0489 6524 PcaSvc - ok
10:26:14.0520 6524 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
10:26:14.0520 6524 pci - ok
10:26:14.0536 6524 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
10:26:14.0536 6524 pciide - ok
10:26:14.0551 6524 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:26:14.0551 6524 pcmcia - ok
10:26:14.0645 6524 [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
10:26:14.0645 6524 pcouffin - ok
10:26:14.0661 6524 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:26:14.0661 6524 pcw - ok
10:26:14.0692 6524 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:26:14.0692 6524 PEAUTH - ok
10:26:14.0754 6524 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:26:14.0754 6524 PerfHost - ok
10:26:14.0801 6524 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
10:26:14.0848 6524 pla - ok
10:26:14.0941 6524 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:26:14.0957 6524 PlugPlay - ok
10:26:14.0973 6524 PnkBstrA - ok
10:26:14.0988 6524 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:26:14.0988 6524 PNRPAutoReg - ok
10:26:15.0004 6524 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:26:15.0004 6524 PNRPsvc - ok
10:26:15.0035 6524 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:26:15.0051 6524 PolicyAgent - ok
10:26:15.0082 6524 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:26:15.0082 6524 Power - ok
10:26:15.0129 6524 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:26:15.0129 6524 PptpMiniport - ok
10:26:15.0129 6524 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:26:15.0129 6524 Processor - ok
10:26:15.0222 6524 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
10:26:15.0222 6524 ProfSvc - ok
10:26:15.0238 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:26:15.0238 6524 ProtectedStorage - ok
10:26:15.0269 6524 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:26:15.0269 6524 Psched - ok
10:26:15.0394 6524 [ BC08F7F3C53CBEE68670ED1314E290FD ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:26:15.0394 6524 PxHlpa64 - ok
10:26:15.0472 6524 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:26:15.0487 6524 ql2300 - ok
10:26:15.0487 6524 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:26:15.0503 6524 ql40xx - ok
10:26:15.0534 6524 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:26:15.0534 6524 QWAVE - ok
10:26:15.0550 6524 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:26:15.0550 6524 QWAVEdrv - ok
10:26:15.0565 6524 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:26:15.0565 6524 RasAcd - ok
10:26:15.0597 6524 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:26:15.0612 6524 RasAgileVpn - ok
10:26:15.0628 6524 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:26:15.0628 6524 RasAuto - ok
10:26:15.0643 6524 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:26:15.0643 6524 Rasl2tp - ok
10:26:15.0675 6524 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
10:26:15.0675 6524 RasMan - ok
10:26:15.0690 6524 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:26:15.0690 6524 RasPppoe - ok
10:26:15.0706 6524 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:26:15.0706 6524 RasSstp - ok
10:26:15.0721 6524 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:26:15.0721 6524 rdbss - ok
10:26:15.0737 6524 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:26:15.0737 6524 rdpbus - ok
10:26:15.0753 6524 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:26:15.0753 6524 RDPCDD - ok
10:26:15.0784 6524 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:26:15.0784 6524 RDPENCDD - ok
10:26:15.0799 6524 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:26:15.0799 6524 RDPREFMP - ok
10:26:15.0862 6524 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:26:15.0862 6524 RDPWD - ok
10:26:15.0877 6524 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:26:15.0893 6524 rdyboost - ok
10:26:15.0940 6524 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:26:15.0940 6524 RemoteAccess - ok
10:26:15.0971 6524 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:26:15.0987 6524 RemoteRegistry - ok
10:26:16.0002 6524 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:26:16.0002 6524 RpcEptMapper - ok
10:26:16.0018 6524 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:26:16.0018 6524 RpcLocator - ok
10:26:16.0049 6524 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
10:26:16.0049 6524 RpcSs - ok
10:26:16.0080 6524 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:26:16.0080 6524 rspndr - ok
10:26:16.0127 6524 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:26:16.0143 6524 RTL8167 - ok
10:26:16.0174 6524 [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
10:26:16.0174 6524 RtNdPt60 - ok
10:26:16.0189 6524 [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] RTTEAMPT C:\Windows\system32\DRIVERS\RtTeam60.sys
10:26:16.0205 6524 RTTEAMPT - ok
10:26:16.0221 6524 [ ED0624ED83121E1BC141F49B1316CAA0 ] RTVLANPT C:\Windows\system32\DRIVERS\RtVlan620.sys
10:26:16.0221 6524 RTVLANPT - ok
10:26:16.0236 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
10:26:16.0252 6524 SamSs - ok
10:26:16.0267 6524 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
10:26:16.0267 6524 sbp2port - ok
10:26:16.0299 6524 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:26:16.0299 6524 SCardSvr - ok
10:26:16.0330 6524 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:26:16.0330 6524 scfilter - ok
10:26:16.0424 6524 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
10:26:16.0455 6524 Schedule - ok
10:26:16.0470 6524 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:26:16.0470 6524 SCPolicySvc - ok
10:26:16.0486 6524 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:26:16.0502 6524 SDRSVC - ok
10:26:16.0517 6524 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:26:16.0517 6524 secdrv - ok
10:26:16.0533 6524 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
10:26:16.0533 6524 seclogon - ok
10:26:16.0548 6524 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:26:16.0564 6524 SENS - ok
10:26:16.0564 6524 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:26:16.0564 6524 SensrSvc - ok
10:26:16.0580 6524 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:26:16.0580 6524 Serenum - ok
10:26:16.0595 6524 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:26:16.0595 6524 Serial - ok
10:26:16.0611 6524 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:26:16.0611 6524 sermouse - ok
10:26:16.0626 6524 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
10:26:16.0642 6524 SessionEnv - ok
10:26:16.0642 6524 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
10:26:16.0642 6524 sffdisk - ok
10:26:16.0658 6524 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:26:16.0673 6524 sffp_mmc - ok
10:26:16.0673 6524 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
10:26:16.0673 6524 sffp_sd - ok
10:26:16.0689 6524 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:26:16.0689 6524 sfloppy - ok
10:26:16.0720 6524 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:26:16.0720 6524 SharedAccess - ok
10:26:16.0751 6524 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:26:16.0751 6524 ShellHWDetection - ok
10:26:16.0782 6524 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:26:16.0782 6524 SiSRaid2 - ok
10:26:16.0798 6524 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:26:16.0798 6524 SiSRaid4 - ok
10:26:16.0860 6524 [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:26:16.0860 6524 SkypeUpdate - ok
10:26:16.0892 6524 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:26:16.0892 6524 Smb - ok
10:26:16.0923 6524 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:26:16.0923 6524 SNMPTRAP - ok
10:26:17.0016 6524 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
10:26:17.0016 6524 speedfan - ok
10:26:17.0032 6524 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:26:17.0032 6524 spldr - ok
10:26:17.0110 6524 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
10:26:17.0126 6524 Spooler - ok
10:26:17.0204 6524 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
10:26:17.0219 6524 sppsvc - ok
10:26:17.0235 6524 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:26:17.0250 6524 sppuinotify - ok
10:26:17.0406 6524 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
10:26:17.0406 6524 SQLWriter - ok
10:26:17.0656 6524 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:26:17.0656 6524 srv - ok
10:26:17.0687 6524 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:26:17.0687 6524 srv2 - ok
10:26:17.0734 6524 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:26:17.0734 6524 srvnet - ok
10:26:17.0765 6524 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:26:17.0781 6524 SSDPSRV - ok
10:26:17.0781 6524 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:26:17.0796 6524 SstpSvc - ok
10:26:17.0890 6524 [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
10:26:17.0890 6524 ssudmdm - ok
10:26:17.0937 6524 [ DB0768632C680B7C0D3AA92D80416893 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
10:26:17.0952 6524 Steam Client Service - ok
10:26:17.0984 6524 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:26:17.0984 6524 stexstor - ok
10:26:18.0015 6524 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
10:26:18.0046 6524 stisvc - ok
10:26:18.0046 6524 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:26:18.0046 6524 swenum - ok
10:26:18.0233 6524 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
10:26:18.0233 6524 SwitchBoard - ok
10:26:18.0264 6524 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:26:18.0280 6524 swprv - ok
10:26:18.0327 6524 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
10:26:18.0374 6524 SysMain - ok
10:26:18.0389 6524 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:26:18.0389 6524 TabletInputService - ok
10:26:18.0420 6524 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
10:26:18.0420 6524 TapiSrv - ok
10:26:18.0436 6524 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:26:18.0452 6524 TBS - ok
10:26:18.0545 6524 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:26:18.0545 6524 Tcpip - ok
10:26:18.0608 6524 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:26:18.0623 6524 TCPIP6 - ok
10:26:18.0654 6524 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:26:18.0654 6524 tcpipreg - ok
10:26:18.0686 6524 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:26:18.0686 6524 TDPIPE - ok
10:26:18.0748 6524 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:26:18.0748 6524 TDTCP - ok
10:26:18.0779 6524 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:26:18.0779 6524 tdx - ok
10:26:18.0951 6524 [ F67C21CC4195F6AFC447418FE163E156 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
10:26:18.0966 6524 TeamViewer8 - ok
10:26:18.0982 6524 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:26:18.0982 6524 TermDD - ok
10:26:19.0029 6524 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
10:26:19.0060 6524 TermService - ok
10:26:19.0076 6524 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:26:19.0076 6524 Themes - ok
10:26:19.0107 6524 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:26:19.0107 6524 THREADORDER - ok
10:26:19.0122 6524 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:26:19.0122 6524 TrkWks - ok
10:26:19.0169 6524 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:26:19.0185 6524 TrustedInstaller - ok
10:26:19.0216 6524 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:26:19.0216 6524 tssecsrv - ok
10:26:19.0232 6524 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:26:19.0232 6524 tunnel - ok
10:26:19.0247 6524 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:26:19.0263 6524 uagp35 - ok
10:26:19.0278 6524 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:26:19.0278 6524 udfs - ok
10:26:19.0310 6524 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:26:19.0310 6524 UI0Detect - ok
10:26:19.0356 6524 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
10:26:19.0356 6524 uliagpkx - ok
10:26:19.0372 6524 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:26:19.0372 6524 umbus - ok
10:26:19.0388 6524 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:26:19.0388 6524 UmPass - ok
10:26:19.0403 6524 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:26:19.0419 6524 upnphost - ok
10:26:19.0497 6524 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:26:19.0497 6524 usbccgp - ok
10:26:19.0497 6524 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
10:26:19.0512 6524 usbcir - ok
10:26:19.0559 6524 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:26:19.0559 6524 usbehci - ok
10:26:19.0637 6524 [ 5AE9C87A1ED4B243942B3FDDD902134B ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
10:26:19.0637 6524 usbfilter - ok
10:26:19.0668 6524 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:26:19.0684 6524 usbhub - ok
10:26:19.0746 6524 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:26:19.0746 6524 usbohci - ok
10:26:19.0778 6524 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:26:19.0778 6524 usbprint - ok
10:26:19.0809 6524 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:26:19.0809 6524 usbscan - ok
10:26:19.0840 6524 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:26:19.0840 6524 USBSTOR - ok
10:26:19.0918 6524 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:26:19.0918 6524 usbuhci - ok
10:26:19.0949 6524 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:26:19.0949 6524 UxSms - ok
10:26:19.0965 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
10:26:19.0965 6524 VaultSvc - ok
10:26:20.0074 6524 [ 7887DCC002173AF8725F722DAFEB3DB9 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
10:26:20.0074 6524 VBoxDrv - ok
10:26:20.0090 6524 [ C2208BFB92D932C817903DAE8AA28C17 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
10:26:20.0105 6524 VBoxNetAdp - ok
10:26:20.0121 6524 [ 993F609959E53F07E718E214400EFD7D ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
10:26:20.0121 6524 VBoxNetFlt - ok
10:26:20.0168 6524 [ 2F0276BB46A6169FA384E634EC69237C ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
10:26:20.0168 6524 VBoxUSBMon - ok
10:26:20.0199 6524 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
10:26:20.0199 6524 vdrvroot - ok
10:26:20.0214 6524 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
10:26:20.0230 6524 vds - ok
10:26:20.0246 6524 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:26:20.0246 6524 vga - ok
10:26:20.0261 6524 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:26:20.0261 6524 VgaSave - ok
10:26:20.0277 6524 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
10:26:20.0277 6524 vhdmp - ok
10:26:20.0277 6524 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
10:26:20.0277 6524 viaide - ok
10:26:20.0339 6524 [ 93F279A2C172562050700A18FA84BE2E ] vncmirror C:\Windows\system32\DRIVERS\vncmirror.sys
10:26:20.0339 6524 vncmirror - ok
10:26:20.0511 6524 [ 74B5F5438D0051BE3A6D2FF91E245A64 ] vncserver C:\Program Files\RealVNC\VNC Server\vncserver.exe
10:26:20.0604 6524 vncserver - ok
10:26:20.0620 6524 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
10:26:20.0636 6524 volmgr - ok
10:26:20.0651 6524 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:26:20.0651 6524 volmgrx - ok
10:26:20.0729 6524 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
10:26:20.0729 6524 volsnap - ok
10:26:20.0760 6524 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:26:20.0760 6524 vsmraid - ok
10:26:20.0807 6524 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
10:26:20.0854 6524 VSS - ok
10:26:20.0870 6524 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:26:20.0870 6524 vwifibus - ok
10:26:20.0885 6524 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:26:20.0885 6524 W32Time - ok
10:26:20.0901 6524 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:26:20.0901 6524 WacomPen - ok
10:26:20.0948 6524 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:26:20.0948 6524 WANARP - ok
10:26:20.0948 6524 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:26:20.0948 6524 Wanarpv6 - ok
10:26:21.0041 6524 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:26:21.0088 6524 WatAdminSvc - ok
10:26:21.0150 6524 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
10:26:21.0197 6524 wbengine - ok
10:26:21.0213 6524 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:26:21.0213 6524 WbioSrvc - ok
10:26:21.0244 6524 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:26:21.0244 6524 wcncsvc - ok
10:26:21.0260 6524 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:26:21.0306 6524 WcsPlugInService - ok
10:26:21.0322 6524 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:26:21.0322 6524 Wd - ok
10:26:21.0400 6524 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:26:21.0400 6524 Wdf01000 - ok
10:26:21.0416 6524 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:26:21.0416 6524 WdiServiceHost - ok
10:26:21.0431 6524 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:26:21.0431 6524 WdiSystemHost - ok
10:26:21.0509 6524 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
10:26:21.0525 6524 WebClient - ok
10:26:21.0540 6524 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:26:21.0540 6524 Wecsvc - ok
10:26:21.0556 6524 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:26:21.0556 6524 wercplsupport - ok
10:26:21.0587 6524 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:26:21.0587 6524 WerSvc - ok
10:26:21.0618 6524 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:26:21.0618 6524 WfpLwf - ok
10:26:21.0634 6524 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:26:21.0634 6524 WIMMount - ok
10:26:21.0650 6524 WinDefend - ok
10:26:21.0650 6524 WinHttpAutoProxySvc - ok
10:26:21.0712 6524 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:26:21.0712 6524 Winmgmt - ok
10:26:21.0774 6524 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
10:26:21.0821 6524 WinRM - ok
10:26:21.0915 6524 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:26:21.0915 6524 WinUsb - ok
10:26:21.0962 6524 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:26:21.0993 6524 Wlansvc - ok
10:26:22.0164 6524 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:26:22.0164 6524 wlidsvc - ok
10:26:22.0196 6524 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:26:22.0196 6524 WmiAcpi - ok
10:26:22.0227 6524 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:26:22.0227 6524 wmiApSrv - ok
10:26:22.0258 6524 WMPNetworkSvc - ok
10:26:22.0274 6524 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:26:22.0289 6524 WPCSvc - ok
10:26:22.0289 6524 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:26:22.0305 6524 WPDBusEnum - ok
10:26:22.0320 6524 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:26:22.0320 6524 ws2ifsl - ok
10:26:22.0383 6524 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
10:26:22.0398 6524 wscsvc - ok
10:26:22.0398 6524 WSearch - ok
10:26:22.0508 6524 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:26:22.0586 6524 wuauserv - ok
10:26:22.0664 6524 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:26:22.0664 6524 WudfPf - ok
10:26:22.0695 6524 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:26:22.0695 6524 WUDFRd - ok
10:26:22.0773 6524 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:26:22.0773 6524 wudfsvc - ok
10:26:22.0788 6524 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:26:22.0804 6524 WwanSvc - ok
10:26:22.0820 6524 ================ Scan global ===============================
10:26:22.0851 6524 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:26:22.0913 6524 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:26:22.0929 6524 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:26:22.0960 6524 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:26:22.0976 6524 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:26:22.0991 6524 [Global] - ok
10:26:22.0991 6524 ================ Scan MBR ==================================
10:26:22.0991 6524 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:26:23.0397 6524 \Device\Harddisk0\DR0 - ok
10:26:23.0397 6524 ================ Scan VBR ==================================
10:26:23.0397 6524 [ E8CF6022E9555847C750A81FED7B358B ] \Device\Harddisk0\DR0\Partition1
10:26:23.0397 6524 \Device\Harddisk0\DR0\Partition1 - ok
10:26:23.0397 6524 ============================================================
10:26:23.0397 6524 Scan finished
10:26:23.0397 6524 ============================================================
10:26:23.0412 6836 Detected object count: 0
10:26:23.0412 6836 Actual detected object count: 0
10:27:31.0139 9204 ============================================================
10:27:31.0139 9204 Scan started
10:27:31.0139 9204 Mode: Manual;
10:27:31.0139 9204 ============================================================
10:27:32.0481 9204 ================ Scan system memory ========================
10:27:32.0481 9204 System memory - ok
10:27:32.0481 9204 ================ Scan services =============================
10:27:32.0606 9204 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:27:32.0606 9204 1394ohci - ok
10:27:32.0621 9204 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
10:27:32.0621 9204 ACPI - ok
10:27:32.0637 9204 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
10:27:32.0637 9204 AcpiPmi - ok
10:27:32.0793 9204 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:27:32.0793 9204 AdobeARMservice - ok
10:27:32.0887 9204 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:27:32.0887 9204 AdobeFlashPlayerUpdateSvc - ok
10:27:32.0918 9204 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:27:32.0918 9204 adp94xx - ok
10:27:32.0949 9204 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:27:32.0949 9204 adpahci - ok
10:27:32.0965 9204 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:27:32.0965 9204 adpu320 - ok
10:27:32.0996 9204 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:27:32.0996 9204 AeLookupSvc - ok
10:27:33.0058 9204 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
10:27:33.0058 9204 AFD - ok
10:27:33.0074 9204 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
10:27:33.0074 9204 agp440 - ok
10:27:33.0089 9204 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:27:33.0105 9204 ALG - ok
10:27:33.0121 9204 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
10:27:33.0121 9204 aliide - ok
10:27:33.0136 9204 [ 13AE8D986A8D61FBAFAF5CD3F8B3B89C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:27:33.0152 9204 AMD External Events Utility - ok
10:27:33.0183 9204 AMD FUEL Service - ok
10:27:33.0245 9204 [ D39CB7B4BB3A46BC84AD0CC1B8261FB8 ] amdhub30 C:\Windows\system32\DRIVERS\amdhub30.sys
10:27:33.0245 9204 amdhub30 - ok
