VIRY.CZ

Dobrý den dnes sem prisel domu a uvidel jsem ze pocitac hlasi chybu ze prodelal modrou obrazovku a byl obnoven po te jsem zjistil ze pocitac nereaguje tak sem ho tedy restartoval zjistil sem ze programy se nacitaji pomalu a pak po chvily se uz nedaji spustit pak jsem zjistil ze svchost vyuziva 50% procesoru a po 5 minutach avast nahlasil ze nalezl Rootkit dal jsem tedy smazat restartoval jsem pocitac a porad je vse pomale a nic se nechce po 2 minutach spustit tak sem tedy v nouzovvem rezimu ktery funguje dobre a nasel sem jeden minidump

Zdravim a pekny den preji

Zabalte mi obsah slozky c:\windows\minidump a uploadnete na LP http://leteckaposta.cz/

Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=105895

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Kliknete na volbu Change parametrs
• V obou oknech (Objects to scan i Additional Option) zakliknete vsechny moznosti - ve vsech ctvereccich musi mit fajecka
• Kliknete na OK
• Utilite prikazte, at skenuje - klik na Start Scan
• Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
• Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
• Pokud mate vsude Skip, kliknete na Continue
• Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

minidump: http://leteckaposta.cz/460851508

RSIT: info.txt logfile of random's system information tool 1.09 2012-04-17 17:44:19

======Uninstall list======

-->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
AceIt v1.3.1-->"C:\Program Files\AceIt\unins000.exe"
Activision(R)-->MsiExec.exe /X{2A96D655-4FEF-4512-9468-0AABA70CD389}
Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_Plugin.exe -maintain plugin
Adobe Reader X (10.1.3) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AA1000000001}
Age of Empires II - the Conquerors WideScreen Patcher-->MsiExec.exe /I{BA2F3EBC-FE07-4AB5-B906-14DF2C74C523}
AMD Accelerated Video Transcoding-->MsiExec.exe /X{A6F1A4B7-4EFA-653F-98EB-BFD8C209FF1C}
AMD APP SDK Runtime-->MsiExec.exe /I{A25FF1C0-80B6-4B8B-A551-DC525697A408}
AMD Catalyst Install Manager-->msiexec /q/x{46EE2498-853A-FF8C-12E9-06E0FE279536} REBOOT=ReallySuppress
AMD Drag and Drop Transcoding-->MsiExec.exe /X{305C431C-CC6E-5506-CE75-29512315D306}
AMD Media Foundation Decoders-->MsiExec.exe /X{D7241F38-7D90-794C-C77E-2F8DBEBED491}
Amnesia - The Dark Descent -->"I:\Games\Amnesia - The Dark Descent\unins000.exe"
ASIO4ALL-->C:\Program Files\ASIO4ALL v2\uninstall.exe
ASRock InstantBoot v1.24-->"C:\Program Files\ASRock Utility\InstantBoot\unins000.exe"
Assassin's Creed-->C:\Program Files\InstallShield Installation Information\{8CFA9151-6404-409A-AF22-4632D04582FD}\setup.exe -runfromtemp -l0x0005 -removeonly
avast! Free Antivirus-->C:\Program Files\AVAST Software\Avast\aswRunDll.exe "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
AviScreen Classic Version 1.3-->"C:\Program Files\bobyte\AviScreen classic\unins000.exe"
BOINC-->MsiExec.exe /X{341E1C05-5091-418F-B862-C28253A99F25}
Camtasia Studio 7-->MsiExec.exe /I{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}
Catalyst Control Center - Branding-->MsiExec.exe /I{BBC2068D-CE9C-48F5-A6EA-4B44B9DB14A5}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Clownfish for Skype-->"C:\Program Files\Clownfish\uninstall.exe"
Command & Conquer Generals-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{06F80017-8F98-4C94-B868-52358569FC32}
Command and ConquerTM Generals Zero Hour-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}
Company of Heroes-->MsiExec.exe /X{BA801B94-C28D-46EE-B806-E1E021A3D519}
CPUID CPU-Z 1.59-->"C:\Program Files\CPUID\CPU-Z\unins000.exe"
CraftBukkit-->C:\Users\Karel\Documents\CraftBukkit Server\Uninstall.exe
CrystalDiskInfo 4.1.3-->"C:\Program Files\CrystalDiskInfo\unins000.exe"
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
DriverAgent by eSupport.com-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
Dual-Core Optimizer-->MsiExec.exe /X{9FD6F1A8-5550-46AF-8509-271DF0E768B5}
EASEUS Partition Master 9.1.0 Home Edition-->"C:\Program Files\EASEUS\EASEUS Partition Master 9.1.0 Home Edition\unins000.exe"
Enhanced Beta 0.6.2 Installer + lagg fix-->C:\Program Files\EA Games\Command & Conquer Generals Zero Hour\Enhanced Beta 0.6.2 Uninstaller.exe
Euro Truck Simulator 1.3-->E:\Program Files\Games By GG releases\Uninstall.exe
FL Studio 10-->E:\Program Files\Image-Line\FL Studio 10\uninstall.exe
Flash Loader utility driver-->Uninstall.exe
FormatFactory 2.90-->C:\Program Files\FreeTime\FormatFactory\uninst.exe
Fraps (remove only)-->"C:\Fraps\uninstall.exe"
Freelancer-->"D:\Program Files\Microsoft Games\Freelancer\UNINSTAL.EXE" /runtemp /addremove
Game Booster 3-->"C:\Program Files\IObit\Game Booster 3\unins000.exe"
Google Earth-->MsiExec.exe /X{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}
Google SketchUp Pro 8-->MsiExec.exe /X{3AB65E95-37D6-4DD7-8862-29AED3AFD54B}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
GSMULTI V3.0-->"C:\Windows\IFinst27.exe" -UC:\GSMULTI\IFU97E0.inf
Guitar Hero III-->MsiExec.exe /I{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}
HyperCam 2-->C:\Program Files\HyperCam 2\HcUnInst.exe
HyperLobby client-->MsiExec.exe /I{A869FEA9-B223-4324-B130-008AC50B054B}
IL Download Manager-->C:\Program Files\Image-Line\Downloader\uninstall.exe
IL-2 Sturmovik 1946-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{79438F1E-DEC3-443D-9DCD-FECE2D68C605} /l1033
IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe
IvAp v1.9.8 (build 2138)-->"C:\Program Files\IVAO\IvAp v2\unins000.exe"
Java(TM) 7 Update 3-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217003FF}
JavaFX 2.0.3-->MsiExec.exe /X{1111706F-666A-4037-7777-203328764D10}
K-Lite Codec Pack 7.8.0 (Basic)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
LG PC Suite III-->C:\Program Files\InstallShield Installation Information\{C0E18DC4-C74A-4889-AE3A-933471023787}\setup.exe -runfromtemp -l0x0005 -removeonly
LG USB Modem Drivers-->MsiExec.exe /I{FA02ACAC-9E14-4878-A257-92A22A647C2C}
LGE GSM Device Driver OMAPV1030-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C2979637-6A5A-4CF3-876C-AA2F199E3750}\setup.exe" -l0x9 -removeonly
Livestream Procaster-->MsiExec.exe /I{662CFD19-EA80-4EFE-A0D8-EE10EFEB3C83}
LogMeIn Hamachi-->C:\Windows\system32\\msiexec.exe /i {E2494AD8-314D-44F8-B39C-4358A60DC184} REMOVE=ALL
LogMeIn Hamachi-->MsiExec.exe /I{E2494AD8-314D-44F8-B39C-4358A60DC184}
LogMeIn-->MsiExec.exe /I{E217A3D4-2FF9-4D5F-9C20-1386E0FF9864}
Mafia II-->"D:\Program Files\2K Games\Mafia II\unins000.exe"
MediaInfo 0.7.55-->C:\Program Files\MediaInfo\uninst.exe
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft .NET Framework 4 Extended-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended
Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702}
Microsoft Age of Empires II Trial Version-->"C:\Program Files\Microsoft Games\Age of Empires II Trial\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Age of Empires II: The Conquerors Expansion-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTALX.EXE" /runtemp /addremove
Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Flight Simulator X: Acceleration-->C:\Windows\system32\msiexec.exe /qb /l*vx "%TEMP%\FlightSimUninstall.log" /uninstall {A9729B90-D37B-4A69-B66A-7436AC1F7274}
Microsoft Flight Simulator X: Acceleration-->MsiExec.exe /I{A9729B90-D37B-4A69-B66A-7436AC1F7274}
Microsoft Flight Simulator X-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{9527A496-5DF9-412A-ADC7-168BA5379CA6}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{F2508213-9989-4E85-A078-72BE483917EF}
Microsoft Games for Windows Marketplace-->MsiExec.exe /X{4CB0307C-565E-4441-86BE-0DF2E4FB828C}
Microsoft IntelliPoint 8.2-->msiexec.exe /I {942E5031-2BD6-4C1B-918C-C8A1CBAE7B8C}
Microsoft IntelliPoint 8.2-->MsiExec.exe /X{942E5031-2BD6-4C1B-918C-C8A1CBAE7B8C}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Train Simulator-->"I:\Games\msts\UNINSTAL.EXE" /runtemp /addremove
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft WorldWide Telescope-->MsiExec.exe /I{3CC6719B-F874-49CF-82A0-D3F5D65FFE2A}
Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
Microsoft XNA Framework Redistributable 4.0-->MsiExec.exe /I{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}
Mobiola Web Camera for S60 3.0.15-->"C:\Program Files\Mobiola Web Camera for S60\unins000.exe"
Morrowind-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "E:\Program Files\Bethesda Softworks\Morrowind\MWUninstall\Setup.exe" -l0x9
Mozilla Firefox 12.0 (x86 en-US)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MP3 Dancer-->C:\PROGRA~1\MP3DAN~1\UNWISE.EXE C:\PROGRA~1\MP3DAN~1\INSTALL.LOG
MSVC90_x86-->MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
MSXML 4.0 SP3 Parser-->MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}
MSXML4 Parser-->MsiExec.exe /I{01501EBA-EC35-4F9F-8889-3BE346E5DA13}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{2D99A593-C841-43A7-B7C9-D6F3AE70B756}
NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U
Opera 11.62-->"C:\Program Files\Opera\Opera.exe" /uninstall
Oracle VM VirtualBox 4.1.10-->MsiExec.exe /I{F20386D5-EE47-42FF-90CB-203A61787CA2}
PC Connectivity Solution-->MsiExec.exe /I{C373F7C4-05D2-4047-96D1-6AF30661C6AA}
Penumbra - Black Plague + Requiem-->C:\Program Files\InstallShield Installation Information\{472C9FFA-422E-465E-8360-D1276B4A4BC0}\setup.exe -runfromtemp -l0x0005 -removeonly
Penumbra - Overture-->C:\Program Files\InstallShield Installation Information\{656422DA-E1F7-4331-9EBE-BBF6E88580A9}\setup.exe -runfromtemp -l0x0005 -removeonly
Portal 2-->"D:\Program Files\Valve\Portal 2\unins000.exe"
PowerISO-->"C:\Program Files\PowerISO\uninstall.exe"
PowerStrip 3 (remove only)-->C:\Program Files\PowerStrip\uninstal.exe
Rage-->"D:\Program Files\Bethesda Softworks\Rage\unins000.exe"
Rapture3D 2.4.8 Game-->"C:\Program Files\BRS\unins000.exe"
Real Environment Xtreme-->MsiExec.exe /I{4CFCC6FD-AEA2-4208-99A6-45CBF9DFFD82}
Realtek Ethernet Controller Driver-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Rise of Nations-->"I:\Program Files\Microsoft Games\Rise of Nations\Uninstal.exe" /runtemp /uninstall
Road Construction Simulator 2011 Version 1.1-->"E:\Program Files\Road Construction Simulator 2011\unins000.exe"
RocketDock 1.3.5-->"C:\Program Files\RocketDock\unins000.exe"
RuneScape Launcher 1.2-->MsiExec.exe /X{5D87C09F-512F-474A-A306-0FE3B89C396F}
Saints Row The Third-->"E:\Program Files\THQ\Saints Row The Third\unins000.exe"
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9EC88EA8-4ABE-393C-87BD-90EABB1C4C9B} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {7A2C18A1-D2A2-3177-82F1-5FE9CC08ECB0} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {42A3562E-8B4E-39A4-B82D-CC12F82889E3} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Extended
Serious Sam 3-->"D:\Program Files\Serious Sam 3\unins000.exe"
Serious Sam TFE HD (Jimbus edition)-->"E:\Program Files\Serious Sam TFE HD\uninstall.exe" "/U:E:\Program Files\Serious Sam TFE HD\Uninstall\uninstall.xml"
SHOUTcast Source DSP 1.9.0 (remove only)-->C:\Program Files\Winamp\uninst-dsp.exe
Sins Of A Solar Empire: Diplomacy v1.34 Ironclad Online-->"E:\Program Files\Sins Of A Solar Empire Diplomacy ICO\unins000.exe"
Skype™ 5.8-->MsiExec.exe /X{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Stellarium 0.11.2-->"C:\Program Files\Stellarium\unins000.exe"
Stronghold Crusader-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8C3727F2-8E37-49E4-820C-03B1677F53B6}\Setup.exe"
TeamSpeak 3 Client-->"C:\Program Files\TeamSpeak 3 Client\uninstall.exe"
TeamViewer 7-->C:\Program Files\TeamViewer\Version7\uninstall.exe
TGATool2A version 4.00.34-->"C:\Program Files\MW\TGATool2\unins000.exe"
The Sims™ 3-->"C:\Program Files\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\setup.exe" -runfromtemp -l0x0005 -removeonly
TopGun - Hardlock-->"D:\Program Files\TopGun - Hardlock\Uninstall.exe" "D:\Program Files\TopGun - Hardlock\install.log" -u
TortoiseSVN 1.7.5.22551 (32 bit)-->MsiExec.exe /X{A3827AD3-3553-4463-87B3-D1B88B24C468}
Trainz Simulator 2009: World Builder Edition-->"D:\Program Files\Auran\TS2009\unins000.exe"
TransDEM Trainz Edition 2.2.0.1 Update-->"C:\Program Files\Ziegler-Tools\unins000.exe"
Transformers - War for Cybertron-->"C:\Program Files\InstallShield Installation Information\{2A96D655-4FEF-4512-9468-0AABA70CD389}\setup.exe" -runfromtemp -l0x0809 -removeonly
Tribalwars-bot 2.0.0.180 (install or upgrade)-->"C:\Program Files\Tribalwars-bot\unins000.exe"
TRS2006-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5ED9E38C-9A96-49D8-89B3-92E278003FCF}\setup.exe" -l0x5
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD988F49-E1C8-3C84-9683-0448B6BB8E20} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft .NET Framework 4 Extended (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Extended
Virtual DJ Pro Full - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Vuze-->C:\Program Files\Vuze\uninstall.exe
Widelands-->"C:\Program Files\Widelands\unins000.exe"
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Dancer-->C:\Program Files\Windows Plus\Dancer\Uninstall.exe
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\Windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}
Windows Live Essentials-->MsiExec.exe /I{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}
Windows Live Fotogalerie-->MsiExec.exe /X{FB79FDB7-4DE1-453D-99FE-9A880F57380E}
Windows Live ID Sign-in Assistant-->MsiExec.exe /I{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Movie Maker-->MsiExec.exe /X{19BA08F7-C728-469C-8A35-BFBD3633BE08}
Windows Live Movie Maker-->MsiExec.exe /X{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}
Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common-->MsiExec.exe /X{78906B56-0E81-42A7-AC25-F54C946E1538}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Common-->MsiExec.exe /X{D436F577-1695-4D2F-8B44-AC76C99E0002}
Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live Photo Gallery-->MsiExec.exe /X{34F4D9A4-42C2-4348-BEF4-E553C84549E7}
Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

Hosts File Missing
======System event log======

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Plug and Play byl změněn na: stopped
Record Number: 5
Source Name: Service Control Manager
Time Written: 20101120215742.697406-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 20010
Message: Došlo ke změně jednoho nebo více podsystémů služby Plug and Play.

Povolený instalační podsystém služby PlugPlay: 'false'
Povolený podsystém mezipaměti služby PlugPlay: 'false'

Record Number: 4
Source Name: Microsoft-Windows-UserPnp
Time Written: 20101120215742.697406-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Software Protection byl změněn na: stopped
Record Number: 3
Source Name: Service Control Manager
Time Written: 20101120215742.479005-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Windows Event Log byl změněn na: stopped
Record Number: 2
Source Name: Service Control Manager
Time Written: 20101120215742.338605-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Volume Shadow Copy byl změněn na: stopped
Record Number: 1
Source Name: Service Control Manager
Time Written: 20101120215742.323005-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: 37L4247F27-08
Event Code: 1001
Message: Chybný blok , typ 0
Název události: PnPDriverNotFound
Reakce: Not available
ID souboru CAB: 0

Podpis problému:
P1: x86
P2: ACPI\PNP0510
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:
C:\Windows\Temp\DMI111F.tmp.log.xml

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x86_1b359630e6c0de37424ff4ca1c9741f75d7a457_cab_06611228

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: 347601c3-2b3e-11e1-8d1d-c16da7ae3495
Stav hlášení: 6
Record Number: 5
Source Name: Windows Error Reporting
Time Written: 20111220190957.000000-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20111220190956.000000-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20111220190953.000000-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.


Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20111220190950.402506-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247F27-08
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20111220190950.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: 37L4247F27-08
Event Code: 4735
Message: Byla změněna zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247F27-08$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Změněné atributy:
Název účtu SAM: -
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20111220190935.379680-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4731
Message: Byla vytvořena zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247F27-08$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Nová skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Atributy:
Název účtu SAM: Backup Operators
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20111220190935.379680-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.

