Prosím o kompletní kontrolu PC. Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 13:42

Zdravím, není to dávno co jsem zde prosil o kontrolu PC. Cirka měsíc a pár dní.
Od té doby vše šlapalo slušně, ale PC poslední dobou často třeba zamrzává, explorer.exe se vypíná a jen tak ze srandy jsem vyzkoušel zapnout minecraft, který mi předtím běžel na 150FPS, tak teď běží kolem 50FPS se stejným nastavením.
Vím, že nejde posoudit objektivně stav PC ze hry, ale mě se to prostě nezdá.

Tak prosím teda o kontrolu:

HJT

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:38:48, on 7.6.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Windows\ffpext\ffpsrv.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Users\Clorky\Desktop\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: LinkAirBrowserHelper HistoryTriggerBHO - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HDAudDeck] c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe -r
O4 - HKLM\..\Run: [ffpsrv] c:\windows\ffpext\ffpsrv.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RadeonPro Support Service - Mr. John aka japamd - C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 7900 bytes

MbAM:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.04.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Clorky :: I5PETR [administrator]

7.6.2012 13:39:54
mbam-log-2012-06-07 (13-39-54).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 210198
Time elapsed: 2 minute(s),

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod jaro3 » 07 čer 2012 14:31

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 17:34

Odkaz na Combofix nefunguje.
Na HJT (viewtopic.php?t=5119) taky ne.

Bojím se ten CF stahovat z jiného zdroje.

Uživatelský avatar
Žbeky
Moderátor
Guru Level 13
Guru Level 13
Příspěvky: 22288
Registrován: květen 08
Bydliště: Vsetín - Pardubice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Žbeky » 07 čer 2012 18:09

HJT pravda nejede (výpadek na jejich straně), ale CF mi jde stáhnout normálně
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.

HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 18:14

Chyba spojení v Firefoxu. Zkusím to v nouzáku. Dej mi čas k večeru.

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 18:39

Nakonec to šlo normál, tady je log:

Combofix:

ComboFix 12-06-07.03 - Clorky 07.06.2012 18:23:42.7.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1033.18.4094.2681 [GMT 2:00]
Spuštěný z: e:\hry\Warcraft 3\Maps\Download\ComboFix.exe
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\SysWow64\avisynth.dll
c:\windows\SysWow64\devil.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-05-07 do 2012-06-07 )))))))))))))))))))))))))))))))
.
.
2012-06-07 16:27 . 2012-06-07 16:27 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-06-07 16:27 . 2012-06-07 16:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-06 13:34 . 2012-06-06 13:34 -------- d-----w- c:\users\Clorky\AppData\Roaming\PDAppFlex
2012-06-01 19:39 . 2012-06-02 20:49 -------- d-----w- C:\Minecraft_Backup
2012-06-01 18:49 . 2012-06-01 18:52 -------- d-----w- c:\users\Clorky\AppData\Roaming\.techniclauncher
2012-05-29 15:24 . 2012-05-29 15:24 -------- d-----w- c:\users\Clorky\.swt
2012-05-27 16:13 . 2012-05-27 16:13 -------- d-----w- c:\users\Clorky\AppData\Roaming\runic games
2012-05-27 15:32 . 2012-05-27 15:33 -------- d-----w- c:\users\Clorky\AppData\Local\Runic Games
2012-05-27 13:14 . 2012-05-27 13:14 -------- d-----w- c:\program files (x86)\Common Files\Pinnacle
2012-05-27 13:13 . 2012-05-27 13:25 -------- d-----w- c:\users\Clorky\AppData\Local\Pinnacle
2012-05-27 13:13 . 2012-05-27 13:13 -------- d-----w- c:\programdata\Pinnacle Studio Ultimate Collection
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\programdata\Studio 15
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\programdata\Pinnacle Studio Plus
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\program files (x86)\Common Files\Yahoo!
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging
2012-05-27 13:08 . 2012-05-27 13:13 -------- d-----w- c:\programdata\Pinnacle
2012-05-27 13:08 . 2012-05-27 13:10 -------- d-----w- c:\program files (x86)\Pinnacle
2012-05-27 09:33 . 2012-05-27 09:33 -------- d-----w- c:\users\Clorky\AppData\Local\My Games
2012-05-27 08:27 . 2012-05-27 08:27 -------- d-----w- c:\users\Clorky\AppData\Roaming\Sony Creative Software Inc
2012-05-27 07:30 . 2012-05-27 07:35 -------- d-----w- c:\programdata\TrackMania
2012-05-26 19:19 . 2012-05-30 10:53 -------- d-----w- C:\Bez Renderu
2012-05-26 19:10 . 2012-05-26 20:01 281032 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-05-26 19:08 . 2012-05-26 19:08 -------- d-----w- c:\users\Clorky\AppData\Local\PunkBuster
2012-05-26 19:08 . 2012-05-26 19:08 -------- d-----w- c:\users\Clorky\AppData\Local\CrashRpt
2012-05-26 19:07 . 2012-05-26 19:07 -------- d-----w- c:\program files (x86)\Microsoft Chart Controls
2012-05-26 19:06 . 2012-05-26 20:01 281032 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-05-26 19:06 . 2012-05-26 19:52 281032 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-05-26 19:06 . 2012-05-26 19:06 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-05-26 17:44 . 2012-05-26 17:44 -------- d-----w- c:\users\Clorky\AppData\Roaming\Publish Providers
2012-05-26 13:51 . 2012-05-26 13:51 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-05-26 13:51 . 2012-06-07 16:29 -------- d-----w- c:\program files (x86)\Steam
2012-05-24 14:31 . 2012-05-24 14:31 94208 ----a-w- c:\windows\DIIUnin.exe
2012-05-24 14:31 . 2012-05-24 14:31 2829 ----a-w- c:\windows\DIIUnin.pif
2012-05-24 14:29 . 2012-05-24 14:29 -------- d-----w- c:\windows\SysWow64\spool
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\users\Clorky\AppData\Local\TechSmith
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\windows\SysWow64\QuickTime
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\program files (x86)\QuickTime
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\program files (x86)\Common Files\TechSmith Shared
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\programdata\TechSmith
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\program files (x86)\TechSmith
2012-05-23 19:35 . 2012-05-23 19:35 -------- d-----w- c:\users\Clorky\AppData\Local\Sony
2012-05-23 19:34 . 2012-05-24 14:29 -------- d-----w- c:\program files (x86)\Sony
2012-05-23 19:34 . 2012-05-23 19:47 -------- d-----w- c:\program files\Sony
2012-05-23 19:34 . 2012-05-23 19:34 -------- d-----w- c:\programdata\Sony
2012-05-23 19:33 . 2012-05-26 18:28 -------- d-----w- c:\users\Clorky\AppData\Roaming\Sony
2012-05-23 17:48 . 2012-05-23 17:48 -------- d-----w- C:\Backup
2012-05-21 19:48 . 2012-05-21 19:48 -------- d-----w- c:\users\Clorky\AppData\Roaming\SEGA Corporation
2012-05-21 19:48 . 2012-05-21 19:48 -------- d-----w- c:\programdata\SEGA Corporation
2012-05-21 19:16 . 2012-05-21 19:16 -------- d-----w- c:\users\Clorky\AppData\Roaming\InstallShield Installation Information
2012-05-21 19:16 . 2012-05-21 19:16 -------- d-----w- c:\windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2012-05-21 14:05 . 2012-05-21 14:06 -------- d-----w- c:\users\Clorky\AppData\Roaming\wargaming.net
2012-05-18 20:50 . 2012-05-18 20:50 -------- d-----w- c:\users\Clorky\AppData\Local\Risen2
2012-05-17 22:50 . 2012-05-17 22:50 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-05-17 22:50 . 2012-05-17 22:50 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2012-05-16 14:23 . 2012-05-16 14:23 -------- d-----w- c:\programdata\Media Center Programs
2012-05-16 14:23 . 2012-05-16 14:23 -------- d-----w- c:\program files (x86)\Common Files\BioWare
2012-05-16 10:33 . 2012-05-16 12:24 -------- d-----w- c:\users\Clorky\AppData\Local\The Witcher
2012-05-13 12:33 . 2012-05-13 12:51 -------- d-----w- c:\users\Clorky\AppData\Local\dxhr
2012-05-13 12:32 . 2012-05-13 12:32 -------- d-----w- c:\users\Clorky\AppData\Local\28050
2012-05-13 06:08 . 2012-05-13 06:08 -------- d-----w- c:\programdata\KONAMI
2012-05-12 13:47 . 2012-05-22 19:33 -------- d-----w- C:\CRACK
2012-05-12 13:40 . 2012-05-12 13:40 -------- d-----w- c:\program files\ESET
2012-05-12 12:26 . 2012-05-12 12:26 52224 ----a-w- c:\windows\ipuninst.exe
2012-05-11 23:05 . 2012-03-03 06:35 1544704 ----a-w- c:\windows\system32\DWrite.dll
2012-05-11 23:05 . 2012-03-03 05:31 1077248 ----a-w- c:\windows\SysWow64\DWrite.dll
2012-05-11 23:05 . 2012-03-31 06:05 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-11 23:05 . 2012-03-31 03:10 3146240 ----a-w- c:\windows\system32\win32k.sys
2012-05-11 23:05 . 2012-03-31 04:39 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-05-11 23:05 . 2012-03-31 04:39 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-05-11 23:04 . 2012-03-17 07:58 75120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-11 23:04 . 2012-03-30 11:35 1918320 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-05-11 23:04 . 2012-03-31 05:42 1732096 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-05-11 23:04 . 2012-03-31 05:40 1367552 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2012-05-11 23:04 . 2012-03-31 05:40 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2012-05-11 23:04 . 2012-03-31 05:40 1393664 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2012-05-11 23:04 . 2012-03-31 04:29 936960 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2012-05-11 20:20 . 2012-05-11 20:20 -------- d-----w- c:\program files (x86)\GlideWrapper
2012-05-10 17:38 . 2000-10-05 13:55 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2012-05-10 17:38 . 2000-10-05 13:55 221184 ----a-w- c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-05-10 17:38 . 2000-10-05 13:50 221184 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2012-05-10 17:38 . 2000-10-05 13:49 32768 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2012-05-10 17:38 . 2000-01-04 04:39 212992 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
2012-05-10 15:22 . 2012-05-10 15:22 -------- d-----w- c:\program files (x86)\Microsoft Synchronization Services
2012-05-10 15:21 . 2012-05-10 15:21 -------- d-----w- c:\windows\PCHEALTH
2012-05-10 15:21 . 2012-05-10 15:21 -------- d-----w- c:\program files (x86)\Microsoft Sync Framework
2012-05-10 15:21 . 2012-05-10 15:21 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-05-10 15:20 . 2012-05-10 15:20 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2012-05-10 15:20 . 2012-05-10 15:20 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2012-05-10 15:19 . 2012-05-10 15:19 -------- d-----w- c:\users\Clorky\AppData\Local\Microsoft Help
2012-05-10 15:19 . 2012-05-23 17:19 -------- d-----w- c:\programdata\Microsoft Help
2012-05-10 15:19 . 2012-05-10 15:19 -------- d-----r- C:\MSOCache
2012-05-09 19:17 . 1998-10-29 13:45 306688 ----a-w- c:\windows\IsUninst.exe
2012-05-08 20:20 . 2012-05-08 20:20 -------- d-----w- c:\users\Clorky\AppData\Local\storage
2012-05-08 20:14 . 2012-05-08 20:14 -------- d-----w- c:\users\Clorky\AppData\Local\Ubisoft Game Launcher
2012-05-08 19:47 . 2012-05-08 19:47 -------- d-----w- c:\programdata\Ubisoft
2012-05-08 19:44 . 2012-05-08 20:08 -------- d-----w- c:\program files (x86)\Ubisoft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-16 17:04 . 2009-08-18 10:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2012-05-16 17:04 . 2009-08-18 09:24 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-05-07 12:24 . 2012-05-07 12:24 476960 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-05-07 12:24 . 2012-03-09 19:45 472864 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-05-06 16:14 . 2012-03-29 13:43 419488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-05-06 16:14 . 2012-02-29 18:34 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-06 16:14 . 2012-04-14 15:17 8744608 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-05-05 16:29 . 2012-04-29 12:55 314016 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-05-05 16:29 . 2012-04-29 12:54 43680 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-04-24 19:53 . 2012-04-24 19:53 41984 ----a-w- c:\windows\system32\~WebUpdateHelper.exe
2012-04-22 07:53 . 2012-04-22 07:53 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-04-18 01:03 . 2012-05-03 12:36 8917360 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E56E627C-CE4B-4C8D-A516-EBF46F1C05E7}\mpengine.dll
2012-04-13 11:17 . 2012-04-13 11:09 955848 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-04-13 11:17 . 2012-02-29 20:39 839112 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-10 21:31 . 2012-04-10 21:31 2303488 ----a-w- c:\windows\SysWow64\python27.dll
2012-04-06 05:22 . 2012-04-06 05:22 11174400 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-04-06 02:22 . 2012-04-06 02:22 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-04-06 02:21 . 2012-02-29 15:57 909312 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-04-06 02:20 . 2012-02-29 15:57 1067520 ----a-w- c:\windows\system32\aticfx64.dll
2012-04-06 02:16 . 2012-04-06 02:16 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-04-06 02:16 . 2012-04-06 02:16 503808 ----a-w- c:\windows\system32\atieclxx.exe
2012-04-06 02:16 . 2012-04-06 02:16 236544 ----a-w- c:\windows\system32\atiesrxx.exe
2012-04-06 02:14 . 2012-04-06 02:14 120320 ----a-w- c:\windows\system32\atitmm64.dll
2012-04-06 02:14 . 2012-04-06 02:14 21504 ----a-w- c:\windows\system32\atimuixx.dll
2012-04-06 02:14 . 2012-04-06 02:14 59392 ----a-w- c:\windows\system32\atiedu64.dll
2012-04-06 02:14 . 2012-04-06 02:14 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2012-04-06 02:13 . 2012-02-15 03:07 6800896 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-04-06 02:10 . 2012-04-06 02:10 26181632 ----a-w- c:\windows\system32\atio6axx.dll
2012-04-06 02:00 . 2012-02-29 15:57 64000 ----a-w- c:\windows\system32\coinst.dll
2012-04-06 01:54 . 2012-02-29 15:57 7479296 ----a-w- c:\windows\system32\atidxx64.dll
2012-04-06 01:50 . 2012-04-06 01:50 19753984 ----a-w- c:\windows\SysWow64\atioglxx.dll
2012-04-06 01:35 . 2012-04-06 01:35 1120768 ----a-w- c:\windows\system32\atiumd6v.dll
2012-04-06 01:34 . 2012-04-06 01:34 1831424 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2012-04-06 01:34 . 2012-04-06 01:34 4731904 ----a-w- c:\windows\system32\atiumd6a.dll
2012-04-06 01:34 . 2012-02-29 15:57 6203392 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-04-06 01:30 . 2012-04-06 01:30 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2012-04-06 01:30 . 2012-04-06 01:30 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2012-04-06 01:30 . 2012-04-06 01:30 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2012-04-06 01:30 . 2012-04-06 01:30 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2012-04-06 01:29 . 2012-04-06 01:29 16090624 ----a-w- c:\windows\system32\aticaldd64.dll
2012-04-06 01:25 . 2012-04-06 01:25 13764096 ----a-w- c:\windows\SysWow64\aticaldd.dll
2012-04-06 01:23 . 2012-04-06 01:23 7431680 ----a-w- c:\windows\system32\atiumd64.dll
2012-04-06 01:22 . 2012-02-29 15:57 4795904 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-04-06 01:11 . 2012-02-29 15:57 514560 ----a-w- c:\windows\system32\atiadlxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 360448 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2012-04-06 01:11 . 2012-04-06 01:11 17408 ----a-w- c:\windows\system32\atig6pxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 41984 ----a-w- c:\windows\system32\atig6txx.dll
2012-04-06 01:10 . 2012-04-06 01:10 33280 ----a-w- c:\windows\SysWow64\atigktxx.dll
2012-04-06 01:10 . 2012-04-06 01:10 343040 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-04-06 01:09 . 2012-02-29 15:57 54784 ----a-w- c:\windows\system32\atiuxp64.dll
2012-04-06 01:09 . 2012-02-15 02:12 41984 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-04-06 01:09 . 2012-04-06 01:09 44544 ----a-w- c:\windows\system32\atiu9p64.dll
2012-04-06 01:09 . 2012-02-29 15:57 32256 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-04-06 01:09 . 2012-04-06 01:09 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\atimpc64.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\amdpcom64.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\atimpc32.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2012-04-05 20:34 . 2012-04-05 20:34 187392 ----a-w- c:\windows\system32\clinfo.exe
2012-04-05 20:34 . 2012-04-05 20:34 74752 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-04-05 20:34 . 2012-04-05 20:34 64512 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-04-05 20:33 . 2012-04-05 20:33 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-04-05 20:33 . 2012-04-05 20:33 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-04-05 20:33 . 2012-04-05 20:33 16457216 ----a-w- c:\windows\system32\amdocl64.dll
2012-04-05 20:32 . 2012-04-05 20:32 13007872 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-04-04 13:56 . 2012-04-14 09:54 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-31 10:50 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-03-31 10:50 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-03-31 06:24 . 2012-03-31 06:24 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2012-03-28 16:04 . 2012-03-28 16:04 2255696 ----a-w- c:\windows\system32\ooscrsav.scr
2012-03-28 16:03 . 2012-03-28 16:03 352080 ----a-w- c:\windows\system32\oodbs.exe
2012-03-28 16:02 . 2012-03-28 16:02 536400 ----a-w- c:\windows\system32\oodssrs.dll
2012-03-28 16:01 . 2012-03-28 16:01 10064 ----a-w- c:\windows\system32\oodbsrs.dll
2012-03-26 19:42 . 2012-03-26 19:42 61440 ----a-w- c:\windows\SysWow64\nvPhotoshopUtil.dll
2012-03-26 19:42 . 2012-03-26 19:42 40960 ----a-w- c:\windows\SysWow64\nvISWOW64.dll
2012-03-26 19:42 . 2012-03-20 18:35 151552 ----a-w- c:\windows\SysWow64\nvRegDev.dll
2012-03-22 19:04 . 2012-03-22 19:04 33344 ----a-w- c:\windows\system32\drivers\hamachi.sys
2012-03-12 18:56 . 2011-02-28 17:01 947472 ----a-w- c:\windows\SysWow64\msjava.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-05-20 880496]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2012-05-26 1242448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"HDAudDeck"="c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe" [2010-08-11 2472048]
"ffpsrv"="c:\windows\ffpext\ffpsrv.exe" [2007-02-02 83968]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ OODBS
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-05-03 158856]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-06 257696]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus64.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag64.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps64.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem64.sys [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\lgandadb.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files (x86)\Garena Plus\Room\safedrv.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-07 113120]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 RivaTuner64;RivaTuner64;c:\program files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [2012-04-07 19952]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-22 974944]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-02-28 2343816]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
S2 OODefragAgent;O&O Defrag;c:\program files\OO Software\Defrag\oodag.exe [2012-03-28 3288400]
S2 RadeonPro Support Service;RadeonPro Support Service;c:\program files (x86)\RadeonPro\RadeonProSupport.exe [2011-02-10 12800]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys [x]
S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys [x]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-06-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 16:14]
.
2012-06-07 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2012-04-14 21:31]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OODefragTray"="c:\program files\OO Software\Defrag\oodtray.exe" [2012-03-28 3998032]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-22 4035152]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mLocal Page = %SystemRoot%\system32\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
TCP: Interfaces\{8EA87408-1E32-49AB-B3FF-30F4C705D657}: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Clorky\AppData\Roaming\Mozilla\Firefox\Profiles\nzoqllew.default\
FF - prefs.js: browser.startup.homepage - www.google.cz
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.autoDisableScopes - 14
FF - user.js: security.csp.enable - false
.
.
------- Asociace souborů -------
.
JSEFile=NOTEPAD.EXE %1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
ShellIconOverlayIdentifiers-{152C96EB-288E-4EDC-B7C6-D21F8250ADF3} - (no file)
ShellIconOverlayIdentifiers-{342DAA0B-D796-460D-8566-901E08A1CCAD} - (no file)
ShellIconOverlayIdentifiers-{57595DAE-1AE1-4D97-A49E-67CBB53B52DF} - (no file)
ShellIconOverlayIdentifiers-{33816773-98AE-4723-ADE0-EBE54C8B5A67} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1365180198-3819917712-2369891476-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:ca,88,93,ea,23,f9,36,80,af,e7,8c,9b,3f,44,58,fc,77,04,3d,15,f2,5c,9a,
b4,56,b9,5d,a8,c4,76,a3,75,e8,85,8e,a6,cd,a8,1e,2e,4b,e1,69,6e,14,98,2c,99,\
"??"=hex:35,fc,c6,3d,c9,02,ad,db,37,1f,61,de,0f,33,8f,50
.
[HKEY_USERS\S-1-5-21-1365180198-3819917712-2369891476-1001\Software\SecuROM\License information*]
"datasecu"=hex:d9,09,63,41,0e,e0,83,06,7c,07,70,04,2f,d9,8a,d7,30,91,a9,54,7a,
92,48,ab,2a,4f,23,b6,2d,c0,77,f9,15,78,74,bc,a2,4f,4a,39,32,4c,1e,18,56,7d,\
"rkeysecu"=hex:ac,85,ae,05,b4,fc,d7,1e,f1,ef,44,4b,4f,69,5f,a1
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2012-06-07 18:33:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-06-07 16:33
.
Před spuštěním: 137 700 401 152 bytes free
Po spuštění: 137 283 084 288 bytes free
.
- - End Of File - - A7D18545D72CCF7342BED0B8F07D47C5