10:27:33.0277 9204 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
10:27:33.0277 9204 amdide - ok
10:27:33.0277 9204 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
10:27:33.0277 9204 amdiox64 - ok
10:27:33.0308 9204 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:27:33.0323 9204 AmdK8 - ok
10:27:33.0573 9204 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:27:33.0635 9204 amdkmdag - ok
10:27:33.0682 9204 [ 4DD3339D3818356145A4945C1B4CB4C5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:27:33.0682 9204 amdkmdap - ok
10:27:33.0698 9204 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:27:33.0698 9204 AmdPPM - ok
10:27:33.0760 9204 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:27:33.0760 9204 amdsata - ok
10:27:33.0776 9204 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:27:33.0776 9204 amdsbs - ok
10:27:33.0838 9204 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:27:33.0838 9204 amdxata - ok
10:27:33.0854 9204 [ 990E896740E42C6B88284AFD1799AA56 ] amdxhc C:\Windows\system32\DRIVERS\amdxhc.sys
10:27:33.0854 9204 amdxhc - ok
10:27:33.0885 9204 [ F2154A205F4B784B61A72AEBC72BDC5F ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
10:27:33.0885 9204 AODDriver4.2 - ok
10:27:33.0916 9204 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
10:27:33.0916 9204 AppID - ok
10:27:33.0932 9204 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:27:33.0932 9204 AppIDSvc - ok
10:27:33.0947 9204 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
10:27:33.0947 9204 Appinfo - ok
10:27:33.0963 9204 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:27:33.0963 9204 arc - ok
10:27:33.0979 9204 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:27:33.0979 9204 arcsas - ok
10:27:34.0088 9204 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:27:34.0088 9204 aspnet_state - ok
10:27:34.0119 9204 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
10:27:34.0119 9204 aswFsBlk - ok
10:27:34.0135 9204 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
10:27:34.0135 9204 aswMonFlt - ok
10:27:34.0135 9204 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
10:27:34.0135 9204 aswRdr - ok
10:27:34.0166 9204 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
10:27:34.0166 9204 aswRvrt - ok
10:27:34.0197 9204 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
10:27:34.0213 9204 aswSnx - ok
10:27:34.0228 9204 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\Windows\system32\drivers\aswSP.sys
10:27:34.0228 9204 aswSP - ok
10:27:34.0244 9204 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
10:27:34.0244 9204 aswTdi - ok
10:27:34.0275 9204 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
10:27:34.0275 9204 aswVmm - ok
10:26:13.0678 6524 Null - ok
10:26:13.0693 6524 nvlddmkm - ok
10:26:13.0725 6524 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:26:13.0725 6524 nvraid - ok
10:26:13.0756 6524 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:26:13.0756 6524 nvstor - ok
10:26:13.0771 6524 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
10:26:13.0787 6524 nv_agp - ok
10:26:13.0818 6524 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:26:13.0818 6524 ohci1394 - ok
10:26:13.0896 6524 [ 11E0B35479C895888BA3D7F619DCFFF3 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:26:13.0912 6524 ose64 - ok
10:26:14.0161 6524 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:26:14.0286 6524 osppsvc - ok
10:26:14.0317 6524 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:26:14.0317 6524 p2pimsvc - ok
10:26:14.0364 6524 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:26:14.0364 6524 p2psvc - ok
10:26:14.0395 6524 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:26:14.0395 6524 Parport - ok
10:26:14.0473 6524 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:26:14.0473 6524 partmgr - ok
10:26:14.0489 6524 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:26:14.0489 6524 PcaSvc - ok
10:26:14.0520 6524 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
10:26:14.0520 6524 pci - ok
10:26:14.0536 6524 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
10:26:14.0536 6524 pciide - ok
10:26:14.0551 6524 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:26:14.0551 6524 pcmcia - ok
10:26:14.0645 6524 [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
10:26:14.0645 6524 pcouffin - ok
10:26:14.0661 6524 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:26:14.0661 6524 pcw - ok
10:26:14.0692 6524 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:26:14.0692 6524 PEAUTH - ok
10:26:14.0754 6524 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:26:14.0754 6524 PerfHost - ok
10:26:14.0801 6524 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
10:26:14.0848 6524 pla - ok
10:26:14.0941 6524 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:26:14.0957 6524 PlugPlay - ok
10:26:14.0973 6524 PnkBstrA - ok
10:26:14.0988 6524 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:26:14.0988 6524 PNRPAutoReg - ok
10:26:15.0004 6524 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:26:15.0004 6524 PNRPsvc - ok
10:26:15.0035 6524 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:26:15.0051 6524 PolicyAgent - ok
10:26:15.0082 6524 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:26:15.0082 6524 Power - ok
10:26:15.0129 6524 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:26:15.0129 6524 PptpMiniport - ok
10:26:15.0129 6524 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:26:15.0129 6524 Processor - ok
10:26:15.0222 6524 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
10:26:15.0222 6524 ProfSvc - ok
10:26:15.0238 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:26:15.0238 6524 ProtectedStorage - ok
10:26:15.0269 6524 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:26:15.0269 6524 Psched - ok
10:26:15.0394 6524 [ BC08F7F3C53CBEE68670ED1314E290FD ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:26:15.0394 6524 PxHlpa64 - ok
10:26:15.0472 6524 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:26:15.0487 6524 ql2300 - ok
10:26:15.0487 6524 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:26:15.0503 6524 ql40xx - ok
10:26:15.0534 6524 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:26:15.0534 6524 QWAVE - ok
10:26:15.0550 6524 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:26:15.0550 6524 QWAVEdrv - ok
10:26:15.0565 6524 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:26:15.0565 6524 RasAcd - ok
10:26:15.0597 6524 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:26:15.0612 6524 RasAgileVpn - ok
10:26:15.0628 6524 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:26:15.0628 6524 RasAuto - ok
10:26:15.0643 6524 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:26:15.0643 6524 Rasl2tp - ok
10:26:15.0675 6524 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
10:26:15.0675 6524 RasMan - ok
10:26:15.0690 6524 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:26:15.0690 6524 RasPppoe - ok
10:26:15.0706 6524 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:26:15.0706 6524 RasSstp - ok
10:26:15.0721 6524 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:26:15.0721 6524 rdbss - ok
10:26:15.0737 6524 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:26:15.0737 6524 rdpbus - ok
10:26:15.0753 6524 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:26:15.0753 6524 RDPCDD - ok
10:26:15.0784 6524 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:26:15.0784 6524 RDPENCDD - ok
10:26:15.0799 6524 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:26:15.0799 6524 RDPREFMP - ok
10:26:15.0862 6524 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:26:15.0862 6524 RDPWD - ok
10:26:15.0877 6524 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:26:15.0893 6524 rdyboost - ok
10:26:15.0940 6524 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:26:15.0940 6524 RemoteAccess - ok
10:26:15.0971 6524 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:26:15.0987 6524 RemoteRegistry - ok
10:26:16.0002 6524 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:26:16.0002 6524 RpcEptMapper - ok
10:26:16.0018 6524 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:26:16.0018 6524 RpcLocator - ok
10:26:16.0049 6524 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
10:26:16.0049 6524 RpcSs - ok
10:26:16.0080 6524 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:26:16.0080 6524 rspndr - ok
10:26:16.0127 6524 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:26:16.0143 6524 RTL8167 - ok
10:26:16.0174 6524 [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
10:26:16.0174 6524 RtNdPt60 - ok
10:26:16.0189 6524 [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] RTTEAMPT C:\Windows\system32\DRIVERS\RtTeam60.sys
10:26:16.0205 6524 RTTEAMPT - ok
10:26:16.0221 6524 [ ED0624ED83121E1BC141F49B1316CAA0 ] RTVLANPT C:\Windows\system32\DRIVERS\RtVlan620.sys
10:26:16.0221 6524 RTVLANPT - ok
10:26:16.0236 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
10:26:16.0252 6524 SamSs - ok
10:26:16.0267 6524 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
10:26:16.0267 6524 sbp2port - ok
10:26:16.0299 6524 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:26:16.0299 6524 SCardSvr - ok
10:26:16.0330 6524 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:26:16.0330 6524 scfilter - ok
10:26:16.0424 6524 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
10:26:16.0455 6524 Schedule - ok
10:26:16.0470 6524 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:26:16.0470 6524 SCPolicySvc - ok
10:26:16.0486 6524 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:26:16.0502 6524 SDRSVC - ok
10:26:16.0517 6524 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:26:16.0517 6524 secdrv - ok
10:26:16.0533 6524 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
10:26:16.0533 6524 seclogon - ok
10:26:16.0548 6524 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:26:16.0564 6524 SENS - ok
10:26:16.0564 6524 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:26:16.0564 6524 SensrSvc - ok
10:26:16.0580 6524 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:26:16.0580 6524 Serenum - ok
10:26:16.0595 6524 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:26:16.0595 6524 Serial - ok
10:26:16.0611 6524 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:26:16.0611 6524 sermouse - ok
10:26:16.0626 6524 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
10:26:16.0642 6524 SessionEnv - ok
10:26:16.0642 6524 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
10:26:16.0642 6524 sffdisk - ok
10:26:16.0658 6524 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:26:16.0673 6524 sffp_mmc - ok
10:26:16.0673 6524 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
10:26:16.0673 6524 sffp_sd - ok
10:26:16.0689 6524 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:26:16.0689 6524 sfloppy - ok
10:26:16.0720 6524 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:26:16.0720 6524 SharedAccess - ok
10:26:16.0751 6524 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:26:16.0751 6524 ShellHWDetection - ok
10:26:16.0782 6524 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:26:16.0782 6524 SiSRaid2 - ok
10:26:16.0798 6524 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:26:16.0798 6524 SiSRaid4 - ok
10:26:16.0860 6524 [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:26:16.0860 6524 SkypeUpdate - ok
10:26:16.0892 6524 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:26:16.0892 6524 Smb - ok
10:26:16.0923 6524 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:26:16.0923 6524 SNMPTRAP - ok
10:26:17.0016 6524 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
10:26:17.0016 6524 speedfan - ok
10:26:17.0032 6524 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:26:17.0032 6524 spldr - ok
10:26:17.0110 6524 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
10:26:17.0126 6524 Spooler - ok
10:26:17.0204 6524 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
10:26:17.0219 6524 sppsvc - ok
10:26:17.0235 6524 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:26:17.0250 6524 sppuinotify - ok
10:26:17.0406 6524 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
10:26:17.0406 6524 SQLWriter - ok
10:26:17.0656 6524 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:26:17.0656 6524 srv - ok
10:26:17.0687 6524 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:26:17.0687 6524 srv2 - ok
10:26:17.0734 6524 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:26:17.0734 6524 srvnet - ok
10:26:17.0765 6524 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:26:17.0781 6524 SSDPSRV - ok
10:26:17.0781 6524 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:26:17.0796 6524 SstpSvc - ok
10:26:17.0890 6524 [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
10:26:17.0890 6524 ssudmdm - ok
10:26:17.0937 6524 [ DB0768632C680B7C0D3AA92D80416893 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
10:26:17.0952 6524 Steam Client Service - ok
10:26:17.0984 6524 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:26:17.0984 6524 stexstor - ok
10:26:18.0015 6524 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
10:26:18.0046 6524 stisvc - ok
10:26:18.0046 6524 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:26:18.0046 6524 swenum - ok
10:26:18.0233 6524 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
10:26:18.0233 6524 SwitchBoard - ok
10:26:18.0264 6524 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:26:18.0280 6524 swprv - ok
10:26:18.0327 6524 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
10:26:18.0374 6524 SysMain - ok
10:26:18.0389 6524 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:26:18.0389 6524 TabletInputService - ok
10:26:18.0420 6524 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
10:26:18.0420 6524 TapiSrv - ok
10:26:18.0436 6524 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:26:18.0452 6524 TBS - ok
10:26:18.0545 6524 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:26:18.0545 6524 Tcpip - ok
10:26:18.0608 6524 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:26:18.0623 6524 TCPIP6 - ok
10:26:18.0654 6524 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:26:18.0654 6524 tcpipreg - ok
10:26:18.0686 6524 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:26:18.0686 6524 TDPIPE - ok
10:26:18.0748 6524 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:26:18.0748 6524 TDTCP - ok
10:26:18.0779 6524 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:26:18.0779 6524 tdx - ok
10:26:18.0951 6524 [ F67C21CC4195F6AFC447418FE163E156 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
10:26:18.0966 6524 TeamViewer8 - ok
10:26:18.0982 6524 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:26:18.0982 6524 TermDD - ok
10:26:19.0029 6524 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
10:26:19.0060 6524 TermService - ok
10:26:19.0076 6524 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:26:19.0076 6524 Themes - ok
10:26:19.0107 6524 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:26:19.0107 6524 THREADORDER - ok
10:26:19.0122 6524 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:26:19.0122 6524 TrkWks - ok
10:26:19.0169 6524 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:26:19.0185 6524 TrustedInstaller - ok
10:26:19.0216 6524 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:26:19.0216 6524 tssecsrv - ok
10:26:19.0232 6524 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:26:19.0232 6524 tunnel - ok
10:26:19.0247 6524 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:26:19.0263 6524 uagp35 - ok
10:26:19.0278 6524 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:26:19.0278 6524 udfs - ok
10:26:19.0310 6524 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:26:19.0310 6524 UI0Detect - ok
10:26:19.0356 6524 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
10:26:19.0356 6524 uliagpkx - ok
10:26:19.0372 6524 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:26:19.0372 6524 umbus - ok
10:26:19.0388 6524 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:26:19.0388 6524 UmPass - ok
10:26:19.0403 6524 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:26:19.0419 6524 upnphost - ok
10:26:19.0497 6524 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:26:19.0497 6524 usbccgp - ok
10:26:19.0497 6524 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
10:26:19.0512 6524 usbcir - ok
10:26:19.0559 6524 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:26:19.0559 6524 usbehci - ok
10:26:19.0637 6524 [ 5AE9C87A1ED4B243942B3FDDD902134B ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
10:26:19.0637 6524 usbfilter - ok
10:26:19.0668 6524 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:26:19.0684 6524 usbhub - ok
10:26:19.0746 6524 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:26:19.0746 6524 usbohci - ok
10:26:19.0778 6524 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:26:19.0778 6524 usbprint - ok
10:26:19.0809 6524 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:26:19.0809 6524 usbscan - ok
10:26:19.0840 6524 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:26:19.0840 6524 USBSTOR - ok
10:26:19.0918 6524 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:26:19.0918 6524 usbuhci - ok
10:26:19.0949 6524 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:26:19.0949 6524 UxSms - ok
10:26:19.0965 6524 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
10:26:19.0965 6524 VaultSvc - ok
10:26:20.0074 6524 [ 7887DCC002173AF8725F722DAFEB3DB9 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
10:26:20.0074 6524 VBoxDrv - ok
10:26:20.0090 6524 [ C2208BFB92D932C817903DAE8AA28C17 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
10:26:20.0105 6524 VBoxNetAdp - ok
10:26:20.0121 6524 [ 993F609959E53F07E718E214400EFD7D ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
10:26:20.0121 6524 VBoxNetFlt - ok
10:26:20.0168 6524 [ 2F0276BB46A6169FA384E634EC69237C ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
10:26:20.0168 6524 VBoxUSBMon - ok
10:26:20.0199 6524 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
10:26:20.0199 6524 vdrvroot - ok
10:26:20.0214 6524 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
10:26:20.0230 6524 vds - ok
10:26:20.0246 6524 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:26:20.0246 6524 vga - ok
10:26:20.0261 6524 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:26:20.0261 6524 VgaSave - ok
10:26:20.0277 6524 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
10:26:20.0277 6524 vhdmp - ok
10:26:20.0277 6524 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
10:26:20.0277 6524 viaide - ok
10:26:20.0339 6524 [ 93F279A2C172562050700A18FA84BE2E ] vncmirror C:\Windows\system32\DRIVERS\vncmirror.sys
10:26:20.0339 6524 vncmirror - ok
10:26:20.0511 6524 [ 74B5F5438D0051BE3A6D2FF91E245A64 ] vncserver C:\Program Files\RealVNC\VNC Server\vncserver.exe
10:26:20.0604 6524 vncserver - ok
10:26:20.0620 6524 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
10:26:20.0636 6524 volmgr - ok
10:26:20.0651 6524 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:26:20.0651 6524 volmgrx - ok
10:26:20.0729 6524 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
10:26:20.0729 6524 volsnap - ok
10:26:20.0760 6524 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:26:20.0760 6524 vsmraid - ok
10:26:20.0807 6524 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
10:26:20.0854 6524 VSS - ok
10:26:20.0870 6524 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:26:20.0870 6524 vwifibus - ok
10:26:20.0885 6524 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:26:20.0885 6524 W32Time - ok
10:26:20.0901 6524 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:26:20.0901 6524 WacomPen - ok
10:26:20.0948 6524 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:26:20.0948 6524 WANARP - ok
10:26:20.0948 6524 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:26:20.0948 6524 Wanarpv6 - ok
10:26:21.0041 6524 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:26:21.0088 6524 WatAdminSvc - ok
10:26:21.0150 6524 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
10:26:21.0197 6524 wbengine - ok
10:26:21.0213 6524 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:26:21.0213 6524 WbioSrvc - ok
10:26:21.0244 6524 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:26:21.0244 6524 wcncsvc - ok
10:26:21.0260 6524 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:26:21.0306 6524 WcsPlugInService - ok
10:26:21.0322 6524 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:26:21.0322 6524 Wd - ok
10:26:21.0400 6524 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:26:21.0400 6524 Wdf01000 - ok
10:26:21.0416 6524 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:26:21.0416 6524 WdiServiceHost - ok
10:26:21.0431 6524 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:26:21.0431 6524 WdiSystemHost - ok
10:26:21.0509 6524 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
10:26:21.0525 6524 WebClient - ok
10:26:21.0540 6524 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:26:21.0540 6524 Wecsvc - ok
10:26:21.0556 6524 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:26:21.0556 6524 wercplsupport - ok
10:26:21.0587 6524 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:26:21.0587 6524 WerSvc - ok
10:26:21.0618 6524 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:26:21.0618 6524 WfpLwf - ok
10:26:21.0634 6524 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:26:21.0634 6524 WIMMount - ok
10:26:21.0650 6524 WinDefend - ok
10:26:21.0650 6524 WinHttpAutoProxySvc - ok
10:26:21.0712 6524 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:26:21.0712 6524 Winmgmt - ok
10:26:21.0774 6524 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
10:26:21.0821 6524 WinRM - ok
10:26:21.0915 6524 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:26:21.0915 6524 WinUsb - ok
10:26:21.0962 6524 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:26:21.0993 6524 Wlansvc - ok
10:26:22.0164 6524 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:26:22.0164 6524 wlidsvc - ok
10:26:22.0196 6524 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:26:22.0196 6524 WmiAcpi - ok
10:26:22.0227 6524 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:26:22.0227 6524 wmiApSrv - ok
10:26:22.0258 6524 WMPNetworkSvc - ok
10:26:22.0274 6524 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:26:22.0289 6524 WPCSvc - ok
10:26:22.0289 6524 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:26:22.0305 6524 WPDBusEnum - ok
10:26:22.0320 6524 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:26:22.0320 6524 ws2ifsl - ok
