Dobrý večer!
Potřeboval bych zase pročistit pc.
Nějaký speciální problém nemám, jedná se pouze o preventivku.
Děkuji za ochotu.
RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by spravce at 2014-03-19 19:09:03
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 36 GB (15%) free of 247 GB
Total RAM: 8190 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:09:05, on 19.3.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\spravce.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: (no name) - {434D452D-5637-006A-76A7-7A786E7484D7} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coIEPlg.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: DokanMounter - Unknown owner - C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Serviio - Unknown owner - C:\Program Files (x86)\Serviio\bin\ServiioService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Unknown owner - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9653 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Serviio\bin\ServiioService.exe"
"C:\Program Files (x86)\Serviio\bin\ServiioService.exe" Serviio __i4j_restart
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1884
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\diMaster.dll" /prefetch:1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe" /c /a /s UserSession
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\AmbRunE.dll,RunDLLEntry
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\system32\wuauclt.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\AUDIODG.EXE 0x780
C:\Windows\system32\wbem\wmiprvse.exe
taskeng.exe {5759B341-7492-4989-8FEB-CA9F636FA952}
taskhost.exe $(Arg0)
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\spravce\Desktop\rsitx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coIEPlg.dll [2013-10-06 769360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-24 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-12-13 256080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-11-20 6270336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-24 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coIEPlg.dll [2013-10-06 526672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\IPS\IPSBHO.DLL [2013-09-29 388504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-02-10 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-13 194128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-20 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-11-09 1219352]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-02-10 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-12-13 256080]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coIEPlg.dll [2013-10-06 769360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-11-09 1219352]
{434D452D-5637-006A-76A7-7A786E7484D7}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-13 194128]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coIEPlg.dll [2013-10-06 526672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RunDLLEntry"=C:\Windows\system32\AmbRunE.dll [2009-02-26 17920]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 138096]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="C:\Windows\system32\Microsoft.com
======File associations======
.js - edit - "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1"
======List of files/folders created in the last 1 months======
2014-03-17 21:17:14 ----D---- C:\Program Files\glassfish-4.0
2014-03-17 21:13:54 ----D---- C:\Program Files\NetBeans 7.4
2014-03-17 20:48:48 ----D---- C:\Users\spravce\AppData\Roaming\JavaFX Scene Builder
2014-03-17 20:48:35 ----D---- C:\Program Files (x86)\Oracle
2014-03-12 10:22:17 ----A---- C:\Windows\system32\wwansvc.dll
2014-03-12 10:22:16 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-03-12 10:22:16 ----A---- C:\Windows\system32\wer.dll
2014-03-12 10:22:15 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-03-12 10:22:15 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-03-12 10:22:15 ----A---- C:\Windows\system32\win32k.sys
2014-03-12 10:22:15 ----A---- C:\Windows\system32\iertutil.dll
2014-03-12 10:22:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-03-12 10:22:14 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-03-12 10:22:14 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-03-12 10:22:14 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-03-12 10:22:14 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-03-12 10:22:13 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-03-12 10:22:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-03-12 10:22:13 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-03-12 10:22:13 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-03-12 10:22:13 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-03-12 10:22:13 ----A---- C:\Windows\system32\urlmon.dll
2014-03-12 10:22:13 ----A---- C:\Windows\system32\msfeeds.dll
2014-03-12 10:22:13 ----A---- C:\Windows\system32\iernonce.dll
2014-03-12 10:22:13 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-03-12 10:22:12 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-03-12 10:22:12 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-03-12 10:22:12 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-03-12 10:22:12 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-03-12 10:22:12 ----A---- C:\Windows\system32\jsproxy.dll
2014-03-12 10:22:12 ----A---- C:\Windows\system32\iesetup.dll
2014-03-12 10:22:12 ----A---- C:\Windows\system32\ie4uinit.exe
2014-03-12 10:22:11 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-03-12 10:22:11 ----A---- C:\Windows\system32\jscript9diag.dll
2014-03-12 10:22:11 ----A---- C:\Windows\system32\jscript9.dll
2014-03-12 10:22:11 ----A---- C:\Windows\system32\ieUnatt.exe
2014-03-12 10:22:11 ----A---- C:\Windows\system32\ieui.dll
2014-03-12 10:22:11 ----A---- C:\Windows\system32\ieframe.dll
2014-03-12 10:22:11 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-03-12 10:22:11 ----A---- C:\Windows\system32\ieapfltr.dll
2014-03-12 10:22:10 ----A---- C:\Windows\system32\wininet.dll
2014-03-12 10:22:10 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-12 10:22:10 ----A---- C:\Windows\system32\msrating.dll
2014-03-12 10:22:10 ----A---- C:\Windows\system32\mshtml.dll
2014-03-12 10:20:30 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-03-12 10:20:30 ----A---- C:\Windows\system32\qedit.dll
2014-03-12 10:20:29 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-03-12 10:20:29 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-03-11 18:02:22 ----D---- C:\Users\spravce\AppData\Roaming\Guild Wars 2
2014-03-09 20:54:23 ----D---- C:\Users\spravce\AppData\Roaming\steamvr
2014-03-09 11:01:57 ----D---- C:\Users\spravce\AppData\Roaming\Avnex
2014-03-02 19:51:19 ----D---- C:\seo projects
2014-03-02 19:50:58 ----D---- C:\Users\spravce\AppData\Roaming\SeoAdministrator
2014-03-02 19:50:11 ----D---- C:\ProgramData\SeoAdministrator
2014-03-02 19:50:11 ----D---- C:\Program Files (x86)\seoadministrator
2014-03-02 19:50:11 ----A---- C:\Windows\SYSWOW64\semtempl.dll
2014-03-02 19:50:11 ----A---- C:\Windows\SYSWOW64\hashfunc.dll
2014-03-02 19:50:11 ----A---- C:\Windows\SYSWOW64\cg32.dll
2014-03-02 19:50:11 ----A---- C:\Windows\SYSWOW64\cc3250mt.dll
2014-03-02 19:50:11 ----A---- C:\Windows\SYSWOW64\BORLNDMM.DLL
2014-03-02 19:50:11 ----A---- C:\Windows\SYSWOW64\arcdll.dll
2014-03-01 18:10:00 ----D---- C:\Users\spravce\AppData\Roaming\Mozilla
2014-03-01 18:09:46 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 months======
2014-03-19 19:09:05 ----D---- C:\Program Files\trend micro
2014-03-19 19:08:24 ----D---- C:\ProgramData\Origin
2014-03-19 19:08:16 ----D---- C:\Users\spravce\AppData\Roaming\Skype
2014-03-19 19:06:37 ----D---- C:\rsit
2014-03-19 19:06:31 ----D---- C:\Windows\Temp
2014-03-19 16:14:35 ----D---- C:\Program Files (x86)\Origin
2014-03-19 15:56:36 ----D---- C:\Windows\system32\config
2014-03-19 15:44:13 ----SHD---- C:\System Volume Information
2014-03-18 16:58:42 ----D---- C:\Windows\System32
2014-03-18 16:58:42 ----D---- C:\Windows\inf
2014-03-18 16:58:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-03-18 16:57:52 ----D---- C:\Windows\Prefetch
2014-03-17 21:17:14 ----RD---- C:\Program Files
2014-03-17 20:48:39 ----SHD---- C:\Windows\Installer
2014-03-17 20:48:35 ----RD---- C:\Program Files (x86)
2014-03-17 18:10:27 ----D---- C:\Program Files\WinHTTrack
2014-03-16 12:41:15 ----D---- C:\Program Files (x86)\Steam
2014-03-14 11:59:27 ----D---- C:\Program Files (x86)\Internet Explorer
2014-03-13 18:20:09 ----D---- C:\Users\spravce\AppData\Roaming\TS3Client
2014-03-13 17:24:49 ----RD---- C:\Program Files (x86)\Skype
2014-03-12 16:17:47 ----RSD---- C:\Windows\assembly
2014-03-12 14:14:42 ----D---- C:\Windows\winsxs
2014-03-12 14:13:07 ----D---- C:\Windows\SysWOW64
2014-03-12 14:13:07 ----D---- C:\Program Files\Internet Explorer
2014-03-12 14:13:02 ----D---- C:\Program Files\Microsoft Silverlight
2014-03-12 14:13:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-03-12 14:04:31 ----D---- C:\ProgramData\Microsoft Help
2014-03-12 13:36:22 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-03-12 10:20:26 ----D---- C:\Windows\system32\catroot
2014-03-12 10:20:05 ----D---- C:\Windows\system32\catroot2
2014-03-09 20:37:29 ----D---- C:\Windows\system32\NDF
2014-03-09 12:06:29 ----D---- C:\Users\spravce\AppData\Roaming\vlc
2014-03-09 11:39:39 ----A---- C:\Windows\ntbtlog.txt
2014-03-09 11:25:24 ----D---- C:\Windows\system32\Tasks
2014-03-09 10:41:05 ----SD---- C:\Users\spravce\AppData\Roaming\Microsoft
2014-03-08 20:21:01 ----D---- C:\Users\spravce\AppData\Roaming\.minecraft
2014-03-06 18:49:52 ----D---- C:\Windows\Tasks
2014-03-02 19:50:11 ----D---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2009-10-29 115824]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-08-20 283200]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2014-02-14 31648]
R2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 Dokan;Dokan; \??\C:\Windows\system32\drivers\dokan.sys [2011-01-10 120408]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-29 11658752]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-29 581120]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys [2014-01-21 1526488]
R3 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys [2013-09-26 162392]
R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2014-02-08 484952]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-02-08 137648]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2011-11-25 33344]
R3 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140318.001\IDSvia64.sys [2014-03-06 524504]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140318.001\ENG64.SYS [2014-02-08 126040]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140318.001\EX64.SYS [2014-02-08 2099288]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 77824]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-01-22 180224]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\NISx64\1501000.012\SRTSP64.SYS [2013-09-27 858200]
R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS [2013-09-10 36952]
R3 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS [2013-09-10 493656]
R3 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS [2013-09-27 1147480]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2014-02-09 177752]
R3 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS [2013-09-27 264280]
R3 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS [2013-09-26 590936]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-10-19 39480]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-03-02 1301504]
R3 VMfilt;VMfilt; C:\Windows\system32\drivers\VMfilt64.sys [2009-07-31 25600]
S1 kphpuwqo;kphpuwqo; \??\C:\Windows\system32\drivers\kphpuwqo.sys []
S1 nqvxspqs;nqvxspqs; \??\C:\Windows\system32\drivers\nqvxspqs.sys []
S2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2011-05-25 37888]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-11-13 42184]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-29 241152]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-03-28 361984]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-03-03 1363584]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-03-03 1748608]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 DokanMounter;DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [2011-01-10 14848]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe [2013-10-08 275696]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-31 76888]
R2 Serviio;Serviio; C:\Program Files (x86)\Serviio\bin\ServiioService.exe [2013-12-20 359936]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-11-09 196376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12 257928]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2011-03-11 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-03-11 79360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-03 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-25 568512]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-03-17 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola počítače
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Preventivní kontrola počítače
Když tě všechno zradilo, pomůže ti kladivo!
Re: Preventivní kontrola počítače
Presun ComboFix
na plochu (ak tam este nie je)
otvor si Poznamkovy blok - notepad
do neho zkopiruj skript z nasledujiceho okna:
uloz vytvoreny textovy soubor ako CFScript.txt na plochu
po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:
po aplikacii by mal vzniknut dalsi log, ten vloz sem
na plochu (ak tam este nie je)
otvor si Poznamkovy blok - notepad
do neho zkopiruj skript z nasledujiceho okna:
Kód: Vybrat vše
Driver::
kphpuwqo
nqvxspqs
po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:
po aplikacii by mal vzniknut dalsi log, ten vloz sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola počítače
Tak, problém s ComboFixem.
Když se ho pokusím zapnout, tak to hází chybu viz. příloha
ComboFix normálně na ploše je. Možná to souvisí s tím, že jsem měl před nějakou dobou zavirovaný pc a ten vir mi blokoval všechny programy na ochranu, čištění apod.
Jak dál?
Když se ho pokusím zapnout, tak to hází chybu viz. příloha
ComboFix normálně na ploše je. Možná to souvisí s tím, že jsem měl před nějakou dobou zavirovaný pc a ten vir mi blokoval všechny programy na ochranu, čištění apod.
Jak dál?
- Přílohy
-
- ComboFix Error.png (46.3 KiB) Zobrazeno 1821 x
Když tě všechno zradilo, pomůže ti kladivo!
Re: Preventivní kontrola počítače
premenuj combofix na brekeke a spust ho bez scriptu
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola počítače
Brekeke pomohl a zde je log.
ComboFix:
ComboFix 14-03-19.01 - spravce 20.03.2014 14:35:50.2.6 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.8190.6430 [GMT 1:00]
Spuštěný z: c:\users\spravce\Desktop\brekeke.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Windows Services\wservice.exe
c:\programdata\Microsoft.com
c:\programdata\Windows Services
c:\programdata\Windows Services\wservice.exe
c:\windows\SysWow64\Microsoft.com
c:\windows\SysWow64\tmpD873.tmp
c:\windows\UpdReg.EXE
E:\Uninstall.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-20 do 2014-03-20 )))))))))))))))))))))))))))))))
.
.
2014-03-20 13:41 . 2014-03-20 13:41 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-03-20 13:41 . 2014-03-20 13:41 -------- d-----w- c:\users\oprava\AppData\Local\temp
2014-03-20 13:41 . 2014-03-20 13:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-17 20:17 . 2014-03-17 20:17 -------- d-----w- c:\program files\glassfish-4.0
2014-03-17 20:13 . 2014-03-17 20:21 -------- d-----w- c:\program files\NetBeans 7.4
2014-03-17 20:12 . 2014-03-17 20:12 -------- d-----w- c:\users\spravce\.nbi
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\users\spravce\AppData\Roaming\JavaFX Scene Builder
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\program files (x86)\Oracle
2014-03-12 09:20 . 2014-02-04 02:32 624128 ----a-w- c:\windows\system32\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:04 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:32 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-12 09:20 . 2014-02-04 02:04 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-03-11 17:02 . 2014-03-11 17:02 -------- d-----w- c:\users\spravce\AppData\Roaming\Guild Wars 2
2014-03-09 19:54 . 2014-03-09 19:54 -------- d-----w- c:\users\spravce\AppData\Roaming\steamvr
2014-03-09 10:01 . 2014-03-09 10:01 -------- d-----w- c:\users\spravce\AppData\Roaming\Avnex
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\SkypeFx
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\IsolatedStorage
2014-03-06 17:49 . 2014-03-06 17:51 -------- d-----w- c:\users\spravce\AppData\Local\Facebook
2014-03-02 18:51 . 2014-03-02 18:51 -------- d-----w- C:\seo projects
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\users\spravce\AppData\Roaming\SeoAdministrator
2014-03-02 18:50 . 2014-03-02 18:51 -------- d-----w- c:\program files (x86)\seoadministrator
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\programdata\SeoAdministrator
2014-03-02 18:50 . 2010-02-21 11:14 680448 ----a-w- c:\windows\SysWow64\semtempl.dll
2014-03-02 18:50 . 2005-05-20 01:26 343040 ----a-w- c:\windows\SysWow64\arcdll.dll
2014-03-02 18:50 . 2004-06-14 13:19 3072 ----a-w- c:\windows\SysWow64\hashfunc.dll
2014-03-02 18:50 . 2000-01-31 03:00 25600 ----a-w- c:\windows\SysWow64\BORLNDMM.DLL
2014-03-02 18:50 . 2000-01-31 03:00 219648 ----a-w- c:\windows\SysWow64\cg32.dll
2014-03-02 18:50 . 2000-01-31 03:00 1496064 ----a-w- c:\windows\SysWow64\cc3250mt.dll
2014-03-01 17:10 . 2014-03-01 17:10 -------- d-----w- c:\users\spravce\AppData\Local\Mozilla
2014-02-22 11:08 . 2014-02-22 11:09 -------- d-----w- c:\users\spravce\AppData\Local\Ubisoft Game Launcher
2014-02-22 10:45 . 2014-02-22 10:45 -------- d-----w- c:\users\spravce\AppData\Local\Activision
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-19 18:36 . 2011-03-19 12:10 90015360 ----a-w- c:\windows\system32\MRT.exe
2014-03-12 12:36 . 2012-08-26 16:31 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-03-12 12:36 . 2011-05-18 19:10 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-19 15:18 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-19 15:10 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-14 18:53 . 2014-02-14 18:53 31648 ----a-w- c:\windows\system32\drivers\HWiNFO64A.SYS
2014-02-10 09:20 . 2014-02-10 09:20 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-02-09 14:48 . 2014-02-09 14:48 177752 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS
2014-02-07 19:52 . 2014-02-08 12:15 269312 --sha-r- c:\windows\SysWow64\Google.com
2014-01-24 18:58 . 2014-01-24 18:58 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-01-24 18:58 . 2014-01-24 18:58 312744 ----a-w- c:\windows\system32\javaws.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\javaw.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\java.exe
2014-01-16 08:59 . 2011-03-16 14:10 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-12-24 23:09 . 2014-02-12 06:58 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2013-12-24 22:48 . 2014-02-12 06:58 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-12-21 09:53 . 2014-02-12 14:12 548864 ----a-w- c:\windows\system32\vbscript.dll
2013-12-21 08:56 . 2014-02-12 14:12 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R1 kphpuwqo;kphpuwqo;c:\windows\system32\drivers\kphpuwqo.sys;c:\windows\SYSNATIVE\drivers\kphpuwqo.sys [x]
R1 nqvxspqs;nqvxspqs;c:\windows\system32\drivers\nqvxspqs.sys;c:\windows\SYSNATIVE\drivers\nqvxspqs.sys [x]
R2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XFDriver64;XFDriver64;c:\program files (x86)\Xfire2\XFDriver64.sys;c:\program files (x86)\Xfire2\XFDriver64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS;c:\windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe [x]
S2 Serviio;Serviio;c:\program files (x86)\Serviio\bin\ServiioService.exe;c:\program files (x86)\Serviio\bin\ServiioService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BHDrvx64;BHDrvx64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys [x]
S3 ccSet_NIS;NIS Settings Manager;c:\windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\ccSetx64.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
S3 IDSVia64;IDSVia64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMDS64.SYS [x]
S3 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMEFA64.SYS [x]
S3 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\Ironx64.SYS [x]
S3 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMNETS.SYS [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
S3 VMfilt;VMfilt;c:\windows\system32\drivers\VMfilt64.sys;c:\windows\SYSNATIVE\drivers\VMfilt64.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 19:09 1150280 ----a-w- c:\program files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-26 12:36]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006Core.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006UA.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RunDLLEntry"="c:\windows\system32\AmbRunE.dll" [2009-02-26 17920]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
FF - ProfilePath - c:\users\spravce\AppData\Roaming\Mozilla\Firefox\Profiles\dmafio7m.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-{434D452D-5637-006A-76A7-7A786E7484D7} - (no file)
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-CraftBukkit - 0:\users\game\Documents\CraftBukkit Server\Uninstall.exe
AddRemove-Joan of Arc - e:\\UnInstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\diMaster.dll\" /prefetch:1"
"ImagePath"="\SystemRoot\system32\drivers\NISx64\1501000.012\SYMNETS.SYS"
"TrustedImagePaths"="c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18;c:\program files (x86)\Norton Internet Security\Engine64\21.1.0.18"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-03-20 14:43:58
ComboFix-quarantined-files.txt 2014-03-20 13:43
.
Před spuštěním: Volných bajtů: 41 949 003 776
Po spuštění: Volných bajtů: 42 041 073 664
.
- - End Of File - - 795C80B7D790414923E0405C9736FB07
A36C5E4F47E84449FF07ED3517B43A31
ComboFix:
ComboFix 14-03-19.01 - spravce 20.03.2014 14:35:50.2.6 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.8190.6430 [GMT 1:00]
Spuštěný z: c:\users\spravce\Desktop\brekeke.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Windows Services\wservice.exe
c:\programdata\Microsoft.com
c:\programdata\Windows Services
c:\programdata\Windows Services\wservice.exe
c:\windows\SysWow64\Microsoft.com
c:\windows\SysWow64\tmpD873.tmp
c:\windows\UpdReg.EXE
E:\Uninstall.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-20 do 2014-03-20 )))))))))))))))))))))))))))))))
.
.
2014-03-20 13:41 . 2014-03-20 13:41 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-03-20 13:41 . 2014-03-20 13:41 -------- d-----w- c:\users\oprava\AppData\Local\temp
2014-03-20 13:41 . 2014-03-20 13:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-17 20:17 . 2014-03-17 20:17 -------- d-----w- c:\program files\glassfish-4.0
2014-03-17 20:13 . 2014-03-17 20:21 -------- d-----w- c:\program files\NetBeans 7.4
2014-03-17 20:12 . 2014-03-17 20:12 -------- d-----w- c:\users\spravce\.nbi
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\users\spravce\AppData\Roaming\JavaFX Scene Builder
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\program files (x86)\Oracle
2014-03-12 09:20 . 2014-02-04 02:32 624128 ----a-w- c:\windows\system32\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:04 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:32 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-12 09:20 . 2014-02-04 02:04 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-03-11 17:02 . 2014-03-11 17:02 -------- d-----w- c:\users\spravce\AppData\Roaming\Guild Wars 2
2014-03-09 19:54 . 2014-03-09 19:54 -------- d-----w- c:\users\spravce\AppData\Roaming\steamvr
2014-03-09 10:01 . 2014-03-09 10:01 -------- d-----w- c:\users\spravce\AppData\Roaming\Avnex
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\SkypeFx
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\IsolatedStorage
2014-03-06 17:49 . 2014-03-06 17:51 -------- d-----w- c:\users\spravce\AppData\Local\Facebook
2014-03-02 18:51 . 2014-03-02 18:51 -------- d-----w- C:\seo projects
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\users\spravce\AppData\Roaming\SeoAdministrator
2014-03-02 18:50 . 2014-03-02 18:51 -------- d-----w- c:\program files (x86)\seoadministrator
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\programdata\SeoAdministrator
2014-03-02 18:50 . 2010-02-21 11:14 680448 ----a-w- c:\windows\SysWow64\semtempl.dll
2014-03-02 18:50 . 2005-05-20 01:26 343040 ----a-w- c:\windows\SysWow64\arcdll.dll
2014-03-02 18:50 . 2004-06-14 13:19 3072 ----a-w- c:\windows\SysWow64\hashfunc.dll
2014-03-02 18:50 . 2000-01-31 03:00 25600 ----a-w- c:\windows\SysWow64\BORLNDMM.DLL
2014-03-02 18:50 . 2000-01-31 03:00 219648 ----a-w- c:\windows\SysWow64\cg32.dll
2014-03-02 18:50 . 2000-01-31 03:00 1496064 ----a-w- c:\windows\SysWow64\cc3250mt.dll
2014-03-01 17:10 . 2014-03-01 17:10 -------- d-----w- c:\users\spravce\AppData\Local\Mozilla
2014-02-22 11:08 . 2014-02-22 11:09 -------- d-----w- c:\users\spravce\AppData\Local\Ubisoft Game Launcher
2014-02-22 10:45 . 2014-02-22 10:45 -------- d-----w- c:\users\spravce\AppData\Local\Activision
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-19 18:36 . 2011-03-19 12:10 90015360 ----a-w- c:\windows\system32\MRT.exe
2014-03-12 12:36 . 2012-08-26 16:31 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-03-12 12:36 . 2011-05-18 19:10 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-19 15:18 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-19 15:10 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-14 18:53 . 2014-02-14 18:53 31648 ----a-w- c:\windows\system32\drivers\HWiNFO64A.SYS
2014-02-10 09:20 . 2014-02-10 09:20 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-02-09 14:48 . 2014-02-09 14:48 177752 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS
2014-02-07 19:52 . 2014-02-08 12:15 269312 --sha-r- c:\windows\SysWow64\Google.com
2014-01-24 18:58 . 2014-01-24 18:58 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-01-24 18:58 . 2014-01-24 18:58 312744 ----a-w- c:\windows\system32\javaws.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\javaw.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\java.exe
2014-01-16 08:59 . 2011-03-16 14:10 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-12-24 23:09 . 2014-02-12 06:58 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2013-12-24 22:48 . 2014-02-12 06:58 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-12-21 09:53 . 2014-02-12 14:12 548864 ----a-w- c:\windows\system32\vbscript.dll
2013-12-21 08:56 . 2014-02-12 14:12 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R1 kphpuwqo;kphpuwqo;c:\windows\system32\drivers\kphpuwqo.sys;c:\windows\SYSNATIVE\drivers\kphpuwqo.sys [x]
R1 nqvxspqs;nqvxspqs;c:\windows\system32\drivers\nqvxspqs.sys;c:\windows\SYSNATIVE\drivers\nqvxspqs.sys [x]
R2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XFDriver64;XFDriver64;c:\program files (x86)\Xfire2\XFDriver64.sys;c:\program files (x86)\Xfire2\XFDriver64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS;c:\windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe [x]
S2 Serviio;Serviio;c:\program files (x86)\Serviio\bin\ServiioService.exe;c:\program files (x86)\Serviio\bin\ServiioService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BHDrvx64;BHDrvx64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys [x]
S3 ccSet_NIS;NIS Settings Manager;c:\windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\ccSetx64.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
S3 IDSVia64;IDSVia64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMDS64.SYS [x]
S3 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMEFA64.SYS [x]
S3 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\Ironx64.SYS [x]
S3 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMNETS.SYS [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
S3 VMfilt;VMfilt;c:\windows\system32\drivers\VMfilt64.sys;c:\windows\SYSNATIVE\drivers\VMfilt64.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 19:09 1150280 ----a-w- c:\program files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-26 12:36]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006Core.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006UA.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RunDLLEntry"="c:\windows\system32\AmbRunE.dll" [2009-02-26 17920]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
FF - ProfilePath - c:\users\spravce\AppData\Roaming\Mozilla\Firefox\Profiles\dmafio7m.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-{434D452D-5637-006A-76A7-7A786E7484D7} - (no file)
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-CraftBukkit - 0:\users\game\Documents\CraftBukkit Server\Uninstall.exe
AddRemove-Joan of Arc - e:\\UnInstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\diMaster.dll\" /prefetch:1"
"ImagePath"="\SystemRoot\system32\drivers\NISx64\1501000.012\SYMNETS.SYS"
"TrustedImagePaths"="c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18;c:\program files (x86)\Norton Internet Security\Engine64\21.1.0.18"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-03-20 14:43:58
ComboFix-quarantined-files.txt 2014-03-20 13:43
.
