Zdravím, potřeboval bych prosím zkontrolovat log. Mám v PC něco co mi zpomaluje PC a žere točí procesor na 100%
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:31:39, on 23.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16736)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [ISUSScheduler] "c:\program files (x86)\common files\installshield\updateservice\issch.exe" -start
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [GetPrivate] C:\Program Files (x86)\GetPrivate\GetPrivate.exe
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [LightScribe Control Panel] c:\program files (x86)\common files\lightscribe\lightscribecontrolpanel.exe -hidden
O4 - HKCU\..\Run: [ISUSPM Startup] c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files (x86)\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe" /m
O4 - HKCU\..\Run: [sysXboot] "C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar"
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Users\makro\AppData\Local\DProtect\eBP.dll,C:\Users\makro\AppData\Local\DProtect\eBPSD.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Unknown owner - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Desura Install Service - Desura Pty Ltd - C:\Program Files (x86)\Common Files\Desura\desura_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - Unknown owner - C:\Windows\System32\ezSharedSvcHost.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Guard.Mail.ru - Unknown owner - C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Unknown owner - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (file missing)
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Unknown owner - C:\Windows\system32\NlsSrv32.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Software Updater (SrvUpdater) - Unknown owner - C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wsys Service (WsysSvc) - Wsys Co., Ltd. - C:\ProgramData\eSafe\eGdpSvc.exe
--
End of file - 13031 bytes
Kontrola logu - vytížený PC
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu - vytížený PC
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Pokud budou problémy , spusť v nouz. režimu.
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu - vytížený PC
# AdwCleaner v3.012 - Report created 23/11/2013 at 12:32:56
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : makro - HP
# Running from : C:\Users\makro\Downloads\adwcleaner (5).exe
# Option : Scan
***** [ Services ] *****
Service Found : SrvUpdater
Service Found : WsysSvc
***** [ Files / Folders ] *****
File Found : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_sb.scorecardresearch.com_0.localstorage
File Found : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
File Found : C:\Users\makro\AppData\Roaming\speedanalysis.ico
File Found : C:\Users\makro\Desktop\SpeedAnalysis.lnk
File Found : C:\Windows\System32\roboot64.exe
Folder Found C:\Program Files (x86)\BitLord 2
Folder Found C:\Program Files (x86)\SimilarSites
Folder Found C:\Program Files (x86)\SoftwareUpdater
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BeeMP3
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\eSafe
Folder Found C:\ProgramData\IBUpdaterService
Folder Found C:\ProgramData\Saveneshaire
Folder Found C:\ProgramData\SearchNewTab
Folder Found C:\ProgramData\soavensharee
Folder Found C:\Users\makro\AppData\Local\DProtect
Folder Found C:\Users\makro\AppData\Local\SwvUpdater
Folder Found C:\Users\makro\AppData\Roaming\Babylon
Folder Found C:\Users\makro\AppData\Roaming\BitLord
Folder Found C:\Users\makro\AppData\Roaming\EZDownloader
Folder Found C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
Folder Found C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com
Folder Found C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Found C:\Users\makro\AppData\Roaming\OpenCandy
Folder Found C:\Users\makro\AppData\Roaming\SimilarSites
Folder Found C:\Users\makro\Documents\BitLord
***** [ Shortcuts ] *****
Shortcut Found : C:\Users\makro\Desktop\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator\Visit FMS official website.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
***** [ Registry ] *****
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command [(Default)] - "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.delta-homes.com/?utm_source= ... 1380447078
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - "C:\Program Files (x86)\Internet Explorer\iexplore.exe" hxxp://www.delta-homes.com/?utm_source= ... 1380447078
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\CToolbar
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\WEDLMNGR
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\CToolbar
Key Found : [x64] HKCU\Software\ilivid
Key Found : [x64] HKCU\Software\InstallCore
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\WEDLMNGR
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKLM\SOFTWARE\Classes\FTDownloader
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\Software\CToolbar
Key Found : HKLM\Software\delta-homesSoftware
Key Found : HKLM\Software\DProtect
Key Found : HKLM\Software\eSafeSecControl
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\qvo6Software
Key Found : HKLM\Software\SoftwareUpdater
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\Vittalia
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16736
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
-\\ Mozilla Firefox v
-\\ Google Chrome v27.0.1453.116
[ File : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found : homepage
Found : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [12375 octets] - [23/11/2013 12:32:56]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [12436 octets] ##########
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : makro - HP
# Running from : C:\Users\makro\Downloads\adwcleaner (5).exe
# Option : Scan
***** [ Services ] *****
Service Found : SrvUpdater
Service Found : WsysSvc
***** [ Files / Folders ] *****
File Found : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_sb.scorecardresearch.com_0.localstorage
File Found : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
File Found : C:\Users\makro\AppData\Roaming\speedanalysis.ico
File Found : C:\Users\makro\Desktop\SpeedAnalysis.lnk
File Found : C:\Windows\System32\roboot64.exe
Folder Found C:\Program Files (x86)\BitLord 2
Folder Found C:\Program Files (x86)\SimilarSites
Folder Found C:\Program Files (x86)\SoftwareUpdater
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BeeMP3
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\eSafe
Folder Found C:\ProgramData\IBUpdaterService
Folder Found C:\ProgramData\Saveneshaire
Folder Found C:\ProgramData\SearchNewTab
Folder Found C:\ProgramData\soavensharee
Folder Found C:\Users\makro\AppData\Local\DProtect
Folder Found C:\Users\makro\AppData\Local\SwvUpdater
Folder Found C:\Users\makro\AppData\Roaming\Babylon
Folder Found C:\Users\makro\AppData\Roaming\BitLord
Folder Found C:\Users\makro\AppData\Roaming\EZDownloader
Folder Found C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
Folder Found C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com
Folder Found C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Found C:\Users\makro\AppData\Roaming\OpenCandy
Folder Found C:\Users\makro\AppData\Roaming\SimilarSites
Folder Found C:\Users\makro\Documents\BitLord
***** [ Shortcuts ] *****
Shortcut Found : C:\Users\makro\Desktop\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator\Visit FMS official website.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
Shortcut Found : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1379138698 )
***** [ Registry ] *****
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command [(Default)] - "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.delta-homes.com/?utm_source= ... 1380447078
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - "C:\Program Files (x86)\Internet Explorer\iexplore.exe" hxxp://www.delta-homes.com/?utm_source= ... 1380447078
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\CToolbar
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\WEDLMNGR
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\CToolbar
Key Found : [x64] HKCU\Software\ilivid
Key Found : [x64] HKCU\Software\InstallCore
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\WEDLMNGR
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKLM\SOFTWARE\Classes\FTDownloader
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\Software\CToolbar
Key Found : HKLM\Software\delta-homesSoftware
Key Found : HKLM\Software\DProtect
Key Found : HKLM\Software\eSafeSecControl
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\qvo6Software
Key Found : HKLM\Software\SoftwareUpdater
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\Vittalia
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16736
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1378834945
-\\ Mozilla Firefox v
-\\ Google Chrome v27.0.1453.116
[ File : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found : homepage
Found : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [12375 octets] - [23/11/2013 12:32:56]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [12436 octets] ##########
Re: Kontrola logu - vytížený PC
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.11.23.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
makro :: HP [administrátor]
23.11.2013 12:38:19
MBAM-log-2013-11-23 (12-54-47).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 48890
Uplynulý čas: 13 minut, 26 sekund
Nalezené procesy v paměti: 2
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> 1836 -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> 2824 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SYSTEM\CurrentControlSet\Services\WsysSvc (PUP.Optional.Wsys.A) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater (PUP.Optional.SoftwareUpdater.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 43
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\eSafe\temp_000.exe (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\ProgramData\soavensharee\ENo.exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Atom_Zombie_Smasher\atomzombiesmasher.exe (Trojan.Pincher) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\7Zip-csnwVgM.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\7Zip__3112_il604572 (1).exe (PUP.Optional.Amonetize.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\7Zip__3112_il604572.exe (PUP.Optional.Amonetize.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (1).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (2).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (3).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\Emergency_2014_FULL_GAME_[PC]-SKIDROW.exe (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\FreeAudioConverter-eatlK3L.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\FreeCodecPackSetup.exe (Adware.InstallBrain) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\GotClip_Setup.exe (PUP.Optional.Handy.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r484-n-bc.exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (1).exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (2).exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc.exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r934-n-bc.exe (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\installer_scrolls_mojang_alpha_0_11_English.exe (PUP.Optional.Vittalia) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\MediaInfo_Windows-setup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\OnlineWeather-4FME8ua.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\Organ_Trail_-_Directors_Cut.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_hacker-simulator.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_starforge.exe (PUP.Optional.Softonic) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_unity-web-player.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_uplink.exe (PUP.Optional.Softonic) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SumatraPDF-3e8XEve.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\Survive!_-_Uninhabited_Planet_6-10.exe (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (1).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (2).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (3).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (4).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (5).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (6).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (7).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC.exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VideoPlayer-4F6lCzF.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VideoPlayer-7U7s4L6.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\AppData\Local\DProtect\DPUninstall.exe (Trojan.Staser) -> Nebyla provedena žádná instrukce.
C:\Users\makro\AppData\Local\DProtect\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Nebyla provedena žádná instrukce.
(konec)
www.malwarebytes.org
Verze: v2013.11.23.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
makro :: HP [administrátor]
23.11.2013 12:38:19
MBAM-log-2013-11-23 (12-54-47).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 48890
Uplynulý čas: 13 minut, 26 sekund
Nalezené procesy v paměti: 2
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> 1836 -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> 2824 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SYSTEM\CurrentControlSet\Services\WsysSvc (PUP.Optional.Wsys.A) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater (PUP.Optional.SoftwareUpdater.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 43
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\eSafe\temp_000.exe (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\ProgramData\soavensharee\ENo.exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Atom_Zombie_Smasher\atomzombiesmasher.exe (Trojan.Pincher) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\7Zip-csnwVgM.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\7Zip__3112_il604572 (1).exe (PUP.Optional.Amonetize.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\7Zip__3112_il604572.exe (PUP.Optional.Amonetize.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (1).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (2).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (3).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game).exe (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\Emergency_2014_FULL_GAME_[PC]-SKIDROW.exe (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\FreeAudioConverter-eatlK3L.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\FreeCodecPackSetup.exe (Adware.InstallBrain) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\GotClip_Setup.exe (PUP.Optional.Handy.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r484-n-bc.exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (1).exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (2).exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc.exe (PUP.Optional.Vid) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\iLividSetup-r934-n-bc.exe (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\installer_scrolls_mojang_alpha_0_11_English.exe (PUP.Optional.Vittalia) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\MediaInfo_Windows-setup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\OnlineWeather-4FME8ua.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\Organ_Trail_-_Directors_Cut.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_hacker-simulator.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_starforge.exe (PUP.Optional.Softonic) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_unity-web-player.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SoftonicDownloader_for_uplink.exe (PUP.Optional.Softonic) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\SumatraPDF-3e8XEve.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\Survive!_-_Uninhabited_Planet_6-10.exe (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (1).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (2).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (3).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (4).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (5).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (6).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC (7).exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VDownloaderInstallerIC.exe (PUP.Optional.InstallCore) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VideoPlayer-4F6lCzF.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\Downloads\VideoPlayer-7U7s4L6.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\makro\AppData\Local\DProtect\DPUninstall.exe (Trojan.Staser) -> Nebyla provedena žádná instrukce.