10:26:22.0383 6524 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
10:26:22.0398 6524 wscsvc - ok
10:26:22.0398 6524 WSearch - ok
10:26:22.0508 6524 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:26:22.0586 6524 wuauserv - ok
10:26:22.0664 6524 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:26:22.0664 6524 WudfPf - ok
10:26:22.0695 6524 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:26:22.0695 6524 WUDFRd - ok
10:26:22.0773 6524 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:26:22.0773 6524 wudfsvc - ok
10:26:22.0788 6524 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:26:22.0804 6524 WwanSvc - ok
10:26:22.0820 6524 ================ Scan global ===============================
10:26:22.0851 6524 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:26:22.0913 6524 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:26:22.0929 6524 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:26:22.0960 6524 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:26:22.0976 6524 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:26:22.0991 6524 [Global] - ok
10:26:22.0991 6524 ================ Scan MBR ==================================
10:26:22.0991 6524 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:26:23.0397 6524 \Device\Harddisk0\DR0 - ok
10:26:23.0397 6524 ================ Scan VBR ==================================
10:26:23.0397 6524 [ E8CF6022E9555847C750A81FED7B358B ] \Device\Harddisk0\DR0\Partition1
10:26:23.0397 6524 \Device\Harddisk0\DR0\Partition1 - ok
10:26:23.0397 6524 ============================================================
10:26:23.0397 6524 Scan finished
10:26:23.0397 6524 ============================================================
10:26:23.0412 6836 Detected object count: 0
10:26:23.0412 6836 Actual detected object count: 0
10:27:31.0139 9204 ============================================================
10:27:31.0139 9204 Scan started
10:27:31.0139 9204 Mode: Manual;
10:27:31.0139 9204 ============================================================
10:27:32.0481 9204 ================ Scan system memory ========================
10:27:32.0481 9204 System memory - ok
10:27:32.0481 9204 ================ Scan services =============================
10:27:32.0606 9204 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:27:32.0606 9204 1394ohci - ok
10:27:32.0621 9204 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
10:27:32.0621 9204 ACPI - ok
10:27:32.0637 9204 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
10:27:32.0637 9204 AcpiPmi - ok
10:27:32.0793 9204 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:27:32.0793 9204 AdobeARMservice - ok
10:27:32.0887 9204 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:27:32.0887 9204 AdobeFlashPlayerUpdateSvc - ok
10:27:32.0918 9204 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:27:32.0918 9204 adp94xx - ok
10:27:32.0949 9204 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:27:32.0949 9204 adpahci - ok
10:27:32.0965 9204 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:27:32.0965 9204 adpu320 - ok
10:27:32.0996 9204 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:27:32.0996 9204 AeLookupSvc - ok
10:27:33.0058 9204 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
10:27:33.0058 9204 AFD - ok
10:27:33.0074 9204 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
10:27:33.0074 9204 agp440 - ok
10:27:33.0089 9204 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:27:33.0105 9204 ALG - ok
10:27:33.0121 9204 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
10:27:33.0121 9204 aliide - ok
10:27:33.0136 9204 [ 13AE8D986A8D61FBAFAF5CD3F8B3B89C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:27:33.0152 9204 AMD External Events Utility - ok
10:27:33.0183 9204 AMD FUEL Service - ok
10:27:33.0245 9204 [ D39CB7B4BB3A46BC84AD0CC1B8261FB8 ] amdhub30 C:\Windows\system32\DRIVERS\amdhub30.sys
10:27:33.0245 9204 amdhub30 - ok
10:27:33.0277 9204 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
10:27:33.0277 9204 amdide - ok
10:27:33.0277 9204 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
10:27:33.0277 9204 amdiox64 - ok
10:27:33.0308 9204 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:27:33.0323 9204 AmdK8 - ok
10:27:33.0573 9204 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:27:33.0635 9204 amdkmdag - ok
10:27:33.0682 9204 [ 4DD3339D3818356145A4945C1B4CB4C5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:27:33.0682 9204 amdkmdap - ok
10:27:33.0698 9204 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:27:33.0698 9204 AmdPPM - ok
10:27:33.0760 9204 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:27:33.0760 9204 amdsata - ok
10:27:33.0776 9204 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:27:33.0776 9204 amdsbs - ok
10:27:33.0838 9204 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:27:33.0838 9204 amdxata - ok
10:27:33.0854 9204 [ 990E896740E42C6B88284AFD1799AA56 ] amdxhc C:\Windows\system32\DRIVERS\amdxhc.sys
10:27:33.0854 9204 amdxhc - ok
10:27:33.0885 9204 [ F2154A205F4B784B61A72AEBC72BDC5F ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
10:27:33.0885 9204 AODDriver4.2 - ok
10:27:33.0916 9204 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
10:27:33.0916 9204 AppID - ok
10:27:33.0932 9204 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:27:33.0932 9204 AppIDSvc - ok
10:27:33.0947 9204 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
10:27:33.0947 9204 Appinfo - ok
10:27:33.0963 9204 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:27:33.0963 9204 arc - ok
10:27:33.0979 9204 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:27:33.0979 9204 arcsas - ok
10:27:34.0088 9204 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:27:34.0088 9204 aspnet_state - ok
10:27:34.0119 9204 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
10:27:34.0119 9204 aswFsBlk - ok
10:27:34.0135 9204 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
10:27:34.0135 9204 aswMonFlt - ok
10:27:34.0135 9204 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
10:27:34.0135 9204 aswRdr - ok
10:27:34.0166 9204 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
10:27:34.0166 9204 aswRvrt - ok
10:27:34.0197 9204 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
10:27:34.0213 9204 aswSnx - ok
10:27:34.0228 9204 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\Windows\system32\drivers\aswSP.sys
10:27:34.0228 9204 aswSP - ok
10:27:34.0244 9204 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
10:27:34.0244 9204 aswTdi - ok
10:27:34.0275 9204 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
10:27:34.0275 9204 aswVmm - ok
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
Re: Prosím o kontrolu logu/zřejmě spyware
10:27:34.0291 9204 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:27:34.0291 9204 AsyncMac - ok
10:27:34.0306 9204 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
10:27:34.0306 9204 atapi - ok
10:27:34.0337 9204 [ 37CB595C0AB20ECBFA5170D3185690DB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
10:27:34.0337 9204 AtiHDAudioService - ok
10:27:34.0400 9204 [ FE8349936B49F7E315A629FB0AF4F2AB ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
10:27:34.0415 9204 AtiHdmiService - ok
10:27:34.0665 9204 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:27:34.0727 9204 atikmdag - ok
10:27:34.0774 9204 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:27:34.0774 9204 AudioEndpointBuilder - ok
10:27:34.0790 9204 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:27:34.0805 9204 AudioSrv - ok
10:27:34.0852 9204 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:27:34.0852 9204 avast! Antivirus - ok
10:27:34.0883 9204 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:27:34.0883 9204 AxInstSV - ok
10:27:35.0008 9204 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:27:35.0024 9204 b06bdrv - ok
10:27:35.0071 9204 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:27:35.0071 9204 b57nd60a - ok
10:27:35.0211 9204 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:27:35.0227 9204 BDESVC - ok
10:27:35.0289 9204 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:27:35.0289 9204 Beep - ok
10:27:35.0461 9204 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
10:27:35.0461 9204 BFE - ok
10:27:35.0507 9204 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
10:27:35.0507 9204 BITS - ok
10:27:35.0523 9204 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:27:35.0523 9204 blbdrive - ok
10:27:35.0585 9204 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:27:35.0585 9204 bowser - ok
10:27:35.0617 9204 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:27:35.0617 9204 BrFiltLo - ok
10:27:35.0617 9204 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:27:35.0617 9204 BrFiltUp - ok
10:27:35.0695 9204 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
10:27:35.0695 9204 Browser - ok
10:27:35.0710 9204 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:27:35.0710 9204 Brserid - ok
10:27:35.0726 9204 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:27:35.0726 9204 BrSerWdm - ok
10:27:35.0741 9204 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:27:35.0741 9204 BrUsbMdm - ok
10:27:35.0741 9204 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:27:35.0741 9204 BrUsbSer - ok
10:27:35.0757 9204 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:27:35.0757 9204 BTHMODEM - ok
10:27:35.0788 9204 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:27:35.0788 9204 bthserv - ok
10:27:35.0804 9204 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:27:35.0804 9204 cdfs - ok
10:27:35.0819 9204 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:27:35.0819 9204 cdrom - ok
10:27:35.0835 9204 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
10:27:35.0835 9204 CertPropSvc - ok
10:27:35.0851 9204 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:27:35.0851 9204 circlass - ok
10:27:35.0866 9204 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:27:35.0882 9204 CLFS - ok
10:27:35.0929 9204 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:27:35.0929 9204 clr_optimization_v2.0.50727_32 - ok
10:27:35.0975 9204 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:27:35.0975 9204 clr_optimization_v2.0.50727_64 - ok
10:27:36.0085 9204 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:27:36.0085 9204 clr_optimization_v4.0.30319_32 - ok
10:27:36.0116 9204 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:27:36.0116 9204 clr_optimization_v4.0.30319_64 - ok
10:27:36.0147 9204 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:27:36.0147 9204 CmBatt - ok
10:27:36.0163 9204 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
10:27:36.0163 9204 cmdide - ok
10:27:36.0225 9204 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
10:27:36.0225 9204 CNG - ok
10:27:36.0241 9204 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:27:36.0241 9204 Compbatt - ok
10:27:36.0256 9204 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:27:36.0256 9204 CompositeBus - ok
10:27:36.0256 9204 COMSysApp - ok
10:27:36.0272 9204 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:27:36.0272 9204 crcdisk - ok
10:27:36.0319 9204 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:27:36.0334 9204 CryptSvc - ok
10:27:36.0365 9204 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:27:36.0365 9204 DcomLaunch - ok
10:27:36.0397 9204 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:27:36.0397 9204 defragsvc - ok
10:27:36.0475 9204 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:27:36.0475 9204 DfsC - ok
10:27:36.0537 9204 [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
10:27:36.0537 9204 dg_ssudbus - ok
10:27:36.0568 9204 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
10:27:36.0568 9204 Dhcp - ok
10:27:36.0599 9204 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:27:36.0599 9204 discache - ok
10:27:36.0599 9204 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:27:36.0599 9204 Disk - ok
10:27:36.0662 9204 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:27:36.0662 9204 Dnscache - ok
10:27:36.0677 9204 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
10:27:36.0693 9204 dot3svc - ok
10:27:36.0693 9204 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
10:27:36.0709 9204 DPS - ok
10:27:36.0724 9204 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:27:36.0724 9204 drmkaud - ok
10:27:36.0755 9204 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:27:36.0755 9204 dtsoftbus01 - ok
10:27:36.0818 9204 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:27:36.0833 9204 DXGKrnl - ok
10:27:36.0865 9204 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:27:36.0865 9204 EapHost - ok
10:27:36.0958 9204 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:27:36.0974 9204 ebdrv - ok
10:27:37.0052 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
10:27:37.0052 9204 EFS - ok
10:27:37.0114 9204 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:27:37.0130 9204 ehRecvr - ok
10:27:37.0145 9204 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:27:37.0145 9204 ehSched - ok
10:27:37.0161 9204 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:27:37.0177 9204 elxstor - ok
10:27:37.0177 9204 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
10:27:37.0177 9204 ErrDev - ok
10:27:37.0208 9204 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:27:37.0223 9204 EventSystem - ok
10:27:37.0239 9204 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:27:37.0239 9204 exfat - ok
10:27:37.0255 9204 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:27:37.0255 9204 fastfat - ok
10:27:37.0286 9204 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
10:27:37.0286 9204 Fax - ok
10:27:37.0317 9204 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:27:37.0317 9204 fdc - ok
10:27:37.0333 9204 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:27:37.0333 9204 fdPHost - ok
10:27:37.0348 9204 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:27:37.0348 9204 FDResPub - ok
10:27:37.0364 9204 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:27:37.0364 9204 FileInfo - ok
10:27:37.0364 9204 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:27:37.0364 9204 Filetrace - ok
10:27:37.0489 9204 [ 1A18EBD87AA9FBF6EFE8CFADA08D0275 ] FirebirdGuardianDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
10:27:37.0489 9204 FirebirdGuardianDefaultInstance - ok
10:27:37.0582 9204 [ 53C740150C082AAF3C7D21C1D6A9FF98 ] FirebirdServerDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
10:27:37.0598 9204 FirebirdServerDefaultInstance - ok
10:27:37.0629 9204 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:27:37.0629 9204 flpydisk - ok
10:27:37.0645 9204 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:27:37.0645 9204 FltMgr - ok
10:27:37.0723 9204 [ BC00505CFDA789ED3BE95D2FF38C4875 ] FontCache C:\Windows\system32\FntCache.dll
10:27:37.0738 9204 FontCache - ok
10:27:37.0785 9204 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:27:37.0785 9204 FontCache3.0.0.0 - ok
10:27:37.0816 9204 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:27:37.0816 9204 FsDepends - ok
10:27:37.0894 9204 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:27:37.0894 9204 Fs_Rec - ok
10:27:37.0957 9204 [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:27:37.0972 9204 fvevol - ok
10:27:37.0972 9204 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:27:37.0972 9204 gagp30kx - ok
10:27:38.0019 9204 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
10:27:38.0019 9204 gpsvc - ok
10:27:38.0050 9204 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:38.0050 9204 gupdate - ok
10:27:38.0066 9204 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:38.0066 9204 gupdatem - ok
10:27:38.0097 9204 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
10:27:38.0097 9204 hamachi - ok
10:27:38.0206 9204 [ 243424EDDC9563B7912268B54307783D ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
10:27:38.0222 9204 Hamachi2Svc - ok
10:27:38.0222 9204 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:27:38.0222 9204 hcw85cir - ok
10:27:38.0253 9204 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:27:38.0253 9204 HdAudAddService - ok
10:27:38.0284 9204 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:27:38.0284 9204 HDAudBus - ok
10:27:38.0300 9204 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:27:38.0300 9204 HidBatt - ok
10:27:38.0300 9204 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:27:38.0300 9204 HidBth - ok
10:27:38.0315 9204 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:27:38.0315 9204 HidIr - ok
10:27:38.0331 9204 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:27:38.0347 9204 hidserv - ok
10:27:38.0362 9204 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:27:38.0362 9204 HidUsb - ok
10:27:38.0378 9204 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:27:38.0378 9204 hkmsvc - ok
10:27:38.0409 9204 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:27:38.0409 9204 HomeGroupListener - ok
10:27:38.0425 9204 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:27:38.0440 9204 HomeGroupProvider - ok
10:27:38.0440 9204 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
10:27:38.0440 9204 HpSAMD - ok
10:27:38.0471 9204 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:27:38.0471 9204 HTTP - ok
10:27:38.0503 9204 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:27:38.0503 9204 hwpolicy - ok
10:27:38.0518 9204 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:27:38.0518 9204 i8042prt - ok
10:27:38.0549 9204 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:27:38.0549 9204 iaStorV - ok
10:27:38.0612 9204 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:27:38.0612 9204 idsvc - ok
10:27:38.0627 9204 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:27:38.0627 9204 iirsp - ok
10:27:38.0674 9204 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
10:27:38.0674 9204 IKEEXT - ok
10:27:38.0783 9204 [ 4BBB5A55EEB5EC11B20FCBB4CBB49357 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:27:38.0799 9204 IntcAzAudAddService - ok
10:27:38.0830 9204 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
10:27:38.0830 9204 intelide - ok
10:27:38.0846 9204 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:27:38.0846 9204 intelppm - ok
10:27:38.0877 9204 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:27:38.0877 9204 IPBusEnum - ok
10:27:38.0893 9204 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:27:38.0893 9204 IpFilterDriver - ok
10:27:38.0908 9204 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:27:38.0924 9204 iphlpsvc - ok
10:27:38.0924 9204 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:27:38.0924 9204 IPMIDRV - ok
10:27:38.0971 9204 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:27:38.0971 9204 IPNAT - ok
10:27:38.0986 9204 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:27:38.0986 9204 IRENUM - ok
10:27:39.0002 9204 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
10:27:39.0002 9204 isapnp - ok
10:27:39.0017 9204 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:27:39.0017 9204 iScsiPrt - ok
10:27:39.0033 9204 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:27:39.0033 9204 kbdclass - ok
10:27:39.0049 9204 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:27:39.0049 9204 kbdhid - ok
10:27:39.0064 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
10:27:39.0064 9204 KeyIso - ok
10:27:39.0127 9204 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:27:39.0142 9204 KSecDD - ok
10:27:39.0189 9204 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:27:39.0205 9204 KSecPkg - ok
10:27:39.0220 9204 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:27:39.0220 9204 ksthunk - ok
10:27:39.0251 9204 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:27:39.0251 9204 KtmRm - ok
10:27:39.0298 9204 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:27:39.0298 9204 LanmanServer - ok
10:27:39.0329 9204 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:27:39.0329 9204 LanmanWorkstation - ok
10:27:39.0392 9204 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:27:39.0392 9204 lltdio - ok
10:27:39.0423 9204 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:27:39.0423 9204 lltdsvc - ok
10:27:39.0439 9204 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:27:39.0439 9204 lmhosts - ok
10:27:39.0454 9204 [ 02468469C450CD16FB66A56FAB70138B ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
10:27:39.0454 9204 LMIGuardianSvc - ok
10:27:39.0517 9204 LMIInfo - ok
10:27:39.0579 9204 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
10:27:39.0579 9204 lmimirr - ok
10:27:39.0579 9204 LMIRfsClientNP - ok
10:27:39.0657 9204 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
10:27:39.0657 9204 LMIRfsDriver - ok
10:27:39.0673 9204 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:27:39.0673 9204 LSI_FC - ok
10:27:39.0704 9204 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:27:39.0704 9204 LSI_SAS - ok
10:27:39.0719 9204 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:27:39.0719 9204 LSI_SAS2 - ok
10:27:39.0735 9204 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:27:39.0735 9204 LSI_SCSI - ok
10:27:39.0751 9204 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:27:39.0751 9204 luafv - ok
10:27:39.0782 9204 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:27:39.0782 9204 Mcx2Svc - ok
10:27:39.0813 9204 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:27:39.0813 9204 megasas - ok
10:27:39.0829 9204 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:27:39.0829 9204 MegaSR - ok
10:27:39.0844 9204 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:27:39.0844 9204 MMCSS - ok
10:27:39.0860 9204 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:27:39.0860 9204 Modem - ok
10:27:39.0938 9204 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:27:39.0938 9204 monitor - ok
10:27:39.0953 9204 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:27:39.0953 9204 mouclass - ok
10:27:39.0953 9204 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:27:39.0953 9204 mouhid - ok
10:27:39.0969 9204 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:27:39.0969 9204 mountmgr - ok
10:27:39.0985 9204 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
10:27:39.0985 9204 mpio - ok
10:27:40.0000 9204 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:27:40.0000 9204 mpsdrv - ok
10:27:40.0047 9204 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:27:40.0047 9204 MpsSvc - ok
10:27:40.0063 9204 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:27:40.0078 9204 MRxDAV - ok
10:27:40.0141 9204 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:27:40.0141 9204 mrxsmb - ok
