VIRY.CZ

Přeji všem krásné sváteční odpoledne. V souvislosti s opravou PC mého kolegy (http://forum.viry.cz/viewtopic.php?p=1208360#p1208360) jsem trochu znejistěl nad čistotou mého vlastního PC z důvodu přenosů potřebných utilit přes flash disk. Někde jsem se zde dočetl že by tímto způsobem nemělo dojít k přenosu infekce ale dnes jsem zjistil že nemohu zapnout obnovení systému. Vyhazuje to tuto chybu: http://www.imagehosting.cz/?v=chyba1yhy.jpg

Proto moc prosím o kontrolu logu.

Předem děkuji.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Tomáš at 2013-04-01 17:12:10
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 56 GB (49%) free of 114 GB
Total RAM: 3764 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:12:37, on 1.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16521)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Program Files\trend micro\Tomáš.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\SysWOW64\Userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Přidat do Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Virtuální klávesnice - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Kontrola adres URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NDAS Service (ndassvc) - XIMETA, Inc. - C:\Program Files\NDAS\System\ndassvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10371 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" -r
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\NDAS\System\ndassvc.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-dcfb28ee-0c6d-497b-96b4-78005ef00563 -SystemEventPortName:HostProcess-656554a2-35b1-4142-a795-cf420e6a175a -IoCancelEventPortName:HostProcess-331dc0be-713f-4361-bebc-51c79b317150 -NonStateChangingEventPortName:HostProcess-7966a7c6-31ed-4152-840f-e917fd6d730c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9ff4c673-c01e-46df-aae6-65f109911547 -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe"
"C:\Users\Tomáš\Desktop\RSITx64.exe"
wmiadap.exe /F /T /R
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2013-03-27 205376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2012-08-17 652216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2012-08-17 983992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll [2012-08-17 510392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2013-03-27 877680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2013-03-27 2324576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll [2012-08-17 580536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2012-08-17 537528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2012-08-17 811960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll [2012-08-17 424888]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2013-03-27 704624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll [2012-08-17 484280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PLFSetI"=C:\Windows\PLFSetI.exe [2013-01-23 206208]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-03-31 2735400]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-04-21 166424]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-04-21 413720]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-04-21 391192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyDrive]
C:\Users\Tomáš\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2013-03-30 256600]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-02-25 1289296]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-01-11 356376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-04-21 269824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0
"RestrictRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=0
"NoDriveAutoRun"=3
"RestrictRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-04-01 17:12:11 ----D---- C:\Program Files\trend micro
2013-04-01 17:12:10 ----D---- C:\rsit
2013-03-31 07:57:54 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-03-30 13:36:45 ----D---- C:\ProgramData\Logs
2013-03-30 09:12:49 ----D---- C:\Program Files (x86)\ICQ7M
2013-03-27 19:52:36 ----D---- C:\Program Files (x86)\Microsoft SkyDrive
2013-03-27 19:52:27 ----D---- C:\ProgramData\Microsoft SkyDrive
2013-03-27 19:37:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2013-03-27 19:29:39 ----D---- C:\Program Files\Microsoft Office 15
2013-03-24 19:34:02 ----D---- C:\Users\Tomáš\AppData\Roaming\U3
2013-03-24 08:59:02 ----D---- C:\Program Files (x86)\MSECache
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\url.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-03-15 06:27:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\wininet.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\wextract.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\webcheck.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\vbscript.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\urlmon.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\url.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\occache.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\msrating.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\msls31.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\mshtml.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\mshta.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\msfeeds.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\jsproxy.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\jscript9.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\jscript.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\inseng.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\imgutil.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\iexpress.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\ieui.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\iesysprep.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\iesetup.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\iertutil.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\iernonce.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\iepeers.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\ieframe.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\ieapfltr.dat
2013-03-15 06:27:58 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\ie4uinit.exe
2013-03-15 06:27:58 ----A---- C:\Windows\system32\icardie.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\elshyph.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-15 06:27:58 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-15 06:26:28 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-03-09 17:43:59 ----D---- C:\Program Files (x86)\Adobe
2013-03-06 07:19:08 ----D---- C:\Users\Tomáš\AppData\Roaming\ICQ-Profile
2013-03-04 20:45:08 ----RASHD---- C:\Autorun.inf
2013-03-03 20:16:51 ----D---- C:\Program Files (x86)\VideoLAN
2013-03-03 20:10:22 ----D---- C:\PFiles

======List of files/folders modified in the last 1 month======

2013-04-01 17:12:37 ----D---- C:\Windows\Temp
2013-04-01 17:12:11 ----D---- C:\Program Files
2013-04-01 17:11:05 ----D---- C:\Windows\system32\config
2013-04-01 17:10:29 ----D---- C:\ProgramData\Kaspersky Lab
2013-04-01 17:08:13 ----A---- C:\Windows\SYSWOW64\log.txt
2013-04-01 11:05:13 ----D---- C:\Users\Tomáš\AppData\Roaming\gtk-2.0
2013-04-01 08:55:29 ----D---- C:\Users\Tomáš\AppData\Roaming\ICQ
2013-04-01 08:31:15 ----D---- C:\Windows\System32
2013-04-01 08:31:15 ----D---- C:\Windows\inf
2013-04-01 08:31:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-03-30 22:15:53 ----D---- C:\Windows
2013-03-30 13:48:29 ----SHD---- C:\Windows\Installer
2013-03-30 13:48:15 ----AD---- C:\ProgramData\TEMP
2013-03-30 13:36:45 ----HD---- C:\ProgramData
2013-03-30 12:15:43 ----D---- C:\Program Files (x86)
2013-03-30 11:28:22 ----D---- C:\Windows\Microsoft.NET
2013-03-30 11:26:28 ----RSD---- C:\Windows\assembly
2013-03-30 10:05:55 ----D---- C:\Windows\system32\Tasks
2013-03-30 09:33:07 ----D---- C:\Windows\SysWOW64
2013-03-30 09:32:42 ----D---- C:\Program Files (x86)\Common Files
2013-03-30 09:30:09 ----D---- C:\Windows\Panther
2013-03-30 09:30:09 ----D---- C:\Windows\Logs
2013-03-30 09:30:09 ----D---- C:\Windows\debug
2013-03-30 09:22:52 ----D---- C:\Program Files (x86)\Microsoft Office
2013-03-30 09:22:51 ----RSD---- C:\Windows\Fonts
2013-03-30 09:22:48 ----D---- C:\Windows\ShellNew
2013-03-30 09:18:54 ----D---- C:\Windows\system32\catroot2
2013-03-30 09:13:03 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-03-30 09:10:53 ----D---- C:\Users\Tomáš\AppData\Roaming\Notepad++
2013-03-30 09:10:01 ----D---- C:\Program Files\CCleaner
2013-03-30 08:10:39 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2013-03-30 08:10:16 ----D---- C:\ProgramData\Skype
2013-03-30 08:10:12 ----RD---- C:\Program Files (x86)\Skype
2013-03-27 20:04:39 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2013-03-27 19:52:05 ----D---- C:\Windows\system32\DriverStore
2013-03-27 19:37:03 ----SD---- C:\ProgramData\Microsoft
2013-03-27 19:37:03 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-03-24 16:22:42 ----D---- C:\Windows\system32\drivers
2013-03-24 16:22:42 ----D---- C:\Windows\system32\catroot
2013-03-23 07:30:37 ----D---- C:\Windows\winsxs
2013-03-16 10:01:19 ----A---- C:\Windows\psb_soft.ini
2013-03-15 07:41:43 ----D---- C:\Windows\rescache
2013-03-15 07:15:32 ----D---- C:\Windows\SYSWOW64\migration
2013-03-15 07:15:32 ----D---- C:\Windows\SYSWOW64\en-US
2013-03-15 07:15:32 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-03-15 07:15:32 ----D---- C:\Windows\system32\cs-CZ
2013-03-15 07:15:32 ----D---- C:\Program Files\Internet Explorer
2013-03-15 07:15:32 ----D---- C:\Program Files (x86)\Internet Explorer
2013-03-15 07:15:31 ----D---- C:\Windows\system32\migration
2013-03-15 07:15:31 ----D---- C:\Windows\system32\en-US
2013-03-15 07:15:31 ----D---- C:\Windows\PolicyDefinitions
2013-03-15 06:31:00 ----A---- C:\Windows\system32\MRT.exe
2013-03-14 07:27:01 ----D---- C:\Windows\AppPatch
2013-03-12 19:39:28 ----D---- C:\Windows\SoftwareDistribution
2013-03-10 11:00:59 ----D---- C:\Windows\system32\LogFiles
2013-03-10 07:28:50 ----D---- C:\Windows\Tasks
2013-03-09 22:48:46 ----D---- C:\Windows\system32\wdi
2013-03-09 17:44:35 ----D---- C:\ProgramData\Adobe
2013-03-06 07:21:13 ----D---- C:\Program Files (x86)\Notepad++
2013-03-04 20:44:27 ----SHD---- C:\$Recycle.Bin
2013-03-02 20:54:30 ----D---- C:\Program Files (x86)\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-12-17 538136]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2012-06-19 458584]
R0 lfsfilt;NDAS Lean File Sharing Service; C:\Windows\system32\DRIVERS\lfsfilt.sys [2009-02-10 353256]
R0 lpx;LPX Protocol; C:\Windows\system32\DRIVERS\lpx.sys [2009-02-10 125416]
R0 ndasfs;ndasfs; C:\Windows\system32\DRIVERS\ndasfs.sys [2009-02-10 367080]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2013-01-11 613720]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2012-08-02 28504]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2013-01-11 54104]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2012-08-13 178008]
R1 ndasfat;NDAS FAT File System Service; C:\Windows\system32\DRIVERS\ndasfat.sys [2009-02-10 565224]
R1 ndasrofs;NDAS ROFS File System Service; C:\Windows\system32\DRIVERS\ndasrofs.sys [2009-02-10 1054696]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-04-21 6406144]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-04-21 188928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-01-06 158848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-01-19 2242720]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-04-21 10322848]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2013-01-11 29016]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2013-01-11 29528]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]
R3 ndasbus;NDAS Bus Driver; C:\Windows\system32\DRIVERS\ndasbus.sys [2009-02-10 151528]
R3 ndasscsi;NDAS SCSI Miniport Driver; C:\Windows\system32\DRIVERS\ndasscsi.sys [2009-02-10 357864]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-03-31 1424944]
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver; \??\C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 []
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-12-01 40448]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2010-07-21 52264]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2010-07-21 98344]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2010-07-21 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2010-07-21 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-07-21 21160]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-02-06 102936]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-02-06 203544]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-04-21 202752]
R2 AVP;Služba Kaspersky Anti-Virus; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-01-11 356376]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-10-02 873248]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-02-25 325200]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2010-01-20 819232]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 268824]
R2 ndassvc;NDAS Service; C:\Program Files\NDAS\System\ndassvc.exe [2009-02-10 528872]
R2 OfficeSvc;Služba Microsoft Office; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-02-21 1860264]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2320920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-23 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-23 136176]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-21 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2013-02-21 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-23 1255736]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]