Počet prvků: 0
ID zásady: 0x25384
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20111220190935.145679-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0

Typ přihlášení: 0

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x4
Název procesu:

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20111220190933.882077-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4608
Message: Spouští se systém Windows.

Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20111220190933.835277-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\AMD APP\bin\x86;C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\Program Files\PC Connectivity Solution\;C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Windows Live\Shared;C:\Program Files\TortoiseSVN\bin
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=16
"PROCESSOR_IDENTIFIER"=x86 Family 16 Model 6 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=0602
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3
"VBOX_INSTALL_PATH"=I:\Program Files\Oracle\VirtualBox\
"AMDAPPSDKROOT"=C:\Program Files\AMD APP\
"SAFEBOOT_OPTION"=NETWORK

-----------------EOF-----------------

Logfile of random's system information tool 1.09 (written by random/random)
Run by Karel at 2012-04-17 17:43:40
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 3 GB (7%) free of 51 GB
Total RAM: 1791 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:44:17, on 17.4.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Users\Karel\Desktop\Phone\Skype.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Opera\opera.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\Karel\Documents\RSIT.exe
C:\Program Files\trend micro\Karel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [IntelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [boincmgr] "C:\Program Files\BOINC\boincmgr.exe" /a /s
O4 - HKLM\..\Run: [boinctray] "C:\Program Files\BOINC\boinctray.exe"
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [4Y3Y0C3AVF7W1W6ECKMM] C:\Recycle.Bin\B6232F3AC53.exe /q
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: PowerStrip.lnk = C:\Program Files\PowerStrip\PStrip.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Licensing Console - - C:\Windows\system32\mrvcl32.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AMService - Unknown owner - C:\Windows\TEMP\fpmigg\setup.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Users\Karel\Desktop\Updater\Updater.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: WEP/WPA-PMK key recovery service (WZCOOK) - Unknown owner - C:\Users\Karel\Desktop\aircrack-ng-1.1-win\bin\wzcook.exe (file missing)

--
End of file - 6829 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\igw4uyy4.default

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.2.202.228 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.3.1]
"Description"=
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.3.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npwachk.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
amazondotcom.xml
babylon.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml

C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\igw4uyy4.default\extensions\
staged

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll [2012-01-10 59272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-08-18 7711264]
"IntelliPoint"=c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 1821576]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-03-07 4241512]
"boincmgr"=C:\Program Files\BOINC\boincmgr.exe [2011-07-28 4514992]
"boinctray"=C:\Program Files\BOINC\boinctray.exe [2011-07-28 70832]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2011-09-16 63048]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-03-09 636032]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"4Y3Y0C3AVF7W1W6ECKMM"=C:\Recycle.Bin\B6232F3AC53.exe [2011-11-17 161280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files\Clownfish\Clownfish.exe [2012-02-13 1055992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2011-12-09 74752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Karel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MP3 Dancer.lnk]
C:\PROGRA~1\MP3DAN~1\MP3DAN~1.EXE [2001-10-08 229376]

C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
PowerStrip.lnk - C:\Program Files\PowerStrip\PStrip.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Audiosrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\drmkaud]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HDAudBus]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MMCSS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{640167b4-59b0-47a6-b335-a6b3c0695aea}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Audiosrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\drmkaud]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HDAudBus]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MMCSS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{640167b4-59b0-47a6-b335-a6b3c0695aea}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.IV41"=IR41_32.AX
"msacm.vorbis"=vorbis.acm
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\Windows\system32\tsccvid.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-04-17 17:43:40 ----D---- C:\rsit
2012-04-17 15:50:16 ----A---- C:\Windows\ntbtlog.txt
2012-04-16 18:27:35 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-04-16 18:27:35 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-04-16 18:27:35 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-04-15 10:37:45 ----D---- C:\Users\Karel\AppData\Roaming\Rovio
2012-04-14 14:28:21 ----ASH---- C:\Windows\system32\dds_trash_log.cmd
2012-04-13 16:05:01 ----D---- C:\Users\Karel\AppData\Roaming\Google
2012-04-13 16:02:04 ----D---- C:\ProgramData\Google
2012-04-12 15:52:25 ----A---- C:\Windows\system32\mshtmled.dll
2012-04-12 15:52:24 ----A---- C:\Windows\system32\jscript9.dll
2012-04-12 15:52:24 ----A---- C:\Windows\system32\jscript.dll
2012-04-12 15:52:24 ----A---- C:\Windows\system32\iertutil.dll
2012-04-12 15:52:23 ----A---- C:\Windows\system32\wininet.dll
2012-04-12 15:52:23 ----A---- C:\Windows\system32\jsproxy.dll
2012-04-12 15:52:22 ----A---- C:\Windows\system32\url.dll
2012-04-12 15:52:22 ----A---- C:\Windows\system32\ieui.dll
2012-04-12 15:52:21 ----A---- C:\Windows\system32\urlmon.dll
2012-04-12 15:52:19 ----A---- C:\Windows\system32\ieframe.dll
2012-04-12 15:52:18 ----A---- C:\Windows\system32\mshtml.dll
2012-04-12 15:48:36 ----A---- C:\Windows\system32\wmi.dll
2012-04-12 15:48:36 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-04-12 15:48:35 ----A---- C:\Windows\system32\wintrust.dll
2012-04-12 15:48:35 ----A---- C:\Windows\system32\imagehlp.dll
2012-04-12 15:48:22 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-04-12 15:48:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-04-07 11:54:05 ----SHD---- C:\Windows\ftpcache
2012-04-05 22:24:41 ----D---- C:\Users\Karel\AppData\Roaming\.Nitrous
2012-04-05 18:20:33 ----D---- C:\Program Files\RocketDock
2012-04-04 22:13:17 ----D---- C:\ProgramData\IObit
2012-04-04 22:13:16 ----D---- C:\Program Files\IObit
2012-04-02 22:24:54 ----A---- C:\Windows\system32\drivers\AmdLLD.sys
2012-04-02 22:24:49 ----D---- C:\Program Files\AMD
2012-04-02 21:38:05 ----D---- C:\Windows\system32\QuickTime
2012-04-02 21:37:51 ----D---- C:\Program Files\QuickTime
2012-04-02 21:37:33 ----D---- C:\Program Files\Common Files\TechSmith Shared
2012-04-02 21:37:24 ----D---- C:\ProgramData\TechSmith
2012-04-01 19:06:16 ----D---- C:\Windows\Minidump
2012-03-31 22:39:32 ----D---- C:\Program Files\Ubisoft
2012-03-31 21:16:58 ----D---- C:\Program Files\HyperLobby client
2012-03-30 17:06:28 ----D---- C:\ProgramData\ATI
2012-03-30 17:06:24 ----D---- C:\Program Files\AMD AVT
2012-03-30 17:06:21 ----D---- C:\Program Files\AMD APP
2012-03-29 19:58:26 ----D---- C:\ProgramData\Mozilla
2012-03-29 19:58:25 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-03-28 20:22:15 ----A---- C:\Windows\system32\drivers\cpuz135_x32.sys
2012-03-28 20:22:14 ----D---- C:\Program Files\CPUID
2012-03-28 16:12:40 ----A---- C:\Windows\eReg.dat
2012-03-27 17:51:51 ----D---- C:\Windows\DEA314C409294250BC9298E4C105F28D.TMP
2012-03-26 19:58:09 ----D---- C:\Users\Karel\AppData\Roaming\Stellarium
2012-03-26 19:57:08 ----D---- C:\Program Files\Stellarium
2012-03-26 14:51:17 ----D---- C:\ProgramData\Age of Empires 3
2012-03-25 18:46:21 ----A---- C:\Windows\system32\FNTCACHE.DAT
2012-03-25 16:03:13 ----D---- C:\Users\Karel\AppData\Roaming\Malwarebytes
2012-03-25 16:02:47 ----D---- C:\ProgramData\Malwarebytes
2012-03-25 16:02:46 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-03-24 14:41:21 ----D---- C:\Program Files\Ziegler-Tools
2012-03-24 01:23:32 ----D---- C:\Program Files\Widelands
2012-03-23 17:22:05 ----D---- C:\Program Files\Microsoft WSE
2012-03-22 00:03:34 ----D---- C:\Program Files\HyperCam 2
2012-03-21 23:49:44 ----D---- C:\Program Files\Tribalwars-bot
2012-03-21 20:04:20 ----D---- C:\Windows\Sun
2012-03-21 01:05:21 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2012-03-21 01:05:08 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2012-03-20 20:46:06 ----A---- C:\wepkeys.txt
2012-03-19 17:19:15 ----D---- C:\Program Files\CrystalDiskInfo
2012-03-19 15:37:35 ----D---- C:\ProgramData\Hewlett-Packard
2012-03-19 00:55:38 ----D---- C:\Windows\pss
2012-03-18 23:47:06 ----D---- C:\Program Files\Windows Plus
2012-03-18 23:41:46 ----A---- C:\Windows\system32\wpgldfsh.scr
2012-03-18 23:41:46 ----A---- C:\Windows\system32\space.scr
2012-03-18 23:41:46 ----A---- C:\Windows\system32\nature.scr
2012-03-18 23:41:46 ----A---- C:\Windows\system32\davinci.scr
2012-03-18 23:41:45 ----A---- C:\Windows\system32\mypixdx.scr
2012-03-18 23:16:23 ----D---- C:\Program Files\Common Files\Totem Shared
2012-03-18 23:16:03 ----D---- C:\Program Files\MP3Dancer
2012-03-18 17:36:37 ----D---- C:\Users\Karel\AppData\Roaming\Microsoft Games
2012-03-18 00:39:43 ----D---- C:\Users\Karel\AppData\Roaming\Help
2012-03-18 00:38:47 ----A---- C:\Windows\winhlp32.exe
2012-03-18 00:38:47 ----A---- C:\Windows\system32\ftsrch.dll
2012-03-18 00:38:47 ----A---- C:\Windows\system32\ftlx041e.dll
2012-03-18 00:38:47 ----A---- C:\Windows\system32\ftlx0411.dll
2012-03-18 00:37:28 ----D---- C:\ProgramData\Windows Genuine Advantage

======List of files/folders modified in the last 1 month======

2012-04-17 17:44:05 ----D---- C:\Program Files\trend micro
2012-04-17 17:26:14 ----D---- C:\Users\Karel\AppData\Roaming\Skype
2012-04-17 17:20:06 ----D---- C:\Windows\Temp
2012-04-17 16:56:15 ----A---- C:\Users\Karel\AppData\Roaming\PStrip.ini
2012-04-17 16:46:02 ----D---- C:\Windows\System32
2012-04-17 16:44:39 ----D---- C:\ProgramData\BOINC
2012-04-17 16:14:41 ----D---- C:\Program Files
2012-04-17 15:55:08 ----A---- C:\Users\Karel\AppData\Roaming\PStrip.bak
2012-04-17 15:50:16 ----D---- C:\Windows
2012-04-17 06:32:04 ----D---- C:\Windows\system32\drivers
2012-04-17 06:19:40 ----SHD---- C:\Windows\Installer
2012-04-17 06:18:01 ----D---- C:\ProgramData\LogMeIn
2012-04-17 06:14:20 ----D---- C:\Users\Karel\AppData\Roaming\Azureus
2012-04-16 22:48:32 ----HD---- C:\Recycle.Bin
2012-04-16 20:42:02 ----D---- C:\Windows\Prefetch
2012-04-16 20:14:17 ----SHD---- C:\System Volume Information
2012-04-16 19:57:32 ----D---- C:\Users\Karel\AppData\Roaming\.minecraft
2012-04-16 18:33:26 ----RSD---- C:\Windows\assembly
2012-04-16 18:30:16 ----HD---- C:\Program Files\InstallShield Installation Information
2012-04-16 12:20:41 ----D---- C:\Windows\system32\config
2012-04-15 22:56:43 ----RSD---- C:\Windows\Fonts
2012-04-15 16:53:21 ----D---- C:\Users\Karel\AppData\Roaming\0ad
2012-04-15 12:02:49 ----D---- C:\Program Files\SpeedFan
2012-04-14 19:14:39 ----D---- C:\Windows\system32\Tasks
2012-04-14 14:32:54 ----D---- C:\Windows\system32\drivers\etc
2012-04-13 16:02:04 ----HD---- C:\ProgramData
2012-04-13 16:02:04 ----D---- C:\Program Files\Google
2012-04-12 23:47:11 ----D---- C:\Windows\Microsoft.NET
2012-04-12 16:01:34 ----D---- C:\Windows\winsxs
2012-04-12 15:59:23 ----D---- C:\Windows\system32\migration
2012-04-12 15:59:22 ----D---- C:\Program Files\Internet Explorer
2012-04-12 15:52:34 ----D---- C:\Windows\system32\catroot
2012-04-12 15:52:33 ----D---- C:\Windows\system32\catroot2
2012-04-12 15:51:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-04-12 15:51:07 ----D---- C:\Windows\inf
2012-04-12 15:48:50 ----D---- C:\Windows\debug
2012-04-12 15:48:48 ----A---- C:\Windows\system32\MRT.exe
2012-04-09 14:25:31 ----D---- C:\Windows\system32\world
2012-04-09 14:24:55 ----A---- C:\Windows\system32\white-list.txt
2012-04-09 14:24:55 ----A---- C:\Windows\system32\ops.txt
2012-04-09 14:24:55 ----A---- C:\Windows\system32\banned-players.txt
2012-04-09 14:24:55 ----A---- C:\Windows\system32\banned-ips.txt
2012-04-09 14:20:35 ----D---- C:\Windows\system32\world_the_end
2012-04-09 14:20:35 ----D---- C:\Windows\system32\world_nether
2012-04-09 09:36:12 ----D---- C:\Windows\Logs
2012-04-02 22:25:00 ----D---- C:\Windows\system32\DriverStore
2012-04-02 22:17:49 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-04-02 22:17:13 ----D---- C:\Program Files\Adobe
2012-04-02 21:37:33 ----D---- C:\Program Files\Common Files
2012-04-02 18:34:00 ----D---- C:\Program Files\BOINC
2012-03-30 19:19:06 ----D---- C:\Users\Karel\AppData\Roaming\TS3Client
2012-03-30 17:06:25 ----D---- C:\ProgramData\AMD
2012-03-30 17:05:55 ----D---- C:\Program Files\ATI Technologies
2012-03-30 16:49:56 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-03-30 16:47:36 ----D---- C:\Program Files\Opera
2012-03-29 19:58:31 ----D---- C:\Program Files\Mozilla Firefox
2012-03-28 17:31:23 ----D---- C:\Users\Karel\AppData\Roaming\TortoiseSVN
2012-03-24 17:35:12 ----D---- C:\Users\Karel\AppData\Roaming\Winamp
2012-03-24 17:35:12 ----D---- C:\Users\Karel\AppData\Roaming\Media Player Classic
2012-03-21 12:31:58 ----D---- C:\Windows\rescache
2012-03-21 01:05:21 ----DC---- C:\Windows\system32\DRVSTORE
2012-03-20 06:07:33 ----D---- C:\Windows\Tasks
2012-03-20 00:21:41 ----D---- C:\Users\Karel\AppData\Roaming\Sony
2012-03-19 08:54:23 ----D---- C:\Program Files\LogMeIn
2012-03-18 00:46:04 ----A---- C:\Windows\TSDataEx.ini
2012-03-18 00:38:57 ----D---- C:\Windows\system32\en-US
2012-03-18 00:38:57 ----D---- C:\Windows\system32\cs-CZ
2012-03-18 00:38:57 ----D---- C:\Windows\en-US
2012-03-18 00:38:57 ----D---- C:\Windows\cs-CZ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 14392]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2011-03-18 25240]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-03-07 44376]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2011-12-05 86032]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-08-18 2752352]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32.sys [2011-08-01 40936]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-30 187392]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2011-12-16 25088]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2012-03-14 104752]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2012-03-14 116016]
S1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-03-07 612184]
S1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-03-07 337880]
S1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-03-07 53848]
S1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2012-03-14 158512]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2012-03-14 91952]
S2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2012-02-01 46720]
S2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2012-02-01 46720]
S2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
S2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-03-07 57688]
S2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x32.sys [2011-09-21 21992]
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [2011-09-16 12856]
S2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2011-09-16 47640]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S2 PStrip;PStrip; C:\Windows\system32\drivers\pstrip.sys [2007-07-15 27992]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 Aken;Aken; \??\C:\Users\Karel\AppData\Local\0 A.D. alpha\binaries\system\aken.sys []
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-09 9183232]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-03-09 265216]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-01-28 100352]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2012-02-04 23456]
S3 epmntdrv;epmntdrv; \??\C:\Windows\system32\epmntdrv.sys [2011-07-29 14216]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\system32\EuGdiDrv.sys [2011-07-29 8456]
S3 FlashUSB;Flash Loader utility driver; C:\Windows\System32\Drivers\FlashUSB.sys [2008-01-25 15453]
S3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2011-09-16 10144]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2011-08-17 137472]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2011-08-17 8576]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-08-17 8192]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2008-11-11 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2008-11-11 19968]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2008-11-11 24832]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2012-03-14 82736]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vsbus;Virtual Serial Bus Enumerator; C:\Windows\system32\DRIVERS\vsb.sys [2008-07-24 15264]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\Windows\System32\DRIVERS\vserial.sys [2008-07-24 47744]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
S4 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-02-28 1373576]
S2 Adobe Licensing Console;Adobe Licensing Console; C:\Windows\system32\mrvcl32.exe [2011-12-31 819729]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-03-09 163328]
S2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-03-09 291840]
S2 AMService;AMService; C:\Windows\TEMP\fpmigg\setup.exe [2012-04-16 50688]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-03-07 44768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-21 136176]
S2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [2012-03-14 374152]
S2 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2012-03-14 136584]
S2 LogMeIn;LogMeIn; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2011-09-16 390528]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]
S2 SkypeUpdate;Skype Updater; C:\Users\Karel\Desktop\Updater\Updater.exe [2012-02-29 158856]
S2 TeamViewer7;TeamViewer 7; C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
S2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 253600]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-21 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-03-29 129976]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-20 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 racsvc;Sk9920nt; C:\Windows\system32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