Před spuštěním: Volných bajtů: 41 949 003 776
Po spuštění: Volných bajtů: 42 041 073 664
.
- - End Of File - - 795C80B7D790414923E0405C9736FB07
A36C5E4F47E84449FF07ED3517B43A31
Když tě všechno zradilo, pomůže ti kladivo!
Re: Preventivní kontrola počítače
skus v nudzovom rezime vykonat akciu CF so scriptom popisane vyssie
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola počítače
Tak zde je log.
Jenom, jestli bych mohl poprosit o průběžné informování, co mám v počítači apod., hodně mě to zajímá.
Děkuji
ComboFix:
ComboFix 14-03-19.01 - spravce 20.03.2014 16:40:40.3.6 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.8190.6216 [GMT 1:00]
Spuštěný z: c:\users\spravce\Desktop\brekeke.exe
Použité ovládací přepínače :: c:\users\spravce\Desktop\CFScript.txt
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_kphpuwqo
-------\Service_nqvxspqs
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-20 do 2014-03-20 )))))))))))))))))))))))))))))))
.
.
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\oprava\AppData\Local\temp
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\game\AppData\Local\temp
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-17 20:17 . 2014-03-17 20:17 -------- d-----w- c:\program files\glassfish-4.0
2014-03-17 20:13 . 2014-03-17 20:21 -------- d-----w- c:\program files\NetBeans 7.4
2014-03-17 20:12 . 2014-03-17 20:12 -------- d-----w- c:\users\spravce\.nbi
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\users\spravce\AppData\Roaming\JavaFX Scene Builder
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\program files (x86)\Oracle
2014-03-12 09:20 . 2014-02-04 02:32 624128 ----a-w- c:\windows\system32\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:04 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:32 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-12 09:20 . 2014-02-04 02:04 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-03-11 17:02 . 2014-03-11 17:02 -------- d-----w- c:\users\spravce\AppData\Roaming\Guild Wars 2
2014-03-09 19:54 . 2014-03-09 19:54 -------- d-----w- c:\users\spravce\AppData\Roaming\steamvr
2014-03-09 10:01 . 2014-03-09 10:01 -------- d-----w- c:\users\spravce\AppData\Roaming\Avnex
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\SkypeFx
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\IsolatedStorage
2014-03-06 17:49 . 2014-03-06 17:51 -------- d-----w- c:\users\spravce\AppData\Local\Facebook
2014-03-02 18:51 . 2014-03-02 18:51 -------- d-----w- C:\seo projects
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\users\spravce\AppData\Roaming\SeoAdministrator
2014-03-02 18:50 . 2014-03-02 18:51 -------- d-----w- c:\program files (x86)\seoadministrator
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\programdata\SeoAdministrator
2014-03-02 18:50 . 2010-02-21 11:14 680448 ----a-w- c:\windows\SysWow64\semtempl.dll
2014-03-02 18:50 . 2005-05-20 01:26 343040 ----a-w- c:\windows\SysWow64\arcdll.dll
2014-03-02 18:50 . 2004-06-14 13:19 3072 ----a-w- c:\windows\SysWow64\hashfunc.dll
2014-03-02 18:50 . 2000-01-31 03:00 25600 ----a-w- c:\windows\SysWow64\BORLNDMM.DLL
2014-03-02 18:50 . 2000-01-31 03:00 219648 ----a-w- c:\windows\SysWow64\cg32.dll
2014-03-02 18:50 . 2000-01-31 03:00 1496064 ----a-w- c:\windows\SysWow64\cc3250mt.dll
2014-03-01 17:10 . 2014-03-01 17:10 -------- d-----w- c:\users\spravce\AppData\Local\Mozilla
2014-02-22 11:08 . 2014-02-22 11:09 -------- d-----w- c:\users\spravce\AppData\Local\Ubisoft Game Launcher
2014-02-22 10:45 . 2014-02-22 10:45 -------- d-----w- c:\users\spravce\AppData\Local\Activision
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-19 18:36 . 2011-03-19 12:10 90015360 ----a-w- c:\windows\system32\MRT.exe
2014-03-12 12:36 . 2012-08-26 16:31 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-03-12 12:36 . 2011-05-18 19:10 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-19 15:18 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-19 15:10 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-14 18:53 . 2014-02-14 18:53 31648 ----a-w- c:\windows\system32\drivers\HWiNFO64A.SYS
2014-02-10 09:20 . 2014-02-10 09:20 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-02-09 14:48 . 2014-02-09 14:48 177752 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS
2014-02-07 19:52 . 2014-02-08 12:15 269312 --sha-r- c:\windows\SysWow64\Google.com
2014-01-24 18:58 . 2014-01-24 18:58 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-01-24 18:58 . 2014-01-24 18:58 312744 ----a-w- c:\windows\system32\javaws.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\javaw.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\java.exe
2014-01-16 08:59 . 2011-03-16 14:10 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-12-24 23:09 . 2014-02-12 06:58 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2013-12-24 22:48 . 2014-02-12 06:58 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-12-21 09:53 . 2014-02-12 14:12 548864 ----a-w- c:\windows\system32\vbscript.dll
2013-12-21 08:56 . 2014-02-12 14:12 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XFDriver64;XFDriver64;c:\program files (x86)\Xfire2\XFDriver64.sys;c:\program files (x86)\Xfire2\XFDriver64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS;c:\windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]
S2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe [x]
S2 Serviio;Serviio;c:\program files (x86)\Serviio\bin\ServiioService.exe;c:\program files (x86)\Serviio\bin\ServiioService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BHDrvx64;BHDrvx64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys [x]
S3 ccSet_NIS;NIS Settings Manager;c:\windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\ccSetx64.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
S3 IDSVia64;IDSVia64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMDS64.SYS [x]
S3 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMEFA64.SYS [x]
S3 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\Ironx64.SYS [x]
S3 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMNETS.SYS [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
S3 VMfilt;VMfilt;c:\windows\system32\drivers\VMfilt64.sys;c:\windows\SYSNATIVE\drivers\VMfilt64.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 19:09 1150280 ----a-w- c:\program files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-26 12:36]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006Core.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006UA.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RunDLLEntry"="c:\windows\system32\AmbRunE.dll" [2009-02-26 17920]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
FF - ProfilePath - c:\users\spravce\AppData\Roaming\Mozilla\Firefox\Profiles\dmafio7m.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-{434D452D-5637-006A-76A7-7A786E7484D7} - (no file)
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-CraftBukkit - 0:\users\game\Documents\CraftBukkit Server\Uninstall.exe
AddRemove-Joan of Arc - e:\\UnInstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\diMaster.dll\" /prefetch:1"
"ImagePath"="\SystemRoot\system32\drivers\NISx64\1501000.012\SYMNETS.SYS"
"TrustedImagePaths"="c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18;c:\program files (x86)\Norton Internet Security\Engine64\21.1.0.18"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2014-03-20 16:58:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-03-20 15:58
ComboFix2.txt 2014-03-20 13:43
.
Před spuštěním: Volných bajtů: 42 145 349 632
Po spuštění: Volných bajtů: 41 496 178 688
.
- - End Of File - - DAD250EBD70A9324A9027F4681662F3D
A36C5E4F47E84449FF07ED3517B43A31
Jenom, jestli bych mohl poprosit o průběžné informování, co mám v počítači apod., hodně mě to zajímá.
Děkuji
ComboFix:
ComboFix 14-03-19.01 - spravce 20.03.2014 16:40:40.3.6 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.8190.6216 [GMT 1:00]
Spuštěný z: c:\users\spravce\Desktop\brekeke.exe
Použité ovládací přepínače :: c:\users\spravce\Desktop\CFScript.txt
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_kphpuwqo
-------\Service_nqvxspqs
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-20 do 2014-03-20 )))))))))))))))))))))))))))))))
.
.
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\oprava\AppData\Local\temp
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\game\AppData\Local\temp
2014-03-20 15:48 . 2014-03-20 15:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-17 20:17 . 2014-03-17 20:17 -------- d-----w- c:\program files\glassfish-4.0
2014-03-17 20:13 . 2014-03-17 20:21 -------- d-----w- c:\program files\NetBeans 7.4
2014-03-17 20:12 . 2014-03-17 20:12 -------- d-----w- c:\users\spravce\.nbi
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\users\spravce\AppData\Roaming\JavaFX Scene Builder
2014-03-17 19:48 . 2014-03-17 19:48 -------- d-----w- c:\program files (x86)\Oracle
2014-03-12 09:20 . 2014-02-04 02:32 624128 ----a-w- c:\windows\system32\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:04 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-03-12 09:20 . 2014-02-04 02:32 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-12 09:20 . 2014-02-04 02:04 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-03-11 17:02 . 2014-03-11 17:02 -------- d-----w- c:\users\spravce\AppData\Roaming\Guild Wars 2
2014-03-09 19:54 . 2014-03-09 19:54 -------- d-----w- c:\users\spravce\AppData\Roaming\steamvr
2014-03-09 10:01 . 2014-03-09 10:01 -------- d-----w- c:\users\spravce\AppData\Roaming\Avnex
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\SkypeFx
2014-03-09 09:31 . 2014-03-09 09:31 -------- d-----w- c:\users\spravce\AppData\Local\IsolatedStorage
2014-03-06 17:49 . 2014-03-06 17:51 -------- d-----w- c:\users\spravce\AppData\Local\Facebook
2014-03-02 18:51 . 2014-03-02 18:51 -------- d-----w- C:\seo projects
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\users\spravce\AppData\Roaming\SeoAdministrator
2014-03-02 18:50 . 2014-03-02 18:51 -------- d-----w- c:\program files (x86)\seoadministrator
2014-03-02 18:50 . 2014-03-02 18:50 -------- d-----w- c:\programdata\SeoAdministrator
2014-03-02 18:50 . 2010-02-21 11:14 680448 ----a-w- c:\windows\SysWow64\semtempl.dll
2014-03-02 18:50 . 2005-05-20 01:26 343040 ----a-w- c:\windows\SysWow64\arcdll.dll
2014-03-02 18:50 . 2004-06-14 13:19 3072 ----a-w- c:\windows\SysWow64\hashfunc.dll
2014-03-02 18:50 . 2000-01-31 03:00 25600 ----a-w- c:\windows\SysWow64\BORLNDMM.DLL
2014-03-02 18:50 . 2000-01-31 03:00 219648 ----a-w- c:\windows\SysWow64\cg32.dll
2014-03-02 18:50 . 2000-01-31 03:00 1496064 ----a-w- c:\windows\SysWow64\cc3250mt.dll
2014-03-01 17:10 . 2014-03-01 17:10 -------- d-----w- c:\users\spravce\AppData\Local\Mozilla
2014-02-22 11:08 . 2014-02-22 11:09 -------- d-----w- c:\users\spravce\AppData\Local\Ubisoft Game Launcher
2014-02-22 10:45 . 2014-02-22 10:45 -------- d-----w- c:\users\spravce\AppData\Local\Activision
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-19 18:36 . 2011-03-19 12:10 90015360 ----a-w- c:\windows\system32\MRT.exe
2014-03-12 12:36 . 2012-08-26 16:31 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-03-12 12:36 . 2011-05-18 19:10 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-19 15:18 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-19 15:10 . 2011-06-18 13:58 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-14 18:53 . 2014-02-14 18:53 31648 ----a-w- c:\windows\system32\drivers\HWiNFO64A.SYS
2014-02-10 09:20 . 2014-02-10 09:20 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-02-09 14:48 . 2014-02-09 14:48 177752 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS
2014-02-07 19:52 . 2014-02-08 12:15 269312 --sha-r- c:\windows\SysWow64\Google.com
2014-01-24 18:58 . 2014-01-24 18:58 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-01-24 18:58 . 2014-01-24 18:58 312744 ----a-w- c:\windows\system32\javaws.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\javaw.exe
2014-01-24 18:58 . 2014-01-24 18:58 189352 ----a-w- c:\windows\system32\java.exe
2014-01-16 08:59 . 2011-03-16 14:10 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-12-24 23:09 . 2014-02-12 06:58 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2013-12-24 22:48 . 2014-02-12 06:58 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-12-21 09:53 . 2014-02-12 14:12 548864 ----a-w- c:\windows\system32\vbscript.dll
2013-12-21 08:56 . 2014-02-12 14:12 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XFDriver64;XFDriver64;c:\program files (x86)\Xfire2\XFDriver64.sys;c:\program files (x86)\Xfire2\XFDriver64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS;c:\windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]
S2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe;c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe [x]
S2 Serviio;Serviio;c:\program files (x86)\Serviio\bin\ServiioService.exe;c:\program files (x86)\Serviio\bin\ServiioService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BHDrvx64;BHDrvx64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys [x]
S3 ccSet_NIS;NIS Settings Manager;c:\windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\ccSetx64.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
S3 IDSVia64;IDSVia64;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys;c:\program files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMDS64.SYS [x]
S3 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMEFA64.SYS [x]
S3 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\Ironx64.SYS [x]
S3 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1501000.012\SYMNETS.SYS [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
S3 VMfilt;VMfilt;c:\windows\system32\drivers\VMfilt64.sys;c:\windows\SYSNATIVE\drivers\VMfilt64.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 19:09 1150280 ----a-w- c:\program files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-26 12:36]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006Core.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-19 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3369113318-3354732117-1623153895-1006UA.job
- c:\users\spravce\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 17:49]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
2014-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-18 20:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RunDLLEntry"="c:\windows\system32\AmbRunE.dll" [2009-02-26 17920]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
FF - ProfilePath - c:\users\spravce\AppData\Roaming\Mozilla\Firefox\Profiles\dmafio7m.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-{434D452D-5637-006A-76A7-7A786E7484D7} - (no file)
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-CraftBukkit - 0:\users\game\Documents\CraftBukkit Server\Uninstall.exe
AddRemove-Joan of Arc - e:\\UnInstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18\diMaster.dll\" /prefetch:1"
"ImagePath"="\SystemRoot\system32\drivers\NISx64\1501000.012\SYMNETS.SYS"
"TrustedImagePaths"="c:\program files (x86)\Norton Internet Security\Engine\21.1.0.18;c:\program files (x86)\Norton Internet Security\Engine64\21.1.0.18"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2014-03-20 16:58:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-03-20 15:58
ComboFix2.txt 2014-03-20 13:43
.
Před spuštěním: Volných bajtů: 42 145 349 632
Po spuštění: Volných bajtů: 41 496 178 688
.
- - End Of File - - DAD250EBD70A9324A9027F4681662F3D
A36C5E4F47E84449FF07ED3517B43A31
Když tě všechno zradilo, pomůže ti kladivo!
Re: Preventivní kontrola počítače
1. premenuj ComboFix na uninstall a spust - prebehne odinstalacia CF
2. spust TDSSKiller - ak nieco najde vloz log, ak nic, tak mame hotovo
2. spust TDSSKiller - ak nieco najde vloz log, ak nic, tak mame hotovo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola počítače
ComboFix odinstalován.
Bohužel log z TDSSKiller musím vložit na 2 části.
TDSSKiller:
18:39:46.0038 4476 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:39:48.0055 4476 ============================================================
18:39:48.0055 4476 Current date / time: 2014/03/20 18:39:48.0055
18:39:48.0055 4476 SystemInfo:
18:39:48.0055 4476
18:39:48.0055 4476 OS Version: 6.1.7601 ServicePack: 1.0
18:39:48.0055 4476 Product type: Workstation
18:39:48.0055 4476 ComputerName: GAME-PC
18:39:48.0055 4476 UserName: spravce
18:39:48.0055 4476 Windows directory: C:\Windows
18:39:48.0056 4476 System windows directory: C:\Windows
18:39:48.0056 4476 Running under WOW64
18:39:48.0056 4476 Processor architecture: Intel x64
18:39:48.0056 4476 Number of processors: 6
18:39:48.0056 4476 Page size: 0x1000
18:39:48.0056 4476 Boot type: Normal boot
18:39:48.0056 4476 ============================================================
18:39:49.0504 4476 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:39:49.0514 4476 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:39:49.0518 4476 ============================================================
18:39:49.0518 4476 \Device\Harddisk0\DR0:
18:39:49.0518 4476 MBR partitions:
18:39:49.0518 4476 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C13870A
18:39:49.0537 4476 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C138788, BlocksNum 0x1E2485F8
18:39:49.0537 4476 \Device\Harddisk1\DR1:
18:39:49.0538 4476 MBR partitions:
18:39:49.0538 4476 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
18:39:49.0538 4476 ============================================================
18:39:49.0553 4476 C: <-> \Device\Harddisk0\DR0\Partition2
18:39:49.0576 4476 D: <-> \Device\Harddisk0\DR0\Partition1
18:39:49.0594 4476 E: <-> \Device\Harddisk1\DR1\Partition1
18:39:49.0594 4476 ============================================================
18:39:49.0594 4476 Initialize success
18:39:49.0594 4476 ============================================================
18:40:01.0679 5648 ============================================================
18:40:01.0679 5648 Scan started
18:40:01.0679 5648 Mode: Manual;
18:40:01.0679 5648 ============================================================
18:40:02.0260 5648 ================ Scan system memory ========================
18:40:02.0260 5648 System memory - ok
18:40:02.0260 5648 ================ Scan services =============================
18:40:02.0499 5648 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:40:02.0501 5648 1394ohci - ok
18:40:02.0550 5648 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:40:02.0553 5648 ACPI - ok
18:40:02.0590 5648 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:40:02.0591 5648 AcpiPmi - ok
18:40:02.0694 5648 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:40:02.0695 5648 AdobeARMservice - ok
18:40:02.0817 5648 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:40:02.0820 5648 AdobeFlashPlayerUpdateSvc - ok
18:40:02.0847 5648 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:40:02.0851 5648 adp94xx - ok
18:40:02.0869 5648 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:40:02.0872 5648 adpahci - ok
18:40:02.0887 5648 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:40:02.0889 5648 adpu320 - ok
18:40:02.0912 5648 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:40:02.0913 5648 AeLookupSvc - ok
18:40:02.0969 5648 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
18:40:02.0973 5648 AFD - ok
18:40:03.0011 5648 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:40:03.0012 5648 agp440 - ok
18:40:03.0021 5648 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:40:03.0022 5648 ALG - ok
18:40:03.0057 5648 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:40:03.0058 5648 aliide - ok
18:40:03.0091 5648 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:40:03.0092 5648 AMD External Events Utility - ok
18:40:03.0181 5648 AMD FUEL Service - ok
18:40:03.0203 5648 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:40:03.0204 5648 amdide - ok
18:40:03.0230 5648 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
18:40:03.0231 5648 amdiox64 - ok
18:40:03.0242 5648 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:40:03.0243 5648 AmdK8 - ok
18:40:03.0455 5648 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:40:03.0628 5648 amdkmdag - ok
18:40:03.0672 5648 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:40:03.0677 5648 amdkmdap - ok
18:40:03.0688 5648 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:40:03.0689 5648 AmdPPM - ok
18:40:03.0717 5648 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:40:03.0719 5648 amdsata - ok
18:40:03.0730 5648 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:40:03.0732 5648 amdsbs - ok
18:40:03.0752 5648 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:40:03.0752 5648 amdxata - ok
18:40:03.0792 5648 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:03.0793 5648 AODDriver4.01 - ok
18:40:03.0812 5648 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:03.0812 5648 AODDriver4.2 - ok
18:40:03.0841 5648 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:40:03.0842 5648 AppID - ok
18:40:03.0858 5648 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:40:03.0859 5648 AppIDSvc - ok
18:40:03.0894 5648 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
18:40:03.0895 5648 Appinfo - ok
18:40:03.0915 5648 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:40:03.0917 5648 AppMgmt - ok
18:40:03.0932 5648 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:40:03.0934 5648 arc - ok
18:40:03.0941 5648 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:40:03.0942 5648 arcsas - ok
18:40:04.0045 5648 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:40:04.0047 5648 aspnet_state - ok
18:40:04.0076 5648 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:40:04.0077 5648 AsyncMac - ok
18:40:04.0110 5648 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:40:04.0110 5648 atapi - ok
18:40:04.0146 5648 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:40:04.0147 5648 AtiHDAudioService - ok
18:40:04.0185 5648 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
18:40:04.0186 5648 AtiHdmiService - ok
18:40:04.0231 5648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:40:04.0236 5648 AudioEndpointBuilder - ok
18:40:04.0243 5648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:40:04.0246 5648 AudioSrv - ok
18:40:04.0288 5648 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:40:04.0289 5648 AxInstSV - ok
18:40:04.0308 5648 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:40:04.0312 5648 b06bdrv - ok
18:40:04.0323 5648 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:40:04.0326 5648 b57nd60a - ok
18:40:04.0424 5648 [ 6F8638EA0A55D65B03E24F6D1153D8F7 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
18:40:04.0426 5648 BBSvc - ok
18:40:04.0470 5648 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
18:40:04.0472 5648 BBUpdate - ok
18:40:04.0483 5648 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:40:04.0484 5648 BDESVC - ok
18:40:04.0519 5648 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:40:04.0520 5648 Beep - ok
18:40:04.0590 5648 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:40:04.0596 5648 BFE - ok
18:40:04.0836 5648 [ F14F048B4D05FBCE536250EA74BF9FDC ] BHDrvx64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys
18:40:04.0849 5648 BHDrvx64 - ok
18:40:04.0893 5648 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:40:04.0900 5648 BITS - ok
18:40:04.0928 5648 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:40:04.0929 5648 blbdrive - ok
18:40:04.0979 5648 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:40:04.0980 5648 bowser - ok
18:40:04.0992 5648 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:40:04.0992 5648 BrFiltLo - ok
18:40:05.0004 5648 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:40:05.0004 5648 BrFiltUp - ok
18:40:05.0047 5648 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:40:05.0048 5648 BridgeMP - ok
18:40:05.0080 5648 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:40:05.0082 5648 Browser - ok
18:40:05.0094 5648 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:40:05.0096 5648 Brserid - ok
18:40:05.0108 5648 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:40:05.0109 5648 BrSerWdm - ok
18:40:05.0123 5648 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:40:05.0123 5648 BrUsbMdm - ok
18:40:05.0135 5648 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:40:05.0136 5648 BrUsbSer - ok
18:40:05.0141 5648 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:40:05.0142 5648 BTHMODEM - ok
18:40:05.0159 5648 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:40:05.0161 5648 bthserv - ok
18:40:05.0264 5648 [ BE531939BB6D153DB63DBBFBD398A713 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
18:40:05.0269 5648 c2cautoupdatesvc - ok
18:40:05.0337 5648 [ 33E9F08F675EF94633C8EF8A7C4EADF3 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
18:40:05.0352 5648 c2cpnrsvc - ok
18:40:05.0373 5648 catchme - ok
18:40:05.0455 5648 [ 0510396A957E9FD7205BA62D3CAE4528 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys
18:40:05.0457 5648 ccSet_NIS - ok
18:40:05.0460 5648 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:40:05.0461 5648 cdfs - ok
18:40:05.0503 5648 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:40:05.0504 5648 cdrom - ok
18:40:05.0536 5648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:40:05.0537 5648 CertPropSvc - ok
18:40:05.0546 5648 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:40:05.0547 5648 circlass - ok
18:40:05.0587 5648 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:40:05.0590 5648 CLFS - ok
18:40:05.0662 5648 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:40:05.0663 5648 clr_optimization_v2.0.50727_32 - ok
18:40:05.0695 5648 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:40:05.0696 5648 clr_optimization_v2.0.50727_64 - ok
18:40:05.0751 5648 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:40:05.0771 5648 clr_optimization_v4.0.30319_32 - ok
18:40:05.0803 5648 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:40:05.0804 5648 clr_optimization_v4.0.30319_64 - ok
18:40:05.0817 5648 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:40:05.0817 5648 CmBatt - ok
18:40:05.0851 5648 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:40:05.0852 5648 cmdide - ok
18:40:05.0896 5648 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
18:40:05.0900 5648 CNG - ok
18:40:05.0916 5648 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:40:05.0917 5648 Compbatt - ok
18:40:05.0949 5648 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:40:05.0950 5648 CompositeBus - ok
18:40:05.0953 5648 COMSysApp - ok
18:40:05.0969 5648 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:40:05.0970 5648 crcdisk - ok
18:40:06.0034 5648 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
18:40:06.0035 5648 Creative ALchemy AL6 Licensing Service - ok
18:40:06.0046 5648 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
18:40:06.0047 5648 Creative Audio Engine Licensing Service - ok
18:40:06.0082 5648 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:40:06.0084 5648 CryptSvc - ok
18:40:06.0144 5648 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:40:06.0148 5648 CSC - ok
18:40:06.0195 5648 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:40:06.0200 5648 CscService - ok
18:40:06.0225 5648 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
18:40:06.0226 5648 CTAudSvcService - ok
18:40:06.0267 5648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:40:06.0269 5648 DcomLaunch - ok
18:40:06.0287 5648 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:40:06.0289 5648 defragsvc - ok
18:40:06.0332 5648 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:40:06.0333 5648 DfsC - ok
18:40:06.0382 5648 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:40:06.0385 5648 Dhcp - ok
18:40:06.0425 5648 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:40:06.0427 5648 discache - ok
18:40:06.0433 5648 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:40:06.0435 5648 Disk - ok
18:40:06.0473 5648 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:40:06.0475 5648 Dnscache - ok
18:40:06.0519 5648 [ FA122BC1451B1B35B7814FBE1ACF1924 ] Dokan C:\Windows\system32\drivers\dokan.sys
18:40:06.0520 5648 Dokan - ok
18:40:06.0607 5648 [ 8C856E531A1170F53AC6844E89CD0B5F ] DokanMounter C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
18:40:06.0607 5648 DokanMounter - ok
18:40:06.0647 5648 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:40:06.0654 5648 dot3svc - ok
18:40:06.0692 5648 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:40:06.0694 5648 DPS - ok
18:40:06.0737 5648 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:40:06.0738 5648 drmkaud - ok
18:40:06.0785 5648 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:40:06.0786 5648 dtsoftbus01 - ok
18:40:06.0838 5648 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:40:06.0846 5648 DXGKrnl - ok
18:40:06.0862 5648 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:40:06.0864 5648 EapHost - ok
18:40:06.0919 5648 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:40:06.0982 5648 ebdrv - ok
18:40:07.0027 5648 [ 1B7AA375F711F66D5FF2B855F9EC987F ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:40:07.0031 5648 eeCtrl - ok
18:40:07.0065 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
18:40:07.0066 5648 EFS - ok
18:40:07.0129 5648 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:40:07.0144 5648 ehRecvr - ok
18:40:07.0165 5648 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:40:07.0166 5648 ehSched - ok
18:40:07.0189 5648 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:40:07.0193 5648 elxstor - ok
18:40:07.0229 5648 [ 7230C8B80DDE1F0524C353240B78CC0E ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:40:07.0231 5648 EraserUtilRebootDrv - ok
18:40:07.0259 5648 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:40:07.0260 5648 ErrDev - ok
18:40:07.0310 5648 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:40:07.0314 5648 EventSystem - ok
18:40:07.0328 5648 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:40:07.0330 5648 exfat - ok
18:40:07.0361 5648 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:40:07.0363 5648 fastfat - ok
18:40:07.0402 5648 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:40:07.0446 5648 Fax - ok
18:40:07.0463 5648 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:40:07.0464 5648 fdc - ok
18:40:07.0479 5648 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:40:07.0480 5648 fdPHost - ok
18:40:07.0489 5648 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:40:07.0490 5648 FDResPub - ok
18:40:07.0526 5648 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:40:07.0527 5648 FileInfo - ok
18:40:07.0540 5648 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:40:07.0541 5648 Filetrace - ok
18:40:07.0550 5648 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:40:07.0551 5648 flpydisk - ok
18:40:07.0589 5648 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:40:07.0599 5648 FltMgr - ok
18:40:07.0655 5648 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
18:40:07.0664 5648 FontCache - ok
18:40:07.0739 5648 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:40:07.0750 5648 FontCache3.0.0.0 - ok
18:40:07.0765 5648 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:40:07.0766 5648 FsDepends - ok
18:40:07.0802 5648 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:40:07.0802 5648 Fs_Rec - ok
18:40:07.0851 5648 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:40:07.0853 5648 fvevol - ok
18:40:07.0863 5648 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:40:07.0864 5648 gagp30kx - ok
18:40:07.0904 5648 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:40:07.0922 5648 gpsvc - ok
18:40:07.0992 5648 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:07.0993 5648 gupdate - ok
18:40:07.0996 5648 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:07.0997 5648 gupdatem - ok
18:40:08.0024 5648 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:40:08.0026 5648 gusvc - ok
18:40:08.0061 5648 [ F8F0851D336C3B88DBD7232B6348E09A ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:40:08.0061 5648 hamachi - ok
18:40:08.0069 5648 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:40:08.0070 5648 hcw85cir - ok
18:40:08.0105 5648 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:40:08.0108 5648 HdAudAddService - ok
18:40:08.0119 5648 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:40:08.0121 5648 HDAudBus - ok
18:40:08.0132 5648 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:40:08.0133 5648 HidBatt - ok
18:40:08.0155 5648 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:40:08.0156 5648 HidBth - ok
18:40:08.0165 5648 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:40:08.0166 5648 HidIr - ok
18:40:08.0198 5648 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
18:40:08.0199 5648 hidserv - ok
18:40:08.0218 5648 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:40:08.0219 5648 HidUsb - ok
18:40:08.0245 5648 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:40:08.0265 5648 hkmsvc - ok
18:40:08.0297 5648 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:40:08.0300 5648 HomeGroupListener - ok
18:40:08.0339 5648 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:40:08.0341 5648 HomeGroupProvider - ok