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 18:41

TDSS:

17:31:38.0053 3172 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
17:31:38.0194 3172 ============================================================
17:31:38.0194 3172 Current date / time: 2012/06/07 17:31:38.0194
17:31:38.0194 3172 SystemInfo:
17:31:38.0194 3172
17:31:38.0195 3172 OS Version: 6.1.7601 ServicePack: 1.0
17:31:38.0195 3172 Product type: Workstation
17:31:38.0195 3172 ComputerName: I5PETR
17:31:38.0195 3172 UserName: Clorky
17:31:38.0195 3172 Windows directory: C:\Windows
17:31:38.0195 3172 System windows directory: C:\Windows
17:31:38.0195 3172 Running under WOW64
17:31:38.0195 3172 Processor architecture: Intel x64
17:31:38.0195 3172 Number of processors: 4
17:31:38.0195 3172 Page size: 0x1000
17:31:38.0195 3172 Boot type: Normal boot
17:31:38.0195 3172 ============================================================
17:31:44.0510 3172 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:31:44.0520 3172 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:31:44.0523 3172 ============================================================
17:31:44.0523 3172 \Device\Harddisk0\DR0:
17:31:44.0523 3172 MBR partitions:
17:31:44.0523 3172 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950A5C1
17:31:44.0523 3172 \Device\Harddisk1\DR1:
17:31:44.0523 3172 MBR partitions:
17:31:44.0523 3172 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:31:44.0523 3172 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x249BD800
17:31:44.0523 3172 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x249F0000, BlocksNum 0x4FD15800
17:31:44.0523 3172 ============================================================
17:31:44.0538 3172 C: <-> \Device\Harddisk1\DR1\Partition1
17:31:44.0563 3172 D: <-> \Device\Harddisk0\DR0\Partition0
17:31:44.0596 3172 E: <-> \Device\Harddisk1\DR1\Partition2
17:31:44.0603 3172 ============================================================
17:31:44.0603 3172 Initialize success
17:31:44.0603 3172 ============================================================
17:31:51.0762 4192 ============================================================
17:31:51.0762 4192 Scan started
17:31:51.0762 4192 Mode: Manual;
17:31:51.0762 4192 ============================================================
17:31:52.0682 4192 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:31:52.0685 4192 1394ohci - ok
17:31:52.0710 4192 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:31:52.0713 4192 ACPI - ok
17:31:52.0723 4192 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:31:52.0724 4192 AcpiPmi - ok
17:31:52.0792 4192 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:31:52.0793 4192 AdobeFlashPlayerUpdateSvc - ok
17:31:52.0819 4192 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:31:52.0823 4192 adp94xx - ok
17:31:52.0844 4192 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:31:52.0847 4192 adpahci - ok
17:31:52.0858 4192 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:31:52.0860 4192 adpu320 - ok
17:31:52.0879 4192 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:31:52.0880 4192 AeLookupSvc - ok
17:31:52.0919 4192 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:31:52.0933 4192 AFD - ok
17:31:52.0937 4192 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:31:52.0938 4192 agp440 - ok
17:31:52.0943 4192 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:31:52.0944 4192 ALG - ok
17:31:52.0946 4192 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:31:52.0946 4192 aliide - ok
17:31:52.0973 4192 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
17:31:52.0976 4192 AMD External Events Utility - ok
17:31:52.0978 4192 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:31:52.0979 4192 amdide - ok
17:31:52.0983 4192 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:31:52.0984 4192 AmdK8 - ok
17:31:53.0550 4192 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
17:31:53.0654 4192 amdkmdag - ok
17:31:53.0733 4192 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
17:31:53.0736 4192 amdkmdap - ok
17:31:53.0752 4192 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:31:53.0753 4192 AmdPPM - ok
17:31:53.0762 4192 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:31:53.0764 4192 amdsata - ok
17:31:53.0774 4192 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:31:53.0776 4192 amdsbs - ok
17:31:53.0789 4192 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:31:53.0790 4192 amdxata - ok
17:31:53.0806 4192 Andbus (48cd7e6520d47d62eab0e6ce3ec30c65) C:\Windows\system32\DRIVERS\lgandbus64.sys
17:31:53.0807 4192 Andbus - ok
17:31:53.0810 4192 AndDiag (08cbacc00d15dcdbbaae1a7c8f231c61) C:\Windows\system32\DRIVERS\lganddiag64.sys
17:31:53.0811 4192 AndDiag - ok
17:31:53.0814 4192 AndGps (cea9a4cd6b3a83428ce8501240833668) C:\Windows\system32\DRIVERS\lgandgps64.sys
17:31:53.0814 4192 AndGps - ok
17:31:53.0821 4192 ANDModem (e2b5663e547fa5e756b253efa8ec8286) C:\Windows\system32\DRIVERS\lgandmodem64.sys
17:31:53.0821 4192 ANDModem - ok
17:31:53.0824 4192 androidusb (9c1751b2e733471ae07561028b7d2a9b) C:\Windows\system32\Drivers\lgandadb.sys
17:31:53.0826 4192 androidusb - ok
17:31:53.0838 4192 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:31:53.0839 4192 AppID - ok
17:31:53.0855 4192 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:31:53.0855 4192 AppIDSvc - ok
17:31:53.0862 4192 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:31:53.0862 4192 Appinfo - ok
17:31:53.0884 4192 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
17:31:53.0885 4192 AppMgmt - ok
17:31:53.0890 4192 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:31:53.0891 4192 arc - ok
17:31:53.0898 4192 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:31:53.0899 4192 arcsas - ok
17:31:53.0939 4192 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:31:53.0939 4192 aspnet_state - ok
17:31:53.0945 4192 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:31:53.0945 4192 AsyncMac - ok
17:31:53.0948 4192 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:31:53.0948 4192 atapi - ok
17:31:53.0960 4192 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
17:31:53.0961 4192 AtiHDAudioService - ok
17:31:54.0023 4192 atksgt (fc0e8778c000291caf60eb88c011e931) C:\Windows\system32\DRIVERS\atksgt.sys
17:31:54.0026 4192 atksgt - ok
17:31:54.0073 4192 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:31:54.0078 4192 AudioEndpointBuilder - ok
17:31:54.0082 4192 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:31:54.0084 4192 AudioSrv - ok
17:31:54.0104 4192 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:31:54.0104 4192 AxInstSV - ok
17:31:54.0137 4192 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:31:54.0143 4192 b06bdrv - ok
17:31:54.0176 4192 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:31:54.0179 4192 b57nd60a - ok
17:31:54.0190 4192 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:31:54.0191 4192 BDESVC - ok
17:31:54.0198 4192 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:31:54.0199 4192 Beep - ok
17:31:54.0245 4192 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:31:54.0250 4192 BFE - ok
17:31:54.0293 4192 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
17:31:54.0300 4192 BITS - ok
17:31:54.0318 4192 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:31:54.0318 4192 blbdrive - ok
17:31:54.0345 4192 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:31:54.0346 4192 bowser - ok
17:31:54.0355 4192 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:31:54.0355 4192 BrFiltLo - ok
17:31:54.0363 4192 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:31:54.0364 4192 BrFiltUp - ok
17:31:54.0377 4192 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
17:31:54.0378 4192 BridgeMP - ok
17:31:54.0393 4192 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:31:54.0394 4192 Browser - ok
17:31:54.0415 4192 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:31:54.0418 4192 Brserid - ok
17:31:54.0424 4192 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:31:54.0425 4192 BrSerWdm - ok
17:31:54.0431 4192 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:31:54.0431 4192 BrUsbMdm - ok
17:31:54.0438 4192 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:31:54.0438 4192 BrUsbSer - ok
17:31:54.0450 4192 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:31:54.0450 4192 BTHMODEM - ok
17:31:54.0457 4192 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:31:54.0457 4192 bthserv - ok
17:31:54.0463 4192 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:31:54.0464 4192 cdfs - ok
17:31:54.0487 4192 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:31:54.0489 4192 cdrom - ok
17:31:54.0494 4192 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:31:54.0494 4192 CertPropSvc - ok
17:31:54.0502 4192 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:31:54.0503 4192 circlass - ok
17:31:54.0528 4192 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:31:54.0531 4192 CLFS - ok
17:31:54.0557 4192 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:31:54.0558 4192 clr_optimization_v2.0.50727_32 - ok
17:31:54.0583 4192 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:31:54.0584 4192 clr_optimization_v2.0.50727_64 - ok
17:31:54.0610 4192 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:31:54.0611 4192 clr_optimization_v4.0.30319_32 - ok
17:31:54.0626 4192 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:31:54.0627 4192 clr_optimization_v4.0.30319_64 - ok
17:31:54.0632 4192 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:31:54.0633 4192 CmBatt - ok
17:31:54.0641 4192 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:31:54.0642 4192 cmdide - ok
17:31:54.0683 4192 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:31:54.0687 4192 CNG - ok
17:31:54.0703 4192 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:31:54.0704 4192 Compbatt - ok
17:31:54.0717 4192 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:31:54.0717 4192 CompositeBus - ok
17:31:54.0719 4192 COMSysApp - ok
17:31:54.0729 4192 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:31:54.0729 4192 crcdisk - ok
17:31:54.0763 4192 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
17:31:54.0764 4192 CryptSvc - ok
17:31:54.0803 4192 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
17:31:54.0816 4192 CSC - ok
17:31:54.0859 4192 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
17:31:54.0864 4192 CscService - ok
17:31:54.0900 4192 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:31:54.0904 4192 DcomLaunch - ok
17:31:54.0926 4192 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:31:54.0929 4192 defragsvc - ok
17:31:54.0952 4192 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:31:54.0953 4192 DfsC - ok
17:31:54.0980 4192 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:31:54.0982 4192 Dhcp - ok
17:31:54.0991 4192 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:31:54.0992 4192 discache - ok
17:31:55.0005 4192 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:31:55.0006 4192 Disk - ok
17:31:55.0036 4192 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:31:55.0038 4192 Dnscache - ok
17:31:55.0051 4192 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:31:55.0053 4192 dot3svc - ok
17:31:55.0073 4192 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:31:55.0074 4192 DPS - ok
17:31:55.0088 4192 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:31:55.0088 4192 drmkaud - ok
17:31:55.0127 4192 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:31:55.0130 4192 dtsoftbus01 - ok
17:31:55.0186 4192 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:31:55.0205 4192 DXGKrnl - ok
17:31:55.0260 4192 eamonm (13533557d01b88c83110d5cf749f14d7) C:\Windows\system32\DRIVERS\eamonm.sys
17:31:55.0262 4192 eamonm - ok
17:31:55.0286 4192 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:31:55.0286 4192 EapHost - ok
17:31:55.0466 4192 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:31:55.0508 4192 ebdrv - ok
17:31:55.0579 4192 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:31:55.0579 4192 EFS - ok
17:31:55.0606 4192 ehdrv (e097728129e7b79bf1089d7aef42332b) C:\Windows\system32\DRIVERS\ehdrv.sys
17:31:55.0607 4192 ehdrv - ok
17:31:55.0666 4192 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:31:55.0671 4192 ehRecvr - ok
17:31:55.0698 4192 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:31:55.0699 4192 ehSched - ok
17:31:55.0811 4192 ekrn (c7bb95cf9631aa401e4aded1648f6af7) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
17:31:55.0815 4192 ekrn - ok
17:31:55.0887 4192 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:31:55.0898 4192 elxstor - ok
17:31:55.0933 4192 epfwwfpr (2380976cf8a4a56611f35633acd2a74f) C:\Windows\system32\DRIVERS\epfwwfpr.sys
17:31:55.0934 4192 epfwwfpr - ok
17:31:55.0946 4192 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:31:55.0947 4192 ErrDev - ok
17:31:55.0993 4192 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:31:56.0002 4192 EventSystem - ok
17:31:56.0021 4192 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:31:56.0023 4192 exfat - ok
17:31:56.0042 4192 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:31:56.0044 4192 fastfat - ok
17:31:56.0129 4192 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:31:56.0135 4192 Fax - ok
17:31:56.0144 4192 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:31:56.0145 4192 fdc - ok
17:31:56.0146 4192 FDCDNT - ok
17:31:56.0157 4192 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:31:56.0157 4192 fdPHost - ok
17:31:56.0160 4192 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:31:56.0161 4192 FDResPub - ok
17:31:56.0170 4192 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:31:56.0171 4192 FileInfo - ok
17:31:56.0174 4192 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:31:56.0175 4192 Filetrace - ok
17:31:56.0186 4192 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:31:56.0186 4192 flpydisk - ok
17:31:56.0209 4192 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:31:56.0212 4192 FltMgr - ok
17:31:56.0282 4192 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:31:56.0292 4192 FontCache - ok
17:31:56.0335 4192 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:31:56.0335 4192 FontCache3.0.0.0 - ok
17:31:56.0347 4192 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:31:56.0347 4192 FsDepends - ok
17:31:56.0361 4192 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:31:56.0362 4192 Fs_Rec - ok