TDSSkiller : 17:46:20.0549 0328 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
17:46:20.0814 0328 ============================================================
17:46:20.0814 0328 Current date / time: 2012/04/17 17:46:20.0814
17:46:20.0814 0328 SystemInfo:
17:46:20.0814 0328
17:46:20.0814 0328 OS Version: 6.1.7601 ServicePack: 1.0
17:46:20.0814 0328 Product type: Workstation
17:46:20.0814 0328 ComputerName: KAREL-PC
17:46:20.0814 0328 UserName: Karel
17:46:20.0814 0328 Windows directory: C:\Windows
17:46:20.0814 0328 System windows directory: C:\Windows
17:46:20.0814 0328 Processor architecture: Intel x86
17:46:20.0814 0328 Number of processors: 2
17:46:20.0814 0328 Page size: 0x1000
17:46:20.0814 0328 Boot type: Safe boot with network
17:46:20.0814 0328 ============================================================
17:46:21.0664 0328 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:46:21.0664 0328 \Device\Harddisk0\DR0:
17:46:21.0664 0328 MBR used
17:46:21.0664 0328 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x639D7C0
17:46:21.0674 0328 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x639DA25, BlocksNum 0x259C10EE
17:46:21.0696 0328 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2BD5EB56, BlocksNum 0xE6260EB
17:46:21.0806 0328 Initialize success
17:46:21.0806 0328 ============================================================
17:47:21.0416 1744 ============================================================
17:47:21.0416 1744 Scan started
17:47:21.0416 1744 Mode: Manual; SigCheck; TDLFS;
17:47:21.0416 1744 ============================================================
17:47:22.0070 1744 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
17:47:22.0132 1744 1394ohci - ok
17:47:22.0162 1744 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
17:47:22.0172 1744 ACPI - ok
17:47:22.0220 1744 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
17:47:22.0255 1744 AcpiPmi - ok
17:47:22.0302 1744 Adobe Licensing Console (f6d5fb195076e96c902cd00c0a326dcd) C:\Windows\system32\mrvcl32.exe
17:47:22.0320 1744 Adobe Licensing Console ( UnsignedFile.Multi.Generic ) - warning
17:47:22.0322 1744 Adobe Licensing Console - detected UnsignedFile.Multi.Generic (1)
17:47:22.0422 1744 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:47:22.0430 1744 AdobeARMservice - ok
17:47:22.0575 1744 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:47:22.0582 1744 AdobeFlashPlayerUpdateSvc - ok
17:47:22.0667 1744 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
17:47:22.0680 1744 adp94xx - ok
17:47:22.0702 1744 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
17:47:22.0715 1744 adpahci - ok
17:47:22.0737 1744 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
17:47:22.0745 1744 adpu320 - ok
17:47:22.0802 1744 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
17:47:22.0892 1744 AeLookupSvc - ok
17:47:22.0945 1744 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
17:47:22.0972 1744 AFD - ok
17:47:23.0030 1744 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
17:47:23.0037 1744 agp440 - ok
17:47:23.0072 1744 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
17:47:23.0080 1744 aic78xx - ok
17:47:23.0212 1744 Aken - ok
17:47:23.0280 1744 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
17:47:23.0311 1744 ALG - ok
17:47:23.0358 1744 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
17:47:23.0358 1744 aliide - ok
17:47:23.0436 1744 AMD External Events Utility (4b9298fd6707980ab8e3a8f0e642ec9a) C:\Windows\system32\atiesrxx.exe
17:47:23.0467 1744 AMD External Events Utility - ok
17:47:23.0576 1744 AMD FUEL Service - ok
17:47:23.0654 1744 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
17:47:23.0654 1744 amdagp - ok
17:47:23.0685 1744 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
17:47:23.0685 1744 amdide - ok
17:47:23.0735 1744 amdiox86 (ff258424f0b2ef25eb98f04ee386e6e3) C:\Windows\system32\DRIVERS\amdiox86.sys
17:47:23.0797 1744 amdiox86 - ok
17:47:23.0858 1744 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys
17:47:23.0878 1744 AmdK8 - ok
17:47:24.0083 1744 amdkmdag (5c297f25a4a09d14bfe2cab5de2f1457) C:\Windows\system32\DRIVERS\atikmdag.sys
17:47:24.0257 1744 amdkmdag - ok
17:47:24.0288 1744 amdkmdap (ff2e35d9bd35f36a0126a0ca7556e43d) C:\Windows\system32\DRIVERS\atikmpag.sys
17:47:24.0319 1744 amdkmdap - ok
17:47:24.0382 1744 AmdLLD (ad8fa28d8ed0d0a689a0559085ce0f18) C:\Windows\system32\DRIVERS\AmdLLD.sys
17:47:24.0413 1744 AmdLLD - ok
17:47:24.0506 1744 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
17:47:24.0524 1744 AmdPPM - ok
17:47:24.0609 1744 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
17:47:24.0617 1744 amdsata - ok
17:47:24.0664 1744 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
17:47:24.0674 1744 amdsbs - ok
17:47:24.0687 1744 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
17:47:24.0694 1744 amdxata - ok
17:47:24.0744 1744 AMService - ok
17:47:24.0847 1744 AODDriver4.01 (df6de9e8e4b6994853ccf038bfae964b) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
17:47:24.0852 1744 AODDriver4.01 - ok
17:47:24.0887 1744 AODDriver4.1 (df6de9e8e4b6994853ccf038bfae964b) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
17:47:24.0892 1744 AODDriver4.1 - ok
17:47:24.0954 1744 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
17:47:24.0984 1744 AppID - ok
17:47:25.0024 1744 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
17:47:25.0059 1744 AppIDSvc - ok
17:47:25.0092 1744 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
17:47:25.0119 1744 Appinfo - ok
17:47:25.0164 1744 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
17:47:25.0182 1744 AppMgmt - ok
17:47:25.0254 1744 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
17:47:25.0264 1744 arc - ok
17:47:25.0292 1744 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
17:47:25.0302 1744 arcsas - ok
17:47:25.0422 1744 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:47:25.0444 1744 aspnet_state - ok
17:47:25.0499 1744 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
17:47:25.0504 1744 aswFsBlk - ok
17:47:25.0559 1744 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
17:47:25.0564 1744 aswMonFlt - ok
17:47:25.0607 1744 aswRdr (225013c16fe096714d71649ad7a20e8b) C:\Windows\System32\Drivers\aswrdr2.sys
17:47:25.0612 1744 aswRdr - ok
17:47:25.0637 1744 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
17:47:25.0652 1744 aswSnx - ok
17:47:25.0695 1744 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
17:47:25.0695 1744 aswSP - ok
17:47:25.0757 1744 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
17:47:25.0757 1744 aswTdi - ok
17:47:25.0820 1744 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
17:47:25.0910 1744 AsyncMac - ok
17:47:25.0928 1744 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
17:47:25.0935 1744 atapi - ok
17:47:26.0015 1744 AtiHDAudioService (4d201d8b576be4473405b2a86a2d28b3) C:\Windows\system32\drivers\AtihdW73.sys
17:47:26.0023 1744 AtiHDAudioService - ok
17:47:26.0080 1744 AtiHdmiService (36a49b49e982450ac117eda6ab35bdf5) C:\Windows\system32\drivers\AtiHdmi.sys
17:47:26.0095 1744 AtiHdmiService - ok
17:47:26.0150 1744 AtiPcie (b73c832088dd54b55e04ff6f9646ad8c) C:\Windows\system32\DRIVERS\AtiPcie.sys
17:47:26.0165 1744 AtiPcie - ok
17:47:26.0228 1744 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
17:47:26.0243 1744 AudioEndpointBuilder - ok
17:47:26.0259 1744 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
17:47:26.0275 1744 Audiosrv - ok
17:47:26.0368 1744 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:47:26.0384 1744 avast! Antivirus - ok
17:47:26.0446 1744 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
17:47:26.0477 1744 AxInstSV - ok
17:47:26.0524 1744 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
17:47:26.0555 1744 b06bdrv - ok
17:47:26.0587 1744 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:47:26.0602 1744 b57nd60x - ok
17:47:26.0696 1744 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
17:47:26.0711 1744 BDESVC - ok
17:47:26.0772 1744 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
17:47:26.0792 1744 Beep - ok
17:47:26.0849 1744 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
17:47:26.0872 1744 BITS - ok
17:47:26.0889 1744 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
17:47:26.0902 1744 blbdrive - ok
17:47:26.0949 1744 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
17:47:26.0972 1744 bowser - ok
17:47:26.0994 1744 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
17:47:27.0022 1744 BrFiltLo - ok
17:47:27.0042 1744 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
17:47:27.0064 1744 BrFiltUp - ok
17:47:27.0107 1744 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
17:47:27.0124 1744 Browser - ok
17:47:27.0162 1744 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
17:47:27.0172 1744 Brserid - ok
17:47:27.0199 1744 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
17:47:27.0217 1744 BrSerWdm - ok
17:47:27.0237 1744 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:47:27.0254 1744 BrUsbMdm - ok
17:47:27.0282 1744 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
17:47:27.0299 1744 BrUsbSer - ok
17:47:27.0332 1744 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
17:47:27.0353 1744 BTHMODEM - ok
17:47:27.0399 1744 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
17:47:27.0431 1744 bthserv - ok
17:47:27.0511 1744 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
17:47:27.0541 1744 cdfs - ok
17:47:27.0571 1744 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
17:47:27.0591 1744 cdrom - ok
17:47:27.0641 1744 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
17:47:27.0664 1744 CertPropSvc - ok
17:47:27.0694 1744 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
17:47:27.0704 1744 circlass - ok
17:47:27.0756 1744 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
17:47:27.0766 1744 CLFS - ok
17:47:27.0821 1744 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:47:27.0829 1744 clr_optimization_v2.0.50727_32 - ok
17:47:27.0906 1744 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:47:27.0949 1744 clr_optimization_v4.0.30319_32 - ok
17:47:28.0016 1744 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
17:47:28.0036 1744 CmBatt - ok
17:47:28.0081 1744 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
17:47:28.0089 1744 cmdide - ok
17:47:28.0137 1744 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
17:47:28.0153 1744 CNG - ok
17:47:28.0184 1744 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
17:47:28.0200 1744 Compbatt - ok
17:47:28.0246 1744 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:47:28.0262 1744 CompositeBus - ok
17:47:28.0293 1744 COMSysApp - ok
17:47:28.0371 1744 cpuz135 (3411fdf098aa20193eee5ffa36ba43b2) C:\Windows\system32\drivers\cpuz135_x32.sys
17:47:28.0371 1744 cpuz135 - ok
17:47:28.0434 1744 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
17:47:28.0434 1744 crcdisk - ok
17:47:28.0510 1744 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
17:47:28.0532 1744 CryptSvc - ok
17:47:28.0577 1744 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
17:47:28.0602 1744 CSC - ok
17:47:28.0655 1744 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
17:47:28.0680 1744 CscService - ok
17:47:28.0711 1744 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
17:47:28.0742 1744 DcomLaunch - ok
17:47:28.0789 1744 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
17:47:28.0820 1744 defragsvc - ok
17:47:28.0899 1744 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
17:47:28.0924 1744 DfsC - ok
17:47:28.0974 1744 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
17:47:29.0001 1744 Dhcp - ok
17:47:29.0026 1744 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
17:47:29.0054 1744 discache - ok
17:47:29.0099 1744 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
17:47:29.0106 1744 Disk - ok
17:47:29.0138 1744 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\drivers\dmvsc.sys
17:47:29.0153 1744 dmvsc - ok
17:47:29.0200 1744 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
17:47:29.0216 1744 Dnscache - ok
17:47:29.0262 1744 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
17:47:29.0294 1744 dot3svc - ok
17:47:29.0325 1744 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
17:47:29.0356 1744 DPS - ok
17:47:29.0418 1744 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
17:47:29.0434 1744 drmkaud - ok
17:47:29.0528 1744 DrvAgent32 (651554e483712b708ede864d0ca1aa73) C:\Windows\system32\Drivers\DrvAgent32.sys
17:47:29.0543 1744 DrvAgent32 ( UnsignedFile.Multi.Generic ) - warning
17:47:29.0543 1744 DrvAgent32 - detected UnsignedFile.Multi.Generic (1)
17:47:29.0606 1744 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
17:47:29.0637 1744 DXGKrnl - ok
17:47:29.0684 1744 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
17:47:29.0715 1744 EapHost - ok
17:47:29.0808 1744 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
17:47:29.0871 1744 ebdrv - ok
17:47:29.0933 1744 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
17:47:29.0949 1744 EFS - ok
17:47:30.0011 1744 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
17:47:30.0027 1744 ehRecvr - ok
17:47:30.0058 1744 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
17:47:30.0074 1744 ehSched - ok
17:47:30.0120 1744 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
17:47:30.0136 1744 elxstor - ok
17:47:30.0198 1744 epmntdrv (539ca34fbc74ec366a0d751028c32a08) C:\Windows\system32\epmntdrv.sys
17:47:30.0214 1744 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
17:47:30.0214 1744 epmntdrv - detected UnsignedFile.Multi.Generic (1)
17:47:30.0230 1744 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
17:47:30.0261 1744 ErrDev - ok
17:47:30.0308 1744 EuGdiDrv (1f2f4ab15ce03ecc257feb2f6dc5a013) C:\Windows\system32\EuGdiDrv.sys
17:47:30.0308 1744 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
17:47:30.0308 1744 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
17:47:30.0370 1744 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
17:47:30.0386 1744 EventSystem - ok
17:47:30.0479 1744 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
17:47:30.0495 1744 exfat - ok
17:47:30.0526 1744 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
17:47:30.0557 1744 fastfat - ok
17:47:30.0635 1744 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
17:47:30.0651 1744 Fax - ok
17:47:30.0729 1744 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
17:47:30.0729 1744 fdc - ok
17:47:30.0760 1744 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
17:47:30.0791 1744 fdPHost - ok
17:47:30.0838 1744 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
17:47:30.0854 1744 FDResPub - ok
17:47:30.0869 1744 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
17:47:30.0869 1744 FileInfo - ok
17:47:30.0922 1744 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
17:47:30.0952 1744 Filetrace - ok
17:47:30.0995 1744 FlashUSB (e5eb65f4af3ac7947d68a4c26cbdb900) C:\Windows\system32\Drivers\FlashUSB.sys
17:47:31.0010 1744 FlashUSB ( UnsignedFile.Multi.Generic ) - warning
17:47:31.0010 1744 FlashUSB - detected UnsignedFile.Multi.Generic (1)
17:47:31.0055 1744 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
17:47:31.0070 1744 flpydisk - ok
17:47:31.0117 1744 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
17:47:31.0133 1744 FltMgr - ok
17:47:31.0164 1744 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
17:47:31.0195 1744 FontCache - ok
17:47:31.0242 1744 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:47:31.0242 1744 FontCache3.0.0.0 - ok
17:47:31.0305 1744 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
17:47:31.0305 1744 FsDepends - ok
17:47:31.0351 1744 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
17:47:31.0367 1744 Fs_Rec - ok
17:47:31.0414 1744 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
17:47:31.0414 1744 fvevol - ok
17:47:31.0445 1744 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
17:47:31.0461 1744 gagp30kx - ok
17:47:31.0554 1744 giveio (77ebf3e9386daa51551af429052d88d0) C:\Windows\system32\giveio.sys
17:47:31.0554 1744 giveio ( UnsignedFile.Multi.Generic ) - warning
17:47:31.0554 1744 giveio - detected UnsignedFile.Multi.Generic (1)
17:47:31.0601 1744 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
17:47:31.0648 1744 gpsvc - ok
17:47:31.0741 1744 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
17:47:31.0741 1744 gupdate - ok
17:47:31.0756 1744 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
17:47:31.0772 1744 gupdatem - ok
17:47:31.0866 1744 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
17:47:31.0866 1744 hamachi - ok
17:47:31.0975 1744 Hamachi2Svc (fa89c0429821c7c429eec7a0ce1c02d3) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
17:47:32.0006 1744 Hamachi2Svc - ok
17:47:32.0100 1744 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
17:47:32.0115 1744 hcw85cir - ok
17:47:32.0166 1744 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
17:47:32.0191 1744 HdAudAddService - ok
17:47:32.0249 1744 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:47:32.0269 1744 HDAudBus - ok
17:47:32.0321 1744 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
17:47:32.0344 1744 HidBatt - ok
17:47:32.0379 1744 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
17:47:32.0401 1744 HidBth - ok
17:47:32.0434 1744 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
17:47:32.0450 1744 HidIr - ok
17:47:32.0497 1744 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
17:47:32.0528 1744 hidserv - ok
17:47:32.0559 1744 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
17:47:32.0590 1744 HidUsb - ok
17:47:32.0637 1744 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
17:47:32.0653 1744 hkmsvc - ok
17:47:32.0684 1744 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
17:47:32.0705 1744 HomeGroupListener - ok
17:47:32.0737 1744 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
17:47:32.0762 1744 HomeGroupProvider - ok
17:47:32.0810 1744 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
17:47:32.0820 1744 HpSAMD - ok
17:47:32.0860 1744 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
17:47:32.0882 1744 HTTP - ok
17:47:32.0907 1744 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
17:47:32.0915 1744 hwpolicy - ok
17:47:32.0965 1744 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
17:47:32.0985 1744 i8042prt - ok
17:47:33.0037 1744 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
17:47:33.0050 1744 iaStorV - ok
17:47:33.0169 1744 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:47:33.0185 1744 IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:47:33.0185 1744 IDriverT - detected UnsignedFile.Multi.Generic (1)
17:47:33.0325 1744 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:47:33.0341 1744 idsvc - ok
17:47:33.0434 1744 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
17:47:33.0450 1744 iirsp - ok
17:47:33.0512 1744 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
17:47:33.0543 1744 IKEEXT - ok
17:47:33.0668 1744 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\Windows\system32\drivers\RTKVHDA.sys
17:47:33.0715 1744 IntcAzAudAddService - ok
17:47:33.0746 1744 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
17:47:33.0746 1744 intelide - ok
17:47:33.0793 1744 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\drivers\intelppm.sys
17:47:33.0793 1744 intelppm - ok
17:47:33.0840 1744 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
17:47:33.0855 1744 IPBusEnum - ok
17:47:33.0871 1744 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:47:33.0887 1744 IpFilterDriver - ok
17:47:33.0918 1744 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
17:47:33.0933 1744 IPMIDRV - ok
17:47:33.0949 1744 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
17:47:33.0965 1744 IPNAT - ok
17:47:33.0996 1744 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
17:47:34.0011 1744 IRENUM - ok
17:47:34.0027 1744 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
17:47:34.0043 1744 isapnp - ok
17:47:34.0074 1744 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
17:47:34.0089 1744 iScsiPrt - ok
17:47:34.0136 1744 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:47:34.0152 1744 kbdclass - ok
17:47:34.0167 1744 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
17:47:34.0199 1744 kbdhid - ok
17:47:34.0230 1744 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:47:34.0245 1744 KeyIso - ok
17:47:34.0277 1744 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
17:47:34.0292 1744 KSecDD - ok
17:47:34.0308 1744 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
17:47:34.0308 1744 KSecPkg - ok
17:47:34.0370 1744 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
17:47:34.0386 1744 KtmRm - ok
17:47:34.0448 1744 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
17:47:34.0479 1744 LanmanServer - ok
17:47:34.0511 1744 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
17:47:34.0526 1744 LanmanWorkstation - ok
17:47:34.0589 1744 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
17:47:34.0620 1744 lltdio - ok
17:47:34.0667 1744 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
17:47:34.0682 1744 lltdsvc - ok
17:47:34.0713 1744 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
17:47:34.0729 1744 lmhosts - ok
17:47:34.0838 1744 LMIGuardianSvc (2375e7e01635fbccde2f796a9e078e07) C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
17:47:34.0854 1744 LMIGuardianSvc - ok
17:47:34.0932 1744 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
17:47:34.0932 1744 LMIInfo - ok
17:47:34.0947 1744 LMIMaint (b9c127273eaba403311854a8dcb6d0aa) C:\Program Files\LogMeIn\x86\RaMaint.exe
17:47:34.0963 1744 LMIMaint - ok
17:47:35.0072 1744 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\Windows\system32\DRIVERS\lmimirr.sys
17:47:35.0072 1744 lmimirr - ok
17:47:35.0103 1744 LMIRfsClientNP - ok
17:47:35.0135 1744 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\Windows\system32\drivers\LMIRfsDriver.sys
17:47:35.0135 1744 LMIRfsDriver - ok
17:47:35.0181 1744 LogMeIn (432618fa75b61059d2c57d6a7e55147a) C:\Program Files\LogMeIn\x86\LogMeIn.exe
17:47:35.0181 1744 LogMeIn - ok
17:47:35.0259 1744 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
17:47:35.0259 1744 LSI_FC - ok
17:47:35.0306 1744 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
17:47:35.0322 1744 LSI_SAS - ok
17:47:35.0337 1744 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
17:47:35.0353 1744 LSI_SAS2 - ok
17:47:35.0353 1744 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
17:47:35.0369 1744 LSI_SCSI - ok
17:47:35.0415 1744 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
17:47:35.0447 1744 luafv - ok
17:47:35.0478 1744 MBAMProtector - ok
17:47:35.0556 1744 MBAMService (056b19651bd7b7ce5f89a3ac46dbdc08) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:47:35.0571 1744 MBAMService - ok
17:47:35.0634 1744 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
17:47:35.0634 1744 Mcx2Svc - ok
17:47:35.0681 1744 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
17:47:35.0696 1744 megasas - ok
17:47:35.0712 1744 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
17:47:35.0727 1744 MegaSR - ok
17:47:35.0774 1744 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
17:47:35.0805 1744 MMCSS - ok
17:47:35.0837 1744 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
17:47:35.0870 1744 Modem - ok
17:47:35.0923 1744 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
17:47:35.0943 1744 monitor - ok
17:47:36.0005 1744 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
17:47:36.0013 1744 mouclass - ok
17:47:36.0048 1744 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
17:47:36.0055 1744 mouhid - ok
17:47:36.0085 1744 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
17:47:36.0093 1744 mountmgr - ok
17:47:36.0143 1744 MozillaMaintenance (8b4518efde714cd9fe61abb0ddd758b7) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:47:36.0150 1744 MozillaMaintenance - ok
17:47:36.0163 1744 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
17:47:36.0178 1744 mpio - ok
17:47:36.0194 1744 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
17:47:36.0225 1744 mpsdrv - ok
17:47:36.0256 1744 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
17:47:36.0256 1744 MRxDAV - ok
17:47:36.0319 1744 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:47:36.0334 1744 mrxsmb - ok
17:47:36.0381 1744 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:47:36.0381 1744 mrxsmb10 - ok
17:47:36.0412 1744 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:47:36.0412 1744 mrxsmb20 - ok
17:47:36.0459 1744 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
17:47:36.0475 1744 msahci - ok
17:47:36.0506 1744 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
17:47:36.0522 1744 msdsm - ok
17:47:36.0553 1744 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
17:47:36.0568 1744 MSDTC - ok
17:47:36.0646 1744 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
17:47:36.0662 1744 Msfs - ok
17:47:36.0678 1744 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
17:47:36.0693 1744 mshidkmdf - ok
17:47:36.0740 1744 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
17:47:36.0740 1744 msisadrv - ok
17:47:36.0802 1744 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
17:47:36.0818 1744 MSiSCSI - ok
17:47:36.0849 1744 msiserver - ok
17:47:36.0865 1744 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
17:47:36.0904 1744 MSKSSRV - ok
17:47:36.0944 1744 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
17:47:36.0969 1744 MSPCLOCK - ok
17:47:36.0991 1744 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
17:47:37.0011 1744 MSPQM - ok
17:47:37.0061 1744 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
17:47:37.0071 1744 MsRPC - ok
17:47:37.0134 1744 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
17:47:37.0139 1744 mssmbios - ok
17:47:37.0166 1744 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
17:47:37.0184 1744 MSTEE - ok
17:47:37.0204 1744 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
17:47:37.0220 1744 MTConfig - ok
17:47:37.0251 1744 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
17:47:37.0267 1744 Mup - ok
17:47:37.0298 1744 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
17:47:37.0329 1744 napagent - ok
17:47:37.0407 1744 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
17:47:37.0407 1744 NativeWifiP - ok
17:47:37.0448 1744 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
17:47:37.0466 1744 NDIS - ok
17:47:37.0493 1744 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
17:47:37.0521 1744 NdisCap - ok
17:47:37.0543 1744 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
17:47:37.0566 1744 NdisTapi - ok
17:47:37.0608 1744 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
17:47:37.0636 1744 Ndisuio - ok
17:47:37.0678 1744 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
17:47:37.0703 1744 NdisWan - ok
17:47:37.0751 1744 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
17:47:37.0768 1744 NDProxy - ok
17:47:37.0861 1744 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
17:47:37.0886 1744 NetBIOS - ok
17:47:37.0903 1744 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
17:47:37.0921 1744 NetBT - ok
17:47:37.0963 1744 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:47:37.0971 1744 Netlogon - ok
17:47:38.0033 1744 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
17:47:38.0053 1744 Netman - ok
17:47:38.0143 1744 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:47:38.0153 1744 NetMsmqActivator - ok
17:47:38.0156 1744 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:47:38.0163 1744 NetPipeActivator - ok
17:47:38.0214 1744 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
17:47:38.0245 1744 netprofm - ok
17:47:38.0339 1744 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:47:38.0339 1744 NetTcpActivator - ok
17:47:38.0339 1744 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:47:38.0354 1744 NetTcpPortSharing - ok