18:40:08.0381 5648 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:40:08.0382 5648 HpSAMD - ok
18:40:08.0467 5648 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:40:08.0486 5648 HTTP - ok
18:40:08.0528 5648 [ D7E0591E2BA1289C875A9D948377441E ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO64A.SYS
18:40:08.0529 5648 HWiNFO32 - ok
18:40:08.0577 5648 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:40:08.0578 5648 hwpolicy - ok
18:40:08.0610 5648 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:40:08.0611 5648 i8042prt - ok
18:40:08.0697 5648 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:40:08.0701 5648 iaStorV - ok
18:40:08.0734 5648 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:40:08.0741 5648 idsvc - ok
18:40:08.0888 5648 [ DAAA22256BCA5E6EB74CD379F3092AAA ] IDSVia64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys
18:40:08.0892 5648 IDSVia64 - ok
18:40:08.0911 5648 IEEtwCollectorService - ok
18:40:08.0934 5648 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:40:08.0935 5648 iirsp - ok
18:40:08.0982 5648 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
18:40:08.0990 5648 IKEEXT - ok
18:40:09.0024 5648 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:40:09.0042 5648 intelide - ok
18:40:09.0059 5648 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:40:09.0060 5648 intelppm - ok
18:40:09.0075 5648 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:40:09.0077 5648 IPBusEnum - ok
18:40:09.0110 5648 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:40:09.0111 5648 IpFilterDriver - ok
18:40:09.0149 5648 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:40:09.0154 5648 iphlpsvc - ok
18:40:09.0195 5648 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:40:09.0196 5648 IPMIDRV - ok
18:40:09.0209 5648 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:40:09.0210 5648 IPNAT - ok
18:40:09.0223 5648 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:40:09.0224 5648 IRENUM - ok
18:40:09.0240 5648 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:40:09.0241 5648 isapnp - ok
18:40:09.0313 5648 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:40:09.0332 5648 iScsiPrt - ok
18:40:09.0366 5648 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
18:40:09.0367 5648 JRAID - ok
18:40:09.0376 5648 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:40:09.0377 5648 kbdclass - ok
18:40:09.0408 5648 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:40:09.0408 5648 kbdhid - ok
18:40:09.0415 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
18:40:09.0415 5648 KeyIso - ok
18:40:09.0448 5648 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:40:09.0449 5648 KSecDD - ok
18:40:09.0456 5648 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:40:09.0458 5648 KSecPkg - ok
18:40:09.0463 5648 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:40:09.0464 5648 ksthunk - ok
18:40:09.0483 5648 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:40:09.0487 5648 KtmRm - ok
18:40:09.0535 5648 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:40:09.0537 5648 LanmanServer - ok
18:40:09.0572 5648 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:40:09.0574 5648 LanmanWorkstation - ok
18:40:09.0605 5648 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:40:09.0606 5648 lltdio - ok
18:40:09.0623 5648 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:40:09.0626 5648 lltdsvc - ok
18:40:09.0634 5648 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:40:09.0635 5648 lmhosts - ok
18:40:09.0646 5648 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:40:09.0648 5648 LSI_FC - ok
18:40:09.0656 5648 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:40:09.0658 5648 LSI_SAS - ok
18:40:09.0668 5648 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:40:09.0669 5648 LSI_SAS2 - ok
18:40:09.0690 5648 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:40:09.0691 5648 LSI_SCSI - ok
18:40:09.0732 5648 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:40:09.0733 5648 luafv - ok
18:40:09.0764 5648 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:40:09.0776 5648 Mcx2Svc - ok
18:40:09.0789 5648 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:40:09.0790 5648 megasas - ok
18:40:09.0806 5648 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:40:09.0808 5648 MegaSR - ok
18:40:09.0826 5648 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:40:09.0827 5648 MMCSS - ok
18:40:09.0838 5648 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:40:09.0839 5648 Modem - ok
18:40:09.0857 5648 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:40:09.0858 5648 monitor - ok
18:40:09.0875 5648 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:40:09.0876 5648 mouclass - ok
18:40:09.0893 5648 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:40:09.0893 5648 mouhid - ok
18:40:09.0915 5648 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:40:09.0916 5648 mountmgr - ok
18:40:09.0931 5648 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:40:09.0933 5648 mpio - ok
18:40:09.0950 5648 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:40:09.0951 5648 mpsdrv - ok
18:40:09.0987 5648 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:40:09.0994 5648 MpsSvc - ok
18:40:10.0031 5648 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:40:10.0033 5648 MRxDAV - ok
18:40:10.0094 5648 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:40:10.0096 5648 mrxsmb - ok
18:40:10.0141 5648 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:40:10.0143 5648 mrxsmb10 - ok
18:40:10.0151 5648 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:40:10.0152 5648 mrxsmb20 - ok
18:40:10.0187 5648 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:40:10.0188 5648 msahci - ok
18:40:10.0221 5648 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:40:10.0223 5648 msdsm - ok
18:40:10.0239 5648 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:40:10.0241 5648 MSDTC - ok
18:40:10.0274 5648 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:40:10.0275 5648 Msfs - ok
18:40:10.0281 5648 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:40:10.0282 5648 mshidkmdf - ok
18:40:10.0314 5648 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:40:10.0315 5648 msisadrv - ok
18:40:10.0327 5648 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:40:10.0329 5648 MSiSCSI - ok
18:40:10.0332 5648 msiserver - ok
18:40:10.0345 5648 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:40:10.0346 5648 MSKSSRV - ok
18:40:10.0374 5648 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:40:10.0374 5648 MSPCLOCK - ok
18:40:10.0384 5648 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:40:10.0385 5648 MSPQM - ok
18:40:10.0418 5648 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:40:10.0421 5648 MsRPC - ok
18:40:10.0436 5648 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:40:10.0436 5648 mssmbios - ok
18:40:10.0447 5648 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:40:10.0464 5648 MSTEE - ok
18:40:10.0484 5648 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:40:10.0484 5648 MTConfig - ok
18:40:10.0502 5648 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
18:40:10.0503 5648 MTsensor - ok
18:40:10.0529 5648 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:40:10.0530 5648 Mup - ok
18:40:10.0572 5648 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:40:10.0577 5648 napagent - ok
18:40:10.0598 5648 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:40:10.0601 5648 NativeWifiP - ok
18:40:10.0690 5648 [ 702E07EC32F96ACDB873E9A5465D4401 ] NAVENG C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\ENG64.SYS
18:40:10.0691 5648 NAVENG - ok
18:40:10.0880 5648 [ 302EA314A1AF0D7CEF0A3D0195F79561 ] NAVEX15 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\EX64.SYS
18:40:10.0889 5648 NAVEX15 - ok
18:40:10.0980 5648 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:40:11.0000 5648 NDIS - ok
18:40:11.0020 5648 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:40:11.0021 5648 NdisCap - ok
18:40:11.0036 5648 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:40:11.0037 5648 NdisTapi - ok
18:40:11.0072 5648 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:40:11.0073 5648 Ndisuio - ok
18:40:11.0108 5648 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:40:11.0110 5648 NdisWan - ok
18:40:11.0149 5648 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:40:11.0150 5648 NDProxy - ok
18:40:11.0163 5648 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:40:11.0164 5648 NetBIOS - ok
18:40:11.0212 5648 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:40:11.0214 5648 NetBT - ok
18:40:11.0223 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
18:40:11.0224 5648 Netlogon - ok
18:40:11.0246 5648 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:40:11.0249 5648 Netman - ok
18:40:11.0317 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0319 5648 NetMsmqActivator - ok
18:40:11.0322 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0323 5648 NetPipeActivator - ok
18:40:11.0361 5648 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:40:11.0363 5648 netprofm - ok
18:40:11.0367 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0368 5648 NetTcpActivator - ok
18:40:11.0383 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0384 5648 NetTcpPortSharing - ok
18:40:11.0402 5648 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:40:11.0403 5648 nfrd960 - ok
18:40:11.0568 5648 [ C87442B6D17912785DC143CEDCA508C9 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
18:40:11.0569 5648 NIS - ok
18:40:11.0630 5648 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:40:11.0651 5648 NlaSvc - ok
18:40:11.0670 5648 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:40:11.0671 5648 Npfs - ok
18:40:11.0681 5648 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:40:11.0683 5648 nsi - ok
18:40:11.0694 5648 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:40:11.0695 5648 nsiproxy - ok
18:40:11.0750 5648 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:40:11.0766 5648 Ntfs - ok
18:40:11.0793 5648 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:40:11.0793 5648 Null - ok
18:40:11.0836 5648 [ 8EBCB9165EE7F1571842F4D9D624A74C ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
18:40:11.0837 5648 nusb3hub - ok
18:40:11.0868 5648 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:40:11.0870 5648 nusb3xhc - ok
18:40:11.0916 5648 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:40:11.0917 5648 nvraid - ok
18:40:11.0936 5648 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:40:11.0938 5648 nvstor - ok
18:40:11.0971 5648 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:40:11.0972 5648 nv_agp - ok
18:40:12.0061 5648 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:40:12.0074 5648 odserv - ok
18:40:12.0117 5648 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:40:12.0118 5648 ohci1394 - ok
18:40:12.0144 5648 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:40:12.0145 5648 ose - ok
18:40:12.0165 5648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:40:12.0169 5648 p2pimsvc - ok
18:40:12.0193 5648 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:40:12.0197 5648 p2psvc - ok
18:40:12.0208 5648 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:40:12.0209 5648 Parport - ok
18:40:12.0244 5648 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:40:12.0245 5648 partmgr - ok
18:40:12.0259 5648 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:40:12.0261 5648 PcaSvc - ok
18:40:12.0271 5648 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:40:12.0272 5648 pci - ok
18:40:12.0307 5648 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:40:12.0308 5648 pciide - ok
18:40:12.0327 5648 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:40:12.0329 5648 pcmcia - ok
18:40:12.0362 5648 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:40:12.0363 5648 pcw - ok
18:40:12.0379 5648 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:40:12.0385 5648 PEAUTH - ok
18:40:12.0426 5648 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:40:12.0437 5648 PeerDistSvc - ok
18:40:12.0500 5648 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:40:12.0502 5648 PerfHost - ok
18:40:12.0554 5648 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:40:12.0566 5648 pla - ok
18:40:12.0625 5648 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:40:12.0629 5648 PlugPlay - ok
18:40:12.0661 5648 PnkBstrA - ok
18:40:12.0680 5648 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:40:12.0682 5648 PNRPAutoReg - ok
18:40:12.0699 5648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:40:12.0700 5648 PNRPsvc - ok
18:40:12.0745 5648 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:40:12.0750 5648 PolicyAgent - ok
18:40:12.0786 5648 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:40:12.0788 5648 Power - ok
18:40:12.0837 5648 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:40:12.0839 5648 PptpMiniport - ok
18:40:12.0849 5648 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:40:12.0850 5648 Processor - ok
18:40:12.0891 5648 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:40:12.0894 5648 ProfSvc - ok
18:40:12.0906 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
18:40:12.0907 5648 ProtectedStorage - ok
18:40:12.0941 5648 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:40:12.0942 5648 Psched - ok
18:40:12.0981 5648 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:40:12.0993 5648 ql2300 - ok
18:40:13.0012 5648 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:40:13.0014 5648 ql40xx - ok
18:40:13.0040 5648 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:40:13.0043 5648 QWAVE - ok
18:40:13.0055 5648 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:40:13.0056 5648 QWAVEdrv - ok
18:40:13.0072 5648 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:40:13.0073 5648 RasAcd - ok
18:40:13.0103 5648 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:40:13.0111 5648 RasAgileVpn - ok
18:40:13.0125 5648 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:40:13.0127 5648 RasAuto - ok
18:40:13.0160 5648 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:40:13.0162 5648 Rasl2tp - ok
18:40:13.0195 5648 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:40:13.0199 5648 RasMan - ok
18:40:13.0206 5648 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:40:13.0207 5648 RasPppoe - ok
18:40:13.0219 5648 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:40:13.0220 5648 RasSstp - ok
18:40:13.0256 5648 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:40:13.0259 5648 rdbss - ok
18:40:13.0271 5648 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:40:13.0272 5648 rdpbus - ok
18:40:13.0283 5648 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:40:13.0284 5648 RDPCDD - ok
18:40:13.0328 5648 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:40:13.0330 5648 RDPDR - ok
18:40:13.0346 5648 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:40:13.0347 5648 RDPENCDD - ok
18:40:13.0356 5648 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:40:13.0356 5648 RDPREFMP - ok
18:40:13.0405 5648 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:40:13.0406 5648 RdpVideoMiniport - ok
18:40:13.0440 5648 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:40:13.0442 5648 RDPWD - ok
18:40:13.0479 5648 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:40:13.0481 5648 rdyboost - ok
18:40:13.0500 5648 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:40:13.0501 5648 RemoteAccess - ok
18:40:13.0512 5648 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:40:13.0515 5648 RemoteRegistry - ok
18:40:13.0522 5648 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:40:13.0523 5648 RpcEptMapper - ok
18:40:13.0543 5648 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:40:13.0544 5648 RpcLocator - ok
18:40:13.0583 5648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:40:13.0585 5648 RpcSs - ok
18:40:13.0600 5648 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:40:13.0601 5648 rspndr - ok
18:40:13.0637 5648 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:40:13.0638 5648 s3cap - ok
18:40:13.0648 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
18:40:13.0648 5648 SamSs - ok
18:40:13.0685 5648 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:40:13.0686 5648 sbp2port - ok
18:40:13.0704 5648 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:40:13.0706 5648 SCardSvr - ok
18:40:13.0739 5648 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:40:13.0740 5648 scfilter - ok
18:40:13.0786 5648 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:40:13.0795 5648 Schedule - ok
18:40:13.0827 5648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:40:13.0828 5648 SCPolicySvc - ok
18:40:13.0865 5648 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:40:13.0879 5648 SDRSVC - ok
18:40:13.0902 5648 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:40:13.0903 5648 secdrv - ok
18:40:13.0931 5648 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:40:13.0933 5648 seclogon - ok
18:40:13.0966 5648 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:40:13.0967 5648 SENS - ok
18:40:13.0976 5648 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:40:13.0977 5648 SensrSvc - ok
18:40:13.0991 5648 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:40:13.0991 5648 Serenum - ok
18:40:14.0003 5648 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:40:14.0005 5648 Serial - ok
18:40:14.0033 5648 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:40:14.0033 5648 sermouse - ok
18:40:14.0156 5648 [ 6766E06DDD621A7B4077E6F523D562E4 ] Serviio C:\Program Files (x86)\Serviio\bin\ServiioService.exe
18:40:14.0158 5648 Serviio - ok
18:40:14.0204 5648 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:40:14.0206 5648 SessionEnv - ok
18:40:14.0240 5648 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:40:14.0241 5648 sffdisk - ok
18:40:14.0248 5648 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:40:14.0249 5648 sffp_mmc - ok
18:40:14.0252 5648 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:40:14.0253 5648 sffp_sd - ok
18:40:14.0263 5648 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:40:14.0264 5648 sfloppy - ok
18:40:14.0299 5648 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:40:14.0302 5648 SharedAccess - ok
18:40:14.0349 5648 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:40:14.0353 5648 ShellHWDetection - ok
18:40:14.0398 5648 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:40:14.0399 5648 SiSRaid2 - ok
18:40:14.0411 5648 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:40:14.0412 5648 SiSRaid4 - ok
18:40:14.0498 5648 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:40:14.0500 5648 SkypeUpdate - ok
18:40:14.0510 5648 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:40:14.0511 5648 Smb - ok
18:40:14.0552 5648 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:40:14.0553 5648 SNMPTRAP - ok
18:40:14.0558 5648 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:40:14.0559 5648 spldr - ok
18:40:14.0629 5648 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:40:14.0646 5648 Spooler - ok
18:40:14.0721 5648 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:40:14.0783 5648 sppsvc - ok
18:40:14.0811 5648 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:40:14.0813 5648 sppuinotify - ok
18:40:14.0927 5648 [ 8BFD1752AAA15BF47D668E9AC5AF96FB ] SRTSP C:\Windows\system32\drivers\NISx64\1501000.012\SRTSP64.SYS
18:40:14.0934 5648 SRTSP - ok
18:40:14.0953 5648 [ B18CE01B9C09C59422BA7C7064248B35 ] SRTSPX C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS
18:40:14.0953 5648 SRTSPX - ok
18:40:14.0997 5648 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:40:15.0001 5648 srv - ok
18:40:15.0044 5648 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:40:15.0048 5648 srv2 - ok
18:40:15.0056 5648 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:40:15.0057 5648 srvnet - ok
18:40:15.0068 5648 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:40:15.0070 5648 SSDPSRV - ok
18:40:15.0089 5648 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:40:15.0091 5648 SstpSvc - ok
18:40:15.0153 5648 [ 2F3B5A3567FFB343D8867C3D34C687F1 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:40:15.0158 5648 Steam Client Service - ok
18:40:15.0174 5648 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:40:15.0175 5648 stexstor - ok
18:40:15.0226 5648 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:40:15.0231 5648 stisvc - ok
18:40:15.0270 5648 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:40:15.0271 5648 storflt - ok
18:40:15.0310 5648 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
18:40:15.0311 5648 StorSvc - ok
18:40:15.0354 5648 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:40:15.0370 5648 storvsc - ok
18:40:15.0402 5648 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:40:15.0403 5648 swenum - ok
18:40:15.0477 5648 SwitchBoard - ok
18:40:15.0500 5648 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:40:15.0504 5648 swprv - ok
18:40:15.0587 5648 [ 5C9EE2303CA7F267665D75237862B39C ] SymDS C:\Windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS
18:40:15.0592 5648 SymDS - ok
18:40:15.0638 5648 [ 08AF51153E441687130B759A8F6892ED ] SymEFA C:\Windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS
18:40:15.0647 5648 SymEFA - ok
18:40:15.0690 5648 [ 97E11C50CE52277B377396EA8838E539 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:40:15.0692 5648 SymEvent - ok
18:40:15.0741 5648 [ 48C2934683CBD06F662B088EEF49EF6A ] SymIRON C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS
18:40:15.0743 5648 SymIRON - ok
18:40:15.0780 5648 [ 78A2F073AD9EA5EBC04A70931EA36C9A ] SymNetS C:\Windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS
18:40:15.0784 5648 SymNetS - ok
18:40:15.0834 5648 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:40:15.0851 5648 SysMain - ok
18:40:15.0902 5648 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:40:15.0903 5648 TabletInputService - ok
18:40:15.0932 5648 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
18:40:15.0933 5648 taphss - ok
18:40:15.0988 5648 [ 95206567C7CA71A3D485146824224C40 ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
18:40:15.0989 5648 taphss6 - ok
18:40:16.0031 5648 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:40:16.0035 5648 TapiSrv - ok
18:40:16.0050 5648 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:40:16.0052 5648 TBS - ok
18:40:16.0145 5648 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:40:16.0160 5648 Tcpip - ok
18:40:16.0212 5648 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:40:16.0219 5648 TCPIP6 - ok
18:40:16.0262 5648 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:40:16.0271 5648 tcpipreg - ok
18:40:16.0292 5648 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:40:16.0293 5648 TDPIPE - ok
18:40:16.0324 5648 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:40:16.0325 5648 TDTCP - ok
18:40:16.0366 5648 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:40:16.0367 5648 tdx - ok
18:40:16.0401 5648 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:40:16.0402 5648 TermDD - ok
18:40:16.0449 5648 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:40:16.0456 5648 TermService - ok
18:40:16.0469 5648 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:40:16.0471 5648 Themes - ok
18:40:16.0492 5648 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:40:16.0493 5648 THREADORDER - ok
18:40:16.0502 5648 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:40:16.0504 5648 TrkWks - ok
18:40:16.0573 5648 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:40:16.0577 5648 TrustedInstaller - ok
18:40:16.0619 5648 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:40:16.0620 5648 tssecsrv - ok
18:40:16.0668 5648 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:40:16.0669 5648 TsUsbFlt - ok
18:40:16.0712 5648 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:40:16.0714 5648 tunnel - ok
18:40:16.0727 5648 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:40:16.0728 5648 uagp35 - ok
18:40:16.0766 5648 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:40:16.0769 5648 udfs - ok
18:40:16.0776 5648 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:40:16.0777 5648 UI0Detect - ok
18:40:16.0789 5648 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:40:16.0790 5648 uliagpkx - ok
18:40:16.0828 5648 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:40:16.0829 5648 umbus - ok
18:40:16.0836 5648 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:40:16.0837 5648 UmPass - ok
18:40:16.0855 5648 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
18:40:16.0858 5648 UmRdpService - ok
18:40:16.0884 5648 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:40:16.0888 5648 upnphost - ok
18:40:16.0926 5648 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:40:16.0928 5648 usbccgp - ok
18:40:16.0967 5648 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:40:16.0968 5648 usbcir - ok
18:40:17.0000 5648 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:40:17.0001 5648 usbehci - ok
18:40:17.0018 5648 [ 858BE9C0E498C8E505E198E17EECE0D9 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
18:40:17.0018 5648 usbfilter - ok
18:40:17.0037 5648 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:40:17.0040 5648 usbhub - ok
18:40:17.0063 5648 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:40:17.0064 5648 usbohci - ok
18:40:17.0076 5648 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:40:17.0077 5648 usbprint - ok
18:40:17.0114 5648 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:40:17.0115 5648 USBSTOR - ok
18:40:17.0148 5648 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:40:17.0152 5648 usbuhci - ok
18:40:17.0167 5648 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:40:17.0169 5648 UxSms - ok
18:40:17.0181 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
18:40:17.0181 5648 VaultSvc - ok
18:40:17.0226 5648 [ 3A4B01C2BDB07DFEF29B0B369487503A ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
18:40:17.0226 5648 VCSVADHWSer - ok
18:40:17.0238 5648 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:40:17.0239 5648 vdrvroot - ok
18:40:17.0274 5648 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:40:17.0280 5648 vds - ok
18:40:17.0291 5648 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:40:17.0291 5648 vga - ok
18:40:17.0308 5648 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:40:17.0309 5648 VgaSave - ok
18:40:17.0323 5648 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:40:17.0325 5648 vhdmp - ok
18:40:17.0384 5648 [ DFDF7F9CAA50EE72A633EA4BBD65A557 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:40:17.0394 5648 VIAHdAudAddService - ok
18:40:17.0426 5648 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:40:17.0427 5648 viaide - ok
18:40:17.0466 5648 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:40:17.0468 5648 vmbus - ok
18:40:17.0479 5648 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:40:17.0479 5648 VMBusHID - ok
18:40:17.0487 5648 [ 754C8BF43F0DD4B54865F174A62761E9 ] VMfilt C:\Windows\system32\drivers\VMfilt64.sys
18:40:17.0488 5648 VMfilt - ok
18:40:17.0497 5648 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:40:17.0499 5648 volmgr - ok
18:40:17.0539 5648 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:40:17.0542 5648 volmgrx - ok
18:40:17.0553 5648 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:40:17.0556 5648 volsnap - ok
18:40:17.0571 5648 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:40:17.0572 5648 vsmraid - ok
18:40:17.0642 5648 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:40:17.0654 5648 VSS - ok
18:40:17.0697 5648 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:40:17.0698 5648 vwifibus - ok
18:40:17.0708 5648 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:40:17.0712 5648 W32Time - ok
18:40:17.0728 5648 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:40:17.0728 5648 WacomPen - ok
18:40:17.0739 5648 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:40:17.0741 5648 WANARP - ok
18:40:17.0758 5648 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:40:17.0758 5648 Wanarpv6 - ok
18:40:17.0843 5648 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:40:17.0854 5648 WatAdminSvc - ok
18:40:17.0909 5648 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:40:17.0926 5648 wbengine - ok
18:40:17.0960 5648 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:40:17.0963 5648 WbioSrvc - ok
18:40:18.0001 5648 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:40:18.0005 5648 wcncsvc - ok
18:40:18.0014 5648 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:40:18.0015 5648 WcsPlugInService - ok
18:40:18.0023 5648 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:40:18.0024 5648 Wd - ok
18:40:18.0071 5648 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:40:18.0077 5648 Wdf01000 - ok
18:40:18.0090 5648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:40:18.0091 5648 WdiServiceHost - ok
18:40:18.0094 5648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:40:18.0095 5648 WdiSystemHost - ok
18:40:18.0148 5648 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
18:40:18.0156 5648 WebClient - ok
18:40:18.0178 5648 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:40:18.0181 5648 Wecsvc - ok
18:40:18.0189 5648 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:40:18.0191 5648 wercplsupport - ok
18:40:18.0203 5648 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:40:18.0205 5648 WerSvc - ok
18:40:18.0238 5648 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:40:18.0238 5648 WfpLwf - ok
18:40:18.0249 5648 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:40:18.0250 5648 WIMMount - ok
18:40:18.0330 5648 WinDefend - ok
18:40:18.0350 5648 WinHttpAutoProxySvc - ok
18:40:18.0420 5648 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:40:18.0423 5648 Winmgmt - ok
18:40:18.0562 5648 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:40:18.0579 5648 WinRM - ok
18:40:18.0618 5648 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:40:18.0619 5648 WinUsb - ok
18:40:18.0646 5648 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:40:18.0653 5648 Wlansvc - ok
18:40:18.0899 5648 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:40:18.0927 5648 wlidsvc - ok
18:40:18.0971 5648 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:40:18.0972 5648 WmiAcpi - ok
18:40:18.0998 5648 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:40:19.0010 5648 wmiApSrv - ok
18:40:19.0024 5648 WMPNetworkSvc - ok
18:40:19.0035 5648 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:40:19.0037 5648 WPCSvc - ok
18:40:19.0068 5648 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:40:19.0070 5648 WPDBusEnum - ok
18:40:19.0093 5648 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:40:19.0106 5648 ws2ifsl - ok
18:40:19.0143 5648 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
18:40:19.0145 5648 wscsvc - ok
18:40:19.0148 5648 WSearch - ok
18:40:19.0214 5648 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:40:19.0244 5648 wuauserv - ok
18:40:19.0300 5648 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:40:19.0301 5648 WudfPf - ok
18:40:19.0315 5648 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:40:19.0317 5648 WUDFRd - ok
18:40:19.0353 5648 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:40:19.0355 5648 wudfsvc - ok
18:40:19.0410 5648 [ 04F82965C09CBDF646B487E145060301 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:40:19.0413 5648 WwanSvc - ok
18:40:19.0439 5648 XFDriver64 - ok
18:40:19.0488 5648 [ B2818BFAB7817F7E7EE886F58B15B35C ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:40:19.0491 5648 yukonw7 - ok
18:40:19.0494 5648 ================ Scan global ===============================
18:40:19.0541 5648 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:40:19.0583 5648 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:40:19.0589 5648 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:40:19.0610 5648 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:40:19.0630 5648 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:40:19.0634 5648 [Global] - ok
18:40:19.0634 5648 ================ Scan MBR ==================================
18:40:19.0653 5648 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:40:20.0221 5648 \Device\Harddisk0\DR0 - ok
18:40:20.0223 5648 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:40:20.0236 5648 \Device\Harddisk1\DR1 - ok
18:40:20.0236 5648 ================ Scan VBR ==================================
18:40:20.0240 5648 [ 9E72AA98BE90BBA265589B95D28C05E1 ] \Device\Harddisk0\DR0\Partition1
18:40:20.0241 5648 \Device\Harddisk0\DR0\Partition1 - ok
18:40:20.0262 5648 [ 3C56551648889F717C769584D35BB9A6 ] \Device\Harddisk0\DR0\Partition2
18:40:20.0276 5648 \Device\Harddisk0\DR0\Partition2 - ok
18:40:20.0280 5648 [ 3C778B33D7D7D063CFA8896BB63063A5 ] \Device\Harddisk1\DR1\Partition1
18:40:20.0281 5648 \Device\Harddisk1\DR1\Partition1 - ok
18:40:20.0281 5648 ============================================================
Bohužel log z TDSSKiller musím vložit na 2 části.