17:31:56.0377 4192 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:31:56.0379 4192 fvevol - ok
17:31:56.0389 4192 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:31:56.0390 4192 gagp30kx - ok
17:31:56.0451 4192 GGSAFERDriver - ok
17:31:56.0502 4192 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:31:56.0508 4192 gpsvc - ok
17:31:56.0523 4192 hamachi (f8f0851d336c3b88dbd7232b6348e09a) C:\Windows\system32\DRIVERS\hamachi.sys
17:31:56.0523 4192 hamachi - ok
17:31:56.0652 4192 Hamachi2Svc (d483dbaef409e8ab7477c28615fcd853) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
17:31:56.0673 4192 Hamachi2Svc - ok
17:31:56.0731 4192 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:31:56.0732 4192 hcw85cir - ok
17:31:56.0759 4192 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:31:56.0763 4192 HdAudAddService - ok
17:31:56.0774 4192 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:31:56.0775 4192 HDAudBus - ok
17:31:56.0782 4192 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:31:56.0783 4192 HidBatt - ok
17:31:56.0798 4192 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:31:56.0800 4192 HidBth - ok
17:31:56.0807 4192 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:31:56.0807 4192 HidIr - ok
17:31:56.0823 4192 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
17:31:56.0824 4192 hidserv - ok
17:31:56.0842 4192 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:31:56.0843 4192 HidUsb - ok
17:31:56.0854 4192 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:31:56.0854 4192 hkmsvc - ok
17:31:56.0875 4192 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:31:56.0876 4192 HomeGroupListener - ok
17:31:56.0905 4192 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:31:56.0906 4192 HomeGroupProvider - ok
17:31:56.0917 4192 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:31:56.0918 4192 HpSAMD - ok
17:31:56.0974 4192 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:31:56.0986 4192 HTTP - ok
17:31:57.0003 4192 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:31:57.0004 4192 hwpolicy - ok
17:31:57.0017 4192 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:31:57.0018 4192 i8042prt - ok
17:31:57.0051 4192 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:31:57.0059 4192 iaStorV - ok
17:31:57.0124 4192 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:31:57.0130 4192 idsvc - ok
17:31:57.0139 4192 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:31:57.0139 4192 iirsp - ok
17:31:57.0189 4192 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:31:57.0196 4192 IKEEXT - ok
17:31:57.0202 4192 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:31:57.0203 4192 intelide - ok
17:31:57.0213 4192 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:31:57.0213 4192 intelppm - ok
17:31:57.0220 4192 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:31:57.0221 4192 IPBusEnum - ok
17:31:57.0231 4192 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:31:57.0232 4192 IpFilterDriver - ok
17:31:57.0279 4192 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:31:57.0290 4192 iphlpsvc - ok
17:31:57.0301 4192 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:31:57.0302 4192 IPMIDRV - ok
17:31:57.0320 4192 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:31:57.0321 4192 IPNAT - ok
17:31:57.0323 4192 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:31:57.0324 4192 IRENUM - ok
17:31:57.0335 4192 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:31:57.0336 4192 isapnp - ok
17:31:57.0356 4192 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:31:57.0359 4192 iScsiPrt - ok
17:31:57.0374 4192 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:31:57.0375 4192 kbdclass - ok
17:31:57.0385 4192 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
17:31:57.0386 4192 kbdhid - ok
17:31:57.0395 4192 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:31:57.0396 4192 KeyIso - ok
17:31:57.0410 4192 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:31:57.0411 4192 KSecDD - ok
17:31:57.0427 4192 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:31:57.0429 4192 KSecPkg - ok
17:31:57.0438 4192 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:31:57.0438 4192 ksthunk - ok
17:31:57.0473 4192 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:31:57.0482 4192 KtmRm - ok
17:31:57.0506 4192 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
17:31:57.0508 4192 LanmanServer - ok
17:31:57.0527 4192 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:31:57.0529 4192 LanmanWorkstation - ok
17:31:57.0549 4192 LgBttPort (174803f2eea3b22165dfe0e5a1f20685) C:\Windows\system32\DRIVERS\lgbtpt64.sys
17:31:57.0550 4192 LgBttPort - ok
17:31:57.0555 4192 lgbusenum (565f93bb7c0361e61b3daea670c354d6) C:\Windows\system32\DRIVERS\lgbtbs64.sys
17:31:57.0556 4192 lgbusenum - ok
17:31:57.0558 4192 LGVMODEM (abf477857b7ced873362ec92c6ce10a7) C:\Windows\system32\DRIVERS\lgvmdm64.sys
17:31:57.0559 4192 LGVMODEM - ok
17:31:57.0728 4192 lirsgt (156ab2e56dc3ca0b582e3362e07cded7) C:\Windows\system32\DRIVERS\lirsgt.sys
17:31:57.0765 4192 lirsgt - ok
17:31:57.0841 4192 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:31:57.0842 4192 lltdio - ok
17:31:57.0874 4192 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:31:57.0877 4192 lltdsvc - ok
17:31:57.0890 4192 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:31:57.0891 4192 lmhosts - ok
17:31:57.0905 4192 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:31:57.0906 4192 LSI_FC - ok
17:31:57.0916 4192 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:31:57.0917 4192 LSI_SAS - ok
17:31:57.0921 4192 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:31:57.0922 4192 LSI_SAS2 - ok
17:31:57.0930 4192 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:31:57.0931 4192 LSI_SCSI - ok
17:31:57.0937 4192 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:31:57.0938 4192 luafv - ok
17:31:57.0973 4192 MarvinBus (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
17:31:57.0976 4192 MarvinBus - ok
17:31:58.0003 4192 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
17:31:58.0004 4192 MBAMProtector - ok
17:31:58.0059 4192 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:31:58.0061 4192 MBAMService - ok
17:31:58.0076 4192 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:31:58.0077 4192 Mcx2Svc - ok
17:31:58.0088 4192 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:31:58.0089 4192 megasas - ok
17:31:58.0112 4192 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:31:58.0114 4192 MegaSR - ok
17:31:58.0154 4192 Microsoft SharePoint Workspace Audit Service - ok
17:31:58.0169 4192 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:31:58.0170 4192 MMCSS - ok
17:31:58.0183 4192 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:31:58.0184 4192 Modem - ok
17:31:58.0196 4192 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:31:58.0196 4192 monitor - ok
17:31:58.0210 4192 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:31:58.0211 4192 mouclass - ok
17:31:58.0219 4192 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:31:58.0219 4192 mouhid - ok
17:31:58.0232 4192 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:31:58.0233 4192 mountmgr - ok
17:31:58.0258 4192 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:31:58.0258 4192 MozillaMaintenance - ok
17:31:58.0287 4192 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:31:58.0289 4192 mpio - ok
17:31:58.0305 4192 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:31:58.0306 4192 mpsdrv - ok
17:31:58.0359 4192 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:31:58.0390 4192 MpsSvc - ok
17:31:58.0411 4192 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:31:58.0412 4192 MRxDAV - ok
17:31:58.0431 4192 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:31:58.0433 4192 mrxsmb - ok
17:31:58.0453 4192 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:31:58.0456 4192 mrxsmb10 - ok
17:31:58.0463 4192 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:31:58.0464 4192 mrxsmb20 - ok
17:31:58.0479 4192 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:31:58.0479 4192 msahci - ok
17:31:58.0501 4192 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:31:58.0503 4192 msdsm - ok
17:31:58.0523 4192 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:31:58.0525 4192 MSDTC - ok
17:31:58.0532 4192 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:31:58.0533 4192 Msfs - ok
17:31:58.0544 4192 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:31:58.0545 4192 mshidkmdf - ok
17:31:58.0547 4192 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:31:58.0547 4192 msisadrv - ok
17:31:58.0572 4192 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:31:58.0574 4192 MSiSCSI - ok
17:31:58.0575 4192 msiserver - ok
17:31:58.0583 4192 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:31:58.0583 4192 MSKSSRV - ok
17:31:58.0590 4192 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:31:58.0590 4192 MSPCLOCK - ok
17:31:58.0595 4192 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:31:58.0595 4192 MSPQM - ok
17:31:58.0623 4192 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:31:58.0626 4192 MsRPC - ok
17:31:58.0640 4192 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:31:58.0641 4192 mssmbios - ok
17:31:58.0651 4192 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:31:58.0652 4192 MSTEE - ok
17:31:58.0660 4192 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:31:58.0660 4192 MTConfig - ok
17:31:58.0678 4192 MTsensor (03b7145c889603537e9ffeabb1ad1089) C:\Windows\system32\DRIVERS\ASACPI.sys
17:31:58.0678 4192 MTsensor - ok
17:31:58.0691 4192 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:31:58.0691 4192 Mup - ok
17:31:58.0722 4192 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:31:58.0725 4192 napagent - ok
17:31:58.0756 4192 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:31:58.0759 4192 NativeWifiP - ok
17:31:58.0806 4192 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:31:58.0814 4192 NDIS - ok
17:31:58.0821 4192 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:31:58.0822 4192 NdisCap - ok
17:31:58.0835 4192 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:31:58.0835 4192 NdisTapi - ok
17:31:58.0851 4192 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:31:58.0852 4192 Ndisuio - ok
17:31:58.0861 4192 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:31:58.0863 4192 NdisWan - ok
17:31:58.0883 4192 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:31:58.0885 4192 NDProxy - ok
17:31:58.0895 4192 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:31:58.0896 4192 NetBIOS - ok
17:31:58.0911 4192 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:31:58.0914 4192 NetBT - ok
17:31:58.0929 4192 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:31:58.0929 4192 Netlogon - ok
17:31:58.0968 4192 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:31:58.0970 4192 Netman - ok
17:31:59.0014 4192 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:59.0015 4192 NetMsmqActivator - ok
17:31:59.0017 4192 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:59.0017 4192 NetPipeActivator - ok
17:31:59.0051 4192 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:31:59.0055 4192 netprofm - ok
17:31:59.0057 4192 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:59.0057 4192 NetTcpActivator - ok
17:31:59.0059 4192 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:59.0060 4192 NetTcpPortSharing - ok
17:31:59.0083 4192 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:31:59.0084 4192 nfrd960 - ok
17:31:59.0112 4192 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:31:59.0115 4192 NlaSvc - ok
17:31:59.0119 4192 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:31:59.0120 4192 Npfs - ok
17:31:59.0137 4192 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:31:59.0137 4192 nsi - ok
17:31:59.0147 4192 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:31:59.0148 4192 nsiproxy - ok
17:31:59.0243 4192 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:31:59.0259 4192 Ntfs - ok
17:31:59.0340 4192 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:31:59.0340 4192 Null - ok
17:31:59.0368 4192 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:31:59.0369 4192 nvraid - ok
17:31:59.0380 4192 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:31:59.0381 4192 nvstor - ok
17:31:59.0396 4192 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:31:59.0397 4192 nv_agp - ok
17:31:59.0414 4192 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:31:59.0415 4192 ohci1394 - ok
17:31:59.0616 4192 OODefragAgent (cdbd86641ceb73402f436c9569e56c4e) C:\Program Files\OO Software\Defrag\oodag.exe
17:31:59.0657 4192 OODefragAgent - ok
17:31:59.0706 4192 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:31:59.0707 4192 ose - ok
17:31:59.0981 4192 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:32:00.0033 4192 osppsvc - ok
17:32:00.0138 4192 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:32:00.0141 4192 p2pimsvc - ok
17:32:00.0168 4192 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:32:00.0171 4192 p2psvc - ok
17:32:00.0190 4192 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:32:00.0192 4192 Parport - ok
17:32:00.0213 4192 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:32:00.0214 4192 partmgr - ok
17:32:00.0231 4192 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:32:00.0233 4192 PcaSvc - ok
17:32:00.0250 4192 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:32:00.0251 4192 pci - ok
17:32:00.0254 4192 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:32:00.0255 4192 pciide - ok
17:32:00.0276 4192 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:32:00.0279 4192 pcmcia - ok
17:32:00.0283 4192 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:32:00.0283 4192 pcw - ok
17:32:00.0326 4192 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:32:00.0334 4192 PEAUTH - ok
17:32:00.0394 4192 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
17:32:00.0404 4192 PeerDistSvc - ok
17:32:00.0457 4192 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:32:00.0458 4192 PerfHost - ok
17:32:00.0573 4192 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:32:00.0583 4192 pla - ok
17:32:00.0621 4192 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:32:00.0624 4192 PlugPlay - ok
17:32:00.0643 4192 PnkBstrA - ok
17:32:00.0647 4192 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:32:00.0648 4192 PNRPAutoReg - ok