10:27:40.0172 9204 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:27:40.0172 9204 mrxsmb10 - ok
10:27:40.0187 9204 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:27:40.0187 9204 mrxsmb20 - ok
10:27:40.0203 9204 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
10:27:40.0203 9204 msahci - ok
10:27:40.0234 9204 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
10:27:40.0234 9204 msdsm - ok
10:27:40.0250 9204 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:27:40.0250 9204 MSDTC - ok
10:27:40.0265 9204 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:27:40.0265 9204 Msfs - ok
10:27:40.0281 9204 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:27:40.0281 9204 mshidkmdf - ok
10:27:40.0297 9204 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
10:27:40.0297 9204 msisadrv - ok
10:27:40.0312 9204 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:27:40.0328 9204 MSiSCSI - ok
10:27:40.0328 9204 msiserver - ok
10:27:40.0343 9204 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:27:40.0343 9204 MSKSSRV - ok
10:27:40.0359 9204 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:27:40.0359 9204 MSPCLOCK - ok
10:27:40.0359 9204 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:27:40.0359 9204 MSPQM - ok
10:27:40.0390 9204 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:27:40.0390 9204 MsRPC - ok
10:27:40.0406 9204 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:27:40.0406 9204 mssmbios - ok
10:27:40.0406 9204 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:27:40.0406 9204 MSTEE - ok
10:27:40.0437 9204 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:27:40.0437 9204 MTConfig - ok
10:27:40.0453 9204 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:27:40.0453 9204 Mup - ok
10:27:40.0499 9204 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
10:27:40.0499 9204 napagent - ok
10:27:40.0515 9204 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:27:40.0515 9204 NativeWifiP - ok
10:27:40.0562 9204 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
10:27:40.0562 9204 NDIS - ok
10:27:40.0577 9204 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:27:40.0577 9204 NdisCap - ok
10:27:40.0577 9204 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:27:40.0577 9204 NdisTapi - ok
10:27:40.0593 9204 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:27:40.0593 9204 Ndisuio - ok
10:27:40.0624 9204 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:27:40.0624 9204 NdisWan - ok
10:27:40.0624 9204 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:27:40.0624 9204 NDProxy - ok
10:27:40.0640 9204 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:27:40.0655 9204 NetBIOS - ok
10:27:40.0671 9204 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:27:40.0671 9204 NetBT - ok
10:27:40.0687 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
10:27:40.0687 9204 Netlogon - ok
10:27:40.0718 9204 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:27:40.0718 9204 Netman - ok
10:27:40.0780 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0780 9204 NetMsmqActivator - ok
10:27:40.0780 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0796 9204 NetPipeActivator - ok
10:27:40.0811 9204 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:27:40.0811 9204 netprofm - ok
10:27:40.0827 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0827 9204 NetTcpActivator - ok
10:27:40.0827 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0827 9204 NetTcpPortSharing - ok
10:27:40.0843 9204 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:27:40.0843 9204 nfrd960 - ok
10:27:40.0858 9204 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:27:40.0858 9204 NlaSvc - ok
10:27:40.0874 9204 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:27:40.0874 9204 Npfs - ok
10:27:40.0889 9204 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:27:40.0905 9204 nsi - ok
10:27:40.0921 9204 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:27:40.0921 9204 nsiproxy - ok
10:27:40.0967 9204 [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:27:40.0983 9204 Ntfs - ok
10:27:40.0999 9204 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:27:40.0999 9204 Null - ok
10:27:40.0999 9204 nvlddmkm - ok
10:27:41.0030 9204 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:27:41.0030 9204 nvraid - ok
10:27:41.0061 9204 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:27:41.0061 9204 nvstor - ok
10:27:41.0077 9204 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
10:27:41.0077 9204 nv_agp - ok
10:27:41.0092 9204 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:27:41.0092 9204 ohci1394 - ok
10:27:41.0170 9204 [ 11E0B35479C895888BA3D7F619DCFFF3 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:27:41.0170 9204 ose64 - ok
10:27:41.0357 9204 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:27:41.0389 9204 osppsvc - ok
10:27:41.0435 9204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:27:41.0451 9204 p2pimsvc - ok
10:27:41.0482 9204 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:27:41.0498 9204 p2psvc - ok
10:27:41.0529 9204 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:27:41.0529 9204 Parport - ok
10:27:41.0591 9204 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:27:41.0591 9204 partmgr - ok
10:27:41.0623 9204 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:27:41.0623 9204 PcaSvc - ok
10:27:41.0638 9204 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
10:27:41.0638 9204 pci - ok
10:27:41.0654 9204 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
10:27:41.0654 9204 pciide - ok
10:27:41.0669 9204 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:27:41.0669 9204 pcmcia - ok
10:27:41.0747 9204 [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
10:27:41.0747 9204 pcouffin - ok
10:27:41.0763 9204 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:27:41.0763 9204 pcw - ok
10:27:41.0794 9204 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:27:41.0794 9204 PEAUTH - ok
10:27:41.0857 9204 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:27:41.0857 9204 PerfHost - ok
10:27:41.0919 9204 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
10:27:41.0919 9204 pla - ok
10:27:41.0997 9204 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:27:42.0013 9204 PlugPlay - ok
10:27:42.0028 9204 PnkBstrA - ok
10:27:42.0028 9204 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:27:42.0044 9204 PNRPAutoReg - ok
10:27:42.0044 9204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:27:42.0059 9204 PNRPsvc - ok
10:27:42.0091 9204 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:27:42.0091 9204 PolicyAgent - ok
10:27:42.0122 9204 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:27:42.0122 9204 Power - ok
10:27:42.0153 9204 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:27:42.0153 9204 PptpMiniport - ok
10:27:42.0169 9204 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:27:42.0169 9204 Processor - ok
10:27:42.0247 9204 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
10:27:42.0247 9204 ProfSvc - ok
10:27:42.0262 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:27:42.0278 9204 ProtectedStorage - ok
10:27:42.0293 9204 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:27:42.0293 9204 Psched - ok
10:27:42.0356 9204 [ BC08F7F3C53CBEE68670ED1314E290FD ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:27:42.0356 9204 PxHlpa64 - ok
10:27:42.0418 9204 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:27:42.0434 9204 ql2300 - ok
10:27:42.0449 9204 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:27:42.0449 9204 ql40xx - ok
10:27:42.0496 9204 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:27:42.0496 9204 QWAVE - ok
10:27:42.0512 9204 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:27:42.0512 9204 QWAVEdrv - ok
10:27:42.0512 9204 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:27:42.0512 9204 RasAcd - ok
10:27:42.0543 9204 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:27:42.0543 9204 RasAgileVpn - ok
10:27:42.0559 9204 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:27:42.0559 9204 RasAuto - ok
10:27:42.0559 9204 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:27:42.0559 9204 Rasl2tp - ok
10:27:42.0574 9204 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
10:27:42.0590 9204 RasMan - ok
10:27:42.0605 9204 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:27:42.0605 9204 RasPppoe - ok
10:27:42.0621 9204 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:27:42.0621 9204 RasSstp - ok
10:27:42.0652 9204 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:27:42.0652 9204 rdbss - ok
10:27:42.0683 9204 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:27:42.0683 9204 rdpbus - ok
10:27:42.0683 9204 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:27:42.0683 9204 RDPCDD - ok
10:27:42.0715 9204 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:27:42.0715 9204 RDPENCDD - ok
10:27:42.0715 9204 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:27:42.0715 9204 RDPREFMP - ok
10:27:42.0777 9204 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:27:42.0793 9204 RDPWD - ok
10:27:42.0808 9204 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:27:42.0808 9204 rdyboost - ok
10:27:42.0839 9204 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:27:42.0855 9204 RemoteAccess - ok
10:27:42.0871 9204 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:27:42.0886 9204 RemoteRegistry - ok
10:27:42.0886 9204 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:27:42.0902 9204 RpcEptMapper - ok
10:27:42.0902 9204 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:27:42.0917 9204 RpcLocator - ok
10:27:42.0933 9204 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
10:27:42.0933 9204 RpcSs - ok
10:27:42.0964 9204 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:27:42.0980 9204 rspndr - ok
10:27:43.0011 9204 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:27:43.0027 9204 RTL8167 - ok
10:27:43.0042 9204 [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
10:27:43.0058 9204 RtNdPt60 - ok
10:27:43.0073 9204 [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] RTTEAMPT C:\Windows\system32\DRIVERS\RtTeam60.sys
10:27:43.0073 9204 RTTEAMPT - ok
10:27:43.0105 9204 [ ED0624ED83121E1BC141F49B1316CAA0 ] RTVLANPT C:\Windows\system32\DRIVERS\RtVlan620.sys
10:27:43.0105 9204 RTVLANPT - ok
10:27:43.0120 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
10:27:43.0120 9204 SamSs - ok
10:27:43.0136 9204 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
10:27:43.0136 9204 sbp2port - ok
10:27:43.0167 9204 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:27:43.0167 9204 SCardSvr - ok
10:27:43.0198 9204 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:27:43.0198 9204 scfilter - ok
10:27:43.0292 9204 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
10:27:43.0307 9204 Schedule - ok
10:27:43.0323 9204 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:27:43.0323 9204 SCPolicySvc - ok
10:27:43.0354 9204 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:27:43.0370 9204 SDRSVC - ok
10:27:43.0385 9204 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:27:43.0385 9204 secdrv - ok
10:27:43.0385 9204 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
10:27:43.0385 9204 seclogon - ok
10:27:43.0401 9204 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:27:43.0401 9204 SENS - ok
10:27:43.0417 9204 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:27:43.0417 9204 SensrSvc - ok
10:27:43.0432 9204 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:27:43.0432 9204 Serenum - ok
10:27:43.0448 9204 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:27:43.0448 9204 Serial - ok
10:27:43.0463 9204 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:27:43.0463 9204 sermouse - ok
10:27:43.0479 9204 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
10:27:43.0479 9204 SessionEnv - ok
10:27:43.0495 9204 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
10:27:43.0495 9204 sffdisk - ok
10:27:43.0510 9204 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:27:43.0510 9204 sffp_mmc - ok
10:27:43.0526 9204 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
10:27:43.0526 9204 sffp_sd - ok
10:27:43.0541 9204 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:27:43.0541 9204 sfloppy - ok
10:27:43.0573 9204 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:27:43.0573 9204 SharedAccess - ok
10:27:43.0604 9204 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:27:43.0604 9204 ShellHWDetection - ok
10:27:43.0619 9204 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:27:43.0619 9204 SiSRaid2 - ok
10:27:43.0635 9204 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:27:43.0635 9204 SiSRaid4 - ok
10:27:43.0697 9204 [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:27:43.0697 9204 SkypeUpdate - ok
10:27:43.0713 9204 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:27:43.0713 9204 Smb - ok
10:27:43.0744 9204 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:27:43.0744 9204 SNMPTRAP - ok
10:27:43.0807 9204 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
10:27:43.0822 9204 speedfan - ok
10:27:43.0838 9204 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:27:43.0838 9204 spldr - ok
10:27:43.0916 9204 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
10:27:43.0931 9204 Spooler - ok
10:27:44.0009 9204 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
10:27:44.0025 9204 sppsvc - ok
10:27:44.0041 9204 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:27:44.0041 9204 sppuinotify - ok
10:27:44.0150 9204 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
10:27:44.0150 9204 SQLWriter - ok
10:27:44.0228 9204 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:27:44.0228 9204 srv - ok
10:27:44.0243 9204 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:27:44.0243 9204 srv2 - ok
10:27:44.0290 9204 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:27:44.0290 9204 srvnet - ok
10:27:44.0321 9204 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:27:44.0321 9204 SSDPSRV - ok
10:27:44.0337 9204 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:27:44.0337 9204 SstpSvc - ok
10:27:44.0415 9204 [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
10:27:44.0415 9204 ssudmdm - ok
10:27:44.0446 9204 [ DB0768632C680B7C0D3AA92D80416893 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
10:27:44.0462 9204 Steam Client Service - ok
10:27:44.0477 9204 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:27:44.0477 9204 stexstor - ok
10:27:44.0524 9204 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
10:27:44.0540 9204 stisvc - ok
10:27:44.0633 9204 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:27:44.0633 9204 swenum - ok
10:27:44.0821 9204 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
10:27:44.0821 9204 SwitchBoard - ok
10:27:44.0867 9204 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:27:44.0883 9204 swprv - ok
10:27:44.0930 9204 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
10:27:44.0945 9204 SysMain - ok
10:27:44.0961 9204 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:27:44.0961 9204 TabletInputService - ok
10:27:44.0992 9204 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
10:27:44.0992 9204 TapiSrv - ok
10:27:45.0008 9204 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:27:45.0008 9204 TBS - ok
10:27:45.0117 9204 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:27:45.0133 9204 Tcpip - ok
10:27:45.0195 9204 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:27:45.0195 9204 TCPIP6 - ok
10:27:45.0226 9204 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:27:45.0226 9204 tcpipreg - ok
10:27:45.0242 9204 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:27:45.0242 9204 TDPIPE - ok
10:27:45.0289 9204 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:27:45.0289 9204 TDTCP - ok
10:27:45.0320 9204 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:27:45.0320 9204 tdx - ok
10:27:45.0476 9204 [ F67C21CC4195F6AFC447418FE163E156 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
10:27:45.0491 9204 TeamViewer8 - ok
10:27:45.0507 9204 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:27:45.0507 9204 TermDD - ok
10:27:45.0554 9204 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
10:27:45.0569 9204 TermService - ok
10:27:45.0569 9204 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:27:45.0569 9204 Themes - ok
10:27:45.0601 9204 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:27:45.0616 9204 THREADORDER - ok
10:27:45.0632 9204 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:27:45.0632 9204 TrkWks - ok
10:27:45.0679 9204 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:27:45.0679 9204 TrustedInstaller - ok
10:27:45.0710 9204 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:27:45.0710 9204 tssecsrv - ok
10:27:45.0725 9204 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:27:45.0725 9204 tunnel - ok
10:27:45.0741 9204 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:27:45.0741 9204 uagp35 - ok
10:27:45.0772 9204 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:27:45.0772 9204 udfs - ok
10:27:45.0803 9204 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:27:45.0803 9204 UI0Detect - ok
10:27:45.0819 9204 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
10:27:45.0819 9204 uliagpkx - ok
10:27:45.0835 9204 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:27:45.0835 9204 umbus - ok
10:27:45.0850 9204 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:27:45.0850 9204 UmPass - ok
10:27:45.0866 9204 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:27:45.0866 9204 upnphost - ok
10:27:45.0944 9204 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:27:45.0944 9204 usbccgp - ok
10:27:45.0959 9204 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
10:27:45.0959 9204 usbcir - ok
10:27:46.0006 9204 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:27:46.0006 9204 usbehci - ok
10:27:46.0069 9204 [ 5AE9C87A1ED4B243942B3FDDD902134B ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
10:27:46.0084 9204 usbfilter - ok
10:27:46.0100 9204 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:27:46.0100 9204 usbhub - ok
10:27:46.0162 9204 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:27:46.0178 9204 usbohci - ok
10:27:46.0193 9204 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:27:46.0193 9204 usbprint - ok
10:27:46.0225 9204 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:27:46.0225 9204 usbscan - ok
10:27:46.0256 9204 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:27:46.0256 9204 USBSTOR - ok
10:27:46.0318 9204 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:27:46.0334 9204 usbuhci - ok
10:27:46.0365 9204 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:27:46.0365 9204 UxSms - ok
10:27:46.0381 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
10:27:46.0381 9204 VaultSvc - ok
10:27:46.0443 9204 [ 7887DCC002173AF8725F722DAFEB3DB9 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
10:27:46.0443 9204 VBoxDrv - ok
10:27:46.0459 9204 [ C2208BFB92D932C817903DAE8AA28C17 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
10:27:46.0474 9204 VBoxNetAdp - ok
10:27:46.0490 9204 [ 993F609959E53F07E718E214400EFD7D ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
10:27:46.0490 9204 VBoxNetFlt - ok
10:27:46.0552 9204 [ 2F0276BB46A6169FA384E634EC69237C ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
10:27:46.0552 9204 VBoxUSBMon - ok
10:27:46.0583 9204 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
10:27:46.0583 9204 vdrvroot - ok
10:27:46.0615 9204 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
10:27:46.0615 9204 vds - ok
10:27:46.0630 9204 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:27:46.0630 9204 vga - ok
10:27:46.0646 9204 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:27:46.0646 9204 VgaSave - ok
10:27:46.0661 9204 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
10:27:46.0661 9204 vhdmp - ok
10:27:46.0677 9204 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
10:27:46.0677 9204 viaide - ok
10:27:46.0739 9204 [ 93F279A2C172562050700A18FA84BE2E ] vncmirror C:\Windows\system32\DRIVERS\vncmirror.sys
10:27:46.0739 9204 vncmirror - ok
10:27:46.0911 9204 [ 74B5F5438D0051BE3A6D2FF91E245A64 ] vncserver C:\Program Files\RealVNC\VNC Server\vncserver.exe
10:27:46.0942 9204 vncserver - ok
10:27:46.0958 9204 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
10:27:46.0958 9204 volmgr - ok
10:27:46.0989 9204 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:27:46.0989 9204 volmgrx - ok
10:27:47.0067 9204 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
10:27:47.0067 9204 volsnap - ok
10:27:47.0083 9204 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:27:47.0083 9204 vsmraid - ok
10:27:47.0129 9204 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
10:27:47.0145 9204 VSS - ok
10:27:47.0161 9204 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:27:47.0161 9204 vwifibus - ok
10:27:47.0176 9204 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:27:47.0176 9204 W32Time - ok
10:27:47.0192 9204 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:27:47.0192 9204 WacomPen - ok
10:27:47.0223 9204 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:27:47.0223 9204 WANARP - ok
10:27:47.0223 9204 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:27:47.0223 9204 Wanarpv6 - ok
10:27:47.0301 9204 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:27:47.0301 9204 WatAdminSvc - ok
10:27:47.0395 9204 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
10:27:47.0395 9204 wbengine - ok
10:27:47.0426 9204 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:27:47.0426 9204 WbioSrvc - ok
10:27:47.0504 9204 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:27:47.0504 9204 wcncsvc - ok
10:27:47.0519 9204 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:27:47.0519 9204 WcsPlugInService - ok
10:27:47.0535 9204 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:27:47.0535 9204 Wd - ok
10:27:47.0613 9204 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:27:47.0629 9204 Wdf01000 - ok
10:27:47.0644 9204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:27:47.0644 9204 WdiServiceHost - ok
10:27:47.0644 9204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:27:47.0660 9204 WdiSystemHost - ok
10:27:47.0738 9204 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
10:27:47.0738 9204 WebClient - ok
10:27:47.0769 9204 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:27:47.0769 9204 Wecsvc - ok
10:27:47.0785 9204 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:27:47.0785 9204 wercplsupport - ok