TDSSKiller:
18:39:46.0038 4476 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:39:48.0055 4476 ============================================================
18:39:48.0055 4476 Current date / time: 2014/03/20 18:39:48.0055
18:39:48.0055 4476 SystemInfo:
18:39:48.0055 4476
18:39:48.0055 4476 OS Version: 6.1.7601 ServicePack: 1.0
18:39:48.0055 4476 Product type: Workstation
18:39:48.0055 4476 ComputerName: GAME-PC
18:39:48.0055 4476 UserName: spravce
18:39:48.0055 4476 Windows directory: C:\Windows
18:39:48.0056 4476 System windows directory: C:\Windows
18:39:48.0056 4476 Running under WOW64
18:39:48.0056 4476 Processor architecture: Intel x64
18:39:48.0056 4476 Number of processors: 6
18:39:48.0056 4476 Page size: 0x1000
18:39:48.0056 4476 Boot type: Normal boot
18:39:48.0056 4476 ============================================================
18:39:49.0504 4476 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:39:49.0514 4476 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:39:49.0518 4476 ============================================================
18:39:49.0518 4476 \Device\Harddisk0\DR0:
18:39:49.0518 4476 MBR partitions:
18:39:49.0518 4476 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C13870A
18:39:49.0537 4476 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C138788, BlocksNum 0x1E2485F8
18:39:49.0537 4476 \Device\Harddisk1\DR1:
18:39:49.0538 4476 MBR partitions:
18:39:49.0538 4476 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
18:39:49.0538 4476 ============================================================
18:39:49.0553 4476 C: <-> \Device\Harddisk0\DR0\Partition2
18:39:49.0576 4476 D: <-> \Device\Harddisk0\DR0\Partition1
18:39:49.0594 4476 E: <-> \Device\Harddisk1\DR1\Partition1
18:39:49.0594 4476 ============================================================
18:39:49.0594 4476 Initialize success
18:39:49.0594 4476 ============================================================
18:40:01.0679 5648 ============================================================
18:40:01.0679 5648 Scan started
18:40:01.0679 5648 Mode: Manual;
18:40:01.0679 5648 ============================================================
18:40:02.0260 5648 ================ Scan system memory ========================
18:40:02.0260 5648 System memory - ok
18:40:02.0260 5648 ================ Scan services =============================
18:40:02.0499 5648 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:40:02.0501 5648 1394ohci - ok
18:40:02.0550 5648 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:40:02.0553 5648 ACPI - ok
18:40:02.0590 5648 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:40:02.0591 5648 AcpiPmi - ok
18:40:02.0694 5648 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:40:02.0695 5648 AdobeARMservice - ok
18:40:02.0817 5648 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:40:02.0820 5648 AdobeFlashPlayerUpdateSvc - ok
18:40:02.0847 5648 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:40:02.0851 5648 adp94xx - ok
18:40:02.0869 5648 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:40:02.0872 5648 adpahci - ok
18:40:02.0887 5648 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:40:02.0889 5648 adpu320 - ok
18:40:02.0912 5648 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:40:02.0913 5648 AeLookupSvc - ok
18:40:02.0969 5648 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
18:40:02.0973 5648 AFD - ok
18:40:03.0011 5648 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:40:03.0012 5648 agp440 - ok
18:40:03.0021 5648 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:40:03.0022 5648 ALG - ok
18:40:03.0057 5648 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:40:03.0058 5648 aliide - ok
18:40:03.0091 5648 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:40:03.0092 5648 AMD External Events Utility - ok
18:40:03.0181 5648 AMD FUEL Service - ok
18:40:03.0203 5648 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:40:03.0204 5648 amdide - ok
18:40:03.0230 5648 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
18:40:03.0231 5648 amdiox64 - ok
18:40:03.0242 5648 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:40:03.0243 5648 AmdK8 - ok
18:40:03.0455 5648 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:40:03.0628 5648 amdkmdag - ok
18:40:03.0672 5648 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:40:03.0677 5648 amdkmdap - ok
18:40:03.0688 5648 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:40:03.0689 5648 AmdPPM - ok
18:40:03.0717 5648 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:40:03.0719 5648 amdsata - ok
18:40:03.0730 5648 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:40:03.0732 5648 amdsbs - ok
18:40:03.0752 5648 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:40:03.0752 5648 amdxata - ok
18:40:03.0792 5648 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:03.0793 5648 AODDriver4.01 - ok
18:40:03.0812 5648 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:03.0812 5648 AODDriver4.2 - ok
18:40:03.0841 5648 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:40:03.0842 5648 AppID - ok
18:40:03.0858 5648 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:40:03.0859 5648 AppIDSvc - ok
18:40:03.0894 5648 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
18:40:03.0895 5648 Appinfo - ok
18:40:03.0915 5648 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:40:03.0917 5648 AppMgmt - ok
18:40:03.0932 5648 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:40:03.0934 5648 arc - ok
18:40:03.0941 5648 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:40:03.0942 5648 arcsas - ok
18:40:04.0045 5648 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:40:04.0047 5648 aspnet_state - ok
18:40:04.0076 5648 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:40:04.0077 5648 AsyncMac - ok
18:40:04.0110 5648 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:40:04.0110 5648 atapi - ok
18:40:04.0146 5648 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:40:04.0147 5648 AtiHDAudioService - ok
18:40:04.0185 5648 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
18:40:04.0186 5648 AtiHdmiService - ok
18:40:04.0231 5648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:40:04.0236 5648 AudioEndpointBuilder - ok
18:40:04.0243 5648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:40:04.0246 5648 AudioSrv - ok
18:40:04.0288 5648 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:40:04.0289 5648 AxInstSV - ok
18:40:04.0308 5648 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:40:04.0312 5648 b06bdrv - ok
18:40:04.0323 5648 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:40:04.0326 5648 b57nd60a - ok
18:40:04.0424 5648 [ 6F8638EA0A55D65B03E24F6D1153D8F7 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
18:40:04.0426 5648 BBSvc - ok
18:40:04.0470 5648 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
18:40:04.0472 5648 BBUpdate - ok
18:40:04.0483 5648 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:40:04.0484 5648 BDESVC - ok
18:40:04.0519 5648 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:40:04.0520 5648 Beep - ok
18:40:04.0590 5648 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:40:04.0596 5648 BFE - ok
18:40:04.0836 5648 [ F14F048B4D05FBCE536250EA74BF9FDC ] BHDrvx64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys
18:40:04.0849 5648 BHDrvx64 - ok
18:40:04.0893 5648 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:40:04.0900 5648 BITS - ok
18:40:04.0928 5648 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:40:04.0929 5648 blbdrive - ok
18:40:04.0979 5648 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:40:04.0980 5648 bowser - ok
18:40:04.0992 5648 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:40:04.0992 5648 BrFiltLo - ok
18:40:05.0004 5648 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:40:05.0004 5648 BrFiltUp - ok
18:40:05.0047 5648 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:40:05.0048 5648 BridgeMP - ok
18:40:05.0080 5648 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:40:05.0082 5648 Browser - ok
18:40:05.0094 5648 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:40:05.0096 5648 Brserid - ok
18:40:05.0108 5648 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:40:05.0109 5648 BrSerWdm - ok
18:40:05.0123 5648 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:40:05.0123 5648 BrUsbMdm - ok
18:40:05.0135 5648 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:40:05.0136 5648 BrUsbSer - ok
18:40:05.0141 5648 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:40:05.0142 5648 BTHMODEM - ok
18:40:05.0159 5648 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:40:05.0161 5648 bthserv - ok
18:40:05.0264 5648 [ BE531939BB6D153DB63DBBFBD398A713 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
18:40:05.0269 5648 c2cautoupdatesvc - ok
18:40:05.0337 5648 [ 33E9F08F675EF94633C8EF8A7C4EADF3 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
18:40:05.0352 5648 c2cpnrsvc - ok
18:40:05.0373 5648 catchme - ok
18:40:05.0455 5648 [ 0510396A957E9FD7205BA62D3CAE4528 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys
18:40:05.0457 5648 ccSet_NIS - ok
18:40:05.0460 5648 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:40:05.0461 5648 cdfs - ok
18:40:05.0503 5648 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:40:05.0504 5648 cdrom - ok
18:40:05.0536 5648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:40:05.0537 5648 CertPropSvc - ok
18:40:05.0546 5648 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:40:05.0547 5648 circlass - ok
18:40:05.0587 5648 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:40:05.0590 5648 CLFS - ok
18:40:05.0662 5648 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:40:05.0663 5648 clr_optimization_v2.0.50727_32 - ok
18:40:05.0695 5648 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:40:05.0696 5648 clr_optimization_v2.0.50727_64 - ok
18:40:05.0751 5648 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:40:05.0771 5648 clr_optimization_v4.0.30319_32 - ok
18:40:05.0803 5648 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:40:05.0804 5648 clr_optimization_v4.0.30319_64 - ok
18:40:05.0817 5648 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:40:05.0817 5648 CmBatt - ok
18:40:05.0851 5648 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:40:05.0852 5648 cmdide - ok
18:40:05.0896 5648 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
18:40:05.0900 5648 CNG - ok
18:40:05.0916 5648 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:40:05.0917 5648 Compbatt - ok
18:40:05.0949 5648 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:40:05.0950 5648 CompositeBus - ok
18:40:05.0953 5648 COMSysApp - ok
18:40:05.0969 5648 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:40:05.0970 5648 crcdisk - ok
18:40:06.0034 5648 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
18:40:06.0035 5648 Creative ALchemy AL6 Licensing Service - ok
18:40:06.0046 5648 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
18:40:06.0047 5648 Creative Audio Engine Licensing Service - ok
18:40:06.0082 5648 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:40:06.0084 5648 CryptSvc - ok
18:40:06.0144 5648 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:40:06.0148 5648 CSC - ok
18:40:06.0195 5648 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:40:06.0200 5648 CscService - ok
18:40:06.0225 5648 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
18:40:06.0226 5648 CTAudSvcService - ok
18:40:06.0267 5648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:40:06.0269 5648 DcomLaunch - ok
18:40:06.0287 5648 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:40:06.0289 5648 defragsvc - ok
18:40:06.0332 5648 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:40:06.0333 5648 DfsC - ok
18:40:06.0382 5648 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:40:06.0385 5648 Dhcp - ok
18:40:06.0425 5648 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:40:06.0427 5648 discache - ok
18:40:06.0433 5648 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:40:06.0435 5648 Disk - ok
18:40:06.0473 5648 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:40:06.0475 5648 Dnscache - ok
18:40:06.0519 5648 [ FA122BC1451B1B35B7814FBE1ACF1924 ] Dokan C:\Windows\system32\drivers\dokan.sys
18:40:06.0520 5648 Dokan - ok
18:40:06.0607 5648 [ 8C856E531A1170F53AC6844E89CD0B5F ] DokanMounter C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
18:40:06.0607 5648 DokanMounter - ok
18:40:06.0647 5648 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:40:06.0654 5648 dot3svc - ok
18:40:06.0692 5648 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:40:06.0694 5648 DPS - ok
18:40:06.0737 5648 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:40:06.0738 5648 drmkaud - ok
18:40:06.0785 5648 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:40:06.0786 5648 dtsoftbus01 - ok
18:40:06.0838 5648 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:40:06.0846 5648 DXGKrnl - ok
18:40:06.0862 5648 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:40:06.0864 5648 EapHost - ok
18:40:06.0919 5648 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:40:06.0982 5648 ebdrv - ok
18:40:07.0027 5648 [ 1B7AA375F711F66D5FF2B855F9EC987F ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:40:07.0031 5648 eeCtrl - ok
18:40:07.0065 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
18:40:07.0066 5648 EFS - ok
18:40:07.0129 5648 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:40:07.0144 5648 ehRecvr - ok
18:40:07.0165 5648 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:40:07.0166 5648 ehSched - ok
18:40:07.0189 5648 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:40:07.0193 5648 elxstor - ok
18:40:07.0229 5648 [ 7230C8B80DDE1F0524C353240B78CC0E ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:40:07.0231 5648 EraserUtilRebootDrv - ok
18:40:07.0259 5648 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:40:07.0260 5648 ErrDev - ok
18:40:07.0310 5648 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:40:07.0314 5648 EventSystem - ok
18:40:07.0328 5648 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:40:07.0330 5648 exfat - ok
18:40:07.0361 5648 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:40:07.0363 5648 fastfat - ok
18:40:07.0402 5648 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:40:07.0446 5648 Fax - ok
18:40:07.0463 5648 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:40:07.0464 5648 fdc - ok
18:40:07.0479 5648 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:40:07.0480 5648 fdPHost - ok
18:40:07.0489 5648 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:40:07.0490 5648 FDResPub - ok
18:40:07.0526 5648 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:40:07.0527 5648 FileInfo - ok
18:40:07.0540 5648 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:40:07.0541 5648 Filetrace - ok
18:40:07.0550 5648 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:40:07.0551 5648 flpydisk - ok
18:40:07.0589 5648 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:40:07.0599 5648 FltMgr - ok
18:40:07.0655 5648 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
18:40:07.0664 5648 FontCache - ok
18:40:07.0739 5648 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:40:07.0750 5648 FontCache3.0.0.0 - ok
18:40:07.0765 5648 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:40:07.0766 5648 FsDepends - ok
18:40:07.0802 5648 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:40:07.0802 5648 Fs_Rec - ok
18:40:07.0851 5648 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:40:07.0853 5648 fvevol - ok
18:40:07.0863 5648 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:40:07.0864 5648 gagp30kx - ok
18:40:07.0904 5648 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:40:07.0922 5648 gpsvc - ok
18:40:07.0992 5648 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:07.0993 5648 gupdate - ok
18:40:07.0996 5648 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:07.0997 5648 gupdatem - ok
18:40:08.0024 5648 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:40:08.0026 5648 gusvc - ok
18:40:08.0061 5648 [ F8F0851D336C3B88DBD7232B6348E09A ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:40:08.0061 5648 hamachi - ok
18:40:08.0069 5648 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:40:08.0070 5648 hcw85cir - ok
18:40:08.0105 5648 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:40:08.0108 5648 HdAudAddService - ok
18:40:08.0119 5648 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:40:08.0121 5648 HDAudBus - ok
18:40:08.0132 5648 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:40:08.0133 5648 HidBatt - ok
18:40:08.0155 5648 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:40:08.0156 5648 HidBth - ok
18:40:08.0165 5648 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:40:08.0166 5648 HidIr - ok
18:40:08.0198 5648 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
18:40:08.0199 5648 hidserv - ok
18:40:08.0218 5648 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:40:08.0219 5648 HidUsb - ok
18:40:08.0245 5648 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:40:08.0265 5648 hkmsvc - ok
18:40:08.0297 5648 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:40:08.0300 5648 HomeGroupListener - ok
18:40:08.0339 5648 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:40:08.0341 5648 HomeGroupProvider - ok
18:40:08.0381 5648 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:40:08.0382 5648 HpSAMD - ok
18:40:08.0467 5648 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:40:08.0486 5648 HTTP - ok
18:40:08.0528 5648 [ D7E0591E2BA1289C875A9D948377441E ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO64A.SYS
18:40:08.0529 5648 HWiNFO32 - ok
18:40:08.0577 5648 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:40:08.0578 5648 hwpolicy - ok
18:40:08.0610 5648 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:40:08.0611 5648 i8042prt - ok
18:40:08.0697 5648 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:40:08.0701 5648 iaStorV - ok
18:40:08.0734 5648 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:40:08.0741 5648 idsvc - ok
18:40:08.0888 5648 [ DAAA22256BCA5E6EB74CD379F3092AAA ] IDSVia64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys
18:40:08.0892 5648 IDSVia64 - ok
18:40:08.0911 5648 IEEtwCollectorService - ok
18:40:08.0934 5648 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:40:08.0935 5648 iirsp - ok
18:40:08.0982 5648 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
18:40:08.0990 5648 IKEEXT - ok
18:40:09.0024 5648 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:40:09.0042 5648 intelide - ok
18:40:09.0059 5648 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:40:09.0060 5648 intelppm - ok
18:40:09.0075 5648 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:40:09.0077 5648 IPBusEnum - ok
18:40:09.0110 5648 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:40:09.0111 5648 IpFilterDriver - ok
18:40:09.0149 5648 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:40:09.0154 5648 iphlpsvc - ok
18:40:09.0195 5648 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:40:09.0196 5648 IPMIDRV - ok
18:40:09.0209 5648 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:40:09.0210 5648 IPNAT - ok
18:40:09.0223 5648 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:40:09.0224 5648 IRENUM - ok
18:40:09.0240 5648 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:40:09.0241 5648 isapnp - ok
18:40:09.0313 5648 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:40:09.0332 5648 iScsiPrt - ok
18:40:09.0366 5648 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
18:40:09.0367 5648 JRAID - ok
18:40:09.0376 5648 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:40:09.0377 5648 kbdclass - ok
18:40:09.0408 5648 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:40:09.0408 5648 kbdhid - ok
18:40:09.0415 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
18:40:09.0415 5648 KeyIso - ok
18:40:09.0448 5648 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:40:09.0449 5648 KSecDD - ok
18:40:09.0456 5648 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:40:09.0458 5648 KSecPkg - ok
18:40:09.0463 5648 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:40:09.0464 5648 ksthunk - ok
18:40:09.0483 5648 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:40:09.0487 5648 KtmRm - ok
18:40:09.0535 5648 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:40:09.0537 5648 LanmanServer - ok
18:40:09.0572 5648 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:40:09.0574 5648 LanmanWorkstation - ok
18:40:09.0605 5648 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:40:09.0606 5648 lltdio - ok
18:40:09.0623 5648 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:40:09.0626 5648 lltdsvc - ok
18:40:09.0634 5648 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:40:09.0635 5648 lmhosts - ok
18:40:09.0646 5648 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:40:09.0648 5648 LSI_FC - ok
18:40:09.0656 5648 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:40:09.0658 5648 LSI_SAS - ok
18:40:09.0668 5648 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:40:09.0669 5648 LSI_SAS2 - ok
18:40:09.0690 5648 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:40:09.0691 5648 LSI_SCSI - ok
18:40:09.0732 5648 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:40:09.0733 5648 luafv - ok
18:40:09.0764 5648 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:40:09.0776 5648 Mcx2Svc - ok
18:40:09.0789 5648 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:40:09.0790 5648 megasas - ok
18:40:09.0806 5648 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:40:09.0808 5648 MegaSR - ok
18:40:09.0826 5648 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:40:09.0827 5648 MMCSS - ok
18:40:09.0838 5648 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:40:09.0839 5648 Modem - ok
18:40:09.0857 5648 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:40:09.0858 5648 monitor - ok
18:40:09.0875 5648 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:40:09.0876 5648 mouclass - ok
18:40:09.0893 5648 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:40:09.0893 5648 mouhid - ok
18:40:09.0915 5648 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:40:09.0916 5648 mountmgr - ok
18:40:09.0931 5648 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:40:09.0933 5648 mpio - ok
18:40:09.0950 5648 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:40:09.0951 5648 mpsdrv - ok
18:40:09.0987 5648 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:40:09.0994 5648 MpsSvc - ok
18:40:10.0031 5648 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:40:10.0033 5648 MRxDAV - ok
18:40:10.0094 5648 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:40:10.0096 5648 mrxsmb - ok
18:40:10.0141 5648 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:40:10.0143 5648 mrxsmb10 - ok
18:40:10.0151 5648 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:40:10.0152 5648 mrxsmb20 - ok
18:40:10.0187 5648 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:40:10.0188 5648 msahci - ok
18:40:10.0221 5648 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:40:10.0223 5648 msdsm - ok
18:40:10.0239 5648 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:40:10.0241 5648 MSDTC - ok
18:40:10.0274 5648 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:40:10.0275 5648 Msfs - ok
18:40:10.0281 5648 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:40:10.0282 5648 mshidkmdf - ok
18:40:10.0314 5648 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:40:10.0315 5648 msisadrv - ok
18:40:10.0327 5648 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:40:10.0329 5648 MSiSCSI - ok
18:40:10.0332 5648 msiserver - ok
18:40:10.0345 5648 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:40:10.0346 5648 MSKSSRV - ok
18:40:10.0374 5648 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:40:10.0374 5648 MSPCLOCK - ok
18:40:10.0384 5648 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:40:10.0385 5648 MSPQM - ok
18:40:10.0418 5648 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:40:10.0421 5648 MsRPC - ok
18:40:10.0436 5648 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:40:10.0436 5648 mssmbios - ok
18:40:10.0447 5648 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:40:10.0464 5648 MSTEE - ok
18:40:10.0484 5648 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:40:10.0484 5648 MTConfig - ok
18:40:10.0502 5648 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
18:40:10.0503 5648 MTsensor - ok
18:40:10.0529 5648 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:40:10.0530 5648 Mup - ok
18:40:10.0572 5648 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:40:10.0577 5648 napagent - ok
18:40:10.0598 5648 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:40:10.0601 5648 NativeWifiP - ok
18:40:10.0690 5648 [ 702E07EC32F96ACDB873E9A5465D4401 ] NAVENG C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\ENG64.SYS
18:40:10.0691 5648 NAVENG - ok
18:40:10.0880 5648 [ 302EA314A1AF0D7CEF0A3D0195F79561 ] NAVEX15 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\EX64.SYS
18:40:10.0889 5648 NAVEX15 - ok
18:40:10.0980 5648 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:40:11.0000 5648 NDIS - ok