17:32:00.0676 4192 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:32:00.0678 4192 PNRPsvc - ok
17:32:00.0709 4192 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:32:00.0723 4192 PolicyAgent - ok
17:32:00.0738 4192 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:32:00.0740 4192 Power - ok
17:32:00.0759 4192 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:32:00.0760 4192 PptpMiniport - ok
17:32:00.0773 4192 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:32:00.0774 4192 Processor - ok
17:32:00.0796 4192 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
17:32:00.0798 4192 ProfSvc - ok
17:32:00.0812 4192 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:32:00.0813 4192 ProtectedStorage - ok
17:32:00.0835 4192 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:32:00.0836 4192 Psched - ok
17:32:00.0931 4192 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:32:00.0951 4192 ql2300 - ok
17:32:01.0011 4192 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:32:01.0012 4192 ql40xx - ok
17:32:01.0036 4192 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:32:01.0038 4192 QWAVE - ok
17:32:01.0045 4192 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:32:01.0046 4192 QWAVEdrv - ok
17:32:01.0080 4192 RadeonPro Support Service (6c8f17953c07f88364307fc7811c5184) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
17:32:01.0080 4192 RadeonPro Support Service - ok
17:32:01.0090 4192 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:32:01.0090 4192 RasAcd - ok
17:32:01.0102 4192 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:32:01.0103 4192 RasAgileVpn - ok
17:32:01.0110 4192 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:32:01.0110 4192 RasAuto - ok
17:32:01.0119 4192 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:32:01.0120 4192 Rasl2tp - ok
17:32:01.0146 4192 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:32:01.0149 4192 RasMan - ok
17:32:01.0155 4192 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:32:01.0156 4192 RasPppoe - ok
17:32:01.0161 4192 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:32:01.0162 4192 RasSstp - ok
17:32:01.0182 4192 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:32:01.0185 4192 rdbss - ok
17:32:01.0187 4192 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:32:01.0188 4192 rdpbus - ok
17:32:01.0195 4192 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:32:01.0195 4192 RDPCDD - ok
17:32:01.0220 4192 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
17:32:01.0222 4192 RDPDR - ok
17:32:01.0225 4192 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:32:01.0225 4192 RDPENCDD - ok
17:32:01.0228 4192 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:32:01.0228 4192 RDPREFMP - ok
17:32:01.0241 4192 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
17:32:01.0242 4192 RdpVideoMiniport - ok
17:32:01.0272 4192 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
17:32:01.0274 4192 RDPWD - ok
17:32:01.0307 4192 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:32:01.0309 4192 rdyboost - ok
17:32:01.0325 4192 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:32:01.0326 4192 RemoteAccess - ok
17:32:01.0341 4192 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:32:01.0343 4192 RemoteRegistry - ok
17:32:01.0386 4192 RivaTuner64 (a10b40cf9eb57d24e44717a2d38a00f4) C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
17:32:01.0386 4192 RivaTuner64 - ok
17:32:01.0399 4192 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:32:01.0400 4192 RpcEptMapper - ok
17:32:01.0412 4192 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:32:01.0412 4192 RpcLocator - ok
17:32:01.0438 4192 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:32:01.0440 4192 RpcSs - ok
17:32:01.0449 4192 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:32:01.0451 4192 rspndr - ok
17:32:01.0470 4192 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:32:01.0472 4192 RTL8167 - ok
17:32:01.0492 4192 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
17:32:01.0493 4192 s3cap - ok
17:32:01.0504 4192 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:32:01.0505 4192 SamSs - ok
17:32:01.0516 4192 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:32:01.0518 4192 sbp2port - ok
17:32:01.0528 4192 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:32:01.0530 4192 SCardSvr - ok
17:32:01.0544 4192 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:32:01.0545 4192 scfilter - ok
17:32:01.0602 4192 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:32:01.0611 4192 Schedule - ok
17:32:01.0631 4192 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:32:01.0631 4192 SCPolicySvc - ok
17:32:01.0650 4192 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:32:01.0651 4192 SDRSVC - ok
17:32:01.0685 4192 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:32:01.0686 4192 secdrv - ok
17:32:01.0708 4192 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:32:01.0709 4192 seclogon - ok
17:32:01.0732 4192 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
17:32:01.0734 4192 SENS - ok
17:32:01.0737 4192 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:32:01.0738 4192 SensrSvc - ok
17:32:01.0743 4192 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:32:01.0744 4192 Serenum - ok
17:32:01.0755 4192 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:32:01.0756 4192 Serial - ok
17:32:01.0796 4192 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:32:01.0797 4192 sermouse - ok
17:32:01.0807 4192 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:32:01.0808 4192 SessionEnv - ok
17:32:01.0823 4192 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:32:01.0824 4192 sffdisk - ok
17:32:01.0833 4192 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:32:01.0833 4192 sffp_mmc - ok
17:32:01.0842 4192 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:32:01.0843 4192 sffp_sd - ok
17:32:01.0854 4192 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:32:01.0855 4192 sfloppy - ok
17:32:01.0891 4192 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:32:01.0894 4192 SharedAccess - ok
17:32:01.0951 4192 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:32:01.0955 4192 ShellHWDetection - ok
17:32:01.0976 4192 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:32:01.0977 4192 SiSRaid2 - ok
17:32:01.0992 4192 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:32:01.0993 4192 SiSRaid4 - ok
17:32:02.0028 4192 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:32:02.0028 4192 SkypeUpdate - ok
17:32:02.0043 4192 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:32:02.0044 4192 Smb - ok
17:32:02.0055 4192 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:32:02.0056 4192 SNMPTRAP - ok
17:32:02.0066 4192 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:32:02.0067 4192 spldr - ok
17:32:02.0100 4192 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:32:02.0112 4192 Spooler - ok
17:32:02.0318 4192 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:32:02.0350 4192 sppsvc - ok
17:32:02.0420 4192 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:32:02.0421 4192 sppuinotify - ok
17:32:02.0452 4192 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:32:02.0455 4192 srv - ok
17:32:02.0483 4192 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:32:02.0487 4192 srv2 - ok
17:32:02.0497 4192 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:32:02.0499 4192 srvnet - ok
17:32:02.0509 4192 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:32:02.0511 4192 SSDPSRV - ok
17:32:02.0526 4192 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:32:02.0527 4192 SstpSvc - ok
17:32:02.0564 4192 Steam Client Service - ok
17:32:02.0592 4192 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:32:02.0593 4192 stexstor - ok
17:32:02.0629 4192 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:32:02.0634 4192 stisvc - ok
17:32:02.0642 4192 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
17:32:02.0643 4192 storflt - ok
17:32:02.0654 4192 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
17:32:02.0655 4192 storvsc - ok
17:32:02.0665 4192 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
17:32:02.0666 4192 swenum - ok
17:32:02.0712 4192 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:32:02.0714 4192 SwitchBoard - ok
17:32:02.0748 4192 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:32:02.0753 4192 swprv - ok
17:32:02.0871 4192 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:32:02.0898 4192 SysMain - ok
17:32:03.0079 4192 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:32:03.0080 4192 TabletInputService - ok
17:32:03.0104 4192 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:32:03.0106 4192 TapiSrv - ok
17:32:03.0111 4192 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:32:03.0113 4192 TBS - ok
17:32:03.0213 4192 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:32:03.0228 4192 Tcpip - ok
17:32:03.0348 4192 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:32:03.0354 4192 TCPIP6 - ok
17:32:03.0413 4192 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:32:03.0414 4192 tcpipreg - ok
17:32:03.0423 4192 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:32:03.0424 4192 TDPIPE - ok
17:32:03.0445 4192 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:32:03.0445 4192 TDTCP - ok
17:32:03.0459 4192 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:32:03.0460 4192 tdx - ok
17:32:03.0635 4192 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
17:32:03.0645 4192 TeamViewer7 - ok
17:32:03.0686 4192 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
17:32:03.0687 4192 TermDD - ok
17:32:03.0731 4192 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:32:03.0736 4192 TermService - ok
17:32:03.0758 4192 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:32:03.0760 4192 Themes - ok
17:32:03.0777 4192 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:32:03.0778 4192 THREADORDER - ok
17:32:03.0786 4192 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:32:03.0787 4192 TrkWks - ok
17:32:03.0815 4192 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:32:03.0816 4192 TrustedInstaller - ok
17:32:03.0820 4192 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:32:03.0821 4192 tssecsrv - ok
17:32:03.0835 4192 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:32:03.0836 4192 TsUsbFlt - ok
17:32:03.0864 4192 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:32:03.0865 4192 tunnel - ok
17:32:03.0888 4192 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:32:03.0889 4192 uagp35 - ok
17:32:03.0913 4192 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:32:03.0916 4192 udfs - ok
17:32:03.0922 4192 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:32:03.0923 4192 UI0Detect - ok
17:32:03.0937 4192 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:32:03.0938 4192 uliagpkx - ok
17:32:03.0955 4192 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
17:32:03.0956 4192 umbus - ok
17:32:03.0965 4192 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:32:03.0965 4192 UmPass - ok
17:32:03.0977 4192 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
17:32:03.0978 4192 UmRdpService - ok
17:32:03.0994 4192 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:32:03.0998 4192 upnphost - ok
17:32:04.0012 4192 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:32:04.0014 4192 usbccgp - ok
17:32:04.0032 4192 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:32:04.0033 4192 usbcir - ok
17:32:04.0044 4192 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
17:32:04.0045 4192 usbehci - ok
17:32:04.0063 4192 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:32:04.0066 4192 usbhub - ok
17:32:04.0079 4192 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
17:32:04.0080 4192 usbohci - ok
17:32:04.0089 4192 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:32:04.0090 4192 usbprint - ok
17:32:04.0106 4192 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:32:04.0107 4192 usbscan - ok
17:32:04.0121 4192 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:32:04.0122 4192 USBSTOR - ok
17:32:04.0131 4192 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:32:04.0132 4192 usbuhci - ok
17:32:04.0144 4192 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:32:04.0145 4192 UxSms - ok
17:32:04.0154 4192 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:32:04.0155 4192 VaultSvc - ok
17:32:04.0163 4192 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:32:04.0163 4192 vdrvroot - ok
17:32:04.0346 4192 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:32:04.0363 4192 vds - ok
17:32:04.0373 4192 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:32:04.0374 4192 vga - ok
17:32:04.0386 4192 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:32:04.0386 4192 VgaSave - ok
17:32:04.0401 4192 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:32:04.0403 4192 vhdmp - ok
17:32:04.0475 4192 VIAHdAudAddService (8f69c38a8ba725f891f26aac8888696e) C:\Windows\system32\drivers\viahduaa.sys
17:32:04.0489 4192 VIAHdAudAddService - ok
17:32:04.0545 4192 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:32:04.0546 4192 viaide - ok
17:32:04.0556 4192 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
17:32:04.0558 4192 vmbus - ok
17:32:04.0570 4192 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
17:32:04.0571 4192 VMBusHID - ok
17:32:04.0576 4192 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:32:04.0577 4192 volmgr - ok
17:32:04.0604 4192 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:32:04.0607 4192 volmgrx - ok
17:32:04.0828 4192 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:32:04.0830 4192 volsnap - ok
17:32:04.0865 4192 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:32:04.0867 4192 vsmraid - ok
17:32:04.0961 4192 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:32:04.0973 4192 VSS - ok
17:32:05.0004 4192 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
17:32:05.0005 4192 vwifibus - ok
17:32:05.0030 4192 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:32:05.0033 4192 W32Time - ok
17:32:05.0044 4192 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:32:05.0044 4192 WacomPen - ok
17:32:05.0058 4192 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:32:05.0059 4192 WANARP - ok
17:32:05.0061 4192 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:32:05.0061 4192 Wanarpv6 - ok
17:32:05.0155 4192 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 18:42