10:27:47.0800 9204 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:27:47.0800 9204 WerSvc - ok
10:27:47.0831 9204 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:27:47.0831 9204 WfpLwf - ok
10:27:47.0831 9204 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:27:47.0831 9204 WIMMount - ok
10:27:47.0847 9204 WinDefend - ok
10:27:47.0863 9204 WinHttpAutoProxySvc - ok
10:27:47.0909 9204 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:27:47.0909 9204 Winmgmt - ok
10:27:47.0972 9204 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
10:27:47.0987 9204 WinRM - ok
10:27:48.0065 9204 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:27:48.0065 9204 WinUsb - ok
10:27:48.0112 9204 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:27:48.0128 9204 Wlansvc - ok
10:27:48.0253 9204 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:27:48.0268 9204 wlidsvc - ok
10:27:48.0299 9204 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:27:48.0299 9204 WmiAcpi - ok
10:27:48.0331 9204 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:27:48.0331 9204 wmiApSrv - ok
10:27:48.0362 9204 WMPNetworkSvc - ok
10:27:48.0377 9204 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:27:48.0393 9204 WPCSvc - ok
10:27:48.0393 9204 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:27:48.0393 9204 WPDBusEnum - ok
10:27:48.0409 9204 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:27:48.0409 9204 ws2ifsl - ok
10:27:48.0487 9204 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
10:27:48.0487 9204 wscsvc - ok
10:27:48.0487 9204 WSearch - ok
10:27:48.0596 9204 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:27:48.0611 9204 wuauserv - ok
10:27:48.0674 9204 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:27:48.0674 9204 WudfPf - ok
10:27:48.0705 9204 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:27:48.0705 9204 WUDFRd - ok
10:27:48.0721 9204 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:27:48.0721 9204 wudfsvc - ok
10:27:48.0736 9204 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:27:48.0752 9204 WwanSvc - ok
10:27:48.0752 9204 ================ Scan global ===============================
10:27:48.0767 9204 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:27:48.0830 9204 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:27:48.0845 9204 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:27:48.0877 9204 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:27:48.0908 9204 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:27:48.0908 9204 [Global] - ok
10:27:48.0908 9204 ================ Scan MBR ==================================
10:27:48.0923 9204 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:27:49.0313 9204 \Device\Harddisk0\DR0 - ok
10:27:49.0313 9204 ================ Scan VBR ==================================
10:27:49.0313 9204 [ E8CF6022E9555847C750A81FED7B358B ] \Device\Harddisk0\DR0\Partition1
10:27:49.0313 9204 \Device\Harddisk0\DR0\Partition1 - ok
10:27:49.0313 9204 ============================================================
10:27:49.0313 9204 Scan finished
10:27:49.0313 9204 ============================================================
10:27:49.0329 7528 Detected object count: 0
10:27:49.0329 7528 Actual detected object count: 0
10:27:52.0621 7012 Deinitialize success
10:27:34.0291 9204 AsyncMac - ok
10:27:34.0306 9204 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
10:27:34.0306 9204 atapi - ok
10:27:34.0337 9204 [ 37CB595C0AB20ECBFA5170D3185690DB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
10:27:34.0337 9204 AtiHDAudioService - ok
10:27:34.0400 9204 [ FE8349936B49F7E315A629FB0AF4F2AB ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
10:27:34.0415 9204 AtiHdmiService - ok
10:27:34.0665 9204 [ 1BF58E56CA271FEF678DC3A9996FAB0A ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:27:34.0727 9204 atikmdag - ok
10:27:34.0774 9204 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:27:34.0774 9204 AudioEndpointBuilder - ok
10:27:34.0790 9204 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:27:34.0805 9204 AudioSrv - ok
10:27:34.0852 9204 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:27:34.0852 9204 avast! Antivirus - ok
10:27:34.0883 9204 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:27:34.0883 9204 AxInstSV - ok
10:27:35.0008 9204 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:27:35.0024 9204 b06bdrv - ok
10:27:35.0071 9204 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:27:35.0071 9204 b57nd60a - ok
10:27:35.0211 9204 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:27:35.0227 9204 BDESVC - ok
10:27:35.0289 9204 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:27:35.0289 9204 Beep - ok
10:27:35.0461 9204 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
10:27:35.0461 9204 BFE - ok
10:27:35.0507 9204 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
10:27:35.0507 9204 BITS - ok
10:27:35.0523 9204 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:27:35.0523 9204 blbdrive - ok
10:27:35.0585 9204 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:27:35.0585 9204 bowser - ok
10:27:35.0617 9204 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:27:35.0617 9204 BrFiltLo - ok
10:27:35.0617 9204 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:27:35.0617 9204 BrFiltUp - ok
10:27:35.0695 9204 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
10:27:35.0695 9204 Browser - ok
10:27:35.0710 9204 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:27:35.0710 9204 Brserid - ok
10:27:35.0726 9204 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:27:35.0726 9204 BrSerWdm - ok
10:27:35.0741 9204 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:27:35.0741 9204 BrUsbMdm - ok
10:27:35.0741 9204 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:27:35.0741 9204 BrUsbSer - ok
10:27:35.0757 9204 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:27:35.0757 9204 BTHMODEM - ok
10:27:35.0788 9204 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:27:35.0788 9204 bthserv - ok
10:27:35.0804 9204 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:27:35.0804 9204 cdfs - ok
10:27:35.0819 9204 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:27:35.0819 9204 cdrom - ok
10:27:35.0835 9204 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
10:27:35.0835 9204 CertPropSvc - ok
10:27:35.0851 9204 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:27:35.0851 9204 circlass - ok
10:27:35.0866 9204 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:27:35.0882 9204 CLFS - ok
10:27:35.0929 9204 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:27:35.0929 9204 clr_optimization_v2.0.50727_32 - ok
10:27:35.0975 9204 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:27:35.0975 9204 clr_optimization_v2.0.50727_64 - ok
10:27:36.0085 9204 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:27:36.0085 9204 clr_optimization_v4.0.30319_32 - ok
10:27:36.0116 9204 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:27:36.0116 9204 clr_optimization_v4.0.30319_64 - ok
10:27:36.0147 9204 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:27:36.0147 9204 CmBatt - ok
10:27:36.0163 9204 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
10:27:36.0163 9204 cmdide - ok
10:27:36.0225 9204 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
10:27:36.0225 9204 CNG - ok
10:27:36.0241 9204 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:27:36.0241 9204 Compbatt - ok
10:27:36.0256 9204 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:27:36.0256 9204 CompositeBus - ok
10:27:36.0256 9204 COMSysApp - ok
10:27:36.0272 9204 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:27:36.0272 9204 crcdisk - ok
10:27:36.0319 9204 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:27:36.0334 9204 CryptSvc - ok
10:27:36.0365 9204 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:27:36.0365 9204 DcomLaunch - ok
10:27:36.0397 9204 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:27:36.0397 9204 defragsvc - ok
10:27:36.0475 9204 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:27:36.0475 9204 DfsC - ok
10:27:36.0537 9204 [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
10:27:36.0537 9204 dg_ssudbus - ok
10:27:36.0568 9204 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
10:27:36.0568 9204 Dhcp - ok
10:27:36.0599 9204 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:27:36.0599 9204 discache - ok
10:27:36.0599 9204 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:27:36.0599 9204 Disk - ok
10:27:36.0662 9204 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:27:36.0662 9204 Dnscache - ok
10:27:36.0677 9204 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
10:27:36.0693 9204 dot3svc - ok
10:27:36.0693 9204 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
10:27:36.0709 9204 DPS - ok
10:27:36.0724 9204 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:27:36.0724 9204 drmkaud - ok
10:27:36.0755 9204 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:27:36.0755 9204 dtsoftbus01 - ok
10:27:36.0818 9204 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:27:36.0833 9204 DXGKrnl - ok
10:27:36.0865 9204 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:27:36.0865 9204 EapHost - ok
10:27:36.0958 9204 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:27:36.0974 9204 ebdrv - ok
10:27:37.0052 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
10:27:37.0052 9204 EFS - ok
10:27:37.0114 9204 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:27:37.0130 9204 ehRecvr - ok
10:27:37.0145 9204 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:27:37.0145 9204 ehSched - ok
10:27:37.0161 9204 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:27:37.0177 9204 elxstor - ok
10:27:37.0177 9204 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
10:27:37.0177 9204 ErrDev - ok
10:27:37.0208 9204 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:27:37.0223 9204 EventSystem - ok
10:27:37.0239 9204 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:27:37.0239 9204 exfat - ok
10:27:37.0255 9204 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:27:37.0255 9204 fastfat - ok
10:27:37.0286 9204 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
10:27:37.0286 9204 Fax - ok
10:27:37.0317 9204 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:27:37.0317 9204 fdc - ok
10:27:37.0333 9204 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:27:37.0333 9204 fdPHost - ok
10:27:37.0348 9204 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:27:37.0348 9204 FDResPub - ok
10:27:37.0364 9204 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:27:37.0364 9204 FileInfo - ok
10:27:37.0364 9204 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:27:37.0364 9204 Filetrace - ok
10:27:37.0489 9204 [ 1A18EBD87AA9FBF6EFE8CFADA08D0275 ] FirebirdGuardianDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
10:27:37.0489 9204 FirebirdGuardianDefaultInstance - ok
10:27:37.0582 9204 [ 53C740150C082AAF3C7D21C1D6A9FF98 ] FirebirdServerDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
10:27:37.0598 9204 FirebirdServerDefaultInstance - ok
10:27:37.0629 9204 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:27:37.0629 9204 flpydisk - ok
10:27:37.0645 9204 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:27:37.0645 9204 FltMgr - ok
10:27:37.0723 9204 [ BC00505CFDA789ED3BE95D2FF38C4875 ] FontCache C:\Windows\system32\FntCache.dll
10:27:37.0738 9204 FontCache - ok
10:27:37.0785 9204 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:27:37.0785 9204 FontCache3.0.0.0 - ok
10:27:37.0816 9204 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:27:37.0816 9204 FsDepends - ok
10:27:37.0894 9204 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:27:37.0894 9204 Fs_Rec - ok
10:27:37.0957 9204 [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:27:37.0972 9204 fvevol - ok
10:27:37.0972 9204 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:27:37.0972 9204 gagp30kx - ok
10:27:38.0019 9204 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
10:27:38.0019 9204 gpsvc - ok
10:27:38.0050 9204 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:38.0050 9204 gupdate - ok
10:27:38.0066 9204 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:38.0066 9204 gupdatem - ok
10:27:38.0097 9204 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
10:27:38.0097 9204 hamachi - ok
10:27:38.0206 9204 [ 243424EDDC9563B7912268B54307783D ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
10:27:38.0222 9204 Hamachi2Svc - ok
10:27:38.0222 9204 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:27:38.0222 9204 hcw85cir - ok
10:27:38.0253 9204 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:27:38.0253 9204 HdAudAddService - ok
10:27:38.0284 9204 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:27:38.0284 9204 HDAudBus - ok
10:27:38.0300 9204 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:27:38.0300 9204 HidBatt - ok
10:27:38.0300 9204 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:27:38.0300 9204 HidBth - ok
10:27:38.0315 9204 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:27:38.0315 9204 HidIr - ok
10:27:38.0331 9204 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:27:38.0347 9204 hidserv - ok
10:27:38.0362 9204 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:27:38.0362 9204 HidUsb - ok
10:27:38.0378 9204 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:27:38.0378 9204 hkmsvc - ok
10:27:38.0409 9204 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:27:38.0409 9204 HomeGroupListener - ok
10:27:38.0425 9204 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:27:38.0440 9204 HomeGroupProvider - ok
10:27:38.0440 9204 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
10:27:38.0440 9204 HpSAMD - ok
10:27:38.0471 9204 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:27:38.0471 9204 HTTP - ok
10:27:38.0503 9204 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:27:38.0503 9204 hwpolicy - ok
10:27:38.0518 9204 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:27:38.0518 9204 i8042prt - ok
10:27:38.0549 9204 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:27:38.0549 9204 iaStorV - ok
10:27:38.0612 9204 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:27:38.0612 9204 idsvc - ok
10:27:38.0627 9204 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:27:38.0627 9204 iirsp - ok
10:27:38.0674 9204 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
10:27:38.0674 9204 IKEEXT - ok
10:27:38.0783 9204 [ 4BBB5A55EEB5EC11B20FCBB4CBB49357 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:27:38.0799 9204 IntcAzAudAddService - ok
10:27:38.0830 9204 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
10:27:38.0830 9204 intelide - ok
10:27:38.0846 9204 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:27:38.0846 9204 intelppm - ok
10:27:38.0877 9204 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:27:38.0877 9204 IPBusEnum - ok
10:27:38.0893 9204 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:27:38.0893 9204 IpFilterDriver - ok
10:27:38.0908 9204 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:27:38.0924 9204 iphlpsvc - ok
10:27:38.0924 9204 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:27:38.0924 9204 IPMIDRV - ok
10:27:38.0971 9204 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:27:38.0971 9204 IPNAT - ok
10:27:38.0986 9204 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:27:38.0986 9204 IRENUM - ok
10:27:39.0002 9204 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
10:27:39.0002 9204 isapnp - ok
10:27:39.0017 9204 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:27:39.0017 9204 iScsiPrt - ok
10:27:39.0033 9204 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:27:39.0033 9204 kbdclass - ok
10:27:39.0049 9204 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:27:39.0049 9204 kbdhid - ok
10:27:39.0064 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
10:27:39.0064 9204 KeyIso - ok
10:27:39.0127 9204 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:27:39.0142 9204 KSecDD - ok
10:27:39.0189 9204 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:27:39.0205 9204 KSecPkg - ok
10:27:39.0220 9204 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:27:39.0220 9204 ksthunk - ok
10:27:39.0251 9204 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:27:39.0251 9204 KtmRm - ok
10:27:39.0298 9204 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:27:39.0298 9204 LanmanServer - ok
10:27:39.0329 9204 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:27:39.0329 9204 LanmanWorkstation - ok
10:27:39.0392 9204 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:27:39.0392 9204 lltdio - ok
10:27:39.0423 9204 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:27:39.0423 9204 lltdsvc - ok
10:27:39.0439 9204 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:27:39.0439 9204 lmhosts - ok
10:27:39.0454 9204 [ 02468469C450CD16FB66A56FAB70138B ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
10:27:39.0454 9204 LMIGuardianSvc - ok
10:27:39.0517 9204 LMIInfo - ok
10:27:39.0579 9204 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
10:27:39.0579 9204 lmimirr - ok
10:27:39.0579 9204 LMIRfsClientNP - ok
10:27:39.0657 9204 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
10:27:39.0657 9204 LMIRfsDriver - ok
10:27:39.0673 9204 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:27:39.0673 9204 LSI_FC - ok
10:27:39.0704 9204 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:27:39.0704 9204 LSI_SAS - ok
10:27:39.0719 9204 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:27:39.0719 9204 LSI_SAS2 - ok
10:27:39.0735 9204 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:27:39.0735 9204 LSI_SCSI - ok
10:27:39.0751 9204 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:27:39.0751 9204 luafv - ok
10:27:39.0782 9204 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:27:39.0782 9204 Mcx2Svc - ok
10:27:39.0813 9204 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:27:39.0813 9204 megasas - ok
10:27:39.0829 9204 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:27:39.0829 9204 MegaSR - ok
10:27:39.0844 9204 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:27:39.0844 9204 MMCSS - ok
10:27:39.0860 9204 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:27:39.0860 9204 Modem - ok
10:27:39.0938 9204 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:27:39.0938 9204 monitor - ok
10:27:39.0953 9204 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:27:39.0953 9204 mouclass - ok
10:27:39.0953 9204 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:27:39.0953 9204 mouhid - ok
10:27:39.0969 9204 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:27:39.0969 9204 mountmgr - ok
10:27:39.0985 9204 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
10:27:39.0985 9204 mpio - ok
10:27:40.0000 9204 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:27:40.0000 9204 mpsdrv - ok
10:27:40.0047 9204 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:27:40.0047 9204 MpsSvc - ok
10:27:40.0063 9204 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:27:40.0078 9204 MRxDAV - ok
10:27:40.0141 9204 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:27:40.0141 9204 mrxsmb - ok
10:27:40.0172 9204 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:27:40.0172 9204 mrxsmb10 - ok
10:27:40.0187 9204 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:27:40.0187 9204 mrxsmb20 - ok
10:27:40.0203 9204 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
10:27:40.0203 9204 msahci - ok
10:27:40.0234 9204 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
10:27:40.0234 9204 msdsm - ok
10:27:40.0250 9204 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:27:40.0250 9204 MSDTC - ok
10:27:40.0265 9204 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:27:40.0265 9204 Msfs - ok
10:27:40.0281 9204 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:27:40.0281 9204 mshidkmdf - ok
10:27:40.0297 9204 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
10:27:40.0297 9204 msisadrv - ok
10:27:40.0312 9204 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:27:40.0328 9204 MSiSCSI - ok
10:27:40.0328 9204 msiserver - ok
10:27:40.0343 9204 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:27:40.0343 9204 MSKSSRV - ok
10:27:40.0359 9204 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:27:40.0359 9204 MSPCLOCK - ok
10:27:40.0359 9204 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:27:40.0359 9204 MSPQM - ok
10:27:40.0390 9204 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:27:40.0390 9204 MsRPC - ok
10:27:40.0406 9204 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:27:40.0406 9204 mssmbios - ok
10:27:40.0406 9204 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:27:40.0406 9204 MSTEE - ok
10:27:40.0437 9204 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:27:40.0437 9204 MTConfig - ok
10:27:40.0453 9204 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:27:40.0453 9204 Mup - ok
10:27:40.0499 9204 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
10:27:40.0499 9204 napagent - ok
10:27:40.0515 9204 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:27:40.0515 9204 NativeWifiP - ok
10:27:40.0562 9204 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
10:27:40.0562 9204 NDIS - ok
10:27:40.0577 9204 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:27:40.0577 9204 NdisCap - ok
10:27:40.0577 9204 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:27:40.0577 9204 NdisTapi - ok
10:27:40.0593 9204 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:27:40.0593 9204 Ndisuio - ok
10:27:40.0624 9204 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:27:40.0624 9204 NdisWan - ok
10:27:40.0624 9204 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:27:40.0624 9204 NDProxy - ok
10:27:40.0640 9204 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:27:40.0655 9204 NetBIOS - ok
10:27:40.0671 9204 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:27:40.0671 9204 NetBT - ok
10:27:40.0687 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
10:27:40.0687 9204 Netlogon - ok
10:27:40.0718 9204 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:27:40.0718 9204 Netman - ok
10:27:40.0780 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0780 9204 NetMsmqActivator - ok
10:27:40.0780 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0796 9204 NetPipeActivator - ok
10:27:40.0811 9204 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:27:40.0811 9204 netprofm - ok
10:27:40.0827 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0827 9204 NetTcpActivator - ok
10:27:40.0827 9204 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0827 9204 NetTcpPortSharing - ok
