Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu, nefunguje Windows Update

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#16 Příspěvek od StandaM. »

Nálezy smazány. Poté jsem nb ještě projel AdwCleanerem a ten znovu našel problém ve složce C:\Users\ProBook\AppData\Roaming\com.flash.WidgetBrowser. Dal jsem Clean a restartoval. V dalším skenu už se neobjevil, ale pravidelně se mi objevuje tohle, viz níže:

# AdwCleaner v5.033 - Logfile created 11/02/2016 at 19:13:24
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : ProBook - PROBOOK-HP
# Running from : C:\Users\ProBook\Desktop\adwcleaner_5.033.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

Folder Found : C:\windows\SysNative\Tasks\com.flash.WidgetBrowser

***** [ Files ] *****


***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [661 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu, nefunguje Windows Update

#17 Příspěvek od Rudy »

Měl by to být BitCoin Miner. Dejte ještě log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#18 Příspěvek od StandaM. »

Test jel zhruba 1 hodinu...



ComboFix 16-02-09.01 - ProBook 11.02.2016 19:36:51.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3552.1901 [GMT 1:00]
Spuštěný z: c:\users\ProBook\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-01-11 do 2016-02-11 )))))))))))))))))))))))))))))))
.
.
2016-02-11 17:59 . 2016-02-11 17:59 -------- d-----w- c:\users\ProBook\AppData\Local\CrashDumps
2016-02-11 12:00 . 2016-02-11 14:16 -------- d-----w- c:\users\ProBook\AppData\Roaming\calibre
2016-02-10 22:19 . 2016-02-11 16:54 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-02-10 21:52 . 2015-10-05 08:50 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2016-02-10 21:52 . 2015-10-05 08:50 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-02-10 21:52 . 2015-10-05 08:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-02-10 21:52 . 2016-02-10 21:52 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2016-02-10 21:52 . 2016-02-10 21:52 -------- d-----w- c:\programdata\Malwarebytes
2016-02-10 19:34 . 2016-02-10 19:34 -------- d-----w- c:\users\ProBook\AppData\Roaming\MPC-HC
2016-02-10 18:57 . 2016-02-11 18:15 -------- d-----w- C:\AdwCleaner
2016-02-10 18:34 . 2016-02-06 10:24 2887680 ----a-w- c:\windows\system32\iertutil.dll
2016-02-10 18:30 . 2016-01-16 19:01 2085888 ----a-w- c:\windows\system32\ole32.dll
2016-02-10 18:30 . 2016-01-16 18:36 1413632 ----a-w- c:\windows\SysWow64\ole32.dll
2016-02-10 17:14 . 2016-01-11 14:08 677376 ----a-w- c:\windows\system32\generaltel.dll
2016-02-10 17:13 . 2016-01-22 06:19 14179840 ----a-w- c:\windows\system32\shell32.dll
2016-02-10 17:13 . 2016-01-22 05:19 3231232 ----a-w- c:\windows\explorer.exe
2016-02-10 17:13 . 2016-01-22 05:12 2973184 ----a-w- c:\windows\SysWow64\explorer.exe
2016-02-10 17:13 . 2016-01-22 06:15 1866752 ----a-w- c:\windows\system32\ExplorerFrame.dll
2016-02-10 17:13 . 2016-01-22 06:12 1940992 ----a-w- c:\windows\system32\authui.dll
2016-02-10 17:13 . 2016-01-22 06:00 1498624 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2016-02-10 17:13 . 2016-01-22 05:59 1805824 ----a-w- c:\windows\SysWow64\authui.dll
2016-02-10 15:33 . 2016-02-10 15:33 -------- d-----w- c:\users\ProBook\AppData\Local\PDFC
2016-02-10 15:31 . 2016-02-10 15:31 -------- d-----w- c:\programdata\Validity
2016-02-10 15:30 . 2016-02-10 14:57 24064 ----a-w- c:\windows\zoek-delete.exe
2016-02-10 15:30 . 2016-02-11 19:34 -------- d-----w- c:\users\ProBook\AppData\Local\Temp
2016-02-09 11:20 . 2015-11-25 11:02 11154520 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{93592B2F-A637-45A6-BEC7-CAC9EF983225}\mpengine.dll
2016-02-07 17:34 . 2016-02-07 17:35 -------- d-----w- c:\program files (x86)\American Truck Simulator
2016-02-02 10:51 . 2016-02-02 10:51 -------- d-----w- c:\programdata\Wondershare
2016-01-26 19:48 . 2016-01-26 19:56 -------- d-----w- c:\programdata\Apple Computer
2016-01-26 19:46 . 2016-01-26 19:46 -------- d-----w- c:\program files (x86)\Common Files\Apple
2016-01-22 20:14 . 2016-01-22 20:17 -------- d-----w- c:\program files (x86)\Euro Truck Simulator 2
2016-01-21 23:05 . 2016-01-21 23:05 -------- d-----w- c:\users\ProBook\AppData\Local\ElevatedDiagnostics
2016-01-13 13:53 . 2016-01-18 15:38 -------- d-----w- c:\users\ProBook\AppData\Roaming\StarTrekPC
2016-01-13 13:49 . 2008-10-15 05:22 5631312 ----a-w- c:\windows\system32\D3DX9_40.dll
2016-01-13 13:48 . 2007-03-15 15:57 506728 ----a-w- c:\windows\system32\d3dx10_33.dll
2016-01-13 13:47 . 2005-03-18 16:19 3823312 ----a-w- c:\windows\system32\d3dx9_25.dll
2016-01-13 13:47 . 2005-02-05 18:45 3544272 ----a-w- c:\windows\system32\d3dx9_24.dll
2016-01-13 12:26 . 2015-12-08 19:07 405504 ----a-w- c:\windows\system32\gdi32.dll
2016-01-13 12:26 . 2015-12-08 21:52 312320 ----a-w- c:\windows\SysWow64\gdi32.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-02-10 18:36 . 2015-02-13 21:55 146614896 ----a-w- c:\windows\system32\MRT.exe
2016-01-22 06:19 . 2016-02-10 18:19 344064 ----a-w- c:\windows\system32\schannel.dll
2016-01-22 06:05 . 2016-02-10 18:19 251392 ----a-w- c:\windows\SysWow64\schannel.dll
2016-01-22 05:59 . 2016-02-10 18:19 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-12-02 12:18 . 2010-11-21 03:27 301728 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2011-04-22 658424]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2011-05-14 318520]
"File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2011-05-09 12277248]
"HPQuickWebProxy"="c:\program files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" [2011-08-08 169528]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-25 343168]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe;c:\program files (x86)\Xobni\XobniService.exe [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP;c:\windows\system32\DRIVERS\BthMtpEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthMtpEnum.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 MfeEpePc;MfeEpePc; [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 ABBYY.Licensing.FineReader.Corporate.12.0;ABBYY FineReader 12 CE Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe;c:\program files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [x]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [x]
S2 RtlISMServ;RtlISMServ;c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe;c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [x]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys;c:\windows\SYSNATIVE\DRIVERS\ArcSoftVCapture.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-02-10 22:01 1090376 ----a-w- c:\program files (x86)\Google\Chrome\Application\48.0.2564.109\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2016-01-16 c:\windows\Tasks\HPCeeScheduleForProBook.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-05-11 1128448]
"MfeEpePcMonitor"="c:\program files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe" [2011-05-24 200704]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"NUSB3MON"="c:\program files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe" [2012-04-11 97280]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2015-07-08 5595848]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 1.1.1.1 1.1.1.17
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{7f51bdb9-ee21-49ee-94d6-90afc321780e} - c:\programdata\Package Cache\{7f51bdb9-ee21-49ee-94d6-90afc321780e}\vcredist_x64.exe
AddRemove-{95716cce-fc71-413f-8ad5-56c2892d4b3a} - c:\programdata\Package Cache\{95716cce-fc71-413f-8ad5-56c2892d4b3a}\vcredist_x86.exe
AddRemove-{a1909659-0a08-4554-8af1-2175904903a1} - c:\programdata\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe
AddRemove-{E92D47A1-D27D-430A-8368-0BAFD956507D} - c:\program files (x86)\InstallShield Installation Information\{E92D47A1-D27D-430A-8368-0BAFD956507D}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10q_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10q_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*€ *]
@="\010\01"
.
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
@="?"
.
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\
]
@="?"
.
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
@="?"
.
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
@="?"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
.
**************************************************************************
.
Celkový čas: 2016-02-11 20:43:23 - počítač byl restartován
ComboFix-quarantined-files.txt 2016-02-11 19:43
.
Před spuštěním: Volných bajtů: 352 509 706 240
Po spuštění: Volných bajtů: 351 889 870 848
.
- - End Of File - - 4A89802574847A2CE8FF1033C3C1F41D
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu, nefunguje Windows Update

#19 Příspěvek od Rudy »

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
KillAll::

Folder::
C:\windows\SysNative\Tasks\com.flash.WidgetBrowser

Driver::
MfeEpePc

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*€ *]
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\
]
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
[HKEY_LOCAL_MACHINE\software\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Reboot::
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#20 Příspěvek od StandaM. »

Poslední akce se zřejmě nezdařila. Selhal mi systém a vyskočila na mě tabulka, že notebook nelze zapnout a obnova systému. Potvrdil jsem a začla oprava spouštění systému. Po naskočení, jsem už na ploše Combofix neměl. Spustil jsem adwcleaner a našlo mi to znovu, viz log. Musel jsem také znovu nainstalovat aktualizace. Nvm které kroky tedy jsme již provedli a které ne.


# AdwCleaner v5.033 - Logfile created 11/02/2016 at 23:37:36
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : ProBook - PROBOOK-HP
# Running from : C:\Users\ProBook\Desktop\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\ProBook\AppData\Roaming\com.flash.WidgetBrowser
[#] Folder Deleted : C:\windows\SysNative\Tasks\com.flash.WidgetBrowser

***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [838 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu, nefunguje Windows Update

#21 Příspěvek od Rudy »

Tak zopakoval bych ten ComboFix (mazání skriptem), ale z nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#22 Příspěvek od StandaM. »

Tady ještě dávám pro jistotu nový log z RSIT. Kdyby jste z toho vyčetl něco nového.

:arrow: 1 Jinak myslím, že neproběhla ta akce s OTM. Mám tento krok ještě provést?
:arrow: 2 Ten Combofix mám stáhnout znova a přejít rovnou ke kroku s tím scriptem? Nevyhodí mi to zase chybu se systémem, pokud to spustím v nouzovém režimu?
:arrow: 3 Jak se do nouzového režimu dostanu? Nikdy jsem v něm nic nespouštěl.
:arrow: Když ten skript zkopíruji a vložím do poznámkového bloku, tak se mi tam zobrazí divné znaky. Má to tak být? Viz. příloha.

Omlouvám se za tolik dotazů, ale popravdě řečeno, jsem se dost lekl, když mi ten systém selhal :-)
Rudy píše:Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04234cbce8726.job
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04234cc19e920.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by ProBook at 2016-02-12 18:29:57
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 336 GB (57%) free of 589 GB
Total RAM: 3552 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:30:09, on 12.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrvPXDiscrete.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
C:\Program Files\trend micro\ProBook.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 12 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.12.0) - ABBYY Production LLC - C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtlISMServ - Realtek - C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe

--
End of file - 12840 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 30554128
\??\C:\windows\system32\conhost.exe "1556859876-1182984998-1982692793-167368552394513016219932102921236900078714929032
C:\windows\System32\spoolsv.exe
taskeng.exe {BFAA0A27-8058-467E-BFF3-61F554E18744}
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe" -service
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe" /i
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
WLIDSvcM.exe 2632
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
atieclxx
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\system32\GWX\GWX.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrvPXDiscrete.exe" -h
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe" -h