17:32:05.0174 4192 WatAdminSvc - ok
17:32:05.0247 4192 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:32:05.0258 4192 wbengine - ok
17:32:05.0298 4192 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:32:05.0300 4192 WbioSrvc - ok
17:32:05.0326 4192 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:32:05.0329 4192 wcncsvc - ok
17:32:05.0334 4192 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:32:05.0334 4192 WcsPlugInService - ok
17:32:05.0340 4192 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:32:05.0341 4192 Wd - ok
17:32:05.0371 4192 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:32:05.0376 4192 Wdf01000 - ok
17:32:05.0385 4192 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:32:05.0386 4192 WdiServiceHost - ok
17:32:05.0388 4192 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:32:05.0389 4192 WdiSystemHost - ok
17:32:05.0421 4192 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:32:05.0423 4192 WebClient - ok
17:32:05.0435 4192 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:32:05.0437 4192 Wecsvc - ok
17:32:05.0442 4192 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:32:05.0444 4192 wercplsupport - ok
17:32:05.0449 4192 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:32:05.0450 4192 WerSvc - ok
17:32:05.0462 4192 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:32:05.0462 4192 WfpLwf - ok
17:32:05.0482 4192 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:32:05.0482 4192 WIMMount - ok
17:32:05.0499 4192 WinDefend - ok
17:32:05.0503 4192 WinHttpAutoProxySvc - ok
17:32:05.0543 4192 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:32:05.0544 4192 Winmgmt - ok
17:32:05.0640 4192 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:32:05.0656 4192 WinRM - ok
17:32:05.0742 4192 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:32:05.0749 4192 Wlansvc - ok
17:32:05.0904 4192 wlidsvc (98f138897ef4246381d197cb81846d62) c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:32:05.0922 4192 wlidsvc - ok
17:32:05.0973 4192 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:32:05.0974 4192 WmiAcpi - ok
17:32:05.0994 4192 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:32:05.0995 4192 wmiApSrv - ok
17:32:05.0999 4192 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:32:05.0999 4192 WPCSvc - ok
17:32:06.0016 4192 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:32:06.0017 4192 WPDBusEnum - ok
17:32:06.0028 4192 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:32:06.0029 4192 ws2ifsl - ok
17:32:06.0035 4192 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
17:32:06.0036 4192 wscsvc - ok
17:32:06.0038 4192 WSearch - ok
17:32:06.0155 4192 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
17:32:06.0184 4192 wuauserv - ok
17:32:06.0238 4192 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:32:06.0240 4192 WudfPf - ok
17:32:06.0253 4192 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:32:06.0255 4192 wudfsvc - ok
17:32:06.0267 4192 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:32:06.0269 4192 WwanSvc - ok
17:32:06.0299 4192 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
17:32:06.0363 4192 \Device\Harddisk0\DR0 - ok
17:32:06.0369 4192 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
17:32:06.0657 4192 \Device\Harddisk1\DR1 - ok
17:32:06.0659 4192 Boot (0x1200) (75fc349a1b553248c7ab9c63d4769899) \Device\Harddisk0\DR0\Partition0
17:32:06.0660 4192 \Device\Harddisk0\DR0\Partition0 - ok
17:32:06.0661 4192 Boot (0x1200) (a91b9874832cffefd1789a87bacfa7c0) \Device\Harddisk1\DR1\Partition0
17:32:06.0662 4192 \Device\Harddisk1\DR1\Partition0 - ok
17:32:06.0667 4192 Boot (0x1200) (7ef8a19405ae01394e6acf8bf9ec5712) \Device\Harddisk1\DR1\Partition1
17:32:06.0668 4192 \Device\Harddisk1\DR1\Partition1 - ok
17:32:06.0693 4192 Boot (0x1200) (d88255db565a474529c66f3f37652976) \Device\Harddisk1\DR1\Partition2
17:32:06.0694 4192 \Device\Harddisk1\DR1\Partition2 - ok
17:32:06.0694 4192 ============================================================
17:32:06.0694 4192 Scan finished
17:32:06.0694 4192 ============================================================
17:32:06.0699 3080 Detected object count: 0
17:32:06.0699 3080 Actual detected object count: 0
17:32:14.0199 3940 ============================================================
17:32:14.0200 3940 Scan started
17:32:14.0200 3940 Mode: Manual;
17:32:14.0200 3940 ============================================================
17:32:14.0431 3940 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:32:14.0432 3940 1394ohci - ok
17:32:14.0459 3940 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:32:14.0460 3940 ACPI - ok
17:32:14.0473 3940 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:32:14.0473 3940 AcpiPmi - ok
17:32:14.0550 3940 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:32:14.0550 3940 AdobeFlashPlayerUpdateSvc - ok
17:32:14.0584 3940 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:32:14.0586 3940 adp94xx - ok
17:32:14.0610 3940 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:32:14.0612 3940 adpahci - ok
17:32:14.0622 3940 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:32:14.0623 3940 adpu320 - ok
17:32:14.0645 3940 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:32:14.0646 3940 AeLookupSvc - ok
17:32:14.0685 3940 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:32:14.0687 3940 AFD - ok
17:32:14.0691 3940 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:32:14.0691 3940 agp440 - ok
17:32:14.0696 3940 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:32:14.0696 3940 ALG - ok
17:32:14.0698 3940 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:32:14.0698 3940 aliide - ok
17:32:14.0722 3940 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
17:32:14.0723 3940 AMD External Events Utility - ok
17:32:14.0725 3940 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:32:14.0726 3940 amdide - ok
17:32:14.0730 3940 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:32:14.0730 3940 AmdK8 - ok
17:32:15.0283 3940 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
17:32:15.0317 3940 amdkmdag - ok
17:32:15.0399 3940 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
17:32:15.0401 3940 amdkmdap - ok
17:32:15.0417 3940 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:32:15.0418 3940 AmdPPM - ok
17:32:15.0428 3940 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:32:15.0428 3940 amdsata - ok
17:32:15.0439 3940 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:32:15.0439 3940 amdsbs - ok
17:32:15.0447 3940 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:32:15.0447 3940 amdxata - ok
17:32:15.0455 3940 Andbus (48cd7e6520d47d62eab0e6ce3ec30c65) C:\Windows\system32\DRIVERS\lgandbus64.sys
17:32:15.0456 3940 Andbus - ok
17:32:15.0458 3940 AndDiag (08cbacc00d15dcdbbaae1a7c8f231c61) C:\Windows\system32\DRIVERS\lganddiag64.sys
17:32:15.0459 3940 AndDiag - ok
17:32:15.0461 3940 AndGps (cea9a4cd6b3a83428ce8501240833668) C:\Windows\system32\DRIVERS\lgandgps64.sys
17:32:15.0461 3940 AndGps - ok
17:32:15.0470 3940 ANDModem (e2b5663e547fa5e756b253efa8ec8286) C:\Windows\system32\DRIVERS\lgandmodem64.sys
17:32:15.0470 3940 ANDModem - ok
17:32:15.0472 3940 androidusb (9c1751b2e733471ae07561028b7d2a9b) C:\Windows\system32\Drivers\lgandadb.sys
17:32:15.0473 3940 androidusb - ok
17:32:15.0479 3940 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:32:15.0479 3940 AppID - ok
17:32:15.0495 3940 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:32:15.0495 3940 AppIDSvc - ok
17:32:15.0502 3940 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:32:15.0503 3940 Appinfo - ok
17:32:15.0513 3940 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
17:32:15.0513 3940 AppMgmt - ok
17:32:15.0518 3940 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:32:15.0519 3940 arc - ok
17:32:15.0524 3940 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:32:15.0524 3940 arcsas - ok
17:32:15.0571 3940 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:32:15.0572 3940 aspnet_state - ok
17:32:15.0574 3940 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:32:15.0574 3940 AsyncMac - ok
17:32:15.0577 3940 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:32:15.0577 3940 atapi - ok
17:32:15.0594 3940 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
17:32:15.0595 3940 AtiHDAudioService - ok
17:32:15.0630 3940 atksgt (fc0e8778c000291caf60eb88c011e931) C:\Windows\system32\DRIVERS\atksgt.sys
17:32:15.0631 3940 atksgt - ok
17:32:15.0672 3940 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:32:15.0675 3940 AudioEndpointBuilder - ok
17:32:15.0678 3940 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:32:15.0680 3940 AudioSrv - ok
17:32:15.0702 3940 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:32:15.0703 3940 AxInstSV - ok
17:32:15.0736 3940 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:32:15.0737 3940 b06bdrv - ok
17:32:15.0767 3940 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:32:15.0767 3940 b57nd60a - ok
17:32:15.0783 3940 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:32:15.0784 3940 BDESVC - ok
17:32:15.0797 3940 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:32:15.0798 3940 Beep - ok
17:32:15.0835 3940 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:32:15.0837 3940 BFE - ok
17:32:15.0884 3940 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
17:32:15.0887 3940 BITS - ok
17:32:15.0908 3940 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:32:15.0908 3940 blbdrive - ok
17:32:15.0924 3940 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:32:15.0924 3940 bowser - ok
17:32:15.0937 3940 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:32:15.0937 3940 BrFiltLo - ok
17:32:15.0946 3940 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:32:15.0946 3940 BrFiltUp - ok
17:32:15.0960 3940 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
17:32:15.0960 3940 BridgeMP - ok
17:32:15.0975 3940 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:32:15.0975 3940 Browser - ok
17:32:15.0996 3940 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:32:15.0998 3940 Brserid - ok
17:32:16.0006 3940 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:32:16.0007 3940 BrSerWdm - ok
17:32:16.0013 3940 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:32:16.0013 3940 BrUsbMdm - ok
17:32:16.0020 3940 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:32:16.0020 3940 BrUsbSer - ok
17:32:16.0032 3940 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:32:16.0032 3940 BTHMODEM - ok
17:32:16.0038 3940 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:32:16.0039 3940 bthserv - ok
17:32:16.0044 3940 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:32:16.0045 3940 cdfs - ok
17:32:16.0071 3940 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:32:16.0072 3940 cdrom - ok
17:32:16.0077 3940 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:32:16.0077 3940 CertPropSvc - ok
17:32:16.0085 3940 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:32:16.0085 3940 circlass - ok
17:32:16.0110 3940 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:32:16.0112 3940 CLFS - ok
17:32:16.0139 3940 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:32:16.0140 3940 clr_optimization_v2.0.50727_32 - ok
17:32:16.0165 3940 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:32:16.0166 3940 clr_optimization_v2.0.50727_64 - ok
17:32:16.0192 3940 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:32:16.0193 3940 clr_optimization_v4.0.30319_32 - ok
17:32:16.0216 3940 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:32:16.0217 3940 clr_optimization_v4.0.30319_64 - ok
17:32:16.0223 3940 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:32:16.0223 3940 CmBatt - ok
17:32:16.0232 3940 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:32:16.0232 3940 cmdide - ok
17:32:16.0272 3940 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:32:16.0274 3940 CNG - ok
17:32:16.0286 3940 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:32:16.0286 3940 Compbatt - ok
17:32:16.0299 3940 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:32:16.0299 3940 CompositeBus - ok
17:32:16.0301 3940 COMSysApp - ok
17:32:16.0311 3940 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:32:16.0311 3940 crcdisk - ok
17:32:16.0345 3940 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
17:32:16.0346 3940 CryptSvc - ok
17:32:16.0385 3940 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
17:32:16.0387 3940 CSC - ok
17:32:16.0425 3940 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
17:32:16.0427 3940 CscService - ok
17:32:16.0456 3940 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:32:16.0459 3940 DcomLaunch - ok
17:32:16.0493 3940 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:32:16.0494 3940 defragsvc - ok
17:32:16.0518 3940 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:32:16.0518 3940 DfsC - ok
17:32:16.0546 3940 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:32:16.0547 3940 Dhcp - ok
17:32:16.0557 3940 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:32:16.0557 3940 discache - ok
17:32:16.0562 3940 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:32:16.0562 3940 Disk - ok
17:32:16.0585 3940 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:32:16.0586 3940 Dnscache - ok
17:32:16.0604 3940 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:32:16.0605 3940 dot3svc - ok
17:32:16.0622 3940 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:32:16.0623 3940 DPS - ok
17:32:16.0637 3940 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:32:16.0637 3940 drmkaud - ok
17:32:16.0667 3940 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:32:16.0668 3940 dtsoftbus01 - ok
17:32:16.0724 3940 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:32:16.0727 3940 DXGKrnl - ok
17:32:16.0742 3940 eamonm (13533557d01b88c83110d5cf749f14d7) C:\Windows\system32\DRIVERS\eamonm.sys
17:32:16.0743 3940 eamonm - ok
17:32:16.0752 3940 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:32:16.0752 3940 EapHost - ok
17:32:16.0917 3940 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:32:16.0928 3940 ebdrv - ok
17:32:16.0987 3940 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:32:16.0988 3940 EFS - ok
17:32:17.0022 3940 ehdrv (e097728129e7b79bf1089d7aef42332b) C:\Windows\system32\DRIVERS\ehdrv.sys
17:32:17.0022 3940 ehdrv - ok
17:32:17.0069 3940 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:32:17.0072 3940 ehRecvr - ok
17:32:17.0090 3940 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:32:17.0090 3940 ehSched - ok
17:32:17.0199 3940 ekrn (c7bb95cf9631aa401e4aded1648f6af7) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
17:32:17.0203 3940 ekrn - ok
17:32:17.0270 3940 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:32:17.0272 3940 elxstor - ok
17:32:17.0307 3940 epfwwfpr (2380976cf8a4a56611f35633acd2a74f) C:\Windows\system32\DRIVERS\epfwwfpr.sys
17:32:17.0308 3940 epfwwfpr - ok
17:32:17.0321 3940 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:32:17.0321 3940 ErrDev - ok
17:32:17.0360 3940 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:32:17.0361 3940 EventSystem - ok
17:32:17.0379 3940 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:32:17.0380 3940 exfat - ok
17:32:17.0392 3940 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:32:17.0392 3940 fastfat - ok
17:32:17.0440 3940 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:32:17.0442 3940 Fax - ok
17:32:17.0452 3940 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:32:17.0453 3940 fdc - ok
17:32:17.0454 3940 FDCDNT - ok
17:32:17.0456 3940 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:32:17.0457 3940 fdPHost - ok
17:32:17.0460 3940 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:32:17.0460 3940 FDResPub - ok
17:32:17.0470 3940 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:32:17.0471 3940 FileInfo - ok
17:32:17.0474 3940 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:32:17.0474 3940 Filetrace - ok
17:32:17.0486 3940 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:32:17.0486 3940 flpydisk - ok
17:32:17.0509 3940 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:32:17.0510 3940 FltMgr - ok
17:32:17.0577 3940 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:32:17.0581 3940 FontCache - ok
17:32:17.0626 3940 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:32:17.0626 3940 FontCache3.0.0.0 - ok
17:32:17.0638 3940 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:32:17.0639 3940 FsDepends - ok
17:32:17.0653 3940 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:32:17.0653 3940 Fs_Rec - ok
17:32:17.0670 3940 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:32:17.0670 3940 fvevol - ok
17:32:17.0689 3940 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:32:17.0690 3940 gagp30kx - ok
17:32:17.0735 3940 GGSAFERDriver - ok
17:32:17.0787 3940 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:32:17.0790 3940 gpsvc - ok
17:32:17.0806 3940 hamachi (f8f0851d336c3b88dbd7232b6348e09a) C:\Windows\system32\DRIVERS\hamachi.sys
17:32:17.0806 3940 hamachi - ok