18:40:11.0020 5648 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:40:11.0021 5648 NdisCap - ok
18:40:11.0036 5648 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:40:11.0037 5648 NdisTapi - ok
18:40:11.0072 5648 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:40:11.0073 5648 Ndisuio - ok
18:40:11.0108 5648 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:40:11.0110 5648 NdisWan - ok
18:40:11.0149 5648 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:40:11.0150 5648 NDProxy - ok
18:40:11.0163 5648 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:40:11.0164 5648 NetBIOS - ok
18:40:11.0212 5648 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:40:11.0214 5648 NetBT - ok
18:40:11.0223 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
18:40:11.0224 5648 Netlogon - ok
18:40:11.0246 5648 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:40:11.0249 5648 Netman - ok
18:40:11.0317 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0319 5648 NetMsmqActivator - ok
18:40:11.0322 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0323 5648 NetPipeActivator - ok
18:40:11.0361 5648 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:40:11.0363 5648 netprofm - ok
18:40:11.0367 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0368 5648 NetTcpActivator - ok
18:40:11.0383 5648 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:40:11.0384 5648 NetTcpPortSharing - ok
18:40:11.0402 5648 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:40:11.0403 5648 nfrd960 - ok
18:40:11.0568 5648 [ C87442B6D17912785DC143CEDCA508C9 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
18:40:11.0569 5648 NIS - ok
18:40:11.0630 5648 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:40:11.0651 5648 NlaSvc - ok
18:40:11.0670 5648 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:40:11.0671 5648 Npfs - ok
18:40:11.0681 5648 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:40:11.0683 5648 nsi - ok
18:40:11.0694 5648 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:40:11.0695 5648 nsiproxy - ok
18:40:11.0750 5648 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:40:11.0766 5648 Ntfs - ok
18:40:11.0793 5648 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:40:11.0793 5648 Null - ok
18:40:11.0836 5648 [ 8EBCB9165EE7F1571842F4D9D624A74C ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
18:40:11.0837 5648 nusb3hub - ok
18:40:11.0868 5648 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:40:11.0870 5648 nusb3xhc - ok
18:40:11.0916 5648 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:40:11.0917 5648 nvraid - ok
18:40:11.0936 5648 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:40:11.0938 5648 nvstor - ok
18:40:11.0971 5648 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:40:11.0972 5648 nv_agp - ok
18:40:12.0061 5648 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:40:12.0074 5648 odserv - ok
18:40:12.0117 5648 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:40:12.0118 5648 ohci1394 - ok
18:40:12.0144 5648 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:40:12.0145 5648 ose - ok
18:40:12.0165 5648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:40:12.0169 5648 p2pimsvc - ok
18:40:12.0193 5648 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:40:12.0197 5648 p2psvc - ok
18:40:12.0208 5648 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:40:12.0209 5648 Parport - ok
18:40:12.0244 5648 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:40:12.0245 5648 partmgr - ok
18:40:12.0259 5648 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:40:12.0261 5648 PcaSvc - ok
18:40:12.0271 5648 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:40:12.0272 5648 pci - ok
18:40:12.0307 5648 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:40:12.0308 5648 pciide - ok
18:40:12.0327 5648 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:40:12.0329 5648 pcmcia - ok
18:40:12.0362 5648 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:40:12.0363 5648 pcw - ok
18:40:12.0379 5648 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:40:12.0385 5648 PEAUTH - ok
18:40:12.0426 5648 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:40:12.0437 5648 PeerDistSvc - ok
18:40:12.0500 5648 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:40:12.0502 5648 PerfHost - ok
18:40:12.0554 5648 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:40:12.0566 5648 pla - ok
18:40:12.0625 5648 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:40:12.0629 5648 PlugPlay - ok
18:40:12.0661 5648 PnkBstrA - ok
18:40:12.0680 5648 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:40:12.0682 5648 PNRPAutoReg - ok
18:40:12.0699 5648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:40:12.0700 5648 PNRPsvc - ok
18:40:12.0745 5648 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:40:12.0750 5648 PolicyAgent - ok
18:40:12.0786 5648 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:40:12.0788 5648 Power - ok
18:40:12.0837 5648 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:40:12.0839 5648 PptpMiniport - ok
18:40:12.0849 5648 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:40:12.0850 5648 Processor - ok
18:40:12.0891 5648 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:40:12.0894 5648 ProfSvc - ok
18:40:12.0906 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
18:40:12.0907 5648 ProtectedStorage - ok
18:40:12.0941 5648 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:40:12.0942 5648 Psched - ok
18:40:12.0981 5648 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:40:12.0993 5648 ql2300 - ok
18:40:13.0012 5648 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:40:13.0014 5648 ql40xx - ok
18:40:13.0040 5648 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:40:13.0043 5648 QWAVE - ok
18:40:13.0055 5648 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:40:13.0056 5648 QWAVEdrv - ok
18:40:13.0072 5648 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:40:13.0073 5648 RasAcd - ok
18:40:13.0103 5648 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:40:13.0111 5648 RasAgileVpn - ok
18:40:13.0125 5648 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:40:13.0127 5648 RasAuto - ok
18:40:13.0160 5648 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:40:13.0162 5648 Rasl2tp - ok
18:40:13.0195 5648 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:40:13.0199 5648 RasMan - ok
18:40:13.0206 5648 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:40:13.0207 5648 RasPppoe - ok
18:40:13.0219 5648 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:40:13.0220 5648 RasSstp - ok
18:40:13.0256 5648 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:40:13.0259 5648 rdbss - ok
18:40:13.0271 5648 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:40:13.0272 5648 rdpbus - ok
18:40:13.0283 5648 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:40:13.0284 5648 RDPCDD - ok
18:40:13.0328 5648 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:40:13.0330 5648 RDPDR - ok
18:40:13.0346 5648 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:40:13.0347 5648 RDPENCDD - ok
18:40:13.0356 5648 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:40:13.0356 5648 RDPREFMP - ok
18:40:13.0405 5648 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:40:13.0406 5648 RdpVideoMiniport - ok
18:40:13.0440 5648 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:40:13.0442 5648 RDPWD - ok
18:40:13.0479 5648 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:40:13.0481 5648 rdyboost - ok
18:40:13.0500 5648 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:40:13.0501 5648 RemoteAccess - ok
18:40:13.0512 5648 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:40:13.0515 5648 RemoteRegistry - ok
18:40:13.0522 5648 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:40:13.0523 5648 RpcEptMapper - ok
18:40:13.0543 5648 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:40:13.0544 5648 RpcLocator - ok
18:40:13.0583 5648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:40:13.0585 5648 RpcSs - ok
18:40:13.0600 5648 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:40:13.0601 5648 rspndr - ok
18:40:13.0637 5648 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:40:13.0638 5648 s3cap - ok
18:40:13.0648 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
18:40:13.0648 5648 SamSs - ok
18:40:13.0685 5648 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:40:13.0686 5648 sbp2port - ok
18:40:13.0704 5648 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:40:13.0706 5648 SCardSvr - ok
18:40:13.0739 5648 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:40:13.0740 5648 scfilter - ok
18:40:13.0786 5648 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:40:13.0795 5648 Schedule - ok
18:40:13.0827 5648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:40:13.0828 5648 SCPolicySvc - ok
18:40:13.0865 5648 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:40:13.0879 5648 SDRSVC - ok
18:40:13.0902 5648 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:40:13.0903 5648 secdrv - ok
18:40:13.0931 5648 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:40:13.0933 5648 seclogon - ok
18:40:13.0966 5648 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:40:13.0967 5648 SENS - ok
18:40:13.0976 5648 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:40:13.0977 5648 SensrSvc - ok
18:40:13.0991 5648 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:40:13.0991 5648 Serenum - ok
18:40:14.0003 5648 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:40:14.0005 5648 Serial - ok
18:40:14.0033 5648 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:40:14.0033 5648 sermouse - ok
18:40:14.0156 5648 [ 6766E06DDD621A7B4077E6F523D562E4 ] Serviio C:\Program Files (x86)\Serviio\bin\ServiioService.exe
18:40:14.0158 5648 Serviio - ok
18:40:14.0204 5648 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:40:14.0206 5648 SessionEnv - ok
18:40:14.0240 5648 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:40:14.0241 5648 sffdisk - ok
18:40:14.0248 5648 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:40:14.0249 5648 sffp_mmc - ok
18:40:14.0252 5648 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:40:14.0253 5648 sffp_sd - ok
18:40:14.0263 5648 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:40:14.0264 5648 sfloppy - ok
18:40:14.0299 5648 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:40:14.0302 5648 SharedAccess - ok
18:40:14.0349 5648 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:40:14.0353 5648 ShellHWDetection - ok
18:40:14.0398 5648 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:40:14.0399 5648 SiSRaid2 - ok
18:40:14.0411 5648 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:40:14.0412 5648 SiSRaid4 - ok
18:40:14.0498 5648 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:40:14.0500 5648 SkypeUpdate - ok
18:40:14.0510 5648 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:40:14.0511 5648 Smb - ok
18:40:14.0552 5648 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:40:14.0553 5648 SNMPTRAP - ok
18:40:14.0558 5648 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:40:14.0559 5648 spldr - ok
18:40:14.0629 5648 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:40:14.0646 5648 Spooler - ok
18:40:14.0721 5648 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:40:14.0783 5648 sppsvc - ok
18:40:14.0811 5648 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:40:14.0813 5648 sppuinotify - ok
18:40:14.0927 5648 [ 8BFD1752AAA15BF47D668E9AC5AF96FB ] SRTSP C:\Windows\system32\drivers\NISx64\1501000.012\SRTSP64.SYS
18:40:14.0934 5648 SRTSP - ok
18:40:14.0953 5648 [ B18CE01B9C09C59422BA7C7064248B35 ] SRTSPX C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS
18:40:14.0953 5648 SRTSPX - ok
18:40:14.0997 5648 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:40:15.0001 5648 srv - ok
18:40:15.0044 5648 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:40:15.0048 5648 srv2 - ok
18:40:15.0056 5648 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:40:15.0057 5648 srvnet - ok
18:40:15.0068 5648 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:40:15.0070 5648 SSDPSRV - ok
18:40:15.0089 5648 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:40:15.0091 5648 SstpSvc - ok
18:40:15.0153 5648 [ 2F3B5A3567FFB343D8867C3D34C687F1 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:40:15.0158 5648 Steam Client Service - ok
18:40:15.0174 5648 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:40:15.0175 5648 stexstor - ok
18:40:15.0226 5648 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:40:15.0231 5648 stisvc - ok
18:40:15.0270 5648 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:40:15.0271 5648 storflt - ok
18:40:15.0310 5648 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
18:40:15.0311 5648 StorSvc - ok
18:40:15.0354 5648 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:40:15.0370 5648 storvsc - ok
18:40:15.0402 5648 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:40:15.0403 5648 swenum - ok
18:40:15.0477 5648 SwitchBoard - ok
18:40:15.0500 5648 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:40:15.0504 5648 swprv - ok
18:40:15.0587 5648 [ 5C9EE2303CA7F267665D75237862B39C ] SymDS C:\Windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS
18:40:15.0592 5648 SymDS - ok
18:40:15.0638 5648 [ 08AF51153E441687130B759A8F6892ED ] SymEFA C:\Windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS
18:40:15.0647 5648 SymEFA - ok
18:40:15.0690 5648 [ 97E11C50CE52277B377396EA8838E539 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:40:15.0692 5648 SymEvent - ok
18:40:15.0741 5648 [ 48C2934683CBD06F662B088EEF49EF6A ] SymIRON C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS
18:40:15.0743 5648 SymIRON - ok
18:40:15.0780 5648 [ 78A2F073AD9EA5EBC04A70931EA36C9A ] SymNetS C:\Windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS
18:40:15.0784 5648 SymNetS - ok
18:40:15.0834 5648 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:40:15.0851 5648 SysMain - ok
18:40:15.0902 5648 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:40:15.0903 5648 TabletInputService - ok
18:40:15.0932 5648 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
18:40:15.0933 5648 taphss - ok
18:40:15.0988 5648 [ 95206567C7CA71A3D485146824224C40 ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
18:40:15.0989 5648 taphss6 - ok
18:40:16.0031 5648 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:40:16.0035 5648 TapiSrv - ok
18:40:16.0050 5648 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:40:16.0052 5648 TBS - ok
18:40:16.0145 5648 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:40:16.0160 5648 Tcpip - ok
18:40:16.0212 5648 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:40:16.0219 5648 TCPIP6 - ok
18:40:16.0262 5648 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:40:16.0271 5648 tcpipreg - ok
18:40:16.0292 5648 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:40:16.0293 5648 TDPIPE - ok
18:40:16.0324 5648 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:40:16.0325 5648 TDTCP - ok
18:40:16.0366 5648 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:40:16.0367 5648 tdx - ok
18:40:16.0401 5648 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:40:16.0402 5648 TermDD - ok
18:40:16.0449 5648 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:40:16.0456 5648 TermService - ok
18:40:16.0469 5648 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:40:16.0471 5648 Themes - ok
18:40:16.0492 5648 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:40:16.0493 5648 THREADORDER - ok
18:40:16.0502 5648 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:40:16.0504 5648 TrkWks - ok
18:40:16.0573 5648 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:40:16.0577 5648 TrustedInstaller - ok
18:40:16.0619 5648 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:40:16.0620 5648 tssecsrv - ok
18:40:16.0668 5648 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:40:16.0669 5648 TsUsbFlt - ok
18:40:16.0712 5648 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:40:16.0714 5648 tunnel - ok
18:40:16.0727 5648 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:40:16.0728 5648 uagp35 - ok
18:40:16.0766 5648 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:40:16.0769 5648 udfs - ok
18:40:16.0776 5648 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:40:16.0777 5648 UI0Detect - ok
18:40:16.0789 5648 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:40:16.0790 5648 uliagpkx - ok
18:40:16.0828 5648 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:40:16.0829 5648 umbus - ok
18:40:16.0836 5648 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:40:16.0837 5648 UmPass - ok
18:40:16.0855 5648 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
18:40:16.0858 5648 UmRdpService - ok
18:40:16.0884 5648 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:40:16.0888 5648 upnphost - ok
18:40:16.0926 5648 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:40:16.0928 5648 usbccgp - ok
18:40:16.0967 5648 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:40:16.0968 5648 usbcir - ok
18:40:17.0000 5648 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:40:17.0001 5648 usbehci - ok
18:40:17.0018 5648 [ 858BE9C0E498C8E505E198E17EECE0D9 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
18:40:17.0018 5648 usbfilter - ok
18:40:17.0037 5648 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:40:17.0040 5648 usbhub - ok
18:40:17.0063 5648 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:40:17.0064 5648 usbohci - ok
18:40:17.0076 5648 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:40:17.0077 5648 usbprint - ok
18:40:17.0114 5648 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:40:17.0115 5648 USBSTOR - ok
18:40:17.0148 5648 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:40:17.0152 5648 usbuhci - ok
18:40:17.0167 5648 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:40:17.0169 5648 UxSms - ok
18:40:17.0181 5648 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
18:40:17.0181 5648 VaultSvc - ok
18:40:17.0226 5648 [ 3A4B01C2BDB07DFEF29B0B369487503A ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
18:40:17.0226 5648 VCSVADHWSer - ok
18:40:17.0238 5648 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:40:17.0239 5648 vdrvroot - ok
18:40:17.0274 5648 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:40:17.0280 5648 vds - ok
18:40:17.0291 5648 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:40:17.0291 5648 vga - ok
18:40:17.0308 5648 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:40:17.0309 5648 VgaSave - ok
18:40:17.0323 5648 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:40:17.0325 5648 vhdmp - ok
18:40:17.0384 5648 [ DFDF7F9CAA50EE72A633EA4BBD65A557 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:40:17.0394 5648 VIAHdAudAddService - ok
18:40:17.0426 5648 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:40:17.0427 5648 viaide - ok
18:40:17.0466 5648 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:40:17.0468 5648 vmbus - ok
18:40:17.0479 5648 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:40:17.0479 5648 VMBusHID - ok
18:40:17.0487 5648 [ 754C8BF43F0DD4B54865F174A62761E9 ] VMfilt C:\Windows\system32\drivers\VMfilt64.sys
18:40:17.0488 5648 VMfilt - ok
18:40:17.0497 5648 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:40:17.0499 5648 volmgr - ok
18:40:17.0539 5648 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:40:17.0542 5648 volmgrx - ok
18:40:17.0553 5648 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:40:17.0556 5648 volsnap - ok
18:40:17.0571 5648 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:40:17.0572 5648 vsmraid - ok
18:40:17.0642 5648 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:40:17.0654 5648 VSS - ok
18:40:17.0697 5648 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:40:17.0698 5648 vwifibus - ok
18:40:17.0708 5648 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:40:17.0712 5648 W32Time - ok
18:40:17.0728 5648 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:40:17.0728 5648 WacomPen - ok
18:40:17.0739 5648 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:40:17.0741 5648 WANARP - ok
18:40:17.0758 5648 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:40:17.0758 5648 Wanarpv6 - ok
18:40:17.0843 5648 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:40:17.0854 5648 WatAdminSvc - ok
18:40:17.0909 5648 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:40:17.0926 5648 wbengine - ok
18:40:17.0960 5648 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:40:17.0963 5648 WbioSrvc - ok
18:40:18.0001 5648 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:40:18.0005 5648 wcncsvc - ok
18:40:18.0014 5648 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:40:18.0015 5648 WcsPlugInService - ok
18:40:18.0023 5648 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:40:18.0024 5648 Wd - ok
18:40:18.0071 5648 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:40:18.0077 5648 Wdf01000 - ok
18:40:18.0090 5648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:40:18.0091 5648 WdiServiceHost - ok
18:40:18.0094 5648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:40:18.0095 5648 WdiSystemHost - ok
18:40:18.0148 5648 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
18:40:18.0156 5648 WebClient - ok
18:40:18.0178 5648 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:40:18.0181 5648 Wecsvc - ok
18:40:18.0189 5648 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:40:18.0191 5648 wercplsupport - ok
18:40:18.0203 5648 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:40:18.0205 5648 WerSvc - ok
18:40:18.0238 5648 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:40:18.0238 5648 WfpLwf - ok
18:40:18.0249 5648 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:40:18.0250 5648 WIMMount - ok
18:40:18.0330 5648 WinDefend - ok
18:40:18.0350 5648 WinHttpAutoProxySvc - ok
18:40:18.0420 5648 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:40:18.0423 5648 Winmgmt - ok
18:40:18.0562 5648 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:40:18.0579 5648 WinRM - ok
18:40:18.0618 5648 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:40:18.0619 5648 WinUsb - ok
18:40:18.0646 5648 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:40:18.0653 5648 Wlansvc - ok
18:40:18.0899 5648 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:40:18.0927 5648 wlidsvc - ok
18:40:18.0971 5648 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:40:18.0972 5648 WmiAcpi - ok
18:40:18.0998 5648 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:40:19.0010 5648 wmiApSrv - ok
18:40:19.0024 5648 WMPNetworkSvc - ok
18:40:19.0035 5648 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:40:19.0037 5648 WPCSvc - ok
18:40:19.0068 5648 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:40:19.0070 5648 WPDBusEnum - ok
18:40:19.0093 5648 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:40:19.0106 5648 ws2ifsl - ok
18:40:19.0143 5648 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
18:40:19.0145 5648 wscsvc - ok
18:40:19.0148 5648 WSearch - ok
18:40:19.0214 5648 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:40:19.0244 5648 wuauserv - ok
18:40:19.0300 5648 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:40:19.0301 5648 WudfPf - ok
18:40:19.0315 5648 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:40:19.0317 5648 WUDFRd - ok
18:40:19.0353 5648 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:40:19.0355 5648 wudfsvc - ok
18:40:19.0410 5648 [ 04F82965C09CBDF646B487E145060301 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:40:19.0413 5648 WwanSvc - ok
18:40:19.0439 5648 XFDriver64 - ok
18:40:19.0488 5648 [ B2818BFAB7817F7E7EE886F58B15B35C ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:40:19.0491 5648 yukonw7 - ok
18:40:19.0494 5648 ================ Scan global ===============================
18:40:19.0541 5648 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:40:19.0583 5648 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:40:19.0589 5648 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:40:19.0610 5648 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:40:19.0630 5648 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:40:19.0634 5648 [Global] - ok
18:40:19.0634 5648 ================ Scan MBR ==================================
18:40:19.0653 5648 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:40:20.0221 5648 \Device\Harddisk0\DR0 - ok
18:40:20.0223 5648 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:40:20.0236 5648 \Device\Harddisk1\DR1 - ok
18:40:20.0236 5648 ================ Scan VBR ==================================
18:40:20.0240 5648 [ 9E72AA98BE90BBA265589B95D28C05E1 ] \Device\Harddisk0\DR0\Partition1
18:40:20.0241 5648 \Device\Harddisk0\DR0\Partition1 - ok
18:40:20.0262 5648 [ 3C56551648889F717C769584D35BB9A6 ] \Device\Harddisk0\DR0\Partition2
18:40:20.0276 5648 \Device\Harddisk0\DR0\Partition2 - ok
18:40:20.0280 5648 [ 3C778B33D7D7D063CFA8896BB63063A5 ] \Device\Harddisk1\DR1\Partition1
18:40:20.0281 5648 \Device\Harddisk1\DR1\Partition1 - ok
18:40:20.0281 5648 ============================================================
Naposledy upravil(a) jerabina dne 20 bře 2014 18:39, celkem upraveno 1 x.
Když tě všechno zradilo, pomůže ti kladivo!