C:\Users\makro\AppData\Local\DProtect\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Nebyla provedena žádná instrukce.
(konec)
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu - vytížený PC
V obou programech nech vše smnazat a dodej logy po smazání
Stáhni si Junkware Removal Tool
na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Stáhni si Junkware Removal Tool
na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: Kontrola logu - vytížený PC
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.11.23.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
makro :: HP [administrátor]
23.11.2013 15:01:50
mbam-log-2013-11-23 (15-01-50).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 48896
Uplynulý čas: 9 minut, 5 sekund
Nalezené procesy v paměti: 2
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> 1836 -> Bude smazán při restartu.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> 2824 -> Bude smazán při restartu.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SYSTEM\CurrentControlSet\Services\WsysSvc (PUP.Optional.Wsys.A) -> Přesun do karantény a smazání se zdařilo.
HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater (PUP.Optional.SoftwareUpdater.A) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Přesun do karantény a smazání se zdařilo.
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 43
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Bude smazán při restartu.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> Bude smazán při restartu.
C:\ProgramData\eSafe\temp_000.exe (Trojan.Downloader) -> Přesun do karantény a smazání se zdařilo.
C:\ProgramData\soavensharee\ENo.exe (PUP.Optional.MultiPlug.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Atom_Zombie_Smasher\atomzombiesmasher.exe (Trojan.Pincher) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\7Zip-csnwVgM.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\7Zip__3112_il604572 (1).exe (PUP.Optional.Amonetize.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\7Zip__3112_il604572.exe (PUP.Optional.Amonetize.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (1).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (2).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (3).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\Emergency_2014_FULL_GAME_[PC]-SKIDROW.exe (PUP.Optional.OneClickDownloader.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\FreeAudioConverter-eatlK3L.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\FreeCodecPackSetup.exe (Adware.InstallBrain) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\GotClip_Setup.exe (PUP.Optional.Handy.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r484-n-bc.exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (1).exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (2).exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc.exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r934-n-bc.exe (PUP.Optional.Bandoo) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\installer_scrolls_mojang_alpha_0_11_English.exe (PUP.Optional.Vittalia) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\MediaInfo_Windows-setup.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\OnlineWeather-4FME8ua.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\Organ_Trail_-_Directors_Cut.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_hacker-simulator.exe (PUP.Optional.Softonic.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_starforge.exe (PUP.Optional.Softonic) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_unity-web-player.exe (PUP.Optional.Softonic.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_uplink.exe (PUP.Optional.Softonic) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SumatraPDF-3e8XEve.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\Survive!_-_Uninhabited_Planet_6-10.exe (PUP.Optional.OneClickDownloader.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (1).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (2).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (3).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (4).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (5).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (6).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (7).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC.exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VideoPlayer-4F6lCzF.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VideoPlayer-7U7s4L6.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\AppData\Local\DProtect\DPUninstall.exe (Trojan.Staser) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\AppData\Local\DProtect\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Přesun do karantény a smazání se zdařilo.
(konec)
www.malwarebytes.org
Verze: v2013.11.23.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
makro :: HP [administrátor]
23.11.2013 15:01:50
mbam-log-2013-11-23 (15-01-50).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 48896
Uplynulý čas: 9 minut, 5 sekund
Nalezené procesy v paměti: 2
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> 1836 -> Bude smazán při restartu.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> 2824 -> Bude smazán při restartu.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SYSTEM\CurrentControlSet\Services\WsysSvc (PUP.Optional.Wsys.A) -> Přesun do karantény a smazání se zdařilo.
HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater (PUP.Optional.SoftwareUpdater.A) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Přesun do karantény a smazání se zdařilo.
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 43
C:\ProgramData\eSafe\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Bude smazán při restartu.
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> Bude smazán při restartu.
C:\ProgramData\eSafe\temp_000.exe (Trojan.Downloader) -> Přesun do karantény a smazání se zdařilo.
C:\ProgramData\soavensharee\ENo.exe (PUP.Optional.MultiPlug.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Atom_Zombie_Smasher\atomzombiesmasher.exe (Trojan.Pincher) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\7Zip-csnwVgM.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\7Zip__3112_il604572 (1).exe (PUP.Optional.Amonetize.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\7Zip__3112_il604572.exe (PUP.Optional.Amonetize.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (1).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (2).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game) (3).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\BitLordInstaller - Divekick - PC (Full Game).exe (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\Emergency_2014_FULL_GAME_[PC]-SKIDROW.exe (PUP.Optional.OneClickDownloader.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\FreeAudioConverter-eatlK3L.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\FreeCodecPackSetup.exe (Adware.InstallBrain) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\GotClip_Setup.exe (PUP.Optional.Handy.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r484-n-bc.exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (1).exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc (2).exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r563-n-bc.exe (PUP.Optional.Vid) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\iLividSetup-r934-n-bc.exe (PUP.Optional.Bandoo) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\installer_scrolls_mojang_alpha_0_11_English.exe (PUP.Optional.Vittalia) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\MediaInfo_Windows-setup.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\OnlineWeather-4FME8ua.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\Organ_Trail_-_Directors_Cut.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_hacker-simulator.exe (PUP.Optional.Softonic.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_starforge.exe (PUP.Optional.Softonic) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_unity-web-player.exe (PUP.Optional.Softonic.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SoftonicDownloader_for_uplink.exe (PUP.Optional.Softonic) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\SumatraPDF-3e8XEve.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\Survive!_-_Uninhabited_Planet_6-10.exe (PUP.Optional.OneClickDownloader.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (1).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (2).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (3).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (4).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (5).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (6).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC (7).exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VDownloaderInstallerIC.exe (PUP.Optional.InstallCore) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VideoPlayer-4F6lCzF.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\Downloads\VideoPlayer-7U7s4L6.exe (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\AppData\Local\DProtect\DPUninstall.exe (Trojan.Staser) -> Přesun do karantény a smazání se zdařilo.
C:\Users\makro\AppData\Local\DProtect\eGdpSvc.exe (PUP.Optional.Wsys.A) -> Přesun do karantény a smazání se zdařilo.
(konec)
Re: Kontrola logu - vytížený PC
# AdwCleaner v3.012 - Report created 23/11/2013 at 15:35:27
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : makro - HP
# Running from : C:\Users\makro\Downloads\adwcleaner (6).exe
# Option : Clean
***** [ Services ] *****
Service Deleted : SrvUpdater
Service Deleted : WsysSvc
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\eSafe
Folder Deleted : C:\ProgramData\IBUpdaterService
Folder Deleted : C:\ProgramData\BeeMP3
Folder Deleted : C:\ProgramData\Saveneshaire
Folder Deleted : C:\ProgramData\SearchNewTab
Folder Deleted : C:\ProgramData\soavensharee
Folder Deleted : C:\Program Files (x86)\BitLord 2
Folder Deleted : C:\Program Files (x86)\SimilarSites
Folder Deleted : C:\Program Files (x86)\SoftwareUpdater
Folder Deleted : C:\Users\makro\AppData\Local\DProtect
Folder Deleted : C:\Users\makro\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\makro\AppData\Roaming\Babylon
Folder Deleted : C:\Users\makro\AppData\Roaming\BitLord
Folder Deleted : C:\Users\makro\AppData\Roaming\EZDownloader
Folder Deleted : C:\Users\makro\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\makro\AppData\Roaming\SimilarSites
Folder Deleted : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
Folder Deleted : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com
Folder Deleted : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
[!] Folder Deleted : C:\Users\makro\Documents\BitLord
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\makro\AppData\Roaming\speedanalysis.ico
File Deleted : C:\Users\makro\Desktop\SpeedAnalysis.lnk
File Deleted : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_sb.scorecardresearch.com_0.localstorage
File Deleted : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\Users\makro\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator\Visit FMS official website.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Key Deleted : HKLM\SOFTWARE\Classes\FTDownloader
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasmancs
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\CToolbar
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\WEDLMNGR
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\CToolbar
Key Deleted : HKLM\Software\delta-homesSoftware
Key Deleted : HKLM\Software\DProtect
Key Deleted : HKLM\Software\eSafeSecControl
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\qvo6Software
Key Deleted : HKLM\Software\SoftwareUpdater
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\Vittalia
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\Users\makro\AppData\Local\DProtect\eBP.dll,
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\Users\makro\AppData\Local\DProtect\eBPSD.dll