10:27:40.0843 9204 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:27:40.0843 9204 nfrd960 - ok
10:27:40.0858 9204 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:27:40.0858 9204 NlaSvc - ok
10:27:40.0874 9204 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:27:40.0874 9204 Npfs - ok
10:27:40.0889 9204 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:27:40.0905 9204 nsi - ok
10:27:40.0921 9204 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:27:40.0921 9204 nsiproxy - ok
10:27:40.0967 9204 [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:27:40.0983 9204 Ntfs - ok
10:27:40.0999 9204 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:27:40.0999 9204 Null - ok
10:27:40.0999 9204 nvlddmkm - ok
10:27:41.0030 9204 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:27:41.0030 9204 nvraid - ok
10:27:41.0061 9204 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:27:41.0061 9204 nvstor - ok
10:27:41.0077 9204 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
10:27:41.0077 9204 nv_agp - ok
10:27:41.0092 9204 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:27:41.0092 9204 ohci1394 - ok
10:27:41.0170 9204 [ 11E0B35479C895888BA3D7F619DCFFF3 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:27:41.0170 9204 ose64 - ok
10:27:41.0357 9204 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:27:41.0389 9204 osppsvc - ok
10:27:41.0435 9204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:27:41.0451 9204 p2pimsvc - ok
10:27:41.0482 9204 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:27:41.0498 9204 p2psvc - ok
10:27:41.0529 9204 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:27:41.0529 9204 Parport - ok
10:27:41.0591 9204 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:27:41.0591 9204 partmgr - ok
10:27:41.0623 9204 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:27:41.0623 9204 PcaSvc - ok
10:27:41.0638 9204 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
10:27:41.0638 9204 pci - ok
10:27:41.0654 9204 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
10:27:41.0654 9204 pciide - ok
10:27:41.0669 9204 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:27:41.0669 9204 pcmcia - ok
10:27:41.0747 9204 [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
10:27:41.0747 9204 pcouffin - ok
10:27:41.0763 9204 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:27:41.0763 9204 pcw - ok
10:27:41.0794 9204 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:27:41.0794 9204 PEAUTH - ok
10:27:41.0857 9204 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:27:41.0857 9204 PerfHost - ok
10:27:41.0919 9204 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
10:27:41.0919 9204 pla - ok
10:27:41.0997 9204 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:27:42.0013 9204 PlugPlay - ok
10:27:42.0028 9204 PnkBstrA - ok
10:27:42.0028 9204 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:27:42.0044 9204 PNRPAutoReg - ok
10:27:42.0044 9204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:27:42.0059 9204 PNRPsvc - ok
10:27:42.0091 9204 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:27:42.0091 9204 PolicyAgent - ok
10:27:42.0122 9204 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:27:42.0122 9204 Power - ok
10:27:42.0153 9204 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:27:42.0153 9204 PptpMiniport - ok
10:27:42.0169 9204 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:27:42.0169 9204 Processor - ok
10:27:42.0247 9204 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
10:27:42.0247 9204 ProfSvc - ok
10:27:42.0262 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:27:42.0278 9204 ProtectedStorage - ok
10:27:42.0293 9204 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:27:42.0293 9204 Psched - ok
10:27:42.0356 9204 [ BC08F7F3C53CBEE68670ED1314E290FD ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:27:42.0356 9204 PxHlpa64 - ok
10:27:42.0418 9204 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:27:42.0434 9204 ql2300 - ok
10:27:42.0449 9204 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:27:42.0449 9204 ql40xx - ok
10:27:42.0496 9204 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:27:42.0496 9204 QWAVE - ok
10:27:42.0512 9204 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:27:42.0512 9204 QWAVEdrv - ok
10:27:42.0512 9204 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:27:42.0512 9204 RasAcd - ok
10:27:42.0543 9204 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:27:42.0543 9204 RasAgileVpn - ok
10:27:42.0559 9204 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:27:42.0559 9204 RasAuto - ok
10:27:42.0559 9204 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:27:42.0559 9204 Rasl2tp - ok
10:27:42.0574 9204 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
10:27:42.0590 9204 RasMan - ok
10:27:42.0605 9204 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:27:42.0605 9204 RasPppoe - ok
10:27:42.0621 9204 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:27:42.0621 9204 RasSstp - ok
10:27:42.0652 9204 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:27:42.0652 9204 rdbss - ok
10:27:42.0683 9204 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:27:42.0683 9204 rdpbus - ok
10:27:42.0683 9204 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:27:42.0683 9204 RDPCDD - ok
10:27:42.0715 9204 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:27:42.0715 9204 RDPENCDD - ok
10:27:42.0715 9204 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:27:42.0715 9204 RDPREFMP - ok
10:27:42.0777 9204 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:27:42.0793 9204 RDPWD - ok
10:27:42.0808 9204 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:27:42.0808 9204 rdyboost - ok
10:27:42.0839 9204 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:27:42.0855 9204 RemoteAccess - ok
10:27:42.0871 9204 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:27:42.0886 9204 RemoteRegistry - ok
10:27:42.0886 9204 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:27:42.0902 9204 RpcEptMapper - ok
10:27:42.0902 9204 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:27:42.0917 9204 RpcLocator - ok
10:27:42.0933 9204 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
10:27:42.0933 9204 RpcSs - ok
10:27:42.0964 9204 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:27:42.0980 9204 rspndr - ok
10:27:43.0011 9204 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:27:43.0027 9204 RTL8167 - ok
10:27:43.0042 9204 [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
10:27:43.0058 9204 RtNdPt60 - ok
10:27:43.0073 9204 [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] RTTEAMPT C:\Windows\system32\DRIVERS\RtTeam60.sys
10:27:43.0073 9204 RTTEAMPT - ok
10:27:43.0105 9204 [ ED0624ED83121E1BC141F49B1316CAA0 ] RTVLANPT C:\Windows\system32\DRIVERS\RtVlan620.sys
10:27:43.0105 9204 RTVLANPT - ok
10:27:43.0120 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
10:27:43.0120 9204 SamSs - ok
10:27:43.0136 9204 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
10:27:43.0136 9204 sbp2port - ok
10:27:43.0167 9204 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:27:43.0167 9204 SCardSvr - ok
10:27:43.0198 9204 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:27:43.0198 9204 scfilter - ok
10:27:43.0292 9204 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
10:27:43.0307 9204 Schedule - ok
10:27:43.0323 9204 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:27:43.0323 9204 SCPolicySvc - ok
10:27:43.0354 9204 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:27:43.0370 9204 SDRSVC - ok
10:27:43.0385 9204 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:27:43.0385 9204 secdrv - ok
10:27:43.0385 9204 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
10:27:43.0385 9204 seclogon - ok
10:27:43.0401 9204 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:27:43.0401 9204 SENS - ok
10:27:43.0417 9204 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:27:43.0417 9204 SensrSvc - ok
10:27:43.0432 9204 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:27:43.0432 9204 Serenum - ok
10:27:43.0448 9204 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:27:43.0448 9204 Serial - ok
10:27:43.0463 9204 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:27:43.0463 9204 sermouse - ok
10:27:43.0479 9204 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
10:27:43.0479 9204 SessionEnv - ok
10:27:43.0495 9204 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
10:27:43.0495 9204 sffdisk - ok
10:27:43.0510 9204 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:27:43.0510 9204 sffp_mmc - ok
10:27:43.0526 9204 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
10:27:43.0526 9204 sffp_sd - ok
10:27:43.0541 9204 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:27:43.0541 9204 sfloppy - ok
10:27:43.0573 9204 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:27:43.0573 9204 SharedAccess - ok
10:27:43.0604 9204 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:27:43.0604 9204 ShellHWDetection - ok
10:27:43.0619 9204 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:27:43.0619 9204 SiSRaid2 - ok
10:27:43.0635 9204 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:27:43.0635 9204 SiSRaid4 - ok
10:27:43.0697 9204 [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:27:43.0697 9204 SkypeUpdate - ok
10:27:43.0713 9204 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:27:43.0713 9204 Smb - ok
10:27:43.0744 9204 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:27:43.0744 9204 SNMPTRAP - ok
10:27:43.0807 9204 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
10:27:43.0822 9204 speedfan - ok
10:27:43.0838 9204 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:27:43.0838 9204 spldr - ok
10:27:43.0916 9204 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
10:27:43.0931 9204 Spooler - ok
10:27:44.0009 9204 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
10:27:44.0025 9204 sppsvc - ok
10:27:44.0041 9204 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:27:44.0041 9204 sppuinotify - ok
10:27:44.0150 9204 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
10:27:44.0150 9204 SQLWriter - ok
10:27:44.0228 9204 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:27:44.0228 9204 srv - ok
10:27:44.0243 9204 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:27:44.0243 9204 srv2 - ok
10:27:44.0290 9204 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:27:44.0290 9204 srvnet - ok
10:27:44.0321 9204 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:27:44.0321 9204 SSDPSRV - ok
10:27:44.0337 9204 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:27:44.0337 9204 SstpSvc - ok
10:27:44.0415 9204 [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
10:27:44.0415 9204 ssudmdm - ok
10:27:44.0446 9204 [ DB0768632C680B7C0D3AA92D80416893 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
10:27:44.0462 9204 Steam Client Service - ok
10:27:44.0477 9204 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:27:44.0477 9204 stexstor - ok
10:27:44.0524 9204 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
10:27:44.0540 9204 stisvc - ok
10:27:44.0633 9204 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:27:44.0633 9204 swenum - ok
10:27:44.0821 9204 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
10:27:44.0821 9204 SwitchBoard - ok
10:27:44.0867 9204 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:27:44.0883 9204 swprv - ok
10:27:44.0930 9204 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
10:27:44.0945 9204 SysMain - ok
10:27:44.0961 9204 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:27:44.0961 9204 TabletInputService - ok
10:27:44.0992 9204 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
10:27:44.0992 9204 TapiSrv - ok
10:27:45.0008 9204 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:27:45.0008 9204 TBS - ok
10:27:45.0117 9204 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:27:45.0133 9204 Tcpip - ok
10:27:45.0195 9204 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:27:45.0195 9204 TCPIP6 - ok
10:27:45.0226 9204 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:27:45.0226 9204 tcpipreg - ok
10:27:45.0242 9204 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:27:45.0242 9204 TDPIPE - ok
10:27:45.0289 9204 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:27:45.0289 9204 TDTCP - ok
10:27:45.0320 9204 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:27:45.0320 9204 tdx - ok
10:27:45.0476 9204 [ F67C21CC4195F6AFC447418FE163E156 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
10:27:45.0491 9204 TeamViewer8 - ok
10:27:45.0507 9204 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:27:45.0507 9204 TermDD - ok
10:27:45.0554 9204 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
10:27:45.0569 9204 TermService - ok
10:27:45.0569 9204 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:27:45.0569 9204 Themes - ok
10:27:45.0601 9204 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:27:45.0616 9204 THREADORDER - ok
10:27:45.0632 9204 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:27:45.0632 9204 TrkWks - ok
10:27:45.0679 9204 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:27:45.0679 9204 TrustedInstaller - ok
10:27:45.0710 9204 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:27:45.0710 9204 tssecsrv - ok
10:27:45.0725 9204 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:27:45.0725 9204 tunnel - ok
10:27:45.0741 9204 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:27:45.0741 9204 uagp35 - ok
10:27:45.0772 9204 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:27:45.0772 9204 udfs - ok
10:27:45.0803 9204 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:27:45.0803 9204 UI0Detect - ok
10:27:45.0819 9204 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
10:27:45.0819 9204 uliagpkx - ok
10:27:45.0835 9204 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:27:45.0835 9204 umbus - ok
10:27:45.0850 9204 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:27:45.0850 9204 UmPass - ok
10:27:45.0866 9204 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:27:45.0866 9204 upnphost - ok
10:27:45.0944 9204 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:27:45.0944 9204 usbccgp - ok
10:27:45.0959 9204 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
10:27:45.0959 9204 usbcir - ok
10:27:46.0006 9204 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:27:46.0006 9204 usbehci - ok
10:27:46.0069 9204 [ 5AE9C87A1ED4B243942B3FDDD902134B ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
10:27:46.0084 9204 usbfilter - ok
10:27:46.0100 9204 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:27:46.0100 9204 usbhub - ok
10:27:46.0162 9204 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:27:46.0178 9204 usbohci - ok
10:27:46.0193 9204 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:27:46.0193 9204 usbprint - ok
10:27:46.0225 9204 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:27:46.0225 9204 usbscan - ok
10:27:46.0256 9204 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:27:46.0256 9204 USBSTOR - ok
10:27:46.0318 9204 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:27:46.0334 9204 usbuhci - ok
10:27:46.0365 9204 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:27:46.0365 9204 UxSms - ok
10:27:46.0381 9204 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
10:27:46.0381 9204 VaultSvc - ok
10:27:46.0443 9204 [ 7887DCC002173AF8725F722DAFEB3DB9 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
10:27:46.0443 9204 VBoxDrv - ok
10:27:46.0459 9204 [ C2208BFB92D932C817903DAE8AA28C17 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
10:27:46.0474 9204 VBoxNetAdp - ok
10:27:46.0490 9204 [ 993F609959E53F07E718E214400EFD7D ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
10:27:46.0490 9204 VBoxNetFlt - ok
10:27:46.0552 9204 [ 2F0276BB46A6169FA384E634EC69237C ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
10:27:46.0552 9204 VBoxUSBMon - ok
10:27:46.0583 9204 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
10:27:46.0583 9204 vdrvroot - ok
10:27:46.0615 9204 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
10:27:46.0615 9204 vds - ok
10:27:46.0630 9204 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:27:46.0630 9204 vga - ok
10:27:46.0646 9204 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:27:46.0646 9204 VgaSave - ok
10:27:46.0661 9204 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
10:27:46.0661 9204 vhdmp - ok
10:27:46.0677 9204 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
10:27:46.0677 9204 viaide - ok
10:27:46.0739 9204 [ 93F279A2C172562050700A18FA84BE2E ] vncmirror C:\Windows\system32\DRIVERS\vncmirror.sys
10:27:46.0739 9204 vncmirror - ok
10:27:46.0911 9204 [ 74B5F5438D0051BE3A6D2FF91E245A64 ] vncserver C:\Program Files\RealVNC\VNC Server\vncserver.exe
10:27:46.0942 9204 vncserver - ok
10:27:46.0958 9204 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
10:27:46.0958 9204 volmgr - ok
10:27:46.0989 9204 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:27:46.0989 9204 volmgrx - ok
10:27:47.0067 9204 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
10:27:47.0067 9204 volsnap - ok
10:27:47.0083 9204 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:27:47.0083 9204 vsmraid - ok
10:27:47.0129 9204 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
10:27:47.0145 9204 VSS - ok
10:27:47.0161 9204 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:27:47.0161 9204 vwifibus - ok
10:27:47.0176 9204 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:27:47.0176 9204 W32Time - ok
10:27:47.0192 9204 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:27:47.0192 9204 WacomPen - ok
10:27:47.0223 9204 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:27:47.0223 9204 WANARP - ok
10:27:47.0223 9204 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:27:47.0223 9204 Wanarpv6 - ok
10:27:47.0301 9204 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:27:47.0301 9204 WatAdminSvc - ok
10:27:47.0395 9204 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
10:27:47.0395 9204 wbengine - ok
10:27:47.0426 9204 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:27:47.0426 9204 WbioSrvc - ok
10:27:47.0504 9204 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:27:47.0504 9204 wcncsvc - ok
10:27:47.0519 9204 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:27:47.0519 9204 WcsPlugInService - ok
10:27:47.0535 9204 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:27:47.0535 9204 Wd - ok
10:27:47.0613 9204 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:27:47.0629 9204 Wdf01000 - ok
10:27:47.0644 9204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:27:47.0644 9204 WdiServiceHost - ok
10:27:47.0644 9204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:27:47.0660 9204 WdiSystemHost - ok
10:27:47.0738 9204 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
10:27:47.0738 9204 WebClient - ok
10:27:47.0769 9204 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:27:47.0769 9204 Wecsvc - ok
10:27:47.0785 9204 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:27:47.0785 9204 wercplsupport - ok
10:27:47.0800 9204 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:27:47.0800 9204 WerSvc - ok
10:27:47.0831 9204 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:27:47.0831 9204 WfpLwf - ok
10:27:47.0831 9204 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:27:47.0831 9204 WIMMount - ok
10:27:47.0847 9204 WinDefend - ok
10:27:47.0863 9204 WinHttpAutoProxySvc - ok
10:27:47.0909 9204 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:27:47.0909 9204 Winmgmt - ok
10:27:47.0972 9204 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
10:27:47.0987 9204 WinRM - ok
10:27:48.0065 9204 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:27:48.0065 9204 WinUsb - ok
10:27:48.0112 9204 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:27:48.0128 9204 Wlansvc - ok
10:27:48.0253 9204 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:27:48.0268 9204 wlidsvc - ok
10:27:48.0299 9204 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:27:48.0299 9204 WmiAcpi - ok
10:27:48.0331 9204 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:27:48.0331 9204 wmiApSrv - ok
10:27:48.0362 9204 WMPNetworkSvc - ok
10:27:48.0377 9204 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:27:48.0393 9204 WPCSvc - ok
10:27:48.0393 9204 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:27:48.0393 9204 WPDBusEnum - ok
10:27:48.0409 9204 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:27:48.0409 9204 ws2ifsl - ok
10:27:48.0487 9204 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
10:27:48.0487 9204 wscsvc - ok
10:27:48.0487 9204 WSearch - ok
10:27:48.0596 9204 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:27:48.0611 9204 wuauserv - ok
10:27:48.0674 9204 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:27:48.0674 9204 WudfPf - ok
10:27:48.0705 9204 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:27:48.0705 9204 WUDFRd - ok
10:27:48.0721 9204 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:27:48.0721 9204 wudfsvc - ok
10:27:48.0736 9204 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:27:48.0752 9204 WwanSvc - ok
10:27:48.0752 9204 ================ Scan global ===============================
10:27:48.0767 9204 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:27:48.0830 9204 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:27:48.0845 9204 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
10:27:48.0877 9204 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:27:48.0908 9204 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:27:48.0908 9204 [Global] - ok
10:27:48.0908 9204 ================ Scan MBR ==================================
10:27:48.0923 9204 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:27:49.0313 9204 \Device\Harddisk0\DR0 - ok
10:27:49.0313 9204 ================ Scan VBR ==================================
10:27:49.0313 9204 [ E8CF6022E9555847C750A81FED7B358B ] \Device\Harddisk0\DR0\Partition1
10:27:49.0313 9204 \Device\Harddisk0\DR0\Partition1 - ok
10:27:49.0313 9204 ============================================================
10:27:49.0313 9204 Scan finished
10:27:49.0313 9204 ============================================================
10:27:49.0329 7528 Detected object count: 0
10:27:49.0329 7528 Actual detected object count: 0
10:27:52.0621 7012 Deinitialize success
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
Re: Prosím o kontrolu logu/zřejmě spyware
A zde je už konečně log z ComboFixu. Žádný problém nenastal.