Re: Preventivní kontrola počítače
18:40:20.0281 5648 Scan finished
18:40:20.0281 5648 ============================================================
18:40:20.0288 7476 Detected object count: 0
18:40:20.0288 7476 Actual detected object count: 0
18:40:54.0619 5960 ============================================================
18:40:54.0619 5960 Scan started
18:40:54.0619 5960 Mode: Manual;
18:40:54.0619 5960 ============================================================
18:40:55.0216 5960 ================ Scan system memory ========================
18:40:55.0216 5960 System memory - ok
18:40:55.0216 5960 ================ Scan services =============================
18:40:55.0339 5960 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:40:55.0340 5960 1394ohci - ok
18:40:55.0382 5960 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:40:55.0383 5960 ACPI - ok
18:40:55.0421 5960 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:40:55.0422 5960 AcpiPmi - ok
18:40:55.0518 5960 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:40:55.0518 5960 AdobeARMservice - ok
18:40:55.0624 5960 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:40:55.0625 5960 AdobeFlashPlayerUpdateSvc - ok
18:40:55.0653 5960 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:40:55.0655 5960 adp94xx - ok
18:40:55.0675 5960 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:40:55.0677 5960 adpahci - ok
18:40:55.0694 5960 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:40:55.0695 5960 adpu320 - ok
18:40:55.0718 5960 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:40:55.0719 5960 AeLookupSvc - ok
18:40:55.0759 5960 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
18:40:55.0761 5960 AFD - ok
18:40:55.0792 5960 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:40:55.0793 5960 agp440 - ok
18:40:55.0803 5960 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:40:55.0803 5960 ALG - ok
18:40:55.0839 5960 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:40:55.0839 5960 aliide - ok
18:40:55.0872 5960 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:40:55.0873 5960 AMD External Events Utility - ok
18:40:55.0938 5960 AMD FUEL Service - ok
18:40:55.0960 5960 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:40:55.0960 5960 amdide - ok
18:40:55.0978 5960 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
18:40:55.0979 5960 amdiox64 - ok
18:40:55.0990 5960 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:40:55.0990 5960 AmdK8 - ok
18:40:56.0179 5960 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:40:56.0224 5960 amdkmdag - ok
18:40:56.0245 5960 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:40:56.0247 5960 amdkmdap - ok
18:40:56.0261 5960 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:40:56.0262 5960 AmdPPM - ok
18:40:56.0299 5960 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:40:56.0299 5960 amdsata - ok
18:40:56.0312 5960 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:40:56.0313 5960 amdsbs - ok
18:40:56.0325 5960 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:40:56.0325 5960 amdxata - ok
18:40:56.0332 5960 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:56.0333 5960 AODDriver4.01 - ok
18:40:56.0335 5960 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:56.0335 5960 AODDriver4.2 - ok
18:40:56.0364 5960 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:40:56.0365 5960 AppID - ok
18:40:56.0381 5960 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:40:56.0381 5960 AppIDSvc - ok
18:40:56.0418 5960 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
18:40:56.0418 5960 Appinfo - ok
18:40:56.0439 5960 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:40:56.0440 5960 AppMgmt - ok
18:40:56.0456 5960 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:40:56.0456 5960 arc - ok
18:40:56.0464 5960 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:40:56.0464 5960 arcsas - ok
18:40:56.0552 5960 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:40:56.0552 5960 aspnet_state - ok
18:40:56.0566 5960 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:40:56.0566 5960 AsyncMac - ok
18:40:56.0600 5960 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:40:56.0600 5960 atapi - ok
18:40:56.0611 5960 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:40:56.0611 5960 AtiHDAudioService - ok
18:40:56.0634 5960 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
18:40:56.0634 5960 AtiHdmiService - ok
18:40:56.0679 5960 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:40:56.0682 5960 AudioEndpointBuilder - ok
18:40:56.0689 5960 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:40:56.0692 5960 AudioSrv - ok
18:40:56.0728 5960 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:40:56.0729 5960 AxInstSV - ok
18:40:56.0748 5960 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:40:56.0750 5960 b06bdrv - ok
18:40:56.0763 5960 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:40:56.0765 5960 b57nd60a - ok
18:40:56.0831 5960 [ 6F8638EA0A55D65B03E24F6D1153D8F7 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
18:40:56.0832 5960 BBSvc - ok
18:40:56.0869 5960 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
18:40:56.0870 5960 BBUpdate - ok
18:40:56.0881 5960 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:40:56.0882 5960 BDESVC - ok
18:40:56.0917 5960 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:40:56.0918 5960 Beep - ok
18:40:56.0963 5960 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:40:56.0966 5960 BFE - ok
18:40:57.0093 5960 [ F14F048B4D05FBCE536250EA74BF9FDC ] BHDrvx64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys
18:40:57.0099 5960 BHDrvx64 - ok
18:40:57.0141 5960 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:40:57.0145 5960 BITS - ok
18:40:57.0160 5960 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:40:57.0160 5960 blbdrive - ok
18:40:57.0194 5960 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:40:57.0195 5960 bowser - ok
18:40:57.0207 5960 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:40:57.0207 5960 BrFiltLo - ok
18:40:57.0219 5960 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:40:57.0219 5960 BrFiltUp - ok
18:40:57.0228 5960 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:40:57.0229 5960 BridgeMP - ok
18:40:57.0262 5960 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:40:57.0263 5960 Browser - ok
18:40:57.0276 5960 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:40:57.0277 5960 Brserid - ok
18:40:57.0290 5960 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:40:57.0290 5960 BrSerWdm - ok
18:40:57.0305 5960 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:40:57.0305 5960 BrUsbMdm - ok
18:40:57.0317 5960 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:40:57.0317 5960 BrUsbSer - ok
18:40:57.0323 5960 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:40:57.0324 5960 BTHMODEM - ok
18:40:57.0341 5960 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:40:57.0342 5960 bthserv - ok
18:40:57.0437 5960 [ BE531939BB6D153DB63DBBFBD398A713 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
18:40:57.0443 5960 c2cautoupdatesvc - ok
18:40:57.0502 5960 [ 33E9F08F675EF94633C8EF8A7C4EADF3 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
18:40:57.0508 5960 c2cpnrsvc - ok
18:40:57.0511 5960 catchme - ok
18:40:57.0570 5960 [ 0510396A957E9FD7205BA62D3CAE4528 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys
18:40:57.0571 5960 ccSet_NIS - ok
18:40:57.0574 5960 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:40:57.0575 5960 cdfs - ok
18:40:57.0610 5960 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:40:57.0610 5960 cdrom - ok
18:40:57.0643 5960 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:40:57.0643 5960 CertPropSvc - ok
18:40:57.0652 5960 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:40:57.0653 5960 circlass - ok
18:40:57.0669 5960 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:40:57.0671 5960 CLFS - ok
18:40:57.0736 5960 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:40:57.0736 5960 clr_optimization_v2.0.50727_32 - ok
18:40:57.0768 5960 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:40:57.0769 5960 clr_optimization_v2.0.50727_64 - ok
18:40:57.0817 5960 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:40:57.0817 5960 clr_optimization_v4.0.30319_32 - ok
18:40:57.0851 5960 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:40:57.0852 5960 clr_optimization_v4.0.30319_64 - ok
18:40:57.0865 5960 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:40:57.0865 5960 CmBatt - ok
18:40:57.0900 5960 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:40:57.0900 5960 cmdide - ok
18:40:57.0945 5960 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
18:40:57.0946 5960 CNG - ok
18:40:57.0949 5960 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:40:57.0950 5960 Compbatt - ok
18:40:57.0989 5960 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:40:57.0990 5960 CompositeBus - ok
18:40:57.0993 5960 COMSysApp - ok
18:40:58.0001 5960 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:40:58.0001 5960 crcdisk - ok
18:40:58.0049 5960 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
18:40:58.0049 5960 Creative ALchemy AL6 Licensing Service - ok
18:40:58.0061 5960 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
18:40:58.0062 5960 Creative Audio Engine Licensing Service - ok
18:40:58.0097 5960 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:40:58.0098 5960 CryptSvc - ok
18:40:58.0142 5960 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:40:58.0144 5960 CSC - ok
18:40:58.0185 5960 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:40:58.0188 5960 CscService - ok
18:40:58.0207 5960 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
18:40:58.0208 5960 CTAudSvcService - ok
18:40:58.0248 5960 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:40:58.0251 5960 DcomLaunch - ok
18:40:58.0268 5960 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:40:58.0270 5960 defragsvc - ok
18:40:58.0305 5960 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:40:58.0306 5960 DfsC - ok
18:40:58.0345 5960 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:40:58.0346 5960 Dhcp - ok
18:40:58.0357 5960 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:40:58.0357 5960 discache - ok
18:40:58.0365 5960 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:40:58.0365 5960 Disk - ok
18:40:58.0396 5960 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:40:58.0397 5960 Dnscache - ok
18:40:58.0434 5960 [ FA122BC1451B1B35B7814FBE1ACF1924 ] Dokan C:\Windows\system32\drivers\dokan.sys
18:40:58.0435 5960 Dokan - ok
18:40:58.0505 5960 [ 8C856E531A1170F53AC6844E89CD0B5F ] DokanMounter C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
18:40:58.0505 5960 DokanMounter - ok
18:40:58.0545 5960 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:40:58.0547 5960 dot3svc - ok
18:40:58.0582 5960 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:40:58.0583 5960 DPS - ok
18:40:58.0619 5960 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:40:58.0619 5960 drmkaud - ok
18:40:58.0658 5960 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:40:58.0660 5960 dtsoftbus01 - ok
18:40:58.0711 5960 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:40:58.0715 5960 DXGKrnl - ok
18:40:58.0735 5960 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:40:58.0736 5960 EapHost - ok
18:40:58.0792 5960 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:40:58.0805 5960 ebdrv - ok
18:40:58.0842 5960 [ 1B7AA375F711F66D5FF2B855F9EC987F ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:40:58.0844 5960 eeCtrl - ok
18:40:58.0880 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
18:40:58.0881 5960 EFS - ok
18:40:58.0936 5960 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:40:58.0939 5960 ehRecvr - ok
18:40:58.0971 5960 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:40:58.0972 5960 ehSched - ok
18:40:58.0996 5960 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:40:58.0998 5960 elxstor - ok
18:40:59.0036 5960 [ 7230C8B80DDE1F0524C353240B78CC0E ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:40:59.0037 5960 EraserUtilRebootDrv - ok
18:40:59.0066 5960 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:40:59.0066 5960 ErrDev - ok
18:40:59.0084 5960 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:40:59.0085 5960 EventSystem - ok
18:40:59.0101 5960 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:40:59.0102 5960 exfat - ok
18:40:59.0118 5960 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:40:59.0119 5960 fastfat - ok
18:40:59.0159 5960 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:40:59.0162 5960 Fax - ok
18:40:59.0170 5960 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:40:59.0170 5960 fdc - ok
18:40:59.0177 5960 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:40:59.0178 5960 fdPHost - ok
18:40:59.0188 5960 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:40:59.0188 5960 FDResPub - ok
18:40:59.0199 5960 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:40:59.0200 5960 FileInfo - ok
18:40:59.0205 5960 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:40:59.0205 5960 Filetrace - ok
18:40:59.0216 5960 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:40:59.0216 5960 flpydisk - ok
18:40:59.0254 5960 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:40:59.0255 5960 FltMgr - ok
18:40:59.0303 5960 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
18:40:59.0308 5960 FontCache - ok
18:40:59.0370 5960 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:40:59.0371 5960 FontCache3.0.0.0 - ok
18:40:59.0388 5960 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:40:59.0389 5960 FsDepends - ok
18:40:59.0425 5960 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:40:59.0425 5960 Fs_Rec - ok
18:40:59.0466 5960 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:40:59.0467 5960 fvevol - ok
18:40:59.0495 5960 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:40:59.0495 5960 gagp30kx - ok
18:40:59.0535 5960 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:40:59.0539 5960 gpsvc - ok
18:40:59.0582 5960 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:59.0583 5960 gupdate - ok
18:40:59.0586 5960 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:59.0587 5960 gupdatem - ok
18:40:59.0614 5960 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:40:59.0615 5960 gusvc - ok
18:40:59.0651 5960 [ F8F0851D336C3B88DBD7232B6348E09A ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:40:59.0651 5960 hamachi - ok
18:40:59.0660 5960 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:40:59.0660 5960 hcw85cir - ok
18:40:59.0695 5960 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:40:59.0697 5960 HdAudAddService - ok
18:40:59.0710 5960 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:40:59.0710 5960 HDAudBus - ok
18:40:59.0722 5960 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:40:59.0722 5960 HidBatt - ok
18:40:59.0737 5960 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:40:59.0737 5960 HidBth - ok
18:40:59.0813 5960 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:40:59.0814 5960 HidIr - ok
18:40:59.0817 5960 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
18:40:59.0817 5960 hidserv - ok
18:40:59.0833 5960 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:40:59.0833 5960 HidUsb - ok
18:40:59.0860 5960 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:40:59.0861 5960 hkmsvc - ok
18:40:59.0904 5960 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:40:59.0905 5960 HomeGroupListener - ok
18:40:59.0946 5960 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:40:59.0947 5960 HomeGroupProvider - ok
18:40:59.0979 5960 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:40:59.0980 5960 HpSAMD - ok
18:41:00.0024 5960 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:41:00.0027 5960 HTTP - ok
18:41:00.0060 5960 [ D7E0591E2BA1289C875A9D948377441E ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO64A.SYS
18:41:00.0061 5960 HWiNFO32 - ok
18:41:00.0092 5960 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:41:00.0093 5960 hwpolicy - ok
18:41:00.0125 5960 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:41:00.0126 5960 i8042prt - ok
18:41:00.0162 5960 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:41:00.0164 5960 iaStorV - ok
18:41:00.0199 5960 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:41:00.0202 5960 idsvc - ok
18:41:00.0295 5960 [ DAAA22256BCA5E6EB74CD379F3092AAA ] IDSVia64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys
18:41:00.0297 5960 IDSVia64 - ok
18:41:00.0300 5960 IEEtwCollectorService - ok
18:41:00.0316 5960 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:41:00.0316 5960 iirsp - ok
18:41:00.0364 5960 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
18:41:00.0368 5960 IKEEXT - ok
18:41:00.0398 5960 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:41:00.0398 5960 intelide - ok
18:41:00.0408 5960 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:41:00.0408 5960 intelppm - ok
18:41:00.0432 5960 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:41:00.0433 5960 IPBusEnum - ok
18:41:00.0467 5960 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:41:00.0467 5960 IpFilterDriver - ok
18:41:00.0506 5960 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:41:00.0509 5960 iphlpsvc - ok
18:41:00.0544 5960 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:41:00.0544 5960 IPMIDRV - ok
18:41:00.0557 5960 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:41:00.0558 5960 IPNAT - ok
18:41:00.0561 5960 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:41:00.0561 5960 IRENUM - ok
18:41:00.0572 5960 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:41:00.0572 5960 isapnp - ok
18:41:00.0611 5960 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:41:00.0612 5960 iScsiPrt - ok
18:41:00.0640 5960 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
18:41:00.0640 5960 JRAID - ok
18:41:00.0649 5960 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:41:00.0650 5960 kbdclass - ok
18:41:00.0681 5960 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:41:00.0681 5960 kbdhid - ok
18:41:00.0688 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
18:41:00.0689 5960 KeyIso - ok
18:41:00.0722 5960 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:41:00.0722 5960 KSecDD - ok
18:41:00.0729 5960 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:41:00.0730 5960 KSecPkg - ok
18:41:00.0737 5960 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:41:00.0737 5960 ksthunk - ok
18:41:00.0757 5960 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:41:00.0759 5960 KtmRm - ok
18:41:00.0800 5960 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:41:00.0801 5960 LanmanServer - ok
18:41:00.0837 5960 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:41:00.0839 5960 LanmanWorkstation - ok
18:41:00.0854 5960 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:41:00.0854 5960 lltdio - ok
18:41:00.0871 5960 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:41:00.0873 5960 lltdsvc - ok
18:41:00.0883 5960 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:41:00.0883 5960 lmhosts - ok
18:41:00.0895 5960 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:41:00.0896 5960 LSI_FC - ok
18:41:00.0905 5960 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:41:00.0905 5960 LSI_SAS - ok
18:41:00.0916 5960 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:41:00.0917 5960 LSI_SAS2 - ok
18:41:00.0939 5960 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:41:00.0939 5960 LSI_SCSI - ok
18:41:00.0955 5960 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:41:00.0956 5960 luafv - ok
18:41:00.0988 5960 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:41:00.0989 5960 Mcx2Svc - ok
18:41:00.0996 5960 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:41:00.0996 5960 megasas - ok
18:41:01.0013 5960 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:41:01.0014 5960 MegaSR - ok
18:41:01.0024 5960 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:41:01.0025 5960 MMCSS - ok
18:41:01.0036 5960 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:41:01.0037 5960 Modem - ok
18:41:01.0056 5960 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:41:01.0056 5960 monitor - ok
18:41:01.0074 5960 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:41:01.0074 5960 mouclass - ok
18:41:01.0091 5960 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:41:01.0091 5960 mouhid - ok
18:41:01.0114 5960 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:41:01.0114 5960 mountmgr - ok
18:41:01.0129 5960 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:41:01.0130 5960 mpio - ok
18:41:01.0140 5960 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:41:01.0140 5960 mpsdrv - ok
18:41:01.0177 5960 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:41:01.0181 5960 MpsSvc - ok
18:41:01.0213 5960 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:41:01.0214 5960 MRxDAV - ok
18:41:01.0253 5960 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:41:01.0254 5960 mrxsmb - ok
18:41:01.0289 5960 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:41:01.0290 5960 mrxsmb10 - ok
18:41:01.0299 5960 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:41:01.0300 5960 mrxsmb20 - ok
18:41:01.0335 5960 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:41:01.0336 5960 msahci - ok
18:41:01.0370 5960 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:41:01.0370 5960 msdsm - ok
18:41:01.0379 5960 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:41:01.0381 5960 MSDTC - ok
18:41:01.0398 5960 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:41:01.0398 5960 Msfs - ok
18:41:01.0405 5960 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:41:01.0405 5960 mshidkmdf - ok
18:41:01.0438 5960 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:41:01.0438 5960 msisadrv - ok
18:41:01.0451 5960 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:41:01.0452 5960 MSiSCSI - ok
18:41:01.0455 5960 msiserver - ok
18:41:01.0468 5960 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:41:01.0469 5960 MSKSSRV - ok
18:41:01.0481 5960 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:41:01.0481 5960 MSPCLOCK - ok
18:41:01.0499 5960 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:41:01.0500 5960 MSPQM - ok
18:41:01.0658 5960 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:41:01.0660 5960 MsRPC - ok
18:41:01.0734 5960 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:41:01.0735 5960 mssmbios - ok
18:41:01.0771 5960 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:41:01.0771 5960 MSTEE - ok
18:41:01.0807 5960 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:41:01.0808 5960 MTConfig - ok
18:41:01.0834 5960 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
18:41:01.0834 5960 MTsensor - ok
18:41:01.0902 5960 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:41:01.0903 5960 Mup - ok
18:41:01.0962 5960 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:41:01.0965 5960 napagent - ok
18:41:01.0988 5960 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:41:01.0989 5960 NativeWifiP - ok
18:41:02.0064 5960 [ 702E07EC32F96ACDB873E9A5465D4401 ] NAVENG C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\ENG64.SYS
18:41:02.0064 5960 NAVENG - ok
18:41:02.0120 5960 [ 302EA314A1AF0D7CEF0A3D0195F79561 ] NAVEX15 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\EX64.SYS
18:41:02.0128 5960 NAVEX15 - ok
18:41:02.0170 5960 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:41:02.0174 5960 NDIS - ok
18:41:02.0185 5960 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:41:02.0186 5960 NdisCap - ok
18:41:02.0193 5960 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:41:02.0193 5960 NdisTapi - ok
18:41:02.0229 5960 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:41:02.0230 5960 Ndisuio - ok
18:41:02.0265 5960 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:41:02.0265 5960 NdisWan - ok
18:41:02.0306 5960 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:41:02.0307 5960 NDProxy - ok
18:41:02.0345 5960 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:41:02.0345 5960 NetBIOS - ok
18:41:02.0377 5960 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:41:02.0378 5960 NetBT - ok
18:41:02.0388 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
18:41:02.0389 5960 Netlogon - ok
18:41:02.0411 5960 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:41:02.0413 5960 Netman - ok
18:41:02.0451 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0452 5960 NetMsmqActivator - ok
18:41:02.0455 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0455 5960 NetPipeActivator - ok
18:41:02.0476 5960 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:41:02.0478 5960 netprofm - ok
18:41:02.0482 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0483 5960 NetTcpActivator - ok
18:41:02.0486 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0487 5960 NetTcpPortSharing - ok
18:41:02.0501 5960 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:41:02.0501 5960 nfrd960 - ok
18:41:02.0650 5960 [ C87442B6D17912785DC143CEDCA508C9 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
18:41:02.0651 5960 NIS - ok
18:41:02.0687 5960 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:41:02.0689 5960 NlaSvc - ok
18:41:02.0694 5960 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:41:02.0694 5960 Npfs - ok
18:41:02.0705 5960 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:41:02.0706 5960 nsi - ok
18:41:02.0718 5960 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:41:02.0718 5960 nsiproxy - ok
18:41:02.0773 5960 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:41:02.0780 5960 Ntfs - ok
18:41:02.0791 5960 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:41:02.0792 5960 Null - ok
18:41:02.0818 5960 [ 8EBCB9165EE7F1571842F4D9D624A74C ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
18:41:02.0818 5960 nusb3hub - ok
18:41:02.0833 5960 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:41:02.0834 5960 nusb3xhc - ok
18:41:02.0872 5960 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:41:02.0873 5960 nvraid - ok
18:41:02.0884 5960 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:41:02.0885 5960 nvstor - ok
18:41:02.0919 5960 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:41:02.0920 5960 nv_agp - ok
18:41:02.0976 5960 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:41:02.0978 5960 odserv - ok
18:41:03.0007 5960 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:41:03.0007 5960 ohci1394 - ok
18:41:03.0026 5960 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:41:03.0026 5960 ose - ok
18:41:03.0055 5960 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:41:03.0057 5960 p2pimsvc - ok
18:41:03.0091 5960 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:41:03.0093 5960 p2psvc - ok
18:41:03.0114 5960 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:41:03.0115 5960 Parport - ok
18:41:03.0151 5960 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:41:03.0151 5960 partmgr - ok
18:41:03.0166 5960 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:41:03.0167 5960 PcaSvc - ok
18:41:03.0178 5960 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:41:03.0178 5960 pci - ok
18:41:03.0214 5960 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:41:03.0214 5960 pciide - ok
18:41:03.0233 5960 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:41:03.0234 5960 pcmcia - ok
18:41:03.0252 5960 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:41:03.0253 5960 pcw - ok
18:41:03.0269 5960 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:41:03.0272 5960 PEAUTH - ok
18:41:03.0307 5960 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:41:03.0313 5960 PeerDistSvc - ok
18:41:03.0390 5960 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:41:03.0391 5960 PerfHost - ok
18:41:03.0444 5960 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:41:03.0450 5960 pla - ok
18:41:03.0497 5960 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:41:03.0500 5960 PlugPlay - ok
18:41:03.0502 5960 PnkBstrA - ok
18:41:03.0512 5960 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:41:03.0513 5960 PNRPAutoReg - ok
18:41:03.0518 5960 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:41:03.0520 5960 PNRPsvc - ok
18:41:03.0563 5960 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:41:03.0565 5960 PolicyAgent - ok
18:41:03.0593 5960 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:41:03.0595 5960 Power - ok
18:41:03.0636 5960 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:41:03.0636 5960 PptpMiniport - ok
18:41:03.0647 5960 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:41:03.0648 5960 Processor - ok
18:41:03.0690 5960 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:41:03.0691 5960 ProfSvc - ok
18:41:03.0696 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
18:41:03.0697 5960 ProtectedStorage - ok
18:41:03.0731 5960 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:41:03.0731 5960 Psched - ok
18:41:03.0772 5960 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:41:03.0778 5960 ql2300 - ok
18:41:03.0794 5960 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:41:03.0795 5960 ql40xx - ok
18:41:03.0822 5960 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:41:03.0823 5960 QWAVE - ok
18:41:03.0828 5960 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:41:03.0829 5960 QWAVEdrv - ok
18:41:03.0837 5960 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:41:03.0838 5960 RasAcd - ok
18:41:03.0852 5960 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:41:03.0852 5960 RasAgileVpn - ok
18:41:03.0865 5960 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:41:03.0867 5960 RasAuto - ok
18:41:03.0900 5960 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:41:03.0901 5960 Rasl2tp - ok
18:41:03.0935 5960 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:41:03.0937 5960 RasMan - ok
18:41:03.0946 5960 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:41:03.0946 5960 RasPppoe - ok
18:41:03.0951 5960 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:41:03.0951 5960 RasSstp - ok
18:41:03.0963 5960 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:41:03.0964 5960 rdbss - ok
18:41:03.0978 5960 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:41:03.0978 5960 rdpbus - ok
18:41:04.0015 5960 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:41:04.0015 5960 RDPCDD - ok
18:41:04.0060 5960 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:41:04.0061 5960 RDPDR - ok
18:41:04.0070 5960 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:41:04.0070 5960 RDPENCDD - ok
18:41:04.0079 5960 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:41:04.0080 5960 RDPREFMP - ok
18:41:04.0112 5960 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:41:04.0113 5960 RdpVideoMiniport - ok
18:41:04.0146 5960 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:41:04.0147 5960 RDPWD - ok
18:41:04.0186 5960 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:41:04.0187 5960 rdyboost - ok
18:41:04.0206 5960 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:41:04.0207 5960 RemoteAccess - ok
18:41:04.0219 5960 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:41:04.0220 5960 RemoteRegistry - ok
18:41:04.0229 5960 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:41:04.0230 5960 RpcEptMapper - ok
18:41:04.0249 5960 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:41:04.0250 5960 RpcLocator - ok
18:41:04.0289 5960 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:41:04.0292 5960 RpcSs - ok
18:41:04.0307 5960 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:41:04.0307 5960 rspndr - ok
18:41:04.0344 5960 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:41:04.0344 5960 s3cap - ok
18:41:04.0355 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
18:41:04.0355 5960 SamSs - ok
18:41:04.0392 5960 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:41:04.0392 5960 sbp2port - ok
18:41:04.0411 5960 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:41:04.0412 5960 SCardSvr - ok
18:41:04.0446 5960 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:41:04.0446 5960 scfilter - ok
18:41:04.0492 5960 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:41:04.0497 5960 Schedule - ok
18:41:04.0534 5960 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:41:04.0534 5960 SCPolicySvc - ok
18:41:04.0571 5960 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:41:04.0573 5960 SDRSVC - ok
18:41:04.0584 5960 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:41:04.0584 5960 secdrv - ok
18:41:04.0621 5960 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:41:04.0622 5960 seclogon - ok
18:41:04.0656 5960 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:41:04.0657 5960 SENS - ok
18:41:04.0666 5960 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:41:04.0667 5960 SensrSvc - ok
18:41:04.0681 5960 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:41:04.0681 5960 Serenum - ok