"C:\windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\ProBook\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\windows\tasks\HPCeeScheduleForProBook.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForProBook (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-05-09 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-05-11 1128448]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-05-24 200704]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-02-17 2774256]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-07-08 5595848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager]
c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-05-23 103992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-03-17 13880]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-04-22 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-05-14 318520]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-05-09 12277248]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-08-09 169528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-26 343168]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-12 18:29:57 ----D---- C:\rsit
2016-02-12 13:50:58 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-02-12 13:50:58 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-02-12 13:50:58 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-02-12 13:50:58 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-02-12 13:50:58 ----A---- C:\windows\system32\iernonce.dll
2016-02-12 13:50:58 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-02-12 13:50:58 ----A---- C:\windows\system32\ieetwcollector.exe
2016-02-12 13:50:57 ----A---- C:\windows\SYSWOW64\occache.dll
2016-02-12 13:50:57 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-02-12 13:50:57 ----A---- C:\windows\system32\inseng.dll
2016-02-12 13:50:57 ----A---- C:\windows\system32\ie4uinit.exe
2016-02-12 13:50:56 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-02-12 13:50:56 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-02-12 13:50:56 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-12 13:50:56 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-02-12 13:50:56 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-02-12 13:50:52 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-02-12 13:50:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-02-12 13:50:52 ----A---- C:\windows\system32\occache.dll
2016-02-12 13:50:52 ----A---- C:\windows\system32\iedkcs32.dll
2016-02-12 13:50:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-02-12 13:50:51 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-02-12 13:50:51 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-02-12 13:50:50 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-02-12 13:50:50 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-02-12 13:50:50 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-02-12 13:50:50 ----A---- C:\windows\system32\msfeeds.dll
2016-02-12 13:50:50 ----A---- C:\windows\system32\dxtrans.dll
2016-02-12 13:50:48 ----A---- C:\windows\system32\iesetup.dll
2016-02-12 13:50:48 ----A---- C:\windows\system32\ieapfltr.dll
2016-02-12 13:50:45 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-02-12 13:50:44 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-02-12 13:50:44 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-02-12 13:50:44 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-02-12 13:50:44 ----A---- C:\windows\system32\vbscript.dll
2016-02-12 13:50:43 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-02-12 13:50:43 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-02-12 13:50:43 ----A---- C:\windows\system32\jsproxy.dll
2016-02-12 13:50:42 ----A---- C:\windows\system32\dxtmsft.dll
2016-02-12 13:50:40 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-02-12 13:50:40 ----A---- C:\windows\system32\mshtmled.dll
2016-02-12 13:50:39 ----A---- C:\windows\system32\webcheck.dll
2016-02-12 13:50:39 ----A---- C:\windows\system32\jscript.dll
2016-02-12 13:50:38 ----A---- C:\windows\system32\jscript9diag.dll
2016-02-12 13:50:38 ----A---- C:\windows\system32\jscript9.dll
2016-02-12 13:50:37 ----A---- C:\windows\system32\wininet.dll
2016-02-12 13:50:35 ----A---- C:\windows\system32\msrating.dll
2016-02-12 13:50:35 ----A---- C:\windows\system32\MshtmlDac.dll
2016-02-12 13:49:38 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-02-12 13:49:38 ----A---- C:\windows\system32\iertutil.dll
2016-02-12 13:49:37 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-02-12 13:49:33 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-02-12 13:49:33 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-02-12 13:49:33 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-02-12 13:49:31 ----A---- C:\windows\system32\urlmon.dll
2016-02-12 13:49:30 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-02-12 13:49:30 ----A---- C:\windows\system32\ieui.dll
2016-02-12 13:49:30 ----A---- C:\windows\system32\ieframe.dll
2016-02-12 13:49:28 ----A---- C:\windows\system32\mshtml.dll
2016-02-12 13:49:28 ----A---- C:\windows\system32\ieUnatt.exe
2016-02-12 13:46:56 ----A---- C:\windows\SYSWOW64\InkEd.dll
2016-02-12 13:46:56 ----A---- C:\windows\system32\jnwmon.dll
2016-02-12 13:46:56 ----A---- C:\windows\system32\InkEd.dll
2016-02-12 13:46:51 ----A---- C:\windows\system32\wuapi.dll
2016-02-12 13:46:50 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2016-02-12 13:46:50 ----A---- C:\windows\SYSWOW64\wups.dll
2016-02-12 13:46:50 ----A---- C:\windows\SYSWOW64\wudriver.dll
2016-02-12 13:46:50 ----A---- C:\windows\SYSWOW64\wuapi.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\wuwebv.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\wups2.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\wups.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\wudriver.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\wucltux.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\wuaueng.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\wuauclt.exe
2016-02-12 13:46:50 ----A---- C:\windows\system32\wuapp.exe
2016-02-12 13:46:50 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2016-02-12 13:46:50 ----A---- C:\windows\system32\WinSetupUI.dll
2016-02-12 13:46:42 ----A---- C:\windows\system32\drivers\mrxdav.sys
2016-02-12 13:43:11 ----A---- C:\windows\system32\win32k.sys
2016-02-12 13:42:54 ----A---- C:\windows\system32\ole32.dll
2016-02-12 13:42:50 ----A---- C:\windows\SYSWOW64\ole32.dll
2016-02-12 13:41:49 ----A---- C:\windows\system32\EncDec.dll
2016-02-12 13:41:49 ----A---- C:\windows\system32\CPFilters.dll
2016-02-12 13:41:48 ----A---- C:\windows\SYSWOW64\EncDec.dll
2016-02-12 13:41:48 ----A---- C:\windows\SYSWOW64\CPFilters.dll
2016-02-12 13:41:48 ----A---- C:\windows\system32\ntoskrnl.exe
2016-02-12 13:41:47 ----A---- C:\windows\system32\ntdll.dll
2016-02-12 13:41:45 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-02-12 13:41:45 ----A---- C:\windows\system32\mtxoci.dll
2016-02-12 13:41:45 ----A---- C:\windows\system32\KernelBase.dll
2016-02-12 13:41:45 ----A---- C:\windows\system32\kerberos.dll
2016-02-12 13:41:44 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-02-12 13:41:43 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-02-12 13:41:43 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-02-12 13:41:43 ----A---- C:\windows\system32\kernel32.dll
2016-02-12 13:41:43 ----A---- C:\windows\system32\advapi32.dll
2016-02-12 13:41:42 ----A---- C:\windows\SYSWOW64\mtxoci.dll
2016-02-12 13:41:42 ----A---- C:\windows\SYSWOW64\msorcl32.dll
2016-02-12 13:41:42 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-02-12 13:41:41 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-02-12 13:41:41 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-02-12 13:41:41 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-02-12 13:41:39 ----A---- C:\windows\system32\lsasrv.dll
2016-02-12 13:41:38 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-02-12 13:41:38 ----A---- C:\windows\system32\winsrv.dll
2016-02-12 13:41:38 ----A---- C:\windows\system32\TSpkg.dll
2016-02-12 13:41:38 ----A---- C:\windows\system32\smss.exe
2016-02-12 13:41:38 ----A---- C:\windows\system32\schannel.dll
2016-02-12 13:41:38 ----A---- C:\windows\system32\rpcrt4.dll
2016-02-12 13:41:38 ----A---- C:\windows\system32\ncrypt.dll
2016-02-12 13:41:38 ----A---- C:\windows\system32\msv1_0.dll
2016-02-12 13:41:38 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-02-12 13:41:38 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-02-12 13:41:37 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-02-12 13:41:37 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-02-12 13:41:37 ----A---- C:\windows\system32\wow64win.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\wow64cpu.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\wow64.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\wdigest.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\sspisrv.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\sspicli.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\srcore.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\srclient.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\secur32.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\rstrui.exe
2016-02-12 13:41:37 ----A---- C:\windows\system32\ntvdm64.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\lsass.exe
2016-02-12 13:41:37 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-02-12 13:41:37 ----A---- C:\windows\system32\csrsrv.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\cryptbase.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\credssp.dll
2016-02-12 13:41:37 ----A---- C:\windows\system32\conhost.exe
2016-02-12 13:41:37 ----A---- C:\windows\system32\auditpol.exe
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-12 13:41:36 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-12 13:41:35 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-12 13:41:35 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-02-12 13:41:35 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-02-12 13:41:35 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-02-12 13:41:35 ----A---- C:\windows\system32\apisetschema.dll
2016-02-12 13:41:34 ----A---- C:\windows\SYSWOW64\user.exe
2016-02-12 13:41:34 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-02-12 13:41:34 ----A---- C:\windows\system32\adtschema.dll
2016-02-12 13:41:33 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-02-12 13:41:33 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-02-12 13:41:33 ----A---- C:\windows\system32\msobjs.dll
2016-02-12 13:41:33 ----A---- C:\windows\system32\msaudite.dll
2016-02-12 13:35:22 ----A---- C:\windows\system32\shell32.dll
2016-02-12 13:35:18 ----A---- C:\windows\explorer.exe
2016-02-12 13:35:17 ----A---- C:\windows\SYSWOW64\shell32.dll
2016-02-12 13:35:16 ----A---- C:\windows\SYSWOW64\explorer.exe
2016-02-12 13:35:16 ----A---- C:\windows\SYSWOW64\authui.dll
2016-02-12 13:35:16 ----A---- C:\windows\system32\ExplorerFrame.dll
2016-02-12 13:35:16 ----A---- C:\windows\system32\authui.dll
2016-02-12 13:35:15 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2016-02-11 22:48:58 ----D---- C:\windows\temp
2016-02-11 21:54:47 ----SD---- C:\ComboFix
2016-02-11 19:30:19 ----D---- C:\Qoobox
2016-02-11 19:29:54 ----D---- C:\windows\erdnt
2016-02-11 14:54:46 ----D---- C:\Config.Msi
2016-02-11 13:00:24 ----D---- C:\Users\ProBook\AppData\Roaming\calibre
2016-02-10 23:19:28 ----A---- C:\windows\system32\drivers\MBAMSwissArmy.sys
2016-02-10 22:52:09 ----A---- C:\windows\system32\drivers\mwac.sys
2016-02-10 22:52:09 ----A---- C:\windows\system32\drivers\mbamchameleon.sys
2016-02-10 22:52:09 ----A---- C:\windows\system32\drivers\mbam.sys
2016-02-10 22:52:08 ----D---- C:\ProgramData\Malwarebytes
2016-02-10 22:52:08 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-10 20:34:25 ----D---- C:\Users\ProBook\AppData\Roaming\MPC-HC
2016-02-10 19:57:17 ----D---- C:\AdwCleaner
2016-02-10 18:14:11 ----A---- C:\windows\system32\generaltel.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\devinv.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\appraiser.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\acmigration.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\invagent.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\aeinv.dll
2016-02-10 18:14:09 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-02-10 18:12:23 ----A---- C:\windows\SYSWOW64\wuapp.exe
2016-02-10 16:33:26 ----SHD---- C:\$RECYCLE.BIN
2016-02-10 16:31:57 ----D---- C:\ProgramData\Validity
2016-02-10 16:30:29 ----A---- C:\windows\zoek-delete.exe
2016-02-07 18:34:45 ----D---- C:\Program Files (x86)\American Truck Simulator
2016-02-02 11:51:56 ----D---- C:\ProgramData\Wondershare
2016-01-26 22:29:50 ----A---- C:\DelFix.txt
2016-01-26 20:48:08 ----D---- C:\ProgramData\Apple Computer
2016-01-22 21:14:09 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2
2016-01-13 14:53:13 ----D---- C:\Users\ProBook\AppData\Roaming\StarTrekPC
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-01-13 14:50:41 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-01-13 14:50:41 ----A---- C:\windows\system32\xactengine3_7.dll
2016-01-13 14:50:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-01-13 14:50:38 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\system32\d3dx11_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\system32\d3dx10_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\system32\D3DX9_43.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-01-13 14:50:30 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-01-13 14:50:30 ----A---- C:\windows\system32\xactengine3_6.dll
2016-01-13 14:50:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-01-13 14:50:29 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-01-13 14:50:28 ----A---- C:\windows\system32\XAudio2_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\system32\xactengine3_5.dll
2016-01-13 14:50:25 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-01-13 14:50:25 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\system32\d3dx11_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\system32\D3DX9_42.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\d3dx10_41.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\system32\D3DX9_41.dll
2016-01-13 14:50:09 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-01-13 14:50:08 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-01-13 14:50:08 ----A---- C:\windows\system32\XAudio2_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\system32\xactengine3_4.dll
2016-01-13 14:50:06 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-01-13 14:50:06 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\system32\D3DX9_40.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-01-13 14:49:56 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-01-13 14:49:56 ----A---- C:\windows\system32\xactengine3_3.dll
2016-01-13 14:49:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-01-13 14:49:55 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-01-13 14:49:52 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-01-13 14:49:52 ----A---- C:\windows\system32\xactengine3_2.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\system32\D3DX9_39.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-01-13 14:49:43 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-01-13 14:49:43 ----A---- C:\windows\system32\xactengine3_1.dll
2016-01-13 14:49:42 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-01-13 14:49:42 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\system32\D3DX9_38.dll
2016-01-13 14:49:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-01-13 14:49:36 ----A---- C:\windows\system32\XAudio2_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\system32\xactengine3_0.dll
2016-01-13 14:49:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-01-13 14:49:34 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\system32\D3DX9_37.dll
2016-01-13 14:49:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-01-13 14:49:26 ----A---- C:\windows\system32\xactengine2_10.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\system32\d3dx9_36.dll
2016-01-13 14:49:18 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-01-13 14:49:18 ----A---- C:\windows\system32\xactengine2_9.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\system32\d3dx9_35.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\system32\d3dx9_34.dll
2016-01-13 14:49:02 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-01-13 14:49:02 ----A---- C:\windows\system32\xinput1_3.dll
2016-01-13 14:49:00 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-01-13 14:49:00 ----A---- C:\windows\system32\xactengine2_7.dll
2016-01-13 14:48:58 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-01-13 14:48:58 ----A---- C:\windows\system32\d3dx10_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\system32\d3dx9_33.dll
2016-01-13 14:48:53 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-01-13 14:48:53 ----A---- C:\windows\system32\xactengine2_6.dll
2016-01-13 14:48:51 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-01-13 14:48:51 ----A---- C:\windows\system32\xactengine2_5.dll
2016-01-13 14:48:50 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-01-13 14:48:50 ----A---- C:\windows\system32\d3dx10.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-01-13 14:48:43 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-01-13 14:48:43 ----A---- C:\windows\system32\d3dx9_31.dll
2016-01-13 14:48:42 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-01-13 14:48:42 ----A---- C:\windows\system32\xactengine2_3.dll
2016-01-13 14:48:40 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-01-13 14:48:40 ----A---- C:\windows\system32\xinput1_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\system32\xactengine2_2.dll
2016-01-13 14:48:38 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-01-13 14:48:38 ----A---- C:\windows\system32\xinput1_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\system32\xactengine2_1.dll
2016-01-13 14:48:26 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-01-13 14:48:26 ----A---- C:\windows\system32\d3dx9_30.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-01-13 14:48:21 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-01-13 14:48:21 ----A---- C:\windows\system32\d3dx9_29.dll
2016-01-13 14:48:18 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-01-13 14:48:18 ----A---- C:\windows\system32\d3dx9_28.dll
2016-01-13 14:48:15 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-01-13 14:48:15 ----A---- C:\windows\system32\d3dx9_27.dll
2016-01-13 14:48:08 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-01-13 14:48:08 ----A---- C:\windows\system32\d3dx9_26.dll
2016-01-13 14:47:59 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-01-13 14:47:59 ----A---- C:\windows\system32\d3dx9_25.dll
2016-01-13 14:47:56 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-01-13 14:47:56 ----A---- C:\windows\system32\d3dx9_24.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\system32\mf.dll
2016-01-13 13:27:22 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 13:27:21 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 13:27:20 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\quartz.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\evr.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\devenum.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\system32\qasf.dll
2016-01-13 13:27:16 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 13:27:11 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 13:27:11 ----A---- C:\windows\system32\qedit.dll
2016-01-13 13:27:10 ----A---- C:\windows\system32\aepic.dll
2016-01-13 13:26:24 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 13:26:23 ----A---- C:\windows\SYSWOW64\gdi32.dll

======List of files/folders modified in the last 1 month======

2016-02-12 18:30:07 ----D---- C:\Program Files\trend micro
2016-02-12 16:16:32 ----D---- C:\windows\Microsoft.NET
2016-02-12 16:16:29 ----RSD---- C:\windows\assembly
2016-02-12 15:21:05 ----SHD---- C:\windows\Installer
2016-02-12 15:16:37 ----SHD---- C:\System Volume Information
2016-02-12 15:01:22 ----D---- C:\windows\SysWOW64
2016-02-12 15:01:22 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2016-02-12 15:00:48 ----D---- C:\windows\inf
2016-02-12 15:00:46 ----D---- C:\windows\System32
2016-02-12 15:00:46 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-02-12 14:37:29 ----D---- C:\windows\winsxs
2016-02-12 14:37:03 ----D---- C:\ProgramData\PDFC
2016-02-12 14:36:00 ----D---- C:\windows\system32\config
2016-02-12 14:32:09 ----D---- C:\Program Files\Windows Journal
2016-02-12 14:32:08 ----D---- C:\windows\SYSWOW64\sl-SI
2016-02-12 14:32:08 ----D---- C:\windows\SYSWOW64\sk-SK
2016-02-12 14:32:08 ----D---- C:\windows\SYSWOW64\hr-HR
2016-02-12 14:32:08 ----D---- C:\windows\SYSWOW64\en-US
2016-02-12 14:32:08 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-02-12 14:32:08 ----D---- C:\Program Files\Internet Explorer
2016-02-12 14:32:08 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-12 14:32:07 ----D---- C:\windows\system32\sl-SI
2016-02-12 14:32:07 ----D---- C:\windows\system32\sk-SK
2016-02-12 14:32:07 ----D---- C:\windows\system32\hr-HR
2016-02-12 14:32:07 ----D---- C:\windows\system32\en-US
2016-02-12 14:32:07 ----D---- C:\windows\system32\cs-CZ
2016-02-12 14:32:04 ----D---- C:\windows\system32\drivers
2016-02-12 14:31:59 ----D---- C:\windows\AppPatch
2016-02-12 14:31:58 ----D---- C:\windows\cs-CZ
2016-02-12 14:31:57 ----D---- C:\Windows
2016-02-12 08:04:34 ----D---- C:\windows\Tasks
2016-02-12 08:04:34 ----D---- C:\windows\system32\wfp
2016-02-12 08:04:34 ----D---- C:\windows\system32\DriverStore
2016-02-12 08:04:34 ----D---- C:\windows\system32\catroot2
2016-02-12 08:04:27 ----SD---- C:\windows\system32\GWX
2016-02-12 08:04:27 ----D---- C:\windows\system32\wbem
2016-02-12 08:04:27 ----D---- C:\windows\system32\Tasks
2016-02-12 08:04:27 ----D---- C:\windows\system32\drivers\etc
2016-02-12 08:04:27 ----D---- C:\windows\system32\CodeIntegrity
2016-02-12 08:03:51 ----D---- C:\Program Files\Common Files\Microsoft Shared
2016-02-12 08:02:33 ----D---- C:\windows\registration
2016-02-12 07:57:01 ----RD---- C:\Users
2016-02-12 07:56:59 ----HD---- C:\ProgramData
2016-02-12 07:56:58 ----RD---- C:\Program Files
2016-02-12 07:56:54 ----RD---- C:\Program Files (x86)
2016-02-12 07:56:54 ----D---- C:\Program Files (x86)\Common Files
2016-02-10 19:47:35 ----D---- C:\windows\system32\MRT
2016-02-10 19:36:55 ----D---- C:\windows\debug
2016-02-10 19:36:52 ----A---- C:\windows\system32\MRT.exe
2016-02-10 19:32:38 ----SD---- C:\windows\system32\CompatTel
2016-02-10 19:32:37 ----D---- C:\windows\system32\appraiser
2016-02-10 13:27:46 ----D---- C:\windows\Prefetch
2016-02-09 14:45:34 ----D---- C:\windows\Logs
2016-02-01 15:54:21 ----D---- C:\Users\ProBook\AppData\Roaming\ArcSoft
2016-01-31 18:01:43 ----D---- C:\Program Files\Calibre2
2016-01-26 21:53:34 ----D---- C:\Users\ProBook\AppData\Roaming\Apple Computer
2016-01-26 20:48:43 ----D---- C:\Program Files (x86)\QuickTime
2016-01-14 17:27:56 ----D---- C:\windows\rescache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\windows\system32\drivers\amd_sata.sys [2011-04-15 79488]
R0 amd_xata;amd_xata; C:\windows\system32\drivers\amd_xata.sys [2011-04-15 40064]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-05 30008]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-05-24 158280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 168208]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-05 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\amdhub30.sys [2012-11-29 107688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-10-25 10207744]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-10-25 317952]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\amdxhc.sys [2012-11-29 228008]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-04-21 2727424]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\drivers\HpqKbFiltr.sys [2011-05-14 25912]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2015-02-18 175928]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2011-04-07 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2011-05-11 523264]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2015-02-17 524016]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2015-02-17 58536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 64512]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Corporate.12.0;ABBYY FineReader 12 CE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [2014-07-17 961744]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-10-25 204288]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-05-19 485712]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-07-08 1353720]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-03-17 132152]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-03-23 133688]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-05-09 320512]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-05-14 317496]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-05 30520]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-05-24 1318912]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-04-22 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 RtlISMServ;RtlISMServ; C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [2011-05-30 40960]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-05-11 301056]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-03-24 3161904]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-05-22 818232]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-02-11 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-02-11 655624]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-05-23 1098296]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-28 51727736]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2015-01-24 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------
Přílohy
pozn (1).png
pozn (1).png (479.55 KiB) Zobrazeno 1830 x
Naposledy upravil(a) StandaM. dne 12 úno 2016 20:27, celkem upraveno 1 x.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu, nefunguje Windows Update

#23 Příspěvek od Rudy »

Log je OK. V CF je příkaz RegLock příkazem k odemknutí klíčů. Je zcela normální, že se nepodaří odemknout všechny. Není to nic proti ničemu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#24 Příspěvek od StandaM. »

Prosím o odpověď i na zbylé otázky 1, 2, 3. Chápu, že jsou otravné... :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu, nefunguje Windows Update

#25 Příspěvek od Rudy »

1. OTM proběhl, položky byly smazány.
2. Zaručit to nemohu, nicméně v nouz. režimu něběží všechny služby a procesy, takže nebezpečí je určitě menší. Nevím, proč to spadlo, v logu zase nic tak zásadního nebylo.
3. Do NR se dostanete tisknutím klávesy >F8< na konci úvodních postů biosu těsně před začátkem bootování.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#26 Příspěvek od StandaM. »

Bohužel, stejný problém jako předtím. Napíše mi to, že to maže soubor MCCS6.exe, pak že to provede restart, při najíždění loga windows se to kousne a vyskočí obnova systému.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu, nefunguje Windows Update

#27 Příspěvek od Rudy »

To je šmejd, v logu ale nebyl. Zkuste na to pustit TDSSKIller: http://www.bleepingcomputer.com/download/tdsskiller/ :
Kliknete na volbu Change parametrs
V okne Additional Option zakliknete vsechny moznosti
Kliknete na OK
Utilite prikazte, at skenuje - klik na Start Scan
Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
Pokud mate vsude Skip, kliknete na Continue
Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#28 Příspěvek od StandaM. »

Žádnou možnost "skip" jsem nenašel. Posílám první část logu. Nevlezlo se mi to do jednoho příspěvku.

:arrow: Soubor mccs6.exe mám zde C:\Users\ProBook\AppData\Local\Tempxf-mccs6.exe . Je to nějaký škodlivý soubor?


21:54:32.0568 0x1644 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
21:54:39.0729 0x1644 ============================================================
21:54:39.0729 0x1644 Current date / time: 2016/02/12 21:54:39.0729
21:54:39.0729 0x1644 SystemInfo:
21:54:39.0729 0x1644
21:54:39.0729 0x1644 OS Version: 6.1.7601 ServicePack: 1.0
21:54:39.0729 0x1644 Product type: Workstation
21:54:39.0729 0x1644 ComputerName: PROBOOK-HP
21:54:39.0729 0x1644 UserName: ProBook
21:54:39.0729 0x1644 Windows directory: C:\windows
21:54:39.0729 0x1644 System windows directory: C:\windows
21:54:39.0729 0x1644 Running under WOW64
21:54:39.0729 0x1644 Processor architecture: Intel x64
21:54:39.0729 0x1644 Number of processors: 4
21:54:39.0729 0x1644 Page size: 0x1000
21:54:39.0729 0x1644 Boot type: Normal boot
21:54:39.0729 0x1644 ============================================================
21:54:40.0275 0x1644 KLMD registered as C:\windows\system32\drivers\59131960.sys
21:54:41.0429 0x1644 System UUID: {A293BFBB-A0A5-5179-F0F2-56274B603C11}
21:54:43.0348 0x1644 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:54:43.0738 0x1644 ============================================================
21:54:43.0738 0x1644 \Device\Harddisk0\DR0:
21:54:43.0754 0x1644 MBR partitions:
21:54:43.0754 0x1644 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
21:54:43.0754 0x1644 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x47E26000
21:54:43.0754 0x1644 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x47EBC800, BlocksNum 0x1F9A000
21:54:43.0754 0x1644 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x49E56800, BlocksNum 0xA01000
21:54:43.0754 0x1644 ============================================================
21:54:43.0769 0x1644 C: <-> \Device\Harddisk0\DR0\Partition2
21:54:43.0816 0x1644 D: <-> \Device\Harddisk0\DR0\Partition3
21:54:43.0832 0x1644 E: <-> \Device\Harddisk0\DR0\Partition4
21:54:43.0832 0x1644 ============================================================
21:54:43.0832 0x1644 Initialize success
21:54:43.0832 0x1644 ============================================================
21:55:14.0408 0x1780 ============================================================
21:55:14.0408 0x1780 Scan started
21:55:14.0408 0x1780 Mode: Manual; SigCheck; TDLFS;
21:55:14.0408 0x1780 ============================================================
21:55:14.0408 0x1780 KSN ping started
21:55:17.0964 0x1780 KSN ping finished: true
21:55:18.0573 0x1780 ================ Scan system memory ========================
21:55:18.0573 0x1780 System memory - ok
21:55:18.0573 0x1780 ================ Scan services =============================
21:55:18.0916 0x1780 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
21:55:19.0103 0x1780 1394ohci - ok
21:55:19.0290 0x1780 [ CA79D6A477C6CCA0731F19B295257B8D, 16BFAD4A1927B5918C3B7D35158DA83A702E18A9E0EC5840F92460E0121D6F5B ] ABBYY.Licensing.FineReader.Corporate.12.0 C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
21:55:19.0462 0x1780 ABBYY.Licensing.FineReader.Corporate.12.0 - ok
21:55:19.0509 0x1780 [ 7BB93BB5A578984090748F310ED895EF, C3DEC294E4BCE92951EFD00BFCC515A4ED5AB941BC95F728E01C1386F1879C6F ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
21:55:19.0571 0x1780 Accelerometer - ok
21:55:19.0649 0x1780 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:55:19.0680 0x1780 ACDaemon - ok
21:55:19.0758 0x1780 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\windows\system32\drivers\ACPI.sys
21:55:19.0805 0x1780 ACPI - ok
21:55:19.0852 0x1780 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
21:55:19.0961 0x1780 AcpiPmi - ok
21:55:20.0024 0x1780 [ 2F0683FD2DF1D92E891CACA14B45A8C1, B4A8D6A183FA0B7D642FAD6B51C19FEC998481E1C49480D2B391E5D8B55F5BBD ] adfs C:\windows\system32\drivers\adfs.sys
21:55:20.0055 0x1780 adfs - ok
21:55:20.0164 0x1780 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
21:55:20.0226 0x1780 adp94xx - ok
21:55:20.0304 0x1780 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\drivers\adpahci.sys
21:55:20.0351 0x1780 adpahci - ok
21:55:20.0382 0x1780 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\drivers\adpu320.sys
21:55:20.0429 0x1780 adpu320 - ok
21:55:20.0476 0x1780 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\windows\System32\aelupsvc.dll
21:55:20.0570 0x1780 AeLookupSvc - ok
21:55:20.0663 0x1780 [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
21:55:20.0757 0x1780 AESTFilters - ok
21:55:20.0882 0x1780 [ 6CCD1135320109D6B219F1A6E04AD9F6, B97D4DF46DF0EFC106BD3E248C70809F3F47DF3FD1CA039A0A3923E1FA05A969 ] Afc C:\windows\syswow64\drivers\Afc.sys
21:55:20.0913 0x1780 Afc - ok
21:55:21.0006 0x1780 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\windows\system32\drivers\afd.sys
21:55:21.0116 0x1780 AFD - ok
21:55:21.0178 0x1780 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\windows\system32\drivers\agp440.sys
21:55:21.0209 0x1780 agp440 - ok
21:55:21.0272 0x1780 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe
21:55:21.0365 0x1780 ALG - ok
21:55:21.0428 0x1780 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\drivers\aliide.sys
21:55:21.0459 0x1780 aliide - ok
21:55:21.0521 0x1780 [ DE812DFC2CDB2DDA2C019B94A8E8A80D, A11DC1D5531FBAA4196294822E7BBA5A7DB5CDA4F9934589C3B0858D4A3DB9FA ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
21:55:21.0646 0x1780 AMD External Events Utility - ok
21:55:21.0708 0x1780 [ AD8D779A1EE0F7F6B11EA4916CC92D65, 61D32502E04642463ED1855EF2EEBDFA72D9151750F7D74410B55587954B729D ] amdhub30 C:\windows\system32\DRIVERS\amdhub30.sys
21:55:21.0755 0x1780 amdhub30 - ok
21:55:21.0802 0x1780 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\drivers\amdide.sys
21:55:21.0833 0x1780 amdide - ok
21:55:21.0896 0x1780 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
21:55:21.0942 0x1780 AmdK8 - ok
21:55:22.0785 0x1780 [ 9B70B38227EF02B7B2377324CFEE8543, 4D8FA36E9BD2FE1E2CF378323754EC701CD20916F788E2A81869C04B69550808 ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
21:55:23.0752 0x1780 amdkmdag - ok
21:55:23.0877 0x1780 [ 64ABD25EEC2364F97B42E45F84583CC6, 96102A7E0DC26820EF07C2147107AA26EEE56CAA859703E8FF209C06A8DE8FC9 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
21:55:23.0955 0x1780 amdkmdap - ok
21:55:24.0002 0x1780 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
21:55:24.0064 0x1780 AmdPPM - ok
21:55:24.0126 0x1780 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\windows\system32\drivers\amdsata.sys
21:55:24.0173 0x1780 amdsata - ok
21:55:24.0236 0x1780 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
21:55:24.0282 0x1780 amdsbs - ok
21:55:24.0298 0x1780 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\windows\system32\drivers\amdxata.sys
21:55:24.0345 0x1780 amdxata - ok
21:55:24.0407 0x1780 [ B9032F3857207F37029375374AC4BE4A, C5FF1374BD0422EF40CF04175DBE9431DD9C8192A2A3A34AEB24C1E60F955F1A ] amdxhc C:\windows\system32\DRIVERS\amdxhc.sys
21:55:24.0454 0x1780 amdxhc - ok
21:55:24.0501 0x1780 [ F9D46B6B322708BD5AFCC8767EBDC901, BD4872A62516D8326D43FD37A8BECEBADB80C51CD79506FD8A2013358710F774 ] amd_sata C:\windows\system32\drivers\amd_sata.sys
21:55:24.0532 0x1780 amd_sata - ok
21:55:24.0594 0x1780 [ 329CC9C7E20DEEBCD4CD10816193EF14, FA217536D56EA0BFC783FC29919F529A9AF8E0F7B2A49AA452B218BC6F1E0366 ] amd_xata C:\windows\system32\drivers\amd_xata.sys
21:55:24.0626 0x1780 amd_xata - ok
21:55:24.0672 0x1780 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\windows\system32\drivers\appid.sys
21:55:24.0750 0x1780 AppID - ok
21:55:24.0782 0x1780 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\windows\System32\appidsvc.dll
21:55:24.0828 0x1780 AppIDSvc - ok
21:55:24.0891 0x1780 [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\windows\System32\appinfo.dll
21:55:24.0984 0x1780 Appinfo - ok
21:55:25.0047 0x1780 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\drivers\arc.sys
21:55:25.0078 0x1780 arc - ok
21:55:25.0109 0x1780 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\drivers\arcsas.sys
21:55:25.0140 0x1780 arcsas - ok
21:55:25.0203 0x1780 [ 357635F16D28558C50870F4EF8AA4712, 80B579F0DCF1AC5607C692988B56CC62DEE1EF5BF3583B89006493F9DCE89CE9 ] ARCVCAM C:\windows\system32\DRIVERS\ArcSoftVCapture.sys
21:55:25.0234 0x1780 ARCVCAM - ok
21:55:25.0359 0x1780 [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:55:25.0437 0x1780 aspnet_state - ok
21:55:25.0499 0x1780 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
21:55:25.0702 0x1780 AsyncMac - ok
21:55:25.0749 0x1780 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\drivers\atapi.sys
21:55:25.0796 0x1780 atapi - ok
21:55:25.0842 0x1780 [ CBE61B4494165F458BD87E37181EE934, E95654DCC0F977A3604B6BE435BEE109AC8F9F7494FD3A132F5FB477BBF7B105 ] AthBTPort C:\windows\system32\DRIVERS\btath_flt.sys
21:55:25.0936 0x1780 AthBTPort - ok
21:55:26.0030 0x1780 [ 650F111D5CDA64C10AE4B9D1BA9D4FFF, 99AD83993D724538687F084318404DBF314C2249AB593AF9DD3783B0AB6B3B25 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
21:55:26.0076 0x1780 Atheros Bt&Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 )
21:55:28.0838 0x1780 Detect skipped due to KSN trusted
21:55:28.0838 0x1780 Atheros Bt&Wlan Coex Agent - ok
21:55:28.0900 0x1780 [ 7DF4FC861D1AB4977195936025B1B940, A27E776CE028CE17C0CCA01BFC773DCE8A227B48602D6E0FF559BAF44FEDFA33 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
21:55:28.0947 0x1780 AtherosSvc - detected UnsignedFile.Multi.Generic ( 1 )
21:55:31.0708 0x1780 Detect skipped due to KSN trusted
21:55:31.0708 0x1780 AtherosSvc - ok
21:55:32.0036 0x1780 [ 5493ED5D300AFC7A9A0A87FCA08E5381, 654869EB4D295317921BC3855D4FE5D3FE6031DC7655EA1805347DA8E5177FFA ] athr C:\windows\system32\DRIVERS\athrx.sys
21:55:32.0332 0x1780 athr - ok
21:55:32.0426 0x1780 [ DBB487D09F56C674430AC454FD8BCAB9, CF6413DD5D4876CE1F65E40115994423804AA5EA5CBDEB433DB751B445C17BB8 ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys
21:55:32.0472 0x1780 AtiHDAudioService - ok
21:55:32.0582 0x1780 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
21:55:32.0722 0x1780 AudioEndpointBuilder - ok
21:55:32.0831 0x1780 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\windows\System32\Audiosrv.dll
21:55:32.0909 0x1780 AudioSrv - ok
21:55:32.0987 0x1780 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\windows\System32\AxInstSV.dll
21:55:33.0081 0x1780 AxInstSV - ok
21:55:33.0159 0x1780 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
21:55:33.0252 0x1780 b06bdrv - ok
21:55:33.0315 0x1780 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
21:55:33.0377 0x1780 b57nd60a - ok
21:55:33.0455 0x1780 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll
21:55:33.0533 0x1780 BDESVC - ok
21:55:33.0564 0x1780 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys
21:55:33.0689 0x1780 Beep - ok
21:55:33.0798 0x1780 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\windows\System32\bfe.dll
21:55:33.0923 0x1780 BFE - ok
21:55:34.0017 0x1780 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\windows\System32\qmgr.dll
21:55:34.0266 0x1780 BITS - ok
21:55:34.0313 0x1780 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\drivers\blbdrive.sys
21:55:34.0376 0x1780 blbdrive - ok
21:55:34.0422 0x1780 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\windows\system32\DRIVERS\bowser.sys
21:55:34.0485 0x1780 bowser - ok
21:55:34.0532 0x1780 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
21:55:34.0594 0x1780 BrFiltLo - ok
21:55:34.0625 0x1780 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
21:55:34.0672 0x1780 BrFiltUp - ok
21:55:34.0734 0x1780 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\windows\System32\browser.dll
21:55:34.0812 0x1780 Browser - ok
21:55:34.0890 0x1780 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys
21:55:34.0984 0x1780 Brserid - ok
21:55:35.0031 0x1780 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
21:55:35.0093 0x1780 BrSerWdm - ok
21:55:35.0124 0x1780 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
21:55:35.0187 0x1780 BrUsbMdm - ok
21:55:35.0202 0x1780 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
21:55:35.0265 0x1780 BrUsbSer - ok
21:55:35.0327 0x1780 [ FE70889A85C57A9268101B2DB0474509, 9E957390A52BE4E5642724FEC06A201682F93DD1C6F2C00A5F57351460CF5AE0 ] BTATH_A2DP C:\windows\system32\drivers\btath_a2dp.sys
21:55:35.0421 0x1780 BTATH_A2DP - ok
21:55:35.0483 0x1780 [ A9DF22429E8D69ED849B0BBBE16BD327, 853A2F34EDBE62889769B6B75B50A6E57971279EAF3936E03EF46D311B5483C5 ] BTATH_BUS C:\windows\system32\DRIVERS\btath_bus.sys
21:55:35.0546 0x1780 BTATH_BUS - ok
21:55:35.0702 0x1780 [ C864FF85EE16D61C2BDD5EF76824625F, 6D2FE57688D9E8B4277BF6DA9C219DEB367274364FBE17EFC353CEDB2D7EA35D ] BTATH_HCRP C:\windows\system32\DRIVERS\btath_hcrp.sys
21:55:35.0780 0x1780 BTATH_HCRP - ok
21:55:35.0842 0x1780 [ 0DEA505EFB5D771826D177EF8B8A208F, FD8027DA791F04077490749AC5A08F73CCBA1731462579AA9008CD8DD82FBBBC ] BTATH_LWFLT C:\windows\system32\DRIVERS\btath_lwflt.sys
21:55:35.0889 0x1780 BTATH_LWFLT - ok
21:55:35.0951 0x1780 [ 724C8088C96EFE7A3E63FEC21D4681C0, 4F9B258BE0FEA634A0D93B3892F2F039A7CAD184C9A81DFC2B67B0D4B39C5035 ] BTATH_RCP C:\windows\system32\DRIVERS\btath_rcp.sys
21:55:36.0029 0x1780 BTATH_RCP - ok
21:55:36.0123 0x1780 [ 433ED82856EB245577544DA94D0C0565, 34A5C2D4DF4F133CED0F22B6F8D05A872788578C48FE360D4B300B5149E2BE70 ] BtFilter C:\windows\system32\DRIVERS\btfilter.sys
21:55:36.0185 0x1780 BtFilter - ok
21:55:36.0248 0x1780 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
21:55:36.0310 0x1780 BthEnum - ok
21:55:36.0341 0x1780 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
21:55:36.0404 0x1780 BTHMODEM - ok
21:55:36.0466 0x1780 [ BDAD7CA91F370E588ECC8C67B694300C, 5892B7FF06477383A1CFB7CA947ADA4C50F6F233F1A7ECA1699891E5F564AA6E ] BthMtpEnum C:\windows\system32\DRIVERS\BthMtpEnum.sys
21:55:36.0528 0x1780 BthMtpEnum - ok
21:55:36.0591 0x1780 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
21:55:36.0700 0x1780 BthPan - ok
21:55:36.0778 0x1780 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\windows\system32\Drivers\BTHport.sys
21:55:36.0903 0x1780 BTHPORT - ok
21:55:36.0950 0x1780 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll
21:55:37.0059 0x1780 bthserv - ok
21:55:37.0106 0x1780 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\windows\system32\Drivers\BTHUSB.sys
21:55:37.0168 0x1780 BTHUSB - ok
21:55:37.0215 0x1780 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
21:55:37.0324 0x1780 cdfs - ok
21:55:37.0418 0x1780 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
21:55:37.0464 0x1780 cdrom - ok
21:55:37.0527 0x1780 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\windows\System32\certprop.dll
21:55:37.0620 0x1780 CertPropSvc - ok
21:55:37.0667 0x1780 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\drivers\circlass.sys
21:55:37.0730 0x1780 circlass - ok
21:55:37.0823 0x1780 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\windows\system32\CLFS.sys
21:55:37.0886 0x1780 CLFS - ok
21:55:37.0948 0x1780 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:55:37.0995 0x1780 clr_optimization_v2.0.50727_32 - ok
21:55:38.0057 0x1780 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:55:38.0088 0x1780 clr_optimization_v2.0.50727_64 - ok
21:55:38.0229 0x1780 [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:55:38.0276 0x1780 clr_optimization_v4.0.30319_32 - ok
21:55:38.0307 0x1780 [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:55:38.0416 0x1780 clr_optimization_v4.0.30319_64 - ok
21:55:38.0478 0x1780 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\drivers\CmBatt.sys
21:55:38.0510 0x1780 CmBatt - ok
21:55:38.0556 0x1780 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\drivers\cmdide.sys
21:55:38.0588 0x1780 cmdide - ok
21:55:38.0666 0x1780 [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\windows\system32\Drivers\cng.sys
21:55:38.0759 0x1780 CNG - ok
21:55:38.0822 0x1780 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\drivers\compbatt.sys
21:55:38.0853 0x1780 Compbatt - ok
21:55:38.0900 0x1780 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
21:55:38.0946 0x1780 CompositeBus - ok
21:55:38.0978 0x1780 COMSysApp - ok
21:55:39.0024 0x1780 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
21:55:39.0056 0x1780 crcdisk - ok
21:55:39.0134 0x1780 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\windows\system32\cryptsvc.dll
21:55:39.0180 0x1780 CryptSvc - ok
21:55:39.0258 0x1780 [ B9AAC23BCC9326E5E50D937FECB7DCB5, 95BBDAE0E0870F873778132AB6C530FEB37C9FEBF84BB5C2512F93DC14A62BF6 ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
21:55:39.0290 0x1780 DAMDrv - ok
21:55:39.0383 0x1780 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\windows\system32\rpcss.dll
21:55:39.0524 0x1780 DcomLaunch - ok
21:55:39.0602 0x1780 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll
21:55:39.0726 0x1780 defragsvc - ok
21:55:39.0789 0x1780 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\windows\system32\Drivers\dfsc.sys
21:55:39.0898 0x1780 DfsC - ok
21:55:39.0945 0x1780 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\windows\system32\dhcpcore.dll
21:55:40.0007 0x1780 Dhcp - ok
21:55:40.0179 0x1780 [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack C:\windows\system32\diagtrack.dll
21:55:40.0366 0x1780 DiagTrack - ok
21:55:40.0413 0x1780 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys
21:55:40.0522 0x1780 discache - ok
21:55:40.0584 0x1780 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\windows\system32\drivers\disk.sys
21:55:40.0631 0x1780 Disk - ok
21:55:40.0678 0x1780 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\windows\System32\dnsrslvr.dll
21:55:40.0756 0x1780 Dnscache - ok
21:55:40.0803 0x1780 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\windows\System32\dot3svc.dll
21:55:40.0912 0x1780 dot3svc - ok
21:55:41.0021 0x1780 [ 6AFFDBFB153C9079BE33047A692676E2, 1678EA7E6B69DFF2E736D8C009D66B1BBA21F4140F7CA3D8FDBA683655094850 ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
21:55:41.0084 0x1780 DpHost - ok
21:55:41.0115 0x1780 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\windows\system32\dps.dll
21:55:41.0240 0x1780 DPS - ok
21:55:41.0302 0x1780 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
21:55:41.0364 0x1780 drmkaud - ok
21:55:41.0458 0x1780 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
21:55:41.0598 0x1780 DXGKrnl - ok
21:55:41.0676 0x1780 [ 16C9267276497C768CA3181DD69DEB67, 7D47FB76F4FEA10375EAB4A77181AEF9C2F890C8170E659B0DA0DF1BEC055C14 ] eamonm C:\windows\system32\DRIVERS\eamonm.sys
21:55:41.0723 0x1780 eamonm - ok
21:55:41.0770 0x1780 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll
21:55:41.0895 0x1780 EapHost - ok
21:55:42.0222 0x1780 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\drivers\evbda.sys
21:55:42.0550 0x1780 ebdrv - ok
21:55:42.0612 0x1780 [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] EFS C:\windows\System32\lsass.exe
21:55:42.0690 0x1780 EFS - ok
21:55:42.0768 0x1780 [ CA0945B6123F41E4B0D6B46183AD8DC1, E7B180F13A521C4E8338CA7F0AC68A372B6935E4C4430E68C0BE08A73139DD7F ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys
21:55:42.0815 0x1780 ehdrv - ok
21:55:42.0909 0x1780 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\windows\ehome\ehRecvr.exe
21:55:43.0049 0x1780 ehRecvr - ok
21:55:43.0096 0x1780 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe
21:55:43.0143 0x1780 ehSched - ok
21:55:43.0455 0x1780 [ 0F32048BF3EA2A85FE3AC48E8E7B7C85, 5267511EEA80B37816C3ECA165602EF40CD644A4DA63A02C5DA37B16A889DA0C ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
21:55:43.0611 0x1780 ekrn - ok
21:55:43.0704 0x1780 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\drivers\elxstor.sys
21:55:43.0814 0x1780 elxstor - ok
21:55:43.0876 0x1780 [ 0FA1A81B8D6D76D3C59E68433A17323F, 0E3B71AABC6EFC901DB47EA5A84B45243F05B4C51AD2C3B2ACFE81D37B6BFAE6 ] epfwwfpr C:\windows\system32\DRIVERS\epfwwfpr.sys
21:55:43.0923 0x1780 epfwwfpr - ok
21:55:43.0954 0x1780 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\windows\system32\drivers\errdev.sys
21:55:44.0016 0x1780 ErrDev - ok
21:55:44.0094 0x1780 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll
21:55:44.0235 0x1780 EventSystem - ok
21:55:44.0282 0x1780 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\windows\system32\drivers\exfat.sys
21:55:44.0406 0x1780 exfat - ok
21:55:44.0469 0x1780 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\windows\system32\drivers\fastfat.sys
21:55:44.0594 0x1780 fastfat - ok
21:55:44.0718 0x1780 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\windows\system32\fxssvc.exe
21:55:44.0859 0x1780 Fax - ok
21:55:44.0921 0x1780 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\drivers\fdc.sys
21:55:44.0968 0x1780 fdc - ok
21:55:45.0030 0x1780 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll
21:55:45.0155 0x1780 fdPHost - ok
21:55:45.0171 0x1780 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll
21:55:45.0280 0x1780 FDResPub - ok
21:55:45.0342 0x1780 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys
21:55:45.0374 0x1780 FileInfo - ok
21:55:45.0405 0x1780 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys
21:55:45.0514 0x1780 Filetrace - ok
21:55:45.0639 0x1780 [ 551034D58AAAFE0EBB087CD4C7767EB8, 8D8166AA7738796CD32765FBA1113EC6E0A11445A6762B92C789BF8F6231D0DD ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
21:55:45.0701 0x1780 FLCDLOCK - ok
21:55:45.0826 0x1780 [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:55:45.0935 0x1780 FLEXnet Licensing Service - ok
21:55:46.0091 0x1780 [ 1C3FB052A0BB72EDAED90785C34D6EED, 5300A82D1A79EBA1768F545E73974E3B8CE189AB39CDF905BF42AFA2E497186B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
21:55:46.0263 0x1780 FLEXnet Licensing Service 64 - ok
21:55:46.0294 0x1780 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\drivers\flpydisk.sys
21:55:46.0356 0x1780 flpydisk - ok
21:55:46.0403 0x1780 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
21:55:46.0450 0x1780 FltMgr - ok
21:55:46.0590 0x1780 [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\windows\system32\FntCache.dll
21:55:46.0762 0x1780 FontCache - ok
21:55:46.0824 0x1780 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:55:46.0856 0x1780 FontCache3.0.0.0 - ok
21:55:46.0871 0x1780 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys
21:55:46.0918 0x1780 FsDepends - ok
21:55:46.0965 0x1780 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
21:55:46.0996 0x1780 Fs_Rec - ok
21:55:47.0074 0x1780 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
21:55:47.0136 0x1780 fvevol - ok
21:55:47.0199 0x1780 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
21:55:47.0230 0x1780 gagp30kx - ok
21:55:47.0339 0x1780 [ 551D463E4CCEB5240234DA6718C93A44, 37CE7DFD392A1899FDB1B36163D34E9C005344EABDF7397BEA81447B9F7262D1 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
21:55:47.0386 0x1780 GameConsoleService - ok
21:55:47.0511 0x1780 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\windows\System32\gpsvc.dll
21:55:47.0682 0x1780 gpsvc - ok
21:55:47.0776 0x1780 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:55:47.0807 0x1780 gupdate - ok
21:55:47.0823 0x1780 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:55:47.0854 0x1780 gupdatem - ok
21:55:47.0901 0x1780 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
21:55:47.0948 0x1780 hcw85cir - ok
21:55:48.0010 0x1780 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:55:48.0088 0x1780 HdAudAddService - ok
21:55:48.0150 0x1780 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
21:55:48.0228 0x1780 HDAudBus - ok
21:55:48.0260 0x1780 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\drivers\HidBatt.sys
21:55:48.0306 0x1780 HidBatt - ok
21:55:48.0338 0x1780 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\drivers\hidbth.sys
21:55:48.0400 0x1780 HidBth - ok
21:55:48.0462 0x1780 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\drivers\hidir.sys
21:55:48.0494 0x1780 HidIr - ok
21:55:48.0540 0x1780 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\system32\hidserv.dll
21:55:48.0650 0x1780 hidserv - ok
21:55:48.0696 0x1780 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
21:55:48.0743 0x1780 HidUsb - ok
21:55:48.0806 0x1780 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\windows\system32\kmsvc.dll
21:55:48.0899 0x1780 hkmsvc - ok
21:55:48.0946 0x1780 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:55:49.0024 0x1780 HomeGroupListener - ok
21:55:49.0071 0x1780 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:55:49.0133 0x1780 HomeGroupProvider - ok
21:55:49.0211 0x1780 [ 45A12CACB97B4F15858FCFD59355A1E9, E4D671F1E413D1C45CC797C93FC042FEC9B0AE9F7039C82E516A410AD49100AA ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
21:55:49.0242 0x1780 HP Health Check Service - ok
21:55:49.0305 0x1780 [ 6DD70FB3092FD3EA7FA4CA26A1FE049D, 6EB59F69375C73248E16FDA4210C55EEC9071AFC734173BD551BED4B114FC342 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
21:55:49.0352 0x1780 HP Power Assistant Service - ok
21:55:49.0492 0x1780 [ C5D2F308E1C12A5C328EF549696DBC05, 4BBDA3E0707854CC80FF8699A478D0D2AF18094B9F7EFB629B0CE4F890C44464 ] hpCMSrv c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
21:55:49.0617 0x1780 hpCMSrv - ok
21:55:49.0679 0x1780 [ B4670AC88C5EAC55528709E26F9E38D6, F724A5B643B48D232EC57CC3710FEBB057D4B26D9D71E6ABE91FC64547CCCD40 ] HPDayStarterService c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
21:55:49.0710 0x1780 HPDayStarterService - ok
21:55:49.0757 0x1780 [ 0193C30760032CC044EF47A1919F20DC, 10F30C970A88EDC8300DB26C1F10616D285F2C6129168E01DA1E46D507C5A8A4 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
21:55:49.0788 0x1780 hpdskflt - ok
21:55:49.0882 0x1780 [ F521A4D9F0D1618B9119EABC7E580370, 962DA975CCEB9370E93DB710E75169A9F0C90418C8F33B9C6357DBD73FE8C615 ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
21:55:49.0944 0x1780 HPFSService - detected UnsignedFile.Multi.Generic ( 1 )
21:55:52.0690 0x1780 Detect skipped due to KSN trusted
21:55:52.0690 0x1780 HPFSService - ok
21:55:52.0768 0x1780 [ 9DCFDDECC54FC813E7C0C8EDF6E99E1C, 3BCCF8835224B6FF81794BF34277917BBDFE24CA6A575CAFCD55979C39B6BF3D ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
21:55:52.0815 0x1780 hpHotkeyMonitor - ok
21:55:52.0893 0x1780 [ B98EE5D4535A685634B90F7E04DE0DF7, E37D26EF83B70E84742498D2F53037F83BE13F0E01484D85A20C872F1F02ADDA ] HpqKbFiltr C:\windows\system32\drivers\HpqKbFiltr.sys
21:55:52.0924 0x1780 HpqKbFiltr - ok
21:55:53.0049 0x1780 [ 09FBD4C4DB2FD84B9AB1C5BFDCC95559, FCC28D44C1E3F6FF65C596CDA9BF09C03D4EF3EEFCDB628954A07B0D3E182F3B ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
21:55:53.0174 0x1780 hpqwmiex - ok
21:55:53.0220 0x1780 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
21:55:53.0267 0x1780 HpSAMD - ok
21:55:53.0298 0x1780 [ 65A2B4B003D733C6FAA16F22212BB86D, 8B2124E91085A3C69819255D0F6C3BE7EAC9DB43BA327D84C3C99962409348A1 ] hpsrv C:\windows\system32\Hpservice.exe
21:55:53.0330 0x1780 hpsrv - ok
21:55:53.0439 0x1780 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\windows\system32\drivers\HTTP.sys
21:55:53.0579 0x1780 HTTP - ok
21:55:53.0626 0x1780 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
21:55:53.0657 0x1780 hwpolicy - ok
21:55:53.0735 0x1780 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
21:55:53.0766 0x1780 i8042prt - ok
21:55:53.0860 0x1780 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
21:55:53.0922 0x1780 iaStorV - ok
21:55:54.0032 0x1780 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:55:54.0156 0x1780 idsvc - ok
21:55:54.0188 0x1780 IEEtwCollectorService - ok
21:55:54.0718 0x1780 [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
21:55:55.0280 0x1780 igfx - ok
21:55:55.0389 0x1780 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\drivers\iirsp.sys
21:55:55.0420 0x1780 iirsp - ok
21:55:55.0607 0x1780 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\windows\System32\ikeext.dll
21:55:55.0732 0x1780 IKEEXT - ok
21:55:55.0794 0x1780 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\drivers\intelide.sys
21:55:55.0826 0x1780 intelide - ok
21:55:55.0904 0x1780 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\windows\system32\drivers\intelppm.sys
21:55:55.0950 0x1780 intelppm - ok
21:55:55.0997 0x1780 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll
21:55:56.0122 0x1780 IPBusEnum - ok
21:55:56.0169 0x1780 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
21:55:56.0262 0x1780 IpFilterDriver - ok
21:55:56.0356 0x1780 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\windows\System32\iphlpsvc.dll
21:55:56.0481 0x1780 iphlpsvc - ok
21:55:56.0528 0x1780 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
21:55:56.0574 0x1780 IPMIDRV - ok
21:55:56.0606 0x1780 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys
21:55:56.0715 0x1780 IPNAT - ok
21:55:56.0762 0x1780 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys
21:55:56.0824 0x1780 IRENUM - ok
21:55:56.0871 0x1780 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\windows\system32\drivers\isapnp.sys
21:55:56.0902 0x1780 isapnp - ok
21:55:56.0949 0x1780 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
21:55:57.0011 0x1780 iScsiPrt - ok
21:55:57.0074 0x1780 [ 3FE43C2F5B5C08657A1B547AFBE2118E, 33A589EFA8CC13E5C46392B321797D15030B38C56276B2C3755E332E6CC15786 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
21:55:57.0120 0x1780 JMCR - ok
21:55:57.0214 0x1780 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
21:55:57.0245 0x1780 kbdclass - ok
21:55:57.0261 0x1780 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
21:55:57.0308 0x1780 kbdhid - ok
21:55:57.0354 0x1780 [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] KeyIso C:\windows\system32\lsass.exe
21:55:57.0386 0x1780 KeyIso - ok
21:55:57.0448 0x1780 [ 7BDDD24C5A148534D3737DBFA96B3E69, 06130316A21B1D67B5885AB7030603097EC96F7104F3766D67793ECFC1143158 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
21:55:57.0479 0x1780 KSecDD - ok
21:55:57.0510 0x1780 [ BA500732D160C61E889E8180EE53C86F, 2E9B9FEF4E2F86DBF6778AD0A581CE2F1CA0AC777440BA05AB36B031CE1E8781 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
21:55:57.0557 0x1780 KSecPkg - ok
21:55:57.0588 0x1780 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys
21:55:57.0698 0x1780 ksthunk - ok
21:55:57.0760 0x1780 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll
21:55:57.0869 0x1780 KtmRm - ok
21:55:57.0947 0x1780 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\windows\system32\srvsvc.dll
21:55:58.0072 0x1780 LanmanServer - ok
21:55:58.0119 0x1780 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:55:58.0212 0x1780 LanmanWorkstation - ok
21:55:58.0275 0x1780 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
21:55:58.0384 0x1780 lltdio - ok
21:55:58.0431 0x1780 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll
21:55:58.0556 0x1780 lltdsvc - ok
21:55:58.0602 0x1780 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll
21:55:58.0696 0x1780 lmhosts - ok
21:55:58.0758 0x1780 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
21:55:58.0805 0x1780 LSI_FC - ok
21:55:58.0852 0x1780 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
21:55:58.0899 0x1780 LSI_SAS - ok
21:55:58.0930 0x1780 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
21:55:58.0961 0x1780 LSI_SAS2 - ok
21:55:59.0008 0x1780 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
21:55:59.0055 0x1780 LSI_SCSI - ok
21:55:59.0086 0x1780 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\windows\system32\drivers\luafv.sys
21:55:59.0211 0x1780 luafv - ok
21:55:59.0289 0x1780 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\windows\system32\drivers\mbam.sys
21:55:59.0320 0x1780 MBAMProtector - ok
21:55:59.0460 0x1780 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:55:59.0585 0x1780 MBAMService - ok
21:55:59.0663 0x1780 [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\windows\system32\drivers\mwac.sys
21:55:59.0694 0x1780 MBAMWebAccessControl - ok
21:55:59.0866 0x1780 [ 4557DD306DC008C4B74101540AEFDA2A, 4FCB0FC35D47C96CC6503541DBBCBEDE3D1D01D3564F54C36E8F1E34321B94E9 ] McAfee Endpoint Encryption Agent C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
21:56:00.0006 0x1780 McAfee Endpoint Encryption Agent - detected UnsignedFile.Multi.Generic ( 1 )
21:56:02.0970 0x1780 Detect skipped due to KSN trusted
21:56:02.0970 0x1780 McAfee Endpoint Encryption Agent - ok
21:56:03.0033 0x1780 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
21:56:03.0080 0x1780 Mcx2Svc - ok
21:56:03.0111 0x1780 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\drivers\megasas.sys
21:56:03.0158 0x1780 megasas - ok
21:56:03.0220 0x1780 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
21:56:03.0267 0x1780 MegaSR - ok
21:56:03.0329 0x1780 [ 937D9D334D51780E575C8B70D63B99CE, 13FA1233B95358CD633741F690FE7CFF39F74E0768A8C313917D0E6598EA4550 ] MfeEpePc C:\windows\system32\drivers\MfeEpePc.sys
21:56:03.0376 0x1780 MfeEpePc - ok
21:56:03.0470 0x1780 Microsoft SharePoint Workspace Audit Service - ok
21:56:03.0501 0x1780 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll
21:56:03.0610 0x1780 MMCSS - ok
21:56:03.0641 0x1780 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys
21:56:03.0735 0x1780 Modem - ok
21:56:03.0782 0x1780 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys
21:56:03.0813 0x1780 monitor - ok
21:56:03.0875 0x1780 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
21:56:03.0906 0x1780 mouclass - ok
21:56:03.0969 0x1780 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
21:56:04.0016 0x1780 mouhid - ok
21:56:04.0078 0x1780 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
21:56:04.0109 0x1780 mountmgr - ok
21:56:04.0156 0x1780 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\windows\system32\drivers\mpio.sys
21:56:04.0187 0x1780 mpio - ok
21:56:04.0218 0x1780 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
21:56:04.0328 0x1780 mpsdrv - ok
21:56:04.0406 0x1780 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\windows\system32\mpssvc.dll
21:56:04.0593 0x1780 MpsSvc - ok
21:56:04.0640 0x1780 [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
21:56:04.0686 0x1780 MRxDAV - ok
21:56:04.0733 0x1780 [ 355DF71D1DD1999E8AEDF986534B233C, 4F5B07A3E9F4C5EE259A72353835364BFEAEC792090C178C4EF91B517B1C49D0 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
21:56:04.0796 0x1780 mrxsmb - ok
21:56:04.0874 0x1780 [ A16FC9323A85CAEA5804D04646A91CF9, ABC9F1BE4B871EBB5FDED9FC248DABEC4004EBCCF53E6C4D1E54AF69653B00E0 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
21:56:04.0920 0x1780 mrxsmb10 - ok
21:56:04.0983 0x1780 [ 2539BE615440BA1EA4CF84A66B6C0AF9, 3369DE38EE49E5507A73036CDF3982AEF2331D61C7EC4F159004EAD14309A933 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
21:56:05.0045 0x1780 mrxsmb20 - ok
21:56:05.0108 0x1780 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\windows\system32\drivers\msahci.sys
21:56:05.0139 0x1780 msahci - ok
21:56:05.0186 0x1780 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\windows\system32\drivers\msdsm.sys
21:56:05.0232 0x1780 msdsm - ok
21:56:05.0279 0x1780 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe
21:56:05.0326 0x1780 MSDTC - ok
21:56:05.0373 0x1780 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys
21:56:05.0482 0x1780 Msfs - ok
21:56:05.0544 0x1780 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
21:56:05.0654 0x1780 mshidkmdf - ok
21:56:05.0669 0x1780 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
21:56:05.0700 0x1780 msisadrv - ok
21:56:05.0732 0x1780 [ 808E98FF49B155C522E6400953177B08,
Naposledy upravil(a) StandaM. dne 12 úno 2016 22:29, celkem upraveno 1 x.
Nahoru
StandaM.
Návštěvník
Návštěvník
Příspěvky: 111
Registrován: 16 úno 2012 12:58

Re: Prosím o kontrolu, nefunguje Windows Update

#29 Příspěvek od StandaM. »

F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll
21:56:05.0841 0x1780 MSiSCSI - ok
21:56:05.0856 0x1780 msiserver - ok
21:56:05.0888 0x1780 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
21:56:05.0997 0x1780 MSKSSRV - ok
21:56:06.0044 0x1780 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
21:56:06.0137 0x1780 MSPCLOCK - ok
21:56:06.0153 0x1780 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys
21:56:06.0262 0x1780 MSPQM - ok
21:56:06.0309 0x1780 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
21:56:06.0356 0x1780 MsRPC - ok
21:56:06.0387 0x1780 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
21:56:06.0418 0x1780 mssmbios - ok
21:56:06.0434 0x1780 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys
21:56:06.0527 0x1780 MSTEE - ok
21:56:06.0558 0x1780 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\drivers\MTConfig.sys
21:56:06.0605 0x1780 MTConfig - ok
21:56:06.0636 0x1780 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys
21:56:06.0668 0x1780 Mup - ok
21:56:06.0746 0x1780 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\windows\system32\qagentRT.dll
21:56:06.0886 0x1780 napagent - ok
21:56:06.0964 0x1780 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
21:56:07.0058 0x1780 NativeWifiP - ok
21:56:07.0182 0x1780 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\windows\system32\drivers\ndis.sys
21:56:07.0292 0x1780 NDIS - ok
21:56:07.0354 0x1780 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
21:56:07.0463 0x1780 NdisCap - ok
21:56:07.0494 0x1780 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
21:56:07.0619 0x1780 NdisTapi - ok
21:56:07.0650 0x1780 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
21:56:07.0744 0x1780 Ndisuio - ok
21:56:07.0822 0x1780 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
21:56:07.0947 0x1780 NdisWan - ok
21:56:07.0994 0x1780 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
21:56:08.0087 0x1780 NDProxy - ok
21:56:08.0134 0x1780 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
21:56:08.0259 0x1780 NetBIOS - ok
21:56:08.0290 0x1780 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
21:56:08.0399 0x1780 NetBT - ok
21:56:08.0446 0x1780 [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] Netlogon C:\windows\system32\lsass.exe
21:56:08.0477 0x1780 Netlogon - ok
21:56:08.0555 0x1780 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll
21:56:08.0696 0x1780 Netman - ok
21:56:08.0789 0x1780 [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:56:08.0883 0x1780 NetMsmqActivator - ok
21:56:08.0898 0x1780 [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:56:08.0945 0x1780 NetPipeActivator - ok
21:56:09.0008 0x1780 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll
21:56:09.0148 0x1780 netprofm - ok
21:56:09.0226 0x1780 [ B72BB9496A126FCFC7FC5945DED9B411, FA5CC4E93761FB2B59B9B34C699B1486560BDB39280AB1125DE42DB7C4BE303A ] netr28x C:\windows\system32\DRIVERS\netr28x.sys
21:56:09.0366 0x1780 netr28x - ok
21:56:09.0429 0x1780 [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:56:09.0476 0x1780 NetTcpActivator - ok
21:56:09.0491 0x1780 [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:56:09.0538 0x1780 NetTcpPortSharing - ok
21:56:09.0600 0x1780 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
21:56:09.0632 0x1780 nfrd960 - ok
21:56:09.0694 0x1780 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\windows\System32\nlasvc.dll
21:56:09.0788 0x1780 NlaSvc - ok
21:56:09.0819 0x1780 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys
21:56:09.0912 0x1780 Npfs - ok
21:56:09.0928 0x1780 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\windows\system32\nsisvc.dll
21:56:10.0037 0x1780 nsi - ok
21:56:10.0053 0x1780 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
21:56:10.0162 0x1780 nsiproxy - ok
21:56:10.0302 0x1780 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
21:56:10.0521 0x1780 Ntfs - ok
21:56:10.0552 0x1780 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys
21:56:10.0661 0x1780 Null - ok
21:56:10.0708 0x1780 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\windows\system32\drivers\nvraid.sys
21:56:10.0755 0x1780 nvraid - ok
21:56:10.0786 0x1780 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\windows\system32\drivers\nvstor.sys
21:56:10.0833 0x1780 nvstor - ok
21:56:10.0880 0x1780 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\windows\system32\drivers\nv_agp.sys
21:56:10.0926 0x1780 nv_agp - ok
21:56:10.0958 0x1780 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
21:56:11.0004 0x1780 ohci1394 - ok
21:56:11.0082 0x1780 [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:56:11.0114 0x1780 ose64 - ok
21:56:11.0535 0x1780 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:56:12.0003 0x1780 osppsvc - ok
21:56:12.0112 0x1780 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
21:56:12.0206 0x1780 p2pimsvc - ok
21:56:12.0268 0x1780 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\windows\system32\p2psvc.dll
21:56:12.0346 0x1780 p2psvc - ok
21:56:12.0408 0x1780 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\windows\system32\drivers\parport.sys
21:56:12.0455 0x1780 Parport - ok
21:56:12.0502 0x1780 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\windows\system32\drivers\partmgr.sys
21:56:12.0533 0x1780 partmgr - ok
21:56:12.0564 0x1780 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\windows\System32\pcasvc.dll
21:56:12.0658 0x1780 PcaSvc - ok
21:56:12.0705 0x1780 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\windows\system32\drivers\pci.sys
21:56:12.0736 0x1780 pci - ok
21:56:12.0783 0x1780 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\windows\system32\drivers\pciide.sys
21:56:12.0814 0x1780 pciide - ok
21:56:12.0876 0x1780 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\windows\system32\drivers\pcmcia.sys
21:56:12.0939 0x1780 pcmcia - ok
21:56:12.0986 0x1780 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\windows\system32\drivers\pcw.sys
21:56:13.0017 0x1780 pcw - ok
21:56:13.0064 0x1780 pdfcDispatcher - ok
21:56:13.0110 0x1780 [ 4A8CC4D25525F456069887D5E8C53225, 38589FF80761F57E8F9D371CB1508EBC3DAD43B1B07114C9CD9F4238990EB9B6 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
21:56:13.0142 0x1780 PdiService - ok
21:56:13.0220 0x1780 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\windows\system32\drivers\peauth.sys
21:56:13.0376 0x1780 PEAUTH - ok
21:56:13.0500 0x1780 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\windows\SysWow64\perfhost.exe
21:56:13.0547 0x1780 PerfHost - ok
21:56:13.0688 0x1780 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\windows\system32\pla.dll
21:56:13.0906 0x1780 pla - ok
21:56:14.0015 0x1780 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\windows\system32\umpnpmgr.dll
21:56:14.0109 0x1780 PlugPlay - ok
21:56:14.0140 0x1780 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
21:56:14.0171 0x1780 PNRPAutoReg - ok
21:56:14.0218 0x1780 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
21:56:14.0280 0x1780 PNRPsvc - ok
21:56:14.0358 0x1780 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
21:56:14.0514 0x1780 PolicyAgent - ok
21:56:14.0592 0x1780 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\windows\system32\umpo.dll
21:56:14.0717 0x1780 Power - ok
21:56:14.0764 0x1780 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
21:56:14.0873 0x1780 PptpMiniport - ok
21:56:14.0904 0x1780 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\windows\system32\drivers\processr.sys
21:56:14.0951 0x1780 Processor - ok
21:56:14.0998 0x1780 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\windows\system32\profsvc.dll
21:56:15.0060 0x1780 ProfSvc - ok
21:56:15.0092 0x1780 [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] ProtectedStorage C:\windows\system32\lsass.exe
21:56:15.0123 0x1780 ProtectedStorage - ok
21:56:15.0170 0x1780 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\windows\system32\DRIVERS\pacer.sys
21:56:15.0263 0x1780 Psched - ok
21:56:15.0435 0x1780 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\windows\system32\drivers\ql2300.sys
21:56:15.0606 0x1780 ql2300 - ok
21:56:15.0653 0x1780 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\windows\system32\drivers\ql40xx.sys
21:56:15.0700 0x1780 ql40xx - ok
21:56:15.0747 0x1780 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\windows\system32\qwave.dll
21:56:15.0809 0x1780 QWAVE - ok
21:56:15.0840 0x1780 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
21:56:15.0918 0x1780 QWAVEdrv - ok
21:56:15.0934 0x1780 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
21:56:16.0028 0x1780 RasAcd - ok
21:56:16.0106 0x1780 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
21:56:16.0215 0x1780 RasAgileVpn - ok
21:56:16.0277 0x1780 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\windows\System32\rasauto.dll
21:56:16.0386 0x1780 RasAuto - ok
21:56:16.0449 0x1780 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
21:56:16.0558 0x1780 Rasl2tp - ok
21:56:16.0652 0x1780 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\windows\System32\rasmans.dll
21:56:16.0776 0x1780 RasMan - ok
21:56:16.0823 0x1780 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
21:56:16.0932 0x1780 RasPppoe - ok
21:56:16.0964 0x1780 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
21:56:17.0057 0x1780 RasSstp - ok
21:56:17.0104 0x1780 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
21:56:17.0213 0x1780 rdbss - ok
21:56:17.0244 0x1780 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\windows\system32\drivers\rdpbus.sys
21:56:17.0307 0x1780 rdpbus - ok
21:56:17.0354 0x1780 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
21:56:17.0463 0x1780 RDPCDD - ok
21:56:17.0510 0x1780 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
21:56:17.0603 0x1780 RDPENCDD - ok
21:56:17.0650 0x1780 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
21:56:17.0744 0x1780 RDPREFMP - ok
21:56:17.0806 0x1780 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\windows\system32\drivers\RDPWD.sys
21:56:17.0900 0x1780 RDPWD - ok
21:56:17.0946 0x1780 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\windows\system32\drivers\rdyboost.sys
21:56:18.0009 0x1780 rdyboost - ok
21:56:18.0040 0x1780 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\windows\System32\mprdim.dll
21:56:18.0149 0x1780 RemoteAccess - ok
21:56:18.0227 0x1780 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\windows\system32\regsvc.dll
21:56:18.0352 0x1780 RemoteRegistry - ok
21:56:18.0399 0x1780 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
21:56:18.0461 0x1780 RFCOMM - ok
21:56:18.0492 0x1780 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
21:56:18.0586 0x1780 RpcEptMapper - ok
21:56:18.0633 0x1780 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\windows\system32\locator.exe
21:56:18.0680 0x1780 RpcLocator - ok
21:56:18.0758 0x1780 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\windows\system32\rpcss.dll
21:56:18.0882 0x1780 RpcSs - ok
21:56:18.0945 0x1780 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
21:56:19.0038 0x1780 rspndr - ok
21:56:19.0116 0x1780 [ 2777226EE8BF50B059D7A7C90177E99C, A22BE326F2CA3747BC27073CC4CA1B6D7A34F4D7CBA886BE3F767B7273D7229D ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
21:56:19.0179 0x1780 RTL8167 - ok
21:56:19.0257 0x1780 [ F8CDADCE6CBCDAF8C7E8BCCE4D31DBB6, 5EA574E44E035934A1EDF573CDAD2B20A91470C4EE2209323B2DF65157FA443A ] RtlISMServ C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
21:56:19.0272 0x1780 RtlISMServ - detected UnsignedFile.Multi.Generic ( 1 )
21:56:22.0049 0x1780 Detect skipped due to KSN trusted
21:56:22.0049 0x1780 RtlISMServ - ok
21:56:22.0127 0x1780 [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] SamSs C:\windows\system32\lsass.exe
21:56:22.0158 0x1780 SamSs - ok
21:56:22.0190 0x1780 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
21:56:22.0221 0x1780 sbp2port - ok
21:56:22.0283 0x1780 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\windows\System32\SCardSvr.dll
21:56:22.0392 0x1780 SCardSvr - ok
21:56:22.0424 0x1780 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
21:56:22.0517 0x1780 scfilter - ok
21:56:22.0626 0x1780 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\windows\system32\schedsvc.dll
21:56:22.0782 0x1780 Schedule - ok
21:56:22.0829 0x1780 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\windows\System32\certprop.dll
21:56:22.0923 0x1780 SCPolicySvc - ok
21:56:22.0954 0x1780 [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus C:\windows\system32\DRIVERS\sdbus.sys
21:56:23.0001 0x1780 sdbus - ok
21:56:23.0048 0x1780 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\windows\System32\SDRSVC.dll
21:56:23.0110 0x1780 SDRSVC - ok
21:56:23.0157 0x1780 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
21:56:23.0235 0x1780 secdrv - ok
21:56:23.0266 0x1780 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\windows\system32\seclogon.dll
21:56:23.0360 0x1780 seclogon - ok
21:56:23.0422 0x1780 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\windows\System32\sens.dll
21:56:23.0531 0x1780 SENS - ok
21:56:23.0547 0x1780 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\windows\system32\sensrsvc.dll
21:56:23.0609 0x1780 SensrSvc - ok
21:56:23.0656 0x1780 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\windows\system32\drivers\serenum.sys
21:56:23.0703 0x1780 Serenum - ok
21:56:23.0750 0x1780 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\windows\system32\drivers\serial.sys
21:56:23.0796 0x1780 Serial - ok
21:56:23.0859 0x1780 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\windows\system32\drivers\sermouse.sys
21:56:23.0906 0x1780 sermouse - ok
21:56:23.0968 0x1780 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\windows\system32\sessenv.dll
21:56:24.0077 0x1780 SessionEnv - ok
21:56:24.0124 0x1780 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\windows\system32\drivers\sffdisk.sys
21:56:24.0186 0x1780 sffdisk - ok
21:56:24.0202 0x1780 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
21:56:24.0249 0x1780 sffp_mmc - ok
21:56:24.0264 0x1780 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
21:56:24.0296 0x1780 sffp_sd - ok
21:56:24.0342 0x1780 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
21:56:24.0389 0x1780 sfloppy - ok
21:56:24.0452 0x1780 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\windows\System32\ipnathlp.dll
21:56:24.0576 0x1780 SharedAccess - ok
21:56:24.0639 0x1780 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
21:56:24.0779 0x1780 ShellHWDetection - ok
21:56:24.0842 0x1780 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
21:56:24.0873 0x1780 SiSRaid2 - ok
21:56:24.0889 0x1780 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
21:56:24.0935 0x1780 SiSRaid4 - ok
21:56:24.0982 0x1780 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\windows\system32\DRIVERS\smb.sys
21:56:25.0076 0x1780 Smb - ok
21:56:25.0138 0x1780 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\windows\System32\snmptrap.exe
21:56:25.0169 0x1780 SNMPTRAP - ok
21:56:25.0357 0x1780 [ F3ADBC7EBEA83F35F3AE4DE3226765F2, 82F9495A34579F28C9C9D04C09B2F37048504B2EA571863CE894994CE362E8C1 ] SNP2UVC C:\windows\system32\DRIVERS\snp2uvc.sys
21:56:25.0544 0x1780 SNP2UVC - ok
21:56:25.0575 0x1780 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\windows\system32\drivers\spldr.sys
21:56:25.0606 0x1780 spldr - ok
21:56:25.0684 0x1780 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\windows\System32\spoolsv.exe
21:56:25.0825 0x1780 Spooler - ok
21:56:26.0152 0x1780 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\windows\system32\sppsvc.exe
21:56:26.0558 0x1780 sppsvc - ok
21:56:26.0605 0x1780 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\windows\system32\sppuinotify.dll
21:56:26.0714 0x1780 sppuinotify - ok
21:56:26.0776 0x1780 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\windows\system32\DRIVERS\srv.sys
21:56:26.0839 0x1780 srv - ok
21:56:26.0901 0x1780 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
21:56:26.0979 0x1780 srv2 - ok
21:56:27.0057 0x1780 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
21:56:27.0104 0x1780 srvnet - ok
21:56:27.0166 0x1780 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
21:56:27.0307 0x1780 SSDPSRV - ok
21:56:27.0338 0x1780 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\windows\system32\sstpsvc.dll
21:56:27.0447 0x1780 SstpSvc - ok
21:56:27.0509 0x1780 [ 8CD99B716B3A01174316A72734299155, 3DD59271FDAA43D2B9DDED39C40F80151DD6C2C55BD19954CCDA50DC4629F5EC ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
21:56:27.0587 0x1780 STacSV - ok
21:56:27.0619 0x1780 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\windows\system32\drivers\stexstor.sys
21:56:27.0650 0x1780 stexstor - ok
21:56:27.0728 0x1780 [ EC12BCA6CA70CECD5D2ED214374EB006, 4B0E9BFB4C3C681B05F7618ACB782F12CA62A42C1BA8AC7967F75E6C47B2AB24 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
21:56:27.0806 0x1780 STHDA - ok
21:56:27.0915 0x1780 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\windows\System32\wiaservc.dll
21:56:28.0055 0x1780 stisvc - ok
21:56:28.0087 0x1780 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\windows\system32\drivers\swenum.sys
21:56:28.0118 0x1780 swenum - ok
21:56:28.0180 0x1780 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\windows\System32\swprv.dll
21:56:28.0321 0x1780 swprv - ok
21:56:28.0414 0x1780 [ 7DE58A301829AE7DF3C60C6458563C6B, CFD8C2AC79DB992B2B0C3C90C3BF0B3625BF8090DBB79622AB02C1FFFE19B43B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
21:56:28.0477 0x1780 SynTP - ok
21:56:28.0648 0x1780 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\windows\system32\sysmain.dll
21:56:28.0851 0x1780 SysMain - ok
21:56:28.0913 0x1780 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
21:56:28.0976 0x1780 TabletInputService - ok
21:56:29.0007 0x1780 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\windows\System32\tapisrv.dll
21:56:29.0147 0x1780 TapiSrv - ok
21:56:29.0179 0x1780 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\windows\System32\tbssvc.dll
21:56:29.0288 0x1780 TBS - ok
21:56:29.0459 0x1780 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\windows\system32\drivers\tcpip.sys
21:56:29.0662 0x1780 Tcpip - ok
21:56:29.0818 0x1780 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
21:56:29.0974 0x1780 TCPIP6 - ok
21:56:30.0037 0x1780 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
21:56:30.0083 0x1780 tcpipreg - ok
21:56:30.0130 0x1780 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
21:56:30.0208 0x1780 TDPIPE - ok
21:56:30.0239 0x1780 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
21:56:30.0302 0x1780 TDTCP - ok
21:56:30.0349 0x1780 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\windows\system32\DRIVERS\tdx.sys
21:56:30.0411 0x1780 tdx - ok
21:56:30.0458 0x1780 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\windows\system32\drivers\termdd.sys
21:56:30.0489 0x1780 TermDD - ok
21:56:30.0567 0x1780 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\windows\System32\termsrv.dll
21:56:30.0707 0x1780 TermService - ok
21:56:30.0739 0x1780 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\windows\system32\themeservice.dll
21:56:30.0801 0x1780 Themes - ok
21:56:30.0848 0x1780 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\windows\system32\mmcss.dll
21:56:30.0941 0x1780 THREADORDER - ok
21:56:30.0973 0x1780 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\windows\System32\trkwks.dll
21:56:31.0082 0x1780 TrkWks - ok
21:56:31.0175 0x1780 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
21:56:31.0300 0x1780 TrustedInstaller - ok
21:56:31.0363 0x1780 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
21:56:31.0425 0x1780 tssecsrv - ok
21:56:31.0472 0x1780 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
21:56:31.0550 0x1780 TsUsbFlt - ok
21:56:31.0565 0x1780 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
21:56:31.0597 0x1780 TsUsbGD - ok
21:56:31.0675 0x1780 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
21:56:31.0768 0x1780 tunnel - ok
21:56:31.0799 0x1780 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\windows\system32\drivers\uagp35.sys
21:56:31.0831 0x1780 uagp35 - ok
21:56:31.0909 0x1780 [ D5994AB5C2B2D72D6320A7004D52617C, 6F5BCDE29233EA43EA29223CAC91119123CE01F87B3228E5F6FBCB6C14A675DE ] uArcCapture C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
21:56:31.0971 0x1780 uArcCapture - ok
21:56:32.0018 0x1780 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\windows\system32\DRIVERS\udfs.sys
21:56:32.0143 0x1780 udfs - ok
21:56:32.0205 0x1780 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\windows\system32\UI0Detect.exe
21:56:32.0252 0x1780 UI0Detect - ok
21:56:32.0299 0x1780 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
21:56:32.0345 0x1780 uliagpkx - ok
21:56:32.0392 0x1780 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\windows\system32\DRIVERS\umbus.sys
21:56:32.0455 0x1780 umbus - ok
21:56:32.0501 0x1780 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\windows\system32\drivers\umpass.sys
21:56:32.0548 0x1780 UmPass - ok
21:56:32.0611 0x1780 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\windows\System32\upnphost.dll
21:56:32.0751 0x1780 upnphost - ok
21:56:32.0798 0x1780 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
21:56:32.0876 0x1780 usbccgp - ok
21:56:32.0938 0x1780 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\windows\system32\drivers\usbcir.sys
21:56:33.0001 0x1780 usbcir - ok
21:56:33.0063 0x1780 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
21:56:33.0110 0x1780 usbehci - ok
21:56:33.0172 0x1780 [ 504901430B6E03B99EBB6BF26E0868C6, D00C0904B7008305DCA5D1E6FED153DD8875CAD14D80348E59F42A182FA7E832 ] usbfilter C:\windows\system32\DRIVERS\usbfilter.sys
21:56:33.0188 0x1780 usbfilter - ok
21:56:33.0266 0x1780 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
21:56:33.0328 0x1780 usbhub - ok
21:56:33.0359 0x1780 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
21:56:33.0406 0x1780 usbohci - ok
21:56:33.0453 0x1780 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\windows\system32\drivers\usbprint.sys
21:56:33.0500 0x1780 usbprint - ok
21:56:33.0547 0x1780 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
21:56:33.0609 0x1780 USBSTOR - ok
21:56:33.0656 0x1780 [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
21:56:33.0718 0x1780 usbuhci - ok
21:56:33.0781 0x1780 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
21:56:33.0859 0x1780 usbvideo - ok
21:56:33.0890 0x1780 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\windows\System32\uxsms.dll
21:56:33.0999 0x1780 UxSms - ok
21:56:34.0030 0x1780 [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] VaultSvc C:\windows\system32\lsass.exe
21:56:34.0061 0x1780 VaultSvc - ok
21:56:34.0436 0x1780 [ 48E21E9AAB80A25E3920DAA75A00CAA1, 8C577647A992AF8D0F86894166CE062824F9D4A260CAFDFCDE3D806F1F094888 ] vcsFPService C:\windows\system32\vcsFPService.exe
21:56:34.0732 0x1780 vcsFPService - ok
21:56:34.0841 0x1780 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
21:56:34.0873 0x1780 vdrvroot - ok
21:56:34.0935 0x1780 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\windows\System32\vds.exe
21:56:35.0091 0x1780 vds - ok
21:56:35.0169 0x1780 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
21:56:35.0216 0x1780 vga - ok
21:56:35.0231 0x1780 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\windows\System32\drivers\vga.sys
21:56:35.0325 0x1780 VgaSave - ok
21:56:35.0356 0x1780 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\windows\system32\drivers\vhdmp.sys
21:56:35.0403 0x1780 vhdmp - ok
21:56:35.0450 0x1780 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\windows\system32\drivers\viaide.sys
21:56:35.0481 0x1780 viaide - ok
21:56:35.0528 0x1780 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\windows\system32\drivers\volmgr.sys
21:56:35.0575 0x1780 volmgr - ok
21:56:35.0637 0x1780 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\windows\system32\drivers\volmgrx.sys
21:56:35.0684 0x1780 volmgrx - ok
21:56:35.0731 0x1780 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\windows\system32\drivers\volsnap.sys
21:56:35.0777 0x1780 volsnap - ok
21:56:35.0887 0x1780 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\windows\system32\drivers\vsmraid.sys
21:56:35.0933 0x1780 vsmraid - ok
21:56:36.0074 0x1780 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\windows\system32\vssvc.exe
21:56:36.0355 0x1780 VSS - ok
21:56:36.0401 0x1780 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
21:56:36.0433 0x1780 vwifibus - ok
21:56:36.0464 0x1780 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
21:56:36.0511 0x1780 vwififlt - ok
21:56:36.0526 0x1780 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
21:56:36.0573 0x1780 vwifimp - ok
21:56:36.0713 0x1780 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\windows\system32\w32time.dll
21:56:36.0823 0x1780 W32Time - ok
21:56:36.0854 0x1780 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\windows\system32\drivers\wacompen.sys
21:56:36.0916 0x1780 WacomPen - ok
21:56:36.0979 0x1780 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
21:56:37.0072 0x1780 WANARP - ok
21:56:37.0072 0x1780 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
21:56:37.0166 0x1780 Wanarpv6 - ok
21:56:37.0306 0x1780 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
21:56:37.0447 0x1780 WatAdminSvc - ok
21:56:37.0587 0x1780 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\windows\system32\wbengine.exe
21:56:37.0774 0x1780 wbengine - ok
21:56:37.0837 0x1780 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\windows\System32\wbiosrvc.dll
21:56:37.0915 0x1780 WbioSrvc - ok
21:56:37.0977 0x1780 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\windows\System32\wcncsvc.dll
21:56:38.0055 0x1780 wcncsvc - ok
21:56:38.0086 0x1780 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
21:56:38.0149 0x1780 WcsPlugInService - ok
21:56:38.0195 0x1780 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\windows\system32\drivers\wd.sys
21:56:38.0227 0x1780 Wd - ok
21:56:38.0305 0x1780 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
21:56:38.0507 0x1780 Wdf01000 - ok
21:56:38.0539 0x1780 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\windows\system32\wdi.dll
21:56:38.0601 0x1780 WdiServiceHost - ok
21:56:38.0601 0x1780 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\windows\system32\wdi.dll
21:56:38.0648 0x1780 WdiSystemHost - ok
21:56:38.0710 0x1780 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\windows\System32\webclnt.dll
21:56:38.0773 0x1780 WebClient - ok
21:56:38.0819 0x1780 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\windows\system32\wecsvc.dll
21:56:38.0944 0x1780 Wecsvc - ok
21:56:38.0960 0x1780 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\windows\System32\wercplsupport.dll
21:56:39.0085 0x1780 wercplsupport - ok
21:56:39.0147 0x1780 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\windows\System32\WerSvc.dll
21:56:39.0241 0x1780 WerSvc - ok
21:56:39.0303 0x1780 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
21:56:39.0397 0x1780 WfpLwf - ok
21:56:39.0443 0x1780 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\windows\system32\drivers\wimmount.sys
21:56:39.0475 0x1780 WIMMount - ok
21:56:39.0506 0x1780 WinDefend - ok
21:56:39.0521 0x1780 WinHttpAutoProxySvc - ok
21:56:39.0599 0x1780 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
21:56:39.0724 0x1780 Winmgmt - ok
21:56:39.0958 0x1780 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\windows\system32\WsmSvc.dll
21:56:40.0208 0x1780 WinRM - ok
21:56:40.0301 0x1780 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
21:56:40.0348 0x1780 WinUsb - ok
21:56:40.0442 0x1780 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\windows\System32\wlansvc.dll
21:56:40.0598 0x1780 Wlansvc - ok
21:56:40.0879 0x1780 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:56:41.0113 0x1780 wlidsvc - ok
21:56:41.0222 0x1780 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
21:56:41.0269 0x1780 WmiAcpi - ok
21:56:41.0331 0x1780 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
21:56:41.0378 0x1780 wmiApSrv - ok
21:56:41.0440 0x1780 WMPNetworkSvc - ok
21:56:41.0471 0x1780 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\windows\System32\wpcsvc.dll
21:56:41.0534 0x1780 WPCSvc - ok
21:56:41.0565 0x1780 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
21:56:41.0612 0x1780 WPDBusEnum - ok
21:56:41.0643 0x1780 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
21:56:41.0768 0x1780 ws2ifsl - ok
21:56:41.0846 0x1780 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\windows\System32\wscsvc.dll
21:56:41.0908 0x1780 wscsvc - ok
21:56:41.0908 0x1780 WSearch - ok
21:56:42.0205 0x1780 [ 3D4032E6A5885C007AEF4BA816AB4032, 21EB2B5B5A64EED44B5B7743820842205175F52A6F5525BD0F95DCB2733F449C ] wuauserv C:\windows\system32\wuaueng.dll
21:56:42.0470 0x1780 wuauserv - ok
21:56:42.0532 0x1780 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
21:56:42.0579 0x1780 WudfPf - ok
21:56:42.0641 0x1780 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
21:56:42.0704 0x1780 WUDFRd - ok
21:56:42.0751 0x1780 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll
21:56:42.0797 0x1780 wudfsvc - ok
21:56:42.0844 0x1780 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\windows\System32\wwansvc.dll
21:56:42.0907 0x1780 WwanSvc - ok
21:56:42.0969 0x1780 [ A35820791F940822C31908F58F91D973, DB182EC97B03683F9F6A399100DA782CAB409D166EF6D0033406683CFED28D1F ] XobniService C:\Program Files (x86)\Xobni\XobniService.exe
21:56:43.0016 0x1780 XobniService - ok
21:56:43.0063 0x1780 ================ Scan global ===============================
21:56:43.0109 0x1780 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\windows\system32\basesrv.dll
21:56:43.0156 0x1780 [ 96AEEE466EA56AF34AE4AD5E55DAD164, 467DA5C29E04E02520974163AEBF7FAA3DED8212A765616C0D877E4F36AD173C ] C:\windows\system32\winsrv.dll
21:56:43.0187 0x1780 [ 96AEEE466EA56AF34AE4AD5E55DAD164, 467DA5C29E04E02520974163AEBF7FAA3DED8212A765616C0D877E4F36AD173C ] C:\windows\system32\winsrv.dll
21:56:43.0265 0x1780 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
21:56:43.0328 0x1780 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\windows\system32\services.exe
21:56:43.0359 0x1780 [ Global ] - ok
21:56:43.0359 0x1780 ================ Scan MBR ==================================
21:56:43.0375 0x1780 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:56:44.0872 0x1780 \Device\Harddisk0\DR0 - ok
21:56:44.0872 0x1780 ================ Scan VBR ==================================
21:56:44.0872 0x1780 [ E9070DC9F5EF6D0868D0E5A5870FFC1D ] \Device\Harddisk0\DR0\Partition1
21:56:44.0903 0x1780 \Device\Harddisk0\DR0\Partition1 - ok
21:56:44.0919 0x1780 [ 1ABA52ED45F7C9389BCA160B7A36D626 ] \Device\Harddisk0\DR0\Partition2
21:56:44.0935 0x1780 \Device\Harddisk0\DR0\Partition2 - ok
21:56:44.0966 0x1780 [ 24569865C28A3BF73A11976063657199 ] \Device\Harddisk0\DR0\Partition3
21:56:44.0981 0x1780 \Device\Harddisk0\DR0\Partition3 - ok
21:56:45.0028 0x1780 [ 559ACBD970EA7B4C35C8B8C9C4B608EC ] \Device\Harddisk0\DR0\Partition4
21:56:45.0028 0x1780 \Device\Harddisk0\DR0\Partition4 - ok
21:56:45.0028 0x1780 ================ Scan generic autorun ======================
21:56:45.0153 0x1780 [ 7D9ABCDA3BBD786897D466EEA5DCDC2F, 4374FA3A78F428A0D428C47E96A56B79376FFECA75DDDB139F09A55C595D9048 ] C:\Program Files\IDT\WDM\sttray64.exe
21:56:45.0309 0x1780 SysTrayApp - ok
21:56:45.0387 0x1780 [ 8CB4878C94F54EBC0EC2626B19CC3691, A4B3DB0F0DF42FD913F9DEFFC87F25ABA2C0B23CDA704E5A9C1AAE0AD45ECD01 ] C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
21:56:45.0418 0x1780 MfeEpePcMonitor - detected UnsignedFile.Multi.Generic ( 1 )
21:56:48.0413 0x1780 Detect skipped due to KSN trusted
21:56:48.0413 0x1780 MfeEpePcMonitor - ok
21:56:48.0523 0x1780 [ 1FAD6ACA65366E1AFF10EC6B02F47A84, 2DA16D06F553FC081E374F1699EC240D7FFFDD39D42774F044AE3DE09F2C8619 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
21:56:48.0554 0x1780 BCSSync - ok
21:56:48.0601 0x1780 [ 053C93D5967E08748DBA0E132EAEC0B3, B48A00B00DFDFCF6911911B34788CD359BF90AB66F4A2A3FE177B75EB775C2C2 ] C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
21:56:48.0647 0x1780 NUSB3MON - detected UnsignedFile.Multi.Generic ( 1 )
21:56:51.0424 0x1780 Detect skipped due to KSN trusted
21:56:51.0424 0x1780 NUSB3MON - ok
21:56:51.0424 0x1780 SynTPEnh - ok
21:56:52.0033 0x1780 [ A118C52E94780AEBFA52D05A3313CCF6, 26537CC3312B2C0477751152FDA18CECAC14023DCD1DB033944A11E12F449885 ] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
21:56:52.0532 0x1780 egui - ok
21:56:52.0657 0x1780 [ 79053C22A06DBE83402D0E3413F0E05C, 7105E33E71EAD72867ED284DF3612D6683EDD1AD51B99F69029BA6E03DCB9FD7 ] C:\Program Files (x86)\PDF Complete\pdfsty.exe
21:56:52.0750 0x1780 PDF Complete - ok
21:56:52.0828 0x1780 [ F4ACFDF73D22071793A677CEE93EA8FA, EB50F2513A314576E810970513601C88603FC14C0C13F7B1A493E1F4F3CCEC6E ] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe
21:56:52.0875 0x1780 QLBController - ok
21:56:53.0780 0x1780 [ 92CD05E7C47A2C0A56864764B0021887, 0408B6A39A4D539A5103182466BDC5C477D666898D900F427504B15B03F791A6 ] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
21:56:54.0903 0x1780 File Sanitizer - detected UnsignedFile.Multi.Generic ( 1 )
21:56:57.0680 0x1780 Detect skipped due to KSN trusted
21:56:57.0680 0x1780 File Sanitizer - ok
21:56:57.0836 0x1780 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
21:56:58.0007 0x1780 Sidebar - ok
21:56:58.0039 0x1780 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
21:56:58.0117 0x1780 mctadmin - ok
21:56:58.0241 0x1780 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
21:56:58.0366 0x1780 Sidebar - ok
21:56:58.0382 0x1780 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
21:56:58.0429 0x1780 mctadmin - ok
21:56:58.0429 0x1780 Waiting for KSN requests completion. In queue: 7
21:56:59.0443 0x1780 Waiting for KSN requests completion. In queue: 4
21:57:00.0457 0x1780 Waiting for KSN requests completion. In queue: 4
21:57:01.0595 0x1780 AV detected via SS2: ESET NOD32 Antivirus 8.0, C:\Program Files\ESET\ESET NOD32 Antivirus\ecmd.exe ( 8.0.319.0 ), 0x41000 ( enabled : updated )
21:57:01.0642 0x1780 Win FW state via NFP2: enabled ( trusted )
21:57:04.0544 0x1780 ============================================================
21:57:04.0544 0x1780 Scan finished
21:57:04.0544 0x1780 ============================================================
21:57:04.0559 0x0e30 Detected object count: 0
21:57:04.0559 0x0e30 Actual detected object count: 0
21:57:29.0816 0x145c Deinitialize success
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu, nefunguje Windows Update

#30 Příspěvek od Rudy »

Rootkit to naštěstí není. Je to ale keygen: https://www.virustotal.com/en/file/ac2d ... /analysis/ . Keygeny, jakožto utility, které jsou určeny k opirátění sw, se považují za viry.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“