-----------------EOF-----------------

Nejsem vyškolena na log z pc, umim jenom poradit co jsem proživala ze svych zkušenosti a udalostmi na moji pc sestavě, ale zkuste si přečist tohle, možna, že vam to pomůže co jsem našla, na log se musi podivat tady zkušeny radce nebo moderator jestli tam nebude virus nebo něco važnyho......

Jenom taka poznamka, všimnula jsem si, že mate antivirus kaspersky nevim jak u vas, ale ja bych ho v životě nechtěla, diky jemu se mi zhroutil cely system a stratili se mi duležity data + zaloha, pokud ho budete davat pryč velice ho opatrně a řadně odinstalujte, jinak je to žrout na system....

Tak tady jsem něco našla

http://answers.microsoft.com/cs-cz/wind ... da59862a90

http://www.zive.cz/poradna/nejde-spusti ... tanswers=1

Snad vam to pomůže pokud ne, počkejte.... někdo se vas tady ujme, naschle....

Děkuji za odpověď a snahu poradit Nicméně já taky googlil ale bohužel vše se míjí účinkem. Návody jsou různé a jediné co je zmiňováno téměř všude je možnost virové infekce. Přesto že můj systém je cca dva měsíce po reinstalaci z důvodu výměny hard disku za SSD tak tuto variantu musím připustit. Jednak mohlo dojít k přenosu infekce prostřednictvím již zmiňovaného FD v souvislosti s odvirováním PC dvou lidí z mého okolí, ale také proto že jako admin fóra z jinou problematikou dost často kontroluji odkazy uživatelů zda neobsahují nelegální soft což znamená že příslušné soubory musím stahovat.
Co se týká antiviru tak jsem dlouho používal Avast. Protože je ale můj PC z výše uvedených důvodu rizikový na nákazu tak jsem se nechal inspirovat radami zdejších odborníků a rozhodoval se mezi Nortonem a Kasperskym. Kaspersky vyhrál z poněkud malicherného důvodu o kterém raději nebudu psát a taky pro to že ho v placené verzi používám ke své spokojenosti na androidím telefonu. Vzhledem k mé konfiguraci zpomalení ani zátěž sytému nepociťuji a zatím nemohu říct nic proti němu.
Já jsem původně to obnovení systému vypnul záměrně a to právě při reinstalaci. Někde jsem našel ideální nastavení pro SSD disky a tam bylo toto doporučeno. Jenže v souvislosti s problémy mého kolegy jsem dospěl k názoru že lepší bude obnovení zapnout což se mi nepodařilo. Ještě mě napadla možná souvislost s používáním Tune up utilities. Měl jsem je ale skončilo mi předplatné a vzhledem k tomu že zdejšími odborníky není moc doporučováno tak jsem již licenci neprodlužoval.

ahoj,
1. Kaspersky neries - patri medzi spicku (u kolegyni islo o smutnu zhodu nahod )
2. virus tam nemas
3. vycisti PC s CCleanerom - registre
4. preventivne vloz log z TDSSKiller
5. suvislost s TuneUP je vysoko pravdepodobna

Děkuji za occhotu. Registry jsem CC Cleanerem vyčistil (dělám pravidelně). Zde je log TDSSK který se zdá je čistý. Pokud správně předpokládám tak naboření systému TuneUPem znamená pokus o opravu nebo opět reinstal. Sice to až takový problém není ale dělat to každé dva měsíce mě moc nebaví. A hlavně to nebaví mojí ženu když u toho sedím.