ComboFix 13-11-11.01 - LincolNn 12.11.2013 11:43:35.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4093.2840 [GMT 1:00]
Spuštěný z: c:\users\LincolNn\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\LincolNn\AppData\Roaming\inst.exe
c:\users\LincolNn\AppData\Roaming\vso_ts_preview.xml
c:\windows\SysWow64\FlashPlayerApp.exe
c:\windows\SysWow64\frapsvid.dll
c:\windows\SysWow64\tmp148D.tmp
c:\windows\SysWow64\tmpD16D.tmp
c:\windows\SysWow64\tmpD1EB.tmp
.
Nakažená kopie c:\windows\system32\Services.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-10-12 do 2013-11-12 )))))))))))))))))))))))))))))))
.
.
2013-11-12 10:53 . 2013-11-12 10:53 -------- d-----w- c:\users\LogMeInRemoteUser\AppData\Local\temp
2013-11-12 10:53 . 2013-11-12 10:53 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-11-10 16:36 . 2013-11-10 16:36 -------- d-----w- c:\windows\ERUNT
2013-11-10 16:31 . 2013-11-11 15:23 -------- d-----w- C:\AdwCleaner
2013-11-10 16:21 . 2013-11-10 16:21 -------- d-----w- c:\users\LincolNn\AppData\Roaming\Malwarebytes
2013-11-10 16:21 . 2013-11-10 16:21 -------- d-----w- c:\programdata\Malwarebytes
2013-11-10 16:21 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-11-10 16:21 . 2013-11-10 16:21 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-11-10 15:51 . 2013-11-10 15:51 -------- d-----w- c:\users\LincolNn\AppData\Roaming\JAM Software
2013-11-10 15:51 . 2013-11-10 15:51 -------- d-----w- c:\program files (x86)\JAM Software
2013-11-08 22:59 . 2013-11-08 22:59 -------- d-----w- c:\program files (x86)\TeamViewer
2013-11-08 22:43 . 2013-11-09 00:50 -------- d-----w- c:\program files (x86)\Texas Holdem Poker 3D Deluxe Edition DeLEGiON
2013-11-05 22:37 . 2013-11-05 22:37 -------- d-----w- c:\program files\OBS
2013-11-05 22:37 . 2013-11-05 22:37 -------- d-----w- c:\program files (x86)\OBS
2013-11-05 19:59 . 2013-10-17 09:59 -------- d-----w- c:\users\LincolNn\p2p-sbdf9.alpha1
2013-11-05 13:00 . 2013-11-05 13:00 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2013-11-04 22:20 . 2013-11-09 10:17 -------- d-----w- c:\program files\Speccy
2013-11-04 18:25 . 2013-11-04 18:25 -------- d-----w- c:\users\LincolNn\AppData\Roaming\Win Family
2013-11-02 17:44 . 2013-11-02 17:44 -------- d-----w- C:\ICQ
2013-11-02 17:44 . 2013-11-02 17:45 -------- d-----w- c:\users\LincolNn\AppData\Roaming\QIP
2013-11-02 17:43 . 2013-11-02 17:44 -------- d-----w- c:\program files (x86)\QIP 2012
2013-10-31 12:01 . 2013-10-15 11:41 251664 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2013-10-31 12:00 . 2013-10-15 11:38 126736 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2013-10-31 12:00 . 2013-10-31 12:00 -------- d-----w- c:\program files\Oracle
2013-10-30 18:36 . 2013-10-30 18:36 -------- d-----w- c:\program files (x86)\NirSoft
2013-10-29 10:17 . 2013-10-29 10:17 -------- d-----w- c:\windows\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2013-10-28 21:01 . 2013-10-28 21:20 -------- d-----w- c:\users\LincolNn\AppData\Local\Rockstar Games
2013-10-28 20:59 . 2013-10-28 20:59 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-10-28 13:31 . 2013-10-28 13:31 -------- d-----w- c:\users\LincolNn\AppData\Roaming\dvdcss
2013-10-28 13:05 . 2013-10-28 13:06 -------- d-----w- c:\users\LincolNn\GTA Server
2013-10-27 10:37 . 2013-10-28 13:06 -------- d-----w- c:\users\LincolNn\Záloha z Flashky
2013-10-26 14:11 . 2013-10-28 21:20 -------- d-----w- c:\program files (x86)\Rockstar Games
2013-10-26 14:11 . 2004-10-22 00:17 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2013-10-26 14:11 . 2004-10-22 00:17 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2013-10-26 14:11 . 2004-10-22 00:16 180224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2013-10-26 14:11 . 2004-10-22 00:16 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2013-10-26 14:11 . 2004-10-22 00:18 749568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2013-10-26 14:11 . 2013-10-26 14:11 192644 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2013-10-26 14:11 . 2013-10-26 14:11 323716 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
2013-10-26 12:05 . 2013-10-26 12:05 -------- d-----w- c:\programdata\Oracle
2013-10-26 12:05 . 2013-10-26 12:05 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-10-26 12:05 . 2013-10-08 05:50 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-26 10:14 . 2013-11-09 17:40 -------- d-----w- c:\program files (x86)\Killing Floor
2013-10-23 18:48 . 2013-10-23 18:48 -------- d-----w- c:\program files (x86)\Origin Games
2013-10-21 17:45 . 2013-10-21 17:45 -------- d-----w- c:\users\LincolNn\AppData\Roaming\Serif
2013-10-21 17:45 . 2013-10-21 17:45 -------- d-----w- c:\program files (x86)\Serif
2013-10-21 17:44 . 2002-12-05 12:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2013-10-21 17:44 . 2002-12-02 11:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2013-10-21 17:44 . 2002-12-05 12:12 692224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2013-10-21 17:44 . 2002-12-02 13:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2013-10-21 17:44 . 2002-12-02 11:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2013-10-21 17:43 . 2013-10-21 17:43 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2013-10-21 17:43 . 2013-10-21 17:43 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2013-10-19 16:58 . 2013-10-26 09:59 -------- d-----w- c:\users\LincolNn\CopyrightFree
2013-10-15 11:38 . 2013-10-15 11:38 154896 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2013-10-15 11:38 . 2013-10-15 11:38 140560 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2013-10-15 11:35 . 2013-10-15 11:35 204048 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2013-10-13 17:27 . 2013-10-13 17:43 -------- d-----w- c:\users\LincolNn\OVB
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-09 23:00 . 2013-04-15 14:00 56693 ----a-w- c:\users\LincolNn\Network_Meter_Data.js
2013-11-05 23:28 . 2013-03-17 19:20 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-01 16:56 . 2013-04-14 10:56 466520 ----a-w- c:\windows\system32\wrap_oal.dll
2013-11-01 16:56 . 2013-04-14 10:56 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-11-01 16:56 . 2013-04-14 10:56 122968 ----a-w- c:\windows\system32\OpenAL32.dll
2013-11-01 16:56 . 2013-04-14 10:56 109144 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-10-06 13:31 . 2013-03-28 01:27 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-10-06 13:31 . 2013-03-28 01:27 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-10-05 12:00 . 2013-03-29 12:18 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-09-24 00:46 . 2013-09-24 00:46 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-09-24 00:46 . 2013-09-24 00:46 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-09-24 00:46 . 2013-09-24 00:46 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-09-24 00:46 . 2013-09-24 00:46 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-09-24 00:46 . 2013-09-24 00:46 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-09-24 00:46 . 2013-09-24 00:46 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-09-24 00:46 . 2013-09-24 00:46 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-09-24 00:46 . 2013-09-24 00:46 367104 ----a-w- c:\windows\SysWow64\html.iec
2013-09-24 00:46 . 2013-09-24 00:46 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-09-24 00:46 . 2013-09-24 00:46 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-09-24 00:46 . 2013-09-24 00:46 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2013-09-24 00:46 . 2013-09-24 00:46 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2013-09-24 00:46 . 2013-09-24 00:46 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-09-24 00:46 . 2013-09-24 00:46 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-09-24 00:46 . 2013-09-24 00:46 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2013-09-24 00:46 . 2013-09-24 00:46 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-09-24 00:46 . 2013-09-24 00:46 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-09-24 00:46 . 2013-09-24 00:46 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-09-24 00:46 . 2013-09-24 00:46 85504 ----a-w- c:\windows\system32\jsproxy.dll
2013-09-24 00:46 . 2013-09-24 00:46 816640 ----a-w- c:\windows\system32\jscript.dll
2013-09-24 00:46 . 2013-09-24 00:46 65024 ----a-w- c:\windows\system32\pngfilt.dll
2013-09-24 00:46 . 2013-09-24 00:46 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-09-24 00:46 . 2013-09-24 00:46 49664 ----a-w- c:\windows\system32\imgutil.dll
2013-09-24 00:46 . 2013-09-24 00:46 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-09-24 00:46 . 2013-09-24 00:46 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-09-24 00:46 . 2013-09-24 00:46 267776 ----a-w- c:\windows\system32\ieaksie.dll
2013-09-24 00:46 . 2013-09-24 00:46 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-09-24 00:46 . 2013-09-24 00:46 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-09-24 00:46 . 2013-09-24 00:46 2312704 ----a-w- c:\windows\system32\jscript9.dll
2013-09-24 00:46 . 2013-09-24 00:46 222208 ----a-w- c:\windows\system32\msls31.dll
2013-09-24 00:46 . 2013-09-24 00:46 2147840 ----a-w- c:\windows\system32\iertutil.dll
2013-09-24 00:46 . 2013-09-24 00:46 197120 ----a-w- c:\windows\system32\msrating.dll
2013-09-24 00:46 . 2013-09-24 00:46 17833472 ----a-w- c:\windows\system32\mshtml.dll
2013-09-24 00:46 . 2013-09-24 00:46 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2013-09-24 00:46 . 2013-09-24 00:46 163840 ----a-w- c:\windows\system32\ieakui.dll
2013-09-24 00:46 . 2013-09-24 00:46 160256 ----a-w- c:\windows\system32\ieakeng.dll
2013-09-24 00:46 . 2013-09-24 00:46 149504 ----a-w- c:\windows\system32\occache.dll
2013-09-24 00:46 . 2013-09-24 00:46 145920 ----a-w- c:\windows\system32\iepeers.dll
2013-09-24 00:46 . 2013-09-24 00:46 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-09-24 00:46 . 2013-09-24 00:46 1392128 ----a-w- c:\windows\system32\wininet.dll
2013-09-24 00:46 . 2013-09-24 00:46 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-09-24 00:46 . 2013-09-24 00:46 1346560 ----a-w- c:\windows\system32\urlmon.dll
2013-09-24 00:46 . 2013-09-24 00:46 12288 ----a-w- c:\windows\system32\mshta.exe
2013-09-24 00:46 . 2013-09-24 00:46 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2013-09-24 00:46 . 2013-09-24 00:46 114176 ----a-w- c:\windows\system32\admparse.dll
2013-09-24 00:46 . 2013-09-24 00:46 111616 ----a-w- c:\windows\system32\iesysprep.dll
2013-09-24 00:46 . 2013-09-24 00:46 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2013-09-24 00:46 . 2013-09-24 00:46 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2013-09-24 00:46 . 2013-09-24 00:46 96768 ----a-w- c:\windows\system32\mshtmled.dll
2013-09-24 00:46 . 2013-09-24 00:46 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2013-09-24 00:46 . 2013-09-24 00:46 85504 ----a-w- c:\windows\system32\iesetup.dll
2013-09-24 00:46 . 2013-09-24 00:46 82432 ----a-w- c:\windows\system32\icardie.dll
2013-09-24 00:46 . 2013-09-24 00:46 76800 ----a-w- c:\windows\system32\tdc.ocx
2013-09-24 00:46 . 2013-09-24 00:46 729088 ----a-w- c:\windows\system32\msfeeds.dll
2013-09-24 00:46 . 2013-09-24 00:46 599040 ----a-w- c:\windows\system32\vbscript.dll
2013-09-24 00:46 . 2013-09-24 00:46 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2013-09-24 00:46 . 2013-09-24 00:46 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2013-09-24 00:46 . 2013-09-24 00:46 448512 ----a-w- c:\windows\system32\html.iec
2013-09-24 00:46 . 2013-09-24 00:46 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2013-09-24 00:46 . 2013-09-24 00:46 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-09-24 00:46 . 2013-09-24 00:46 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-09-24 00:46 . 2013-09-24 00:46 30720 ----a-w- c:\windows\system32\licmgr10.dll
2013-09-24 00:46 . 2013-09-24 00:46 282112 ----a-w- c:\windows\system32\dxtrans.dll
2013-09-24 00:46 . 2013-09-24 00:46 249344 ----a-w- c:\windows\system32\webcheck.dll
2013-09-24 00:46 . 2013-09-24 00:46 248320 ----a-w- c:\windows\system32\ieui.dll
2013-09-24 00:46 . 2013-09-24 00:46 237056 ----a-w- c:\windows\system32\url.dll
2013-09-24 00:46 . 2013-09-24 00:46 165888 ----a-w- c:\windows\system32\iexpress.exe
2013-09-24 00:46 . 2013-09-24 00:46 160256 ----a-w- c:\windows\system32\wextract.exe
2013-09-24 00:46 . 2013-09-24 00:46 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2013-09-24 00:46 . 2013-09-24 00:46 10926080 ----a-w- c:\windows\system32\ieframe.dll
2013-09-24 00:46 . 2013-09-24 00:46 103936 ----a-w- c:\windows\system32\inseng.dll
2013-09-24 00:40 . 2013-03-26 21:31 188128 ----a-w- c:\programdata\Microsoft\VCSExpress\10.0\1033\ResourceCache.dll
2013-09-23 18:40 . 2012-07-17 12:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-09-15 22:50 . 2013-09-24 19:05 9694160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5A16D289-DEF7-4847-B4FF-026B1CA679F8}\mpengine.dll
2013-09-11 09:24 . 2013-09-11 09:24 388096 ----a-r- c:\users\LincolNn\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-08-31 00:14 . 2013-08-31 00:14 78432 ----a-w- c:\windows\system32\atimpc64.dll
2013-08-31 00:14 . 2013-08-31 00:14 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2013-08-31 00:14 . 2013-08-31 00:14 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2013-08-31 00:14 . 2013-08-31 00:14 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2013-08-31 00:14 . 2012-12-19 19:31 125824 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2013-08-31 00:14 . 2012-09-28 01:11 142792 ----a-w- c:\windows\system32\atiuxp64.dll
2013-08-31 00:13 . 2012-12-19 19:31 114488 ----a-w- c:\windows\system32\atiu9p64.dll
2013-08-31 00:13 . 2012-09-28 01:10 97984 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2013-08-31 00:13 . 2012-12-19 20:08 1233080 ----a-w- c:\windows\system32\aticfx64.dll
2013-08-31 00:13 . 2012-09-28 01:43 1027544 ----a-w- c:\windows\SysWow64\aticfx32.dll
2013-08-31 00:13 . 2012-12-19 19:49 9464840 ----a-w- c:\windows\system32\atidxx64.dll
2013-08-31 00:13 . 2013-08-31 00:13 8215992 ----a-w- c:\windows\SysWow64\atidxx32.dll
2013-08-31 00:13 . 2009-11-25 02:37 6176008 ----a-w- c:\windows\SysWow64\atiumdva.dll
2013-08-31 00:13 . 2009-11-25 02:55 6189416 ----a-w- c:\windows\SysWow64\atiumdag.dll
2013-08-31 00:13 . 2012-12-19 19:59 6767240 ----a-w- c:\windows\system32\atiumd6a.dll
2013-08-31 00:13 . 2012-12-19 19:44 7256496 ----a-w- c:\windows\system32\atiumd64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 18:38 1720976 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 18:38 1720976 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 18:38 1720976 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"Gyazo"="c:\program files (x86)\Gyazo\GyStation.exe" [2013-10-30 2990304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-08-30 766208]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-10-31 2349392]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [x]
R3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
R3 aswVmm;aswVmm; [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 vncserver;VNC Server;c:\program files\RealVNC\VNC Server\vncserver.exe;c:\program files\RealVNC\VNC Server\vncserver.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys;c:\windows\SYSNATIVE\Drivers\pcouffin.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-16 16:03 1185744 ----a-w- c:\program files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-11-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-05 23:28]
.
2013-11-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-17 19:19]
.
2013-11-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-17 19:19]
.
2013-10-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3323472497-44360149-3043929110-1000Core1cecb62faec538a.job
- c:\users\LincolNn\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-08 19:19]
.
2013-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3323472497-44360149-3043929110-1000UA.job
- c:\users\LincolNn\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-08 19:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-08-09 12666984]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.shoutcast.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: E&xportovat do Microsoft Excelu - c:\progra~1\MIF5BA~1\Office15\EXCEL.EXE/3000
IE: Od&eslat do OneNotu - c:\progra~1\MIF5BA~1\Office15\ONBttnIE.dll/105
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-Akamai - c:\users\LincolNn\AppData\Local\Akamai\uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{19F29C70-8D2B-0D79-FB97-F047600AC2E8}*]
"hafmljnfmdennmpb"=hex:63,62,69,6a,6d,68,63,6a,70,6b,69,6d,65,70,65,63,65,63,
6b,70,6f,63,68,67,6f,64,6e,6c,61,64,6c,65,6e,6b,6a,6a,67,70,00,00
"iahmfmagceknpmcekk"=hex:63,62,69,6a,6d,68,63,6a,70,6b,69,6d,65,70,65,63,62,62,
65,61,67,6c,62,6e,6d,6a,63,6f,67,63,70,6d,69,6e,68,6e,61,70,00,00
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{F7F0C993-C06A-43D3-136F-D50ACACAE426}*]
"iallpaannipbapoabl"=hex:69,61,6e,69,6d,70,6b,61,70,67,6d,65,66,63,6e,66,69,6b,
00,77
"hafmfnmcoangbnfm"=hex:69,61,6e,69,6d,70,6b,61,70,67,6d,65,66,63,6e,66,69,6b,
00,77
"iahcadibgmlhfehdng"=hex:63,61,6d,69,65,63,00,00
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\SecuROM\License information*]
"datasecu"=hex:2c,38,54,ae,07,1c,4e,07,99,05,ce,92,41,b5,b1,20,3f,0a,db,99,34,
7a,a0,07,e3,ec,d9,5b,80,cd,9f,a6,49,3c,ba,c8,81,4c,ec,8a,c8,32,3e,48,3e,de,\
"rkeysecu"=hex:c9,01,e2,11,bd,00,94,2d,14,35,83,fb,1b,0d,74,f9
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2013-11-12 12:04:32 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-11-12 11:04
.
Před spuštěním: Volných bajtů: 20 908 990 464
Po spuštění: Volných bajtů: 20 462 112 768
.
- - End Of File - - 2AEFB4773396E6CA23E5648BC01CE32E
A36C5E4F47E84449FF07ED3517B43A31
ComboFix 13-11-11.01 - LincolNn 12.11.2013 11:43:35.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4093.2840 [GMT 1:00]
Spuštěný z: c:\users\LincolNn\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\LincolNn\AppData\Roaming\inst.exe
c:\users\LincolNn\AppData\Roaming\vso_ts_preview.xml
c:\windows\SysWow64\FlashPlayerApp.exe
c:\windows\SysWow64\frapsvid.dll
c:\windows\SysWow64\tmp148D.tmp
c:\windows\SysWow64\tmpD16D.tmp
c:\windows\SysWow64\tmpD1EB.tmp
.
Nakažená kopie c:\windows\system32\Services.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-10-12 do 2013-11-12 )))))))))))))))))))))))))))))))
.
.
2013-11-12 10:53 . 2013-11-12 10:53 -------- d-----w- c:\users\LogMeInRemoteUser\AppData\Local\temp
2013-11-12 10:53 . 2013-11-12 10:53 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-11-10 16:36 . 2013-11-10 16:36 -------- d-----w- c:\windows\ERUNT
2013-11-10 16:31 . 2013-11-11 15:23 -------- d-----w- C:\AdwCleaner
2013-11-10 16:21 . 2013-11-10 16:21 -------- d-----w- c:\users\LincolNn\AppData\Roaming\Malwarebytes
2013-11-10 16:21 . 2013-11-10 16:21 -------- d-----w- c:\programdata\Malwarebytes
2013-11-10 16:21 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-11-10 16:21 . 2013-11-10 16:21 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-11-10 15:51 . 2013-11-10 15:51 -------- d-----w- c:\users\LincolNn\AppData\Roaming\JAM Software
2013-11-10 15:51 . 2013-11-10 15:51 -------- d-----w- c:\program files (x86)\JAM Software
2013-11-08 22:59 . 2013-11-08 22:59 -------- d-----w- c:\program files (x86)\TeamViewer
2013-11-08 22:43 . 2013-11-09 00:50 -------- d-----w- c:\program files (x86)\Texas Holdem Poker 3D Deluxe Edition DeLEGiON
2013-11-05 22:37 . 2013-11-05 22:37 -------- d-----w- c:\program files\OBS
2013-11-05 22:37 . 2013-11-05 22:37 -------- d-----w- c:\program files (x86)\OBS
2013-11-05 19:59 . 2013-10-17 09:59 -------- d-----w- c:\users\LincolNn\p2p-sbdf9.alpha1
2013-11-05 13:00 . 2013-11-05 13:00 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2013-11-04 22:20 . 2013-11-09 10:17 -------- d-----w- c:\program files\Speccy
2013-11-04 18:25 . 2013-11-04 18:25 -------- d-----w- c:\users\LincolNn\AppData\Roaming\Win Family
2013-11-02 17:44 . 2013-11-02 17:44 -------- d-----w- C:\ICQ
2013-11-02 17:44 . 2013-11-02 17:45 -------- d-----w- c:\users\LincolNn\AppData\Roaming\QIP
2013-11-02 17:43 . 2013-11-02 17:44 -------- d-----w- c:\program files (x86)\QIP 2012
2013-10-31 12:01 . 2013-10-15 11:41 251664 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2013-10-31 12:00 . 2013-10-15 11:38 126736 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2013-10-31 12:00 . 2013-10-31 12:00 -------- d-----w- c:\program files\Oracle
2013-10-30 18:36 . 2013-10-30 18:36 -------- d-----w- c:\program files (x86)\NirSoft
2013-10-29 10:17 . 2013-10-29 10:17 -------- d-----w- c:\windows\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2013-10-28 21:01 . 2013-10-28 21:20 -------- d-----w- c:\users\LincolNn\AppData\Local\Rockstar Games
2013-10-28 20:59 . 2013-10-28 20:59 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-10-28 13:31 . 2013-10-28 13:31 -------- d-----w- c:\users\LincolNn\AppData\Roaming\dvdcss
2013-10-28 13:05 . 2013-10-28 13:06 -------- d-----w- c:\users\LincolNn\GTA Server
2013-10-27 10:37 . 2013-10-28 13:06 -------- d-----w- c:\users\LincolNn\Záloha z Flashky
2013-10-26 14:11 . 2013-10-28 21:20 -------- d-----w- c:\program files (x86)\Rockstar Games
2013-10-26 14:11 . 2004-10-22 00:17 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2013-10-26 14:11 . 2004-10-22 00:17 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2013-10-26 14:11 . 2004-10-22 00:16 180224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2013-10-26 14:11 . 2004-10-22 00:16 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2013-10-26 14:11 . 2004-10-22 00:18 749568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2013-10-26 14:11 . 2013-10-26 14:11 192644 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2013-10-26 14:11 . 2013-10-26 14:11 323716 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
2013-10-26 12:05 . 2013-10-26 12:05 -------- d-----w- c:\programdata\Oracle
2013-10-26 12:05 . 2013-10-26 12:05 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-10-26 12:05 . 2013-10-08 05:50 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-26 10:14 . 2013-11-09 17:40 -------- d-----w- c:\program files (x86)\Killing Floor
2013-10-23 18:48 . 2013-10-23 18:48 -------- d-----w- c:\program files (x86)\Origin Games
2013-10-21 17:45 . 2013-10-21 17:45 -------- d-----w- c:\users\LincolNn\AppData\Roaming\Serif
2013-10-21 17:45 . 2013-10-21 17:45 -------- d-----w- c:\program files (x86)\Serif
2013-10-21 17:44 . 2002-12-05 12:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2013-10-21 17:44 . 2002-12-02 11:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2013-10-21 17:44 . 2002-12-05 12:12 692224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2013-10-21 17:44 . 2002-12-02 13:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2013-10-21 17:44 . 2002-12-02 11:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2013-10-21 17:43 . 2013-10-21 17:43 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2013-10-21 17:43 . 2013-10-21 17:43 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2013-10-19 16:58 . 2013-10-26 09:59 -------- d-----w- c:\users\LincolNn\CopyrightFree
2013-10-15 11:38 . 2013-10-15 11:38 154896 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2013-10-15 11:38 . 2013-10-15 11:38 140560 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2013-10-15 11:35 . 2013-10-15 11:35 204048 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2013-10-13 17:27 . 2013-10-13 17:43 -------- d-----w- c:\users\LincolNn\OVB
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-09 23:00 . 2013-04-15 14:00 56693 ----a-w- c:\users\LincolNn\Network_Meter_Data.js
2013-11-05 23:28 . 2013-03-17 19:20 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-01 16:56 . 2013-04-14 10:56 466520 ----a-w- c:\windows\system32\wrap_oal.dll
2013-11-01 16:56 . 2013-04-14 10:56 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-11-01 16:56 . 2013-04-14 10:56 122968 ----a-w- c:\windows\system32\OpenAL32.dll
2013-11-01 16:56 . 2013-04-14 10:56 109144 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-10-06 13:31 . 2013-03-28 01:27 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-10-06 13:31 . 2013-03-28 01:27 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-10-05 12:00 . 2013-03-29 12:18 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-09-24 00:46 . 2013-09-24 00:46 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-09-24 00:46 . 2013-09-24 00:46 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-09-24 00:46 . 2013-09-24 00:46 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-09-24 00:46 . 2013-09-24 00:46 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-09-24 00:46 . 2013-09-24 00:46 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-09-24 00:46 . 2013-09-24 00:46 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-09-24 00:46 . 2013-09-24 00:46 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-09-24 00:46 . 2013-09-24 00:46 367104 ----a-w- c:\windows\SysWow64\html.iec
2013-09-24 00:46 . 2013-09-24 00:46 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-09-24 00:46 . 2013-09-24 00:46 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-09-24 00:46 . 2013-09-24 00:46 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2013-09-24 00:46 . 2013-09-24 00:46 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2013-09-24 00:46 . 2013-09-24 00:46 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-09-24 00:46 . 2013-09-24 00:46 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-09-24 00:46 . 2013-09-24 00:46 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2013-09-24 00:46 . 2013-09-24 00:46 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-09-24 00:46 . 2013-09-24 00:46 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-09-24 00:46 . 2013-09-24 00:46 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-09-24 00:46 . 2013-09-24 00:46 85504 ----a-w- c:\windows\system32\jsproxy.dll
2013-09-24 00:46 . 2013-09-24 00:46 816640 ----a-w- c:\windows\system32\jscript.dll
2013-09-24 00:46 . 2013-09-24 00:46 65024 ----a-w- c:\windows\system32\pngfilt.dll
2013-09-24 00:46 . 2013-09-24 00:46 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-09-24 00:46 . 2013-09-24 00:46 49664 ----a-w- c:\windows\system32\imgutil.dll
2013-09-24 00:46 . 2013-09-24 00:46 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-09-24 00:46 . 2013-09-24 00:46 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-09-24 00:46 . 2013-09-24 00:46 267776 ----a-w- c:\windows\system32\ieaksie.dll
2013-09-24 00:46 . 2013-09-24 00:46 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-09-24 00:46 . 2013-09-24 00:46 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-09-24 00:46 . 2013-09-24 00:46 2312704 ----a-w- c:\windows\system32\jscript9.dll
2013-09-24 00:46 . 2013-09-24 00:46 222208 ----a-w- c:\windows\system32\msls31.dll
2013-09-24 00:46 . 2013-09-24 00:46 2147840 ----a-w- c:\windows\system32\iertutil.dll
2013-09-24 00:46 . 2013-09-24 00:46 197120 ----a-w- c:\windows\system32\msrating.dll
2013-09-24 00:46 . 2013-09-24 00:46 17833472 ----a-w- c:\windows\system32\mshtml.dll
2013-09-24 00:46 . 2013-09-24 00:46 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2013-09-24 00:46 . 2013-09-24 00:46 163840 ----a-w- c:\windows\system32\ieakui.dll
2013-09-24 00:46 . 2013-09-24 00:46 160256 ----a-w- c:\windows\system32\ieakeng.dll
2013-09-24 00:46 . 2013-09-24 00:46 149504 ----a-w- c:\windows\system32\occache.dll
2013-09-24 00:46 . 2013-09-24 00:46 145920 ----a-w- c:\windows\system32\iepeers.dll
2013-09-24 00:46 . 2013-09-24 00:46 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-09-24 00:46 . 2013-09-24 00:46 1392128 ----a-w- c:\windows\system32\wininet.dll
2013-09-24 00:46 . 2013-09-24 00:46 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-09-24 00:46 . 2013-09-24 00:46 1346560 ----a-w- c:\windows\system32\urlmon.dll
2013-09-24 00:46 . 2013-09-24 00:46 12288 ----a-w- c:\windows\system32\mshta.exe
2013-09-24 00:46 . 2013-09-24 00:46 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2013-09-24 00:46 . 2013-09-24 00:46 114176 ----a-w- c:\windows\system32\admparse.dll
2013-09-24 00:46 . 2013-09-24 00:46 111616 ----a-w- c:\windows\system32\iesysprep.dll
2013-09-24 00:46 . 2013-09-24 00:46 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2013-09-24 00:46 . 2013-09-24 00:46 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2013-09-24 00:46 . 2013-09-24 00:46 96768 ----a-w- c:\windows\system32\mshtmled.dll
2013-09-24 00:46 . 2013-09-24 00:46 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2013-09-24 00:46 . 2013-09-24 00:46 85504 ----a-w- c:\windows\system32\iesetup.dll
2013-09-24 00:46 . 2013-09-24 00:46 82432 ----a-w- c:\windows\system32\icardie.dll
2013-09-24 00:46 . 2013-09-24 00:46 76800 ----a-w- c:\windows\system32\tdc.ocx
2013-09-24 00:46 . 2013-09-24 00:46 729088 ----a-w- c:\windows\system32\msfeeds.dll
2013-09-24 00:46 . 2013-09-24 00:46 599040 ----a-w- c:\windows\system32\vbscript.dll
2013-09-24 00:46 . 2013-09-24 00:46 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2013-09-24 00:46 . 2013-09-24 00:46 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2013-09-24 00:46 . 2013-09-24 00:46 448512 ----a-w- c:\windows\system32\html.iec
2013-09-24 00:46 . 2013-09-24 00:46 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2013-09-24 00:46 . 2013-09-24 00:46 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-09-24 00:46 . 2013-09-24 00:46 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-09-24 00:46 . 2013-09-24 00:46 30720 ----a-w- c:\windows\system32\licmgr10.dll
2013-09-24 00:46 . 2013-09-24 00:46 282112 ----a-w- c:\windows\system32\dxtrans.dll
2013-09-24 00:46 . 2013-09-24 00:46 249344 ----a-w- c:\windows\system32\webcheck.dll
2013-09-24 00:46 . 2013-09-24 00:46 248320 ----a-w- c:\windows\system32\ieui.dll
2013-09-24 00:46 . 2013-09-24 00:46 237056 ----a-w- c:\windows\system32\url.dll
2013-09-24 00:46 . 2013-09-24 00:46 165888 ----a-w- c:\windows\system32\iexpress.exe
2013-09-24 00:46 . 2013-09-24 00:46 160256 ----a-w- c:\windows\system32\wextract.exe
2013-09-24 00:46 . 2013-09-24 00:46 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2013-09-24 00:46 . 2013-09-24 00:46 10926080 ----a-w- c:\windows\system32\ieframe.dll
2013-09-24 00:46 . 2013-09-24 00:46 103936 ----a-w- c:\windows\system32\inseng.dll
2013-09-24 00:40 . 2013-03-26 21:31 188128 ----a-w- c:\programdata\Microsoft\VCSExpress\10.0\1033\ResourceCache.dll
2013-09-23 18:40 . 2012-07-17 12:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-09-15 22:50 . 2013-09-24 19:05 9694160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5A16D289-DEF7-4847-B4FF-026B1CA679F8}\mpengine.dll
2013-09-11 09:24 . 2013-09-11 09:24 388096 ----a-r- c:\users\LincolNn\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-08-31 00:14 . 2013-08-31 00:14 78432 ----a-w- c:\windows\system32\atimpc64.dll
2013-08-31 00:14 . 2013-08-31 00:14 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2013-08-31 00:14 . 2013-08-31 00:14 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2013-08-31 00:14 . 2013-08-31 00:14 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2013-08-31 00:14 . 2012-12-19 19:31 125824 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2013-08-31 00:14 . 2012-09-28 01:11 142792 ----a-w- c:\windows\system32\atiuxp64.dll
2013-08-31 00:13 . 2012-12-19 19:31 114488 ----a-w- c:\windows\system32\atiu9p64.dll
2013-08-31 00:13 . 2012-09-28 01:10 97984 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2013-08-31 00:13 . 2012-12-19 20:08 1233080 ----a-w- c:\windows\system32\aticfx64.dll
2013-08-31 00:13 . 2012-09-28 01:43 1027544 ----a-w- c:\windows\SysWow64\aticfx32.dll
2013-08-31 00:13 . 2012-12-19 19:49 9464840 ----a-w- c:\windows\system32\atidxx64.dll
2013-08-31 00:13 . 2013-08-31 00:13 8215992 ----a-w- c:\windows\SysWow64\atidxx32.dll
2013-08-31 00:13 . 2009-11-25 02:37 6176008 ----a-w- c:\windows\SysWow64\atiumdva.dll
2013-08-31 00:13 . 2009-11-25 02:55 6189416 ----a-w- c:\windows\SysWow64\atiumdag.dll
2013-08-31 00:13 . 2012-12-19 19:59 6767240 ----a-w- c:\windows\system32\atiumd6a.dll
2013-08-31 00:13 . 2012-12-19 19:44 7256496 ----a-w- c:\windows\system32\atiumd64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 18:38 1720976 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 18:38 1720976 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 18:38 1720976 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"Gyazo"="c:\program files (x86)\Gyazo\GyStation.exe" [2013-10-30 2990304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-08-30 766208]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-10-31 2349392]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [x]
R3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
R3 aswVmm;aswVmm; [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 vncserver;VNC Server;c:\program files\RealVNC\VNC Server\vncserver.exe;c:\program files\RealVNC\VNC Server\vncserver.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys;c:\windows\SYSNATIVE\Drivers\pcouffin.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-16 16:03 1185744 ----a-w- c:\program files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-11-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-05 23:28]
.
2013-11-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-17 19:19]
.
2013-11-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-17 19:19]
.
2013-10-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3323472497-44360149-3043929110-1000Core1cecb62faec538a.job
- c:\users\LincolNn\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-08 19:19]
.
2013-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3323472497-44360149-3043929110-1000UA.job
- c:\users\LincolNn\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-08 19:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-09-25 15:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-08-09 12666984]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.shoutcast.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: E&xportovat do Microsoft Excelu - c:\progra~1\MIF5BA~1\Office15\EXCEL.EXE/3000
IE: Od&eslat do OneNotu - c:\progra~1\MIF5BA~1\Office15\ONBttnIE.dll/105
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-Akamai - c:\users\LincolNn\AppData\Local\Akamai\uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{19F29C70-8D2B-0D79-FB97-F047600AC2E8}*]
"hafmljnfmdennmpb"=hex:63,62,69,6a,6d,68,63,6a,70,6b,69,6d,65,70,65,63,65,63,
6b,70,6f,63,68,67,6f,64,6e,6c,61,64,6c,65,6e,6b,6a,6a,67,70,00,00
"iahmfmagceknpmcekk"=hex:63,62,69,6a,6d,68,63,6a,70,6b,69,6d,65,70,65,63,62,62,
65,61,67,6c,62,6e,6d,6a,63,6f,67,63,70,6d,69,6e,68,6e,61,70,00,00
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{F7F0C993-C06A-43D3-136F-D50ACACAE426}*]
"iallpaannipbapoabl"=hex:69,61,6e,69,6d,70,6b,61,70,67,6d,65,66,63,6e,66,69,6b,
00,77
"hafmfnmcoangbnfm"=hex:69,61,6e,69,6d,70,6b,61,70,67,6d,65,66,63,6e,66,69,6b,
00,77
"iahcadibgmlhfehdng"=hex:63,61,6d,69,65,63,00,00
.
[HKEY_USERS\S-1-5-21-3323472497-44360149-3043929110-1000\Software\SecuROM\License information*]
"datasecu"=hex:2c,38,54,ae,07,1c,4e,07,99,05,ce,92,41,b5,b1,20,3f,0a,db,99,34,
7a,a0,07,e3,ec,d9,5b,80,cd,9f,a6,49,3c,ba,c8,81,4c,ec,8a,c8,32,3e,48,3e,de,\
"rkeysecu"=hex:c9,01,e2,11,bd,00,94,2d,14,35,83,fb,1b,0d,74,f9
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2013-11-12 12:04:32 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-11-12 11:04
.
Před spuštěním: Volných bajtů: 20 908 990 464
Po spuštění: Volných bajtů: 20 462 112 768
.
- - End Of File - - 2AEFB4773396E6CA23E5648BC01CE32E
A36C5E4F47E84449FF07ED3517B43A31
CPU: AMD Ryzen 5 1600 AF
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
GPU: Gigabyte GTX 1660 SUPER OC 6G
RAM: 16 GB
MB: MSI B450 TOMAHAWK MAX
PSU: EVGA 550 B3
Case: Zalman Z3 Plus
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 24 hostů