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16736
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v
-\\ Google Chrome v27.0.1453.116
[ File : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted : homepage
Deleted : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [12581 octets] - [23/11/2013 12:32:56]
AdwCleaner[R1].txt - [12800 octets] - [23/11/2013 15:34:05]
AdwCleaner[S0].txt - [9698 octets] - [23/11/2013 15:35:27]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9758 octets] ##########
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : makro - HP
# Running from : C:\Users\makro\Downloads\adwcleaner (6).exe
# Option : Clean
***** [ Services ] *****
Service Deleted : SrvUpdater
Service Deleted : WsysSvc
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\eSafe
Folder Deleted : C:\ProgramData\IBUpdaterService
Folder Deleted : C:\ProgramData\BeeMP3
Folder Deleted : C:\ProgramData\Saveneshaire
Folder Deleted : C:\ProgramData\SearchNewTab
Folder Deleted : C:\ProgramData\soavensharee
Folder Deleted : C:\Program Files (x86)\BitLord 2
Folder Deleted : C:\Program Files (x86)\SimilarSites
Folder Deleted : C:\Program Files (x86)\SoftwareUpdater
Folder Deleted : C:\Users\makro\AppData\Local\DProtect
Folder Deleted : C:\Users\makro\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\makro\AppData\Roaming\Babylon
Folder Deleted : C:\Users\makro\AppData\Roaming\BitLord
Folder Deleted : C:\Users\makro\AppData\Roaming\EZDownloader
Folder Deleted : C:\Users\makro\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\makro\AppData\Roaming\SimilarSites
Folder Deleted : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
Folder Deleted : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com
Folder Deleted : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
[!] Folder Deleted : C:\Users\makro\Documents\BitLord
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\makro\AppData\Roaming\speedanalysis.ico
File Deleted : C:\Users\makro\Desktop\SpeedAnalysis.lnk
File Deleted : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_sb.scorecardresearch.com_0.localstorage
File Deleted : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\Users\makro\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator\Visit FMS official website.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\makro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Key Deleted : HKLM\SOFTWARE\Classes\FTDownloader
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasmancs
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluetoothview_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_euro-truck-simulator_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_minecraft_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_trakaxpc_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\CToolbar
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\WEDLMNGR
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\CToolbar
Key Deleted : HKLM\Software\delta-homesSoftware
Key Deleted : HKLM\Software\DProtect
Key Deleted : HKLM\Software\eSafeSecControl
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\qvo6Software
Key Deleted : HKLM\Software\SoftwareUpdater
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\Vittalia
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\Users\makro\AppData\Local\DProtect\eBP.dll,
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\Users\makro\AppData\Local\DProtect\eBPSD.dll
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16736
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v
-\\ Google Chrome v27.0.1453.116
[ File : C:\Users\makro\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted : homepage
Deleted : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [12581 octets] - [23/11/2013 12:32:56]
AdwCleaner[R1].txt - [12800 octets] - [23/11/2013 15:34:05]
AdwCleaner[S0].txt - [9698 octets] - [23/11/2013 15:35:27]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9758 octets] ##########
Re: Kontrola logu - vytížený PC
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by makro on so 23.11.2013 at 15:45:13,71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\installmate"
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{06737A4F-8523-4E33-A8C8-612E43BE9F3F}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{1062DCD0-83EE-4BFF-9017-1F37BFFD0F00}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{277E2753-40E1-4A43-AC10-1FE7833A9B69}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{3C413C51-57DD-4C07-92BD-BC69A07C9A14}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{41586D92-2EBE-4254-9DA3-AB88ACC8F1C0}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{5BBD5D17-6307-43DD-84CF-A619DA7F1A03}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{638BAE41-112D-47F8-9859-8FA6E9FD0A34}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{6599D7E6-343B-406A-91E9-8BAB8BDD957D}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{9937C98B-CB71-446D-B586-FEEAF5216BA1}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{BF6267A0-10C9-4946-BF59-2A95C0D7814A}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{F4305F87-B381-47A1-AC62-9F4DBC3F0E7F}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 23.11.2013 at 15:52:17,98
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by makro on so 23.11.2013 at 15:45:13,71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\installmate"
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{06737A4F-8523-4E33-A8C8-612E43BE9F3F}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{1062DCD0-83EE-4BFF-9017-1F37BFFD0F00}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{277E2753-40E1-4A43-AC10-1FE7833A9B69}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{3C413C51-57DD-4C07-92BD-BC69A07C9A14}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{41586D92-2EBE-4254-9DA3-AB88ACC8F1C0}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{5BBD5D17-6307-43DD-84CF-A619DA7F1A03}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{638BAE41-112D-47F8-9859-8FA6E9FD0A34}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{6599D7E6-343B-406A-91E9-8BAB8BDD957D}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{9937C98B-CB71-446D-B586-FEEAF5216BA1}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{BF6267A0-10C9-4946-BF59-2A95C0D7814A}
Successfully deleted: [Empty Folder] C:\Users\makro\appdata\local\{F4305F87-B381-47A1-AC62-9F4DBC3F0E7F}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 23.11.2013 at 15:52:17,98
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: Kontrola logu - vytížený PC
RogueKiller V8.7.8 _x64_ [Nov 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : makro [Práva správce]
Mód : Kontrola -- Datum : 11/23/2013 16:09:56
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> NALEZENO
[RUN][SUSP PATH] HKUS\S-1-5-21-1772999931-3250346356-2470139438-1000\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> NALEZENO
[RUN][ROGUE ST] HKLM\[...]\Wow6432Node\[...]\Run : 20131121 (C:\Program Files\AVAST Software\Avast\setup\emupdate\1242ee6e-df61-4840-9e2d-5540cd5a94ae.exe /check) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 csc3-2010-crl.verisign.com
127.0.0.1 ocsp.verisign.com
127.0.0.1 crl.verisign.com
127.0.0.1 download.dm.origin.com
127.0.0.1 secure.download.dm.origin.com
127.0.0.1 loginregistration.dm.origin.com
127.0.0.1 achievements.gameservices.ea.com
127.0.0.1 friends.dm.origin.com
127.0.0.1 avatar.dm.origin.com
127.0.0.1 ecommerce.dm.origin.com
127.0.0.1 static.cdn.ea.com
127.0.0.1 tealium.hs.llnwd.net
127.0.0.1 heartbeat.dm.origin.com
127.0.0.1 web.dm.origin.com
127.0.0.1 store.origin.com
127.0.0.1 ec2-54-243-231-82.compute-1.amazonaws.com
127.0.0.1 eaassets-a.akamaihd.net
127.0.0.1 ssl.resources.ea.com
127.0.0.1 akamai.cdn.ea.com
127.0.0.1 novafusion.ea.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD50 00BEVT-60A0RT0 SATA Disk Device +++++
--- User ---
[MBR] e53766b047c40806e4a691e0b8ae16e1
[BSP] dca0a32981a381ad7203c4c66460b380 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 459903 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 942290944 | Size: 16733 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_11232013_160956.txt >>
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : makro [Práva správce]
Mód : Kontrola -- Datum : 11/23/2013 16:09:56
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> NALEZENO
[RUN][SUSP PATH] HKUS\S-1-5-21-1772999931-3250346356-2470139438-1000\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> NALEZENO
[RUN][ROGUE ST] HKLM\[...]\Wow6432Node\[...]\Run : 20131121 (C:\Program Files\AVAST Software\Avast\setup\emupdate\1242ee6e-df61-4840-9e2d-5540cd5a94ae.exe /check) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 csc3-2010-crl.verisign.com
127.0.0.1 ocsp.verisign.com
127.0.0.1 crl.verisign.com
127.0.0.1 download.dm.origin.com
127.0.0.1 secure.download.dm.origin.com
127.0.0.1 loginregistration.dm.origin.com
127.0.0.1 achievements.gameservices.ea.com
127.0.0.1 friends.dm.origin.com
127.0.0.1 avatar.dm.origin.com
127.0.0.1 ecommerce.dm.origin.com
127.0.0.1 static.cdn.ea.com
127.0.0.1 tealium.hs.llnwd.net
127.0.0.1 heartbeat.dm.origin.com
127.0.0.1 web.dm.origin.com
127.0.0.1 store.origin.com
127.0.0.1 ec2-54-243-231-82.compute-1.amazonaws.com
127.0.0.1 eaassets-a.akamaihd.net
127.0.0.1 ssl.resources.ea.com
127.0.0.1 akamai.cdn.ea.com
127.0.0.1 novafusion.ea.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD50 00BEVT-60A0RT0 SATA Disk Device +++++
--- User ---
[MBR] e53766b047c40806e4a691e0b8ae16e1
[BSP] dca0a32981a381ad7203c4c66460b380 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 459903 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 942290944 | Size: 16733 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_11232013_160956.txt >>
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu - vytížený PC
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:zev souboru: zde napiš: FixHosts.bat
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Poklepáním na soubor ho spusť.
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE
Kód: Vybrat vše
@echo off
del /q /a /f %systemroot%\system32\drivers\etc\hosts 2>nul
echo 127.0.0.1 localhost>>%systemroot%\system32\drivers\etc\hosts
exit
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:zev souboru: zde napiš: FixHosts.bat
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Poklepáním na soubor ho spusť.
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu - vytížený PC
RogueKiller V8.7.8 _x64_ [Nov 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : makro [Práva správce]
Mód : Odebrat -- Datum : 11/24/2013 11:12:59
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> VYMAZÁNO
[RUN][SUSP PATH] HKUS\S-1-5-21-1772999931-3250346356-2470139438-1000\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> [0x2] Systém nemůže nalézt uvedený soubor.
[RUN][ROGUE ST] HKLM\[...]\Wow6432Node\[...]\Run : 20131121 (C:\Program Files\AVAST Software\Avast\setup\emupdate\1242ee6e-df61-4840-9e2d-5540cd5a94ae.exe /check) -> [0x5] Přístup byl odepřen.
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD50 00BEVT-60A0RT0 SATA Disk Device +++++
--- User ---
[MBR] e53766b047c40806e4a691e0b8ae16e1
[BSP] dca0a32981a381ad7203c4c66460b380 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 459903 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 942290944 | Size: 16733 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_11242013_111259.txt >>
RKreport[0]_S_11232013_160956.txt;RKreport[0]_S_11242013_111229.txt
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : makro [Práva správce]
Mód : Odebrat -- Datum : 11/24/2013 11:12:59
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> VYMAZÁNO
[RUN][SUSP PATH] HKUS\S-1-5-21-1772999931-3250346356-2470139438-1000\[...]\Run : sysXboot ("C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\makro\AppData\Local\Temp\sysXboot2644727732783605188.jar" [7][x]) -> [0x2] Systém nemůže nalézt uvedený soubor.