17:32:17.0952 3940 Hamachi2Svc (d483dbaef409e8ab7477c28615fcd853) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
17:32:17.0960 3940 Hamachi2Svc - ok
17:32:18.0006 3940 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:32:18.0007 3940 hcw85cir - ok
17:32:18.0034 3940 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:32:18.0035 3940 HdAudAddService - ok
17:32:18.0049 3940 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:32:18.0050 3940 HDAudBus - ok
17:32:18.0057 3940 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:32:18.0057 3940 HidBatt - ok
17:32:18.0074 3940 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:32:18.0074 3940 HidBth - ok
17:32:18.0081 3940 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:32:18.0082 3940 HidIr - ok
17:32:18.0098 3940 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
17:32:18.0099 3940 hidserv - ok
17:32:18.0117 3940 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:32:18.0118 3940 HidUsb - ok
17:32:18.0129 3940 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:32:18.0129 3940 hkmsvc - ok
17:32:18.0143 3940 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:32:18.0144 3940 HomeGroupListener - ok
17:32:18.0171 3940 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:32:18.0173 3940 HomeGroupProvider - ok
17:32:18.0192 3940 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:32:18.0193 3940 HpSAMD - ok
17:32:18.0365 3940 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:32:18.0367 3940 HTTP - ok
17:32:18.0378 3940 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:32:18.0378 3940 hwpolicy - ok
17:32:18.0392 3940 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:32:18.0393 3940 i8042prt - ok
17:32:18.0426 3940 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:32:18.0428 3940 iaStorV - ok
17:32:18.0505 3940 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:32:18.0508 3940 idsvc - ok
17:32:18.0522 3940 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:32:18.0522 3940 iirsp - ok
17:32:18.0571 3940 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:32:18.0574 3940 IKEEXT - ok
17:32:18.0586 3940 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:32:18.0586 3940 intelide - ok
17:32:18.0596 3940 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:32:18.0596 3940 intelppm - ok
17:32:18.0612 3940 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:32:18.0612 3940 IPBusEnum - ok
17:32:18.0623 3940 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:32:18.0623 3940 IpFilterDriver - ok
17:32:18.0661 3940 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:32:18.0663 3940 iphlpsvc - ok
17:32:18.0676 3940 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:32:18.0676 3940 IPMIDRV - ok
17:32:18.0694 3940 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:32:18.0695 3940 IPNAT - ok
17:32:18.0697 3940 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:32:18.0697 3940 IRENUM - ok
17:32:18.0710 3940 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:32:18.0710 3940 isapnp - ok
17:32:18.0731 3940 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:32:18.0732 3940 iScsiPrt - ok
17:32:18.0741 3940 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:32:18.0741 3940 kbdclass - ok
17:32:18.0752 3940 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
17:32:18.0752 3940 kbdhid - ok
17:32:18.0762 3940 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:32:18.0763 3940 KeyIso - ok
17:32:18.0776 3940 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:32:18.0777 3940 KSecDD - ok
17:32:18.0794 3940 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:32:18.0795 3940 KSecPkg - ok
17:32:18.0804 3940 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:32:18.0804 3940 ksthunk - ok
17:32:18.0840 3940 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:32:18.0841 3940 KtmRm - ok
17:32:18.0852 3940 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
17:32:18.0854 3940 LanmanServer - ok
17:32:18.0878 3940 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:32:18.0879 3940 LanmanWorkstation - ok
17:32:18.0891 3940 LgBttPort (174803f2eea3b22165dfe0e5a1f20685) C:\Windows\system32\DRIVERS\lgbtpt64.sys
17:32:18.0891 3940 LgBttPort - ok
17:32:18.0897 3940 lgbusenum (565f93bb7c0361e61b3daea670c354d6) C:\Windows\system32\DRIVERS\lgbtbs64.sys
17:32:18.0898 3940 lgbusenum - ok
17:32:18.0900 3940 LGVMODEM (abf477857b7ced873362ec92c6ce10a7) C:\Windows\system32\DRIVERS\lgvmdm64.sys
17:32:18.0900 3940 LGVMODEM - ok
17:32:18.0915 3940 lirsgt (156ab2e56dc3ca0b582e3362e07cded7) C:\Windows\system32\DRIVERS\lirsgt.sys
17:32:18.0915 3940 lirsgt - ok
17:32:18.0925 3940 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:32:18.0925 3940 lltdio - ok
17:32:18.0956 3940 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:32:18.0958 3940 lltdsvc - ok
17:32:18.0965 3940 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:32:18.0965 3940 lmhosts - ok
17:32:18.0980 3940 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:32:18.0981 3940 LSI_FC - ok
17:32:18.0990 3940 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:32:18.0991 3940 LSI_SAS - ok
17:32:18.0995 3940 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:32:18.0995 3940 LSI_SAS2 - ok
17:32:19.0004 3940 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:32:19.0005 3940 LSI_SCSI - ok
17:32:19.0011 3940 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:32:19.0011 3940 luafv - ok
17:32:19.0032 3940 MarvinBus (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
17:32:19.0033 3940 MarvinBus - ok
17:32:19.0045 3940 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
17:32:19.0045 3940 MBAMProtector - ok
17:32:19.0096 3940 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:32:19.0098 3940 MBAMService - ok
17:32:19.0118 3940 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:32:19.0119 3940 Mcx2Svc - ok
17:32:19.0130 3940 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:32:19.0130 3940 megasas - ok
17:32:19.0153 3940 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:32:19.0154 3940 MegaSR - ok
17:32:19.0187 3940 Microsoft SharePoint Workspace Audit Service - ok
17:32:19.0202 3940 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:32:19.0203 3940 MMCSS - ok
17:32:19.0206 3940 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:32:19.0206 3940 Modem - ok
17:32:19.0212 3940 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:32:19.0213 3940 monitor - ok
17:32:19.0227 3940 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:32:19.0227 3940 mouclass - ok
17:32:19.0235 3940 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:32:19.0236 3940 mouhid - ok
17:32:19.0249 3940 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:32:19.0249 3940 mountmgr - ok
17:32:19.0274 3940 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:32:19.0275 3940 MozillaMaintenance - ok
17:32:19.0304 3940 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:32:19.0304 3940 mpio - ok
17:32:19.0313 3940 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:32:19.0314 3940 mpsdrv - ok
17:32:19.0364 3940 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:32:19.0367 3940 MpsSvc - ok
17:32:19.0385 3940 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:32:19.0386 3940 MRxDAV - ok
17:32:19.0406 3940 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:32:19.0407 3940 mrxsmb - ok
17:32:19.0428 3940 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:32:19.0429 3940 mrxsmb10 - ok
17:32:19.0436 3940 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:32:19.0437 3940 mrxsmb20 - ok
17:32:19.0445 3940 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:32:19.0446 3940 msahci - ok
17:32:19.0468 3940 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:32:19.0468 3940 msdsm - ok
17:32:19.0481 3940 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:32:19.0482 3940 MSDTC - ok
17:32:19.0486 3940 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:32:19.0486 3940 Msfs - ok
17:32:19.0494 3940 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:32:19.0494 3940 mshidkmdf - ok
17:32:19.0500 3940 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:32:19.0500 3940 msisadrv - ok
17:32:19.0521 3940 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:32:19.0522 3940 MSiSCSI - ok
17:32:19.0524 3940 msiserver - ok
17:32:19.0533 3940 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:32:19.0533 3940 MSKSSRV - ok
17:32:19.0540 3940 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:32:19.0540 3940 MSPCLOCK - ok
17:32:19.0545 3940 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:32:19.0545 3940 MSPQM - ok
17:32:19.0573 3940 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:32:19.0575 3940 MsRPC - ok
17:32:19.0582 3940 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:32:19.0582 3940 mssmbios - ok
17:32:19.0593 3940 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:32:19.0593 3940 MSTEE - ok
17:32:19.0601 3940 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:32:19.0602 3940 MTConfig - ok
17:32:19.0611 3940 MTsensor (03b7145c889603537e9ffeabb1ad1089) C:\Windows\system32\DRIVERS\ASACPI.sys
17:32:19.0611 3940 MTsensor - ok
17:32:19.0624 3940 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:32:19.0625 3940 Mup - ok
17:32:19.0661 3940 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:32:19.0663 3940 napagent - ok
17:32:19.0689 3940 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:32:19.0690 3940 NativeWifiP - ok
17:32:19.0740 3940 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:32:19.0743 3940 NDIS - ok
17:32:19.0754 3940 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:32:19.0755 3940 NdisCap - ok
17:32:19.0760 3940 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:32:19.0760 3940 NdisTapi - ok
17:32:19.0776 3940 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:32:19.0776 3940 Ndisuio - ok
17:32:19.0785 3940 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:32:19.0786 3940 NdisWan - ok
17:32:19.0800 3940 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:32:19.0800 3940 NDProxy - ok
17:32:19.0804 3940 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:32:19.0804 3940 NetBIOS - ok
17:32:19.0820 3940 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:32:19.0820 3940 NetBT - ok
17:32:19.0837 3940 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:32:19.0838 3940 Netlogon - ok
17:32:19.0867 3940 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:32:19.0869 3940 Netman - ok
17:32:19.0932 3940 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:19.0932 3940 NetMsmqActivator - ok
17:32:19.0934 3940 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:19.0935 3940 NetPipeActivator - ok
17:32:19.0956 3940 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:32:19.0958 3940 netprofm - ok
17:32:19.0960 3940 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:19.0961 3940 NetTcpActivator - ok
17:32:19.0962 3940 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:32:19.0963 3940 NetTcpPortSharing - ok
17:32:19.0984 3940 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:32:19.0984 3940 nfrd960 - ok
17:32:20.0012 3940 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:32:20.0014 3940 NlaSvc - ok
17:32:20.0017 3940 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:32:20.0017 3940 Npfs - ok
17:32:20.0028 3940 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:32:20.0029 3940 nsi - ok
17:32:20.0039 3940 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:32:20.0039 3940 nsiproxy - ok
17:32:20.0130 3940 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:32:20.0136 3940 Ntfs - ok
17:32:20.0198 3940 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:32:20.0198 3940 Null - ok
17:32:20.0225 3940 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:32:20.0226 3940 nvraid - ok
17:32:20.0236 3940 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:32:20.0237 3940 nvstor - ok
17:32:20.0263 3940 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:32:20.0263 3940 nv_agp - ok
17:32:20.0280 3940 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:32:20.0281 3940 ohci1394 - ok
17:32:20.0501 3940 OODefragAgent (cdbd86641ceb73402f436c9569e56c4e) C:\Program Files\OO Software\Defrag\oodag.exe
17:32:20.0511 3940 OODefragAgent - ok
17:32:20.0547 3940 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:32:20.0547 3940 ose - ok
17:32:20.0802 3940 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:32:20.0818 3940 osppsvc - ok
17:32:20.0878 3940 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:32:20.0880 3940 p2pimsvc - ok
17:32:20.0900 3940 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:32:20.0902 3940 p2psvc - ok
17:32:20.0931 3940 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:32:20.0931 3940 Parport - ok
17:32:20.0954 3940 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:32:20.0954 3940 partmgr - ok
17:32:20.0972 3940 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:32:20.0973 3940 PcaSvc - ok
17:32:20.0991 3940 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:32:20.0992 3940 pci - ok
17:32:20.0994 3940 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:32:20.0994 3940 pciide - ok
17:32:21.0017 3940 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:32:21.0018 3940 pcmcia - ok
17:32:21.0022 3940 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:32:21.0022 3940 pcw - ok
17:32:21.0058 3940 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:32:21.0061 3940 PEAUTH - ok
17:32:21.0133 3940 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
17:32:21.0138 3940 PeerDistSvc - ok
17:32:21.0198 3940 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:32:21.0199 3940 PerfHost - ok
17:32:21.0311 3940 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:32:21.0316 3940 pla - ok
17:32:21.0352 3940 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:32:21.0354 3940 PlugPlay - ok
17:32:21.0356 3940 PnkBstrA - ok
17:32:21.0359 3940 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:32:21.0359 3940 PNRPAutoReg - ok
17:32:21.0383 3940 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:32:21.0385 3940 PNRPsvc - ok
17:32:21.0417 3940 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:32:21.0419 3940 PolicyAgent - ok
17:32:21.0437 3940 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:32:21.0438 3940 Power - ok
17:32:21.0467 3940 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:32:21.0467 3940 PptpMiniport - ok
17:32:21.0481 3940 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:32:21.0481 3940 Processor - ok
17:32:21.0496 3940 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
17:32:21.0497 3940 ProfSvc - ok
17:32:21.0512 3940 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:32:21.0512 3940 ProtectedStorage - ok
17:32:21.0526 3940 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:32:21.0526 3940 Psched - ok
17:32:21.0606 3940 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:32:21.0611 3940 ql2300 - ok
17:32:21.0668 3940 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:32:21.0669 3940 ql40xx - ok
17:32:21.0703 3940 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:32:21.0704 3940 QWAVE - ok
17:32:21.0708 3940 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:32:21.0708 3940 QWAVEdrv - ok
17:32:21.0745 3940 RadeonPro Support Service (6c8f17953c07f88364307fc7811c5184) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
17:32:21.0746 3940 RadeonPro Support Service - ok
17:32:21.0756 3940 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:32:21.0756 3940 RasAcd - ok
17:32:21.0767 3940 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:32:21.0768 3940 RasAgileVpn - ok
17:32:21.0773 3940 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:32:21.0774 3940 RasAuto - ok
17:32:21.0782 3940 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:32:21.0782 3940 Rasl2tp - ok
17:32:21.0812 3940 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:32:21.0813 3940 RasMan - ok
17:32:21.0819 3940 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:32:21.0819 3940 RasPppoe - ok
17:32:21.0824 3940 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:32:21.0825 3940 RasSstp - ok
17:32:21.0847 3940 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:32:21.0848 3940 rdbss - ok
17:32:21.0851 3940 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:32:21.0851 3940 rdpbus - ok
17:32:21.0860 3940 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:32:21.0861 3940 RDPCDD - ok
17:32:21.0886 3940 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
17:32:21.0887 3940 RDPDR - ok
17:32:21.0889 3940 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:32:21.0889 3940 RDPENCDD - ok
17:32:21.0892 3940 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:32:21.0892 3940 RDPREFMP - ok
17:32:21.0907 3940 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
17:32:21.0907 3940 RdpVideoMiniport - ok
17:32:21.0938 3940 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
17:32:21.0938 3940 RDPWD - ok
17:32:21.0964 3940 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:32:21.0965 3940 rdyboost - ok
17:32:21.0974 3940 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:32:21.0975 3940 RemoteAccess - ok