17:47:38.0432 1744 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
17:47:38.0432 1744 nfrd960 - ok
17:47:38.0495 1744 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
17:47:38.0510 1744 NlaSvc - ok
17:47:38.0557 1744 nmwcd (b0a67de1a128389aea4d42c5a56215fd) C:\Windows\system32\drivers\ccdcmb.sys
17:47:38.0573 1744 nmwcd - ok
17:47:38.0619 1744 nmwcdc (025c54f9f8c8bc1894ea38529c742c54) C:\Windows\system32\drivers\ccdcmbo.sys
17:47:38.0651 1744 nmwcdc - ok
17:47:38.0682 1744 nmwcdnsu (4f0de685a96dc843ccc8a861b3fac12d) C:\Windows\system32\drivers\nmwcdnsu.sys
17:47:38.0713 1744 nmwcdnsu - ok
17:47:38.0744 1744 nmwcdnsuc (578117c0c0cf10d99c8853e83c4bc63c) C:\Windows\system32\drivers\nmwcdnsuc.sys
17:47:38.0775 1744 nmwcdnsuc - ok
17:47:38.0822 1744 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
17:47:38.0838 1744 Npfs - ok
17:47:38.0891 1744 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
17:47:38.0907 1744 nsi - ok
17:47:38.0923 1744 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
17:47:38.0938 1744 nsiproxy - ok
17:47:39.0001 1744 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
17:47:39.0047 1744 Ntfs - ok
17:47:39.0063 1744 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
17:47:39.0079 1744 Null - ok
17:47:39.0141 1744 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
17:47:39.0141 1744 nvraid - ok
17:47:39.0188 1744 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
17:47:39.0188 1744 nvstor - ok
17:47:39.0235 1744 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
17:47:39.0235 1744 nv_agp - ok
17:47:39.0266 1744 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
17:47:39.0281 1744 ohci1394 - ok
17:47:39.0328 1744 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
17:47:39.0359 1744 p2pimsvc - ok
17:47:39.0406 1744 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
17:47:39.0422 1744 p2psvc - ok
17:47:39.0469 1744 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
17:47:39.0484 1744 Parport - ok
17:47:39.0500 1744 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
17:47:39.0500 1744 partmgr - ok
17:47:39.0531 1744 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
17:47:39.0547 1744 Parvdm - ok
17:47:39.0593 1744 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
17:47:39.0593 1744 PcaSvc - ok
17:47:39.0656 1744 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
17:47:39.0671 1744 pccsmcfd - ok
17:47:39.0718 1744 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
17:47:39.0718 1744 pci - ok
17:47:39.0765 1744 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
17:47:39.0765 1744 pciide - ok
17:47:39.0796 1744 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
17:47:39.0812 1744 pcmcia - ok
17:47:39.0843 1744 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
17:47:39.0843 1744 pcw - ok
17:47:39.0874 1744 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
17:47:39.0905 1744 PEAUTH - ok
17:47:39.0952 1744 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
17:47:39.0983 1744 PeerDistSvc - ok
17:47:40.0074 1744 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
17:47:40.0129 1744 pla - ok
17:47:40.0184 1744 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
17:47:40.0204 1744 PlugPlay - ok
17:47:40.0256 1744 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
17:47:40.0271 1744 PNRPAutoReg - ok
17:47:40.0287 1744 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
17:47:40.0287 1744 PNRPsvc - ok
17:47:40.0365 1744 Point32 (896d916de06f5502d301e8c4dc442ae8) C:\Windows\system32\DRIVERS\point32.sys
17:47:40.0381 1744 Point32 - ok
17:47:40.0448 1744 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
17:47:40.0478 1744 PolicyAgent - ok
17:47:40.0523 1744 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
17:47:40.0541 1744 Power - ok
17:47:40.0598 1744 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
17:47:40.0643 1744 PptpMiniport - ok
17:47:40.0726 1744 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
17:47:40.0741 1744 Processor - ok
17:47:40.0788 1744 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
17:47:40.0804 1744 ProfSvc - ok
17:47:40.0835 1744 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:47:40.0850 1744 ProtectedStorage - ok
17:47:40.0928 1744 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
17:47:40.0960 1744 Psched - ok
17:47:41.0002 1744 PStrip (bcf8d075fad718fea8ef6e281331a56e) C:\Windows\system32\drivers\pstrip.sys
17:47:41.0010 1744 PStrip - ok
17:47:41.0065 1744 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
17:47:41.0107 1744 ql2300 - ok
17:47:41.0127 1744 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
17:47:41.0135 1744 ql40xx - ok
17:47:41.0195 1744 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
17:47:41.0210 1744 QWAVE - ok
17:47:41.0256 1744 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
17:47:41.0272 1744 QWAVEdrv - ok
17:47:41.0319 1744 racsvc (11028c6a84a967070cb1286550f2058f) C:\Windows\system32\hsfhwbs2.dll
17:47:41.0319 1744 racsvc ( Backdoor.Multi.ZAccess.gen ) - infected
17:47:41.0319 1744 racsvc - detected Backdoor.Multi.ZAccess.gen (0)
17:47:41.0334 1744 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
17:47:41.0350 1744 RasAcd - ok
17:47:41.0397 1744 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:47:41.0412 1744 RasAgileVpn - ok
17:47:41.0475 1744 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
17:47:41.0490 1744 RasAuto - ok
17:47:41.0537 1744 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:47:41.0553 1744 Rasl2tp - ok
17:47:41.0568 1744 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
17:47:41.0600 1744 RasMan - ok
17:47:41.0678 1744 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
17:47:41.0693 1744 RasPppoe - ok
17:47:41.0787 1744 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
17:47:41.0818 1744 RasSstp - ok
17:47:41.0849 1744 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
17:47:41.0865 1744 rdbss - ok
17:47:41.0896 1744 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
17:47:41.0912 1744 rdpbus - ok
17:47:41.0927 1744 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:47:41.0960 1744 RDPCDD - ok
17:47:42.0000 1744 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
17:47:42.0018 1744 RDPDR - ok
17:47:42.0043 1744 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
17:47:42.0068 1744 RDPENCDD - ok
17:47:42.0143 1744 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
17:47:42.0170 1744 RDPREFMP - ok
17:47:42.0228 1744 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
17:47:42.0248 1744 RdpVideoMiniport - ok
17:47:42.0280 1744 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
17:47:42.0310 1744 RDPWD - ok
17:47:42.0368 1744 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
17:47:42.0378 1744 rdyboost - ok
17:47:42.0413 1744 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
17:47:42.0420 1744 RemoteAccess - ok
17:47:42.0467 1744 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
17:47:42.0483 1744 RemoteRegistry - ok
17:47:42.0529 1744 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
17:47:42.0561 1744 RpcEptMapper - ok
17:47:42.0576 1744 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
17:47:42.0592 1744 RpcLocator - ok
17:47:42.0623 1744 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
17:47:42.0639 1744 RpcSs - ok
17:47:42.0685 1744 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
17:47:42.0717 1744 rspndr - ok
17:47:42.0779 1744 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\Windows\system32\DRIVERS\Rt86win7.sys
17:47:42.0810 1744 RTL8167 - ok
17:47:42.0854 1744 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
17:47:42.0874 1744 s3cap - ok
17:47:42.0909 1744 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:47:42.0916 1744 SamSs - ok
17:47:42.0969 1744 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
17:47:42.0979 1744 sbp2port - ok
17:47:43.0011 1744 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
17:47:43.0039 1744 SCardSvr - ok
17:47:43.0054 1744 SCDEmu - ok
17:47:43.0069 1744 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
17:47:43.0094 1744 scfilter - ok
17:47:43.0136 1744 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
17:47:43.0171 1744 Schedule - ok
17:47:43.0201 1744 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
17:47:43.0216 1744 SCPolicySvc - ok
17:47:43.0231 1744 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
17:47:43.0247 1744 SDRSVC - ok
17:47:43.0309 1744 secdrv (c71394d99a04ca76484492f590c9cba5) C:\Windows\system32\drivers\secdrv.sys
17:47:43.0325 1744 secdrv ( UnsignedFile.Multi.Generic ) - warning
17:47:43.0325 1744 secdrv - detected UnsignedFile.Multi.Generic (1)
17:47:43.0372 1744 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
17:47:43.0387 1744 seclogon - ok
17:47:43.0419 1744 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
17:47:43.0434 1744 SENS - ok
17:47:43.0478 1744 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
17:47:43.0495 1744 SensrSvc - ok
17:47:43.0550 1744 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
17:47:43.0558 1744 Serenum - ok
17:47:43.0595 1744 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
17:47:43.0615 1744 Serial - ok
17:47:43.0668 1744 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
17:47:43.0675 1744 sermouse - ok
17:47:43.0741 1744 ServiceLayer (8c1f87f5fdd92229d1754b98f073913f) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
17:47:43.0772 1744 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
17:47:43.0772 1744 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
17:47:43.0866 1744 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
17:47:43.0897 1744 SessionEnv - ok
17:47:43.0944 1744 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
17:47:43.0969 1744 sffdisk - ok
17:47:44.0004 1744 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
17:47:44.0012 1744 sffp_mmc - ok
17:47:44.0027 1744 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
17:47:44.0049 1744 sffp_sd - ok
17:47:44.0082 1744 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
17:47:44.0102 1744 sfloppy - ok
17:47:44.0159 1744 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
17:47:44.0187 1744 SharedAccess - ok
17:47:44.0222 1744 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
17:47:44.0242 1744 ShellHWDetection - ok
17:47:44.0291 1744 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
17:47:44.0306 1744 sisagp - ok
17:47:44.0337 1744 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
17:47:44.0353 1744 SiSRaid2 - ok
17:47:44.0369 1744 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
17:47:44.0384 1744 SiSRaid4 - ok
17:47:44.0478 1744 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Users\Karel\Desktop\Updater\Updater.exe
17:47:44.0493 1744 SkypeUpdate - ok
17:47:44.0556 1744 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
17:47:44.0571 1744 Smb - ok
17:47:44.0665 1744 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
17:47:44.0665 1744 SNMPTRAP - ok
17:47:44.0727 1744 speedfan (3fa2e254bfbce52b3c6f1bf23aab6911) C:\Windows\system32\speedfan.sys
17:47:44.0727 1744 speedfan - ok
17:47:44.0774 1744 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
17:47:44.0774 1744 spldr - ok
17:47:44.0805 1744 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
17:47:44.0837 1744 Spooler - ok
17:47:44.0899 1744 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
17:47:44.0977 1744 sppsvc - ok
17:47:45.0048 1744 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
17:47:45.0066 1744 sppuinotify - ok
17:47:45.0118 1744 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
17:47:45.0143 1744 srv - ok
17:47:45.0181 1744 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
17:47:45.0203 1744 srv2 - ok
17:47:45.0246 1744 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
17:47:45.0256 1744 srvnet - ok
17:47:45.0305 1744 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
17:47:45.0336 1744 SSDPSRV - ok
17:47:45.0352 1744 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
17:47:45.0367 1744 SstpSvc - ok
17:47:45.0399 1744 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
17:47:45.0414 1744 stexstor - ok
17:47:45.0477 1744 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
17:47:45.0508 1744 StiSvc - ok
17:47:45.0539 1744 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
17:47:45.0555 1744 storflt - ok
17:47:45.0586 1744 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
17:47:45.0601 1744 storvsc - ok
17:47:45.0633 1744 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
17:47:45.0633 1744 swenum - ok
17:47:45.0695 1744 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
17:47:45.0726 1744 swprv - ok
17:47:45.0757 1744 Synth3dVsc (f2ad8960812fd111e20e84659ef19d43) C:\Windows\system32\drivers\synth3dvsc.sys
17:47:45.0757 1744 Synth3dVsc - ok
17:47:45.0820 1744 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
17:47:45.0867 1744 SysMain - ok
17:47:45.0913 1744 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
17:47:45.0929 1744 TabletInputService - ok
17:47:45.0945 1744 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
17:47:45.0976 1744 TapiSrv - ok
17:47:45.0991 1744 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
17:47:46.0007 1744 TBS - ok
17:47:46.0081 1744 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
17:47:46.0123 1744 Tcpip - ok
17:47:46.0191 1744 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
17:47:46.0211 1744 TCPIP6 - ok
17:47:46.0248 1744 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
17:47:46.0271 1744 tcpipreg - ok
17:47:46.0289 1744 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
17:47:46.0289 1744 TDPIPE - ok
17:47:46.0351 1744 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
17:47:46.0351 1744 TDTCP - ok
17:47:46.0414 1744 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
17:47:46.0429 1744 tdx - ok
17:47:46.0579 1744 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
17:47:46.0647 1744 TeamViewer7 - ok
17:47:46.0749 1744 teamviewervpn (9101fffcfccd1a30e870a5b8a9091b10) C:\Windows\system32\DRIVERS\teamviewervpn.sys
17:47:46.0765 1744 teamviewervpn - ok
17:47:46.0812 1744 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
17:47:46.0827 1744 TermDD - ok
17:47:46.0858 1744 terminpt (052306fd76793d5d5ab5d9891fd1adbb) C:\Windows\system32\drivers\terminpt.sys
17:47:46.0874 1744 terminpt - ok
17:47:46.0905 1744 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
17:47:46.0936 1744 TermService - ok
17:47:46.0952 1744 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
17:47:46.0968 1744 Themes - ok
17:47:46.0999 1744 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
17:47:47.0014 1744 THREADORDER - ok
17:47:47.0030 1744 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
17:47:47.0061 1744 TrkWks - ok
17:47:47.0114 1744 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
17:47:47.0134 1744 TrustedInstaller - ok
17:47:47.0199 1744 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:47:47.0222 1744 tssecsrv - ok
17:47:47.0234 1744 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
17:47:47.0252 1744 TsUsbFlt - ok
17:47:47.0284 1744 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
17:47:47.0300 1744 TsUsbGD - ok
17:47:47.0362 1744 tsusbhub (045acb987c650d8186c6b4a692223860) C:\Windows\system32\drivers\tsusbhub.sys
17:47:47.0362 1744 tsusbhub - ok
17:47:47.0425 1744 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
17:47:47.0440 1744 tunnel - ok
17:47:47.0456 1744 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
17:47:47.0471 1744 uagp35 - ok
17:47:47.0518 1744 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
17:47:47.0534 1744 udfs - ok
17:47:47.0581 1744 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
17:47:47.0604 1744 UI0Detect - ok
17:47:47.0644 1744 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
17:47:47.0651 1744 uliagpkx - ok
17:47:47.0669 1744 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
17:47:47.0684 1744 umbus - ok
17:47:47.0724 1744 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
17:47:47.0744 1744 UmPass - ok
17:47:47.0796 1744 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
17:47:47.0814 1744 UmRdpService - ok
17:47:47.0846 1744 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
17:47:47.0869 1744 upnphost - ok
17:47:47.0944 1744 upperdev (78b74af8727a28c128e164e9b53a5413) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
17:47:47.0969 1744 upperdev - ok
17:47:48.0016 1744 usbbus (9419faac6552a51542dbba02971c841c) C:\Windows\system32\DRIVERS\lgusbbus.sys
17:47:48.0036 1744 usbbus - ok
17:47:48.0076 1744 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
17:47:48.0084 1744 usbccgp - ok
17:47:48.0124 1744 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
17:47:48.0134 1744 usbcir - ok
17:47:48.0161 1744 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\Windows\system32\DRIVERS\lgusbdiag.sys
17:47:48.0169 1744 UsbDiag - ok
17:47:48.0221 1744 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
17:47:48.0229 1744 usbehci - ok
17:47:48.0266 1744 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
17:47:48.0276 1744 usbhub - ok
17:47:48.0333 1744 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\Windows\system32\DRIVERS\lgusbmodem.sys
17:47:48.0349 1744 USBModem - ok
17:47:48.0395 1744 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
17:47:48.0424 1744 usbohci - ok
17:47:48.0459 1744 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
17:47:48.0474 1744 usbprint - ok
17:47:48.0505 1744 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
17:47:48.0515 1744 usbscan - ok
17:47:48.0555 1744 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\Windows\system32\drivers\usbser.sys
17:47:48.0565 1744 usbser - ok
17:47:48.0595 1744 UsbserFilt (4f8fbc51a1c0a17310846b417a447f91) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
17:47:48.0615 1744 UsbserFilt - ok
17:47:48.0678 1744 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:47:48.0685 1744 USBSTOR - ok
17:47:48.0735 1744 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
17:47:48.0745 1744 usbuhci - ok
17:47:48.0808 1744 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
17:47:48.0828 1744 UxSms - ok
17:47:48.0878 1744 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:47:48.0878 1744 VaultSvc - ok
17:47:48.0928 1744 VBoxDrv (fb743efd8a977ea2aff7e3a65f79979f) C:\Windows\system32\DRIVERS\VBoxDrv.sys
17:47:48.0938 1744 VBoxDrv - ok
17:47:48.0998 1744 VBoxNetAdp (352385f05c1c4770447d5d3fa0438627) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
17:47:48.0998 1744 VBoxNetAdp - ok
17:47:49.0038 1744 VBoxNetFlt (a67d188271dd906143d31647f520c907) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
17:47:49.0048 1744 VBoxNetFlt - ok
17:47:49.0105 1744 VBoxUSB (9983e17911e0b3ec2a6f6c84ed61e83b) C:\Windows\system32\Drivers\VBoxUSB.sys
17:47:49.0113 1744 VBoxUSB - ok
17:47:49.0165 1744 VBoxUSBMon (ea1d9ad2f75043a3ede05aa56bb9dcb9) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
17:47:49.0173 1744 VBoxUSBMon - ok
17:47:49.0205 1744 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
17:47:49.0213 1744 vdrvroot - ok
17:47:49.0278 1744 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
17:47:49.0308 1744 vds - ok
17:47:49.0338 1744 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
17:47:49.0358 1744 vga - ok
17:47:49.0418 1744 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
17:47:49.0428 1744 VgaSave - ok
17:47:49.0548 1744 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
17:47:49.0558 1744 vhdmp - ok
17:47:49.0595 1744 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
17:47:49.0603 1744 viaagp - ok
17:47:49.0623 1744 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
17:47:49.0643 1744 ViaC7 - ok
17:47:49.0660 1744 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
17:47:49.0668 1744 viaide - ok
17:47:49.0703 1744 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
17:47:49.0713 1744 vmbus - ok
17:47:49.0728 1744 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
17:47:49.0750 1744 VMBusHID - ok
17:47:49.0768 1744 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
17:47:49.0775 1744 volmgr - ok
17:47:49.0795 1744 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
17:47:49.0805 1744 volmgrx - ok
17:47:49.0820 1744 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
17:47:49.0830 1744 volsnap - ok
17:47:49.0883 1744 vsbus (1c8a783e90c34d205596f1ab4a97e261) C:\Windows\system32\DRIVERS\vsb.sys
17:47:49.0888 1744 vsbus ( UnsignedFile.Multi.Generic ) - warning
17:47:49.0888 1744 vsbus - detected UnsignedFile.Multi.Generic (1)
17:47:49.0905 1744 vserial (3377daa1cb8cac46a538c236f5f3d58f) C:\Windows\system32\DRIVERS\vserial.sys
17:47:49.0920 1744 vserial ( UnsignedFile.Multi.Generic ) - warning
17:47:49.0920 1744 vserial - detected UnsignedFile.Multi.Generic (1)
17:47:49.0968 1744 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
17:47:49.0978 1744 vsmraid - ok
17:47:50.0020 1744 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
17:47:50.0060 1744 VSS - ok
17:47:50.0103 1744 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
17:47:50.0113 1744 vwifibus - ok
17:47:50.0135 1744 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
17:47:50.0165 1744 W32Time - ok
17:47:50.0190 1744 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
17:47:50.0210 1744 WacomPen - ok
17:47:50.0238 1744 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
17:47:50.0260 1744 WANARP - ok
17:47:50.0263 1744 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
17:47:50.0280 1744 Wanarpv6 - ok
17:47:50.0328 1744 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
17:47:50.0368 1744 WatAdminSvc - ok
17:47:50.0413 1744 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
17:47:50.0450 1744 wbengine - ok
17:47:50.0468 1744 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
17:47:50.0485 1744 WbioSrvc - ok
17:47:50.0518 1744 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
17:47:50.0533 1744 wcncsvc - ok
17:47:50.0550 1744 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
17:47:50.0570 1744 WcsPlugInService - ok
17:47:50.0618 1744 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
17:47:50.0625 1744 Wd - ok
17:47:50.0645 1744 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
17:47:50.0660 1744 Wdf01000 - ok
17:47:50.0678 1744 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
17:47:50.0705 1744 WdiServiceHost - ok
17:47:50.0848 1744 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
17:47:50.0858 1744 WdiSystemHost - ok
17:47:50.0893 1744 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
17:47:50.0915 1744 WebClient - ok
17:47:50.0930 1744 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
17:47:50.0953 1744 Wecsvc - ok
17:47:50.0968 1744 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
17:47:50.0988 1744 wercplsupport - ok
17:47:51.0025 1744 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
17:47:51.0045 1744 WerSvc - ok
17:47:51.0085 1744 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
17:47:51.0103 1744 WfpLwf - ok
17:47:51.0125 1744 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
17:47:51.0133 1744 WIMMount - ok
17:47:51.0138 1744 WinHttpAutoProxySvc - ok
17:47:51.0195 1744 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
17:47:51.0215 1744 Winmgmt - ok
17:47:51.0253 1744 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
17:47:51.0305 1744 WinRM - ok
17:47:51.0608 1744 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
17:47:51.0618 1744 WinUsb - ok
17:47:51.0663 1744 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
17:47:51.0685 1744 Wlansvc - ok
17:47:51.0800 1744 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:47:51.0843 1744 wlidsvc - ok
17:47:52.0110 1744 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:47:52.0118 1744 WmiAcpi - ok
17:47:52.0185 1744 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
17:47:52.0208 1744 wmiApSrv - ok
17:47:52.0300 1744 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
17:47:52.0328 1744 WMPNetworkSvc - ok
17:47:52.0530 1744 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
17:47:52.0550 1744 WPCSvc - ok
17:47:52.0563 1744 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
17:47:52.0580 1744 WPDBusEnum - ok
17:47:52.0640 1744 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
17:47:52.0668 1744 ws2ifsl - ok
17:47:52.0675 1744 WSearch - ok
17:47:52.0740 1744 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
17:47:52.0795 1744 wuauserv - ok
17:47:52.0868 1744 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
17:47:52.0898 1744 WudfPf - ok
17:47:52.0925 1744 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:47:52.0950 1744 WUDFRd - ok
17:47:52.0980 1744 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
17:47:53.0000 1744 wudfsvc - ok
17:47:53.0015 1744 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
17:47:53.0038 1744 WwanSvc - ok
17:47:53.0190 1744 WZCOOK - ok
17:47:53.0378 1744 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:47:53.0508 1744 \Device\Harddisk0\DR0 - ok
17:47:53.0510 1744 Boot (0x1200) (b2eb81a76a44f94c43339d6de37477db) \Device\Harddisk0\DR0\Partition0
17:47:53.0513 1744 \Device\Harddisk0\DR0\Partition0 - ok
17:47:53.0515 1744 Boot (0x1200) (99bbc87b334c5590de549c435adba53e) \Device\Harddisk0\DR0\Partition1
17:47:53.0515 1744 \Device\Harddisk0\DR0\Partition1 - ok
17:47:53.0535 1744 Boot (0x1200) (cbe98a2e0bf24cf83a2d8b4f46c030d6) \Device\Harddisk0\DR0\Partition2
17:47:53.0535 1744 \Device\Harddisk0\DR0\Partition2 - ok
17:47:53.0538 1744 ============================================================
17:47:53.0538 1744 Scan finished
17:47:53.0538 1744 ============================================================
17:47:53.0545 1836 Detected object count: 12
17:47:53.0545 1836 Actual detected object count: 12
17:48:22.0305 1836 Adobe Licensing Console ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0305 1836 Adobe Licensing Console ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0305 1836 DrvAgent32 ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0305 1836 DrvAgent32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0305 1836 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0305 1836 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0320 1836 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0320 1836 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0320 1836 FlashUSB ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0320 1836 FlashUSB ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0320 1836 giveio ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0320 1836 giveio ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0320 1836 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0320 1836 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0432 1836 C:\Windows\system32\hsfhwbs2.dll - copied to quarantine
17:48:22.0432 1836 HKLM\SYSTEM\ControlSet001\services\racsvc - will be deleted on reboot
17:48:22.0472 1836 HKLM\SYSTEM\ControlSet002\services\racsvc - will be deleted on reboot
17:48:22.0572 1836 HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\svchost:netsvcs - cured
17:48:22.0597 1836 C:\Windows\system32\hsfhwbs2.dll - will be deleted on reboot
17:48:22.0597 1836 racsvc ( Backdoor.Multi.ZAccess.gen ) - User select action: Delete
17:48:22.0599 1836 secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0599 1836 secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0602 1836 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0602 1836 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0602 1836 vsbus ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0602 1836 vsbus ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:22.0604 1836 vserial ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:22.0604 1836 vserial ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:30.0007 1220 Deinitialize success