[RUN][ROGUE ST] HKLM\[...]\Wow6432Node\[...]\Run : 20131121 (C:\Program Files\AVAST Software\Avast\setup\emupdate\1242ee6e-df61-4840-9e2d-5540cd5a94ae.exe /check) -> [0x5] Přístup byl odepřen.
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD50 00BEVT-60A0RT0 SATA Disk Device +++++
--- User ---
[MBR] e53766b047c40806e4a691e0b8ae16e1
[BSP] dca0a32981a381ad7203c4c66460b380 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 459903 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 942290944 | Size: 16733 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_11242013_111259.txt >>
RKreport[0]_S_11232013_160956.txt;RKreport[0]_S_11242013_111229.txt
Re: Kontrola logu - vytížený PC
11:15:11.0354 0x0b9c TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
11:15:14.0084 0x0b9c ============================================================
11:15:14.0084 0x0b9c Current date / time: 2013/11/24 11:15:14.0084
11:15:14.0084 0x0b9c SystemInfo:
11:15:14.0084 0x0b9c
11:15:14.0084 0x0b9c OS Version: 6.1.7601 ServicePack: 1.0
11:15:14.0084 0x0b9c Product type: Workstation
11:15:14.0084 0x0b9c ComputerName: HP
11:15:14.0084 0x0b9c UserName: makro
11:15:14.0084 0x0b9c Windows directory: C:\Windows
11:15:14.0084 0x0b9c System windows directory: C:\Windows
11:15:14.0084 0x0b9c Running under WOW64
11:15:14.0084 0x0b9c Processor architecture: Intel x64
11:15:14.0084 0x0b9c Number of processors: 2
11:15:14.0084 0x0b9c Page size: 0x1000
11:15:14.0084 0x0b9c Boot type: Normal boot
11:15:14.0084 0x0b9c ============================================================
11:15:16.0627 0x0b9c KLMD registered as C:\Windows\system32\drivers\29624006.sys
11:15:16.0689 0x0b9c System UUID: {97DE1046-F5E1-3E91-932F-9A632CF114F3}
11:15:17.0219 0x0b9c Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:15:17.0219 0x0b9c ============================================================
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0:
11:15:17.0219 0x0b9c MBR partitions:
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x3823F800
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x382A3800, BlocksNum 0x20AE800
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
11:15:17.0219 0x0b9c ============================================================
11:15:17.0251 0x0b9c C: <-> \Device\Harddisk0\DR0\Partition2
11:15:17.0297 0x0b9c D: <-> \Device\Harddisk0\DR0\Partition3
11:15:17.0297 0x0b9c ============================================================
11:15:17.0297 0x0b9c Initialize success
11:15:17.0297 0x0b9c ============================================================
11:15:29.0575 0x06e8 ============================================================
11:15:29.0575 0x06e8 Scan started
11:15:29.0575 0x06e8 Mode: Manual;
11:15:29.0575 0x06e8 ============================================================
11:15:29.0575 0x06e8 KSN ping started
11:15:43.0381 0x06e8 KSN ping finished: true
11:15:44.0051 0x06e8 ================ Scan system memory ========================
11:15:44.0051 0x06e8 System memory - ok
11:15:44.0051 0x06e8 ================ Scan services =============================
11:15:44.0239 0x06e8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:15:44.0239 0x06e8 1394ohci - ok
11:15:44.0301 0x06e8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:15:44.0301 0x06e8 ACPI - ok
11:15:44.0317 0x06e8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:15:44.0317 0x06e8 AcpiPmi - ok
11:15:44.0441 0x06e8 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:15:44.0441 0x06e8 AdobeARMservice - ok
11:15:44.0582 0x06e8 [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:15:44.0597 0x06e8 AdobeFlashPlayerUpdateSvc - ok
11:15:44.0644 0x06e8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:15:44.0644 0x06e8 adp94xx - ok
11:15:44.0675 0x06e8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:15:44.0691 0x06e8 adpahci - ok
11:15:44.0722 0x06e8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:15:44.0738 0x06e8 adpu320 - ok
11:15:44.0800 0x06e8 [ 993F7B0BA5188A0007C085AA10257B8E, D4F8B52DAD483287CDBA189ADCD027ABACE268E63C9A63E09A12A2E14CD36B88 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
11:15:44.0816 0x06e8 AdvancedSystemCareService6 - ok
11:15:44.0831 0x06e8 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:15:44.0831 0x06e8 AeLookupSvc - ok
11:15:44.0878 0x06e8 AERTFilters - ok
11:15:44.0941 0x06e8 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
11:15:44.0956 0x06e8 AFD - ok
11:15:45.0003 0x06e8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
11:15:45.0003 0x06e8 agp440 - ok
11:15:45.0034 0x06e8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
11:15:45.0050 0x06e8 ALG - ok
11:15:45.0065 0x06e8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
11:15:45.0065 0x06e8 aliide - ok
11:15:45.0112 0x06e8 [ 095244DA74295F6065795067B130DFF0, B5354405536DB5E00446579FF80BE40F8250D708BDF166DA9D2C01CD4C456209 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:15:45.0112 0x06e8 AMD External Events Utility - ok
11:15:45.0175 0x06e8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
11:15:45.0175 0x06e8 amdide - ok
11:15:45.0206 0x06e8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:15:45.0206 0x06e8 AmdK8 - ok
11:15:45.0518 0x06e8 [ C313EECF87919C97D7AA3F442319C95E, 6990F897A606448DD4E038941DD921CC46235E3687AFB36C5988DC6E1AA1EFD2 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:15:45.0674 0x06e8 amdkmdag - ok
11:15:45.0721 0x06e8 [ AA7A30072F3E9BCE4C5F4E03D9FC9684, AC62D07B7C44C4AEE5F9DBDD37E722B13DD1C26C6421F9409E66B1A86820F491 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
11:15:45.0736 0x06e8 amdkmdap - ok
11:15:45.0767 0x06e8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:15:45.0767 0x06e8 AmdPPM - ok
11:15:45.0799 0x06e8 [ 53D8D46D51D390ABDB54ECA623165CB7, D16A3604412D0DC3EA68320FB6980D146ED60D587AAB6B65810C038AFF1EC237 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
11:15:45.0799 0x06e8 amdsata - ok
11:15:45.0861 0x06e8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:15:45.0861 0x06e8 amdsbs - ok
11:15:45.0877 0x06e8 [ 75C51148154E34EB3D7BB84749A758D5, 8865F223CBAE166A9BF6CBCDA66F63369F151CCB449A28E95560C36AD45D0C85 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
11:15:45.0877 0x06e8 amdxata - ok
11:15:45.0923 0x06e8 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
11:15:45.0923 0x06e8 AppID - ok
11:15:45.0955 0x06e8 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:15:45.0955 0x06e8 AppIDSvc - ok
11:15:45.0986 0x06e8 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
11:15:45.0986 0x06e8 Appinfo - ok
11:15:46.0017 0x06e8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
11:15:46.0017 0x06e8 arc - ok
11:15:46.0048 0x06e8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:15:46.0048 0x06e8 arcsas - ok
11:15:46.0142 0x06e8 [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:15:46.0173 0x06e8 aspnet_state - ok
11:15:46.0204 0x06e8 [ 9F34AA1124EEA112E49E48258B1D6394, F8648E5EDD7DDFE8D0F5F410E90D0713381A5DB0980D4F0D13D6A5B1F9F4E9A6 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
11:15:46.0220 0x06e8 aswFsBlk - ok
11:15:46.0251 0x06e8 [ 5C49AB607897C94E123EC8364FF4BF61, 77F69B00DDE1433C115AA617E0063CB93EE29B3E8D168EF2497E31DD573D5A13 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
11:15:46.0251 0x06e8 aswMonFlt - ok
11:15:46.0298 0x06e8 [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
11:15:46.0298 0x06e8 aswRdr - ok
11:15:46.0329 0x06e8 [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
11:15:46.0345 0x06e8 aswRvrt - ok
11:15:46.0423 0x06e8 [ 1BA60C77EB3CDB6129DAD25BAF675F43, 1D5BB6B427E065494C8A363996974048C890F9DBBEEF305B7034873696DFD969 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
11:15:46.0454 0x06e8 aswSnx - ok
11:15:46.0532 0x06e8 [ 79ADA401A6E2054F110E7FBDFAC71942, 0E551FB9E5FE598900036E872E16EB407F7F63FD7A8A0AFAB5094D9DFA75CFCF ] aswSP C:\Windows\system32\drivers\aswSP.sys
11:15:46.0532 0x06e8 aswSP - ok
11:15:46.0547 0x06e8 [ 6FFECAE6A7BF190D4A3D7AFA6D7B5478, 9BFBF0CEB0B947EED45675F4A321777E78405A07FFAA91BE3404BE03947EF033 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
11:15:46.0547 0x06e8 aswTdi - ok
11:15:46.0610 0x06e8 [ 59787B95DD9CA44CB139D96863438587, C36E1A812931BBEACE38BF1E621C950439144979E31961C016AD1AE323579058 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
11:15:46.0610 0x06e8 aswVmm - ok
11:15:46.0641 0x06e8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:15:46.0641 0x06e8 AsyncMac - ok
11:15:46.0688 0x06e8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
11:15:46.0688 0x06e8 atapi - ok
11:15:46.0735 0x06e8 [ 2D648572BA9A610952FCAFBA1E119C2D, 4CD7E7D3C878DEF8CC18A925EAB1E0E8E8893BE99DA1E1F78FE9AD12EF1C48BC ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
11:15:46.0735 0x06e8 AtiHdmiService - ok
11:15:46.0766 0x06e8 [ E82E61F46D1336447F4DEFF8C074F13E, 9FC152B33F1D9F5684B687743E943AA26AC17A1093F4C31A43C7012E70BC302E ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie64.sys
11:15:46.0766 0x06e8 AtiPcie - ok
11:15:46.0828 0x06e8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:15:46.0859 0x06e8 AudioEndpointBuilder - ok
11:15:46.0891 0x06e8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:15:46.0906 0x06e8 AudioSrv - ok
11:15:47.0000 0x06e8 [ 4D41D30E2FAB3307967C7A0B045DC874, 620482D08544478862C78285E17DEE9BC3466DF8B62BD502B0C17AE6501D2B5E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:15:47.0000 0x06e8 avast! Antivirus - ok
11:15:47.0047 0x06e8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:15:47.0062 0x06e8 AxInstSV - ok
11:15:47.0093 0x06e8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:15:47.0109 0x06e8 b06bdrv - ok
11:15:47.0140 0x06e8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:15:47.0140 0x06e8 b57nd60a - ok
11:15:47.0296 0x06e8 [ 810BE94A9E42309B3F74217AC28BC6AC, 98959361B715911553434FF5AFAC2C4C71BE2AF032B935A2B84EBC56E81ED32E ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
11:15:47.0359 0x06e8 BCM43XX - ok
11:15:47.0405 0x06e8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
11:15:47.0405 0x06e8 BDESVC - ok
11:15:47.0421 0x06e8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
11:15:47.0421 0x06e8 Beep - ok
11:15:47.0499 0x06e8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
11:15:47.0530 0x06e8 BFE - ok
11:15:47.0639 0x06e8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
11:15:47.0686 0x06e8 BITS - ok
11:15:47.0702 0x06e8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:15:47.0702 0x06e8 blbdrive - ok
11:15:47.0733 0x06e8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:15:47.0733 0x06e8 bowser - ok
11:15:47.0749 0x06e8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:15:47.0749 0x06e8 BrFiltLo - ok
11:15:47.0780 0x06e8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:15:47.0780 0x06e8 BrFiltUp - ok
11:15:47.0795 0x06e8 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:15:47.0811 0x06e8 BridgeMP - ok
11:15:47.0873 0x06e8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
11:15:47.0873 0x06e8 Browser - ok
11:15:47.0920 0x06e8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:15:47.0920 0x06e8 Brserid - ok
11:15:47.0951 0x06e8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:15:47.0951 0x06e8 BrSerWdm - ok
11:15:47.0983 0x06e8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:15:47.0983 0x06e8 BrUsbMdm - ok
11:15:47.0998 0x06e8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:15:47.0998 0x06e8 BrUsbSer - ok
11:15:48.0061 0x06e8 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:15:48.0061 0x06e8 BthEnum - ok
11:15:48.0076 0x06e8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:15:48.0092 0x06e8 BTHMODEM - ok
11:15:48.0107 0x06e8 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:15:48.0107 0x06e8 BthPan - ok
11:15:48.0185 0x06e8 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
11:15:48.0201 0x06e8 BTHPORT - ok
11:15:48.0232 0x06e8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
11:15:48.0232 0x06e8 bthserv - ok
11:15:48.0295 0x06e8 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