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod jaro3 » 07 čer 2012 21:30

Chybí konec logu z TDSSKilleru...

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

KillAll::
File::
c:\windows\ipuninst.exe
c:\windows\system32\~WebUpdateHelper.exe
c:\program files (x86)\Skype\Updater\Updater.exe


Folder::
c:\users\Clorky\AppData\Local\dxhr
c:\users\Clorky\AppData\Local\28050

Driver::
SkypeUpdate

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

C:\CRACK---smazat!!
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 21:36

Smazáno. Tu složku tam vytvořil bratr. Caps-lockem píše leda on.

Na CF jdu, konec logu:

============================================================
17:32:26.0360 3940 Scan finished
17:32:26.0360 3940 ============================================================
17:32:26.0363 3792 Detected object count: 0
17:32:26.0363 3792 Actual detected object count: 0
17:32:32.0963 3272 Deinitialize success

Uživatelský avatar
Clorky
Moderátor / člen HW týmu
Master Level 8.5
Master Level 8.5
Příspěvky: 7032
Registrován: květen 10
Bydliště: Moravskoslezský kraj
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod Clorky » 07 čer 2012 21:53

AswMBR dodám zítra. Jdu spát ;).
Zatím děkuji za pomoc.

CF:

ComboFix 12-06-07.03 - Clorky 07.06.2012 21:41:03.8.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1033.18.4094.2452 [GMT 2:00]
Spuštěný z: e:\hry\Warcraft 3\Maps\Download\ComboFix.exe
Použité ovládací přepínače :: c:\users\Clorky\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files (x86)\Skype\Updater\Updater.exe"
"c:\windows\ipuninst.exe"
"c:\windows\system32\~WebUpdateHelper.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Skype\Updater\Updater.exe
c:\users\Clorky\AppData\Local\28050
c:\users\Clorky\AppData\Local\28050\eidos\bec5eb9c\cache\persistent\BA8C6DA4D591E3B712775DC910D39928FFAFE49D
c:\users\Clorky\AppData\Local\dxhr
c:\users\Clorky\AppData\Local\dxhr\cache\cache.dat
c:\users\Clorky\AppData\Local\dxhr\user.var
c:\windows\ipuninst.exe
c:\windows\system32\~WebUpdateHelper.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-05-07 do 2012-06-07 )))))))))))))))))))))))))))))))
.
.
2012-06-07 19:46 . 2012-06-07 19:46 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-06-06 13:34 . 2012-06-06 13:34 -------- d-----w- c:\users\Clorky\AppData\Roaming\PDAppFlex
2012-06-01 19:39 . 2012-06-02 20:49 -------- d-----w- C:\Minecraft_Backup
2012-06-01 18:49 . 2012-06-01 18:52 -------- d-----w- c:\users\Clorky\AppData\Roaming\.techniclauncher
2012-05-29 15:24 . 2012-05-29 15:24 -------- d-----w- c:\users\Clorky\.swt
2012-05-27 16:13 . 2012-05-27 16:13 -------- d-----w- c:\users\Clorky\AppData\Roaming\runic games
2012-05-27 15:32 . 2012-05-27 15:33 -------- d-----w- c:\users\Clorky\AppData\Local\Runic Games
2012-05-27 13:14 . 2012-05-27 13:14 -------- d-----w- c:\program files (x86)\Common Files\Pinnacle
2012-05-27 13:13 . 2012-05-27 13:25 -------- d-----w- c:\users\Clorky\AppData\Local\Pinnacle
2012-05-27 13:13 . 2012-05-27 13:13 -------- d-----w- c:\programdata\Pinnacle Studio Ultimate Collection
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\programdata\Studio 15
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\programdata\Pinnacle Studio Plus
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\program files (x86)\Common Files\Yahoo!
2012-05-27 13:10 . 2012-05-27 13:10 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging
2012-05-27 13:08 . 2012-05-27 13:13 -------- d-----w- c:\programdata\Pinnacle
2012-05-27 13:08 . 2012-05-27 13:10 -------- d-----w- c:\program files (x86)\Pinnacle
2012-05-27 09:33 . 2012-05-27 09:33 -------- d-----w- c:\users\Clorky\AppData\Local\My Games
2012-05-27 08:27 . 2012-05-27 08:27 -------- d-----w- c:\users\Clorky\AppData\Roaming\Sony Creative Software Inc
2012-05-27 07:30 . 2012-05-27 07:35 -------- d-----w- c:\programdata\TrackMania
2012-05-26 19:19 . 2012-05-30 10:53 -------- d-----w- C:\Bez Renderu
2012-05-26 19:10 . 2012-05-26 20:01 281032 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-05-26 19:08 . 2012-05-26 19:08 -------- d-----w- c:\users\Clorky\AppData\Local\PunkBuster
2012-05-26 19:08 . 2012-05-26 19:08 -------- d-----w- c:\users\Clorky\AppData\Local\CrashRpt
2012-05-26 19:07 . 2012-05-26 19:07 -------- d-----w- c:\program files (x86)\Microsoft Chart Controls
2012-05-26 19:06 . 2012-05-26 20:01 281032 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-05-26 19:06 . 2012-05-26 19:52 281032 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-05-26 19:06 . 2012-05-26 19:06 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-05-26 17:44 . 2012-05-26 17:44 -------- d-----w- c:\users\Clorky\AppData\Roaming\Publish Providers
2012-05-26 13:51 . 2012-05-26 13:51 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-05-26 13:51 . 2012-06-07 19:48 -------- d-----w- c:\program files (x86)\Steam
2012-05-24 14:31 . 2012-05-24 14:31 94208 ----a-w- c:\windows\DIIUnin.exe
2012-05-24 14:31 . 2012-05-24 14:31 2829 ----a-w- c:\windows\DIIUnin.pif
2012-05-24 14:29 . 2012-05-24 14:29 -------- d-----w- c:\windows\SysWow64\spool
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\users\Clorky\AppData\Local\TechSmith
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\windows\SysWow64\QuickTime
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\program files (x86)\QuickTime
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\program files (x86)\Common Files\TechSmith Shared
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\programdata\TechSmith
2012-05-24 12:48 . 2012-05-24 12:48 -------- d-----w- c:\program files (x86)\TechSmith
2012-05-23 19:35 . 2012-05-23 19:35 -------- d-----w- c:\users\Clorky\AppData\Local\Sony
2012-05-23 19:34 . 2012-05-24 14:29 -------- d-----w- c:\program files (x86)\Sony
2012-05-23 19:34 . 2012-05-23 19:47 -------- d-----w- c:\program files\Sony
2012-05-23 19:34 . 2012-05-23 19:34 -------- d-----w- c:\programdata\Sony
2012-05-23 19:33 . 2012-05-26 18:28 -------- d-----w- c:\users\Clorky\AppData\Roaming\Sony
2012-05-23 17:48 . 2012-05-23 17:48 -------- d-----w- C:\Backup
2012-05-21 19:48 . 2012-05-21 19:48 -------- d-----w- c:\users\Clorky\AppData\Roaming\SEGA Corporation
2012-05-21 19:48 . 2012-05-21 19:48 -------- d-----w- c:\programdata\SEGA Corporation
2012-05-21 19:16 . 2012-05-21 19:16 -------- d-----w- c:\users\Clorky\AppData\Roaming\InstallShield Installation Information
2012-05-21 19:16 . 2012-05-21 19:16 -------- d-----w- c:\windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2012-05-21 14:05 . 2012-05-21 14:06 -------- d-----w- c:\users\Clorky\AppData\Roaming\wargaming.net
2012-05-18 20:50 . 2012-05-18 20:50 -------- d-----w- c:\users\Clorky\AppData\Local\Risen2
2012-05-17 22:50 . 2012-05-17 22:50 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-05-17 22:50 . 2012-05-17 22:50 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2012-05-16 14:23 . 2012-05-16 14:23 -------- d-----w- c:\programdata\Media Center Programs
2012-05-16 14:23 . 2012-05-16 14:23 -------- d-----w- c:\program files (x86)\Common Files\BioWare
2012-05-16 10:33 . 2012-05-16 12:24 -------- d-----w- c:\users\Clorky\AppData\Local\The Witcher
2012-05-13 06:08 . 2012-05-13 06:08 -------- d-----w- c:\programdata\KONAMI
2012-05-12 13:40 . 2012-05-12 13:40 -------- d-----w- c:\program files\ESET
2012-05-11 23:05 . 2012-03-03 06:35 1544704 ----a-w- c:\windows\system32\DWrite.dll
2012-05-11 23:05 . 2012-03-03 05:31 1077248 ----a-w- c:\windows\SysWow64\DWrite.dll
2012-05-11 23:05 . 2012-03-31 06:05 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-11 23:05 . 2012-03-31 03:10 3146240 ----a-w- c:\windows\system32\win32k.sys
2012-05-11 23:05 . 2012-03-31 04:39 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-05-11 23:05 . 2012-03-31 04:39 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-05-11 23:04 . 2012-03-17 07:58 75120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-11 23:04 . 2012-03-30 11:35 1918320 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-05-11 23:04 . 2012-03-31 05:42 1732096 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-05-11 23:04 . 2012-03-31 05:40 1367552 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2012-05-11 23:04 . 2012-03-31 05:40 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2012-05-11 23:04 . 2012-03-31 05:40 1393664 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2012-05-11 23:04 . 2012-03-31 04:29 936960 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2012-05-11 20:20 . 2012-05-11 20:20 -------- d-----w- c:\program files (x86)\GlideWrapper
2012-05-10 17:38 . 2000-10-05 13:55 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2012-05-10 17:38 . 2000-10-05 13:55 221184 ----a-w- c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-05-10 17:38 . 2000-10-05 13:50 221184 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2012-05-10 17:38 . 2000-10-05 13:49 32768 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2012-05-10 17:38 . 2000-01-04 04:39 212992 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
2012-05-10 15:22 . 2012-05-10 15:22 -------- d-----w- c:\program files (x86)\Microsoft Synchronization Services
2012-05-10 15:21 . 2012-05-10 15:21 -------- d-----w- c:\windows\PCHEALTH
2012-05-10 15:21 . 2012-05-10 15:21 -------- d-----w- c:\program files (x86)\Microsoft Sync Framework
2012-05-10 15:21 . 2012-05-10 15:21 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-05-10 15:20 . 2012-05-10 15:20 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2012-05-10 15:20 . 2012-05-10 15:20 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2012-05-10 15:19 . 2012-05-10 15:19 -------- d-----w- c:\users\Clorky\AppData\Local\Microsoft Help
2012-05-10 15:19 . 2012-05-23 17:19 -------- d-----w- c:\programdata\Microsoft Help
2012-05-10 15:19 . 2012-05-10 15:19 -------- d-----r- C:\MSOCache
2012-05-09 19:17 . 1998-10-29 13:45 306688 ----a-w- c:\windows\IsUninst.exe
2012-05-08 20:20 . 2012-05-08 20:20 -------- d-----w- c:\users\Clorky\AppData\Local\storage
2012-05-08 20:14 . 2012-05-08 20:14 -------- d-----w- c:\users\Clorky\AppData\Local\Ubisoft Game Launcher
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-16 17:04 . 2009-08-18 10:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2012-05-16 17:04 . 2009-08-18 09:24 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-05-07 12:24 . 2012-05-07 12:24 476960 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-05-07 12:24 . 2012-03-09 19:45 472864 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-05-06 16:14 . 2012-03-29 13:43 419488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-05-06 16:14 . 2012-02-29 18:34 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-06 16:14 . 2012-04-14 15:17 8744608 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-05-05 16:29 . 2012-04-29 12:55 314016 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-05-05 16:29 . 2012-04-29 12:54 43680 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-04-22 07:53 . 2012-04-22 07:53 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-04-18 01:03 . 2012-05-03 12:36 8917360 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E56E627C-CE4B-4C8D-A516-EBF46F1C05E7}\mpengine.dll