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Combofix asi po hodine zamrzl takze sem restartoval pocitac opet do nouzoveho rezimu a vyplivlo mi to ze koš na jednotce C je poskoze jestly ho chci vysipat dal sem ano.

- Nemuze byt vadný disk
- Co ste vycetl z toho minidumpu

PC je nakazeno docela novinkou o to ale zakernejsi - je tam ZeroAccess - zatim se jen velmi obtizne leci.

Takze BSOD muzou byt zpusobeny i timhle, pac ZA dela s PC docela solidni psi kusy

Prejmenujte ComboFix na Beruska.com a spustte jej v nouzovem rezimu

Brani se mrcha combofix chvily neco dela a pak prestane a dysk ani neblikne ci vyda nejaky zvuk

Jinak furt se mi zobrazuje Ze kos na jednotce C jeposkozený

Navod dle kolegy

Mc_Murphy píše: Prozatím stáhni CrystalDisk Info: http://www.studna.cz/crystaldiskinfo-p-11601.html
Nainstaluj ho, spusť a přes Úpravy >> Kopírovat sem vlož log.

Udelejte jeste jednou TDSSKiller, postup stejny

Crystal disk info: ----------------------------------------------------------------------------
CrystalDiskInfo 4.1.3 (C) 2008-2011 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x86)
Date : 2012/04/17 20:27:13

-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- ST500DM002-1BC142 ATA Device
- ATA Channel 1 (1) [ATA]
- ATA Channel 0 (0) [ATA]
+ ATA Channel 1 (1) [ATA]
- HL-DT-ST DVD-RAM GSA-H20L ATA Device
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)

-- Disk List ---------------------------------------------------------------
(1) ST500DM002-1BC142 : 500.1 GB [0-0-0, pd1]

----------------------------------------------------------------------------
(1) ST500DM002-1BC142
----------------------------------------------------------------------------
Model : ST500DM002-1BC142
Firmware : JC4B
Serial Number : Z2ABJ04G
Disk Size : 500.1 GB (8.4/137.4/500.1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/600
Power On Hours : 4400 hod.
Power On Count : 104 krát
Temparature : 41 C (105 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : D000h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 118 _99 __6 00000AFFB341 Počet chyb čtení
03 100 100 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 00000000006D Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _79 _60 _30 000005332C50 Počet chybných hledání
09 _95 _95 __0 000000001130 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 000000000068 Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Neznámý
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _91 __0 00000000004C Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _59 _53 _45 000029240029 Teplota toku vzduchu
C2 _41 _47 __0 000200000029 Teplota
C3 _46 _31 __0 00000AFFB341 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 249300001236 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000D741B139 Specifický pro výrobce
F2 100 253 __0 00003DF0FC85 Specifický pro výrobce

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0C 5A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 20 20 20 20 20 20 20
020: 5A 32 41 42 4A 30 34 47 00 00 80 00 00 04 4A 43
030: 34 42 20 20 20 20 53 54 35 30 30 44 4D 30 30 32
040: 2D 31 42 43 31 34 32 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 85 0E 00 04 00 48 00 40
0A0: 01 F0 00 29 34 6B 7F 01 41 63 34 69 BC 01 41 63
0B0: 40 7F 00 28 00 28 00 00 FF FE 00 00 D0 00 00 00
0C0: 00 00 00 00 00 00 00 00 60 30 3A 38 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 50 00 C5 00 36 1B 46 76
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1E
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 60 30 3A 38 60 30 3A 38 20 20 00 02 01 40
110: 01 00 50 00 3C 06 3C 0A 00 00 00 3C 00 00 00 08
120: 00 00 00 00 00 4F 02 80 00 00 00 00 00 08 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 3F 00 98 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 10 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 1C 20 00 00 00 00 00 00 00 00 10 20 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 75 A5