08:57:32.0015 2340 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:57:32.0358 2340 ============================================================
08:57:32.0358 2340 Current date / time: 2013/04/03 08:57:32.0358
08:57:32.0358 2340 SystemInfo:
08:57:32.0358 2340
08:57:32.0358 2340 OS Version: 6.1.7601 ServicePack: 1.0
08:57:32.0358 2340 Product type: Workstation
08:57:32.0358 2340 ComputerName: TOMÁŠ-NTB
08:57:32.0358 2340 UserName: Tomáš
08:57:32.0358 2340 Windows directory: C:\Windows
08:57:32.0358 2340 System windows directory: C:\Windows
08:57:32.0358 2340 Running under WOW64
08:57:32.0358 2340 Processor architecture: Intel x64
08:57:32.0358 2340 Number of processors: 4
08:57:32.0358 2340 Page size: 0x1000
08:57:32.0358 2340 Boot type: Normal boot
08:57:32.0358 2340 ============================================================
08:57:32.0764 2340 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:57:32.0764 2340 ============================================================
08:57:32.0764 2340 \Device\Harddisk0\DR0:
08:57:32.0764 2340 MBR partitions:
08:57:32.0764 2340 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:57:32.0764 2340 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
08:57:32.0764 2340 ============================================================
08:57:32.0764 2340 C: <-> \Device\Harddisk0\DR0\Partition2
08:57:32.0764 2340 ============================================================
08:57:32.0764 2340 Initialize success
08:57:32.0764 2340 ============================================================
08:58:14.0353 2328 ============================================================
08:58:14.0353 2328 Scan started
08:58:14.0353 2328 Mode: Manual; SigCheck; TDLFS;
08:58:14.0353 2328 ============================================================
08:58:14.0431 2328 ================ Scan system memory ========================
08:58:14.0431 2328 System memory - ok
08:58:14.0431 2328 ================ Scan services =============================
08:58:14.0478 2328 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:58:14.0541 2328 1394ohci - ok
08:58:14.0556 2328 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:58:14.0572 2328 ACPI - ok
08:58:14.0572 2328 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:58:14.0603 2328 AcpiPmi - ok
08:58:14.0619 2328 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:58:14.0634 2328 AdobeARMservice - ok
08:58:14.0634 2328 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
08:58:14.0665 2328 adp94xx - ok
08:58:14.0665 2328 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
08:58:14.0681 2328 adpahci - ok
08:58:14.0681 2328 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
08:58:14.0697 2328 adpu320 - ok
08:58:14.0712 2328 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:58:14.0806 2328 AeLookupSvc - ok
08:58:14.0806 2328 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
08:58:14.0837 2328 AFD - ok
08:58:14.0837 2328 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:58:14.0853 2328 agp440 - ok
08:58:14.0853 2328 AIDA64Driver - ok
08:58:14.0868 2328 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:58:14.0884 2328 ALG - ok
08:58:14.0884 2328 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:58:14.0899 2328 aliide - ok
08:58:14.0899 2328 [ 671D9DCA48DA807780D8409C18ED0AE0 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
08:58:14.0931 2328 AMD External Events Utility - ok
08:58:14.0946 2328 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:58:14.0946 2328 amdide - ok
08:58:14.0962 2328 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
08:58:14.0977 2328 AmdK8 - ok
08:58:15.0040 2328 [ D3E6B2E1394D93FE9DB0BA24814B0D8F ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
08:58:15.0149 2328 amdkmdag - ok
08:58:15.0149 2328 [ CC4D915D786D3DA973B2EA9B95D59A29 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
08:58:15.0165 2328 amdkmdap - ok
08:58:15.0180 2328 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
08:58:15.0196 2328 AmdPPM - ok
08:58:15.0196 2328 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:58:15.0211 2328 amdsata - ok
08:58:15.0211 2328 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
08:58:15.0227 2328 amdsbs - ok
08:58:15.0243 2328 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:58:15.0243 2328 amdxata - ok
08:58:15.0258 2328 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
08:58:15.0274 2328 AmUStor - ok
08:58:15.0274 2328 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:58:15.0352 2328 AppID - ok
08:58:15.0352 2328 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:58:15.0383 2328 AppIDSvc - ok
08:58:15.0399 2328 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
08:58:15.0430 2328 Appinfo - ok
08:58:15.0430 2328 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
08:58:15.0445 2328 arc - ok
08:58:15.0461 2328 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
08:58:15.0461 2328 arcsas - ok
08:58:15.0477 2328 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:58:15.0508 2328 AsyncMac - ok
08:58:15.0508 2328 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:58:15.0523 2328 atapi - ok
08:58:15.0555 2328 [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] athr C:\Windows\system32\DRIVERS\athrx.sys
08:58:15.0586 2328 athr - ok
08:58:15.0586 2328 [ 637E0753BD6DEB8EA5314A5C357EC1A0 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
08:58:15.0601 2328 AtiHdmiService - ok
08:58:15.0617 2328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:58:15.0664 2328 AudioEndpointBuilder - ok
08:58:15.0679 2328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:58:15.0711 2328 AudioSrv - ok
08:58:15.0726 2328 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
08:58:15.0742 2328 AVP - ok
08:58:15.0757 2328 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:58:15.0773 2328 AxInstSV - ok
08:58:15.0789 2328 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
08:58:15.0804 2328 b06bdrv - ok
08:58:15.0804 2328 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:58:15.0820 2328 b57nd60a - ok
08:58:15.0835 2328 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:58:15.0851 2328 BDESVC - ok
08:58:15.0851 2328 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:58:15.0898 2328 Beep - ok
08:58:15.0898 2328 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:58:15.0945 2328 BFE - ok
08:58:15.0960 2328 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
08:58:16.0007 2328 BITS - ok
08:58:16.0023 2328 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:58:16.0023 2328 blbdrive - ok
08:58:16.0038 2328 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:58:16.0054 2328 bowser - ok
08:58:16.0054 2328 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
08:58:16.0069 2328 BrFiltLo - ok
08:58:16.0069 2328 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
08:58:16.0085 2328 BrFiltUp - ok
08:58:16.0101 2328 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:58:16.0116 2328 Browser - ok
08:58:16.0116 2328 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:58:16.0132 2328 Brserid - ok
08:58:16.0147 2328 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:58:16.0163 2328 BrSerWdm - ok
08:58:16.0163 2328 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:58:16.0179 2328 BrUsbMdm - ok
08:58:16.0179 2328 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:58:16.0194 2328 BrUsbSer - ok
08:58:16.0194 2328 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
08:58:16.0210 2328 BthEnum - ok
08:58:16.0225 2328 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
08:58:16.0241 2328 BTHMODEM - ok
08:58:16.0241 2328 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
08:58:16.0257 2328 BthPan - ok
08:58:16.0272 2328 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
08:58:16.0288 2328 BTHPORT - ok
08:58:16.0288 2328 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:58:16.0335 2328 bthserv - ok
08:58:16.0335 2328 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
08:58:16.0350 2328 BTHUSB - ok
08:58:16.0350 2328 [ 6E04458E98DAF28826482E41A7A62DF5 ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
08:58:16.0366 2328 btusbflt - ok
08:58:16.0366 2328 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
08:58:16.0381 2328 btwaudio - ok
08:58:16.0381 2328 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
08:58:16.0397 2328 btwavdt - ok
08:58:16.0413 2328 [ DCF8D8F1F87743509D9C0207CB28637D ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
08:58:16.0428 2328 btwdins - ok
08:58:16.0444 2328 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
08:58:16.0444 2328 btwl2cap - ok
08:58:16.0459 2328 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
08:58:16.0459 2328 btwrchid - ok
08:58:16.0475 2328 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:58:16.0506 2328 cdfs - ok
08:58:16.0506 2328 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:58:16.0522 2328 cdrom - ok
08:58:16.0537 2328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:58:16.0569 2328 CertPropSvc - ok
08:58:16.0569 2328 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
08:58:16.0584 2328 circlass - ok
08:58:16.0600 2328 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:58:16.0615 2328 CLFS - ok
08:58:16.0631 2328 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:58:16.0631 2328 clr_optimization_v2.0.50727_32 - ok
08:58:16.0647 2328 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:58:16.0662 2328 clr_optimization_v2.0.50727_64 - ok
08:58:16.0662 2328 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:58:16.0678 2328 clr_optimization_v4.0.30319_32 - ok
08:58:16.0678 2328 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:58:16.0693 2328 clr_optimization_v4.0.30319_64 - ok
08:58:16.0693 2328 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
08:58:16.0709 2328 CmBatt - ok
08:58:16.0725 2328 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:58:16.0740 2328 cmdide - ok
08:58:16.0740 2328 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
08:58:16.0771 2328 CNG - ok
08:58:16.0771 2328 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
08:58:16.0787 2328 Compbatt - ok
08:58:16.0787 2328 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
08:58:16.0803 2328 CompositeBus - ok
08:58:16.0803 2328 COMSysApp - ok
08:58:16.0818 2328 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
08:58:16.0818 2328 crcdisk - ok
08:58:16.0834 2328 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:58:16.0849 2328 CryptSvc - ok
08:58:16.0865 2328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:58:16.0912 2328 DcomLaunch - ok
08:58:16.0912 2328 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:58:16.0959 2328 defragsvc - ok
08:58:16.0959 2328 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:58:17.0005 2328 DfsC - ok
08:58:17.0005 2328 [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
08:58:17.0021 2328 dg_ssudbus - ok
08:58:17.0021 2328 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:58:17.0052 2328 Dhcp - ok
08:58:17.0052 2328 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:58:17.0083 2328 discache - ok
08:58:17.0099 2328 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
08:58:17.0099 2328 Disk - ok
08:58:17.0115 2328 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:58:17.0130 2328 Dnscache - ok
08:58:17.0130 2328 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:58:17.0177 2328 dot3svc - ok
08:58:17.0177 2328 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:58:17.0224 2328 DPS - ok
08:58:17.0224 2328 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:58:17.0239 2328 drmkaud - ok
08:58:17.0255 2328 [ 55F6F3E0DF82E0113082852347BF2C16 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
08:58:17.0271 2328 DsiWMIService - ok
08:58:17.0271 2328 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:58:17.0302 2328 DXGKrnl - ok
08:58:17.0302 2328 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:58:17.0349 2328 EapHost - ok
08:58:17.0380 2328 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
08:58:17.0442 2328 ebdrv - ok
08:58:17.0442 2328 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
08:58:17.0458 2328 EFS - ok
08:58:17.0473 2328 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:58:17.0505 2328 ehRecvr - ok
08:58:17.0505 2328 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:58:17.0520 2328 ehSched - ok
08:58:17.0536 2328 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
08:58:17.0551 2328 elxstor - ok
08:58:17.0567 2328 [ 30BB48F6E48436BB5F332832B142945C ] ePowerSvc C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
08:58:17.0583 2328 ePowerSvc - ok
08:58:17.0598 2328 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:58:17.0614 2328 ErrDev - ok
08:58:17.0614 2328 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:58:17.0661 2328 EventSystem - ok
08:58:17.0676 2328 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:58:17.0707 2328 exfat - ok
08:58:17.0723 2328 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:58:17.0754 2328 fastfat - ok
08:58:17.0770 2328 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:58:17.0785 2328 Fax - ok
08:58:17.0801 2328 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
08:58:17.0817 2328 fdc - ok
08:58:17.0817 2328 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:58:17.0848 2328 fdPHost - ok
08:58:17.0863 2328 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:58:17.0895 2328 FDResPub - ok
08:58:17.0895 2328 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:58:17.0910 2328 FileInfo - ok
08:58:17.0910 2328 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:58:17.0957 2328 Filetrace - ok
08:58:17.0957 2328 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
08:58:17.0973 2328 flpydisk - ok
08:58:17.0973 2328 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:58:17.0988 2328 FltMgr - ok
08:58:18.0004 2328 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
08:58:18.0035 2328 FontCache - ok
08:58:18.0051 2328 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:58:18.0051 2328 FontCache3.0.0.0 - ok
08:58:18.0066 2328 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:58:18.0066 2328 FsDepends - ok
08:58:18.0082 2328 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:58:18.0082 2328 Fs_Rec - ok
08:58:18.0097 2328 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:58:18.0113 2328 fvevol - ok
08:58:18.0113 2328 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
08:58:18.0129 2328 gagp30kx - ok
08:58:18.0144 2328 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:58:18.0191 2328 gpsvc - ok
08:58:18.0191 2328 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:58:18.0207 2328 gupdate - ok
08:58:18.0207 2328 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:58:18.0222 2328 gupdatem - ok
08:58:18.0222 2328 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:58:18.0238 2328 hcw85cir - ok
08:58:18.0238 2328 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:58:18.0269 2328 HdAudAddService - ok
08:58:18.0269 2328 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
08:58:18.0285 2328 HDAudBus - ok
08:58:18.0300 2328 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
08:58:18.0300 2328 HECIx64 - ok
08:58:18.0300 2328 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
08:58:18.0316 2328 HidBatt - ok
08:58:18.0331 2328 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
08:58:18.0347 2328 HidBth - ok
08:58:18.0347 2328 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
08:58:18.0363 2328 HidIr - ok
08:58:18.0363 2328 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
08:58:18.0409 2328 hidserv - ok
08:58:18.0409 2328 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
08:58:18.0425 2328 HidUsb - ok
08:58:18.0425 2328 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:58:18.0472 2328 hkmsvc - ok
08:58:18.0472 2328 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:58:18.0487 2328 HomeGroupListener - ok
08:58:18.0503 2328 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:58:18.0519 2328 HomeGroupProvider - ok
08:58:18.0519 2328 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:58:18.0534 2328 HpSAMD - ok
08:58:18.0534 2328 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:58:18.0597 2328 HTTP - ok
08:58:18.0597 2328 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:58:18.0612 2328 hwpolicy - ok
08:58:18.0612 2328 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
08:58:18.0628 2328 i8042prt - ok
08:58:18.0628 2328 [ 42E00996DFC13C46366689C0EA8ABC5E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
08:58:18.0659 2328 iaStor - ok
08:58:18.0659 2328 [ AE0C5DF7E7DA3E7AC29B64CFA8C4F044 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
08:58:18.0675 2328 iaStorA - ok
08:58:18.0690 2328 [ 777788D9B63CCEEEF2DB353BA4EDD454 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
08:58:18.0706 2328 IAStorDataMgrSvc - ok
08:58:18.0706 2328 [ 711241EA1BA9DB44F34D03D2AD00ED08 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
08:58:18.0706 2328 iaStorF - ok
08:58:18.0721 2328 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:58:18.0737 2328 iaStorV - ok
08:58:18.0753 2328 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:58:18.0784 2328 idsvc - ok
08:58:18.0784 2328 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
08:58:18.0799 2328 iirsp - ok
08:58:18.0815 2328 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
08:58:18.0862 2328 IKEEXT - ok
08:58:18.0862 2328 [ C48567D80AD357613CD0EEADE18780AE ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
08:58:18.0877 2328 Impcd - ok
08:58:18.0909 2328 [ 3EDD3CE185DA3E6AAEC22ADCFD7B1D54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
08:58:18.0940 2328 IntcAzAudAddService - ok
08:58:18.0955 2328 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:58:18.0971 2328 intelide - ok
08:58:19.0065 2328 [ 09CE164AFA8483E41808784D7FCA154E ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
08:58:19.0221 2328 intelkmd - ok
08:58:19.0236 2328 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:58:19.0252 2328 intelppm - ok
08:58:19.0252 2328 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:58:19.0299 2328 IPBusEnum - ok
08:58:19.0299 2328 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:58:19.0330 2328 IpFilterDriver - ok
08:58:19.0345 2328 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:58:19.0377 2328 iphlpsvc - ok
08:58:19.0377 2328 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:58:19.0392 2328 IPMIDRV - ok
08:58:19.0392 2328 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:58:19.0439 2328 IPNAT - ok
08:58:19.0439 2328 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:58:19.0455 2328 IRENUM - ok
08:58:19.0455 2328 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:58:19.0470 2328 isapnp - ok
08:58:19.0486 2328 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:58:19.0501 2328 iScsiPrt - ok
08:58:19.0501 2328 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
08:58:19.0517 2328 kbdclass - ok
08:58:19.0517 2328 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
08:58:19.0533 2328 kbdhid - ok
08:58:19.0533 2328 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
08:58:19.0548 2328 KeyIso - ok
08:58:19.0564 2328 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
08:58:19.0579 2328 kl1 - ok
08:58:19.0579 2328 [ 65F3B81FA285EAB641F5E6EF7AEB984D ] KLIF C:\Windows\system32\DRIVERS\klif.sys
08:58:19.0611 2328 KLIF - ok
08:58:19.0611 2328 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
08:58:19.0626 2328 KLIM6 - ok
08:58:19.0626 2328 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
08:58:19.0626 2328 klkbdflt - ok
08:58:19.0642 2328 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
08:58:19.0642 2328 klmouflt - ok
08:58:19.0657 2328 [ A8081ED8D48FA611D11DB97F49A5343D ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
08:58:19.0657 2328 kltdi - ok
08:58:19.0673 2328 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
08:58:19.0673 2328 kneps - ok
08:58:19.0689 2328 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:58:19.0704 2328 KSecDD - ok
08:58:19.0704 2328 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:58:19.0720 2328 KSecPkg - ok
08:58:19.0720 2328 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:58:19.0767 2328 ksthunk - ok
08:58:19.0767 2328 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:58:19.0813 2328 KtmRm - ok
08:58:19.0813 2328 [ 39918DB0EFCF045A1CE6FABBF339F975 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
08:58:19.0829 2328 L1C - ok
08:58:19.0829 2328 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
08:58:19.0876 2328 LanmanServer - ok
08:58:19.0876 2328 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:58:19.0923 2328 LanmanWorkstation - ok
08:58:19.0923 2328 [ 4951AE4C946DADFAE6B56C5675A30BB0 ] lfsfilt C:\Windows\system32\DRIVERS\lfsfilt.sys
08:58:19.0938 2328 lfsfilt - ok
08:58:19.0954 2328 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:58:19.0985 2328 lltdio - ok
08:58:20.0001 2328 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:58:20.0047 2328 lltdsvc - ok
08:58:20.0047 2328 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:58:20.0079 2328 lmhosts - ok
08:58:20.0094 2328 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
08:58:20.0110 2328 LMS - ok
08:58:20.0110 2328 [ CFDDB50F6F683FEB36B940B06ACE5067 ] lpx C:\Windows\system32\DRIVERS\lpx.sys
08:58:20.0125 2328 lpx - ok
08:58:20.0125 2328 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
08:58:20.0141 2328 LSI_FC - ok
08:58:20.0141 2328 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
08:58:20.0157 2328 LSI_SAS - ok
08:58:20.0157 2328 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
08:58:20.0172 2328 LSI_SAS2 - ok
08:58:20.0188 2328 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
08:58:20.0188 2328 LSI_SCSI - ok
08:58:20.0203 2328 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:58:20.0235 2328 luafv - ok
08:58:20.0250 2328 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:58:20.0266 2328 Mcx2Svc - ok
08:58:20.0266 2328 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
08:58:20.0281 2328 megasas - ok
08:58:20.0281 2328 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
08:58:20.0297 2328 MegaSR - ok
08:58:20.0297 2328 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:58:20.0344 2328 MMCSS - ok
08:58:20.0344 2328 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:58:20.0391 2328 Modem - ok
08:58:20.0391 2328 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:58:20.0406 2328 monitor - ok
08:58:20.0406 2328 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:58:20.0422 2328 mouclass - ok
08:58:20.0437 2328 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:58:20.0453 2328 mouhid - ok
08:58:20.0453 2328 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:58:20.0469 2328 mountmgr - ok
08:58:20.0469 2328 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:58:20.0484 2328 mpio - ok
08:58:20.0484 2328 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:58:20.0531 2328 mpsdrv - ok
08:58:20.0531 2328 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:58:20.0593 2328 MpsSvc - ok
08:58:20.0593 2328 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:58:20.0625 2328 MRxDAV - ok
08:58:20.0625 2328 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:58:20.0640 2328 mrxsmb - ok
08:58:20.0640 2328 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:58:20.0656 2328 mrxsmb10 - ok
08:58:20.0671 2328 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:58:20.0687 2328 mrxsmb20 - ok
08:58:20.0687 2328 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:58:20.0703 2328 msahci - ok
08:58:20.0703 2328 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:58:20.0718 2328 msdsm - ok
08:58:20.0718 2328 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:58:20.0734 2328 MSDTC - ok
08:58:20.0749 2328 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:58:20.0781 2328 Msfs - ok
08:58:20.0781 2328 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:58:20.0827 2328 mshidkmdf - ok
08:58:20.0827 2328 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:58:20.0843 2328 msisadrv - ok
08:58:20.0843 2328 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:58:20.0890 2328 MSiSCSI - ok
08:58:20.0890 2328 msiserver - ok
08:58:20.0890 2328 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:58:20.0937 2328 MSKSSRV - ok
08:58:20.0937 2328 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:58:20.0983 2328 MSPCLOCK - ok
08:58:20.0983 2328 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:58:21.0015 2328 MSPQM - ok
08:58:21.0030 2328 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:58:21.0046 2328 MsRPC - ok
08:58:21.0046 2328 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
08:58:21.0061 2328 mssmbios - ok
08:58:21.0061 2328 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:58:21.0108 2328 MSTEE - ok
08:58:21.0108 2328 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
08:58:21.0124 2328 MTConfig - ok
08:58:21.0124 2328 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:58:21.0139 2328 Mup - ok
08:58:21.0155 2328 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:58:21.0202 2328 napagent - ok
08:58:21.0202 2328 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:58:21.0233 2328 NativeWifiP - ok
08:58:21.0233 2328 [ 47A440452F10A62FDCCE6867799CFF47 ] ndasbus C:\Windows\system32\DRIVERS\ndasbus.sys
08:58:21.0249 2328 ndasbus - ok
08:58:21.0249 2328 [ 23E234E2EB62DA7D3B42A9A93FF679A8 ] ndasfat C:\Windows\system32\DRIVERS\ndasfat.sys
08:58:21.0264 2328 ndasfat - ok
08:58:21.0280 2328 [ 26765430B453A0AC02789CCCFF74CC34 ] ndasfs C:\Windows\system32\DRIVERS\ndasfs.sys
08:58:21.0295 2328 ndasfs - ok
08:58:21.0311 2328 [ 6E6ED8D512293A65BD22B79FEB752D78 ] ndasrofs C:\Windows\system32\DRIVERS\ndasrofs.sys
08:58:21.0327 2328 ndasrofs - ok
08:58:21.0342 2328 [ BC6577FC219B744A9F659A62FC44AD8E ] ndasscsi C:\Windows\system32\DRIVERS\ndasscsi.sys
08:58:21.0358 2328 ndasscsi - ok
08:58:21.0358 2328 [ F54D3A4FCD0D47F17F96F83ED3532C0D ] ndassvc C:\Program Files\NDAS\System\ndassvc.exe
08:58:21.0373 2328 ndassvc - ok
08:58:21.0389 2328 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:58:21.0420 2328 NDIS - ok
08:58:21.0420 2328 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:58:21.0467 2328 NdisCap - ok
08:58:21.0467 2328 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:58:21.0514 2328 NdisTapi - ok
08:58:21.0514 2328 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:58:21.0561 2328 Ndisuio - ok
08:58:21.0561 2328 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:58:21.0592 2328 NdisWan - ok
08:58:21.0607 2328 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:58:21.0639 2328 NDProxy - ok
08:58:21.0639 2328 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:58:21.0685 2328 NetBIOS - ok
08:58:21.0685 2328 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:58:21.0732 2328 NetBT - ok
08:58:21.0732 2328 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
08:58:21.0748 2328 Netlogon - ok
08:58:21.0748 2328 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:58:21.0795 2328 Netman - ok
08:58:21.0810 2328 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:58:21.0857 2328 netprofm - ok
08:58:21.0857 2328 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:58:21.0873 2328 NetTcpPortSharing - ok
08:58:21.0873 2328 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
08:58:21.0888 2328 nfrd960 - ok
08:58:21.0888 2328 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:58:21.0904 2328 NlaSvc - ok
08:58:21.0919 2328 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:58:21.0951 2328 Npfs - ok
08:58:21.0951 2328 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:58:21.0997 2328 nsi - ok
08:58:21.0997 2328 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:58:22.0044 2328 nsiproxy - ok
08:58:22.0060 2328 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:58:22.0107 2328 Ntfs - ok
08:58:22.0107 2328 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:58:22.0153 2328 Null - ok
08:58:22.0153 2328 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:58:22.0169 2328 nvraid - ok
08:58:22.0169 2328 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:58:22.0185 2328 nvstor - ok
08:58:22.0200 2328 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:58:22.0200 2328 nv_agp - ok
08:58:22.0231 2328 [ 3B8C708A9DF59C436C5371C87E6AA864 ] OfficeSvc C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
08:58:22.0278 2328 OfficeSvc - ok
08:58:22.0278 2328 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:58:22.0294 2328 ohci1394 - ok
08:58:22.0309 2328 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:58:22.0325 2328 ose - ok
08:58:22.0372 2328 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:58:22.0481 2328 osppsvc - ok
08:58:22.0497 2328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:58:22.0512 2328 p2pimsvc - ok
08:58:22.0512 2328 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:58:22.0543 2328 p2psvc - ok
08:58:22.0559 2328 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
08:58:22.0590 2328 Parport - ok
08:58:22.0590 2328 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:58:22.0606 2328 partmgr - ok
08:58:22.0606 2328 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:58:22.0637 2328 PcaSvc - ok
08:58:22.0637 2328 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:58:22.0653 2328 pci - ok
08:58:22.0653 2328 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:58:22.0668 2328 pciide - ok
08:58:22.0668 2328 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
08:58:22.0684 2328 pcmcia - ok
08:58:22.0684 2328 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:58:22.0699 2328 pcw - ok
08:58:22.0715 2328 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:58:22.0762 2328 PEAUTH - ok
08:58:22.0793 2328 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:58:22.0809 2328 PerfHost - ok
08:58:22.0824 2328 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:58:22.0887 2328 pla - ok
08:58:22.0887 2328 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:58:22.0902 2328 PlugPlay - ok
08:58:22.0918 2328 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:58:22.0933 2328 PNRPAutoReg - ok
08:58:22.0933 2328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:58:22.0949 2328 PNRPsvc - ok
08:58:22.0965 2328 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:58:22.0996 2328 PolicyAgent - ok
08:58:23.0011 2328 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:58:23.0058 2328 Power - ok
08:58:23.0058 2328 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:58:23.0089 2328 PptpMiniport - ok
08:58:23.0105 2328 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
08:58:23.0121 2328 Processor - ok
08:58:23.0121 2328 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
08:58:23.0136 2328 ProfSvc - ok
08:58:23.0136 2328 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:58:23.0152 2328 ProtectedStorage - ok
08:58:23.0167 2328 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:58:23.0199 2328 Psched - ok
08:58:23.0214 2328 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
08:58:23.0261 2328 ql2300 - ok
08:58:23.0261 2328 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
08:58:23.0277 2328 ql40xx - ok
08:58:23.0292 2328 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:58:23.0308 2328 QWAVE - ok
08:58:23.0323 2328 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:58:23.0339 2328 QWAVEdrv - ok
08:58:23.0339 2328 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:58:23.0386 2328 RasAcd - ok
08:58:23.0386 2328 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:58:23.0417 2328 RasAgileVpn - ok
08:58:23.0433 2328 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:58:23.0464 2328 RasAuto - ok
08:58:23.0479 2328 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:58:23.0511 2328 Rasl2tp - ok
08:58:23.0511 2328 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:58:23.0557 2328 RasMan - ok
08:58:23.0557 2328 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:58:23.0604 2328 RasPppoe - ok
08:58:23.0604 2328 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:58:23.0651 2328 RasSstp - ok
08:58:23.0651 2328 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:58:23.0698 2328 rdbss - ok
08:58:23.0698 2328 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
08:58:23.0713 2328 rdpbus - ok
08:58:23.0713 2328 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:58:23.0760 2328 RDPCDD - ok
08:58:23.0760 2328 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:58:23.0807 2328 RDPENCDD - ok
08:58:23.0807 2328 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:58:23.0838 2328 RDPREFMP - ok
08:58:23.0854 2328 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
08:58:23.0869 2328 RdpVideoMiniport - ok
08:58:23.0869 2328 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:58:23.0885 2328 RDPWD - ok
08:58:23.0885 2328 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:58:23.0901 2328 rdyboost - ok
08:58:23.0916 2328 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:58:23.0947 2328 RemoteAccess - ok
08:58:23.0963 2328 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:58:23.0994 2328 RemoteRegistry - ok
08:58:24.0010 2328 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
08:58:24.0025 2328 RFCOMM - ok
08:58:24.0025 2328 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:58:24.0072 2328 RpcEptMapper - ok
08:58:24.0072 2328 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:58:24.0088 2328 RpcLocator - ok
08:58:24.0088 2328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
08:58:24.0135 2328 RpcSs - ok
08:58:24.0135 2328 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:58:24.0181 2328 rspndr - ok
08:58:24.0181 2328 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
08:58:24.0197 2328 SamSs - ok
08:58:24.0197 2328 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:58:24.0213 2328 sbp2port - ok
08:58:24.0228 2328 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:58:24.0259 2328 SCardSvr - ok
08:58:24.0275 2328 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:58:24.0306 2328 scfilter - ok
08:58:24.0322 2328 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:58:24.0369 2328 Schedule - ok
08:58:24.0384 2328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:58:24.0415 2328 SCPolicySvc - ok
08:58:24.0415 2328 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:58:24.0431 2328 SDRSVC - ok
08:58:24.0447 2328 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:58:24.0478 2328 secdrv - ok
08:58:24.0478 2328 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:58:24.0525 2328 seclogon - ok
08:58:24.0525 2328 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
08:58:24.0571 2328 SENS - ok
08:58:24.0571 2328 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:58:24.0587 2328 SensrSvc - ok
08:58:24.0587 2328 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
08:58:24.0603 2328 Serenum - ok
08:58:24.0618 2328 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
08:58:24.0634 2328 Serial - ok
08:58:24.0634 2328 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
08:58:24.0649 2328 sermouse - ok
08:58:24.0649 2328 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:58:24.0696 2328 SessionEnv - ok
08:58:24.0696 2328 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:58:24.0712 2328 sffdisk - ok
08:58:24.0727 2328 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:58:24.0743 2328 sffp_mmc - ok
08:58:24.0743 2328 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:58:24.0759 2328 sffp_sd - ok
08:58:24.0759 2328 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
08:58:24.0774 2328 sfloppy - ok
08:58:24.0790 2328 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:58:24.0837 2328 SharedAccess - ok
08:58:24.0837 2328 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:58:24.0883 2328 ShellHWDetection - ok
08:58:24.0883 2328 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
08:58:24.0899 2328 SiSRaid2 - ok
08:58:24.0899 2328 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
08:58:24.0915 2328 SiSRaid4 - ok
08:58:24.0915 2328 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
08:58:24.0930 2328 SkypeUpdate - ok
08:58:24.0930 2328 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:58:24.0977 2328 Smb - ok
08:58:24.0993 2328 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:58:25.0008 2328 SNMPTRAP - ok
08:58:25.0008 2328 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:58:25.0024 2328 spldr - ok
08:58:25.0024 2328 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
08:58:25.0055 2328 Spooler - ok
08:58:25.0086 2328 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:58:25.0180 2328 sppsvc - ok
08:58:25.0180 2328 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:58:25.0227 2328 sppuinotify - ok
08:58:25.0227 2328 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:58:25.0242 2328 srv - ok
08:58:25.0258 2328 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:58:25.0273 2328 srv2 - ok
08:58:25.0289 2328 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:58:25.0305 2328 srvnet - ok
08:58:25.0305 2328 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:58:25.0351 2328 SSDPSRV - ok
08:58:25.0351 2328 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:58:25.0398 2328 SstpSvc - ok
08:58:25.0398 2328 [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
08:58:25.0414 2328 ssudmdm - ok
08:58:25.0414 2328 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
08:58:25.0429 2328 stexstor - ok
08:58:25.0445 2328 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:58:25.0476 2328 stisvc - ok
08:58:25.0476 2328 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
08:58:25.0492 2328 swenum - ok
08:58:25.0492 2328 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:58:25.0539 2328 swprv - ok
08:58:25.0554 2328 [ 8DF6C536ECE3B538978B53C223AB905D ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
08:58:25.0585 2328 SynTP - ok
08:58:25.0601 2328 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:58:25.0648 2328 SysMain - ok
08:58:25.0663 2328 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:58:25.0679 2328 TabletInputService - ok
08:58:25.0679 2328 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:58:25.0726 2328 TapiSrv - ok
08:58:25.0726 2328 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:58:25.0773 2328 TBS - ok
08:58:25.0788 2328 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:58:25.0835 2328 Tcpip - ok
08:58:25.0866 2328 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:58:25.0897 2328 TCPIP6 - ok
08:58:25.0913 2328 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:58:25.0929 2328 tcpipreg - ok
08:58:25.0929 2328 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:58:25.0944 2328 TDPIPE - ok
08:58:25.0944 2328 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:58:25.0960 2328 TDTCP - ok
08:58:25.0960 2328 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:58:26.0007 2328 tdx - ok
08:58:26.0007 2328 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
08:58:26.0022 2328 TermDD - ok
08:58:26.0038 2328 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:58:26.0085 2328 TermService - ok
08:58:26.0085 2328 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:58:26.0100 2328 Themes - ok
08:58:26.0116 2328 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:58:26.0147 2328 THREADORDER - ok
08:58:26.0163 2328 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:58:26.0194 2328 TrkWks - ok
08:58:26.0194 2328 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:58:26.0241 2328 TrustedInstaller - ok
08:58:26.0241 2328 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:58:26.0287 2328 tssecsrv - ok
08:58:26.0287 2328 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:58:26.0303 2328 TsUsbFlt - ok
08:58:26.0303 2328 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:58:26.0350 2328 tunnel - ok
08:58:26.0350 2328 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
08:58:26.0365 2328 uagp35 - ok
08:58:26.0365 2328 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:58:26.0412 2328 udfs - ok
08:58:26.0412 2328 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:58:26.0428 2328 UI0Detect - ok
08:58:26.0443 2328 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:58:26.0459 2328 uliagpkx - ok
08:58:26.0459 2328 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
08:58:26.0475 2328 umbus - ok
08:58:26.0475 2328 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
08:58:26.0490 2328 UmPass - ok
08:58:26.0506 2328 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
08:58:26.0568 2328 UNS - ok
08:58:26.0568 2328 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:58:26.0615 2328 upnphost - ok
08:58:26.0631 2328 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:58:26.0631 2328 usbccgp - ok
08:58:26.0646 2328 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:58:26.0662 2328 usbcir - ok
08:58:26.0662 2328 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
08:58:26.0677 2328 usbehci - ok
08:58:26.0677 2328 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:58:26.0709 2328 usbhub - ok
08:58:26.0709 2328 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:58:26.0724 2328 usbohci - ok
08:58:26.0724 2328 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
08:58:26.0740 2328 usbprint - ok
08:58:26.0755 2328 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:58:26.0771 2328 USBSTOR - ok
08:58:26.0771 2328 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:58:26.0787 2328 usbuhci - ok
08:58:26.0787 2328 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
08:58:26.0802 2328 usbvideo - ok
08:58:26.0802 2328 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:58:26.0849 2328 UxSms - ok
08:58:26.0849 2328 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
08:58:26.0865 2328 VaultSvc - ok
08:58:26.0865 2328 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:58:26.0880 2328 vdrvroot - ok
08:58:26.0896 2328 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:58:26.0927 2328 vds - ok
08:58:26.0943 2328 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:58:26.0958 2328 vga - ok
08:58:26.0958 2328 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:58:26.0989 2328 VgaSave - ok
08:58:27.0005 2328 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
08:58:27.0021 2328 vhdmp - ok
08:58:27.0021 2328 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:58:27.0036 2328 viaide - ok
08:58:27.0036 2328 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:58:27.0052 2328 volmgr - ok
08:58:27.0067 2328 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:58:27.0083 2328 volmgrx - ok
08:58:27.0083 2328 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:58:27.0099 2328 volsnap - ok
08:58:27.0114 2328 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
08:58:27.0130 2328 vsmraid - ok
08:58:27.0145 2328 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:58:27.0208 2328 VSS - ok
08:58:27.0208 2328 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
08:58:27.0223 2328 vwifibus - ok
08:58:27.0223 2328 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
08:58:27.0255 2328 vwififlt - ok
08:58:27.0255 2328 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:58:27.0301 2328 W32Time - ok
08:58:27.0317 2328 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
08:58:27.0317 2328 WacomPen - ok
08:58:27.0333 2328 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:58:27.0364 2328 WANARP - ok
08:58:27.0364 2328 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:58:27.0411 2328 Wanarpv6 - ok
08:58:27.0426 2328 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
08:58:27.0457 2328 WatAdminSvc - ok
08:58:27.0489 2328 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:58:27.0520 2328 wbengine - ok
08:58:27.0520 2328 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:58:27.0551 2328 WbioSrvc - ok
08:58:27.0551 2328 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:58:27.0582 2328 wcncsvc - ok
08:58:27.0582 2328 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:58:27.0598 2328 WcsPlugInService - ok
08:58:27.0598 2328 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
08:58:27.0613 2328 Wd - ok
08:58:27.0629 2328 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:58:27.0660 2328 Wdf01000 - ok
08:58:27.0660 2328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:58:27.0691 2328 WdiServiceHost - ok
08:58:27.0723 2328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:58:27.0738 2328 WdiSystemHost - ok
08:58:27.0738 2328 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:58:27.0769 2328 WebClient - ok
08:58:27.0769 2328 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:58:27.0816 2328 Wecsvc - ok
08:58:27.0832 2328 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:58:27.0863 2328 wercplsupport - ok
08:58:27.0879 2328 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:58:27.0910 2328 WerSvc - ok
08:58:27.0910 2328 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:58:27.0957 2328 WfpLwf - ok
08:58:27.0957 2328 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:58:27.0972 2328 WIMMount - ok
08:58:27.0972 2328 WinDefend - ok
08:58:27.0972 2328 WinHttpAutoProxySvc - ok
08:58:27.0988 2328 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:58:28.0035 2328 Winmgmt - ok
08:58:28.0050 2328 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:58:28.0113 2328 WinRM - ok
08:58:28.0128 2328 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
08:58:28.0144 2328 WinUsb - ok
08:58:28.0159 2328 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:58:28.0191 2328 Wlansvc - ok
08:58:28.0191 2328 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
08:58:28.0206 2328 WmiAcpi - ok
08:58:28.0206 2328 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:58:28.0237 2328 wmiApSrv - ok
08:58:28.0237 2328 WMPNetworkSvc - ok
08:58:28.0237 2328 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:58:28.0253 2328 WPCSvc - ok
08:58:28.0253 2328 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:58:28.0269 2328 WPDBusEnum - ok
08:58:28.0284 2328 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:58:28.0315 2328 ws2ifsl - ok
08:58:28.0315 2328 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
08:58:28.0347 2328 wscsvc - ok
08:58:28.0347 2328 WSearch - ok
08:58:28.0378 2328 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:58:28.0440 2328 wuauserv - ok
08:58:28.0440 2328 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:58:28.0456 2328 WudfPf - ok
08:58:28.0456 2328 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:58:28.0471 2328 WUDFRd - ok
08:58:28.0487 2328 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:58:28.0503 2328 wudfsvc - ok
08:58:28.0503 2328 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
08:58:28.0518 2328 WwanSvc - ok
08:58:28.0534 2328 ================ Scan global ===============================
08:58:28.0534 2328 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:58:28.0534 2328 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:58:28.0549 2328 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:58:28.0549 2328 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:58:28.0565 2328 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:58:28.0565 2328 [Global] - ok
08:58:28.0565 2328 ================ Scan MBR ==================================
08:58:28.0565 2328 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:58:28.0690 2328 \Device\Harddisk0\DR0 - ok
08:58:28.0690 2328 ================ Scan VBR ==================================
08:58:28.0690 2328 [ 6D7A7DAF42FF2D9CF2B9710CC18ADAB6 ] \Device\Harddisk0\DR0\Partition1
08:58:28.0690 2328 \Device\Harddisk0\DR0\Partition1 - ok
08:58:28.0705 2328 [ 1981225331406E274E606C950CF3D6B1 ] \Device\Harddisk0\DR0\Partition2
08:58:28.0705 2328 \Device\Harddisk0\DR0\Partition2 - ok
08:58:28.0705 2328 ============================================================
08:58:28.0705 2328 Scan finished
08:58:28.0705 2328 ============================================================
08:58:28.0705 4852 Detected object count: 0
08:58:28.0705 4852 Actual detected object count: 0