18:41:04.0694 5960 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:41:04.0694 5960 Serial - ok
18:41:04.0723 5960 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:41:04.0723 5960 sermouse - ok
18:41:04.0813 5960 [ 6766E06DDD621A7B4077E6F523D562E4 ] Serviio C:\Program Files (x86)\Serviio\bin\ServiioService.exe
18:41:04.0815 5960 Serviio - ok
18:41:04.0853 5960 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:41:04.0854 5960 SessionEnv - ok
18:41:04.0889 5960 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:41:04.0889 5960 sffdisk - ok
18:41:04.0897 5960 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:41:04.0897 5960 sffp_mmc - ok
18:41:04.0900 5960 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:41:04.0900 5960 sffp_sd - ok
18:41:04.0911 5960 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:41:04.0912 5960 sfloppy - ok
18:41:04.0939 5960 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:41:04.0941 5960 SharedAccess - ok
18:41:04.0981 5960 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:41:04.0984 5960 ShellHWDetection - ok
18:41:04.0996 5960 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:41:04.0997 5960 SiSRaid2 - ok
18:41:05.0009 5960 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:41:05.0010 5960 SiSRaid4 - ok
18:41:05.0063 5960 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:41:05.0064 5960 SkypeUpdate - ok
18:41:05.0075 5960 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:41:05.0076 5960 Smb - ok
18:41:05.0092 5960 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:41:05.0093 5960 SNMPTRAP - ok
18:41:05.0099 5960 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:41:05.0099 5960 spldr - ok
18:41:05.0144 5960 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:41:05.0147 5960 Spooler - ok
18:41:05.0228 5960 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:41:05.0242 5960 sppsvc - ok
18:41:05.0285 5960 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:41:05.0286 5960 sppuinotify - ok
18:41:05.0359 5960 [ 8BFD1752AAA15BF47D668E9AC5AF96FB ] SRTSP C:\Windows\system32\drivers\NISx64\1501000.012\SRTSP64.SYS
18:41:05.0363 5960 SRTSP - ok
18:41:05.0376 5960 [ B18CE01B9C09C59422BA7C7064248B35 ] SRTSPX C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS
18:41:05.0377 5960 SRTSPX - ok
18:41:05.0420 5960 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:41:05.0422 5960 srv - ok
18:41:05.0434 5960 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:41:05.0436 5960 srv2 - ok
18:41:05.0446 5960 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:41:05.0447 5960 srvnet - ok
18:41:05.0458 5960 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:41:05.0460 5960 SSDPSRV - ok
18:41:05.0479 5960 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:41:05.0480 5960 SstpSvc - ok
18:41:05.0535 5960 [ 2F3B5A3567FFB343D8867C3D34C687F1 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:41:05.0538 5960 Steam Client Service - ok
18:41:05.0548 5960 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:41:05.0548 5960 stexstor - ok
18:41:05.0591 5960 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:41:05.0594 5960 stisvc - ok
18:41:05.0636 5960 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:41:05.0636 5960 storflt - ok
18:41:05.0658 5960 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
18:41:05.0659 5960 StorSvc - ok
18:41:05.0694 5960 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:41:05.0694 5960 storvsc - ok
18:41:05.0726 5960 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:41:05.0726 5960 swenum - ok
18:41:05.0784 5960 SwitchBoard - ok
18:41:05.0799 5960 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:41:05.0802 5960 swprv - ok
18:41:05.0844 5960 [ 5C9EE2303CA7F267665D75237862B39C ] SymDS C:\Windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS
18:41:05.0847 5960 SymDS - ok
18:41:05.0879 5960 [ 08AF51153E441687130B759A8F6892ED ] SymEFA C:\Windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS
18:41:05.0884 5960 SymEFA - ok
18:41:05.0914 5960 [ 97E11C50CE52277B377396EA8838E539 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:41:05.0915 5960 SymEvent - ok
18:41:05.0956 5960 [ 48C2934683CBD06F662B088EEF49EF6A ] SymIRON C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS
18:41:05.0957 5960 SymIRON - ok
18:41:05.0986 5960 [ 78A2F073AD9EA5EBC04A70931EA36C9A ] SymNetS C:\Windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS
18:41:05.0989 5960 SymNetS - ok
18:41:06.0041 5960 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:41:06.0049 5960 SysMain - ok
18:41:06.0083 5960 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:41:06.0085 5960 TabletInputService - ok
18:41:06.0114 5960 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
18:41:06.0115 5960 taphss - ok
18:41:06.0153 5960 [ 95206567C7CA71A3D485146824224C40 ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
18:41:06.0154 5960 taphss6 - ok
18:41:06.0197 5960 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:41:06.0199 5960 TapiSrv - ok
18:41:06.0216 5960 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:41:06.0217 5960 TBS - ok
18:41:06.0277 5960 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:41:06.0284 5960 Tcpip - ok
18:41:06.0319 5960 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:41:06.0327 5960 TCPIP6 - ok
18:41:06.0386 5960 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:41:06.0386 5960 tcpipreg - ok
18:41:06.0407 5960 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:41:06.0407 5960 TDPIPE - ok
18:41:06.0439 5960 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:41:06.0440 5960 TDTCP - ok
18:41:06.0481 5960 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:41:06.0482 5960 tdx - ok
18:41:06.0517 5960 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:41:06.0517 5960 TermDD - ok
18:41:06.0564 5960 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:41:06.0568 5960 TermService - ok
18:41:06.0585 5960 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:41:06.0586 5960 Themes - ok
18:41:06.0607 5960 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:41:06.0608 5960 THREADORDER - ok
18:41:06.0617 5960 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:41:06.0619 5960 TrkWks - ok
18:41:06.0681 5960 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:41:06.0681 5960 TrustedInstaller - ok
18:41:06.0718 5960 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:41:06.0718 5960 tssecsrv - ok
18:41:06.0758 5960 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:41:06.0759 5960 TsUsbFlt - ok
18:41:06.0794 5960 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:41:06.0795 5960 tunnel - ok
18:41:06.0809 5960 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:41:06.0809 5960 uagp35 - ok
18:41:06.0848 5960 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:41:06.0849 5960 udfs - ok
18:41:06.0856 5960 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:41:06.0857 5960 UI0Detect - ok
18:41:06.0871 5960 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:41:06.0871 5960 uliagpkx - ok
18:41:06.0910 5960 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:41:06.0911 5960 umbus - ok
18:41:06.0918 5960 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:41:06.0919 5960 UmPass - ok
18:41:06.0937 5960 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
18:41:06.0939 5960 UmRdpService - ok
18:41:06.0949 5960 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:41:06.0952 5960 upnphost - ok
18:41:06.0983 5960 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:41:06.0984 5960 usbccgp - ok
18:41:07.0024 5960 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:41:07.0024 5960 usbcir - ok
18:41:07.0057 5960 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:41:07.0057 5960 usbehci - ok
18:41:07.0074 5960 [ 858BE9C0E498C8E505E198E17EECE0D9 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
18:41:07.0075 5960 usbfilter - ok
18:41:07.0111 5960 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:41:07.0112 5960 usbhub - ok
18:41:07.0128 5960 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:41:07.0128 5960 usbohci - ok
18:41:07.0141 5960 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:41:07.0141 5960 usbprint - ok
18:41:07.0179 5960 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:41:07.0180 5960 USBSTOR - ok
18:41:07.0213 5960 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:41:07.0213 5960 usbuhci - ok
18:41:07.0224 5960 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:41:07.0225 5960 UxSms - ok
18:41:07.0238 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
18:41:07.0238 5960 VaultSvc - ok
18:41:07.0266 5960 [ 3A4B01C2BDB07DFEF29B0B369487503A ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
18:41:07.0266 5960 VCSVADHWSer - ok
18:41:07.0279 5960 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:41:07.0279 5960 vdrvroot - ok
18:41:07.0314 5960 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:41:07.0317 5960 vds - ok
18:41:07.0331 5960 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:41:07.0331 5960 vga - ok
18:41:07.0348 5960 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:41:07.0348 5960 VgaSave - ok
18:41:07.0388 5960 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:41:07.0389 5960 vhdmp - ok
18:41:07.0432 5960 [ DFDF7F9CAA50EE72A633EA4BBD65A557 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:41:07.0437 5960 VIAHdAudAddService - ok
18:41:07.0475 5960 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:41:07.0475 5960 viaide - ok
18:41:07.0515 5960 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:41:07.0516 5960 vmbus - ok
18:41:07.0527 5960 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:41:07.0527 5960 VMBusHID - ok
18:41:07.0536 5960 [ 754C8BF43F0DD4B54865F174A62761E9 ] VMfilt C:\Windows\system32\drivers\VMfilt64.sys
18:41:07.0536 5960 VMfilt - ok
18:41:07.0546 5960 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:41:07.0547 5960 volmgr - ok
18:41:07.0579 5960 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:41:07.0581 5960 volmgrx - ok
18:41:07.0619 5960 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:41:07.0620 5960 volsnap - ok
18:41:07.0636 5960 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:41:07.0637 5960 vsmraid - ok
18:41:07.0691 5960 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:41:07.0698 5960 VSS - ok
18:41:07.0712 5960 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:41:07.0712 5960 vwifibus - ok
18:41:07.0723 5960 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:41:07.0726 5960 W32Time - ok
18:41:07.0743 5960 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:41:07.0743 5960 WacomPen - ok
18:41:07.0755 5960 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:41:07.0755 5960 WANARP - ok
18:41:07.0758 5960 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:41:07.0758 5960 Wanarpv6 - ok
18:41:07.0801 5960 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:41:07.0806 5960 WatAdminSvc - ok
18:41:07.0866 5960 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:41:07.0873 5960 wbengine - ok
18:41:07.0892 5960 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:41:07.0894 5960 WbioSrvc - ok
18:41:07.0933 5960 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:41:07.0935 5960 wcncsvc - ok
18:41:07.0946 5960 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:41:07.0947 5960 WcsPlugInService - ok
18:41:07.0963 5960 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:41:07.0964 5960 Wd - ok
18:41:08.0003 5960 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:41:08.0006 5960 Wdf01000 - ok
18:41:08.0022 5960 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:41:08.0023 5960 WdiServiceHost - ok
18:41:08.0025 5960 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:41:08.0027 5960 WdiSystemHost - ok
18:41:08.0063 5960 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
18:41:08.0065 5960 WebClient - ok
18:41:08.0077 5960 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:41:08.0078 5960 Wecsvc - ok
18:41:08.0088 5960 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:41:08.0089 5960 wercplsupport - ok
18:41:08.0110 5960 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:41:08.0111 5960 WerSvc - ok
18:41:08.0120 5960 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:41:08.0120 5960 WfpLwf - ok
18:41:08.0131 5960 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:41:08.0131 5960 WIMMount - ok
18:41:08.0153 5960 WinDefend - ok
18:41:08.0158 5960 WinHttpAutoProxySvc - ok
18:41:08.0211 5960 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:41:08.0212 5960 Winmgmt - ok
18:41:08.0275 5960 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:41:08.0284 5960 WinRM - ok
18:41:08.0317 5960 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:41:08.0317 5960 WinUsb - ok
18:41:08.0344 5960 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:41:08.0349 5960 Wlansvc - ok
18:41:08.0473 5960 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:41:08.0482 5960 wlidsvc - ok
18:41:08.0520 5960 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:41:08.0520 5960 WmiAcpi - ok
18:41:08.0546 5960 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:41:08.0547 5960 wmiApSrv - ok
18:41:08.0556 5960 WMPNetworkSvc - ok
18:41:08.0567 5960 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:41:08.0568 5960 WPCSvc - ok
18:41:08.0600 5960 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:41:08.0601 5960 WPDBusEnum - ok
18:41:08.0608 5960 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:41:08.0608 5960 ws2ifsl - ok
18:41:08.0633 5960 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
18:41:08.0635 5960 wscsvc - ok
18:41:08.0637 5960 WSearch - ok
18:41:08.0705 5960 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:41:08.0715 5960 wuauserv - ok
18:41:08.0747 5960 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:41:08.0748 5960 WudfPf - ok
18:41:08.0763 5960 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:41:08.0764 5960 WUDFRd - ok
18:41:08.0792 5960 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:41:08.0794 5960 wudfsvc - ok
18:41:08.0832 5960 [ 04F82965C09CBDF646B487E145060301 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:41:08.0834 5960 WwanSvc - ok
18:41:08.0836 5960 XFDriver64 - ok
18:41:08.0868 5960 [ B2818BFAB7817F7E7EE886F58B15B35C ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:41:08.0870 5960 yukonw7 - ok
18:41:08.0874 5960 ================ Scan global ===============================
18:41:08.0889 5960 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:41:08.0931 5960 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:41:08.0935 5960 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:41:08.0966 5960 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:41:08.0986 5960 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:41:08.0988 5960 [Global] - ok
18:41:08.0989 5960 ================ Scan MBR ==================================
18:41:09.0009 5960 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:41:09.0294 5960 \Device\Harddisk0\DR0 - ok
18:41:09.0296 5960 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:41:09.0298 5960 \Device\Harddisk1\DR1 - ok
18:41:09.0298 5960 ================ Scan VBR ==================================
18:41:09.0300 5960 [ 9E72AA98BE90BBA265589B95D28C05E1 ] \Device\Harddisk0\DR0\Partition1
18:41:09.0301 5960 \Device\Harddisk0\DR0\Partition1 - ok
18:41:09.0310 5960 [ 3C56551648889F717C769584D35BB9A6 ] \Device\Harddisk0\DR0\Partition2
18:41:09.0311 5960 \Device\Harddisk0\DR0\Partition2 - ok
18:41:09.0313 5960 [ 3C778B33D7D7D063CFA8896BB63063A5 ] \Device\Harddisk1\DR1\Partition1
18:41:09.0313 5960 \Device\Harddisk1\DR1\Partition1 - ok
18:41:09.0314 5960 ============================================================
18:41:09.0314 5960 Scan finished
18:41:09.0314 5960 ============================================================
18:41:09.0319 2128 Detected object count: 0
18:41:09.0319 2128 Actual detected object count: 0
Vypadá to, že je to čisté
18:40:20.0281 5648 ============================================================
18:40:20.0288 7476 Detected object count: 0
18:40:20.0288 7476 Actual detected object count: 0
18:40:54.0619 5960 ============================================================
18:40:54.0619 5960 Scan started
18:40:54.0619 5960 Mode: Manual;
18:40:54.0619 5960 ============================================================
18:40:55.0216 5960 ================ Scan system memory ========================
18:40:55.0216 5960 System memory - ok
18:40:55.0216 5960 ================ Scan services =============================
18:40:55.0339 5960 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:40:55.0340 5960 1394ohci - ok
18:40:55.0382 5960 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:40:55.0383 5960 ACPI - ok
18:40:55.0421 5960 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:40:55.0422 5960 AcpiPmi - ok
18:40:55.0518 5960 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:40:55.0518 5960 AdobeARMservice - ok
18:40:55.0624 5960 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:40:55.0625 5960 AdobeFlashPlayerUpdateSvc - ok
18:40:55.0653 5960 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:40:55.0655 5960 adp94xx - ok
18:40:55.0675 5960 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:40:55.0677 5960 adpahci - ok
18:40:55.0694 5960 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:40:55.0695 5960 adpu320 - ok
18:40:55.0718 5960 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:40:55.0719 5960 AeLookupSvc - ok
18:40:55.0759 5960 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
18:40:55.0761 5960 AFD - ok
18:40:55.0792 5960 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:40:55.0793 5960 agp440 - ok
18:40:55.0803 5960 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:40:55.0803 5960 ALG - ok
18:40:55.0839 5960 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:40:55.0839 5960 aliide - ok
18:40:55.0872 5960 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:40:55.0873 5960 AMD External Events Utility - ok
18:40:55.0938 5960 AMD FUEL Service - ok
18:40:55.0960 5960 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:40:55.0960 5960 amdide - ok
18:40:55.0978 5960 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
18:40:55.0979 5960 amdiox64 - ok
18:40:55.0990 5960 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:40:55.0990 5960 AmdK8 - ok
18:40:56.0179 5960 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:40:56.0224 5960 amdkmdag - ok
18:40:56.0245 5960 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:40:56.0247 5960 amdkmdap - ok
18:40:56.0261 5960 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:40:56.0262 5960 AmdPPM - ok
18:40:56.0299 5960 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:40:56.0299 5960 amdsata - ok
18:40:56.0312 5960 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:40:56.0313 5960 amdsbs - ok
18:40:56.0325 5960 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:40:56.0325 5960 amdxata - ok
18:40:56.0332 5960 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:56.0333 5960 AODDriver4.01 - ok
18:40:56.0335 5960 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:40:56.0335 5960 AODDriver4.2 - ok
18:40:56.0364 5960 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:40:56.0365 5960 AppID - ok
18:40:56.0381 5960 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:40:56.0381 5960 AppIDSvc - ok
18:40:56.0418 5960 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
18:40:56.0418 5960 Appinfo - ok
18:40:56.0439 5960 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:40:56.0440 5960 AppMgmt - ok
18:40:56.0456 5960 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:40:56.0456 5960 arc - ok
18:40:56.0464 5960 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:40:56.0464 5960 arcsas - ok
18:40:56.0552 5960 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:40:56.0552 5960 aspnet_state - ok
18:40:56.0566 5960 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:40:56.0566 5960 AsyncMac - ok
18:40:56.0600 5960 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:40:56.0600 5960 atapi - ok
18:40:56.0611 5960 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:40:56.0611 5960 AtiHDAudioService - ok
18:40:56.0634 5960 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
18:40:56.0634 5960 AtiHdmiService - ok
18:40:56.0679 5960 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:40:56.0682 5960 AudioEndpointBuilder - ok
18:40:56.0689 5960 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:40:56.0692 5960 AudioSrv - ok
18:40:56.0728 5960 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:40:56.0729 5960 AxInstSV - ok
18:40:56.0748 5960 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:40:56.0750 5960 b06bdrv - ok
18:40:56.0763 5960 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:40:56.0765 5960 b57nd60a - ok
18:40:56.0831 5960 [ 6F8638EA0A55D65B03E24F6D1153D8F7 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
18:40:56.0832 5960 BBSvc - ok
18:40:56.0869 5960 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
18:40:56.0870 5960 BBUpdate - ok
18:40:56.0881 5960 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:40:56.0882 5960 BDESVC - ok
18:40:56.0917 5960 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:40:56.0918 5960 Beep - ok
18:40:56.0963 5960 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:40:56.0966 5960 BFE - ok
18:40:57.0093 5960 [ F14F048B4D05FBCE536250EA74BF9FDC ] BHDrvx64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx64.sys
18:40:57.0099 5960 BHDrvx64 - ok
18:40:57.0141 5960 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:40:57.0145 5960 BITS - ok
18:40:57.0160 5960 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:40:57.0160 5960 blbdrive - ok
18:40:57.0194 5960 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:40:57.0195 5960 bowser - ok
18:40:57.0207 5960 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:40:57.0207 5960 BrFiltLo - ok
18:40:57.0219 5960 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:40:57.0219 5960 BrFiltUp - ok
18:40:57.0228 5960 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:40:57.0229 5960 BridgeMP - ok
18:40:57.0262 5960 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:40:57.0263 5960 Browser - ok
18:40:57.0276 5960 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:40:57.0277 5960 Brserid - ok
18:40:57.0290 5960 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:40:57.0290 5960 BrSerWdm - ok
18:40:57.0305 5960 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:40:57.0305 5960 BrUsbMdm - ok
18:40:57.0317 5960 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:40:57.0317 5960 BrUsbSer - ok
18:40:57.0323 5960 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:40:57.0324 5960 BTHMODEM - ok
18:40:57.0341 5960 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:40:57.0342 5960 bthserv - ok
18:40:57.0437 5960 [ BE531939BB6D153DB63DBBFBD398A713 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
18:40:57.0443 5960 c2cautoupdatesvc - ok
18:40:57.0502 5960 [ 33E9F08F675EF94633C8EF8A7C4EADF3 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
18:40:57.0508 5960 c2cpnrsvc - ok
18:40:57.0511 5960 catchme - ok
18:40:57.0570 5960 [ 0510396A957E9FD7205BA62D3CAE4528 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys
18:40:57.0571 5960 ccSet_NIS - ok
18:40:57.0574 5960 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:40:57.0575 5960 cdfs - ok
18:40:57.0610 5960 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:40:57.0610 5960 cdrom - ok
18:40:57.0643 5960 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:40:57.0643 5960 CertPropSvc - ok
18:40:57.0652 5960 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:40:57.0653 5960 circlass - ok
18:40:57.0669 5960 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:40:57.0671 5960 CLFS - ok
18:40:57.0736 5960 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:40:57.0736 5960 clr_optimization_v2.0.50727_32 - ok
18:40:57.0768 5960 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:40:57.0769 5960 clr_optimization_v2.0.50727_64 - ok
18:40:57.0817 5960 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:40:57.0817 5960 clr_optimization_v4.0.30319_32 - ok
18:40:57.0851 5960 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:40:57.0852 5960 clr_optimization_v4.0.30319_64 - ok
18:40:57.0865 5960 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:40:57.0865 5960 CmBatt - ok
18:40:57.0900 5960 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:40:57.0900 5960 cmdide - ok
18:40:57.0945 5960 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
18:40:57.0946 5960 CNG - ok
18:40:57.0949 5960 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:40:57.0950 5960 Compbatt - ok
18:40:57.0989 5960 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:40:57.0990 5960 CompositeBus - ok
18:40:57.0993 5960 COMSysApp - ok
18:40:58.0001 5960 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:40:58.0001 5960 crcdisk - ok
18:40:58.0049 5960 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
18:40:58.0049 5960 Creative ALchemy AL6 Licensing Service - ok
18:40:58.0061 5960 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
18:40:58.0062 5960 Creative Audio Engine Licensing Service - ok
18:40:58.0097 5960 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:40:58.0098 5960 CryptSvc - ok
18:40:58.0142 5960 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:40:58.0144 5960 CSC - ok
18:40:58.0185 5960 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:40:58.0188 5960 CscService - ok
18:40:58.0207 5960 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
18:40:58.0208 5960 CTAudSvcService - ok
18:40:58.0248 5960 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:40:58.0251 5960 DcomLaunch - ok
18:40:58.0268 5960 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:40:58.0270 5960 defragsvc - ok
18:40:58.0305 5960 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:40:58.0306 5960 DfsC - ok
18:40:58.0345 5960 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:40:58.0346 5960 Dhcp - ok
18:40:58.0357 5960 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:40:58.0357 5960 discache - ok
18:40:58.0365 5960 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:40:58.0365 5960 Disk - ok
18:40:58.0396 5960 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:40:58.0397 5960 Dnscache - ok
18:40:58.0434 5960 [ FA122BC1451B1B35B7814FBE1ACF1924 ] Dokan C:\Windows\system32\drivers\dokan.sys
18:40:58.0435 5960 Dokan - ok
18:40:58.0505 5960 [ 8C856E531A1170F53AC6844E89CD0B5F ] DokanMounter C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
18:40:58.0505 5960 DokanMounter - ok
18:40:58.0545 5960 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:40:58.0547 5960 dot3svc - ok
18:40:58.0582 5960 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:40:58.0583 5960 DPS - ok
18:40:58.0619 5960 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:40:58.0619 5960 drmkaud - ok
18:40:58.0658 5960 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:40:58.0660 5960 dtsoftbus01 - ok
18:40:58.0711 5960 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:40:58.0715 5960 DXGKrnl - ok
18:40:58.0735 5960 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:40:58.0736 5960 EapHost - ok
18:40:58.0792 5960 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:40:58.0805 5960 ebdrv - ok
18:40:58.0842 5960 [ 1B7AA375F711F66D5FF2B855F9EC987F ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:40:58.0844 5960 eeCtrl - ok
18:40:58.0880 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
18:40:58.0881 5960 EFS - ok
18:40:58.0936 5960 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:40:58.0939 5960 ehRecvr - ok
18:40:58.0971 5960 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:40:58.0972 5960 ehSched - ok
18:40:58.0996 5960 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:40:58.0998 5960 elxstor - ok
18:40:59.0036 5960 [ 7230C8B80DDE1F0524C353240B78CC0E ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:40:59.0037 5960 EraserUtilRebootDrv - ok
18:40:59.0066 5960 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:40:59.0066 5960 ErrDev - ok
18:40:59.0084 5960 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:40:59.0085 5960 EventSystem - ok
18:40:59.0101 5960 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:40:59.0102 5960 exfat - ok
18:40:59.0118 5960 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:40:59.0119 5960 fastfat - ok
18:40:59.0159 5960 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:40:59.0162 5960 Fax - ok
18:40:59.0170 5960 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:40:59.0170 5960 fdc - ok
18:40:59.0177 5960 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:40:59.0178 5960 fdPHost - ok
18:40:59.0188 5960 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:40:59.0188 5960 FDResPub - ok
18:40:59.0199 5960 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:40:59.0200 5960 FileInfo - ok
18:40:59.0205 5960 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:40:59.0205 5960 Filetrace - ok
18:40:59.0216 5960 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:40:59.0216 5960 flpydisk - ok
18:40:59.0254 5960 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:40:59.0255 5960 FltMgr - ok
18:40:59.0303 5960 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
18:40:59.0308 5960 FontCache - ok
18:40:59.0370 5960 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:40:59.0371 5960 FontCache3.0.0.0 - ok
18:40:59.0388 5960 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:40:59.0389 5960 FsDepends - ok
18:40:59.0425 5960 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:40:59.0425 5960 Fs_Rec - ok
18:40:59.0466 5960 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:40:59.0467 5960 fvevol - ok
18:40:59.0495 5960 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:40:59.0495 5960 gagp30kx - ok
18:40:59.0535 5960 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:40:59.0539 5960 gpsvc - ok
18:40:59.0582 5960 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:59.0583 5960 gupdate - ok
18:40:59.0586 5960 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:40:59.0587 5960 gupdatem - ok
18:40:59.0614 5960 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:40:59.0615 5960 gusvc - ok
18:40:59.0651 5960 [ F8F0851D336C3B88DBD7232B6348E09A ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:40:59.0651 5960 hamachi - ok
18:40:59.0660 5960 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:40:59.0660 5960 hcw85cir - ok
18:40:59.0695 5960 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:40:59.0697 5960 HdAudAddService - ok
18:40:59.0710 5960 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:40:59.0710 5960 HDAudBus - ok
18:40:59.0722 5960 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:40:59.0722 5960 HidBatt - ok
18:40:59.0737 5960 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:40:59.0737 5960 HidBth - ok
18:40:59.0813 5960 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:40:59.0814 5960 HidIr - ok
18:40:59.0817 5960 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
18:40:59.0817 5960 hidserv - ok
18:40:59.0833 5960 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:40:59.0833 5960 HidUsb - ok
18:40:59.0860 5960 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:40:59.0861 5960 hkmsvc - ok
18:40:59.0904 5960 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:40:59.0905 5960 HomeGroupListener - ok
18:40:59.0946 5960 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:40:59.0947 5960 HomeGroupProvider - ok
18:40:59.0979 5960 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:40:59.0980 5960 HpSAMD - ok
18:41:00.0024 5960 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:41:00.0027 5960 HTTP - ok
18:41:00.0060 5960 [ D7E0591E2BA1289C875A9D948377441E ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO64A.SYS
18:41:00.0061 5960 HWiNFO32 - ok
18:41:00.0092 5960 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:41:00.0093 5960 hwpolicy - ok
18:41:00.0125 5960 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:41:00.0126 5960 i8042prt - ok
18:41:00.0162 5960 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:41:00.0164 5960 iaStorV - ok
18:41:00.0199 5960 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:41:00.0202 5960 idsvc - ok
18:41:00.0295 5960 [ DAAA22256BCA5E6EB74CD379F3092AAA ] IDSVia64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140319.001\IDSvia64.sys
18:41:00.0297 5960 IDSVia64 - ok
18:41:00.0300 5960 IEEtwCollectorService - ok
18:41:00.0316 5960 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:41:00.0316 5960 iirsp - ok
18:41:00.0364 5960 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
18:41:00.0368 5960 IKEEXT - ok
18:41:00.0398 5960 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:41:00.0398 5960 intelide - ok
18:41:00.0408 5960 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:41:00.0408 5960 intelppm - ok