11:15:48.0295 0x06e8 BTHUSB - ok
11:15:48.0295 0x06e8 btwampfl - ok
11:15:48.0310 0x06e8 btwaudio - ok
11:15:48.0310 0x06e8 btwavdt - ok
11:15:48.0310 0x06e8 btwl2cap - ok
11:15:48.0326 0x06e8 btwrchid - ok
11:15:48.0357 0x06e8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:15:48.0357 0x06e8 cdfs - ok
11:15:48.0388 0x06e8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:15:48.0404 0x06e8 cdrom - ok
11:15:48.0451 0x06e8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
11:15:48.0451 0x06e8 CertPropSvc - ok
11:15:48.0466 0x06e8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:15:48.0466 0x06e8 circlass - ok
11:15:48.0513 0x06e8 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
11:15:48.0513 0x06e8 CLFS - ok
11:15:48.0607 0x06e8 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:15:48.0607 0x06e8 clr_optimization_v2.0.50727_32 - ok
11:15:48.0638 0x06e8 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:15:48.0638 0x06e8 clr_optimization_v2.0.50727_64 - ok
11:15:48.0700 0x06e8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:15:48.0778 0x06e8 clr_optimization_v4.0.30319_32 - ok
11:15:48.0809 0x06e8 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:15:48.0950 0x06e8 clr_optimization_v4.0.30319_64 - ok
11:15:48.0981 0x06e8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:15:48.0981 0x06e8 CmBatt - ok
11:15:49.0028 0x06e8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:15:49.0028 0x06e8 cmdide - ok
11:15:49.0106 0x06e8 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
11:15:49.0106 0x06e8 CNG - ok
11:15:49.0137 0x06e8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:15:49.0137 0x06e8 Compbatt - ok
11:15:49.0153 0x06e8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:15:49.0153 0x06e8 CompositeBus - ok
11:15:49.0153 0x06e8 COMSysApp - ok
11:15:49.0184 0x06e8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:15:49.0184 0x06e8 crcdisk - ok
11:15:49.0262 0x06e8 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:15:49.0277 0x06e8 CryptSvc - ok
11:15:49.0340 0x06e8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:15:49.0371 0x06e8 DcomLaunch - ok
11:15:49.0402 0x06e8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
11:15:49.0418 0x06e8 defragsvc - ok
11:15:49.0527 0x06e8 [ 2B9A817DC1BDAD9CE5495099B6A7136A, 6D040069C6CD249A4113E4BDD16658D02685F6018F804654934A03F5E2D161A8 ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
11:15:49.0543 0x06e8 Desura Install Service - ok
11:15:49.0574 0x06e8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:15:49.0574 0x06e8 DfsC - ok
11:15:49.0652 0x06e8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:15:49.0652 0x06e8 Dhcp - ok
11:15:49.0683 0x06e8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
11:15:49.0683 0x06e8 discache - ok
11:15:49.0730 0x06e8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:15:49.0730 0x06e8 Disk - ok
11:15:49.0761 0x06e8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:15:49.0761 0x06e8 Dnscache - ok
11:15:49.0823 0x06e8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
11:15:49.0839 0x06e8 dot3svc - ok
11:15:49.0886 0x06e8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
11:15:49.0901 0x06e8 DPS - ok
11:15:49.0917 0x06e8 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:15:49.0917 0x06e8 drmkaud - ok
11:15:49.0948 0x06e8 [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:15:49.0964 0x06e8 dtsoftbus01 - ok
11:15:50.0057 0x06e8 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:15:50.0089 0x06e8 DXGKrnl - ok
11:15:50.0089 0x06e8 EagleX64 - ok
11:15:50.0135 0x06e8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
11:15:50.0135 0x06e8 EapHost - ok
11:15:50.0276 0x06e8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:15:50.0354 0x06e8 ebdrv - ok
11:15:50.0416 0x06e8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
11:15:50.0416 0x06e8 EFS - ok
11:15:50.0510 0x06e8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:15:50.0541 0x06e8 ehRecvr - ok
11:15:50.0572 0x06e8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
11:15:50.0588 0x06e8 ehSched - ok
11:15:50.0619 0x06e8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:15:50.0635 0x06e8 elxstor - ok
11:15:50.0666 0x06e8 [ 587F0F4145A1536A6E37EFD769B7665F, EEBCB7E3B2470F7316C3584F90439FB0E4004BAA7A5CD6FAA4F549126DED44C7 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
11:15:50.0666 0x06e8 epfw - ok
11:15:50.0697 0x06e8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:15:50.0697 0x06e8 ErrDev - ok
11:15:50.0775 0x06e8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
11:15:50.0775 0x06e8 EventSystem - ok
11:15:50.0806 0x06e8 [ 53913561A7089C9A4649CE4E42F6101B, A3806C76A179017EB7B51BBDFF9507C740BBBA7697819B2FD79E4B2D57E3130E ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
11:15:50.0822 0x06e8 ewusbnet - ok
11:15:50.0837 0x06e8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
11:15:50.0853 0x06e8 exfat - ok
11:15:50.0853 0x06e8 ezSharedSvc - ok
11:15:50.0884 0x06e8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:15:50.0900 0x06e8 fastfat - ok
11:15:50.0962 0x06e8 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
11:15:50.0993 0x06e8 Fax - ok
11:15:51.0087 0x06e8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:15:51.0087 0x06e8 fdc - ok
11:15:51.0103 0x06e8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
11:15:51.0103 0x06e8 fdPHost - ok
11:15:51.0134 0x06e8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
11:15:51.0134 0x06e8 FDResPub - ok
11:15:51.0149 0x06e8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:15:51.0149 0x06e8 FileInfo - ok
11:15:51.0165 0x06e8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:15:51.0165 0x06e8 Filetrace - ok
11:15:51.0196 0x06e8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:15:51.0196 0x06e8 flpydisk - ok
11:15:51.0259 0x06e8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:15:51.0274 0x06e8 FltMgr - ok
11:15:51.0337 0x06e8 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
11:15:51.0383 0x06e8 FontCache - ok
11:15:51.0461 0x06e8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:15:51.0461 0x06e8 FontCache3.0.0.0 - ok
11:15:51.0508 0x06e8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:15:51.0508 0x06e8 FsDepends - ok
11:15:51.0571 0x06e8 [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
11:15:51.0571 0x06e8 fssfltr - ok
11:15:51.0695 0x06e8 [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
11:15:51.0773 0x06e8 fsssvc - ok
11:15:51.0820 0x06e8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:15:51.0836 0x06e8 Fs_Rec - ok
11:15:51.0867 0x06e8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:15:51.0867 0x06e8 fvevol - ok
11:15:51.0914 0x06e8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:15:51.0914 0x06e8 gagp30kx - ok
11:15:51.0961 0x06e8 [ CE16683CFD11FE70BDE435DDA5EA1FCA, 43D850361F2B5C9389F7FABC3C62BD1517349C03834F436579DD01CFD09919F4 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
11:15:51.0976 0x06e8 GameConsoleService - ok
11:15:52.0054 0x06e8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
11:15:52.0085 0x06e8 gpsvc - ok
11:15:52.0179 0x06e8 [ E859CA020ED61899F3C74A8D0032D05C, 6BDB0E1E8AA0CA2AFE82EEB86936E824DC5D8473D1539A953EA5369DB04E63CE ] Guard.Mail.ru C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
11:15:52.0241 0x06e8 Guard.Mail.ru - ok
11:15:52.0273 0x06e8 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
11:15:52.0273 0x06e8 hamachi - ok
11:15:52.0522 0x06e8 [ A5DB93213D55EE179099D01A849E7CEB, A138F6E0E65DAB7983732CE13D49958E6BAB691F23A130F745D68533E30914A4 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
11:15:52.0585 0x06e8 Hamachi2Svc - ok
11:15:52.0616 0x06e8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:15:52.0616 0x06e8 hcw85cir - ok
11:15:52.0647 0x06e8 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:15:52.0663 0x06e8 HdAudAddService - ok
11:15:52.0678 0x06e8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:15:52.0678 0x06e8 HDAudBus - ok
11:15:52.0709 0x06e8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:15:52.0709 0x06e8 HidBatt - ok
11:15:52.0741 0x06e8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:15:52.0741 0x06e8 HidBth - ok
11:15:52.0772 0x06e8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:15:52.0772 0x06e8 HidIr - ok
11:15:52.0803 0x06e8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
11:15:52.0803 0x06e8 hidserv - ok
11:15:52.0850 0x06e8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:15:52.0850 0x06e8 HidUsb - ok
11:15:52.0881 0x06e8 HiPatchService - ok
11:15:52.0928 0x06e8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:15:52.0943 0x06e8 hkmsvc - ok
11:15:52.0990 0x06e8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:15:52.0990 0x06e8 HomeGroupListener - ok
11:15:53.0053 0x06e8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:15:53.0053 0x06e8 HomeGroupProvider - ok
11:15:53.0131 0x06e8 [ 3F4ADD4196E2B860019539837BE305F9, CE9BE48609A85FFF42AE358112DABE4E9E566F37B20477CC142669DA24A82343 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
11:15:53.0146 0x06e8 HP Health Check Service - ok
11:15:53.0193 0x06e8 [ 3A09322A8AA8B0C79036686A0EBE7B4C, A110ECBBD9A0EDAA134B95F9FB3428F33F7629480ABCF36F58891837EE1B04C0 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
11:15:53.0193 0x06e8 HP Wireless Assistant Service - ok
11:15:53.0240 0x06e8 [ EF3EA06057132138B4E5895A61601DBE, ABFA2DA02271486DD1D52D68727403C6F6D4C355B62E627E247340E2B7F85A1A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
11:15:53.0240 0x06e8 hpqwmiex - ok
11:15:53.0271 0x06e8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:15:53.0271 0x06e8 HpSAMD - ok
11:15:53.0302 0x06e8 [ 9DF9CF7840A3A99F2FFD614F0A13F2F9, 375C1FBED25FCEE78CA0945232EE93BA90FE260E5AB6D1331B7456CDD5C5F0AC ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
11:15:53.0302 0x06e8 HPWMISVC - ok
11:15:53.0380 0x06e8 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:15:53.0396 0x06e8 HTTP - ok
11:15:53.0443 0x06e8 [ D96A290F699081AE737390C0FE329D7C, 11D69424AD08AEA58AA546883535E6D8E51E2F3D0B5299549DC0B7A31498E982 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
11:15:53.0443 0x06e8 hwdatacard - ok
11:15:53.0489 0x06e8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:15:53.0489 0x06e8 hwpolicy - ok
11:15:53.0521 0x06e8 [ E0C7255498640FC64B19AAE17FD6F965, 10BCE55F36A36F962A7BA774B8B4C0F07081EA1EAB0FD3B8C57AA01FE8CFDF48 ] hwusbfake C:\Windows\system32\DRIVERS\ewusbfake.sys
11:15:53.0521 0x06e8 hwusbfake - ok
11:15:53.0552 0x06e8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:15:53.0567 0x06e8 i8042prt - ok
11:15:53.0599 0x06e8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:15:53.0614 0x06e8 iaStorV - ok
11:15:53.0677 0x06e8 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:15:53.0677 0x06e8 IDriverT - ok
11:15:53.0770 0x06e8 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:15:53.0817 0x06e8 idsvc - ok
11:15:54.0067 0x06e8 [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:15:54.0207 0x06e8 igfx - ok
11:15:54.0254 0x06e8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:15:54.0254 0x06e8 iirsp - ok
11:15:54.0347 0x06e8 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
11:15:54.0394 0x06e8 IKEEXT - ok
11:15:54.0566 0x06e8 [ CCEDD47ABD068C58C8513DEB785093BB, 2B5571688655265037ACB44D2F2E0CD646EC0567D823C32CA09F13A1814C241B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:15:54.0659 0x06e8 IntcAzAudAddService - ok
11:15:54.0706 0x06e8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
11:15:54.0706 0x06e8 intelide - ok
11:15:54.0737 0x06e8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:15:54.0753 0x06e8 intelppm - ok
11:15:54.0769 0x06e8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:15:54.0784 0x06e8 IPBusEnum - ok
11:15:54.0831 0x06e8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:54.0831 0x06e8 IpFilterDriver - ok
11:15:54.0909 0x06e8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:15:54.0940 0x06e8 iphlpsvc - ok