TDSS killer: 20:27:27.0937 3184 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
20:27:29.0939 3184 ============================================================
20:27:29.0939 3184 Current date / time: 2012/04/17 20:27:29.0939
20:27:29.0939 3184 SystemInfo:
20:27:29.0939 3184
20:27:29.0939 3184 OS Version: 6.1.7601 ServicePack: 1.0
20:27:29.0939 3184 Product type: Workstation
20:27:29.0939 3184 ComputerName: KAREL-PC
20:27:29.0942 3184 UserName: Karel
20:27:29.0942 3184 Windows directory: C:\Windows
20:27:29.0942 3184 System windows directory: C:\Windows
20:27:29.0942 3184 Processor architecture: Intel x86
20:27:29.0942 3184 Number of processors: 2
20:27:29.0942 3184 Page size: 0x1000
20:27:29.0942 3184 Boot type: Safe boot with network
20:27:29.0942 3184 ============================================================
20:27:30.0787 3184 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:27:30.0789 3184 \Device\Harddisk0\DR0:
20:27:30.0789 3184 MBR used
20:27:30.0789 3184 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x639D7C0
20:27:30.0797 3184 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x639DA25, BlocksNum 0x259C10EE
20:27:30.0820 3184 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2BD5EB56, BlocksNum 0xE6260EB
20:27:30.0930 3184 Initialize success
20:27:30.0930 3184 ============================================================
20:27:46.0860 3228 ============================================================
20:27:46.0860 3228 Scan started
20:27:46.0860 3228 Mode: Manual; SigCheck; TDLFS;
20:27:46.0860 3228 ============================================================
20:27:47.0336 3228 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
20:27:47.0391 3228 1394ohci - ok
20:27:47.0420 3228 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
20:27:47.0431 3228 ACPI - ok
20:27:47.0469 3228 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
20:27:47.0503 3228 AcpiPmi - ok
20:27:47.0551 3228 Adobe Licensing Console (f6d5fb195076e96c902cd00c0a326dcd) C:\Windows\system32\mrvcl32.exe
20:27:47.0665 3228 Adobe Licensing Console ( UnsignedFile.Multi.Generic ) - warning
20:27:47.0666 3228 Adobe Licensing Console - detected UnsignedFile.Multi.Generic (1)
20:27:47.0788 3228 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:27:47.0796 3228 AdobeARMservice - ok
20:27:47.0948 3228 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:27:47.0958 3228 AdobeFlashPlayerUpdateSvc - ok
20:27:48.0015 3228 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
20:27:48.0031 3228 adp94xx - ok
20:27:48.0051 3228 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
20:27:48.0063 3228 adpahci - ok
20:27:48.0085 3228 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
20:27:48.0095 3228 adpu320 - ok
20:27:48.0151 3228 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
20:27:48.0242 3228 AeLookupSvc - ok
20:27:48.0317 3228 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
20:27:48.0355 3228 AFD - ok
20:27:48.0411 3228 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
20:27:48.0420 3228 agp440 - ok
20:27:48.0462 3228 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
20:27:48.0471 3228 aic78xx - ok
20:27:48.0619 3228 Aken - ok
20:27:48.0709 3228 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
20:27:48.0740 3228 ALG - ok
20:27:48.0793 3228 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
20:27:48.0801 3228 aliide - ok
20:27:48.0855 3228 AMD External Events Utility (4b9298fd6707980ab8e3a8f0e642ec9a) C:\Windows\system32\atiesrxx.exe
20:27:48.0893 3228 AMD External Events Utility - ok
20:27:48.0963 3228 AMD FUEL Service - ok
20:27:49.0039 3228 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
20:27:49.0048 3228 amdagp - ok
20:27:49.0075 3228 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
20:27:49.0082 3228 amdide - ok
20:27:49.0098 3228 amdiox86 (ff258424f0b2ef25eb98f04ee386e6e3) C:\Windows\system32\DRIVERS\amdiox86.sys
20:27:49.0117 3228 amdiox86 - ok
20:27:49.0292 3228 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys
20:27:49.0323 3228 AmdK8 - ok
20:27:49.0718 3228 amdkmdag (5c297f25a4a09d14bfe2cab5de2f1457) C:\Windows\system32\DRIVERS\atikmdag.sys
20:27:49.0915 3228 amdkmdag - ok
20:27:50.0025 3228 amdkmdap (ff2e35d9bd35f36a0126a0ca7556e43d) C:\Windows\system32\DRIVERS\atikmpag.sys
20:27:50.0048 3228 amdkmdap - ok
20:27:50.0090 3228 AmdLLD (ad8fa28d8ed0d0a689a0559085ce0f18) C:\Windows\system32\DRIVERS\AmdLLD.sys
20:27:50.0124 3228 AmdLLD - ok
20:27:50.0160 3228 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
20:27:50.0174 3228 AmdPPM - ok
20:27:50.0215 3228 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
20:27:50.0224 3228 amdsata - ok
20:27:50.0255 3228 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
20:27:50.0265 3228 amdsbs - ok
20:27:50.0277 3228 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
20:27:50.0285 3228 amdxata - ok
20:27:50.0335 3228 AMService - ok
20:27:50.0436 3228 AODDriver4.01 (df6de9e8e4b6994853ccf038bfae964b) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:27:50.0452 3228 AODDriver4.01 - ok
20:27:50.0478 3228 AODDriver4.1 (df6de9e8e4b6994853ccf038bfae964b) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:27:50.0484 3228 AODDriver4.1 - ok
20:27:50.0545 3228 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
20:27:50.0575 3228 AppID - ok
20:27:50.0631 3228 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
20:27:50.0659 3228 AppIDSvc - ok
20:27:50.0716 3228 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
20:27:50.0744 3228 Appinfo - ok
20:27:50.0797 3228 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
20:27:50.0815 3228 AppMgmt - ok
20:27:50.0862 3228 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
20:27:50.0871 3228 arc - ok
20:27:50.0883 3228 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
20:27:50.0891 3228 arcsas - ok
20:27:50.0996 3228 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:27:51.0018 3228 aspnet_state - ok
20:27:51.0180 3228 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
20:27:51.0188 3228 aswFsBlk - ok
20:27:51.0248 3228 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
20:27:51.0256 3228 aswMonFlt - ok
20:27:51.0305 3228 aswRdr (225013c16fe096714d71649ad7a20e8b) C:\Windows\System32\Drivers\aswrdr2.sys
20:27:51.0311 3228 aswRdr - ok
20:27:51.0336 3228 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
20:27:51.0351 3228 aswSnx - ok
20:27:51.0371 3228 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
20:27:51.0383 3228 aswSP - ok
20:27:51.0401 3228 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
20:27:51.0407 3228 aswTdi - ok
20:27:51.0464 3228 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
20:27:51.0551 3228 AsyncMac - ok
20:27:51.0584 3228 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
20:27:51.0591 3228 atapi - ok
20:27:51.0639 3228 AtiHDAudioService (4d201d8b576be4473405b2a86a2d28b3) C:\Windows\system32\drivers\AtihdW73.sys
20:27:51.0645 3228 AtiHDAudioService - ok
20:27:51.0678 3228 AtiHdmiService (36a49b49e982450ac117eda6ab35bdf5) C:\Windows\system32\drivers\AtiHdmi.sys
20:27:51.0703 3228 AtiHdmiService - ok
20:27:51.0741 3228 AtiPcie (b73c832088dd54b55e04ff6f9646ad8c) C:\Windows\system32\DRIVERS\AtiPcie.sys
20:27:51.0747 3228 AtiPcie - ok
20:27:51.0802 3228 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
20:27:51.0831 3228 AudioEndpointBuilder - ok
20:27:51.0839 3228 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
20:27:51.0860 3228 Audiosrv - ok
20:27:51.0933 3228 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:27:51.0942 3228 avast! Antivirus - ok
20:27:52.0021 3228 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
20:27:52.0044 3228 AxInstSV - ok
20:27:52.0091 3228 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
20:27:52.0123 3228 b06bdrv - ok
20:27:52.0148 3228 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
20:27:52.0165 3228 b57nd60x - ok
20:27:52.0238 3228 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
20:27:52.0270 3228 BDESVC - ok
20:27:52.0319 3228 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
20:27:52.0342 3228 Beep - ok
20:27:52.0401 3228 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
20:27:52.0439 3228 BITS - ok
20:27:52.0479 3228 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
20:27:52.0500 3228 blbdrive - ok
20:27:52.0581 3228 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
20:27:52.0604 3228 bowser - ok
20:27:52.0626 3228 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
20:27:52.0646 3228 BrFiltLo - ok
20:27:52.0674 3228 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
20:27:52.0697 3228 BrFiltUp - ok
20:27:52.0731 3228 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
20:27:52.0758 3228 BridgeMP - ok
20:27:52.0814 3228 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
20:27:52.0842 3228 Browser - ok
20:27:52.0892 3228 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
20:27:52.0914 3228 Brserid - ok
20:27:52.0965 3228 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
20:27:53.0008 3228 BrSerWdm - ok
20:27:53.0053 3228 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:27:53.0077 3228 BrUsbMdm - ok
20:27:53.0137 3228 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
20:27:53.0156 3228 BrUsbSer - ok
20:27:53.0172 3228 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
20:27:53.0196 3228 BTHMODEM - ok
20:27:53.0258 3228 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
20:27:53.0290 3228 bthserv - ok
20:27:53.0374 3228 catchme - ok
20:27:53.0484 3228 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
20:27:53.0514 3228 cdfs - ok
20:27:53.0602 3228 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
20:27:53.0623 3228 cdrom - ok
20:27:53.0663 3228 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
20:27:53.0685 3228 CertPropSvc - ok
20:27:53.0725 3228 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
20:27:53.0736 3228 circlass - ok
20:27:53.0780 3228 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
20:27:53.0791 3228 CLFS - ok
20:27:53.0853 3228 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:27:53.0862 3228 clr_optimization_v2.0.50727_32 - ok
20:27:53.0971 3228 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:27:54.0015 3228 clr_optimization_v4.0.30319_32 - ok
20:27:54.0138 3228 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
20:27:54.0201 3228 CmBatt - ok
20:27:54.0236 3228 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
20:27:54.0243 3228 cmdide - ok
20:27:54.0303 3228 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
20:27:54.0326 3228 CNG - ok
20:27:54.0345 3228 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
20:27:54.0388 3228 Compbatt - ok
20:27:54.0493 3228 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
20:27:54.0511 3228 CompositeBus - ok
20:27:54.0544 3228 COMSysApp - ok
20:27:54.0617 3228 cpuz135 (3411fdf098aa20193eee5ffa36ba43b2) C:\Windows\system32\drivers\cpuz135_x32.sys
20:27:54.0623 3228 cpuz135 - ok
20:27:54.0678 3228 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
20:27:54.0686 3228 crcdisk - ok
20:27:54.0765 3228 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
20:27:54.0788 3228 CryptSvc - ok
20:27:54.0834 3228 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
20:27:54.0858 3228 CSC - ok
20:27:54.0885 3228 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
20:27:54.0910 3228 CscService - ok
20:27:54.0974 3228 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
20:27:55.0007 3228 DcomLaunch - ok
20:27:55.0059 3228 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
20:27:55.0088 3228 defragsvc - ok
20:27:55.0138 3228 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
20:27:55.0163 3228 DfsC - ok
20:27:55.0212 3228 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
20:27:55.0241 3228 Dhcp - ok
20:27:55.0274 3228 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
20:27:55.0302 3228 discache - ok
20:27:55.0339 3228 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
20:27:55.0347 3228 Disk - ok
20:27:55.0399 3228 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\drivers\dmvsc.sys
20:27:55.0431 3228 dmvsc - ok
20:27:55.0476 3228 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
20:27:55.0501 3228 Dnscache - ok
20:27:55.0545 3228 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
20:27:55.0574 3228 dot3svc - ok
20:27:55.0598 3228 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
20:27:55.0629 3228 DPS - ok
20:27:55.0698 3228 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
20:27:55.0717 3228 drmkaud - ok
20:27:55.0777 3228 DrvAgent32 (651554e483712b708ede864d0ca1aa73) C:\Windows\system32\Drivers\DrvAgent32.sys
20:27:55.0790 3228 DrvAgent32 ( UnsignedFile.Multi.Generic ) - warning
20:27:55.0790 3228 DrvAgent32 - detected UnsignedFile.Multi.Generic (1)
20:27:55.0842 3228 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
20:27:55.0860 3228 DXGKrnl - ok
20:27:55.0919 3228 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
20:27:55.0952 3228 EapHost - ok
20:27:56.0028 3228 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
20:27:56.0104 3228 ebdrv - ok
20:27:56.0160 3228 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
20:27:56.0193 3228 EFS - ok
20:27:56.0285 3228 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
20:27:56.0309 3228 ehRecvr - ok
20:27:56.0342 3228 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
20:27:56.0356 3228 ehSched - ok
20:27:56.0427 3228 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
20:27:56.0442 3228 elxstor - ok
20:27:56.0523 3228 epmntdrv (539ca34fbc74ec366a0d751028c32a08) C:\Windows\system32\epmntdrv.sys
20:27:56.0540 3228 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
20:27:56.0541 3228 epmntdrv - detected UnsignedFile.Multi.Generic (1)
20:27:56.0579 3228 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
20:27:56.0599 3228 ErrDev - ok
20:27:56.0662 3228 EuGdiDrv (1f2f4ab15ce03ecc257feb2f6dc5a013) C:\Windows\system32\EuGdiDrv.sys
20:27:56.0683 3228 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
20:27:56.0683 3228 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
20:27:56.0775 3228 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
20:27:56.0801 3228 EventSystem - ok
20:27:56.0848 3228 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
20:27:56.0869 3228 exfat - ok
20:27:56.0910 3228 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
20:27:56.0939 3228 fastfat - ok
20:27:57.0028 3228 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
20:27:57.0064 3228 Fax - ok
20:27:57.0153 3228 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
20:27:57.0162 3228 fdc - ok
20:27:57.0179 3228 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
20:27:57.0208 3228 fdPHost - ok
20:27:57.0226 3228 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
20:27:57.0245 3228 FDResPub - ok
20:27:57.0271 3228 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
20:27:57.0279 3228 FileInfo - ok
20:27:57.0295 3228 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
20:27:57.0326 3228 Filetrace - ok
20:27:57.0367 3228 FlashUSB (e5eb65f4af3ac7947d68a4c26cbdb900) C:\Windows\system32\Drivers\FlashUSB.sys
20:27:57.0374 3228 FlashUSB ( UnsignedFile.Multi.Generic ) - warning
20:27:57.0374 3228 FlashUSB - detected UnsignedFile.Multi.Generic (1)
20:27:57.0401 3228 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
20:27:57.0417 3228 flpydisk - ok
20:27:57.0479 3228 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
20:27:57.0489 3228 FltMgr - ok
20:27:57.0553 3228 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
20:27:57.0586 3228 FontCache - ok
20:27:57.0652 3228 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:27:57.0659 3228 FontCache3.0.0.0 - ok
20:27:57.0716 3228 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
20:27:57.0724 3228 FsDepends - ok
20:27:57.0770 3228 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
20:27:57.0778 3228 Fs_Rec - ok
20:27:57.0805 3228 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
20:27:57.0817 3228 fvevol - ok
20:27:57.0852 3228 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
20:27:57.0861 3228 gagp30kx - ok
20:27:57.0974 3228 giveio (77ebf3e9386daa51551af429052d88d0) C:\Windows\system32\giveio.sys
20:27:57.0982 3228 giveio ( UnsignedFile.Multi.Generic ) - warning
20:27:57.0982 3228 giveio - detected UnsignedFile.Multi.Generic (1)
20:27:58.0053 3228 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
20:27:58.0088 3228 gpsvc - ok
20:27:58.0181 3228 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
20:27:58.0190 3228 gupdate - ok
20:27:58.0195 3228 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
20:27:58.0201 3228 gupdatem - ok
20:27:58.0298 3228 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
20:27:58.0304 3228 hamachi - ok
20:27:58.0408 3228 Hamachi2Svc (fa89c0429821c7c429eec7a0ce1c02d3) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
20:27:58.0448 3228 Hamachi2Svc - ok
20:27:58.0543 3228 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
20:27:58.0560 3228 hcw85cir - ok
20:27:58.0606 3228 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
20:27:58.0630 3228 HdAudAddService - ok
20:27:58.0714 3228 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:27:58.0734 3228 HDAudBus - ok
20:27:58.0777 3228 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
20:27:58.0800 3228 HidBatt - ok
20:27:58.0842 3228 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
20:27:58.0865 3228 HidBth - ok
20:27:58.0908 3228 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
20:27:58.0929 3228 HidIr - ok
20:27:58.0968 3228 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
20:27:58.0997 3228 hidserv - ok
20:27:59.0036 3228 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
20:27:59.0049 3228 HidUsb - ok
20:27:59.0105 3228 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
20:27:59.0124 3228 hkmsvc - ok
20:27:59.0178 3228 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
20:27:59.0205 3228 HomeGroupListener - ok
20:27:59.0252 3228 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
20:27:59.0276 3228 HomeGroupProvider - ok
20:27:59.0358 3228 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
20:27:59.0366 3228 HpSAMD - ok
20:27:59.0408 3228 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
20:27:59.0431 3228 HTTP - ok
20:27:59.0538 3228 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
20:27:59.0545 3228 hwpolicy - ok
20:27:59.0604 3228 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
20:27:59.0623 3228 i8042prt - ok
20:27:59.0692 3228 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
20:27:59.0705 3228 iaStorV - ok
20:27:59.0845 3228 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:27:59.0860 3228 IDriverT ( UnsignedFile.Multi.Generic ) - warning
20:27:59.0860 3228 IDriverT - detected UnsignedFile.Multi.Generic (1)
20:27:59.0991 3228 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:28:00.0012 3228 idsvc - ok
20:28:00.0096 3228 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
20:28:00.0105 3228 iirsp - ok
20:28:00.0142 3228 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
20:28:00.0175 3228 IKEEXT - ok
20:28:00.0267 3228 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\Windows\system32\drivers\RTKVHDA.sys
20:28:00.0305 3228 IntcAzAudAddService - ok
20:28:00.0366 3228 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
20:28:00.0374 3228 intelide - ok
20:28:00.0458 3228 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\drivers\intelppm.sys
20:28:00.0467 3228 intelppm - ok
20:28:00.0523 3228 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
20:28:00.0543 3228 IPBusEnum - ok
20:28:00.0585 3228 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:28:00.0606 3228 IpFilterDriver - ok
20:28:00.0641 3228 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
20:28:00.0665 3228 iphlpsvc - ok
20:28:00.0699 3228 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
20:28:00.0707 3228 IPMIDRV - ok
20:28:00.0744 3228 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
20:28:00.0772 3228 IPNAT - ok
20:28:00.0817 3228 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
20:28:00.0839 3228 IRENUM - ok
20:28:00.0873 3228 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
20:28:00.0885 3228 isapnp - ok
20:28:00.0989 3228 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
20:28:01.0000 3228 iScsiPrt - ok
20:28:01.0032 3228 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:28:01.0040 3228 kbdclass - ok
20:28:01.0109 3228 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
20:28:01.0130 3228 kbdhid - ok
20:28:01.0188 3228 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:28:01.0196 3228 KeyIso - ok
20:28:01.0241 3228 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
20:28:01.0250 3228 KSecDD - ok
20:28:01.0264 3228 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
20:28:01.0273 3228 KSecPkg - ok
20:28:01.0337 3228 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
20:28:01.0365 3228 KtmRm - ok
20:28:01.0438 3228 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\System32\srvsvc.dll
20:28:01.0467 3228 LanmanServer - ok
20:28:01.0507 3228 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
20:28:01.0544 3228 LanmanWorkstation - ok
20:28:01.0613 3228 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
20:28:01.0637 3228 lltdio - ok
20:28:01.0690 3228 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
20:28:01.0711 3228 lltdsvc - ok
20:28:01.0751 3228 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
20:28:01.0780 3228 lmhosts - ok
20:28:01.0881 3228 LMIGuardianSvc (2375e7e01635fbccde2f796a9e078e07) C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
20:28:01.0894 3228 LMIGuardianSvc - ok
20:28:01.0937 3228 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
20:28:01.0943 3228 LMIInfo - ok
20:28:01.0966 3228 LMIMaint (b9c127273eaba403311854a8dcb6d0aa) C:\Program Files\LogMeIn\x86\RaMaint.exe
20:28:01.0974 3228 LMIMaint - ok
20:28:02.0122 3228 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\Windows\system32\DRIVERS\lmimirr.sys
20:28:02.0129 3228 lmimirr - ok
20:28:02.0174 3228 LMIRfsClientNP - ok
20:28:02.0197 3228 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\Windows\system32\drivers\LMIRfsDriver.sys
20:28:02.0203 3228 LMIRfsDriver - ok
20:28:02.0255 3228 LogMeIn (432618fa75b61059d2c57d6a7e55147a) C:\Program Files\LogMeIn\x86\LogMeIn.exe
20:28:02.0266 3228 LogMeIn - ok
20:28:02.0370 3228 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
20:28:02.0379 3228 LSI_FC - ok
20:28:02.0433 3228 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
20:28:02.0443 3228 LSI_SAS - ok
20:28:02.0466 3228 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
20:28:02.0478 3228 LSI_SAS2 - ok
20:28:02.0514 3228 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
20:28:02.0523 3228 LSI_SCSI - ok
20:28:02.0572 3228 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
20:28:02.0597 3228 luafv - ok
20:28:02.0628 3228 MBAMProtector - ok
20:28:02.0699 3228 MBAMService (056b19651bd7b7ce5f89a3ac46dbdc08) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:28:02.0717 3228 MBAMService - ok
20:28:02.0772 3228 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
20:28:02.0782 3228 Mcx2Svc - ok
20:28:02.0833 3228 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
20:28:02.0841 3228 megasas - ok
20:28:02.0908 3228 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
20:28:02.0933 3228 MegaSR - ok
20:28:03.0206 3228 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:28:03.0233 3228 MMCSS - ok
20:28:03.0269 3228 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
20:28:03.0293 3228 Modem - ok
20:28:03.0403 3228 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
20:28:03.0422 3228 monitor - ok
20:28:03.0478 3228 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
20:28:03.0485 3228 mouclass - ok
20:28:03.0544 3228 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
20:28:03.0552 3228 mouhid - ok
20:28:03.0599 3228 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
20:28:03.0607 3228 mountmgr - ok
20:28:03.0706 3228 MozillaMaintenance (8b4518efde714cd9fe61abb0ddd758b7) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:28:03.0715 3228 MozillaMaintenance - ok
20:28:03.0780 3228 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
20:28:03.0789 3228 mpio - ok
20:28:03.0831 3228 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
20:28:03.0862 3228 mpsdrv - ok
20:28:03.0896 3228 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
20:28:03.0908 3228 MRxDAV - ok
20:28:03.0962 3228 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:28:03.0981 3228 mrxsmb - ok
20:28:04.0023 3228 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:28:04.0033 3228 mrxsmb10 - ok
20:28:04.0093 3228 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:28:04.0102 3228 mrxsmb20 - ok
20:28:04.0148 3228 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
20:28:04.0156 3228 msahci - ok
20:28:04.0204 3228 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
20:28:04.0213 3228 msdsm - ok
20:28:04.0260 3228 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
20:28:04.0279 3228 MSDTC - ok
20:28:04.0320 3228 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
20:28:04.0338 3228 Msfs - ok
20:28:04.0356 3228 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
20:28:04.0374 3228 mshidkmdf - ok
20:28:04.0411 3228 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
20:28:04.0420 3228 msisadrv - ok
20:28:04.0460 3228 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
20:28:04.0484 3228 MSiSCSI - ok
20:28:04.0492 3228 msiserver - ok
20:28:04.0550 3228 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
20:28:04.0576 3228 MSKSSRV - ok
20:28:04.0598 3228 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
20:28:04.0624 3228 MSPCLOCK - ok
20:28:04.0655 3228 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
20:28:04.0683 3228 MSPQM - ok
20:28:04.0800 3228 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
20:28:04.0810 3228 MsRPC - ok
20:28:04.0854 3228 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
20:28:04.0861 3228 mssmbios - ok
20:28:04.0913 3228 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
20:28:04.0932 3228 MSTEE - ok
20:28:04.0967 3228 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
20:28:04.0987 3228 MTConfig - ok
20:28:05.0006 3228 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
20:28:05.0013 3228 Mup - ok
20:28:05.0065 3228 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
20:28:05.0094 3228 napagent - ok
20:28:05.0161 3228 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
20:28:05.0175 3228 NativeWifiP - ok
20:28:05.0202 3228 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
20:28:05.0222 3228 NDIS - ok
20:28:05.0240 3228 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
20:28:05.0267 3228 NdisCap - ok
20:28:05.0290 3228 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
20:28:05.0313 3228 NdisTapi - ok
20:28:05.0347 3228 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
20:28:05.0374 3228 Ndisuio - ok
20:28:05.0408 3228 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
20:28:05.0435 3228 NdisWan - ok
20:28:05.0489 3228 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
20:28:05.0506 3228 NDProxy - ok
20:28:05.0558 3228 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
20:28:05.0582 3228 NetBIOS - ok
20:28:05.0609 3228 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
20:28:05.0628 3228 NetBT - ok
20:28:05.0677 3228 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:28:05.0685 3228 Netlogon - ok
20:28:05.0730 3228 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
20:28:05.0752 3228 Netman - ok
20:28:05.0830 3228 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:28:05.0841 3228 NetMsmqActivator - ok