18:41:00.0432 5960 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:41:00.0433 5960 IPBusEnum - ok
18:41:00.0467 5960 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:41:00.0467 5960 IpFilterDriver - ok
18:41:00.0506 5960 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:41:00.0509 5960 iphlpsvc - ok
18:41:00.0544 5960 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:41:00.0544 5960 IPMIDRV - ok
18:41:00.0557 5960 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:41:00.0558 5960 IPNAT - ok
18:41:00.0561 5960 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:41:00.0561 5960 IRENUM - ok
18:41:00.0572 5960 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:41:00.0572 5960 isapnp - ok
18:41:00.0611 5960 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:41:00.0612 5960 iScsiPrt - ok
18:41:00.0640 5960 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
18:41:00.0640 5960 JRAID - ok
18:41:00.0649 5960 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:41:00.0650 5960 kbdclass - ok
18:41:00.0681 5960 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:41:00.0681 5960 kbdhid - ok
18:41:00.0688 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
18:41:00.0689 5960 KeyIso - ok
18:41:00.0722 5960 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:41:00.0722 5960 KSecDD - ok
18:41:00.0729 5960 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:41:00.0730 5960 KSecPkg - ok
18:41:00.0737 5960 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:41:00.0737 5960 ksthunk - ok
18:41:00.0757 5960 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:41:00.0759 5960 KtmRm - ok
18:41:00.0800 5960 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:41:00.0801 5960 LanmanServer - ok
18:41:00.0837 5960 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:41:00.0839 5960 LanmanWorkstation - ok
18:41:00.0854 5960 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:41:00.0854 5960 lltdio - ok
18:41:00.0871 5960 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:41:00.0873 5960 lltdsvc - ok
18:41:00.0883 5960 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:41:00.0883 5960 lmhosts - ok
18:41:00.0895 5960 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:41:00.0896 5960 LSI_FC - ok
18:41:00.0905 5960 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:41:00.0905 5960 LSI_SAS - ok
18:41:00.0916 5960 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:41:00.0917 5960 LSI_SAS2 - ok
18:41:00.0939 5960 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:41:00.0939 5960 LSI_SCSI - ok
18:41:00.0955 5960 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:41:00.0956 5960 luafv - ok
18:41:00.0988 5960 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:41:00.0989 5960 Mcx2Svc - ok
18:41:00.0996 5960 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:41:00.0996 5960 megasas - ok
18:41:01.0013 5960 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:41:01.0014 5960 MegaSR - ok
18:41:01.0024 5960 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:41:01.0025 5960 MMCSS - ok
18:41:01.0036 5960 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:41:01.0037 5960 Modem - ok
18:41:01.0056 5960 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:41:01.0056 5960 monitor - ok
18:41:01.0074 5960 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:41:01.0074 5960 mouclass - ok
18:41:01.0091 5960 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:41:01.0091 5960 mouhid - ok
18:41:01.0114 5960 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:41:01.0114 5960 mountmgr - ok
18:41:01.0129 5960 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:41:01.0130 5960 mpio - ok
18:41:01.0140 5960 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:41:01.0140 5960 mpsdrv - ok
18:41:01.0177 5960 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:41:01.0181 5960 MpsSvc - ok
18:41:01.0213 5960 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:41:01.0214 5960 MRxDAV - ok
18:41:01.0253 5960 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:41:01.0254 5960 mrxsmb - ok
18:41:01.0289 5960 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:41:01.0290 5960 mrxsmb10 - ok
18:41:01.0299 5960 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:41:01.0300 5960 mrxsmb20 - ok
18:41:01.0335 5960 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:41:01.0336 5960 msahci - ok
18:41:01.0370 5960 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:41:01.0370 5960 msdsm - ok
18:41:01.0379 5960 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:41:01.0381 5960 MSDTC - ok
18:41:01.0398 5960 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:41:01.0398 5960 Msfs - ok
18:41:01.0405 5960 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:41:01.0405 5960 mshidkmdf - ok
18:41:01.0438 5960 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:41:01.0438 5960 msisadrv - ok
18:41:01.0451 5960 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:41:01.0452 5960 MSiSCSI - ok
18:41:01.0455 5960 msiserver - ok
18:41:01.0468 5960 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:41:01.0469 5960 MSKSSRV - ok
18:41:01.0481 5960 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:41:01.0481 5960 MSPCLOCK - ok
18:41:01.0499 5960 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:41:01.0500 5960 MSPQM - ok
18:41:01.0658 5960 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:41:01.0660 5960 MsRPC - ok
18:41:01.0734 5960 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:41:01.0735 5960 mssmbios - ok
18:41:01.0771 5960 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:41:01.0771 5960 MSTEE - ok
18:41:01.0807 5960 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:41:01.0808 5960 MTConfig - ok
18:41:01.0834 5960 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
18:41:01.0834 5960 MTsensor - ok
18:41:01.0902 5960 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:41:01.0903 5960 Mup - ok
18:41:01.0962 5960 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:41:01.0965 5960 napagent - ok
18:41:01.0988 5960 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:41:01.0989 5960 NativeWifiP - ok
18:41:02.0064 5960 [ 702E07EC32F96ACDB873E9A5465D4401 ] NAVENG C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\ENG64.SYS
18:41:02.0064 5960 NAVENG - ok
18:41:02.0120 5960 [ 302EA314A1AF0D7CEF0A3D0195F79561 ] NAVEX15 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140320.001\EX64.SYS
18:41:02.0128 5960 NAVEX15 - ok
18:41:02.0170 5960 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:41:02.0174 5960 NDIS - ok
18:41:02.0185 5960 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:41:02.0186 5960 NdisCap - ok
18:41:02.0193 5960 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:41:02.0193 5960 NdisTapi - ok
18:41:02.0229 5960 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:41:02.0230 5960 Ndisuio - ok
18:41:02.0265 5960 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:41:02.0265 5960 NdisWan - ok
18:41:02.0306 5960 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:41:02.0307 5960 NDProxy - ok
18:41:02.0345 5960 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:41:02.0345 5960 NetBIOS - ok
18:41:02.0377 5960 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:41:02.0378 5960 NetBT - ok
18:41:02.0388 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
18:41:02.0389 5960 Netlogon - ok
18:41:02.0411 5960 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:41:02.0413 5960 Netman - ok
18:41:02.0451 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0452 5960 NetMsmqActivator - ok
18:41:02.0455 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0455 5960 NetPipeActivator - ok
18:41:02.0476 5960 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:41:02.0478 5960 netprofm - ok
18:41:02.0482 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0483 5960 NetTcpActivator - ok
18:41:02.0486 5960 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:41:02.0487 5960 NetTcpPortSharing - ok
18:41:02.0501 5960 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:41:02.0501 5960 nfrd960 - ok
18:41:02.0650 5960 [ C87442B6D17912785DC143CEDCA508C9 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
18:41:02.0651 5960 NIS - ok
18:41:02.0687 5960 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:41:02.0689 5960 NlaSvc - ok
18:41:02.0694 5960 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:41:02.0694 5960 Npfs - ok
18:41:02.0705 5960 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:41:02.0706 5960 nsi - ok
18:41:02.0718 5960 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:41:02.0718 5960 nsiproxy - ok
18:41:02.0773 5960 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:41:02.0780 5960 Ntfs - ok
18:41:02.0791 5960 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:41:02.0792 5960 Null - ok
18:41:02.0818 5960 [ 8EBCB9165EE7F1571842F4D9D624A74C ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
18:41:02.0818 5960 nusb3hub - ok
18:41:02.0833 5960 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:41:02.0834 5960 nusb3xhc - ok
18:41:02.0872 5960 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:41:02.0873 5960 nvraid - ok
18:41:02.0884 5960 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:41:02.0885 5960 nvstor - ok
18:41:02.0919 5960 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:41:02.0920 5960 nv_agp - ok
18:41:02.0976 5960 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:41:02.0978 5960 odserv - ok
18:41:03.0007 5960 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:41:03.0007 5960 ohci1394 - ok
18:41:03.0026 5960 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:41:03.0026 5960 ose - ok
18:41:03.0055 5960 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:41:03.0057 5960 p2pimsvc - ok
18:41:03.0091 5960 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:41:03.0093 5960 p2psvc - ok
18:41:03.0114 5960 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:41:03.0115 5960 Parport - ok
18:41:03.0151 5960 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:41:03.0151 5960 partmgr - ok
18:41:03.0166 5960 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:41:03.0167 5960 PcaSvc - ok
18:41:03.0178 5960 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:41:03.0178 5960 pci - ok
18:41:03.0214 5960 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:41:03.0214 5960 pciide - ok
18:41:03.0233 5960 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:41:03.0234 5960 pcmcia - ok
18:41:03.0252 5960 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:41:03.0253 5960 pcw - ok
18:41:03.0269 5960 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:41:03.0272 5960 PEAUTH - ok
18:41:03.0307 5960 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:41:03.0313 5960 PeerDistSvc - ok
18:41:03.0390 5960 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:41:03.0391 5960 PerfHost - ok
18:41:03.0444 5960 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:41:03.0450 5960 pla - ok
18:41:03.0497 5960 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:41:03.0500 5960 PlugPlay - ok
18:41:03.0502 5960 PnkBstrA - ok
18:41:03.0512 5960 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:41:03.0513 5960 PNRPAutoReg - ok
18:41:03.0518 5960 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:41:03.0520 5960 PNRPsvc - ok
18:41:03.0563 5960 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:41:03.0565 5960 PolicyAgent - ok
18:41:03.0593 5960 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:41:03.0595 5960 Power - ok
18:41:03.0636 5960 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:41:03.0636 5960 PptpMiniport - ok
18:41:03.0647 5960 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:41:03.0648 5960 Processor - ok
18:41:03.0690 5960 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:41:03.0691 5960 ProfSvc - ok
18:41:03.0696 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
18:41:03.0697 5960 ProtectedStorage - ok
18:41:03.0731 5960 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:41:03.0731 5960 Psched - ok
18:41:03.0772 5960 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:41:03.0778 5960 ql2300 - ok
18:41:03.0794 5960 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:41:03.0795 5960 ql40xx - ok
18:41:03.0822 5960 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:41:03.0823 5960 QWAVE - ok
18:41:03.0828 5960 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:41:03.0829 5960 QWAVEdrv - ok
18:41:03.0837 5960 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:41:03.0838 5960 RasAcd - ok
18:41:03.0852 5960 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:41:03.0852 5960 RasAgileVpn - ok
18:41:03.0865 5960 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:41:03.0867 5960 RasAuto - ok
18:41:03.0900 5960 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:41:03.0901 5960 Rasl2tp - ok
18:41:03.0935 5960 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:41:03.0937 5960 RasMan - ok
18:41:03.0946 5960 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:41:03.0946 5960 RasPppoe - ok
18:41:03.0951 5960 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:41:03.0951 5960 RasSstp - ok
18:41:03.0963 5960 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:41:03.0964 5960 rdbss - ok
18:41:03.0978 5960 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:41:03.0978 5960 rdpbus - ok
18:41:04.0015 5960 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:41:04.0015 5960 RDPCDD - ok
18:41:04.0060 5960 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:41:04.0061 5960 RDPDR - ok
18:41:04.0070 5960 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:41:04.0070 5960 RDPENCDD - ok
18:41:04.0079 5960 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:41:04.0080 5960 RDPREFMP - ok
18:41:04.0112 5960 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:41:04.0113 5960 RdpVideoMiniport - ok
18:41:04.0146 5960 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:41:04.0147 5960 RDPWD - ok
18:41:04.0186 5960 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:41:04.0187 5960 rdyboost - ok
18:41:04.0206 5960 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:41:04.0207 5960 RemoteAccess - ok
18:41:04.0219 5960 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:41:04.0220 5960 RemoteRegistry - ok
18:41:04.0229 5960 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:41:04.0230 5960 RpcEptMapper - ok
18:41:04.0249 5960 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:41:04.0250 5960 RpcLocator - ok
18:41:04.0289 5960 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:41:04.0292 5960 RpcSs - ok
18:41:04.0307 5960 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:41:04.0307 5960 rspndr - ok
18:41:04.0344 5960 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:41:04.0344 5960 s3cap - ok
18:41:04.0355 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
18:41:04.0355 5960 SamSs - ok
18:41:04.0392 5960 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:41:04.0392 5960 sbp2port - ok
18:41:04.0411 5960 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:41:04.0412 5960 SCardSvr - ok
18:41:04.0446 5960 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:41:04.0446 5960 scfilter - ok
18:41:04.0492 5960 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:41:04.0497 5960 Schedule - ok
18:41:04.0534 5960 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:41:04.0534 5960 SCPolicySvc - ok
18:41:04.0571 5960 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:41:04.0573 5960 SDRSVC - ok
18:41:04.0584 5960 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:41:04.0584 5960 secdrv - ok
18:41:04.0621 5960 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:41:04.0622 5960 seclogon - ok
18:41:04.0656 5960 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:41:04.0657 5960 SENS - ok
18:41:04.0666 5960 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:41:04.0667 5960 SensrSvc - ok
18:41:04.0681 5960 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:41:04.0681 5960 Serenum - ok
18:41:04.0694 5960 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:41:04.0694 5960 Serial - ok
18:41:04.0723 5960 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:41:04.0723 5960 sermouse - ok
18:41:04.0813 5960 [ 6766E06DDD621A7B4077E6F523D562E4 ] Serviio C:\Program Files (x86)\Serviio\bin\ServiioService.exe
18:41:04.0815 5960 Serviio - ok
18:41:04.0853 5960 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:41:04.0854 5960 SessionEnv - ok
18:41:04.0889 5960 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:41:04.0889 5960 sffdisk - ok
18:41:04.0897 5960 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:41:04.0897 5960 sffp_mmc - ok
18:41:04.0900 5960 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:41:04.0900 5960 sffp_sd - ok
18:41:04.0911 5960 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:41:04.0912 5960 sfloppy - ok
18:41:04.0939 5960 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:41:04.0941 5960 SharedAccess - ok
18:41:04.0981 5960 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:41:04.0984 5960 ShellHWDetection - ok
18:41:04.0996 5960 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:41:04.0997 5960 SiSRaid2 - ok
18:41:05.0009 5960 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:41:05.0010 5960 SiSRaid4 - ok
18:41:05.0063 5960 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:41:05.0064 5960 SkypeUpdate - ok
18:41:05.0075 5960 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:41:05.0076 5960 Smb - ok
18:41:05.0092 5960 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:41:05.0093 5960 SNMPTRAP - ok
18:41:05.0099 5960 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:41:05.0099 5960 spldr - ok
18:41:05.0144 5960 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:41:05.0147 5960 Spooler - ok
18:41:05.0228 5960 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:41:05.0242 5960 sppsvc - ok
18:41:05.0285 5960 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:41:05.0286 5960 sppuinotify - ok
18:41:05.0359 5960 [ 8BFD1752AAA15BF47D668E9AC5AF96FB ] SRTSP C:\Windows\system32\drivers\NISx64\1501000.012\SRTSP64.SYS
18:41:05.0363 5960 SRTSP - ok
18:41:05.0376 5960 [ B18CE01B9C09C59422BA7C7064248B35 ] SRTSPX C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS
18:41:05.0377 5960 SRTSPX - ok
18:41:05.0420 5960 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:41:05.0422 5960 srv - ok
18:41:05.0434 5960 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:41:05.0436 5960 srv2 - ok
18:41:05.0446 5960 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:41:05.0447 5960 srvnet - ok
18:41:05.0458 5960 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:41:05.0460 5960 SSDPSRV - ok
18:41:05.0479 5960 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:41:05.0480 5960 SstpSvc - ok
18:41:05.0535 5960 [ 2F3B5A3567FFB343D8867C3D34C687F1 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:41:05.0538 5960 Steam Client Service - ok
18:41:05.0548 5960 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:41:05.0548 5960 stexstor - ok
18:41:05.0591 5960 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:41:05.0594 5960 stisvc - ok
18:41:05.0636 5960 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:41:05.0636 5960 storflt - ok
18:41:05.0658 5960 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
18:41:05.0659 5960 StorSvc - ok
18:41:05.0694 5960 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:41:05.0694 5960 storvsc - ok
18:41:05.0726 5960 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:41:05.0726 5960 swenum - ok
18:41:05.0784 5960 SwitchBoard - ok
18:41:05.0799 5960 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:41:05.0802 5960 swprv - ok
18:41:05.0844 5960 [ 5C9EE2303CA7F267665D75237862B39C ] SymDS C:\Windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS
18:41:05.0847 5960 SymDS - ok
18:41:05.0879 5960 [ 08AF51153E441687130B759A8F6892ED ] SymEFA C:\Windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS
18:41:05.0884 5960 SymEFA - ok
18:41:05.0914 5960 [ 97E11C50CE52277B377396EA8838E539 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:41:05.0915 5960 SymEvent - ok
18:41:05.0956 5960 [ 48C2934683CBD06F662B088EEF49EF6A ] SymIRON C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS
18:41:05.0957 5960 SymIRON - ok
18:41:05.0986 5960 [ 78A2F073AD9EA5EBC04A70931EA36C9A ] SymNetS C:\Windows\system32\drivers\NISx64\1501000.012\SYMNETS.SYS
18:41:05.0989 5960 SymNetS - ok
18:41:06.0041 5960 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:41:06.0049 5960 SysMain - ok
18:41:06.0083 5960 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:41:06.0085 5960 TabletInputService - ok
18:41:06.0114 5960 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
18:41:06.0115 5960 taphss - ok
18:41:06.0153 5960 [ 95206567C7CA71A3D485146824224C40 ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
18:41:06.0154 5960 taphss6 - ok
18:41:06.0197 5960 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:41:06.0199 5960 TapiSrv - ok
18:41:06.0216 5960 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:41:06.0217 5960 TBS - ok
18:41:06.0277 5960 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:41:06.0284 5960 Tcpip - ok
18:41:06.0319 5960 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:41:06.0327 5960 TCPIP6 - ok
18:41:06.0386 5960 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:41:06.0386 5960 tcpipreg - ok
18:41:06.0407 5960 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:41:06.0407 5960 TDPIPE - ok
18:41:06.0439 5960 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:41:06.0440 5960 TDTCP - ok
18:41:06.0481 5960 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:41:06.0482 5960 tdx - ok
18:41:06.0517 5960 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:41:06.0517 5960 TermDD - ok
18:41:06.0564 5960 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:41:06.0568 5960 TermService - ok
18:41:06.0585 5960 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:41:06.0586 5960 Themes - ok
18:41:06.0607 5960 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:41:06.0608 5960 THREADORDER - ok
18:41:06.0617 5960 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:41:06.0619 5960 TrkWks - ok
18:41:06.0681 5960 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:41:06.0681 5960 TrustedInstaller - ok
18:41:06.0718 5960 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:41:06.0718 5960 tssecsrv - ok
18:41:06.0758 5960 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:41:06.0759 5960 TsUsbFlt - ok
18:41:06.0794 5960 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:41:06.0795 5960 tunnel - ok
18:41:06.0809 5960 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:41:06.0809 5960 uagp35 - ok
18:41:06.0848 5960 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:41:06.0849 5960 udfs - ok
18:41:06.0856 5960 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:41:06.0857 5960 UI0Detect - ok
18:41:06.0871 5960 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:41:06.0871 5960 uliagpkx - ok
18:41:06.0910 5960 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:41:06.0911 5960 umbus - ok
18:41:06.0918 5960 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:41:06.0919 5960 UmPass - ok
18:41:06.0937 5960 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
18:41:06.0939 5960 UmRdpService - ok
18:41:06.0949 5960 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:41:06.0952 5960 upnphost - ok
18:41:06.0983 5960 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:41:06.0984 5960 usbccgp - ok
18:41:07.0024 5960 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:41:07.0024 5960 usbcir - ok
18:41:07.0057 5960 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:41:07.0057 5960 usbehci - ok
18:41:07.0074 5960 [ 858BE9C0E498C8E505E198E17EECE0D9 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
18:41:07.0075 5960 usbfilter - ok
18:41:07.0111 5960 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:41:07.0112 5960 usbhub - ok
18:41:07.0128 5960 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:41:07.0128 5960 usbohci - ok
18:41:07.0141 5960 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:41:07.0141 5960 usbprint - ok
18:41:07.0179 5960 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:41:07.0180 5960 USBSTOR - ok
18:41:07.0213 5960 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:41:07.0213 5960 usbuhci - ok
18:41:07.0224 5960 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:41:07.0225 5960 UxSms - ok
18:41:07.0238 5960 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
18:41:07.0238 5960 VaultSvc - ok
18:41:07.0266 5960 [ 3A4B01C2BDB07DFEF29B0B369487503A ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
18:41:07.0266 5960 VCSVADHWSer - ok
18:41:07.0279 5960 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:41:07.0279 5960 vdrvroot - ok
18:41:07.0314 5960 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:41:07.0317 5960 vds - ok
18:41:07.0331 5960 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:41:07.0331 5960 vga - ok
18:41:07.0348 5960 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:41:07.0348 5960 VgaSave - ok
18:41:07.0388 5960 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:41:07.0389 5960 vhdmp - ok
18:41:07.0432 5960 [ DFDF7F9CAA50EE72A633EA4BBD65A557 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:41:07.0437 5960 VIAHdAudAddService - ok
18:41:07.0475 5960 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:41:07.0475 5960 viaide - ok
18:41:07.0515 5960 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:41:07.0516 5960 vmbus - ok
18:41:07.0527 5960 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:41:07.0527 5960 VMBusHID - ok
18:41:07.0536 5960 [ 754C8BF43F0DD4B54865F174A62761E9 ] VMfilt C:\Windows\system32\drivers\VMfilt64.sys
18:41:07.0536 5960 VMfilt - ok
18:41:07.0546 5960 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:41:07.0547 5960 volmgr - ok
18:41:07.0579 5960 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:41:07.0581 5960 volmgrx - ok
18:41:07.0619 5960 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:41:07.0620 5960 volsnap - ok
18:41:07.0636 5960 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:41:07.0637 5960 vsmraid - ok
18:41:07.0691 5960 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:41:07.0698 5960 VSS - ok
18:41:07.0712 5960 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:41:07.0712 5960 vwifibus - ok
18:41:07.0723 5960 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:41:07.0726 5960 W32Time - ok
18:41:07.0743 5960 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:41:07.0743 5960 WacomPen - ok
18:41:07.0755 5960 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:41:07.0755 5960 WANARP - ok
18:41:07.0758 5960 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:41:07.0758 5960 Wanarpv6 - ok
18:41:07.0801 5960 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:41:07.0806 5960 WatAdminSvc - ok
18:41:07.0866 5960 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:41:07.0873 5960 wbengine - ok
18:41:07.0892 5960 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:41:07.0894 5960 WbioSrvc - ok
18:41:07.0933 5960 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:41:07.0935 5960 wcncsvc - ok
18:41:07.0946 5960 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:41:07.0947 5960 WcsPlugInService - ok
18:41:07.0963 5960 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:41:07.0964 5960 Wd - ok
18:41:08.0003 5960 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:41:08.0006 5960 Wdf01000 - ok
18:41:08.0022 5960 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:41:08.0023 5960 WdiServiceHost - ok
18:41:08.0025 5960 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:41:08.0027 5960 WdiSystemHost - ok
18:41:08.0063 5960 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
18:41:08.0065 5960 WebClient - ok
18:41:08.0077 5960 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:41:08.0078 5960 Wecsvc - ok
18:41:08.0088 5960 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:41:08.0089 5960 wercplsupport - ok
18:41:08.0110 5960 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:41:08.0111 5960 WerSvc - ok
18:41:08.0120 5960 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:41:08.0120 5960 WfpLwf - ok
18:41:08.0131 5960 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:41:08.0131 5960 WIMMount - ok
18:41:08.0153 5960 WinDefend - ok
18:41:08.0158 5960 WinHttpAutoProxySvc - ok
18:41:08.0211 5960 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:41:08.0212 5960 Winmgmt - ok
18:41:08.0275 5960 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:41:08.0284 5960 WinRM - ok
18:41:08.0317 5960 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:41:08.0317 5960 WinUsb - ok
18:41:08.0344 5960 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:41:08.0349 5960 Wlansvc - ok
18:41:08.0473 5960 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:41:08.0482 5960 wlidsvc - ok
18:41:08.0520 5960 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:41:08.0520 5960 WmiAcpi - ok
18:41:08.0546 5960 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:41:08.0547 5960 wmiApSrv - ok
18:41:08.0556 5960 WMPNetworkSvc - ok
18:41:08.0567 5960 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:41:08.0568 5960 WPCSvc - ok
18:41:08.0600 5960 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:41:08.0601 5960 WPDBusEnum - ok
18:41:08.0608 5960 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:41:08.0608 5960 ws2ifsl - ok
18:41:08.0633 5960 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
18:41:08.0635 5960 wscsvc - ok
18:41:08.0637 5960 WSearch - ok
18:41:08.0705 5960 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:41:08.0715 5960 wuauserv - ok
18:41:08.0747 5960 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:41:08.0748 5960 WudfPf - ok
18:41:08.0763 5960 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:41:08.0764 5960 WUDFRd - ok
18:41:08.0792 5960 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:41:08.0794 5960 wudfsvc - ok
18:41:08.0832 5960 [ 04F82965C09CBDF646B487E145060301 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:41:08.0834 5960 WwanSvc - ok
18:41:08.0836 5960 XFDriver64 - ok
18:41:08.0868 5960 [ B2818BFAB7817F7E7EE886F58B15B35C ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:41:08.0870 5960 yukonw7 - ok
18:41:08.0874 5960 ================ Scan global ===============================
18:41:08.0889 5960 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:41:08.0931 5960 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:41:08.0935 5960 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:41:08.0966 5960 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:41:08.0986 5960 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:41:08.0988 5960 [Global] - ok
18:41:08.0989 5960 ================ Scan MBR ==================================
18:41:09.0009 5960 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:41:09.0294 5960 \Device\Harddisk0\DR0 - ok
18:41:09.0296 5960 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:41:09.0298 5960 \Device\Harddisk1\DR1 - ok
18:41:09.0298 5960 ================ Scan VBR ==================================
18:41:09.0300 5960 [ 9E72AA98BE90BBA265589B95D28C05E1 ] \Device\Harddisk0\DR0\Partition1
18:41:09.0301 5960 \Device\Harddisk0\DR0\Partition1 - ok
18:41:09.0310 5960 [ 3C56551648889F717C769584D35BB9A6 ] \Device\Harddisk0\DR0\Partition2
18:41:09.0311 5960 \Device\Harddisk0\DR0\Partition2 - ok
18:41:09.0313 5960 [ 3C778B33D7D7D063CFA8896BB63063A5 ] \Device\Harddisk1\DR1\Partition1
18:41:09.0313 5960 \Device\Harddisk1\DR1\Partition1 - ok
18:41:09.0314 5960 ============================================================
18:41:09.0314 5960 Scan finished
18:41:09.0314 5960 ============================================================
18:41:09.0319 2128 Detected object count: 0
18:41:09.0319 2128 Actual detected object count: 0
Vypadá to, že je to čisté
Když tě všechno zradilo, pomůže ti kladivo!
Re: Preventivní kontrola počítače
ak nie su ziadne problemy, tak hotovo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola počítače
Problémy žádné nejsou, takže asi hotovo.
Jestli se můžu zeptat, co jsem tam měl za potvory, případně jaké problémy?
Mnohokrát děkuji za pomoc.
Jestli se můžu zeptat, co jsem tam měl za potvory, případně jaké problémy?
Mnohokrát děkuji za pomoc.
Když tě všechno zradilo, pomůže ti kladivo!
Re: Preventivní kontrola počítače
tazko povedat ako sa potvory nazyvali ,,, zvacsa ide o kombinaciu trojana s rootkitmi
ja viem co tam nema byt, ale ci je to Ferko alebo Misko - to neviem
ja viem co tam nema byt, ale ci je to Ferko alebo Misko - to neviem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola počítače
Dobře
Tak děkuju moc za pomoc a asi to můžete uzavřít.
Tak děkuju moc za pomoc a asi to můžete uzavřít.
Když tě všechno zradilo, pomůže ti kladivo!
Přispějete na provoz fóra?