11:15:54.0971 0x06e8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:15:54.0987 0x06e8 IPMIDRV - ok
11:15:55.0003 0x06e8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:15:55.0003 0x06e8 IPNAT - ok
11:15:55.0034 0x06e8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:15:55.0034 0x06e8 IRENUM - ok
11:15:55.0049 0x06e8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:15:55.0049 0x06e8 isapnp - ok
11:15:55.0081 0x06e8 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:15:55.0081 0x06e8 iScsiPrt - ok
11:15:55.0112 0x06e8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:15:55.0112 0x06e8 kbdclass - ok
11:15:55.0127 0x06e8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:15:55.0127 0x06e8 kbdhid - ok
11:15:55.0143 0x06e8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
11:15:55.0143 0x06e8 KeyIso - ok
11:15:55.0205 0x06e8 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:15:55.0205 0x06e8 KSecDD - ok
11:15:55.0237 0x06e8 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:15:55.0237 0x06e8 KSecPkg - ok
11:15:55.0268 0x06e8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:15:55.0283 0x06e8 ksthunk - ok
11:15:55.0330 0x06e8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
11:15:55.0346 0x06e8 KtmRm - ok
11:15:55.0393 0x06e8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:15:55.0408 0x06e8 LanmanServer - ok
11:15:55.0455 0x06e8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:15:55.0455 0x06e8 LanmanWorkstation - ok
11:15:55.0486 0x06e8 LightScribeService - ok
11:15:55.0533 0x06e8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:15:55.0533 0x06e8 lltdio - ok
11:15:55.0580 0x06e8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:15:55.0580 0x06e8 lltdsvc - ok
11:15:55.0595 0x06e8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:15:55.0611 0x06e8 lmhosts - ok
11:15:55.0705 0x06e8 [ 02468469C450CD16FB66A56FAB70138B, 9C3788B3DB2DBF9DE192447EADB6F1A17B69FC4813284B86E589784A53154FAA ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
11:15:55.0720 0x06e8 LMIGuardianSvc - ok
11:15:55.0767 0x06e8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:15:55.0767 0x06e8 LSI_FC - ok
11:15:55.0798 0x06e8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:15:55.0798 0x06e8 LSI_SAS - ok
11:15:55.0829 0x06e8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:15:55.0829 0x06e8 LSI_SAS2 - ok
11:15:55.0845 0x06e8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:15:55.0845 0x06e8 LSI_SCSI - ok
11:15:55.0861 0x06e8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
11:15:55.0861 0x06e8 luafv - ok
11:15:55.0923 0x06e8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:15:55.0923 0x06e8 Mcx2Svc - ok
11:15:55.0954 0x06e8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:15:55.0954 0x06e8 megasas - ok
11:15:55.0970 0x06e8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:15:55.0985 0x06e8 MegaSR - ok
11:15:56.0017 0x06e8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
11:15:56.0017 0x06e8 MMCSS - ok
11:15:56.0048 0x06e8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
11:15:56.0048 0x06e8 Modem - ok
11:15:56.0063 0x06e8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:15:56.0063 0x06e8 monitor - ok
11:15:56.0095 0x06e8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:15:56.0110 0x06e8 mouclass - ok
11:15:56.0110 0x06e8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:15:56.0110 0x06e8 mouhid - ok
11:15:56.0157 0x06e8 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:15:56.0157 0x06e8 mountmgr - ok
11:15:56.0188 0x06e8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
11:15:56.0188 0x06e8 mpio - ok
11:15:56.0219 0x06e8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:15:56.0219 0x06e8 mpsdrv - ok
11:15:56.0297 0x06e8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:15:56.0344 0x06e8 MpsSvc - ok
11:15:56.0422 0x06e8 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:15:56.0422 0x06e8 MRxDAV - ok
11:15:56.0453 0x06e8 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:56.0469 0x06e8 mrxsmb - ok
11:15:56.0516 0x06e8 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:56.0531 0x06e8 mrxsmb10 - ok
11:15:56.0547 0x06e8 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:56.0547 0x06e8 mrxsmb20 - ok
11:15:56.0594 0x06e8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
11:15:56.0594 0x06e8 msahci - ok
11:15:56.0625 0x06e8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:15:56.0625 0x06e8 msdsm - ok
11:15:56.0656 0x06e8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
11:15:56.0656 0x06e8 MSDTC - ok
11:15:56.0687 0x06e8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:15:56.0703 0x06e8 Msfs - ok
11:15:56.0719 0x06e8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:15:56.0719 0x06e8 mshidkmdf - ok
11:15:56.0765 0x06e8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:15:56.0765 0x06e8 msisadrv - ok
11:15:56.0781 0x06e8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:15:56.0797 0x06e8 MSiSCSI - ok
11:15:56.0797 0x06e8 msiserver - ok
11:15:56.0843 0x06e8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:15:56.0843 0x06e8 MSKSSRV - ok
11:15:56.0859 0x06e8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:56.0859 0x06e8 MSPCLOCK - ok
11:15:56.0875 0x06e8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:15:56.0875 0x06e8 MSPQM - ok
11:15:56.0937 0x06e8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:15:56.0953 0x06e8 MsRPC - ok
11:15:56.0999 0x06e8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:15:56.0999 0x06e8 mssmbios - ok
11:15:57.0015 0x06e8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:15:57.0015 0x06e8 MSTEE - ok
11:15:57.0046 0x06e8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:15:57.0046 0x06e8 MTConfig - ok
11:15:57.0062 0x06e8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
11:15:57.0062 0x06e8 Mup - ok
11:15:57.0124 0x06e8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
11:15:57.0140 0x06e8 napagent - ok
11:15:57.0171 0x06e8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:15:57.0187 0x06e8 NativeWifiP - ok
11:15:57.0249 0x06e8 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
11:15:57.0280 0x06e8 NDIS - ok
11:15:57.0296 0x06e8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:15:57.0296 0x06e8 NdisCap - ok
11:15:57.0311 0x06e8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:57.0311 0x06e8 NdisTapi - ok
11:15:14.0084 0x0b9c ============================================================
11:15:14.0084 0x0b9c Current date / time: 2013/11/24 11:15:14.0084
11:15:14.0084 0x0b9c SystemInfo:
11:15:14.0084 0x0b9c
11:15:14.0084 0x0b9c OS Version: 6.1.7601 ServicePack: 1.0
11:15:14.0084 0x0b9c Product type: Workstation
11:15:14.0084 0x0b9c ComputerName: HP
11:15:14.0084 0x0b9c UserName: makro
11:15:14.0084 0x0b9c Windows directory: C:\Windows
11:15:14.0084 0x0b9c System windows directory: C:\Windows
11:15:14.0084 0x0b9c Running under WOW64
11:15:14.0084 0x0b9c Processor architecture: Intel x64
11:15:14.0084 0x0b9c Number of processors: 2
11:15:14.0084 0x0b9c Page size: 0x1000
11:15:14.0084 0x0b9c Boot type: Normal boot
11:15:14.0084 0x0b9c ============================================================
11:15:16.0627 0x0b9c KLMD registered as C:\Windows\system32\drivers\29624006.sys
11:15:16.0689 0x0b9c System UUID: {97DE1046-F5E1-3E91-932F-9A632CF114F3}
11:15:17.0219 0x0b9c Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:15:17.0219 0x0b9c ============================================================
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0:
11:15:17.0219 0x0b9c MBR partitions:
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x3823F800
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x382A3800, BlocksNum 0x20AE800
11:15:17.0219 0x0b9c \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
11:15:17.0219 0x0b9c ============================================================
11:15:17.0251 0x0b9c C: <-> \Device\Harddisk0\DR0\Partition2
11:15:17.0297 0x0b9c D: <-> \Device\Harddisk0\DR0\Partition3
11:15:17.0297 0x0b9c ============================================================
11:15:17.0297 0x0b9c Initialize success
11:15:17.0297 0x0b9c ============================================================
11:15:29.0575 0x06e8 ============================================================
11:15:29.0575 0x06e8 Scan started
11:15:29.0575 0x06e8 Mode: Manual;
11:15:29.0575 0x06e8 ============================================================
11:15:29.0575 0x06e8 KSN ping started
11:15:43.0381 0x06e8 KSN ping finished: true
11:15:44.0051 0x06e8 ================ Scan system memory ========================
11:15:44.0051 0x06e8 System memory - ok
11:15:44.0051 0x06e8 ================ Scan services =============================
11:15:44.0239 0x06e8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:15:44.0239 0x06e8 1394ohci - ok
11:15:44.0301 0x06e8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:15:44.0301 0x06e8 ACPI - ok
11:15:44.0317 0x06e8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:15:44.0317 0x06e8 AcpiPmi - ok
11:15:44.0441 0x06e8 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:15:44.0441 0x06e8 AdobeARMservice - ok
11:15:44.0582 0x06e8 [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:15:44.0597 0x06e8 AdobeFlashPlayerUpdateSvc - ok
11:15:44.0644 0x06e8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:15:44.0644 0x06e8 adp94xx - ok
11:15:44.0675 0x06e8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:15:44.0691 0x06e8 adpahci - ok
11:15:44.0722 0x06e8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:15:44.0738 0x06e8 adpu320 - ok
11:15:44.0800 0x06e8 [ 993F7B0BA5188A0007C085AA10257B8E, D4F8B52DAD483287CDBA189ADCD027ABACE268E63C9A63E09A12A2E14CD36B88 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
11:15:44.0816 0x06e8 AdvancedSystemCareService6 - ok
11:15:44.0831 0x06e8 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:15:44.0831 0x06e8 AeLookupSvc - ok
11:15:44.0878 0x06e8 AERTFilters - ok
11:15:44.0941 0x06e8 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
11:15:44.0956 0x06e8 AFD - ok
11:15:45.0003 0x06e8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
11:15:45.0003 0x06e8 agp440 - ok
11:15:45.0034 0x06e8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
11:15:45.0050 0x06e8 ALG - ok
11:15:45.0065 0x06e8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
11:15:45.0065 0x06e8 aliide - ok
11:15:45.0112 0x06e8 [ 095244DA74295F6065795067B130DFF0, B5354405536DB5E00446579FF80BE40F8250D708BDF166DA9D2C01CD4C456209 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:15:45.0112 0x06e8 AMD External Events Utility - ok
11:15:45.0175 0x06e8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
11:15:45.0175 0x06e8 amdide - ok
11:15:45.0206 0x06e8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:15:45.0206 0x06e8 AmdK8 - ok
11:15:45.0518 0x06e8 [ C313EECF87919C97D7AA3F442319C95E, 6990F897A606448DD4E038941DD921CC46235E3687AFB36C5988DC6E1AA1EFD2 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:15:45.0674 0x06e8 amdkmdag - ok
11:15:45.0721 0x06e8 [ AA7A30072F3E9BCE4C5F4E03D9FC9684, AC62D07B7C44C4AEE5F9DBDD37E722B13DD1C26C6421F9409E66B1A86820F491 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
11:15:45.0736 0x06e8 amdkmdap - ok
11:15:45.0767 0x06e8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:15:45.0767 0x06e8 AmdPPM - ok
11:15:45.0799 0x06e8 [ 53D8D46D51D390ABDB54ECA623165CB7, D16A3604412D0DC3EA68320FB6980D146ED60D587AAB6B65810C038AFF1EC237 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
11:15:45.0799 0x06e8 amdsata - ok
11:15:45.0861 0x06e8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:15:45.0861 0x06e8 amdsbs - ok
11:15:45.0877 0x06e8 [ 75C51148154E34EB3D7BB84749A758D5, 8865F223CBAE166A9BF6CBCDA66F63369F151CCB449A28E95560C36AD45D0C85 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
11:15:45.0877 0x06e8 amdxata - ok
11:15:45.0923 0x06e8 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
11:15:45.0923 0x06e8 AppID - ok
11:15:45.0955 0x06e8 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:15:45.0955 0x06e8 AppIDSvc - ok