2012-04-13 11:17 . 2012-04-13 11:09 955848 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-04-13 11:17 . 2012-02-29 20:39 839112 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-10 21:31 . 2012-04-10 21:31 2303488 ----a-w- c:\windows\SysWow64\python27.dll
2012-04-06 05:22 . 2012-04-06 05:22 11174400 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-04-06 02:22 . 2012-04-06 02:22 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-04-06 02:21 . 2012-02-29 15:57 909312 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-04-06 02:20 . 2012-02-29 15:57 1067520 ----a-w- c:\windows\system32\aticfx64.dll
2012-04-06 02:16 . 2012-04-06 02:16 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-04-06 02:16 . 2012-04-06 02:16 503808 ----a-w- c:\windows\system32\atieclxx.exe
2012-04-06 02:16 . 2012-04-06 02:16 236544 ----a-w- c:\windows\system32\atiesrxx.exe
2012-04-06 02:14 . 2012-04-06 02:14 120320 ----a-w- c:\windows\system32\atitmm64.dll
2012-04-06 02:14 . 2012-04-06 02:14 21504 ----a-w- c:\windows\system32\atimuixx.dll
2012-04-06 02:14 . 2012-04-06 02:14 59392 ----a-w- c:\windows\system32\atiedu64.dll
2012-04-06 02:14 . 2012-04-06 02:14 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2012-04-06 02:13 . 2012-02-15 03:07 6800896 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-04-06 02:10 . 2012-04-06 02:10 26181632 ----a-w- c:\windows\system32\atio6axx.dll
2012-04-06 02:00 . 2012-02-29 15:57 64000 ----a-w- c:\windows\system32\coinst.dll
2012-04-06 01:54 . 2012-02-29 15:57 7479296 ----a-w- c:\windows\system32\atidxx64.dll
2012-04-06 01:50 . 2012-04-06 01:50 19753984 ----a-w- c:\windows\SysWow64\atioglxx.dll
2012-04-06 01:35 . 2012-04-06 01:35 1120768 ----a-w- c:\windows\system32\atiumd6v.dll
2012-04-06 01:34 . 2012-04-06 01:34 1831424 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2012-04-06 01:34 . 2012-04-06 01:34 4731904 ----a-w- c:\windows\system32\atiumd6a.dll
2012-04-06 01:34 . 2012-02-29 15:57 6203392 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-04-06 01:30 . 2012-04-06 01:30 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2012-04-06 01:30 . 2012-04-06 01:30 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2012-04-06 01:30 . 2012-04-06 01:30 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2012-04-06 01:30 . 2012-04-06 01:30 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2012-04-06 01:29 . 2012-04-06 01:29 16090624 ----a-w- c:\windows\system32\aticaldd64.dll
2012-04-06 01:25 . 2012-04-06 01:25 13764096 ----a-w- c:\windows\SysWow64\aticaldd.dll
2012-04-06 01:23 . 2012-04-06 01:23 7431680 ----a-w- c:\windows\system32\atiumd64.dll
2012-04-06 01:22 . 2012-02-29 15:57 4795904 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-04-06 01:11 . 2012-02-29 15:57 514560 ----a-w- c:\windows\system32\atiadlxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 360448 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2012-04-06 01:11 . 2012-04-06 01:11 17408 ----a-w- c:\windows\system32\atig6pxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 41984 ----a-w- c:\windows\system32\atig6txx.dll
2012-04-06 01:10 . 2012-04-06 01:10 33280 ----a-w- c:\windows\SysWow64\atigktxx.dll
2012-04-06 01:10 . 2012-04-06 01:10 343040 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-04-06 01:09 . 2012-02-29 15:57 54784 ----a-w- c:\windows\system32\atiuxp64.dll
2012-04-06 01:09 . 2012-02-15 02:12 41984 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-04-06 01:09 . 2012-04-06 01:09 44544 ----a-w- c:\windows\system32\atiu9p64.dll
2012-04-06 01:09 . 2012-02-29 15:57 32256 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-04-06 01:09 . 2012-04-06 01:09 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\atimpc64.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\amdpcom64.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\atimpc32.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2012-04-05 20:34 . 2012-04-05 20:34 187392 ----a-w- c:\windows\system32\clinfo.exe
2012-04-05 20:34 . 2012-04-05 20:34 74752 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-04-05 20:34 . 2012-04-05 20:34 64512 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-04-05 20:33 . 2012-04-05 20:33 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-04-05 20:33 . 2012-04-05 20:33 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-04-05 20:33 . 2012-04-05 20:33 16457216 ----a-w- c:\windows\system32\amdocl64.dll
2012-04-05 20:32 . 2012-04-05 20:32 13007872 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-04-04 13:56 . 2012-04-14 09:54 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-31 10:50 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-03-31 10:50 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-03-31 06:24 . 2012-03-31 06:24 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2012-03-28 16:04 . 2012-03-28 16:04 2255696 ----a-w- c:\windows\system32\ooscrsav.scr
2012-03-28 16:03 . 2012-03-28 16:03 352080 ----a-w- c:\windows\system32\oodbs.exe
2012-03-28 16:02 . 2012-03-28 16:02 536400 ----a-w- c:\windows\system32\oodssrs.dll
2012-03-28 16:01 . 2012-03-28 16:01 10064 ----a-w- c:\windows\system32\oodbsrs.dll
2012-03-26 19:42 . 2012-03-26 19:42 61440 ----a-w- c:\windows\SysWow64\nvPhotoshopUtil.dll
2012-03-26 19:42 . 2012-03-26 19:42 40960 ----a-w- c:\windows\SysWow64\nvISWOW64.dll
2012-03-26 19:42 . 2012-03-20 18:35 151552 ----a-w- c:\windows\SysWow64\nvRegDev.dll
2012-03-22 19:04 . 2012-03-22 19:04 33344 ----a-w- c:\windows\system32\drivers\hamachi.sys
2012-03-12 18:56 . 2011-02-28 17:01 947472 ----a-w- c:\windows\SysWow64\msjava.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-06-07_16.29.15 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 05:10 . 2012-06-07 16:30 39094 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-06-07 19:49 39094 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2012-02-29 17:20 . 2012-06-07 19:49 12976 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1365180198-3819917712-2369891476-1001_UserData.bin
- 2012-06-07 16:28 . 2012-06-07 16:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-06-07 19:47 . 2012-06-07 19:47 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-06-07 16:28 . 2012-06-07 16:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-06-07 19:47 . 2012-06-07 19:47 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-07-14 05:01 . 2012-06-07 19:46 516308 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-06-07 16:27 516308 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2012-02-29 20:53 . 2010-05-26 10:41 1998168 c:\windows\SysWOW64\D3DX9_43.dll
+ 2012-02-29 20:53 . 2010-06-14 17:26 1998168 c:\windows\SysWOW64\D3DX9_43.dll
+ 2012-02-29 18:24 . 2012-06-07 19:46 3860840 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2012-02-29 18:24 . 2012-06-07 16:27 3860840 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-04-14 20:21 . 2009-04-14 20:21 8083968 c:\windows\Installer\33f2ef.msi
+ 2012-02-29 20:21 . 2012-06-07 19:46 29822172 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1365180198-3819917712-2369891476-1001-12288.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-05-20 880496]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2012-05-26 1242448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"HDAudDeck"="c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe" [2010-08-11 2472048]
"ffpsrv"="c:\windows\ffpext\ffpsrv.exe" [2007-02-02 83968]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ OODBS
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-06 257696]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus64.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag64.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps64.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem64.sys [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\lgandadb.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files (x86)\Garena Plus\Room\safedrv.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-07 113120]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 RivaTuner64;RivaTuner64;c:\program files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [2012-04-07 19952]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-22 974944]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-02-28 2343816]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
S2 OODefragAgent;O&O Defrag;c:\program files\OO Software\Defrag\oodag.exe [2012-03-28 3288400]
S2 RadeonPro Support Service;RadeonPro Support Service;c:\program files (x86)\RadeonPro\RadeonProSupport.exe [2011-02-10 12800]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys [x]
S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys [x]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-06-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 16:14]
.
2012-06-07 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2012-04-14 21:31]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OODefragTray"="c:\program files\OO Software\Defrag\oodtray.exe" [2012-03-28 3998032]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-22 4035152]
"combofix"="c:\combofix\CF8232.3XE" [2010-11-20 345088]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mLocal Page = %SystemRoot%\system32\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
TCP: Interfaces\{8EA87408-1E32-49AB-B3FF-30F4C705D657}: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Clorky\AppData\Roaming\Mozilla\Firefox\Profiles\nzoqllew.default\
FF - prefs.js: browser.startup.homepage - www.google.cz
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.autoDisableScopes - 14
FF - user.js: security.csp.enable - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
ShellIconOverlayIdentifiers-{152C96EB-288E-4EDC-B7C6-D21F8250ADF3} - (no file)
ShellIconOverlayIdentifiers-{342DAA0B-D796-460D-8566-901E08A1CCAD} - (no file)
ShellIconOverlayIdentifiers-{57595DAE-1AE1-4D97-A49E-67CBB53B52DF} - (no file)
ShellIconOverlayIdentifiers-{33816773-98AE-4723-ADE0-EBE54C8B5A67} - (no file)
AddRemove-Fallout - c:\windows\ipuninst.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1365180198-3819917712-2369891476-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:ca,88,93,ea,23,f9,36,80,af,e7,8c,9b,3f,44,58,fc,77,04,3d,15,f2,5c,9a,
b4,56,b9,5d,a8,c4,76,a3,75,e8,85,8e,a6,cd,a8,1e,2e,4b,e1,69,6e,14,98,2c,99,\
"??"=hex:35,fc,c6,3d,c9,02,ad,db,37,1f,61,de,0f,33,8f,50
.
[HKEY_USERS\S-1-5-21-1365180198-3819917712-2369891476-1001\Software\SecuROM\License information*]
"datasecu"=hex:d9,09,63,41,0e,e0,83,06,7c,07,70,04,2f,d9,8a,d7,30,91,a9,54,7a,
92,48,ab,2a,4f,23,b6,2d,c0,77,f9,15,78,74,bc,a2,4f,4a,39,32,4c,1e,18,56,7d,\
"rkeysecu"=hex:ac,85,ae,05,b4,fc,d7,1e,f1,ef,44,4b,4f,69,5f,a1
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Windows Media Player\wmplayer.exe
.
**************************************************************************
.
Celkový čas: 2012-06-07 21:52:21 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-06-07 19:52
ComboFix2.txt 2012-06-07 16:33
.
Před spuštěním: 135 442 190 336 bytes free
Po spuštění: 135 346 376 704 bytes free
.
- - End Of File - - 0AF3DA209D3F8BADFE9292608CC73CC4

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kompletní kontrolu PC.

Příspěvekod jaro3 » 07 čer 2012 21:59

Ok.
Chybí konec logu z TDSSKilleru...


Pak napiš jak to vypadá..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Seznam[Bot] a 8 hostů