1. skusal si sfc /scannow
2. prip. ak si trufas cez regedit vyhladat TuneUP a rucne zmazat z registrov
3. reinstall Win A uz NIKDY TUU

Tak sfc /scannow jsem zkoušel hned na začátku ale nebylo zjištěno nic. Registry jsem teď prošel a smazal vše co souviselo s TUU. Stav stále stejný. Zkusím ještě chvíli googlit ale moc šancí tomu nedávám. Pokud se zadaří dám vědět.
Každopádně děkuji za snahu

Jo a abych nezapoměl Normálně jsem na tom stejně jako vy takže pokud někomu pomáhám tak zdarma a většinou ve svém volném čase. Jenže tady za to asi nedočištěné PC http://forum.viry.cz/viewtopic.php?p=1208360#p1208360 jsem od kolegy dostal lahev Becherovky.
Chtěl jsem Vám ji poslat ale blbě se to do těch kabelů přelejvá. Tak jsem si řekl že ji vypiju na vaše zdraví a to jsem taky o víkendu udělal
Ale protože návod jsem našel tady a bez něj bych to nezprovoznil a navíc jste mi před nedávnem pomohli s jiným PC tak jsem hodnotu té lahve převedl na peníze přidal ještě jednou tolik a počítám že dnes to již máte na účtu protože z mého to odešlo včera.

Ještě jednou děkuji celému týmu za perfektní práci

A kdybych se tady náhodou již nikdy neobjevil tak mě zabila manželka při té reinstalaci.

dakujeme za prispevok aj mile slova
,,, a manzelka ak bude spurna, postras ju, ze ju darujes foru tiez
+
pozri este toto: http://www.faultwire.com/file_report/srdiag.exe.html

Jasper TN píše:Děkuji za odpověď a snahu poradit Nicméně já taky googlil ale bohužel vše se míjí účinkem. Návody jsou různé a jediné co je zmiňováno téměř všude je možnost virové infekce. Přesto že můj systém je cca dva měsíce po reinstalaci z důvodu výměny hard disku za SSD tak tuto variantu musím připustit. Jednak mohlo dojít k přenosu infekce prostřednictvím již zmiňovaného FD v souvislosti s odvirováním PC dvou lidí z mého okolí, ale také proto že jako admin fóra z jinou problematikou dost často kontroluji odkazy uživatelů zda neobsahují nelegální soft což znamená že příslušné soubory musím stahovat.
Co se týká antiviru tak jsem dlouho používal Avast. Protože je ale můj PC z výše uvedených důvodu rizikový na nákazu tak jsem se nechal inspirovat radami zdejších odborníků a rozhodoval se mezi Nortonem a Kasperskym. Kaspersky vyhrál z poněkud malicherného důvodu o kterém raději nebudu psát a taky pro to že ho v placené verzi používám ke své spokojenosti na androidím telefonu. Vzhledem k mé konfiguraci zpomalení ani zátěž sytému nepociťuji a zatím nemohu říct nic proti němu.
Já jsem původně to obnovení systému vypnul záměrně a to právě při reinstalaci. Někde jsem našel ideální nastavení pro SSD disky a tam bylo toto doporučeno. Jenže v souvislosti s problémy mého kolegy jsem dospěl k názoru že lepší bude obnovení zapnout což se mi nepodařilo. Ještě mě napadla možná souvislost s používáním Tune up utilities. Měl jsem je ale skončilo mi předplatné a vzhledem k tomu že zdejšími odborníky není moc doporučováno tak jsem již licenci neprodlužoval.

No ze začatku jsem napsala, že to byla jenom takova poznamka, ne každy antivirus si musi zrovna vychazet zadobře s pc sestavou, ja teda určitě nemůžu KASPERSKY produkt, nainstalovat na moji pc sestavu, protože můj počitač ho nesnaši, nerozumi si s nim a je velice na něho alergicky, hrozná zatěž systemu, v registrech mi nadělal bordel při odinstalacii vůbec ho nebylo možne vypnout, pořad tam zůstali zbytky, ktere po startu zůstavali nadale aktivne, při pokusu o odinstalaci z nouzoveho režimu, se mi po normalním startu stracel ovladač na myšku a klavesnici, pak mi přestali fungovat prohližeče firefox a explorer a přiště, už nenastartoval vůbec havarie systemu a ztrata důležite zálohy...

No v každem připadě, pokud vam jde a jste s nim spokojeny, tak hodně štesti, u mně uspěl jedině AVAST 8, Statečně se drži i AVIRA, snaži se byt šetrna na můj system...

Dalši věc produkty z IObit nebo z TUNE UP UTILITIES, bych rozhodně nebrala, starši verze TU si z windows 7 vůbech nevychazeli /bordel v registrech/, ikdyž se objevili novši verze od TU-2011 pro W7 a byli, už stabilnejši stejně u mě nezabodovali tež jsem ho zkoušela z jednych důvodu je, že můj oblibeny pomocny ochrance na spyware superantispyware reaguje na nastroj deactivator v TU

Jedině co bych vam mohla doporučit a jsem s ním dlouhe roky spokojena je WINDOWS 7 - MANAGER, bohůžel je v anglickem jazyku, pro začatečnika je tam nástroj UKLID JEDNYM KLIKNUTIM, pak bych se postupně s ni seznamovala.Tento tweakovaci manager je jednička pro 7, nikdy neudělal u mě bordel v registrech, diky jemu jsem si upravila system podle představ, vzhled, ikony, ukryti zbytečnosti, deaktivace spuštenych programu při startu, auto wallpaper atd

Ma aj dalši funkce na opravu /Vychozi nastaveni, opravy/, ale vyžaduje se zkušenost uživatele, tam jsem se zatim k tomu ještě nedopracovala a ani do toho nezasahuju pokud nečemu tam nerozumim, možna, že tam bude něco co je schopne uvest do provozu a opravit - BOD OBNOVY

http://www.yamicsoft.com/windows7manager/

Nechci tady, už psat kdyby něco tak jsem na SZ....

PS: Jarone, promiň nejsem zvykla plest se do nazoru, ale jsem velice naštvana na KASPERSKY INTERNET SECURITY, může byt špička mezi antiviraky, ale ne pro můj počitač a určitě, každy ať se sam rozhodne za sebe co si vybere za produkt určitě budu varovat každyho uživatele co ma KASPERSKY PRODUKT, protože nechci, aby někdo dopadnul tak jako ja a seděl dlouhe hodiny při nove instalace systemu.

Mam nainstalovanu novu 7 na system a je dnesk v provozu prvni den........Tak hezky den.....

Mila Lilly,
co sa tyka KIS zaplatila si tzv. novacikovsku dan ,,, Kaspersky nie je zrovna priatelsky s produktom podobneho zameraania -
no a Ty si tam toho mala az-az Comodo-SaS-Avira >> takze stalo sa co sa stalo
Tvoje nazory a entuziazmus si vazim a som rad, ze si clenom tohto teamu ,,, aj ked niekedy by sa to dalo napisat aj strucnejsie,
no ale co uz si predsa baba

j++

No já zatím vyzkoušel několik postupů a nic. Skutečně jsem našel souvislost s TUU kdy problém by měl způsobovat zapnutý "Turbo režim". Je pravděpodobné že pokud jsem tu srač** odinstaloval v něm tak mohlo někde něco zůstat. Napadla mě trochu kacířská myšlenka nainstalovat TUU zpět pokusit se nakonfigurovat s ním a pak ho odinstalovat. Jenže moje licence vypršela a kupovat ji jen kvůli nebudu.

EDIT Tak jsem to chtěl očůrat a odpojil PC od sítě aby si nemohl ověřit produkt key. Jenže se nepovedlo. Ta mrcha to ví. Takže někde něco ještě zůstalo v registrech a já to nemůžu najít.

Já se omlouvám předem že zase otravuji ale mám den blbec. Bál jsem se že mě zabije žena a teď mám chuť se odstřelit sám. Od včera mám horečky a je mi blbě. Tak jsem zůstal doma a dal se do reinstalace. Během ní jsem si omylem vymazal externí záložní disk takže jsem přišel skoro o všechna data. Když už jsem měl hotovo tak jsem narazil na problém že prohlížeč Chrome se při spuštění otvíral na nějaké nesmyslné stránce která se tvářila jako že má cosi společného s Intelem ale vyskakovalo mi na ní varování. Přitom v nastavení byla jako domovská stránka Google. Tak jsem chrome přeinstaloval a je klid. Jenže mi to pořád vrtá hlavou co a odkud se mi sem natáhlo. Může mi prosím někdo zkouknout nový log. Předem děkuji

Ten log je hrozně dlouhý 147000 znaků ?

log vypada OK
doporucujem preventivne kompletnu kontrolu s MBAM

Tak ještě jednou děkuji. MBAM nic nenašel. Asi jsem v tom včerejším rozpoložení něco při instalaci přehlédl.

Přeji všem krásný víkend

za malo
podobne prajem pekny vikend a dufam, ze uz zasvieti slnko ,,,