11:15:45.0986 0x06e8 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
11:15:45.0986 0x06e8 Appinfo - ok
11:15:46.0017 0x06e8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
11:15:46.0017 0x06e8 arc - ok
11:15:46.0048 0x06e8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:15:46.0048 0x06e8 arcsas - ok
11:15:46.0142 0x06e8 [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:15:46.0173 0x06e8 aspnet_state - ok
11:15:46.0204 0x06e8 [ 9F34AA1124EEA112E49E48258B1D6394, F8648E5EDD7DDFE8D0F5F410E90D0713381A5DB0980D4F0D13D6A5B1F9F4E9A6 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
11:15:46.0220 0x06e8 aswFsBlk - ok
11:15:46.0251 0x06e8 [ 5C49AB607897C94E123EC8364FF4BF61, 77F69B00DDE1433C115AA617E0063CB93EE29B3E8D168EF2497E31DD573D5A13 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
11:15:46.0251 0x06e8 aswMonFlt - ok
11:15:46.0298 0x06e8 [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
11:15:46.0298 0x06e8 aswRdr - ok
11:15:46.0329 0x06e8 [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
11:15:46.0345 0x06e8 aswRvrt - ok
11:15:46.0423 0x06e8 [ 1BA60C77EB3CDB6129DAD25BAF675F43, 1D5BB6B427E065494C8A363996974048C890F9DBBEEF305B7034873696DFD969 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
11:15:46.0454 0x06e8 aswSnx - ok
11:15:46.0532 0x06e8 [ 79ADA401A6E2054F110E7FBDFAC71942, 0E551FB9E5FE598900036E872E16EB407F7F63FD7A8A0AFAB5094D9DFA75CFCF ] aswSP C:\Windows\system32\drivers\aswSP.sys
11:15:46.0532 0x06e8 aswSP - ok
11:15:46.0547 0x06e8 [ 6FFECAE6A7BF190D4A3D7AFA6D7B5478, 9BFBF0CEB0B947EED45675F4A321777E78405A07FFAA91BE3404BE03947EF033 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
11:15:46.0547 0x06e8 aswTdi - ok
11:15:46.0610 0x06e8 [ 59787B95DD9CA44CB139D96863438587, C36E1A812931BBEACE38BF1E621C950439144979E31961C016AD1AE323579058 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
11:15:46.0610 0x06e8 aswVmm - ok
11:15:46.0641 0x06e8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:15:46.0641 0x06e8 AsyncMac - ok
11:15:46.0688 0x06e8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
11:15:46.0688 0x06e8 atapi - ok
11:15:46.0735 0x06e8 [ 2D648572BA9A610952FCAFBA1E119C2D, 4CD7E7D3C878DEF8CC18A925EAB1E0E8E8893BE99DA1E1F78FE9AD12EF1C48BC ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
11:15:46.0735 0x06e8 AtiHdmiService - ok
11:15:46.0766 0x06e8 [ E82E61F46D1336447F4DEFF8C074F13E, 9FC152B33F1D9F5684B687743E943AA26AC17A1093F4C31A43C7012E70BC302E ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie64.sys
11:15:46.0766 0x06e8 AtiPcie - ok
11:15:46.0828 0x06e8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:15:46.0859 0x06e8 AudioEndpointBuilder - ok
11:15:46.0891 0x06e8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:15:46.0906 0x06e8 AudioSrv - ok
11:15:47.0000 0x06e8 [ 4D41D30E2FAB3307967C7A0B045DC874, 620482D08544478862C78285E17DEE9BC3466DF8B62BD502B0C17AE6501D2B5E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:15:47.0000 0x06e8 avast! Antivirus - ok
11:15:47.0047 0x06e8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:15:47.0062 0x06e8 AxInstSV - ok
11:15:47.0093 0x06e8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:15:47.0109 0x06e8 b06bdrv - ok
11:15:47.0140 0x06e8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:15:47.0140 0x06e8 b57nd60a - ok
11:15:47.0296 0x06e8 [ 810BE94A9E42309B3F74217AC28BC6AC, 98959361B715911553434FF5AFAC2C4C71BE2AF032B935A2B84EBC56E81ED32E ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
11:15:47.0359 0x06e8 BCM43XX - ok
11:15:47.0405 0x06e8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
11:15:47.0405 0x06e8 BDESVC - ok
11:15:47.0421 0x06e8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
11:15:47.0421 0x06e8 Beep - ok
11:15:47.0499 0x06e8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
11:15:47.0530 0x06e8 BFE - ok
11:15:47.0639 0x06e8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
11:15:47.0686 0x06e8 BITS - ok
11:15:47.0702 0x06e8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:15:47.0702 0x06e8 blbdrive - ok
11:15:47.0733 0x06e8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:15:47.0733 0x06e8 bowser - ok
11:15:47.0749 0x06e8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:15:47.0749 0x06e8 BrFiltLo - ok
11:15:47.0780 0x06e8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:15:47.0780 0x06e8 BrFiltUp - ok
11:15:47.0795 0x06e8 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:15:47.0811 0x06e8 BridgeMP - ok
11:15:47.0873 0x06e8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
11:15:47.0873 0x06e8 Browser - ok
11:15:47.0920 0x06e8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:15:47.0920 0x06e8 Brserid - ok
11:15:47.0951 0x06e8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:15:47.0951 0x06e8 BrSerWdm - ok
11:15:47.0983 0x06e8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:15:47.0983 0x06e8 BrUsbMdm - ok
11:15:47.0998 0x06e8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:15:47.0998 0x06e8 BrUsbSer - ok
11:15:48.0061 0x06e8 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:15:48.0061 0x06e8 BthEnum - ok
11:15:48.0076 0x06e8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:15:48.0092 0x06e8 BTHMODEM - ok
11:15:48.0107 0x06e8 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:15:48.0107 0x06e8 BthPan - ok
11:15:48.0185 0x06e8 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
11:15:48.0201 0x06e8 BTHPORT - ok
11:15:48.0232 0x06e8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
11:15:48.0232 0x06e8 bthserv - ok
11:15:48.0295 0x06e8 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
11:15:48.0295 0x06e8 BTHUSB - ok
11:15:48.0295 0x06e8 btwampfl - ok
11:15:48.0310 0x06e8 btwaudio - ok
11:15:48.0310 0x06e8 btwavdt - ok
11:15:48.0310 0x06e8 btwl2cap - ok
11:15:48.0326 0x06e8 btwrchid - ok
11:15:48.0357 0x06e8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:15:48.0357 0x06e8 cdfs - ok
11:15:48.0388 0x06e8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:15:48.0404 0x06e8 cdrom - ok
11:15:48.0451 0x06e8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
11:15:48.0451 0x06e8 CertPropSvc - ok
11:15:48.0466 0x06e8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:15:48.0466 0x06e8 circlass - ok
11:15:48.0513 0x06e8 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
11:15:48.0513 0x06e8 CLFS - ok
11:15:48.0607 0x06e8 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:15:48.0607 0x06e8 clr_optimization_v2.0.50727_32 - ok
11:15:48.0638 0x06e8 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:15:48.0638 0x06e8 clr_optimization_v2.0.50727_64 - ok
11:15:48.0700 0x06e8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:15:48.0778 0x06e8 clr_optimization_v4.0.30319_32 - ok
11:15:48.0809 0x06e8 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:15:48.0950 0x06e8 clr_optimization_v4.0.30319_64 - ok
11:15:48.0981 0x06e8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:15:48.0981 0x06e8 CmBatt - ok
11:15:49.0028 0x06e8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:15:49.0028 0x06e8 cmdide - ok
11:15:49.0106 0x06e8 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
11:15:49.0106 0x06e8 CNG - ok
11:15:49.0137 0x06e8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:15:49.0137 0x06e8 Compbatt - ok
11:15:49.0153 0x06e8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:15:49.0153 0x06e8 CompositeBus - ok
11:15:49.0153 0x06e8 COMSysApp - ok
11:15:49.0184 0x06e8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:15:49.0184 0x06e8 crcdisk - ok
11:15:49.0262 0x06e8 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:15:49.0277 0x06e8 CryptSvc - ok
11:15:49.0340 0x06e8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:15:49.0371 0x06e8 DcomLaunch - ok
11:15:49.0402 0x06e8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
11:15:49.0418 0x06e8 defragsvc - ok
11:15:49.0527 0x06e8 [ 2B9A817DC1BDAD9CE5495099B6A7136A, 6D040069C6CD249A4113E4BDD16658D02685F6018F804654934A03F5E2D161A8 ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
11:15:49.0543 0x06e8 Desura Install Service - ok
11:15:49.0574 0x06e8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:15:49.0574 0x06e8 DfsC - ok
11:15:49.0652 0x06e8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:15:49.0652 0x06e8 Dhcp - ok
11:15:49.0683 0x06e8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
11:15:49.0683 0x06e8 discache - ok
11:15:49.0730 0x06e8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:15:49.0730 0x06e8 Disk - ok
11:15:49.0761 0x06e8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:15:49.0761 0x06e8 Dnscache - ok
11:15:49.0823 0x06e8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
11:15:49.0839 0x06e8 dot3svc - ok
11:15:49.0886 0x06e8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
11:15:49.0901 0x06e8 DPS - ok
11:15:49.0917 0x06e8 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:15:49.0917 0x06e8 drmkaud - ok
11:15:49.0948 0x06e8 [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:15:49.0964 0x06e8 dtsoftbus01 - ok
11:15:50.0057 0x06e8 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:15:50.0089 0x06e8 DXGKrnl - ok
11:15:50.0089 0x06e8 EagleX64 - ok
11:15:50.0135 0x06e8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
11:15:50.0135 0x06e8 EapHost - ok
11:15:50.0276 0x06e8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:15:50.0354 0x06e8 ebdrv - ok
11:15:50.0416 0x06e8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
11:15:50.0416 0x06e8 EFS - ok
11:15:50.0510 0x06e8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:15:50.0541 0x06e8 ehRecvr - ok
11:15:50.0572 0x06e8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
11:15:50.0588 0x06e8 ehSched - ok
11:15:50.0619 0x06e8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:15:50.0635 0x06e8 elxstor - ok
11:15:50.0666 0x06e8 [ 587F0F4145A1536A6E37EFD769B7665F, EEBCB7E3B2470F7316C3584F90439FB0E4004BAA7A5CD6FAA4F549126DED44C7 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
11:15:50.0666 0x06e8 epfw - ok
11:15:50.0697 0x06e8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:15:50.0697 0x06e8 ErrDev - ok
11:15:50.0775 0x06e8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
11:15:50.0775 0x06e8 EventSystem - ok
11:15:50.0806 0x06e8 [ 53913561A7089C9A4649CE4E42F6101B, A3806C76A179017EB7B51BBDFF9507C740BBBA7697819B2FD79E4B2D57E3130E ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
11:15:50.0822 0x06e8 ewusbnet - ok
11:15:50.0837 0x06e8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
11:15:50.0853 0x06e8 exfat - ok
11:15:50.0853 0x06e8 ezSharedSvc - ok
11:15:50.0884 0x06e8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:15:50.0900 0x06e8 fastfat - ok
11:15:50.0962 0x06e8 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
11:15:50.0993 0x06e8 Fax - ok
11:15:51.0087 0x06e8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:15:51.0087 0x06e8 fdc - ok
11:15:51.0103 0x06e8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
11:15:51.0103 0x06e8 fdPHost - ok
11:15:51.0134 0x06e8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
11:15:51.0134 0x06e8 FDResPub - ok
11:15:51.0149 0x06e8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:15:51.0149 0x06e8 FileInfo - ok
11:15:51.0165 0x06e8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:15:51.0165 0x06e8 Filetrace - ok
11:15:51.0196 0x06e8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:15:51.0196 0x06e8 flpydisk - ok
11:15:51.0259 0x06e8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:15:51.0274 0x06e8 FltMgr - ok
11:15:51.0337 0x06e8 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
11:15:51.0383 0x06e8 FontCache - ok
11:15:51.0461 0x06e8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:15:51.0461 0x06e8 FontCache3.0.0.0 - ok
11:15:51.0508 0x06e8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:15:51.0508 0x06e8 FsDepends - ok
11:15:51.0571 0x06e8 [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
11:15:51.0571 0x06e8 fssfltr - ok
11:15:51.0695 0x06e8 [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
11:15:51.0773 0x06e8 fsssvc - ok
11:15:51.0820 0x06e8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:15:51.0836 0x06e8 Fs_Rec - ok
11:15:51.0867 0x06e8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:15:51.0867 0x06e8 fvevol - ok
11:15:51.0914 0x06e8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:15:51.0914 0x06e8 gagp30kx - ok
11:15:51.0961 0x06e8 [ CE16683CFD11FE70BDE435DDA5EA1FCA, 43D850361F2B5C9389F7FABC3C62BD1517349C03834F436579DD01CFD09919F4 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
11:15:51.0976 0x06e8 GameConsoleService - ok
11:15:52.0054 0x06e8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
11:15:52.0085 0x06e8 gpsvc - ok
11:15:52.0179 0x06e8 [ E859CA020ED61899F3C74A8D0032D05C, 6BDB0E1E8AA0CA2AFE82EEB86936E824DC5D8473D1539A953EA5369DB04E63CE ] Guard.Mail.ru C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
11:15:52.0241 0x06e8 Guard.Mail.ru - ok
11:15:52.0273 0x06e8 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
11:15:52.0273 0x06e8 hamachi - ok
11:15:52.0522 0x06e8 [ A5DB93213D55EE179099D01A849E7CEB, A138F6E0E65DAB7983732CE13D49958E6BAB691F23A130F745D68533E30914A4 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
11:15:52.0585 0x06e8 Hamachi2Svc - ok
11:15:52.0616 0x06e8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:15:52.0616 0x06e8 hcw85cir - ok
11:15:52.0647 0x06e8 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:15:52.0663 0x06e8 HdAudAddService - ok
11:15:52.0678 0x06e8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:15:52.0678 0x06e8 HDAudBus - ok
11:15:52.0709 0x06e8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:15:52.0709 0x06e8 HidBatt - ok
11:15:52.0741 0x06e8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:15:52.0741 0x06e8 HidBth - ok
11:15:52.0772 0x06e8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:15:52.0772 0x06e8 HidIr - ok
11:15:52.0803 0x06e8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
11:15:52.0803 0x06e8 hidserv - ok
11:15:52.0850 0x06e8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:15:52.0850 0x06e8 HidUsb - ok
11:15:52.0881 0x06e8 HiPatchService - ok
11:15:52.0928 0x06e8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:15:52.0943 0x06e8 hkmsvc - ok
11:15:52.0990 0x06e8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:15:52.0990 0x06e8 HomeGroupListener - ok
11:15:53.0053 0x06e8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:15:53.0053 0x06e8 HomeGroupProvider - ok
11:15:53.0131 0x06e8 [ 3F4ADD4196E2B860019539837BE305F9, CE9BE48609A85FFF42AE358112DABE4E9E566F37B20477CC142669DA24A82343 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
11:15:53.0146 0x06e8 HP Health Check Service - ok
11:15:53.0193 0x06e8 [ 3A09322A8AA8B0C79036686A0EBE7B4C, A110ECBBD9A0EDAA134B95F9FB3428F33F7629480ABCF36F58891837EE1B04C0 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
11:15:53.0193 0x06e8 HP Wireless Assistant Service - ok
11:15:53.0240 0x06e8 [ EF3EA06057132138B4E5895A61601DBE, ABFA2DA02271486DD1D52D68727403C6F6D4C355B62E627E247340E2B7F85A1A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
11:15:53.0240 0x06e8 hpqwmiex - ok
11:15:53.0271 0x06e8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:15:53.0271 0x06e8 HpSAMD - ok
11:15:53.0302 0x06e8 [ 9DF9CF7840A3A99F2FFD614F0A13F2F9, 375C1FBED25FCEE78CA0945232EE93BA90FE260E5AB6D1331B7456CDD5C5F0AC ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
11:15:53.0302 0x06e8 HPWMISVC - ok
11:15:53.0380 0x06e8 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:15:53.0396 0x06e8 HTTP - ok
11:15:53.0443 0x06e8 [ D96A290F699081AE737390C0FE329D7C, 11D69424AD08AEA58AA546883535E6D8E51E2F3D0B5299549DC0B7A31498E982 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
11:15:53.0443 0x06e8 hwdatacard - ok
11:15:53.0489 0x06e8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:15:53.0489 0x06e8 hwpolicy - ok
11:15:53.0521 0x06e8 [ E0C7255498640FC64B19AAE17FD6F965, 10BCE55F36A36F962A7BA774B8B4C0F07081EA1EAB0FD3B8C57AA01FE8CFDF48 ] hwusbfake C:\Windows\system32\DRIVERS\ewusbfake.sys
11:15:53.0521 0x06e8 hwusbfake - ok
11:15:53.0552 0x06e8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:15:53.0567 0x06e8 i8042prt - ok
11:15:53.0599 0x06e8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:15:53.0614 0x06e8 iaStorV - ok
11:15:53.0677 0x06e8 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:15:53.0677 0x06e8 IDriverT - ok
11:15:53.0770 0x06e8 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:15:53.0817 0x06e8 idsvc - ok
11:15:54.0067 0x06e8 [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:15:54.0207 0x06e8 igfx - ok
11:15:54.0254 0x06e8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:15:54.0254 0x06e8 iirsp - ok
11:15:54.0347 0x06e8 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
11:15:54.0394 0x06e8 IKEEXT - ok
11:15:54.0566 0x06e8 [ CCEDD47ABD068C58C8513DEB785093BB, 2B5571688655265037ACB44D2F2E0CD646EC0567D823C32CA09F13A1814C241B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:15:54.0659 0x06e8 IntcAzAudAddService - ok
11:15:54.0706 0x06e8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
11:15:54.0706 0x06e8 intelide - ok
11:15:54.0737 0x06e8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:15:54.0753 0x06e8 intelppm - ok
11:15:54.0769 0x06e8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:15:54.0784 0x06e8 IPBusEnum - ok
11:15:54.0831 0x06e8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:54.0831 0x06e8 IpFilterDriver - ok
11:15:54.0909 0x06e8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:15:54.0940 0x06e8 iphlpsvc - ok
11:15:54.0971 0x06e8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:15:54.0987 0x06e8 IPMIDRV - ok
11:15:55.0003 0x06e8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:15:55.0003 0x06e8 IPNAT - ok
11:15:55.0034 0x06e8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:15:55.0034 0x06e8 IRENUM - ok
11:15:55.0049 0x06e8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:15:55.0049 0x06e8 isapnp - ok
11:15:55.0081 0x06e8 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:15:55.0081 0x06e8 iScsiPrt - ok
11:15:55.0112 0x06e8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:15:55.0112 0x06e8 kbdclass - ok
11:15:55.0127 0x06e8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:15:55.0127 0x06e8 kbdhid - ok
11:15:55.0143 0x06e8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
11:15:55.0143 0x06e8 KeyIso - ok
11:15:55.0205 0x06e8 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:15:55.0205 0x06e8 KSecDD - ok
11:15:55.0237 0x06e8 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:15:55.0237 0x06e8 KSecPkg - ok
11:15:55.0268 0x06e8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:15:55.0283 0x06e8 ksthunk - ok
11:15:55.0330 0x06e8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
11:15:55.0346 0x06e8 KtmRm - ok
11:15:55.0393 0x06e8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:15:55.0408 0x06e8 LanmanServer - ok
11:15:55.0455 0x06e8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:15:55.0455 0x06e8 LanmanWorkstation - ok
11:15:55.0486 0x06e8 LightScribeService - ok
11:15:55.0533 0x06e8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:15:55.0533 0x06e8 lltdio - ok
11:15:55.0580 0x06e8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:15:55.0580 0x06e8 lltdsvc - ok
11:15:55.0595 0x06e8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:15:55.0611 0x06e8 lmhosts - ok
11:15:55.0705 0x06e8 [ 02468469C450CD16FB66A56FAB70138B, 9C3788B3DB2DBF9DE192447EADB6F1A17B69FC4813284B86E589784A53154FAA ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
11:15:55.0720 0x06e8 LMIGuardianSvc - ok
11:15:55.0767 0x06e8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:15:55.0767 0x06e8 LSI_FC - ok
11:15:55.0798 0x06e8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:15:55.0798 0x06e8 LSI_SAS - ok
11:15:55.0829 0x06e8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:15:55.0829 0x06e8 LSI_SAS2 - ok
11:15:55.0845 0x06e8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:15:55.0845 0x06e8 LSI_SCSI - ok
11:15:55.0861 0x06e8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
11:15:55.0861 0x06e8 luafv - ok
11:15:55.0923 0x06e8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:15:55.0923 0x06e8 Mcx2Svc - ok
11:15:55.0954 0x06e8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:15:55.0954 0x06e8 megasas - ok
11:15:55.0970 0x06e8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:15:55.0985 0x06e8 MegaSR - ok
11:15:56.0017 0x06e8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
11:15:56.0017 0x06e8 MMCSS - ok
11:15:56.0048 0x06e8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
11:15:56.0048 0x06e8 Modem - ok
11:15:56.0063 0x06e8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:15:56.0063 0x06e8 monitor - ok
11:15:56.0095 0x06e8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:15:56.0110 0x06e8 mouclass - ok
11:15:56.0110 0x06e8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:15:56.0110 0x06e8 mouhid - ok
11:15:56.0157 0x06e8 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:15:56.0157 0x06e8 mountmgr - ok
11:15:56.0188 0x06e8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
11:15:56.0188 0x06e8 mpio - ok
11:15:56.0219 0x06e8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:15:56.0219 0x06e8 mpsdrv - ok
11:15:56.0297 0x06e8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:15:56.0344 0x06e8 MpsSvc - ok
11:15:56.0422 0x06e8 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:15:56.0422 0x06e8 MRxDAV - ok
11:15:56.0453 0x06e8 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:56.0469 0x06e8 mrxsmb - ok
11:15:56.0516 0x06e8 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:56.0531 0x06e8 mrxsmb10 - ok
11:15:56.0547 0x06e8 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:56.0547 0x06e8 mrxsmb20 - ok
11:15:56.0594 0x06e8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
11:15:56.0594 0x06e8 msahci - ok
11:15:56.0625 0x06e8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:15:56.0625 0x06e8 msdsm - ok
11:15:56.0656 0x06e8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
11:15:56.0656 0x06e8 MSDTC - ok
11:15:56.0687 0x06e8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:15:56.0703 0x06e8 Msfs - ok
11:15:56.0719 0x06e8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:15:56.0719 0x06e8 mshidkmdf - ok
11:15:56.0765 0x06e8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:15:56.0765 0x06e8 msisadrv - ok
11:15:56.0781 0x06e8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:15:56.0797 0x06e8 MSiSCSI - ok
11:15:56.0797 0x06e8 msiserver - ok
11:15:56.0843 0x06e8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:15:56.0843 0x06e8 MSKSSRV - ok
11:15:56.0859 0x06e8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:56.0859 0x06e8 MSPCLOCK - ok
11:15:56.0875 0x06e8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:15:56.0875 0x06e8 MSPQM - ok
11:15:56.0937 0x06e8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:15:56.0953 0x06e8 MsRPC - ok
11:15:56.0999 0x06e8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:15:56.0999 0x06e8 mssmbios - ok
11:15:57.0015 0x06e8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:15:57.0015 0x06e8 MSTEE - ok
11:15:57.0046 0x06e8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:15:57.0046 0x06e8 MTConfig - ok
11:15:57.0062 0x06e8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
11:15:57.0062 0x06e8 Mup - ok
11:15:57.0124 0x06e8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
11:15:57.0140 0x06e8 napagent - ok
11:15:57.0171 0x06e8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:15:57.0187 0x06e8 NativeWifiP - ok
11:15:57.0249 0x06e8 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
11:15:57.0280 0x06e8 NDIS - ok
11:15:57.0296 0x06e8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:15:57.0296 0x06e8 NdisCap - ok
11:15:57.0311 0x06e8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:57.0311 0x06e8 NdisTapi - ok
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 56 hostů