20:28:05.0859 3228 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:28:05.0866 3228 NetPipeActivator - ok
20:28:05.0883 3228 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
20:28:05.0912 3228 netprofm - ok
20:28:06.0005 3228 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:28:06.0012 3228 NetTcpActivator - ok
20:28:06.0027 3228 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:28:06.0039 3228 NetTcpPortSharing - ok
20:28:06.0161 3228 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
20:28:06.0170 3228 nfrd960 - ok
20:28:06.0216 3228 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
20:28:06.0241 3228 NlaSvc - ok
20:28:06.0286 3228 nmwcd (b0a67de1a128389aea4d42c5a56215fd) C:\Windows\system32\drivers\ccdcmb.sys
20:28:06.0320 3228 nmwcd - ok
20:28:06.0369 3228 nmwcdc (025c54f9f8c8bc1894ea38529c742c54) C:\Windows\system32\drivers\ccdcmbo.sys
20:28:06.0394 3228 nmwcdc - ok
20:28:06.0433 3228 nmwcdnsu (4f0de685a96dc843ccc8a861b3fac12d) C:\Windows\system32\drivers\nmwcdnsu.sys
20:28:06.0453 3228 nmwcdnsu - ok
20:28:06.0502 3228 nmwcdnsuc (578117c0c0cf10d99c8853e83c4bc63c) C:\Windows\system32\drivers\nmwcdnsuc.sys
20:28:06.0528 3228 nmwcdnsuc - ok
20:28:06.0571 3228 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
20:28:06.0597 3228 Npfs - ok
20:28:06.0640 3228 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
20:28:06.0659 3228 nsi - ok
20:28:06.0707 3228 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
20:28:06.0726 3228 nsiproxy - ok
20:28:06.0794 3228 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
20:28:06.0834 3228 Ntfs - ok
20:28:06.0848 3228 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
20:28:06.0866 3228 Null - ok
20:28:06.0908 3228 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
20:28:06.0917 3228 nvraid - ok
20:28:06.0954 3228 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
20:28:06.0963 3228 nvstor - ok
20:28:07.0019 3228 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
20:28:07.0036 3228 nv_agp - ok
20:28:07.0089 3228 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
20:28:07.0108 3228 ohci1394 - ok
20:28:07.0197 3228 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:28:07.0225 3228 p2pimsvc - ok
20:28:07.0264 3228 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
20:28:07.0277 3228 p2psvc - ok
20:28:07.0333 3228 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
20:28:07.0342 3228 Parport - ok
20:28:07.0359 3228 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
20:28:07.0368 3228 partmgr - ok
20:28:07.0381 3228 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
20:28:07.0395 3228 Parvdm - ok
20:28:07.0416 3228 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
20:28:07.0430 3228 PcaSvc - ok
20:28:07.0472 3228 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
20:28:07.0496 3228 pccsmcfd - ok
20:28:07.0542 3228 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
20:28:07.0552 3228 pci - ok
20:28:07.0567 3228 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
20:28:07.0574 3228 pciide - ok
20:28:07.0600 3228 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
20:28:07.0611 3228 pcmcia - ok
20:28:07.0632 3228 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
20:28:07.0640 3228 pcw - ok
20:28:07.0664 3228 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
20:28:07.0701 3228 PEAUTH - ok
20:28:07.0749 3228 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
20:28:07.0781 3228 PeerDistSvc - ok
20:28:07.0838 3228 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
20:28:07.0893 3228 pla - ok
20:28:08.0063 3228 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
20:28:08.0090 3228 PlugPlay - ok
20:28:08.0169 3228 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
20:28:08.0188 3228 PNRPAutoReg - ok
20:28:08.0204 3228 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:28:08.0214 3228 PNRPsvc - ok
20:28:08.0272 3228 Point32 (896d916de06f5502d301e8c4dc442ae8) C:\Windows\system32\DRIVERS\point32.sys
20:28:08.0278 3228 Point32 - ok
20:28:08.0318 3228 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
20:28:08.0349 3228 PolicyAgent - ok
20:28:08.0385 3228 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
20:28:08.0405 3228 Power - ok
20:28:08.0453 3228 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
20:28:08.0482 3228 PptpMiniport - ok
20:28:08.0619 3228 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
20:28:08.0642 3228 Processor - ok
20:28:08.0694 3228 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
20:28:08.0713 3228 ProfSvc - ok
20:28:08.0857 3228 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:28:08.0864 3228 ProtectedStorage - ok
20:28:08.0908 3228 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
20:28:08.0940 3228 Psched - ok
20:28:08.0982 3228 PStrip (bcf8d075fad718fea8ef6e281331a56e) C:\Windows\system32\drivers\pstrip.sys
20:28:08.0989 3228 PStrip - ok
20:28:09.0027 3228 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
20:28:09.0069 3228 ql2300 - ok
20:28:09.0090 3228 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
20:28:09.0098 3228 ql40xx - ok
20:28:09.0140 3228 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
20:28:09.0165 3228 QWAVE - ok
20:28:09.0212 3228 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
20:28:09.0224 3228 QWAVEdrv - ok
20:28:09.0242 3228 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
20:28:09.0261 3228 RasAcd - ok
20:28:09.0282 3228 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:28:09.0300 3228 RasAgileVpn - ok
20:28:09.0333 3228 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
20:28:09.0359 3228 RasAuto - ok
20:28:09.0377 3228 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:28:09.0402 3228 Rasl2tp - ok
20:28:09.0420 3228 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
20:28:09.0448 3228 RasMan - ok
20:28:09.0467 3228 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
20:28:09.0487 3228 RasPppoe - ok
20:28:09.0500 3228 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
20:28:09.0523 3228 RasSstp - ok
20:28:09.0545 3228 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
20:28:09.0576 3228 rdbss - ok
20:28:09.0599 3228 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
20:28:09.0608 3228 rdpbus - ok
20:28:09.0630 3228 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:28:09.0658 3228 RDPCDD - ok
20:28:09.0839 3228 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
20:28:09.0854 3228 RDPDR - ok
20:28:09.0880 3228 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
20:28:09.0907 3228 RDPENCDD - ok
20:28:09.0922 3228 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
20:28:09.0944 3228 RDPREFMP - ok
20:28:09.0992 3228 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
20:28:10.0016 3228 RdpVideoMiniport - ok
20:28:10.0051 3228 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
20:28:10.0081 3228 RDPWD - ok
20:28:10.0123 3228 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
20:28:10.0133 3228 rdyboost - ok
20:28:10.0168 3228 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
20:28:10.0187 3228 RemoteAccess - ok
20:28:10.0219 3228 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
20:28:10.0239 3228 RemoteRegistry - ok
20:28:10.0284 3228 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
20:28:10.0311 3228 RpcEptMapper - ok
20:28:10.0328 3228 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
20:28:10.0347 3228 RpcLocator - ok
20:28:10.0368 3228 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
20:28:10.0391 3228 RpcSs - ok
20:28:10.0437 3228 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
20:28:10.0462 3228 rspndr - ok
20:28:10.0496 3228 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\Windows\system32\DRIVERS\Rt86win7.sys
20:28:10.0528 3228 RTL8167 - ok
20:28:10.0560 3228 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
20:28:10.0578 3228 s3cap - ok
20:28:10.0747 3228 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:28:10.0755 3228 SamSs - ok
20:28:10.0799 3228 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
20:28:10.0808 3228 sbp2port - ok
20:28:10.0842 3228 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
20:28:10.0870 3228 SCardSvr - ok
20:28:10.0887 3228 SCDEmu - ok
20:28:10.0908 3228 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
20:28:10.0933 3228 scfilter - ok
20:28:10.0982 3228 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
20:28:11.0020 3228 Schedule - ok
20:28:11.0072 3228 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
20:28:11.0089 3228 SCPolicySvc - ok
20:28:11.0100 3228 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
20:28:11.0127 3228 SDRSVC - ok
20:28:11.0170 3228 secdrv (c71394d99a04ca76484492f590c9cba5) C:\Windows\system32\drivers\secdrv.sys
20:28:11.0181 3228 secdrv ( UnsignedFile.Multi.Generic ) - warning
20:28:11.0181 3228 secdrv - detected UnsignedFile.Multi.Generic (1)
20:28:11.0212 3228 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
20:28:11.0238 3228 seclogon - ok
20:28:11.0256 3228 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
20:28:11.0283 3228 SENS - ok
20:28:11.0316 3228 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
20:28:11.0338 3228 SensrSvc - ok
20:28:11.0379 3228 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
20:28:11.0388 3228 Serenum - ok
20:28:11.0408 3228 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
20:28:11.0427 3228 Serial - ok
20:28:11.0447 3228 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
20:28:11.0455 3228 sermouse - ok
20:28:11.0547 3228 ServiceLayer (8c1f87f5fdd92229d1754b98f073913f) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
20:28:11.0570 3228 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
20:28:11.0570 3228 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
20:28:11.0663 3228 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
20:28:11.0695 3228 SessionEnv - ok
20:28:11.0738 3228 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
20:28:11.0758 3228 sffdisk - ok
20:28:11.0775 3228 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
20:28:11.0785 3228 sffp_mmc - ok
20:28:11.0797 3228 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
20:28:11.0820 3228 sffp_sd - ok
20:28:11.0836 3228 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
20:28:11.0858 3228 sfloppy - ok
20:28:11.0898 3228 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
20:28:11.0927 3228 SharedAccess - ok
20:28:12.0128 3228 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
20:28:12.0177 3228 ShellHWDetection - ok
20:28:12.0229 3228 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
20:28:12.0238 3228 sisagp - ok
20:28:12.0255 3228 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
20:28:12.0263 3228 SiSRaid2 - ok
20:28:12.0280 3228 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
20:28:12.0289 3228 SiSRaid4 - ok
20:28:12.0361 3228 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Users\Karel\Desktop\Updater\Updater.exe
20:28:12.0369 3228 SkypeUpdate - ok
20:28:12.0394 3228 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
20:28:12.0415 3228 Smb - ok
20:28:12.0468 3228 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
20:28:12.0479 3228 SNMPTRAP - ok
20:28:12.0523 3228 speedfan (3fa2e254bfbce52b3c6f1bf23aab6911) C:\Windows\system32\speedfan.sys
20:28:12.0532 3228 speedfan - ok
20:28:12.0569 3228 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
20:28:12.0577 3228 spldr - ok
20:28:12.0596 3228 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
20:28:12.0626 3228 Spooler - ok
20:28:12.0706 3228 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
20:28:12.0793 3228 sppsvc - ok
20:28:12.0843 3228 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
20:28:12.0862 3228 sppuinotify - ok
20:28:12.0914 3228 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
20:28:12.0948 3228 srv - ok
20:28:12.0968 3228 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
20:28:12.0990 3228 srv2 - ok
20:28:13.0008 3228 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
20:28:13.0018 3228 srvnet - ok
20:28:13.0062 3228 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
20:28:13.0084 3228 SSDPSRV - ok
20:28:13.0107 3228 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
20:28:13.0133 3228 SstpSvc - ok
20:28:13.0165 3228 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
20:28:13.0174 3228 stexstor - ok
20:28:13.0213 3228 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
20:28:13.0240 3228 StiSvc - ok
20:28:13.0273 3228 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
20:28:13.0282 3228 storflt - ok
20:28:13.0306 3228 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
20:28:13.0315 3228 storvsc - ok
20:28:13.0462 3228 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
20:28:13.0468 3228 swenum - ok
20:28:13.0507 3228 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
20:28:13.0542 3228 swprv - ok
20:28:13.0558 3228 Synth3dVsc (f2ad8960812fd111e20e84659ef19d43) C:\Windows\system32\drivers\synth3dvsc.sys
20:28:13.0568 3228 Synth3dVsc - ok
20:28:13.0600 3228 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
20:28:13.0641 3228 SysMain - ok
20:28:13.0677 3228 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
20:28:13.0694 3228 TabletInputService - ok
20:28:13.0709 3228 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
20:28:13.0730 3228 TapiSrv - ok
20:28:13.0746 3228 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
20:28:13.0766 3228 TBS - ok
20:28:13.0820 3228 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
20:28:13.0861 3228 Tcpip - ok
20:28:13.0903 3228 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
20:28:13.0925 3228 TCPIP6 - ok
20:28:13.0962 3228 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
20:28:13.0984 3228 tcpipreg - ok
20:28:14.0007 3228 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
20:28:14.0015 3228 TDPIPE - ok
20:28:14.0044 3228 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
20:28:14.0052 3228 TDTCP - ok
20:28:14.0077 3228 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
20:28:14.0106 3228 tdx - ok
20:28:14.0235 3228 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
20:28:14.0302 3228 TeamViewer7 - ok
20:28:14.0393 3228 teamviewervpn (9101fffcfccd1a30e870a5b8a9091b10) C:\Windows\system32\DRIVERS\teamviewervpn.sys
20:28:14.0416 3228 teamviewervpn - ok
20:28:14.0449 3228 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
20:28:14.0456 3228 TermDD - ok
20:28:14.0489 3228 terminpt (052306fd76793d5d5ab5d9891fd1adbb) C:\Windows\system32\drivers\terminpt.sys
20:28:14.0517 3228 terminpt - ok
20:28:14.0556 3228 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
20:28:14.0581 3228 TermService - ok
20:28:14.0597 3228 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
20:28:14.0616 3228 Themes - ok
20:28:14.0645 3228 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:28:14.0664 3228 THREADORDER - ok
20:28:14.0690 3228 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
20:28:14.0721 3228 TrkWks - ok
20:28:14.0761 3228 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
20:28:14.0780 3228 TrustedInstaller - ok
20:28:14.0836 3228 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:28:14.0858 3228 tssecsrv - ok
20:28:14.0873 3228 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
20:28:14.0899 3228 TsUsbFlt - ok
20:28:14.0922 3228 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
20:28:14.0941 3228 TsUsbGD - ok
20:28:14.0980 3228 tsusbhub (045acb987c650d8186c6b4a692223860) C:\Windows\system32\drivers\tsusbhub.sys
20:28:14.0989 3228 tsusbhub - ok
20:28:15.0010 3228 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
20:28:15.0028 3228 tunnel - ok
20:28:15.0045 3228 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
20:28:15.0054 3228 uagp35 - ok
20:28:15.0076 3228 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
20:28:15.0096 3228 udfs - ok
20:28:15.0131 3228 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
20:28:15.0151 3228 UI0Detect - ok
20:28:15.0174 3228 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
20:28:15.0182 3228 uliagpkx - ok
20:28:15.0214 3228 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
20:28:15.0230 3228 umbus - ok
20:28:15.0253 3228 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
20:28:15.0273 3228 UmPass - ok
20:28:15.0308 3228 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
20:28:15.0327 3228 UmRdpService - ok
20:28:15.0348 3228 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
20:28:15.0372 3228 upnphost - ok
20:28:15.0423 3228 upperdev (78b74af8727a28c128e164e9b53a5413) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
20:28:15.0450 3228 upperdev - ok
20:28:15.0480 3228 usbbus (9419faac6552a51542dbba02971c841c) C:\Windows\system32\DRIVERS\lgusbbus.sys
20:28:15.0509 3228 usbbus - ok
20:28:15.0539 3228 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
20:28:15.0560 3228 usbccgp - ok
20:28:15.0587 3228 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
20:28:15.0597 3228 usbcir - ok
20:28:15.0625 3228 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\Windows\system32\DRIVERS\lgusbdiag.sys
20:28:15.0632 3228 UsbDiag - ok
20:28:15.0668 3228 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
20:28:15.0677 3228 usbehci - ok
20:28:15.0721 3228 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
20:28:15.0732 3228 usbhub - ok
20:28:15.0754 3228 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\Windows\system32\DRIVERS\lgusbmodem.sys
20:28:15.0772 3228 USBModem - ok
20:28:15.0812 3228 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
20:28:15.0829 3228 usbohci - ok
20:28:15.0868 3228 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
20:28:15.0878 3228 usbprint - ok
20:28:15.0901 3228 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
20:28:15.0912 3228 usbscan - ok
20:28:15.0938 3228 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\Windows\system32\drivers\usbser.sys
20:28:15.0948 3228 usbser - ok
20:28:15.0980 3228 UsbserFilt (4f8fbc51a1c0a17310846b417a447f91) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
20:28:15.0998 3228 UsbserFilt - ok
20:28:16.0033 3228 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:28:16.0048 3228 USBSTOR - ok
20:28:16.0081 3228 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
20:28:16.0090 3228 usbuhci - ok
20:28:16.0127 3228 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
20:28:16.0145 3228 UxSms - ok
20:28:16.0175 3228 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:28:16.0183 3228 VaultSvc - ok
20:28:16.0228 3228 VBoxDrv (fb743efd8a977ea2aff7e3a65f79979f) C:\Windows\system32\DRIVERS\VBoxDrv.sys
20:28:16.0238 3228 VBoxDrv - ok
20:28:16.0269 3228 VBoxNetAdp (352385f05c1c4770447d5d3fa0438627) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
20:28:16.0276 3228 VBoxNetAdp - ok
20:28:16.0312 3228 VBoxNetFlt (a67d188271dd906143d31647f520c907) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
20:28:16.0319 3228 VBoxNetFlt - ok
20:28:16.0361 3228 VBoxUSB (9983e17911e0b3ec2a6f6c84ed61e83b) C:\Windows\system32\Drivers\VBoxUSB.sys
20:28:16.0369 3228 VBoxUSB - ok
20:28:16.0429 3228 VBoxUSBMon (ea1d9ad2f75043a3ede05aa56bb9dcb9) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
20:28:16.0438 3228 VBoxUSBMon - ok
20:28:16.0476 3228 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
20:28:16.0485 3228 vdrvroot - ok
20:28:16.0523 3228 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
20:28:16.0555 3228 vds - ok
20:28:16.0578 3228 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
20:28:16.0603 3228 vga - ok
20:28:16.0647 3228 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
20:28:16.0666 3228 VgaSave - ok
20:28:16.0687 3228 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
20:28:16.0699 3228 vhdmp - ok
20:28:16.0725 3228 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
20:28:16.0733 3228 viaagp - ok
20:28:16.0762 3228 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
20:28:16.0780 3228 ViaC7 - ok
20:28:16.0799 3228 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
20:28:16.0807 3228 viaide - ok
20:28:16.0849 3228 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
20:28:16.0860 3228 vmbus - ok
20:28:16.0884 3228 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
20:28:16.0906 3228 VMBusHID - ok
20:28:16.0921 3228 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
20:28:16.0930 3228 volmgr - ok
20:28:16.0949 3228 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
20:28:16.0961 3228 volmgrx - ok
20:28:16.0976 3228 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
20:28:16.0987 3228 volsnap - ok
20:28:17.0039 3228 vsbus (1c8a783e90c34d205596f1ab4a97e261) C:\Windows\system32\DRIVERS\vsb.sys
20:28:17.0044 3228 vsbus ( UnsignedFile.Multi.Generic ) - warning
20:28:17.0044 3228 vsbus - detected UnsignedFile.Multi.Generic (1)
20:28:17.0068 3228 vserial (3377daa1cb8cac46a538c236f5f3d58f) C:\Windows\system32\DRIVERS\vserial.sys
20:28:17.0083 3228 vserial ( UnsignedFile.Multi.Generic ) - warning
20:28:17.0083 3228 vserial - detected UnsignedFile.Multi.Generic (1)
20:28:17.0130 3228 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
20:28:17.0140 3228 vsmraid - ok
20:28:17.0183 3228 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
20:28:17.0223 3228 VSS - ok
20:28:17.0265 3228 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
20:28:17.0276 3228 vwifibus - ok
20:28:17.0298 3228 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
20:28:17.0330 3228 W32Time - ok
20:28:17.0363 3228 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
20:28:17.0382 3228 WacomPen - ok
20:28:17.0408 3228 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
20:28:17.0431 3228 WANARP - ok
20:28:17.0434 3228 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
20:28:17.0452 3228 Wanarpv6 - ok
20:28:17.0498 3228 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
20:28:17.0541 3228 WatAdminSvc - ok
20:28:17.0610 3228 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
20:28:17.0656 3228 wbengine - ok
20:28:17.0680 3228 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
20:28:17.0702 3228 WbioSrvc - ok
20:28:17.0723 3228 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
20:28:17.0738 3228 wcncsvc - ok
20:28:17.0771 3228 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
20:28:17.0803 3228 WcsPlugInService - ok
20:28:17.0839 3228 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
20:28:17.0848 3228 Wd - ok
20:28:17.0882 3228 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
20:28:17.0897 3228 Wdf01000 - ok
20:28:17.0932 3228 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:28:17.0966 3228 WdiServiceHost - ok
20:28:17.0970 3228 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:28:17.0980 3228 WdiSystemHost - ok
20:28:17.0999 3228 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
20:28:18.0021 3228 WebClient - ok
20:28:18.0044 3228 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
20:28:18.0066 3228 Wecsvc - ok
20:28:18.0081 3228 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
20:28:18.0100 3228 wercplsupport - ok
20:28:18.0130 3228 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
20:28:18.0149 3228 WerSvc - ok
20:28:18.0198 3228 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
20:28:18.0217 3228 WfpLwf - ok
20:28:18.0238 3228 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
20:28:18.0246 3228 WIMMount - ok
20:28:18.0326 3228 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
20:28:18.0350 3228 WinDefend - ok
20:28:18.0356 3228 WinHttpAutoProxySvc - ok
20:28:18.0409 3228 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
20:28:18.0431 3228 Winmgmt - ok
20:28:18.0481 3228 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
20:28:18.0536 3228 WinRM - ok
20:28:18.0588 3228 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
20:28:18.0600 3228 WinUsb - ok
20:28:18.0627 3228 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
20:28:18.0650 3228 Wlansvc - ok
20:28:18.0764 3228 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:28:18.0807 3228 wlidsvc - ok
20:28:18.0924 3228 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
20:28:18.0977 3228 WmiAcpi - ok
20:28:19.0041 3228 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
20:28:19.0118 3228 wmiApSrv - ok
20:28:19.0198 3228 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:28:19.0239 3228 WMPNetworkSvc - ok
20:28:19.0336 3228 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
20:28:19.0359 3228 WPCSvc - ok
20:28:19.0377 3228 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
20:28:19.0406 3228 WPDBusEnum - ok
20:28:19.0445 3228 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
20:28:19.0474 3228 ws2ifsl - ok
20:28:19.0517 3228 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll
20:28:19.0539 3228 wscsvc - ok
20:28:19.0547 3228 WSearch - ok
20:28:19.0603 3228 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
20:28:19.0661 3228 wuauserv - ok
20:28:19.0715 3228 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
20:28:19.0744 3228 WudfPf - ok
20:28:19.0771 3228 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:28:19.0796 3228 WUDFRd - ok
20:28:19.0852 3228 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
20:28:19.0871 3228 wudfsvc - ok
20:28:19.0887 3228 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
20:28:19.0976 3228 WwanSvc - ok
20:28:20.0032 3228 WZCOOK - ok
20:28:20.0065 3228 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:28:20.0205 3228 \Device\Harddisk0\DR0 - ok
20:28:20.0208 3228 Boot (0x1200) (b2eb81a76a44f94c43339d6de37477db) \Device\Harddisk0\DR0\Partition0
20:28:20.0209 3228 \Device\Harddisk0\DR0\Partition0 - ok
20:28:20.0212 3228 Boot (0x1200) (99bbc87b334c5590de549c435adba53e) \Device\Harddisk0\DR0\Partition1
20:28:20.0213 3228 \Device\Harddisk0\DR0\Partition1 - ok
20:28:20.0232 3228 Boot (0x1200) (cbe98a2e0bf24cf83a2d8b4f46c030d6) \Device\Harddisk0\DR0\Partition2
20:28:20.0233 3228 \Device\Harddisk0\DR0\Partition2 - ok
20:28:20.0234 3228 ============================================================
20:28:20.0234 3228 Scan finished
20:28:20.0234 3228 ============================================================
20:28:20.0244 3220 Detected object count: 11
20:28:20.0244 3220 Actual detected object count: 11
20:29:03.0183 3220 Adobe Licensing Console ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0183 3220 Adobe Licensing Console ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0185 3220 DrvAgent32 ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0185 3220 DrvAgent32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0187 3220 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0187 3220 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0189 3220 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0189 3220 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0192 3220 FlashUSB ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0192 3220 FlashUSB ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0220 3220 giveio ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0220 3220 giveio ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0222 3220 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0222 3220 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0224 3220 secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0224 3220 secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0226 3220 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0227 3220 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0229 3220 vsbus ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0229 3220 vsbus ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:03.0231 3220 vserial ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:03.0231 3220 vserial ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:23.0743 3180 Deinitialize success

Proc je v logu s toho tdsskilleru Processor architecture: Intel x86 kdyz mam AMD ??

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

• Ukoncete vsechny programy
• Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
• Pockejte na dokonceni PreScanu
• Zvolte moznost Prohledat (scan)
• Po dokonceni skenu kliknete na Zpráva (Report)- otevre se log, ten sem vlozte

Tady to máte

RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v: Nouzový režim s prací v síti
Uživatel: Karel [Práva správce]
Mód: Kontrola -- Datum: 04/17/2012 21:08:43

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 4 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NENAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST500DM002-1BC142 ATA Device +++++
--- User ---
[MBR] 279c99afb4eb6a7e322c73acabd48679
[BSP] 81a3807666fe92854a4c2419f13754ae : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 64 | Size: 51002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 104454691 | Size: 425934 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1].txt >>
RKreport[1].txt

Spustte znovu RogueKiller

• Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
• Zvolte moznost Prohledat a pote Smazat a nasledne Zprava - otevre se log, ten sem vlozte
• Pak kliknete na Oprava Host a Zprava - otevre se log, ten sem vlozte

Zkuste spustit ComboFix

RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v: Nouzový režim s prací v síti
Uživatel: Karel [Práva správce]
Mód: Odebrat -- Datum: 04/17/2012 21:24:50

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 4 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NENAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST500DM002-1BC142 ATA Device +++++
--- User ---
[MBR] 279c99afb4eb6a7e322c73acabd48679
[BSP] 81a3807666fe92854a4c2419f13754ae : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 64 | Size: 51002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 104454691 | Size: 425934 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt





RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v: Nouzový režim s prací v síti
Uživatel: Karel [Práva správce]
Mód: Oprava HOSTS -- Datum: 04/17/2012 21:25:41

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Ovladač: [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤


¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt