Dobrý večer. Můj skype účet začal rozesílat mým kontaktům hromadě neexistující odkazy a v Esetu mi najednou nejde zapnout ochrana. Prosil bych o pomoc. Díky.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Vali PC at 2016-03-17 23:59:34
Microsoft Windows 8.1
System drive C: has 660 GB (71%) free of 933 GB
Total RAM: 8081 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:59:42, on 17. 3. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
C:\Program Files (x86)\HP SimplePass\TouchControl.exe
C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Vali PC.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe /SysAutoRun
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKCU\..\Run: [AshSnap] C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe
O4 - HKCU\..\Run: [EPSON SX525WD Series] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE /FU "C:\WINDOWS\TEMP\E_SA7DB.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EPSON68415A (Epson Stylus SX525WD)] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE /FU "C:\WINDOWS\TEMP\E_SD2D3.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Epson Stylus SX525WD(Síť)] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE /FU "C:\WINDOWS\TEMP\E_SE8CE.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Lync] "C:\Program Files\Microsoft Office\root\Office16\lync.exe" /fromrunkey
O4 - HKCU\..\Run: [AirDroid 3] C:\Program Files (x86)\AirDroid\AirDroid.exe /start
O4 - Startup: Lingea Update Center.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Odeslat do Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O9 - Extra button: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O15 - ESC Trusted Zone: http://*.connectify.me (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://*.fastspring.com (HKLM)
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ANSYS, Inc. License Manager - ANSYS, Inc. - C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Connectify - Connectify - C:\Program Files (x86)\Connectify\ConnectifyService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @oem52.inf,%llmdisp%;Sentinel LDK License Manager (hasplms) - Unknown owner - C:\WINDOWS\system32\hasplms.exe (file missing)
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem13.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - C:\Program Files\TightVNC\tvnserver.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 20376 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
"dwm.exe"
"C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f6b2c51b-79e8-435d-82e6-e6d2c4462918 -SystemEventPortName:HostProcess-e521385b-80f3-469b-aaf8-6da92c155b93 -IoCancelEventPortName:HostProcess-be606846-6f54-40d0-a63f-8a804855332e -NonStateChangingEventPortName:HostProcess-604e89a1-9254-4349-86dd-88712563865c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bc7508d1-6ea6-4e8d-aed9-10742462bcb9 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-84eab6ff-db1c-488e-9f04-dc30c6b97b74 -SystemEventPortName:HostProcess-1c274198-26ee-439d-a560-cc9040ecb02e -IoCancelEventPortName:HostProcess-30c9ecae-e623-4463-abad-1a8222bb6b12 -NonStateChangingEventPortName:HostProcess-9c584b01-bc8f-4038-bb62-89a2e9617fc2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bcdfc95f-ff25-4c3d-82eb-17be7dd1c113 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 473929061904
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe" -nodaemon -k runservice
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_monitor.exe" -monitor 2092 -service -nodaemon -restart_port_timeout 15
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {2c7ebdbc-c56b-43e0-9ec7ef775ca329df}
"C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe"
"C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\WINDOWS\system32\hasplms.exe -run
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\HP SimplePass\TouchControl.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
C:\Windows\SysWOW64\irstrtsv.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\lmgrd.exe" -c "C:\Program Files\ANSYS Inc\Shared Files\Licensing\license.dat" -l "C:\Program Files\ANSYS Inc\Shared Files\Licensing\license.log" -z2
ansyslmd.exe -T ValiPC 11.9 -1 -c "C:\Program Files\ANSYS Inc\Shared Files\Licensing\license.dat" --lmgrd_start 56eb3578 -l "C:\Program Files\ANSYS Inc\Shared Files\Licensing\license.log"
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\TightVNC\tvnserver.exe" -service
C:\Windows\system32\valWBFPolicyService.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Connectify\ConnectifyService.exe"
"ConnectifyD.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer11_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer11_Logfile.log
"C:\Program Files\Common Files\AuthenTec\TrueService.exe"
/ChildServer
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files\TightVNC\tvnserver.exe" -controlservice -slave
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" -byrunkey
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe"
"ConnectifyNetServices.exe" -v -i C:\ProgramData\Connectify\cache\ConnectifyNetServices.ini -s C:\ProgramData\Connectify\cache\ConnectifyNetServices.state -l C:\ProgramData\Connectify\logs
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
wmiadap.exe /F /T /R
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Users\Vali PC\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForVali PC.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForVali PC (null)
C:\WINDOWS\tasks\MATLAB R2013a Startup Accelerator.job - C:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default
prefs.js - "browser.startup.homepage" - "https://mail.google.com/mail/u/0/#inbox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.182 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@authentec.com/ffwloplugin]
"Description"=
"Path"=C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.66.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.182 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-02-28 236240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18 171704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-02-28 2176816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2015-12-19 357376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18 171704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-02-28 170696]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-24 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18 141496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-28 1522480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-24 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2015-12-22 322408]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18 141496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18 171704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18 141496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-08-27 395168]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-08-08 11554688]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-01-23 2787264]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-10-30 508104]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-25 2916152]
"Connectify Hotspot"=C:\Program Files (x86)\Connectify\Connectify.exe [2016-01-04 4126776]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2016-02-09 1664000]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-12-17 170256]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-01-23 1859936]
"tvncontrol"=C:\Program Files\TightVNC\tvnserver.exe [2013-07-19 2179056]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AshSnap"=C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe [2014-05-06 5707640]
"EPSON SX525WD Series"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [2010-01-12 224768]
"EPSON68415A (Epson Stylus SX525WD)"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [2010-01-12 224768]
"Epson Stylus SX525WD(Síť)"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [2010-01-12 224768]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"Lync"=C:\Program Files\Microsoft Office\root\Office16\lync.exe [2016-02-28 26780368]
"AirDroid 3"=C:\Program Files (x86)\AirDroid\AirDroid.exe [2016-02-08 8207360]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CLVirtualDrive"=C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2012-07-26 491320]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-28 91432]
"HP CoolSense"=C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2011-08-26 1342008]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2015-11-20 60688]
"ADSKAppManager"=C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [2016-02-24 529480]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09 596528]
"PMBVolumeWatcher"=C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2015-11-02 2687160]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [2015-12-18 1867448]
""= []
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-03-12 25577864]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-09-07 581024]
C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Lingea Update Center.lnk - C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2016-03-17 23:59:34 ----D---- C:\rsit
2016-03-17 23:59:34 ----D---- C:\Program Files\trend micro
2016-03-16 19:31:31 ----D---- C:\Program Files\Common Files\DESIGNER
2016-03-15 23:21:57 ----D---- C:\Users\Vali PC\AppData\Roaming\TightVNC
2016-03-15 23:08:34 ----D---- C:\ProgramData\TightVNC
2016-03-15 23:08:34 ----D---- C:\Program Files\TightVNC
2016-03-15 09:01:14 ----D---- C:\ProgramData\AMMYY
2016-03-11 18:03:13 ----D---- C:\Program Files\Recuva
2016-03-11 10:15:25 ----D---- C:\Program Files (x86)\Apple Software Update
2016-03-11 10:15:23 ----SHD---- C:\Config.Msi
2016-03-10 08:35:22 ----D---- C:\Program Files\PDFCreator
2016-03-09 09:15:16 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-03-09 09:15:16 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-09 09:15:15 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-09 09:15:15 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-09 09:15:15 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-09 09:15:15 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-03-09 09:15:15 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-03-09 09:15:15 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-09 09:15:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-03-09 09:15:14 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys
2016-03-09 09:15:11 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-09 09:15:10 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-03-09 09:15:09 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-03-09 09:15:09 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-03-09 09:15:09 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-03-09 09:15:09 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-03-09 09:15:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-03-09 09:15:09 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-03-09 09:15:09 ----A---- C:\WINDOWS\system32\hlink.dll
2016-03-09 09:15:07 ----A---- C:\WINDOWS\system32\jscript.dll
2016-03-09 09:15:07 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-09 09:15:06 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-09 09:15:06 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-03-09 09:15:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-09 09:15:06 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-09 09:15:06 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-03-09 09:15:06 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-03-09 09:15:05 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-03-09 09:15:05 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-03-09 09:15:05 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-09 09:15:05 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-03-09 09:14:59 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-03-09 09:14:58 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-03-09 09:14:58 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-03-09 09:14:58 ----A---- C:\WINDOWS\system32\mispace.dll
2016-03-09 09:14:58 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-03-09 09:14:56 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 09:14:56 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2016-03-09 09:14:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-03-09 09:14:55 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2016-03-09 09:14:55 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2016-03-09 09:14:55 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-09 09:14:54 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-03-09 09:14:54 ----A---- C:\WINDOWS\system32\seclogon.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2016-03-09 09:14:52 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\wuwebv.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\wudriver.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\wucltux.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\wuapp.exe
2016-03-09 09:14:52 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\system32\ole32.dll
2016-03-09 09:14:51 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-03-09 09:14:46 ----A---- C:\WINDOWS\system32\msra.exe
2016-03-09 09:14:42 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-03-09 09:14:42 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\SYSWOW64\WMASF.DLL
2016-03-09 09:14:41 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\system32\WMASF.DLL
2016-03-09 09:14:41 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2016-03-09 09:14:41 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-03-09 09:14:41 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-03-09 09:14:40 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2016-03-09 09:14:40 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2016-03-09 09:14:40 ----A---- C:\WINDOWS\system32\win32k.sys
2016-03-09 09:14:40 ----A---- C:\WINDOWS\system32\mfds.dll
2016-03-09 09:14:39 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-03-09 09:14:39 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-03-09 09:14:35 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-03-09 09:14:35 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-03-09 09:08:00 ----D---- C:\Program Files (x86)\Cisco
2016-03-09 09:05:19 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2016-03-09 09:05:19 ----A---- C:\WINDOWS\system32\rascfg.dll
2016-03-09 09:05:19 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2016-03-09 09:05:19 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2016-03-09 08:58:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-03-09 08:58:40 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-03-09 08:58:10 ----AC---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-03-09 08:58:10 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-09 08:58:10 ----AC---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-03 15:09:00 ----D---- C:\Users\Vali PC\AppData\Roaming\Python
2016-03-02 14:27:53 ----D---- C:\Users\Vali PC\AppData\Roaming\JetBrains
2016-03-02 14:26:45 ----D---- C:\Program Files (x86)\JetBrains
2016-02-24 16:16:49 ----D---- C:\Program Files (x86)\GnuWin32
======List of files/folders modified in the last 1 month======
2016-03-17 23:59:34 ----RD---- C:\Program Files
2016-03-17 23:59:09 ----D---- C:\WINDOWS\Temp
2016-03-17 23:55:51 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-03-17 23:54:26 ----D---- C:\WINDOWS\Prefetch
2016-03-17 23:50:52 ----D---- C:\Users\Vali PC\AppData\Roaming\Skype
2016-03-17 23:14:30 ----D---- C:\WINDOWS\system32\FxsTmp
2016-03-17 23:00:00 ----D---- C:\WINDOWS\system32\sru
2016-03-17 20:02:19 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-17 19:31:00 ----D---- C:\WINDOWS\tracing
2016-03-17 13:33:38 ----RD---- C:\WINDOWS\System32
2016-03-17 13:33:38 ----D---- C:\WINDOWS\Inf
2016-03-17 13:33:38 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-17 13:31:52 ----D---- C:\Program Files (x86)\Opera
2016-03-17 13:31:51 ----D---- C:\WINDOWS\system32\Tasks
2016-03-17 13:27:41 ----D---- C:\ProgramData\NVIDIA Corporation
2016-03-17 11:32:42 ----SHD---- C:\System Volume Information
2016-03-17 08:33:49 ----D---- C:\WINDOWS\system32\config
2016-03-17 08:16:21 ----D---- C:\Program Files (x86)\Dropbox
2016-03-17 07:37:47 ----D---- C:\Program Files (x86)\TeamViewer
2016-03-17 07:36:08 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-16 20:47:39 ----D---- C:\Users\Vali PC\AppData\Roaming\GeoGet
2016-03-16 19:32:00 ----D---- C:\Windows
2016-03-16 19:31:58 ----SHD---- C:\WINDOWS\Installer
2016-03-16 19:31:57 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-03-16 19:31:31 ----D---- C:\Program Files\Common Files\microsoft shared
2016-03-16 19:31:31 ----D---- C:\Program Files\Common Files
2016-03-16 19:30:36 ----D---- C:\Program Files\Microsoft Office
2016-03-16 09:48:13 ----D---- C:\Users\Vali PC\AppData\Roaming\AIMP3
2016-03-16 09:23:28 ----D---- C:\WINDOWS\WinSxS
2016-03-16 09:21:57 ----D---- C:\WINDOWS\system32\catroot2
2016-03-15 23:08:34 ----HD---- C:\ProgramData
2016-03-15 22:32:34 ----D---- C:\Users\Vali PC\AppData\Roaming\vlc
2016-03-15 08:39:54 ----D---- C:\WINDOWS\Tasks
2016-03-11 10:15:25 ----RD---- C:\Program Files (x86)
2016-03-11 10:05:06 ----D---- C:\WINDOWS\SysWOW64
2016-03-11 10:05:00 ----D---- C:\WINDOWS\CbsTemp
2016-03-10 11:35:32 ----D---- C:\WINDOWS\rescache
2016-03-10 08:35:30 ----A---- C:\WINDOWS\system32\pdfcmon.dll
2016-03-09 19:50:00 ----RSD---- C:\WINDOWS\assembly
2016-03-09 18:04:25 ----HD---- C:\Program Files\WindowsApps
2016-03-09 17:04:41 ----RSD---- C:\WINDOWS\Fonts
2016-03-09 17:04:40 ----D---- C:\WINDOWS\system32\Boot
2016-03-09 17:04:39 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-03-09 17:04:39 ----D---- C:\WINDOWS\system32\drivers
2016-03-09 17:04:39 ----D---- C:\WINDOWS\system32\cs-CZ
2016-03-09 17:04:39 ----D---- C:\WINDOWS\system32\appraiser
2016-03-09 17:04:39 ----D---- C:\Program Files\Internet Explorer
2016-03-09 17:04:39 ----D---- C:\Program Files (x86)\Internet Explorer
2016-03-09 17:04:38 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-03-09 17:02:49 ----D---- C:\Users\Vali PC\AppData\Roaming\TeamViewer
2016-03-09 09:51:13 ----D---- C:\WINDOWS\system32\MRT
2016-03-09 09:45:33 ----A---- C:\WINDOWS\system32\MRT.exe
2016-03-09 09:14:07 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-03-09 09:14:06 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-03-09 09:14:04 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-03-09 09:09:08 ----D---- C:\ProgramData\Package Cache
2016-03-09 09:09:07 ----D---- C:\Program Files\Intel
2016-03-09 09:08:52 ----D---- C:\ProgramData\Intel
2016-03-09 09:08:00 ----D---- C:\Program Files\Common Files\Intel
2016-03-09 09:08:00 ----D---- C:\Program Files (x86)\Intel
2016-03-08 08:00:28 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-03-06 09:19:43 ----D---- C:\Users\Vali PC\AppData\Roaming\Notepad++
2016-03-04 13:24:40 ----D---- C:\Program Files (x86)\Python
2016-03-02 22:46:20 ----D---- C:\WINDOWS\SoftwareDistribution
2016-03-02 18:33:40 ----D---- C:\WINDOWS\debug
2016-03-02 17:56:00 ----D---- C:\Users\Vali PC\AppData\Roaming\DAEMON Tools Lite
2016-03-02 17:56:00 ----D---- C:\Program Files (x86)\Connectify
2016-02-26 09:00:17 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2016-02-26 09:00:17 ----SD---- C:\WINDOWS\system32\GWX
2016-02-25 13:54:40 ----D---- C:\Users\Vali PC\AppData\Roaming\DVDVideoSoft
2016-02-20 09:39:13 ----D---- C:\ProgramData\rgt
2016-02-19 18:02:45 ----D---- C:\Program Files (x86)\GeoGet
2016-02-18 09:43:47 ----D---- C:\Users\Vali PC\AppData\Roaming\HEXelon
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-11-20 69840]
R0 hpdskflt;@oem13.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-08-23 29600]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2016-02-09 38336]
R0 PxHlpa64;PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [2012-06-22 56336]
R1 cfywlan1;@oem9.inf,%cfywlan1_Desc%;Connectify WLAN LightWeight Filter; C:\WINDOWS\system32\DRIVERS\cfywlan1.sys [2016-02-02 36736]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 cnnctfy3;@oem1.inf,%cnnctfy3_Desc%;Connectify LightWeight Filter; C:\WINDOWS\system32\DRIVERS\cnnctfy3.sys [2016-02-02 43872]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-03-17 264552]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-11-20 206312]
R1 EpfwLWF;@oem27.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-11-20 52872]
R2 aksdf;aksdf; \??\C:\WINDOWS\system32\drivers\aksdf.sys [2015-09-23 109200]
R2 aksfridge;@oem52.inf,%AksFridgeServiceDisp%;Sentinel Fridge; C:\WINDOWS\system32\DRIVERS\aksfridge.sys [2015-09-23 205528]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-11-20 142976]
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys [2015-09-23 350552]
R3 Accelerometer;@oem13.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-08-23 42400]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-09 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-11-21 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2015-12-23 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2012-07-14 825344]
R3 dtlitescsibus;@oem31.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-22 30264]
R3 dtliteusbbus;@oem32.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-22 46392]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2012-07-04 55848]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-08-27 3797424]
R3 IntcDAud;@oem43.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 irstrtdv;@oem10.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\WINDOWS\System32\drivers\irstrtdv.sys [2012-07-21 43800]
R3 iwdbus;@oem17.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 MEIx64;@oem28.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem57.inf,%NIC_Service_DispName_WIN8_64%;Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwew00.sys [2014-04-17 3349984]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-02-09 12383288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-01-23 26560]
R3 nvvad_WaveExtensible;@oem54.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-12-18 47760]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2015-12-23 167424]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SensorsSimulatorDriver;@oem46.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2014-11-21 226304]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-25 43832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2016-02-09 542208]
R3 SynTP;@oem3.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-25 448312]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14976]
S0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
S2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2016-03-17 170792]
S3 akshasp;@oem51.inf,%svcdesc%;SafeNet Inc. HASP Key; C:\WINDOWS\system32\DRIVERS\akshasp.sys [2015-09-23 77912]
S3 akshhl;@oem52.inf,%svcdesc%;SafeNet Inc. Sentinel HL Key; C:\WINDOWS\system32\DRIVERS\akshhl.sys [2015-09-23 81368]
S3 aksusb;@oem50.inf,%svcdesc%;SafeNet Inc. USB Key; C:\WINDOWS\system32\DRIVERS\aksusb.sys [2015-09-23 322560]
S3 AMPPAL;@oem29.inf,%AMPPAL.SVCDESC%;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\WINDOWS\System32\drivers\AMPPAL.sys [2013-05-21 165344]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 intaud_WaveExtensible;@oem16.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 RSP2STOR;@oem5.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-06-14 266896]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-25 41272]
S3 usb3Hub;USB-IF USB 3.0 Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [2012-08-09 48096]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdAppMgrSvc;Autodesk Application Manager Service; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [2016-02-24 1145928]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016-02-09 2020056]
R2 ANSYS, Inc. License Manager;ANSYS, Inc. License Manager; C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe [2012-09-24 5457920]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2014-11-21 38792]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-07 77104]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [2015-02-05 31160]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-08-08 1091520]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-08-08 1112000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-02-28 2912496]
R2 Connectify;Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [2016-01-04 256568]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-11-21 38792]
R2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [2015-12-24 388968]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-03-17 2521440]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [2006-12-19 94208]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-08 631024]
R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [2012-08-10 1641320]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-01-23 1163200]
R2 hasplms;@oem52.inf,%llmdisp%;Sentinel LDK License Manager; C:\WINDOWS\system32\hasplms.exe [2015-09-23 4665168]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 hpsrv;@oem13.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-08-23 29600]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-09-07 35232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-27 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2015-11-20 21184]
R2 irstrtsv;Intel(R) Rapid Start Technology Service; C:\Windows\SysWOW64\irstrtsv.exe [2012-07-20 193576]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-01-23 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-01-23 4812736]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-02-09 1264696]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2015-11-02 495800]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2014-04-30 337776]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-08 154864]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2014-02-21 134336]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2016-02-09 323072]
R2 TeamViewer;TeamViewer 11; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2016-03-02 6942480]
R2 tvnserver;TightVNC Server; C:\Program Files\TightVNC\tvnserver.exe [2013-07-19 2179056]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-01-23 6308288]
R3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2012-07-16 401256]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-05 143144]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-11 269504]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-06-22 50352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-11-21 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-27 291744]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-05 143144]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2015-12-22 1369856]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-12-17 644880]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-12 146888]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-08 284912]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-02-28 252120]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [2015-11-19 137216]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vir
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Vir
Zdravim 
Na Skype si pak budete muset dat nove heslo.
Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\Program Files (x86)\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Na Skype si pak budete muset dat nove heslo. Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\Program Files (x86)\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vir
AdwCleaner:
# AdwCleaner v5.102 - Logfile created 18/03/2016 at 08:56:00
# Updated 13/03/2016 by Xplode
# Database : 2016-03-16.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Vali PC - VALIPC
# Running from : C:\Users\Vali PC\Desktop\adwcleaner_5.102.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File Deleted : C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}.xpi
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Your Software Deals_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4E8B1900-34DE-E742-E6A7-606519AC19B7}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Key Deleted : HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.snapdoc
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [2359 bytes] - [18/03/2016 08:56:00]
C:\Program Files (x86)\AdwCleaner\AdwCleaner[S1].txt - [2612 bytes] - [18/03/2016 08:54:28]
########## EOF - C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [2545 bytes] ##########
Malwarebytes
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 18. 3. 2016
Čas skenování: 9:04
Protokol: eee.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.18.02
Databáze rootkitů: v2016.03.12.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Vali PC
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1265123
Uplynulý čas: 4 hod, 55 min, 2 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 3
RiskWare.FilePatcher, C:\Program Files\OriginLab\Origin9\origin.9.0.sr1-patch.exe, , [ff3bf990c0d954e2a0e35430847d5ca4],
HackTool.SnadBoy, C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\Revelation.exe, , [65d58ffa2b6ef83e5cae56e26b9a43bd],
PUP.Optional.SnadBoy, C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\RevelationHelper.dll, , [75c5a4e52b6e4cea09934730a85a8b75],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
# AdwCleaner v5.102 - Logfile created 18/03/2016 at 08:56:00
# Updated 13/03/2016 by Xplode
# Database : 2016-03-16.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Vali PC - VALIPC
# Running from : C:\Users\Vali PC\Desktop\adwcleaner_5.102.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File Deleted : C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}.xpi
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Your Software Deals_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4E8B1900-34DE-E742-E6A7-606519AC19B7}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Key Deleted : HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.snapdoc
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [2359 bytes] - [18/03/2016 08:56:00]
C:\Program Files (x86)\AdwCleaner\AdwCleaner[S1].txt - [2612 bytes] - [18/03/2016 08:54:28]
########## EOF - C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [2545 bytes] ##########
Malwarebytes
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 18. 3. 2016
Čas skenování: 9:04
Protokol: eee.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.18.02
Databáze rootkitů: v2016.03.12.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Vali PC
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1265123
Uplynulý čas: 4 hod, 55 min, 2 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 3
RiskWare.FilePatcher, C:\Program Files\OriginLab\Origin9\origin.9.0.sr1-patch.exe, , [ff3bf990c0d954e2a0e35430847d5ca4],
HackTool.SnadBoy, C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\Revelation.exe, , [65d58ffa2b6ef83e5cae56e26b9a43bd],
PUP.Optional.SnadBoy, C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\RevelationHelper.dll, , [75c5a4e52b6e4cea09934730a85a8b75],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Vir
Vsechny nalezy MBAM nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vir
Test proběhl bez nálezů, problém s Esetem bohužel přetrvává.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 19. 3. 2016
Čas skenování: 8:03
Protokol: 22222.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.19.02
Databáze rootkitů: v2016.03.12.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Vali PC
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1263982
Uplynulý čas: 4 hod, 44 min, 42 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 19. 3. 2016
Čas skenování: 8:03
Protokol: 22222.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.19.02
Databáze rootkitů: v2016.03.12.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Vali PC
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1263982
Uplynulý čas: 4 hod, 44 min, 42 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Vir
MBAM odinstalujte Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vir
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Vali PC (administrator) on VALIPC (20-03-2016 09:33:25)
Running from C:\Users\Vali PC\Desktop
Loaded Profiles: Vali PC (Available Profiles: Vali PC)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
() C:\Windows\System32\valWBFPolicyService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_monitor.exe
(Flexera Software, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\lmgrd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansyslmd.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Intel) C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(forum.viry.cz) C:\Users\Vali PC\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-23] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-25] (Synaptics Incorporated)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [4126776 2016-01-04] (Connectify)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2016-02-09] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2011-08-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-11-20] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-24] (Autodesk Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2687160 2015-11-02] (Sony Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2015-12-18] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25577864 2016-03-12] (Dropbox, Inc.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [AshSnap] => C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe [5707640 2014-05-06] (Ashampoo Media GmbH & Co. KG)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [EPSON SX525WD Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [224768 2010-01-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [EPSON68415A (Epson Stylus SX525WD)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [224768 2010-01-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [Epson Stylus SX525WD(S�e)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [224768 2010-01-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26780368 2016-02-28] (Microsoft Corporation)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [8207360 2016-02-08] (Sand Studio)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Policies\Explorer: []
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\MountPoints2: {f4e0d781-b21b-11e5-be82-84a6c8ecfa7b} - "G:\Windows64\Disk1\InstData\VM\Maple15WindowsX86_64Installer.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2016-02-09] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [175368 2016-02-09] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [153208 2016-02-09] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
Startup: C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lingea Update Center.lnk [2016-01-25]
ShortcutTarget: Lingea Update Center.lnk -> C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe (No File)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 130.225.89.122 130.225.89.123
Tcpip\..\Interfaces\{07FF6B21-A2E7-4484-8F6B-7AD0588C01CB}: [DhcpNameServer] 130.225.89.122 130.225.89.123
Tcpip\..\Interfaces\{B4DDA200-EF51-433D-9E98-0C770662BA2A}: [DhcpNameServer] 130.225.89.122 130.225.89.123
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-3791064438-3411639862-1564456912-1002 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-02-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-02-28] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-24] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-24] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default
FF Homepage: hxxps://mail.google.com/mail/u/0/#inbox
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-11] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-02-28] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll [2012-08-10] ( HP)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-02-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-02-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2013-08-20] (Nero AG)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3791064438-3411639862-1564456912-1002: @lingea.com/x-lingea-translate -> C:\Program Files (x86)\Common Files\Lingea Shared\LG_Mozilla.dll [2015-05-26] (Lingea s.r.o.)
FF Plugin HKU\S-1-5-21-3791064438-3411639862-1564456912-1002: redgiant.com/RGMediaPlayer -> C:\Program Files (x86)\Red Giant\BulletProof\npRGMediaPlayer.dll [2014-01-13] (Red Giant)
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\adblockpopups@jessehakanen.net.xpi [2015-12-21]
FF Extension: Geocaching.com GPX Downloader - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\gpxdown@geocaching.com.xpi [2016-01-08]
FF Extension: Exif Viewer - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\exif_viewer@mozilla.doslash.org.xpi [2016-01-24]
FF Extension: YouTube™ AdBlock - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\Extensions\jid1-w4wG5nJhx4LJZr@jetpack.xpi [2015-12-29]
FF Extension: Password Exporter - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2015-12-21]
FF Extension: Adblock Plus - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-23]
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-20] [not signed]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\websitelogon@truesuite.com [2015-12-21] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2016-02-17]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fegekclkdhbnfdcmomlpegkkndgnmfmo] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2012-07-12]
CHR HKLM-x32\...\Chrome\Extension: [ligocpecgmjonmijmlompafnhnpgjccd] - C:\Program Files (x86)\Lingea\Lakota\syst\LG_Chrome.crx [2015-05-26]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2020056 2016-02-09] (Adobe Systems, Incorporated)
R2 ANSYS, Inc. License Manager; C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe [5457920 2012-09-24] (ANSYS, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2912496 2016-02-28] (Microsoft Corporation)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [256568 2016-01-04] (Connectify)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-05] (Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2015-12-24] (Digital Wave Ltd.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2521440 2016-03-17] (ESET)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641320 2012-08-10] (HP)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-23] (NVIDIA Corporation)
R2 hasplms; C:\Windows\system32\hasplms.exe [4665168 2015-09-23] (SafeNet Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2015-11-20] (Microsoft Corporation)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193576 2012-07-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-08] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-23] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-23] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-23] (NVIDIA Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [495800 2015-11-02] (Sony Corporation)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [137216 2015-11-19] (Microsoft Corporation) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc.)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2012-09-06] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-12-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-12-23] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2014-01-08] (Intel® Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 akshasp; C:\Windows\system32\DRIVERS\akshasp.sys [77912 2015-09-23] (SafeNet Inc.)
S3 akshhl; C:\Windows\system32\DRIVERS\akshhl.sys [81368 2015-09-23] (SafeNet Inc.)
S3 aksusb; C:\Windows\system32\DRIVERS\aksusb.sys [322560 2015-09-23] (SafeNet Inc.)
R1 cfywlan1; C:\Windows\system32\DRIVERS\cfywlan1.sys [36736 2016-02-02] (Connectify)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [43872 2016-02-02] (Connectify)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2015-12-22] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-03-17] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-11-20] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-11-20] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-11-20] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [206312 2015-11-20] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [52872 2015-11-20] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [69840 2015-11-20] (ESET)
S2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [170792 2016-03-17] (ESET)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [350552 2015-09-23] (SafeNet Inc.)
R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-21] (Intel Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3349984 2014-04-17] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [266896 2012-06-14] (Realtek Semiconductor Corp.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-21] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-25] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-25] (Synaptics Incorporated)
S3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [48096 2012-08-09] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-12-23] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-12-23] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-12-23] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20288 2012-08-03] (Hewlett-Packard Development Company, L.P.)
S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)
R3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-20 09:33 - 2016-03-20 09:33 - 00034784 _____ C:\Users\Vali PC\Desktop\FRST.txt
2016-03-20 09:32 - 2016-03-20 09:33 - 00000000 ____D C:\FRST
2016-03-20 09:30 - 2016-03-20 09:30 - 00112640 _____ (forum.viry.cz) C:\Users\Vali PC\Desktop\FRSTLauncher.exe
2016-03-20 09:28 - 2016-03-20 09:28 - 02374144 _____ (Farbar) C:\Users\Vali PC\Desktop\FRST64.exe
2016-03-19 21:08 - 2016-03-19 21:08 - 01391914 _____ C:\Users\Vali PC\Desktop\mm.gpx
2016-03-18 13:27 - 2016-03-18 13:28 - 832957488 _____ (Wolfram Research, Inc. ) C:\Users\Vali PC\Downloads\CDFPlayer_10.4.0_WIN.exe
2016-03-18 09:02 - 2016-03-18 09:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-18 08:54 - 2016-03-18 08:56 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-03-17 23:59 - 2016-03-17 23:59 - 01222144 _____ C:\Users\Vali PC\Downloads\RSITx64.exe
2016-03-17 23:59 - 2016-03-17 23:59 - 00000000 ____D C:\rsit
2016-03-17 23:59 - 2016-03-17 23:59 - 00000000 ____D C:\Program Files\trend micro
2016-03-17 10:37 - 2016-03-17 10:37 - 00211410 _____ C:\Users\Vali PC\Downloads\Ansys-použití pružin.pdf
2016-03-17 08:16 - 2016-03-17 08:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-03-16 19:31 - 2016-03-16 19:31 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-03-15 23:21 - 2016-03-15 23:21 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\TightVNC
2016-03-15 23:08 - 2016-03-15 23:08 - 00000000 ____D C:\ProgramData\TightVNC
2016-03-15 23:08 - 2016-03-15 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TightVNC
2016-03-15 23:08 - 2016-03-15 23:08 - 00000000 ____D C:\Program Files\TightVNC
2016-03-15 10:17 - 2016-03-15 10:28 - 00000000 ____D C:\Users\Vali PC\Downloads\_WIGO
2016-03-15 10:03 - 2016-03-15 10:03 - 00004169 _____ C:\Users\Vali PC\Downloads\gauss.py
2016-03-15 09:01 - 2016-03-15 09:01 - 00000000 ____D C:\ProgramData\AMMYY
2016-03-14 20:18 - 2016-03-14 21:50 - 1626783744 _____ C:\Users\Vali PC\Downloads\Paper-Towns--Papírová-města-(2015)-cz-titulky.avi
2016-03-12 21:49 - 2016-03-12 21:49 - 00000000 ____D C:\Users\Vali PC\Downloads\videohive-7767697-hand-drawn2
2016-03-11 18:05 - 2016-03-11 18:07 - 00000000 ____D C:\Users\Vali PC\Documents\obnovené
2016-03-11 18:03 - 2016-03-11 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-03-11 18:03 - 2016-03-11 18:03 - 00000000 ____D C:\Program Files\Recuva
2016-03-11 10:15 - 2016-03-11 10:15 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2016-03-11 10:15 - 2016-03-11 10:15 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-03-10 21:54 - 2016-03-10 21:54 - 00012789 _____ C:\Users\Vali PC\Desktop\Travel document for VALES - JAN - 2X97LV.pdf
2016-03-10 08:35 - 2016-03-10 08:35 - 00000000 ____D C:\Users\Vali PC\AppData\Local\PDFCreator
2016-03-10 08:35 - 2016-03-10 08:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2016-03-10 08:35 - 2016-03-10 08:35 - 00000000 ____D C:\Program Files\PDFCreator
2016-03-09 09:15 - 2016-02-20 16:45 - 01373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 01168896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-03-09 09:15 - 2016-02-08 22:05 - 20352512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-09 09:15 - 2016-02-08 21:39 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-03-09 09:15 - 2016-02-08 21:34 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-09 09:15 - 2016-02-08 21:29 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-03-09 09:15 - 2016-02-08 21:28 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-03-09 09:15 - 2016-02-08 21:10 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-03-09 09:15 - 2016-02-08 21:07 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-03-09 09:15 - 2016-02-08 21:05 - 25816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 09:15 - 2016-02-08 21:03 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-03-09 09:15 - 2016-02-08 21:02 - 13012480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-09 09:15 - 2016-02-08 21:02 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-03-09 09:15 - 2016-02-08 21:01 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-03-09 09:15 - 2016-02-08 20:43 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-03-09 09:15 - 2016-02-08 20:39 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-03-09 09:15 - 2016-02-08 20:38 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-03-09 09:15 - 2016-02-08 19:27 - 02887680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-09 09:15 - 2016-02-08 19:26 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-03-09 09:15 - 2016-02-08 19:16 - 06052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-03-09 09:15 - 2016-02-08 19:14 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-03-09 09:15 - 2016-02-08 19:13 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-03-09 09:15 - 2016-02-08 18:51 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-03-09 09:15 - 2016-02-08 18:42 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-03-09 09:15 - 2016-02-08 18:37 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-03-09 09:15 - 2016-02-08 18:34 - 00798720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-03-09 09:15 - 2016-02-08 18:33 - 14613504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-09 09:15 - 2016-02-08 18:33 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-03-09 09:15 - 2016-02-08 18:19 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-03-09 09:15 - 2016-02-08 18:15 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-03-09 09:15 - 2016-02-08 18:07 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-03-09 09:15 - 2016-02-08 17:55 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-03-09 09:15 - 2016-02-05 20:06 - 00046768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-03-09 09:15 - 2016-01-09 02:38 - 00091992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-03-09 09:15 - 2016-01-06 19:25 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-03-09 09:15 - 2015-12-30 22:53 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-09 09:14 - 2016-02-12 20:14 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-03-09 09:14 - 2016-02-12 16:14 - 03708416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 09:14 - 2016-02-12 15:55 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-03-09 09:14 - 2016-02-12 15:54 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-03-09 09:14 - 2016-02-12 15:54 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-03-09 09:14 - 2016-02-12 15:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-03-09 09:14 - 2016-02-12 15:51 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-03-09 09:14 - 2016-02-12 15:51 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-03-09 09:14 - 2016-02-12 15:51 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-03-09 09:14 - 2016-02-12 15:48 - 02244096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-03-09 09:14 - 2016-02-12 15:47 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-03-09 09:14 - 2016-02-12 15:46 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-03-09 09:14 - 2016-02-06 19:08 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 09:14 - 2016-02-06 17:58 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-03-09 09:14 - 2016-02-06 17:32 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-03-09 09:14 - 2016-02-05 20:07 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-09 09:14 - 2016-02-05 20:07 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-09 09:14 - 2016-02-05 16:03 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 09:14 - 2016-02-05 16:00 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-09 09:14 - 2016-02-05 15:59 - 07784960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 09:14 - 2016-02-05 15:55 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-09 09:14 - 2016-02-05 15:48 - 07075840 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-03-09 09:14 - 2016-02-05 15:47 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-03-09 09:14 - 2016-02-04 19:18 - 04174336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-03-09 09:14 - 2016-02-04 19:18 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 09:14 - 2016-02-04 19:12 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 09:14 - 2016-02-04 18:44 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-09 09:14 - 2016-02-04 18:39 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-09 09:14 - 2016-02-04 18:24 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 09:14 - 2016-02-04 18:02 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-09 09:14 - 2016-02-03 21:37 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 09:14 - 2016-02-03 21:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-09 09:14 - 2016-02-03 16:09 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-09 09:14 - 2016-02-03 16:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 09:14 - 2016-02-03 16:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-09 09:14 - 2016-01-31 20:16 - 00148832 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-03-09 09:14 - 2016-01-24 19:19 - 00419160 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-03-09 09:14 - 2016-01-24 19:19 - 00378712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-03-09 09:14 - 2016-01-24 19:19 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-03-09 09:14 - 2016-01-24 12:57 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-03-09 09:14 - 2016-01-24 12:45 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-03-09 09:14 - 2016-01-15 17:56 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-03-09 09:14 - 2016-01-15 17:45 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-03-09 09:14 - 2016-01-10 17:41 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-03-09 09:14 - 2016-01-10 17:31 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-03-09 09:14 - 2016-01-09 02:49 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-03-09 09:14 - 2016-01-09 02:49 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-03-09 09:14 - 2016-01-07 00:46 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-03-09 09:14 - 2016-01-07 00:45 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-03-09 09:14 - 2016-01-06 17:47 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-03-09 09:14 - 2016-01-05 16:00 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-03-09 09:14 - 2015-12-30 21:49 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-03-09 09:14 - 2015-12-20 15:57 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-03-09 09:14 - 2015-12-20 15:56 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-03-09 09:14 - 2015-12-20 15:43 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-03-09 09:14 - 2015-11-19 15:33 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-03-09 09:14 - 2015-11-19 15:26 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-03-09 09:08 - 2016-03-09 09:08 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2016-03-09 09:08 - 2016-03-09 09:08 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-03-09 09:05 - 2015-01-06 04:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-03-09 09:05 - 2015-01-06 03:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-03-09 09:05 - 2015-01-06 02:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-03-09 09:05 - 2015-01-06 02:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-03-09 08:58 - 2015-12-16 18:11 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-03-09 08:58 - 2015-12-16 17:51 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-03-09 08:58 - 2015-06-09 23:39 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-03-09 08:58 - 2015-06-09 23:39 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-03-09 08:58 - 2015-06-09 23:38 - 01201664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-03-08 08:47 - 2016-03-08 08:47 - 00153747 _____ C:\Users\Vali PC\Downloads\2Pac_plakat.jpeg
2016-03-06 22:38 - 2016-03-06 22:38 - 54357344 _____ C:\Users\Vali PC\Downloads\richard.psd
2016-03-06 20:36 - 2016-03-07 16:07 - 00000337 _____ C:\Users\Vali PC\Desktop\rsa.txt
2016-03-04 13:30 - 2016-03-11 14:52 - 00000000 ____D C:\Users\Vali PC\.matplotlib
2016-03-04 13:07 - 2016-03-04 13:11 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5
2016-03-04 13:07 - 2016-03-04 13:07 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Package Cache
2016-03-04 11:15 - 2016-03-04 11:15 - 00000000 ____D C:\Users\Vali PC\Downloads\numpy-1.10.4
2016-03-04 11:06 - 2016-03-11 14:40 - 00000000 ____D C:\Users\Vali PC\.plotly
2016-03-03 15:09 - 2016-03-11 14:50 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Python
2016-03-03 10:27 - 2016-03-03 10:27 - 00000000 ____D C:\Users\Vali PC\AppData\Local\pip
2016-03-02 14:27 - 2016-03-02 14:29 - 00000000 ____D C:\Users\Vali PC\.PyCharm50
2016-03-02 14:27 - 2016-03-02 14:27 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\JetBrains
2016-03-02 14:26 - 2016-03-02 14:26 - 00001044 _____ C:\Users\Public\Desktop\JetBrains PyCharm Community Edition 5.0.4.lnk
2016-03-02 14:26 - 2016-03-02 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2016-03-02 14:26 - 2016-03-02 14:26 - 00000000 ____D C:\Program Files (x86)\JetBrains
2016-02-28 17:13 - 2016-02-28 17:13 - 00000000 ____D C:\Users\Vali PC\Downloads\motion-array-dynamic-liquid-logo
2016-02-26 09:28 - 2016-02-26 09:28 - 00000000 ____D C:\Users\Vali PC\AppData\Local\SafeNet Sentinel
2016-02-26 08:03 - 2016-02-26 08:05 - 1071295659 _____ C:\Users\Vali PC\Downloads\ShareAE.com-14664200-fx-particle-builder-fire-dust-smoke-particular-presets.rar
2016-02-25 17:28 - 2016-02-25 22:27 - 1074717063 _____ C:\Users\Vali PC\Downloads\Straight-Outta-Compton-2015,-CZ-tit.mkv
2016-02-24 21:03 - 2016-02-24 21:03 - 00000000 ____D C:\Users\Vali PC\Downloads\y-cruncher v0.6.9.9462
2016-02-24 16:16 - 2016-02-24 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GnuWin32
2016-02-24 16:16 - 2016-02-24 16:16 - 00000000 ____D C:\Program Files (x86)\GnuWin32
2016-02-22 13:16 - 2016-02-22 17:07 - 00000000 ____D C:\Users\Vali PC\Downloads\videohive-11625064-summer-journey
2016-02-22 09:58 - 2016-02-22 09:58 - 00000000 ____D C:\Users\Vali PC\Downloads\pepe
2016-02-22 08:13 - 2016-02-22 08:19 - 91309801 _____ C:\Users\Vali PC\Downloads\Nero-Burning-ROM-2014-v15.0.05300-ML-Incl.-Crack-+-Key-[ATOM].rar
2016-02-21 18:50 - 2016-02-21 18:50 - 00156979 _____ C:\Users\Vali PC\Downloads\EN_UD_manual.pdf
2016-02-20 09:39 - 2016-02-20 09:39 - 177609989 _____ C:\Users\Vali PC\Downloads\ShareAE.com-Underwater-9324834.rar
2016-02-20 08:46 - 2016-02-20 08:46 - 00000000 ____D C:\Users\Vali PC\Downloads\Videohive-elemental-2d-fx-pack_9673890
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-20 09:32 - 2015-12-21 16:06 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3791064438-3411639862-1564456912-1002
2016-03-20 09:14 - 2016-01-05 22:09 - 00000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-03-20 09:09 - 2016-01-05 22:09 - 00000920 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-03-20 09:09 - 2015-12-22 19:14 - 00000564 _____ C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job
2016-03-20 09:09 - 2015-12-21 16:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-20 09:09 - 2015-12-21 16:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-20 09:08 - 2015-12-23 12:52 - 00000000 __SHD C:\Users\Vali PC\IntelGraphicsProfiles
2016-03-20 09:08 - 2015-12-21 15:57 - 00000000 ____D C:\Users\Vali PC\AppData\LocalLow\AuthenTec
2016-03-19 22:42 - 2015-12-22 20:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-19 22:41 - 2016-02-10 20:08 - 00003040 _____ C:\Users\Vali PC\Desktop\keše2.txt
2016-03-19 22:13 - 2016-01-04 08:45 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Skype
2016-03-19 21:18 - 2015-12-24 09:12 - 00000000 ____D C:\Users\Vali PC\Documents\Soubory aplikace Outlook
2016-03-19 21:08 - 2015-12-22 21:31 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\GeoGet
2016-03-19 20:39 - 2016-02-16 08:55 - 00000354 _____ C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job
2016-03-19 19:49 - 2016-01-10 09:35 - 00000000 ____D C:\Users\Vali PC\Documents\AirDroid
2016-03-19 06:52 - 2015-12-21 18:44 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Adobe
2016-03-18 14:39 - 2014-11-21 05:53 - 01934988 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-18 14:39 - 2014-11-21 05:10 - 00802206 _____ C:\WINDOWS\system32\perfh005.dat
2016-03-18 14:39 - 2014-11-21 05:10 - 00183700 _____ C:\WINDOWS\system32\perfc005.dat
2016-03-18 14:39 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-03-18 14:32 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-18 10:03 - 2016-02-12 13:50 - 00000000 ____D C:\Users\Vali PC\Desktop\DTU
2016-03-17 23:53 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-17 23:14 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-03-17 19:31 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\tracing
2016-03-17 13:31 - 2016-02-10 21:50 - 00003842 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1455137423
2016-03-17 13:31 - 2016-02-10 21:50 - 00001065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-17 13:31 - 2016-02-10 21:50 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-17 13:27 - 2015-12-23 12:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-17 09:25 - 2015-12-21 15:57 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Packages
2016-03-17 08:16 - 2016-01-05 22:09 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-03-17 07:37 - 2015-12-22 00:09 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-03-17 07:36 - 2015-11-20 13:21 - 00264552 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2016-03-17 07:36 - 2015-11-20 13:21 - 00170792 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfpr.sys
2016-03-16 19:31 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-03-16 19:31 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-03-16 19:30 - 2015-12-21 17:02 - 00000000 ____D C:\Program Files\Microsoft Office
2016-03-16 11:56 - 2016-01-06 15:38 - 00000000 ____D C:\Users\Vali PC\Desktop\Výsledky
2016-03-16 09:48 - 2016-02-05 10:29 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\AIMP3
2016-03-15 23:46 - 2016-01-04 10:18 - 00000000 ___RD C:\Users\Vali PC\Desktop\STM PC
2016-03-15 22:32 - 2015-12-22 08:18 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\vlc
2016-03-15 14:14 - 2015-12-23 09:22 - 00000000 ____D C:\Users\Vali PC\Desktop\ans13
2016-03-15 09:48 - 2016-01-05 22:20 - 00000000 ___RD C:\Users\Vali PC\Dropbox
2016-03-15 09:48 - 2016-01-05 22:09 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Dropbox
2016-03-15 08:39 - 2016-02-16 08:55 - 00003172 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForVali PC
2016-03-14 20:40 - 2015-12-21 23:03 - 00000034 _____ C:\Users\Vali PC\AppData\Roaming\AdobeWLCMCache.dat
2016-03-11 19:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-11 18:05 - 2015-12-23 12:26 - 00000000 ____D C:\Users\Vali PC
2016-03-11 10:15 - 2015-12-21 23:54 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-03-11 10:05 - 2015-12-26 09:01 - 00000000 ____D C:\Users\Vali PC\AppData\Local\ElevatedDiagnostics
2016-03-11 10:05 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-11 09:42 - 2015-12-22 20:10 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-03-10 11:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-03-10 08:35 - 2015-12-22 18:28 - 00120072 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2016-03-10 07:57 - 2016-01-03 17:37 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2016-03-09 18:04 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-09 17:52 - 2013-08-22 15:44 - 05570984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-09 17:04 - 2015-12-26 09:43 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-03-09 17:02 - 2015-12-22 00:09 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\TeamViewer
2016-03-09 09:51 - 2015-12-21 20:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-09 09:45 - 2015-12-21 20:30 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-09 09:14 - 2015-12-23 11:50 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-03-09 09:14 - 2015-12-23 11:50 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-03-09 09:14 - 2015-12-23 11:50 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-03-09 09:09 - 2015-12-21 18:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-09 09:09 - 2012-11-30 22:29 - 00000000 ____D C:\Program Files\Intel
2016-03-09 09:08 - 2016-01-03 12:38 - 00000000 ____D C:\Users\Vali%20PC
2016-03-09 09:08 - 2015-12-23 12:20 - 00000000 ____D C:\Program Files (x86)\Intel
2016-03-09 09:08 - 2012-11-30 22:30 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-03-09 09:08 - 2012-11-30 22:29 - 00000000 ____D C:\ProgramData\Intel
2016-03-09 09:08 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2016-03-08 13:40 - 2015-12-21 18:40 - 00000000 ____D C:\Users\Vali PC\AppData\Local\CrashDumps
2016-03-08 08:00 - 2015-12-31 08:10 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 08:00 - 2015-12-31 08:10 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-06 09:19 - 2015-12-22 19:37 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Notepad++
2016-03-05 20:37 - 2016-01-04 08:45 - 00000000 ____D C:\ProgramData\Skype
2016-03-04 13:24 - 2016-02-11 16:05 - 00000000 ____D C:\Program Files (x86)\Python
2016-03-04 11:44 - 2015-12-22 00:09 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-03-02 17:56 - 2016-02-02 21:28 - 00000000 ____D C:\Program Files (x86)\Connectify
2016-03-02 17:56 - 2015-12-23 09:08 - 00000000 ____D C:\Users\Vali PC\Documents\Zálohy reistrů
2016-03-02 17:56 - 2015-12-22 00:06 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\DAEMON Tools Lite
2016-02-26 09:28 - 2016-01-05 08:45 - 00000000 ____D C:\Users\Public\Documents\Dlubal
2016-02-26 09:00 - 2015-12-26 11:33 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2016-02-26 09:00 - 2015-12-26 11:33 - 00000000 ___SD C:\WINDOWS\system32\GWX
2016-02-25 13:54 - 2015-12-22 18:49 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\DVDVideoSoft
2016-02-20 10:32 - 2016-02-18 08:08 - 00000000 ____D C:\Users\Vali PC\Desktop\obr mapa
2016-02-20 09:39 - 2015-12-21 23:47 - 00000000 ____D C:\ProgramData\rgt
2016-02-19 18:02 - 2015-12-22 21:31 - 00000997 _____ C:\Users\Public\Desktop\GeoGet.lnk
2016-02-19 18:02 - 2015-12-22 21:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2016-02-19 18:02 - 2015-12-22 21:31 - 00000000 ____D C:\Program Files (x86)\GeoGet
==================== Files in the root of some directories =======
2015-12-21 23:03 - 2016-03-14 20:40 - 0000034 _____ () C:\Users\Vali PC\AppData\Roaming\AdobeWLCMCache.dat
2016-02-11 14:03 - 2016-02-11 14:03 - 0038477 _____ () C:\Users\Vali PC\AppData\Roaming\Hodnoty oddělené čárkami.ADR
2016-01-29 16:31 - 2016-01-29 16:31 - 0003584 _____ () C:\Users\Vali PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-22 08:21 - 2015-12-22 08:21 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
Some files in TEMP:
====================
C:\Users\Vali PC\AppData\Local\Temp\npp.6.9.Installer.exe
C:\Users\Vali PC\AppData\Local\Temp\sqlite3.dll
C:\Users\Vali PC\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job => C:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET NOD32 Antivirus 9.0.351.2 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 9.0.374.1 (Disabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Vali PC\Desktop" je 438 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Vali PC (administrator) on VALIPC (20-03-2016 09:33:25)
Running from C:\Users\Vali PC\Desktop
Loaded Profiles: Vali PC (Available Profiles: Vali PC)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
() C:\Windows\System32\valWBFPolicyService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_monitor.exe
(Flexera Software, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\lmgrd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansyslmd.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Intel) C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(forum.viry.cz) C:\Users\Vali PC\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-23] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-25] (Synaptics Incorporated)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [4126776 2016-01-04] (Connectify)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2016-02-09] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2011-08-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-11-20] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-24] (Autodesk Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2687160 2015-11-02] (Sony Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2015-12-18] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25577864 2016-03-12] (Dropbox, Inc.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [AshSnap] => C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe [5707640 2014-05-06] (Ashampoo Media GmbH & Co. KG)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [EPSON SX525WD Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [224768 2010-01-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [EPSON68415A (Epson Stylus SX525WD)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [224768 2010-01-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [Epson Stylus SX525WD(S�e)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE [224768 2010-01-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26780368 2016-02-28] (Microsoft Corporation)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [8207360 2016-02-08] (Sand Studio)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Policies\Explorer: []
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\MountPoints2: {f4e0d781-b21b-11e5-be82-84a6c8ecfa7b} - "G:\Windows64\Disk1\InstData\VM\Maple15WindowsX86_64Installer.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2016-02-09] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [175368 2016-02-09] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [153208 2016-02-09] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
Startup: C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lingea Update Center.lnk [2016-01-25]
ShortcutTarget: Lingea Update Center.lnk -> C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe (No File)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 130.225.89.122 130.225.89.123
Tcpip\..\Interfaces\{07FF6B21-A2E7-4484-8F6B-7AD0588C01CB}: [DhcpNameServer] 130.225.89.122 130.225.89.123
Tcpip\..\Interfaces\{B4DDA200-EF51-433D-9E98-0C770662BA2A}: [DhcpNameServer] 130.225.89.122 130.225.89.123
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-3791064438-3411639862-1564456912-1002 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-02-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-02-28] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-24] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-24] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-11-18] (Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-02-28] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default
FF Homepage: hxxps://mail.google.com/mail/u/0/#inbox
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-11] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-02-28] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll [2012-08-10] ( HP)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-02-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-02-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2013-08-20] (Nero AG)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3791064438-3411639862-1564456912-1002: @lingea.com/x-lingea-translate -> C:\Program Files (x86)\Common Files\Lingea Shared\LG_Mozilla.dll [2015-05-26] (Lingea s.r.o.)
FF Plugin HKU\S-1-5-21-3791064438-3411639862-1564456912-1002: redgiant.com/RGMediaPlayer -> C:\Program Files (x86)\Red Giant\BulletProof\npRGMediaPlayer.dll [2014-01-13] (Red Giant)
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\adblockpopups@jessehakanen.net.xpi [2015-12-21]
FF Extension: Geocaching.com GPX Downloader - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\gpxdown@geocaching.com.xpi [2016-01-08]
FF Extension: Exif Viewer - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\extensions\exif_viewer@mozilla.doslash.org.xpi [2016-01-24]
FF Extension: YouTube™ AdBlock - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\Extensions\jid1-w4wG5nJhx4LJZr@jetpack.xpi [2015-12-29]
FF Extension: Password Exporter - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2015-12-21]
FF Extension: Adblock Plus - C:\Users\Vali PC\AppData\Roaming\Mozilla\Firefox\Profiles\uvz2ggku.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-23]
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-20] [not signed]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\websitelogon@truesuite.com [2015-12-21] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2016-02-17]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fegekclkdhbnfdcmomlpegkkndgnmfmo] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2012-07-12]
CHR HKLM-x32\...\Chrome\Extension: [ligocpecgmjonmijmlompafnhnpgjccd] - C:\Program Files (x86)\Lingea\Lakota\syst\LG_Chrome.crx [2015-05-26]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2020056 2016-02-09] (Adobe Systems, Incorporated)
R2 ANSYS, Inc. License Manager; C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe [5457920 2012-09-24] (ANSYS, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2912496 2016-02-28] (Microsoft Corporation)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [256568 2016-01-04] (Connectify)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-05] (Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2015-12-24] (Digital Wave Ltd.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2521440 2016-03-17] (ESET)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641320 2012-08-10] (HP)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-23] (NVIDIA Corporation)
R2 hasplms; C:\Windows\system32\hasplms.exe [4665168 2015-09-23] (SafeNet Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2015-11-20] (Microsoft Corporation)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193576 2012-07-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-08] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-23] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-23] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-23] (NVIDIA Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [495800 2015-11-02] (Sony Corporation)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [137216 2015-11-19] (Microsoft Corporation) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc.)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2012-09-06] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-12-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-12-23] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2014-01-08] (Intel® Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 akshasp; C:\Windows\system32\DRIVERS\akshasp.sys [77912 2015-09-23] (SafeNet Inc.)
S3 akshhl; C:\Windows\system32\DRIVERS\akshhl.sys [81368 2015-09-23] (SafeNet Inc.)
S3 aksusb; C:\Windows\system32\DRIVERS\aksusb.sys [322560 2015-09-23] (SafeNet Inc.)
R1 cfywlan1; C:\Windows\system32\DRIVERS\cfywlan1.sys [36736 2016-02-02] (Connectify)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [43872 2016-02-02] (Connectify)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2015-12-22] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-03-17] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-11-20] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-11-20] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-11-20] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [206312 2015-11-20] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [52872 2015-11-20] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [69840 2015-11-20] (ESET)
S2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [170792 2016-03-17] (ESET)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [350552 2015-09-23] (SafeNet Inc.)
R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-21] (Intel Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3349984 2014-04-17] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [266896 2012-06-14] (Realtek Semiconductor Corp.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-21] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-25] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-25] (Synaptics Incorporated)
S3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [48096 2012-08-09] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-12-23] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-12-23] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-12-23] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20288 2012-08-03] (Hewlett-Packard Development Company, L.P.)
S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)
R3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-20 09:33 - 2016-03-20 09:33 - 00034784 _____ C:\Users\Vali PC\Desktop\FRST.txt
2016-03-20 09:32 - 2016-03-20 09:33 - 00000000 ____D C:\FRST
2016-03-20 09:30 - 2016-03-20 09:30 - 00112640 _____ (forum.viry.cz) C:\Users\Vali PC\Desktop\FRSTLauncher.exe
2016-03-20 09:28 - 2016-03-20 09:28 - 02374144 _____ (Farbar) C:\Users\Vali PC\Desktop\FRST64.exe
2016-03-19 21:08 - 2016-03-19 21:08 - 01391914 _____ C:\Users\Vali PC\Desktop\mm.gpx
2016-03-18 13:27 - 2016-03-18 13:28 - 832957488 _____ (Wolfram Research, Inc. ) C:\Users\Vali PC\Downloads\CDFPlayer_10.4.0_WIN.exe
2016-03-18 09:02 - 2016-03-18 09:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-18 08:54 - 2016-03-18 08:56 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-03-17 23:59 - 2016-03-17 23:59 - 01222144 _____ C:\Users\Vali PC\Downloads\RSITx64.exe
2016-03-17 23:59 - 2016-03-17 23:59 - 00000000 ____D C:\rsit
2016-03-17 23:59 - 2016-03-17 23:59 - 00000000 ____D C:\Program Files\trend micro
2016-03-17 10:37 - 2016-03-17 10:37 - 00211410 _____ C:\Users\Vali PC\Downloads\Ansys-použití pružin.pdf
2016-03-17 08:16 - 2016-03-17 08:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-03-16 19:31 - 2016-03-16 19:31 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-03-15 23:21 - 2016-03-15 23:21 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\TightVNC
2016-03-15 23:08 - 2016-03-15 23:08 - 00000000 ____D C:\ProgramData\TightVNC
2016-03-15 23:08 - 2016-03-15 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TightVNC
2016-03-15 23:08 - 2016-03-15 23:08 - 00000000 ____D C:\Program Files\TightVNC
2016-03-15 10:17 - 2016-03-15 10:28 - 00000000 ____D C:\Users\Vali PC\Downloads\_WIGO
2016-03-15 10:03 - 2016-03-15 10:03 - 00004169 _____ C:\Users\Vali PC\Downloads\gauss.py
2016-03-15 09:01 - 2016-03-15 09:01 - 00000000 ____D C:\ProgramData\AMMYY
2016-03-14 20:18 - 2016-03-14 21:50 - 1626783744 _____ C:\Users\Vali PC\Downloads\Paper-Towns--Papírová-města-(2015)-cz-titulky.avi
2016-03-12 21:49 - 2016-03-12 21:49 - 00000000 ____D C:\Users\Vali PC\Downloads\videohive-7767697-hand-drawn2
2016-03-11 18:05 - 2016-03-11 18:07 - 00000000 ____D C:\Users\Vali PC\Documents\obnovené
2016-03-11 18:03 - 2016-03-11 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-03-11 18:03 - 2016-03-11 18:03 - 00000000 ____D C:\Program Files\Recuva
2016-03-11 10:15 - 2016-03-11 10:15 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2016-03-11 10:15 - 2016-03-11 10:15 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-03-10 21:54 - 2016-03-10 21:54 - 00012789 _____ C:\Users\Vali PC\Desktop\Travel document for VALES - JAN - 2X97LV.pdf
2016-03-10 08:35 - 2016-03-10 08:35 - 00000000 ____D C:\Users\Vali PC\AppData\Local\PDFCreator
2016-03-10 08:35 - 2016-03-10 08:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2016-03-10 08:35 - 2016-03-10 08:35 - 00000000 ____D C:\Program Files\PDFCreator
2016-03-09 09:15 - 2016-02-20 16:45 - 01373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 01168896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-03-09 09:15 - 2016-02-20 16:45 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-03-09 09:15 - 2016-02-08 22:05 - 20352512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-09 09:15 - 2016-02-08 21:39 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-03-09 09:15 - 2016-02-08 21:34 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-09 09:15 - 2016-02-08 21:29 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-03-09 09:15 - 2016-02-08 21:28 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-03-09 09:15 - 2016-02-08 21:10 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-03-09 09:15 - 2016-02-08 21:07 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-03-09 09:15 - 2016-02-08 21:05 - 25816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 09:15 - 2016-02-08 21:03 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-03-09 09:15 - 2016-02-08 21:02 - 13012480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-09 09:15 - 2016-02-08 21:02 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-03-09 09:15 - 2016-02-08 21:01 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-03-09 09:15 - 2016-02-08 20:43 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-03-09 09:15 - 2016-02-08 20:39 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-03-09 09:15 - 2016-02-08 20:38 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-03-09 09:15 - 2016-02-08 19:27 - 02887680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-09 09:15 - 2016-02-08 19:26 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-03-09 09:15 - 2016-02-08 19:16 - 06052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-03-09 09:15 - 2016-02-08 19:14 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-03-09 09:15 - 2016-02-08 19:13 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-03-09 09:15 - 2016-02-08 18:51 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-03-09 09:15 - 2016-02-08 18:42 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-03-09 09:15 - 2016-02-08 18:37 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-03-09 09:15 - 2016-02-08 18:34 - 00798720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-03-09 09:15 - 2016-02-08 18:33 - 14613504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-09 09:15 - 2016-02-08 18:33 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-03-09 09:15 - 2016-02-08 18:19 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-03-09 09:15 - 2016-02-08 18:15 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-03-09 09:15 - 2016-02-08 18:07 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-03-09 09:15 - 2016-02-08 17:55 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-03-09 09:15 - 2016-02-05 20:06 - 00046768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-03-09 09:15 - 2016-01-09 02:38 - 00091992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-03-09 09:15 - 2016-01-06 19:25 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-03-09 09:15 - 2015-12-30 22:53 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-09 09:14 - 2016-02-12 20:14 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-03-09 09:14 - 2016-02-12 16:14 - 03708416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 09:14 - 2016-02-12 15:55 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-03-09 09:14 - 2016-02-12 15:54 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-03-09 09:14 - 2016-02-12 15:54 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-03-09 09:14 - 2016-02-12 15:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-03-09 09:14 - 2016-02-12 15:51 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-03-09 09:14 - 2016-02-12 15:51 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-03-09 09:14 - 2016-02-12 15:51 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-03-09 09:14 - 2016-02-12 15:48 - 02244096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-03-09 09:14 - 2016-02-12 15:47 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-03-09 09:14 - 2016-02-12 15:46 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-03-09 09:14 - 2016-02-06 19:08 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 09:14 - 2016-02-06 17:58 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-03-09 09:14 - 2016-02-06 17:32 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-03-09 09:14 - 2016-02-05 20:07 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-09 09:14 - 2016-02-05 20:07 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-09 09:14 - 2016-02-05 16:03 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 09:14 - 2016-02-05 16:00 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-09 09:14 - 2016-02-05 15:59 - 07784960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 09:14 - 2016-02-05 15:55 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-09 09:14 - 2016-02-05 15:48 - 07075840 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-03-09 09:14 - 2016-02-05 15:47 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-03-09 09:14 - 2016-02-04 19:18 - 04174336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-03-09 09:14 - 2016-02-04 19:18 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 09:14 - 2016-02-04 19:12 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 09:14 - 2016-02-04 18:44 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-09 09:14 - 2016-02-04 18:39 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-09 09:14 - 2016-02-04 18:24 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 09:14 - 2016-02-04 18:02 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-09 09:14 - 2016-02-03 21:37 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 09:14 - 2016-02-03 21:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-09 09:14 - 2016-02-03 16:09 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-09 09:14 - 2016-02-03 16:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 09:14 - 2016-02-03 16:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-09 09:14 - 2016-01-31 20:16 - 00148832 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-03-09 09:14 - 2016-01-24 19:19 - 00419160 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-03-09 09:14 - 2016-01-24 19:19 - 00378712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-03-09 09:14 - 2016-01-24 19:19 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-03-09 09:14 - 2016-01-24 12:57 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-03-09 09:14 - 2016-01-24 12:45 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-03-09 09:14 - 2016-01-15 17:56 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-03-09 09:14 - 2016-01-15 17:45 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-03-09 09:14 - 2016-01-10 17:41 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-03-09 09:14 - 2016-01-10 17:31 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-03-09 09:14 - 2016-01-09 02:49 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-03-09 09:14 - 2016-01-09 02:49 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-03-09 09:14 - 2016-01-07 00:46 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-03-09 09:14 - 2016-01-07 00:45 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-03-09 09:14 - 2016-01-06 17:47 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-03-09 09:14 - 2016-01-05 16:00 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-03-09 09:14 - 2015-12-30 21:49 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-03-09 09:14 - 2015-12-20 15:57 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-03-09 09:14 - 2015-12-20 15:56 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-03-09 09:14 - 2015-12-20 15:43 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-03-09 09:14 - 2015-11-19 15:33 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-03-09 09:14 - 2015-11-19 15:26 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-03-09 09:08 - 2016-03-09 09:08 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2016-03-09 09:08 - 2016-03-09 09:08 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-03-09 09:05 - 2015-01-06 04:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-03-09 09:05 - 2015-01-06 03:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-03-09 09:05 - 2015-01-06 02:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-03-09 09:05 - 2015-01-06 02:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-03-09 08:58 - 2015-12-16 18:11 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-03-09 08:58 - 2015-12-16 17:51 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-03-09 08:58 - 2015-06-09 23:39 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-03-09 08:58 - 2015-06-09 23:39 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-03-09 08:58 - 2015-06-09 23:38 - 01201664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-03-08 08:47 - 2016-03-08 08:47 - 00153747 _____ C:\Users\Vali PC\Downloads\2Pac_plakat.jpeg
2016-03-06 22:38 - 2016-03-06 22:38 - 54357344 _____ C:\Users\Vali PC\Downloads\richard.psd
2016-03-06 20:36 - 2016-03-07 16:07 - 00000337 _____ C:\Users\Vali PC\Desktop\rsa.txt
2016-03-04 13:30 - 2016-03-11 14:52 - 00000000 ____D C:\Users\Vali PC\.matplotlib
2016-03-04 13:07 - 2016-03-04 13:11 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5
2016-03-04 13:07 - 2016-03-04 13:07 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Package Cache
2016-03-04 11:15 - 2016-03-04 11:15 - 00000000 ____D C:\Users\Vali PC\Downloads\numpy-1.10.4
2016-03-04 11:06 - 2016-03-11 14:40 - 00000000 ____D C:\Users\Vali PC\.plotly
2016-03-03 15:09 - 2016-03-11 14:50 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Python
2016-03-03 10:27 - 2016-03-03 10:27 - 00000000 ____D C:\Users\Vali PC\AppData\Local\pip
2016-03-02 14:27 - 2016-03-02 14:29 - 00000000 ____D C:\Users\Vali PC\.PyCharm50
2016-03-02 14:27 - 2016-03-02 14:27 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\JetBrains
2016-03-02 14:26 - 2016-03-02 14:26 - 00001044 _____ C:\Users\Public\Desktop\JetBrains PyCharm Community Edition 5.0.4.lnk
2016-03-02 14:26 - 2016-03-02 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2016-03-02 14:26 - 2016-03-02 14:26 - 00000000 ____D C:\Program Files (x86)\JetBrains
2016-02-28 17:13 - 2016-02-28 17:13 - 00000000 ____D C:\Users\Vali PC\Downloads\motion-array-dynamic-liquid-logo
2016-02-26 09:28 - 2016-02-26 09:28 - 00000000 ____D C:\Users\Vali PC\AppData\Local\SafeNet Sentinel
2016-02-26 08:03 - 2016-02-26 08:05 - 1071295659 _____ C:\Users\Vali PC\Downloads\ShareAE.com-14664200-fx-particle-builder-fire-dust-smoke-particular-presets.rar
2016-02-25 17:28 - 2016-02-25 22:27 - 1074717063 _____ C:\Users\Vali PC\Downloads\Straight-Outta-Compton-2015,-CZ-tit.mkv
2016-02-24 21:03 - 2016-02-24 21:03 - 00000000 ____D C:\Users\Vali PC\Downloads\y-cruncher v0.6.9.9462
2016-02-24 16:16 - 2016-02-24 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GnuWin32
2016-02-24 16:16 - 2016-02-24 16:16 - 00000000 ____D C:\Program Files (x86)\GnuWin32
2016-02-22 13:16 - 2016-02-22 17:07 - 00000000 ____D C:\Users\Vali PC\Downloads\videohive-11625064-summer-journey
2016-02-22 09:58 - 2016-02-22 09:58 - 00000000 ____D C:\Users\Vali PC\Downloads\pepe
2016-02-22 08:13 - 2016-02-22 08:19 - 91309801 _____ C:\Users\Vali PC\Downloads\Nero-Burning-ROM-2014-v15.0.05300-ML-Incl.-Crack-+-Key-[ATOM].rar
2016-02-21 18:50 - 2016-02-21 18:50 - 00156979 _____ C:\Users\Vali PC\Downloads\EN_UD_manual.pdf
2016-02-20 09:39 - 2016-02-20 09:39 - 177609989 _____ C:\Users\Vali PC\Downloads\ShareAE.com-Underwater-9324834.rar
2016-02-20 08:46 - 2016-02-20 08:46 - 00000000 ____D C:\Users\Vali PC\Downloads\Videohive-elemental-2d-fx-pack_9673890
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-20 09:32 - 2015-12-21 16:06 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3791064438-3411639862-1564456912-1002
2016-03-20 09:14 - 2016-01-05 22:09 - 00000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-03-20 09:09 - 2016-01-05 22:09 - 00000920 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-03-20 09:09 - 2015-12-22 19:14 - 00000564 _____ C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job
2016-03-20 09:09 - 2015-12-21 16:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-20 09:09 - 2015-12-21 16:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-20 09:08 - 2015-12-23 12:52 - 00000000 __SHD C:\Users\Vali PC\IntelGraphicsProfiles
2016-03-20 09:08 - 2015-12-21 15:57 - 00000000 ____D C:\Users\Vali PC\AppData\LocalLow\AuthenTec
2016-03-19 22:42 - 2015-12-22 20:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-19 22:41 - 2016-02-10 20:08 - 00003040 _____ C:\Users\Vali PC\Desktop\keše2.txt
2016-03-19 22:13 - 2016-01-04 08:45 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Skype
2016-03-19 21:18 - 2015-12-24 09:12 - 00000000 ____D C:\Users\Vali PC\Documents\Soubory aplikace Outlook
2016-03-19 21:08 - 2015-12-22 21:31 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\GeoGet
2016-03-19 20:39 - 2016-02-16 08:55 - 00000354 _____ C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job
2016-03-19 19:49 - 2016-01-10 09:35 - 00000000 ____D C:\Users\Vali PC\Documents\AirDroid
2016-03-19 06:52 - 2015-12-21 18:44 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Adobe
2016-03-18 14:39 - 2014-11-21 05:53 - 01934988 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-18 14:39 - 2014-11-21 05:10 - 00802206 _____ C:\WINDOWS\system32\perfh005.dat
2016-03-18 14:39 - 2014-11-21 05:10 - 00183700 _____ C:\WINDOWS\system32\perfc005.dat
2016-03-18 14:39 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-03-18 14:32 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-18 10:03 - 2016-02-12 13:50 - 00000000 ____D C:\Users\Vali PC\Desktop\DTU
2016-03-17 23:53 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-17 23:14 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-03-17 19:31 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\tracing
2016-03-17 13:31 - 2016-02-10 21:50 - 00003842 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1455137423
2016-03-17 13:31 - 2016-02-10 21:50 - 00001065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-17 13:31 - 2016-02-10 21:50 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-17 13:27 - 2015-12-23 12:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-17 09:25 - 2015-12-21 15:57 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Packages
2016-03-17 08:16 - 2016-01-05 22:09 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-03-17 07:37 - 2015-12-22 00:09 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-03-17 07:36 - 2015-11-20 13:21 - 00264552 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2016-03-17 07:36 - 2015-11-20 13:21 - 00170792 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfpr.sys
2016-03-16 19:31 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-03-16 19:31 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-03-16 19:30 - 2015-12-21 17:02 - 00000000 ____D C:\Program Files\Microsoft Office
2016-03-16 11:56 - 2016-01-06 15:38 - 00000000 ____D C:\Users\Vali PC\Desktop\Výsledky
2016-03-16 09:48 - 2016-02-05 10:29 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\AIMP3
2016-03-15 23:46 - 2016-01-04 10:18 - 00000000 ___RD C:\Users\Vali PC\Desktop\STM PC
2016-03-15 22:32 - 2015-12-22 08:18 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\vlc
2016-03-15 14:14 - 2015-12-23 09:22 - 00000000 ____D C:\Users\Vali PC\Desktop\ans13
2016-03-15 09:48 - 2016-01-05 22:20 - 00000000 ___RD C:\Users\Vali PC\Dropbox
2016-03-15 09:48 - 2016-01-05 22:09 - 00000000 ____D C:\Users\Vali PC\AppData\Local\Dropbox
2016-03-15 08:39 - 2016-02-16 08:55 - 00003172 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForVali PC
2016-03-14 20:40 - 2015-12-21 23:03 - 00000034 _____ C:\Users\Vali PC\AppData\Roaming\AdobeWLCMCache.dat
2016-03-11 19:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-11 18:05 - 2015-12-23 12:26 - 00000000 ____D C:\Users\Vali PC
2016-03-11 10:15 - 2015-12-21 23:54 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-03-11 10:05 - 2015-12-26 09:01 - 00000000 ____D C:\Users\Vali PC\AppData\Local\ElevatedDiagnostics
2016-03-11 10:05 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-11 09:42 - 2015-12-22 20:10 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-03-10 11:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-03-10 08:35 - 2015-12-22 18:28 - 00120072 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2016-03-10 07:57 - 2016-01-03 17:37 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2016-03-09 18:04 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-09 17:52 - 2013-08-22 15:44 - 05570984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-09 17:04 - 2015-12-26 09:43 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-03-09 17:02 - 2015-12-22 00:09 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\TeamViewer
2016-03-09 09:51 - 2015-12-21 20:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-09 09:45 - 2015-12-21 20:30 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-09 09:14 - 2015-12-23 11:50 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-03-09 09:14 - 2015-12-23 11:50 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-03-09 09:14 - 2015-12-23 11:50 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-03-09 09:09 - 2015-12-21 18:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-09 09:09 - 2012-11-30 22:29 - 00000000 ____D C:\Program Files\Intel
2016-03-09 09:08 - 2016-01-03 12:38 - 00000000 ____D C:\Users\Vali%20PC
2016-03-09 09:08 - 2015-12-23 12:20 - 00000000 ____D C:\Program Files (x86)\Intel
2016-03-09 09:08 - 2012-11-30 22:30 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-03-09 09:08 - 2012-11-30 22:29 - 00000000 ____D C:\ProgramData\Intel
2016-03-09 09:08 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2016-03-08 13:40 - 2015-12-21 18:40 - 00000000 ____D C:\Users\Vali PC\AppData\Local\CrashDumps
2016-03-08 08:00 - 2015-12-31 08:10 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 08:00 - 2015-12-31 08:10 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-06 09:19 - 2015-12-22 19:37 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\Notepad++
2016-03-05 20:37 - 2016-01-04 08:45 - 00000000 ____D C:\ProgramData\Skype
2016-03-04 13:24 - 2016-02-11 16:05 - 00000000 ____D C:\Program Files (x86)\Python
2016-03-04 11:44 - 2015-12-22 00:09 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-03-02 17:56 - 2016-02-02 21:28 - 00000000 ____D C:\Program Files (x86)\Connectify
2016-03-02 17:56 - 2015-12-23 09:08 - 00000000 ____D C:\Users\Vali PC\Documents\Zálohy reistrů
2016-03-02 17:56 - 2015-12-22 00:06 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\DAEMON Tools Lite
2016-02-26 09:28 - 2016-01-05 08:45 - 00000000 ____D C:\Users\Public\Documents\Dlubal
2016-02-26 09:00 - 2015-12-26 11:33 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2016-02-26 09:00 - 2015-12-26 11:33 - 00000000 ___SD C:\WINDOWS\system32\GWX
2016-02-25 13:54 - 2015-12-22 18:49 - 00000000 ____D C:\Users\Vali PC\AppData\Roaming\DVDVideoSoft
2016-02-20 10:32 - 2016-02-18 08:08 - 00000000 ____D C:\Users\Vali PC\Desktop\obr mapa
2016-02-20 09:39 - 2015-12-21 23:47 - 00000000 ____D C:\ProgramData\rgt
2016-02-19 18:02 - 2015-12-22 21:31 - 00000997 _____ C:\Users\Public\Desktop\GeoGet.lnk
2016-02-19 18:02 - 2015-12-22 21:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2016-02-19 18:02 - 2015-12-22 21:31 - 00000000 ____D C:\Program Files (x86)\GeoGet
==================== Files in the root of some directories =======
2015-12-21 23:03 - 2016-03-14 20:40 - 0000034 _____ () C:\Users\Vali PC\AppData\Roaming\AdobeWLCMCache.dat
2016-02-11 14:03 - 2016-02-11 14:03 - 0038477 _____ () C:\Users\Vali PC\AppData\Roaming\Hodnoty oddělené čárkami.ADR
2016-01-29 16:31 - 2016-01-29 16:31 - 0003584 _____ () C:\Users\Vali PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-22 08:21 - 2015-12-22 08:21 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
Some files in TEMP:
====================
C:\Users\Vali PC\AppData\Local\Temp\npp.6.9.Installer.exe
C:\Users\Vali PC\AppData\Local\Temp\sqlite3.dll
C:\Users\Vali PC\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job => C:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET NOD32 Antivirus 9.0.351.2 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 9.0.374.1 (Disabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Vali PC\Desktop" je 438 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (12.55 KiB) Staženo 54 x
Re: Vir
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2015-12-18] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Policies\Explorer: []
Startup: C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lingea Update Center.lnk [2016-01-25]
ShortcutTarget: Lingea Update Center.lnk -> C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe (No File)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3791064438-3411639862-1564456912-1002 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
R3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
2016-03-18 09:02 - 2016-03-18 09:02 - 00000000 ____D C:\ProgramData\Malwarebytes
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job => C:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe
Hosts:
EmptyTemp:
Reboot:
EndKliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vir
Fix result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by Vali PC (2016-03-20 10:54:54) Run:1
Running from C:\Users\Vali PC\Desktop
Loaded Profiles: Vali PC (Available Profiles: Vali PC)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2015-12-18] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Policies\Explorer: []
Startup: C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lingea Update Center.lnk [2016-01-25]
ShortcutTarget: Lingea Update Center.lnk -> C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe (No File)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3791064438-3411639862-1564456912-1002 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
R3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
2016-03-18 09:02 - 2016-03-18 09:02 - 00000000 ____D C:\ProgramData\Malwarebytes
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job => C:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value removed successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value removed successfully
C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lingea Update Center.lnk => moved successfully
C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe => not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{87FEA044-C49F-4FD5-A9C4-A8EE84861293}" => key removed successfully
HKCR\CLSID\{87FEA044-C49F-4FD5-A9C4-A8EE84861293} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{87FEA044-C49F-4FD5-A9C4-A8EE84861293}" => key removed successfully
HKCR\Wow6432Node\CLSID\{87FEA044-C49F-4FD5-A9C4-A8EE84861293} => key not found.
"HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{87FEA044-C49F-4FD5-A9C4-A8EE84861293}" => key removed successfully
HKCR\CLSID\{87FEA044-C49F-4FD5-A9C4-A8EE84861293} => key not found.
MBAMSwissArmy => Unable to stop service.
MBAMSwissArmy => service removed successfully
AdobeARMservice => service removed successfully
NAUpdate => service removed successfully
SkypeUpdate => service removed successfully
C:\ProgramData\Malwarebytes => moved successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job => moved successfully
C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 27.6 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 10:56:09 ====
Ran by Vali PC (2016-03-20 10:54:54) Run:1
Running from C:\Users\Vali PC\Desktop
Loaded Profiles: Vali PC (Available Profiles: Vali PC)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2015-12-18] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\...\Policies\Explorer: []
Startup: C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lingea Update Center.lnk [2016-01-25]
ShortcutTarget: Lingea Update Center.lnk -> C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe (No File)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3791064438-3411639862-1564456912-1002 -> {87FEA044-C49F-4FD5-A9C4-A8EE84861293} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
R3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
2016-03-18 09:02 - 2016-03-18 09:02 - 00000000 ____D C:\ProgramData\Malwarebytes
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job => C:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value removed successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value removed successfully
C:\Users\Vali PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lingea Update Center.lnk => moved successfully
C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe => not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{87FEA044-C49F-4FD5-A9C4-A8EE84861293}" => key removed successfully
HKCR\CLSID\{87FEA044-C49F-4FD5-A9C4-A8EE84861293} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{87FEA044-C49F-4FD5-A9C4-A8EE84861293}" => key removed successfully
HKCR\Wow6432Node\CLSID\{87FEA044-C49F-4FD5-A9C4-A8EE84861293} => key not found.
"HKU\S-1-5-21-3791064438-3411639862-1564456912-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{87FEA044-C49F-4FD5-A9C4-A8EE84861293}" => key removed successfully
HKCR\CLSID\{87FEA044-C49F-4FD5-A9C4-A8EE84861293} => key not found.
MBAMSwissArmy => Unable to stop service.
MBAMSwissArmy => service removed successfully
AdobeARMservice => service removed successfully
NAUpdate => service removed successfully
SkypeUpdate => service removed successfully
C:\ProgramData\Malwarebytes => moved successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\HPCeeScheduleForVali PC.job => moved successfully
C:\WINDOWS\Tasks\MATLAB R2013a Startup Accelerator.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 27.6 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 10:56:09 ====
Re: Vir
Pokud Eset stale nejde, preinstalujte ho. Preheslujte ten Skype.
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) vyosek píše:
- Stahnete a spustte
- Ponechte zatrzitkou pouze u volby Remove disinfection tools
- Kliknete na Run
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak to s pc vypada.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vir
Odinstaloval jste ho kompletne? Pomoci jejich nastroje na odinstalaci? Postupujte podle navodu kolegy
vyosek píše:
- Kliknete na volbu Change parametrs
- V okne Additional Option zakliknete vsechny moznosti
- Kliknete na OK
- Utilite prikazte, at skenuje - klik na Start Scan
- Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
- Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
- Pokud mate vsude Skip, kliknete na Continue
- Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte
Postupujte podle navodu kolegy
vyosek píše:
- Ulozte nejlepe na Plochu a rozbalte
- Spustte kliknutim na mbar
- Nyni postupne kliknete na Next a Update
- Po dokonceni update (aktualizace) databaze kliknete opet na Next
- Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
- Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
- Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
- Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
- PC bude restartovan
- Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Vir
S tím Esetem jste měl pravdu. Už to funguje. Díky. Tady jsou logy (2 části):
TDSSKiller
12:37:10.0708 0x126c TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
12:37:10.0708 0x126c UEFI system
12:37:10.0896 0x126c ============================================================
12:37:10.0896 0x126c Current date / time: 2016/03/21 12:37:10.0896
12:37:10.0896 0x126c SystemInfo:
12:37:10.0896 0x126c
12:37:10.0896 0x126c OS Version: 6.3.9600 ServicePack: 0.0
12:37:10.0896 0x126c Product type: Workstation
12:37:10.0896 0x126c ComputerName: VALIPC
12:37:10.0896 0x126c UserName: Vali PC
12:37:10.0896 0x126c Windows directory: C:\WINDOWS
12:37:10.0896 0x126c System windows directory: C:\WINDOWS
12:37:10.0896 0x126c Running under WOW64
12:37:10.0896 0x126c Processor architecture: Intel x64
12:37:10.0896 0x126c Number of processors: 8
12:37:10.0896 0x126c Page size: 0x1000
12:37:10.0896 0x126c Boot type: Normal boot
12:37:10.0896 0x126c ============================================================
12:37:10.0896 0x126c BG loaded
12:37:12.0021 0x126c System UUID: {668AAC17-2261-0F2D-252A-DCBF171016C6}
12:37:12.0927 0x126c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0B00000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:37:12.0927 0x126c Drive \Device\Harddisk1\DR1 - Size: 0x200000000 ( 8.00 Gb ), SectorSize: 0x200, Cylinders: 0x414, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:37:13.0099 0x126c ============================================================
12:37:13.0099 0x126c \Device\Harddisk0\DR0:
12:37:13.0115 0x126c GPT partitions:
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {6CE5CD8E-F0D1-4B1D-81B4-4633C4FD59E6}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {6EA77E07-6001-4305-9B03-74B3AC53BC7F}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6183BC34-D703-434E-92F0-954E56440148}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1092F4A8-63A6-45F4-AE1E-D9FFA904C93C}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x71DBC000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {44FA2579-FE5A-4DA2-ADCD-68DE34F94589}, Name: , StartLBA 0x71F46800, BlocksNum 0xE1000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {5249529C-173A-487C-9911-6FA991CA1997}, Name: Basic data partition, StartLBA 0x72027800, BlocksNum 0x26DD800
12:37:13.0130 0x126c MBR partitions:
12:37:13.0130 0x126c \Device\Harddisk1\DR1:
12:37:13.0130 0x126c GPT partitions:
12:37:13.0146 0x126c \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {D3BFE2DE-3DAF-11DF-BA40-E3A556D89593}, UniqueGUID: {3BFA089C-FB3A-4BEE-978B-3778C43B6009}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xFFF000
12:37:13.0146 0x126c MBR partitions:
12:37:13.0146 0x126c ============================================================
12:37:13.0349 0x126c C: <-> \Device\Harddisk0\DR0\Partition4
12:37:13.0474 0x126c D: <-> \Device\Harddisk0\DR0\Partition6
12:37:13.0474 0x126c ============================================================
12:37:13.0474 0x126c Initialize success
12:37:13.0474 0x126c ============================================================
12:38:35.0241 0x1cdc ============================================================
12:38:35.0241 0x1cdc Scan started
12:38:35.0241 0x1cdc Mode: Manual; SigCheck; TDLFS;
12:38:35.0241 0x1cdc ============================================================
12:38:35.0241 0x1cdc KSN ping started
12:38:37.0617 0x1cdc KSN ping finished: true
12:38:39.0742 0x1cdc ================ Scan system memory ========================
12:38:39.0742 0x1cdc System memory - ok
12:38:39.0742 0x1cdc ================ Scan services =============================
12:38:39.0851 0x1cdc [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
12:38:39.0898 0x1cdc 1394ohci - ok
12:38:39.0914 0x1cdc [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
12:38:39.0930 0x1cdc 3ware - ok
12:38:39.0930 0x1cdc [ BE14A19386CC6711D2225D2B242AAC53, 06F1B12F245441AA228B55679D8DA45E8A9BBEF330C85A07D2B13CBD10075675 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
12:38:39.0930 0x1cdc Accelerometer - ok
12:38:39.0945 0x1cdc [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
12:38:39.0977 0x1cdc ACPI - ok
12:38:39.0977 0x1cdc [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
12:38:39.0992 0x1cdc acpiex - ok
12:38:39.0992 0x1cdc [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
12:38:40.0008 0x1cdc acpipagr - ok
12:38:40.0023 0x1cdc [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
12:38:40.0039 0x1cdc AcpiPmi - ok
12:38:40.0039 0x1cdc [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
12:38:40.0039 0x1cdc acpitime - ok
12:38:40.0070 0x1cdc [ 156D7DBA4807B3AA99DA5A85BB077CAA, 2BAE2E1CDD7748B320FAC2F87CF0A59DDD2995728E6560CC9DCB60F278C221EE ] AdAppMgrSvc C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
12:38:40.0102 0x1cdc AdAppMgrSvc - ok
12:38:40.0164 0x1cdc [ 99B993BD0F4C033D832B50D5E83BEBEC, A091635B2B428A51400468353F52D3FF35095460D3FA8CB29E2C4A804D87B845 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:38:40.0180 0x1cdc AdobeFlashPlayerUpdateSvc - ok
12:38:40.0195 0x1cdc [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
12:38:40.0227 0x1cdc ADP80XX - ok
12:38:40.0227 0x1cdc [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
12:38:40.0258 0x1cdc AeLookupSvc - ok
12:38:40.0273 0x1cdc [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
12:38:40.0305 0x1cdc AFD - ok
12:38:40.0305 0x1cdc [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
12:38:40.0305 0x1cdc agp440 - ok
12:38:40.0352 0x1cdc [ 8BA0756C7B80D039212F9BB957D84727, 2EFED9D87E37A95F7216D879FA2E054AE105DC5280F7393540C812C296E4FDAC ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
12:38:40.0398 0x1cdc AGSService - ok
12:38:40.0398 0x1cdc [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
12:38:40.0414 0x1cdc ahcache - ok
12:38:40.0414 0x1cdc [ 39403E45A4D1C9FE3AD623659F1085DA, B4E5A17F1C05063799C433E1ED7CDFB989ECD296A78D8537CC5408884DFDC65C ] aksdf C:\WINDOWS\system32\drivers\aksdf.sys
12:38:40.0430 0x1cdc aksdf - ok
12:38:40.0445 0x1cdc [ D0861224C8F7495CDE772FEF2AE1A8A4, 966AA78A399A017E89F8B09C8375D4B6A3A0635427A2BB85531EAC815A3F1DB2 ] aksfridge C:\WINDOWS\system32\DRIVERS\aksfridge.sys
12:38:40.0445 0x1cdc aksfridge - ok
12:38:40.0445 0x1cdc [ 6400543E681FE9ACAD2C94EA7BC658FF, EB29196D41D2EE2956E189908DF26D708C3CF2350CCDDB17EA985E48683191F6 ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys
12:38:40.0461 0x1cdc akshasp - ok
12:38:40.0461 0x1cdc [ AEC6A1C22F56B451A899FA1EC98F5392, 172D9A51B16992BEA9E8F886CADAD023F167D87CEF6D0F29D8D6A8458406F9E0 ] akshhl C:\WINDOWS\system32\DRIVERS\akshhl.sys
12:38:40.0477 0x1cdc akshhl - ok
12:38:40.0477 0x1cdc [ 07E8FC308F307A69B5053A89DC85ADB2, D75F375FC73B1F5DCADB21B22C177903E733DA25A3F5F5BA3B537B1EED73889F ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys
12:38:40.0492 0x1cdc aksusb - ok
12:38:40.0508 0x1cdc [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
12:38:40.0508 0x1cdc ALG - ok
12:38:40.0523 0x1cdc [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
12:38:40.0523 0x1cdc AmdK8 - ok
12:38:40.0539 0x1cdc [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
12:38:40.0539 0x1cdc AmdPPM - ok
12:38:40.0555 0x1cdc [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
12:38:40.0570 0x1cdc amdsata - ok
12:38:40.0586 0x1cdc [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
12:38:40.0586 0x1cdc amdsbs - ok
12:38:40.0602 0x1cdc [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
12:38:40.0602 0x1cdc amdxata - ok
12:38:40.0617 0x1cdc [ B716710EEE22D85EE26FB5EB26FC5C67, 3679071761AB88BEF40437EDB2C9DF71B1722F73FCF05E58D4EB767370366A9E ] AMPPAL C:\WINDOWS\System32\drivers\AMPPAL.sys
12:38:40.0617 0x1cdc AMPPAL - ok
12:38:40.0633 0x1cdc [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
12:38:40.0633 0x1cdc AppHostSvc - ok
12:38:40.0648 0x1cdc [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
12:38:40.0648 0x1cdc AppID - ok
12:38:40.0664 0x1cdc [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
12:38:40.0664 0x1cdc AppIDSvc - ok
12:38:40.0664 0x1cdc [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo C:\WINDOWS\System32\appinfo.dll
12:38:40.0680 0x1cdc Appinfo - ok
12:38:40.0695 0x1cdc [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:38:40.0695 0x1cdc Apple Mobile Device Service - ok
12:38:40.0727 0x1cdc [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
12:38:40.0742 0x1cdc AppReadiness - ok
12:38:40.0773 0x1cdc [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
12:38:40.0805 0x1cdc AppXSvc - ok
12:38:40.0820 0x1cdc [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
12:38:40.0820 0x1cdc arcsas - ok
12:38:40.0836 0x1cdc [ 2AC1E04A3542137F5C28C509FE0EB430, 66E507AB2905505080E32B83693690EA232B7E68204874861FA1C932DA61F0C6 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:38:40.0852 0x1cdc aspnet_state - ok
12:38:40.0852 0x1cdc [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:38:40.0867 0x1cdc AsyncMac - ok
12:38:40.0867 0x1cdc [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
12:38:40.0867 0x1cdc atapi - ok
12:38:40.0883 0x1cdc [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
12:38:40.0898 0x1cdc AudioEndpointBuilder - ok
12:38:40.0914 0x1cdc [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
12:38:40.0945 0x1cdc Audiosrv - ok
12:38:40.0945 0x1cdc [ B52F9B2C63DF84B58E59016FE25648C0, 1FDBB382A288732216A45E773559AFFC241EA47D192BDFB34AA695C2122F5E4C ] Autodesk Content Service C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
12:38:40.0945 0x1cdc Autodesk Content Service - ok
12:38:40.0961 0x1cdc [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
12:38:40.0961 0x1cdc AxInstSV - ok
12:38:40.0977 0x1cdc [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
12:38:41.0008 0x1cdc b06bdrv - ok
12:38:41.0008 0x1cdc [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
12:38:41.0023 0x1cdc BasicDisplay - ok
12:38:41.0023 0x1cdc [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
12:38:41.0023 0x1cdc BasicRender - ok
12:38:41.0039 0x1cdc [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
12:38:41.0039 0x1cdc bcmfn2 - ok
12:38:41.0055 0x1cdc [ 4B6F61BD394DCEDA9B06D702836531C2, 83C739467BD9A00FE09BCE83BB9409EA2DA62FCDD2384F9EE98626226223E918 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
12:38:41.0070 0x1cdc BDESVC - ok
12:38:41.0070 0x1cdc [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
12:38:41.0086 0x1cdc Beep - ok
12:38:41.0102 0x1cdc [ 8F2AD111B47A190F325EE7495D3C1803, C61F1506E74A9EFBB61B8A06B30886B6E891C33211F755F30B924EBA202ECEC5 ] BFE C:\WINDOWS\System32\bfe.dll
12:38:41.0133 0x1cdc BFE - ok
12:38:41.0148 0x1cdc [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
12:38:41.0180 0x1cdc BITS - ok
12:38:41.0211 0x1cdc [ 4AF14827F1584D084BC136A51FAA8397, B6202545E2459D648BF668F7025A139F64DB6F28F88773FD997DFF10003D9B7C ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
12:38:41.0227 0x1cdc Bluetooth Device Monitor - ok
12:38:41.0258 0x1cdc [ BC89A4C6A2A9C65E8E88AD0B3BF180FD, 06ECD1BF3F3526A77E389413D060BAB6BD50E5DC4C926C8EFCE2B04D56EE16E4 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
12:38:41.0273 0x1cdc Bluetooth OBEX Service - ok
12:38:41.0289 0x1cdc [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:38:41.0305 0x1cdc Bonjour Service - ok
12:38:41.0305 0x1cdc [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
12:38:41.0320 0x1cdc bowser - ok
12:38:41.0320 0x1cdc [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
12:38:41.0336 0x1cdc BrokerInfrastructure - ok
12:38:41.0352 0x1cdc [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
12:38:41.0352 0x1cdc Browser - ok
12:38:41.0367 0x1cdc [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
12:38:41.0367 0x1cdc BthAvrcpTg - ok
12:38:41.0367 0x1cdc [ 12418846B057E4F92FC621F5C6CF737D, 0B8B0EADE4F2AD95D450A5C71C287C0F04F33897ABF27D3E3B6428A3C99C7B5D ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
12:38:41.0383 0x1cdc BthEnum - ok
12:38:41.0383 0x1cdc [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
12:38:41.0398 0x1cdc BthHFEnum - ok
12:38:41.0398 0x1cdc [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
12:38:41.0414 0x1cdc bthhfhid - ok
12:38:41.0414 0x1cdc [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
12:38:41.0430 0x1cdc BthHFSrv - ok
12:38:41.0445 0x1cdc [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
12:38:41.0461 0x1cdc BthLEEnum - ok
12:38:41.0461 0x1cdc [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
12:38:41.0477 0x1cdc BTHMODEM - ok
12:38:41.0477 0x1cdc [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
12:38:41.0492 0x1cdc BthPan - ok
12:38:41.0523 0x1cdc [ B810B2B39CCA90DC6BF42AF1658AE0D1, D184F927BCFBDE7063A0C9873BF2C174226E1AB5081A7108FCC66210CD117465 ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
12:38:41.0555 0x1cdc BTHPORT - ok
12:38:41.0570 0x1cdc [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
12:38:41.0570 0x1cdc bthserv - ok
12:38:41.0586 0x1cdc [ 52A1B7ECAB4C9EF70FD41241691E09D3, F7A5BFE72D3151E73DD9922A76964C08AC1FDCB8460D9A17DCF8B7969006AD42 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
12:38:41.0586 0x1cdc BTHUSB - ok
12:38:41.0617 0x1cdc [ 1134650C2F97611ACCDB02BC904AD35D, 59590C7C7D79105C4ED3F610861D58F55C3D7DDA6A13BBC9145AE23A3723B482 ] btmhsf C:\WINDOWS\system32\DRIVERS\btmhsf.sys
12:38:41.0633 0x1cdc btmhsf - ok
12:38:41.0648 0x1cdc [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
12:38:41.0648 0x1cdc cdfs - ok
12:38:41.0664 0x1cdc [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
12:38:41.0680 0x1cdc cdrom - ok
12:38:41.0680 0x1cdc [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
12:38:41.0695 0x1cdc CertPropSvc - ok
12:38:41.0695 0x1cdc [ 6D4391508AA902798259DE327DFDC621, D986949FCCDF1589FF484146B2F4ADB362877578E128AC2AEB19BD427C57E2B7 ] cfywlan1 C:\WINDOWS\system32\DRIVERS\cfywlan1.sys
12:38:41.0695 0x1cdc cfywlan1 - ok
12:38:41.0711 0x1cdc [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
12:38:41.0711 0x1cdc circlass - ok
12:38:41.0727 0x1cdc [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
12:38:41.0742 0x1cdc CLFS - ok
12:38:41.0805 0x1cdc [ B61A3E6B8D3473FC35FF2A928EACE7DE, BA4DAA1E918DD7467E81DDE34848A143C4DE48E7D66913DD48860B2A04D7D8A8 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
12:38:41.0852 0x1cdc ClickToRunSvc - ok
12:38:41.0867 0x1cdc [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
12:38:41.0883 0x1cdc CLVirtualDrive - ok
12:38:41.0883 0x1cdc [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
12:38:41.0914 0x1cdc CmBatt - ok
12:38:41.0945 0x1cdc [ 0DE32A0BB1FE2A773666572F79584520, C417C12476B937265BEDC9A2C3C3F6C50FD19AEC096362337B0921627A2A92EA ] CNG C:\WINDOWS\system32\Drivers\cng.sys
12:38:41.0964 0x1cdc CNG - ok
12:38:41.0980 0x1cdc [ 0E4142B0858B7F3F110E8BF8854062D7, 185F666CE89A77ADEE67F3C87102BE1B2BFBF467BDA676D5164C91D1C9E8FB43 ] cnnctfy3 C:\WINDOWS\system32\DRIVERS\cnnctfy3.sys
12:38:41.0980 0x1cdc cnnctfy3 - ok
12:38:41.0980 0x1cdc [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
12:38:41.0995 0x1cdc CompositeBus - ok
12:38:41.0995 0x1cdc COMSysApp - ok
12:38:41.0995 0x1cdc [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
12:38:42.0011 0x1cdc condrv - ok
12:38:42.0011 0x1cdc [ 6BAC4FEDB7E992FA0CCB782A52CE014F, 8227C7131A4F8A50BC0C255BA0D01DDB70226851EC5D7CE1710960C1FC909D44 ] Connectify C:\Program Files (x86)\Connectify\ConnectifyService.exe
12:38:42.0027 0x1cdc Connectify - ok
12:38:42.0089 0x1cdc [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
12:38:42.0105 0x1cdc cphs - ok
12:38:42.0120 0x1cdc [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
12:38:42.0120 0x1cdc CryptSvc - ok
12:38:42.0136 0x1cdc [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam C:\WINDOWS\system32\drivers\dam.sys
12:38:42.0136 0x1cdc dam - ok
12:38:42.0136 0x1cdc [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
12:38:42.0152 0x1cdc dbupdate - ok
12:38:42.0152 0x1cdc [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
12:38:42.0167 0x1cdc dbupdatem - ok
12:38:42.0183 0x1cdc [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
12:38:42.0199 0x1cdc DcomLaunch - ok
12:38:42.0245 0x1cdc [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
12:38:42.0261 0x1cdc defragsvc - ok
12:38:42.0277 0x1cdc [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
12:38:42.0292 0x1cdc DeviceAssociationService - ok
12:38:42.0292 0x1cdc [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
12:38:42.0308 0x1cdc DeviceInstall - ok
12:38:42.0308 0x1cdc [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
12:38:42.0324 0x1cdc Dfsc - ok
12:38:42.0324 0x1cdc [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
12:38:42.0339 0x1cdc Dhcp - ok
12:38:42.0386 0x1cdc [ 21EDAD8188372C912B7BB9B1C6CB0D38, 4A102745DE8A2A82D2C069B30503BF9FF2312A035A82854F84EF9C27E3533CEE ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
12:38:42.0417 0x1cdc DiagTrack - ok
12:38:42.0433 0x1cdc [ 68BFCCC1EC25F0F942EA32AD9D67A131, CF19DA2816262D9D532249970581E55DF595A5FD0ABE44C5124A40F42A9B28B4 ] DigitalWave.Update.Service C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
12:38:42.0449 0x1cdc DigitalWave.Update.Service - ok
12:38:42.0495 0x1cdc [ A3B1076615D6B83826CB8C963EC16043, B671B53200C5F242BFD528FB471EAB0E2A94D00FDF6F23AB47F13FF315B3B55E ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
12:38:42.0527 0x1cdc Disc Soft Lite Bus Service - ok
12:38:42.0527 0x1cdc [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\WINDOWS\system32\drivers\disk.sys
12:38:42.0542 0x1cdc disk - ok
12:38:42.0542 0x1cdc [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
12:38:42.0558 0x1cdc dmvsc - ok
12:38:42.0558 0x1cdc [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
12:38:42.0574 0x1cdc Dnscache - ok
12:38:42.0589 0x1cdc [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
12:38:42.0605 0x1cdc dot3svc - ok
12:38:42.0605 0x1cdc [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
12:38:42.0620 0x1cdc DPS - ok
12:38:42.0636 0x1cdc [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
12:38:42.0652 0x1cdc drmkaud - ok
12:38:42.0652 0x1cdc [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
12:38:42.0667 0x1cdc DsmSvc - ok
12:38:42.0667 0x1cdc [ 679FF716052109392D870F6A6C4A3535, BEF1784448CCA4AF1D67ED68BD0C7CFE01A7719E98CACF92C2DCBFAA916DC57E ] dtlitescsibus C:\WINDOWS\System32\drivers\dtlitescsibus.sys
12:38:42.0667 0x1cdc dtlitescsibus - ok
12:38:42.0683 0x1cdc [ DCAF642BF2091D9ED68AF3AE84306992, 4872F38EF2A6E8F2A2930FF39EC3220D550F64CEC0D76AE0E0FB59DF00560B85 ] dtliteusbbus C:\WINDOWS\System32\drivers\dtliteusbbus.sys
12:38:42.0683 0x1cdc dtliteusbbus - ok
12:38:42.0730 0x1cdc [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
12:38:42.0777 0x1cdc DXGKrnl - ok
12:38:42.0777 0x1cdc [ B4B52D2D4976FB06C53DCC6F476EAE2F, 2D48A3A6DC4E19840543A2F22CA45D3F6C0C989E00CBCA65F7B4B7222E6D69ED ] eamonm C:\WINDOWS\system32\DRIVERS\eamonm.sys
12:38:42.0792 0x1cdc eamonm - ok
12:38:42.0808 0x1cdc [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
12:38:42.0808 0x1cdc Eaphost - ok
12:38:42.0886 0x1cdc [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
12:38:42.0917 0x1d8c Object required for P2P: [ 99B993BD0F4C033D832B50D5E83BEBEC ] AdobeFlashPlayerUpdateSvc
12:38:42.0980 0x1cdc ebdrv - ok
12:38:42.0980 0x1cdc [ 86F4D86CD3ABBD75EB578A91C403FF93, 2C259AD584D6AB0FB9144651CCF44F23BA507EAF6DDB5A525EA705A7700D4F09 ] eelam C:\WINDOWS\system32\DRIVERS\eelam.sys
12:38:42.0995 0x1cdc eelam - ok
12:38:42.0995 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
12:38:42.0995 0x1cdc EFS - ok
12:38:43.0011 0x1cdc [ 2072E5C612C0C178A1E725433EB4E7EB, FA99355AE119FFEB1C9C2DB1349ABCF59F87AB113C9D91186F59829FFFBA1286 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
12:38:43.0027 0x1cdc ehdrv - ok
12:38:43.0027 0x1cdc [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
12:38:43.0027 0x1cdc EhStorClass - ok
12:38:43.0042 0x1cdc [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
12:38:43.0042 0x1cdc EhStorTcgDrv - ok
12:38:43.0105 0x1cdc [ 898929F39CCCF38C1981B35D01B8CEB1, 0DF4D425A0F034DF00090D938C4F2E941D2ACB5FC49DD791835B1BF39C18D968 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
12:38:43.0152 0x1cdc ekrn - ok
12:38:43.0167 0x1cdc [ FEBED910ADE0997D2AD10BE6456DE92A, 89A8AA6528E9A53329E34257E693214B33B7F77612159CF73D3D5C80DBA81FBA ] epfwwfpr C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys
12:38:43.0167 0x1cdc epfwwfpr - ok
12:38:43.0183 0x1cdc [ ABDD5AD016AFFD34AD40E944CE94BF59, 61089124CD8FEA31142CD4D3C47224A6310B9BE7B7FA974956D9EDDAD4381503 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
12:38:43.0183 0x1cdc EpsonBidirectionalService - detected UnsignedFile.Multi.Generic ( 1 )
12:38:44.0331 0x0858 Object required for P2P: [ 6D4391508AA902798259DE327DFDC621 ] cfywlan1
12:38:45.0253 0x1d8c Object send P2P result: true
12:38:45.0316 0x0d54 Object required for P2P: [ A1F58FFF448E4099297D6EE0641D4D0E ] dbupdate
12:38:45.0519 0x1cdc Detect skipped due to KSN trusted
12:38:45.0519 0x1cdc EpsonBidirectionalService - ok
12:38:45.0519 0x1cdc [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
12:38:45.0535 0x1cdc ErrDev - ok
12:38:45.0566 0x1cdc [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
12:38:45.0597 0x1cdc EventSystem - ok
12:38:45.0613 0x1cdc [ C8559336BB21FF701CBEF14527D7660F, AE8CD6514C0B121B260D9101D76E6225599B832504EB5719FD110E348C9E6682 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
12:38:45.0628 0x1cdc EvtEng - ok
12:38:45.0628 0x1cdc [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
12:38:45.0644 0x1cdc exfat - ok
12:38:45.0660 0x1cdc [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
12:38:45.0675 0x1cdc fastfat - ok
12:38:45.0722 0x1cdc [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
12:38:45.0753 0x1cdc Fax - ok
12:38:45.0753 0x1cdc [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
12:38:45.0769 0x1cdc fdc - ok
12:38:45.0769 0x1cdc [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
12:38:45.0769 0x1cdc fdPHost - ok
12:38:45.0769 0x1cdc [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
12:38:45.0785 0x1cdc FDResPub - ok
12:38:45.0785 0x1cdc [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
12:38:45.0800 0x1cdc fhsvc - ok
12:38:45.0800 0x1cdc [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
12:38:45.0816 0x1cdc FileInfo - ok
12:38:45.0816 0x1cdc [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
12:38:45.0831 0x1cdc Filetrace - ok
12:38:45.0863 0x1cdc [ 96A89625E34EC8B5F05A9D01AAD04759, B64B7E7AD5D02D4C91A2A45FB9F523A162482A37F784625233FE4AD8B2601453 ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
12:38:45.0910 0x1cdc FlexNet Licensing Service 64 - ok
12:38:45.0910 0x1cdc [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
12:38:45.0910 0x1cdc flpydisk - ok
12:38:45.0925 0x1cdc [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
12:38:45.0941 0x1cdc FltMgr - ok
12:38:45.0972 0x1cdc [ 2F225BC85B84C04EA01BAB8D8DACFA83, 1F6E20C8F0FFD3FA60BDF556FB8392FE014E6519C3F314D1D22D394DB2A040CA ] FontCache C:\WINDOWS\system32\FntCache.dll
12:38:46.0003 0x1cdc FontCache - ok
12:38:46.0019 0x1cdc [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:38:46.0019 0x1cdc FontCache3.0.0.0 - ok
12:38:46.0066 0x1cdc [ 5CAD1CAB9AE958339E9B2FFCC74ADC20, FB1139BAAFE41CCA6084DA420E8AF6E0FA77593144F6322A115162EA71003616 ] FPLService C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
12:38:46.0097 0x1cdc FPLService - ok
12:38:46.0097 0x1cdc [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
12:38:46.0097 0x1cdc FsDepends - ok
12:38:46.0113 0x1cdc [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:38:46.0113 0x1cdc Fs_Rec - ok
12:38:46.0128 0x1cdc [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
12:38:46.0144 0x1cdc fvevol - ok
12:38:46.0160 0x1cdc [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
12:38:46.0160 0x1cdc FxPPM - ok
12:38:46.0175 0x1cdc [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
12:38:46.0175 0x1cdc gagp30kx - ok
12:38:46.0175 0x1cdc [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
12:38:46.0191 0x1cdc GEARAspiWDM - ok
12:38:46.0191 0x1cdc [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
12:38:46.0207 0x1cdc gencounter - ok
12:38:46.0222 0x1cdc [ CBD39E74C61C3A3EF695DB25792F32E6, 95454F245DB818227BFE92EBA927A68FA78FB87E7BF5C28761046FF36C56CF32 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
12:38:46.0253 0x1cdc GfExperienceService - ok
12:38:46.0253 0x1cdc [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
12:38:46.0269 0x1cdc GPIOClx0101 - ok
12:38:46.0347 0x1cdc [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
12:38:46.0378 0x1cdc gpsvc - ok
12:38:46.0394 0x1cdc [ BA4404A051944461874E74276FFC19C8, 9A5DAE59A17BF6C4D436096BD3281BD89D967682D81344946ED05BE51B76C62E ] hardlock C:\WINDOWS\system32\drivers\hardlock.sys
12:38:46.0410 0x1cdc hardlock - ok
12:38:46.0425 0x1cdc hasplms - ok
12:38:46.0425 0x1cdc [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
12:38:46.0441 0x1cdc HDAudBus - ok
12:38:46.0441 0x1cdc [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
12:38:46.0441 0x1cdc HidBatt - ok
12:38:46.0457 0x1cdc [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
12:38:46.0457 0x1cdc HidBth - ok
12:38:46.0472 0x1cdc [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
12:38:46.0472 0x1cdc hidi2c - ok
12:38:46.0472 0x1cdc [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
12:38:46.0503 0x1cdc HidIr - ok
12:38:46.0503 0x1cdc [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
12:38:46.0503 0x1cdc hidserv - ok
12:38:46.0519 0x1cdc [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
12:38:46.0519 0x1cdc HidUsb - ok
12:38:46.0535 0x1cdc [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
12:38:46.0535 0x1cdc hkmsvc - ok
12:38:46.0550 0x1cdc [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
12:38:46.0566 0x1cdc HomeGroupListener - ok
12:38:46.0566 0x1cdc [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
12:38:46.0582 0x1cdc HomeGroupProvider - ok
12:38:46.0597 0x1cdc [ 77E81E788CC63E65272A7D247F441505, EA57947495A6FD5B6FCC06AD396AEEEEE44AA5EB924B1A4D71C81B1265120F7B ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
12:38:46.0613 0x1cdc HP Support Assistant Service - ok
12:38:46.0628 0x1cdc [ 0C28C65207A2BD4C737A5BCDAB26A430, 0A56B821445E10AFEF3C9019DECAB6B92CD17947CD053A216AE55F44D5A9C1FD ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
12:38:46.0628 0x1cdc hpdskflt - ok
12:38:46.0644 0x1cdc [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
12:38:46.0675 0x1cdc hpqwmiex - ok
12:38:46.0675 0x0858 Object send P2P result: true
12:38:46.0675 0x1cdc [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
12:38:46.0691 0x1cdc HpSAMD - ok
12:38:46.0691 0x1cdc [ 81E3EF01D1883394BDA9B8687B3BFE23, 5C1F2C97B63402E535832CB3FF954F3B958075AC82B63929DAE51AAF22554979 ] hpsrv C:\WINDOWS\system32\Hpservice.exe
12:38:46.0691 0x1cdc hpsrv - ok
12:38:46.0691 0x1cdc [ 3C5B2067338E4EFDADE94E4A72728F23, 72E21FA1E660F9405A5E39B0F89AB21C60F20BAC13247567EF7139AC130F1897 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
12:38:46.0707 0x1cdc HPWMISVC - ok
12:38:46.0722 0x1cdc [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
12:38:46.0753 0x1cdc HTTP - ok
12:38:46.0769 0x1cdc [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
12:38:46.0769 0x1cdc hwpolicy - ok
12:38:46.0769 0x1cdc [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
12:38:46.0785 0x1cdc hyperkbd - ok
12:38:46.0816 0x1cdc [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
12:38:46.0832 0x1cdc HyperVideo - ok
12:38:46.0847 0x1cdc [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
12:38:46.0863 0x1cdc i8042prt - ok
12:38:46.0863 0x1cdc [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
12:38:46.0878 0x1cdc iaLPSSi_GPIO - ok
12:38:46.0878 0x1cdc [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
12:38:46.0878 0x1cdc iaLPSSi_I2C - ok
12:38:46.0910 0x1cdc [ 050F2539E14F9D5E90A4B61738EC29BD, 0E65468B9F452FA7DB6DF2C1B2B2E9439C79031E27054FBDBDFE28A9F98721D7 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
12:38:46.0925 0x1cdc iaStorA - ok
12:38:46.0941 0x1cdc [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
12:38:46.0957 0x1cdc iaStorAV - ok
12:38:46.0972 0x1cdc [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
12:38:46.0988 0x1cdc iaStorV - ok
12:38:46.0988 0x1cdc [ 43E864824FCEBEE7119E1572B2703EB9, 8D90899F2279947AFD887567C7F60DC3264D56231F5403A64D722B3E25103202 ] iBtFltCoex C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys
12:38:46.0988 0x1cdc iBtFltCoex - ok
12:38:46.0988 0x1cdc IEEtwCollectorService - ok
12:38:47.0082 0x1cdc [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
12:38:47.0175 0x1cdc igfx - ok
12:38:47.0191 0x1cdc [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
12:38:47.0207 0x1cdc igfxCUIService1.0.0.0 - ok
12:38:47.0222 0x1cdc [ AF8A43C376F83A4A1E7DA16461EDE114, EBA10519B074888355A4FC11D52FF1E6A52F88F754B7F1F9863A8313638645CB ] IKEEXT C:\WINDOWS\System32\ikeext.dll
12:38:47.0254 0x1cdc IKEEXT - ok
12:38:47.0269 0x1cdc [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
12:38:47.0285 0x1cdc intaud_WaveExtensible - ok
12:38:47.0300 0x1cdc [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
12:38:47.0316 0x1cdc IntcDAud - ok
12:38:47.0332 0x1cdc [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:38:47.0347 0x1cdc Intel(R) Capability Licensing Service Interface - ok
12:38:47.0347 0x1cdc [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
12:38:47.0363 0x1cdc Intel(R) ME Service - ok
12:38:47.0363 0x1cdc [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
12:38:47.0363 0x1cdc intelide - ok
12:38:47.0379 0x1cdc [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
12:38:47.0379 0x1cdc intelpep - ok
12:38:47.0379 0x1cdc [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
12:38:47.0394 0x1cdc intelppm - ok
12:38:47.0394 0x1cdc [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:38:47.0410 0x1cdc IpFilterDriver - ok
12:38:47.0441 0x1cdc [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
12:38:47.0457 0x1cdc iphlpsvc - ok
12:38:47.0457 0x1cdc [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
12:38:47.0472 0x1cdc IPMIDRV - ok
12:38:47.0472 0x1cdc [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
12:38:47.0488 0x1cdc IPNAT - ok
12:38:47.0535 0x1cdc [ B066C46E4B638B849245E35A5703AF80, 738A2A76A68721DCA5004DFF381EF2F032A7E309454294E4ABDFF5141BAC9337 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:38:47.0550 0x1cdc iPod Service - ok
12:38:47.0550 0x1cdc [ FF785C8410D08BAC4D84E1F8A88B5757, 50A79471EB1E3C5DB2BFC5C1BFDA9166D2975733FC9477AC5F67BE19A3A444D9 ] IpOverUsbSvc C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
12:38:47.0566 0x1cdc IpOverUsbSvc - ok
12:38:47.0566 0x1cdc [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
12:38:47.0582 0x1cdc IRENUM - ok
12:38:47.0582 0x1cdc [ 4D9B9A794F22415B8C3E0CCFBE61BC7A, 4CF01BC95F0AD7DC42AF8A0FCE032DF00610524A98CF52F531E9DE93137E7B87 ] irstrtdv C:\WINDOWS\System32\drivers\irstrtdv.sys
12:38:47.0582 0x1cdc irstrtdv - ok
12:38:47.0644 0x1cdc [ E145E934392E7A49FDC6775AC3A347F8, 8E5DBC8C34FB3B68851489E0860BA3ACE6CDF46BB5E2AEFD1DEF6E895566068B ] irstrtsv C:\Windows\SysWOW64\irstrtsv.exe
12:38:47.0644 0x0d54 Object send P2P result: true
12:38:47.0644 0x0d54 Object required for P2P: [ A1F58FFF448E4099297D6EE0641D4D0E ] dbupdatem
12:38:47.0644 0x1cdc irstrtsv - ok
12:38:47.0644 0x1cdc [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
12:38:47.0660 0x1cdc isapnp - ok
12:38:47.0675 0x1cdc [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
12:38:47.0691 0x1cdc iScsiPrt - ok
12:38:47.0691 0x1cdc [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
12:38:47.0691 0x1cdc iwdbus - ok
12:38:47.0707 0x1cdc [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
12:38:47.0707 0x1cdc jhi_service - ok
12:38:47.0707 0x1cdc [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
12:38:47.0722 0x1cdc kbdclass - ok
12:38:47.0722 0x1cdc [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
12:38:47.0738 0x1cdc kbdhid - ok
12:38:47.0738 0x1cdc [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
12:38:47.0754 0x1cdc kdnic - ok
12:38:47.0754 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
12:38:47.0754 0x1cdc KeyIso - ok
12:38:47.0769 0x1cdc [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
12:38:47.0769 0x1cdc KSecDD - ok
12:38:47.0785 0x1cdc [ 35C19AF2116F67914712D7C4CBE47B8C, 5F976726880A6E51D7ABFA7E3EF7294C6FB7F383DC5710A2C2EC8DD26DAEC204 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
12:38:47.0785 0x1cdc KSecPkg - ok
12:38:47.0785 0x1cdc [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
12:38:47.0800 0x1cdc ksthunk - ok
12:38:47.0816 0x1cdc [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
12:38:47.0832 0x1cdc KtmRm - ok
12:38:47.0847 0x1cdc [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
12:38:47.0863 0x1cdc LanmanServer - ok
12:38:47.0863 0x1cdc [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
12:38:47.0879 0x1cdc LanmanWorkstation - ok
12:38:47.0894 0x1cdc [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
12:38:47.0910 0x1cdc lfsvc - ok
12:38:47.0925 0x1cdc [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
12:38:47.0925 0x1cdc lltdio - ok
12:38:47.0941 0x1cdc [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
12:38:47.0957 0x1cdc lltdsvc - ok
12:38:47.0957 0x1cdc [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
12:38:47.0972 0x1cdc lmhosts - ok
12:38:47.0972 0x1cdc [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:38:47.0988 0x1cdc LMS - ok
12:38:48.0004 0x1cdc [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
12:38:48.0004 0x1cdc LSI_SAS - ok
12:38:48.0004 0x1cdc [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
12:38:48.0019 0x1cdc LSI_SAS2 - ok
12:38:48.0019 0x1cdc [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
12:38:48.0035 0x1cdc LSI_SAS3 - ok
12:38:48.0035 0x1cdc [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
12:38:48.0051 0x1cdc LSI_SSS - ok
12:38:48.0066 0x1cdc [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
12:38:48.0082 0x1cdc LSM - ok
12:38:48.0097 0x1cdc [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
12:38:48.0097 0x1cdc luafv - ok
12:38:48.0097 0x1cdc [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
12:38:48.0113 0x1cdc megasas - ok
12:38:48.0129 0x1cdc [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
12:38:48.0144 0x1cdc megasr - ok
12:38:48.0160 0x1cdc [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
12:38:48.0160 0x1cdc MEIx64 - ok
12:38:48.0160 0x1cdc [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
12:38:48.0176 0x1cdc MMCSS - ok
12:38:48.0176 0x1cdc [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
12:38:48.0191 0x1cdc Modem - ok
12:38:48.0207 0x1cdc [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
12:38:48.0207 0x1cdc monitor - ok
12:38:48.0207 0x1cdc [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
12:38:48.0222 0x1cdc mouclass - ok
12:38:48.0222 0x1cdc [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
12:38:48.0238 0x1cdc mouhid - ok
12:38:48.0238 0x1cdc [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
12:38:48.0254 0x1cdc mountmgr - ok
12:38:48.0269 0x1cdc [ A43F5F2D3D71A902502D61E71A18C265, 9685DABFF80EFFFD28B9B12696BF4821F30989C8441EA0AA3FF0F03ED799AD9D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:38:48.0269 0x1cdc MozillaMaintenance - ok
12:38:48.0285 0x1cdc [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
12:38:48.0285 0x1cdc mpsdrv - ok
12:38:48.0316 0x1cdc [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
12:38:48.0332 0x1cdc MpsSvc - ok
12:38:48.0347 0x1cdc [ D2AC8F07995CE6CD18848C129435B481, 839B04116B49A757950E049150F6AADE41335914CC699ED73BE886BECAC39D36 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
12:38:48.0363 0x1cdc MRxDAV - ok
12:38:48.0379 0x1cdc [ 61000E7155E92342D0D5338CE05D102A, BCFA1A82B9727040C496A84F42D4613B96EC445018BDFBF2E180889B1B561559 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:38:48.0394 0x1cdc mrxsmb - ok
12:38:48.0410 0x1cdc [ BCBD64220AD85C26823453FF1DC3EFBD, 0245E3659E9135B9276F3CCFBEA0CEFFC4F4C0826F6D19B6329057620235F087 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
12:38:48.0426 0x1cdc mrxsmb10 - ok
12:38:48.0426 0x1cdc [ B0A106352DEF6D52332EA39E00462EA7, 274422C1E172B673130944F2FF2A2D9A9A364CFFC02FD04DD7D6D45B34C5022A ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
12:38:48.0441 0x1cdc mrxsmb20 - ok
12:38:48.0441 0x1cdc [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
12:38:48.0457 0x1cdc MsBridge - ok
12:38:48.0472 0x1cdc [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
12:38:48.0488 0x1cdc MSDTC - ok
12:38:48.0488 0x1cdc [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
12:38:48.0504 0x1cdc Msfs - ok
12:38:48.0519 0x1cdc [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
12:38:48.0519 0x1cdc msgpiowin32 - ok
12:38:48.0519 0x1cdc [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
12:38:48.0535 0x1cdc mshidkmdf - ok
12:38:48.0535 0x1cdc [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
12:38:48.0551 0x1cdc mshidumdf - ok
12:38:48.0551 0x1cdc [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
12:38:48.0551 0x1cdc msisadrv - ok
12:38:48.0566 0x1cdc [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
12:38:48.0566 0x1cdc MSiSCSI - ok
12:38:48.0566 0x1cdc msiserver - ok
12:38:48.0582 0x1cdc [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:38:48.0582 0x1cdc MSKSSRV - ok
12:38:48.0582 0x1cdc [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
12:38:48.0597 0x1cdc MsLldp - ok
12:38:48.0597 0x1cdc [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:38:48.0613 0x1cdc MSPCLOCK - ok
12:38:48.0613 0x1cdc [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
12:38:48.0613 0x1cdc MSPQM - ok
12:38:48.0629 0x1cdc [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
12:38:48.0644 0x1cdc MsRPC - ok
12:38:48.0644 0x1cdc [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
12:38:48.0660 0x1cdc mssmbios - ok
12:38:48.0660 0x1cdc [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
12:38:48.0660 0x1cdc MSTEE - ok
12:38:48.0676 0x1cdc [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
12:38:48.0676 0x1cdc MTConfig - ok
12:38:48.0676 0x1cdc [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys
12:38:48.0691 0x1cdc Mup - ok
12:38:48.0691 0x1cdc [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
12:38:48.0707 0x1cdc mvumis - ok
12:38:48.0707 0x1cdc [ 50E1967C1C2A2BBF4E361DE1A6DD9A5E, 914650EE73313FF15F778F9002D8A1F43D9850D3D1086282B408CD71AC3874D0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
12:38:48.0722 0x1cdc MyWiFiDHCPDNS - ok
12:38:48.0738 0x1cdc [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
12:38:48.0754 0x1cdc napagent - ok
12:38:48.0769 0x1cdc [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
12:38:48.0785 0x1cdc NativeWifiP - ok
12:38:48.0801 0x1cdc [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
12:38:48.0801 0x1cdc NcaSvc - ok
12:38:48.0816 0x1cdc [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
12:38:48.0816 0x1cdc NcbService - ok
12:38:48.0832 0x1cdc [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
12:38:48.0832 0x1cdc NcdAutoSetup - ok
12:38:48.0863 0x1cdc [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
12:38:48.0894 0x1cdc NDIS - ok
12:38:48.0910 0x1cdc [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
12:38:48.0910 0x1cdc NdisCap - ok
12:38:48.0910 0x1cdc [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
12:38:48.0926 0x1cdc NdisImPlatform - ok
12:38:48.0926 0x1cdc [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:38:48.0941 0x1cdc NdisTapi - ok
12:38:48.0941 0x1cdc [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:38:48.0957 0x1cdc Ndisuio - ok
12:38:48.0957 0x1cdc [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
12:38:48.0957 0x1cdc NdisVirtualBus - ok
12:38:48.0972 0x1cdc [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:38:48.0988 0x1cdc NdisWan - ok
12:38:48.0988 0x1cdc [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:38:49.0004 0x1cdc NdisWanLegacy - ok
12:38:49.0004 0x1cdc [ B8F36CBC72FC5C8B8A30AD850165EA8E, 478454B1399700B745265A64EC9C797C66BD0141471200BCF222F5EB15B0F40C ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
12:38:49.0019 0x1cdc NDProxy - ok
12:38:49.0019 0x1cdc [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
12:38:49.0035 0x1cdc Ndu - ok
12:38:49.0035 0x1cdc [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
12:38:49.0035 0x1cdc NetBIOS - ok
12:38:49.0051 0x1cdc [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
12:38:49.0066 0x1cdc NetBT - ok
12:38:49.0066 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
12:38:49.0082 0x1cdc Netlogon - ok
12:38:49.0082 0x1cdc [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
12:38:49.0097 0x1cdc Netman - ok
12:38:49.0113 0x1cdc [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
12:38:49.0129 0x1cdc netprofm - ok
12:38:49.0144 0x1cdc [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:38:49.0222 0x1cdc NetTcpPortSharing - ok
12:38:49.0238 0x1cdc [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
12:38:49.0254 0x1cdc netvsc - ok
12:38:49.0332 0x1cdc [ 4E28478C4CE7A0258BAE7127F8CE1AD6, 985C566978478F6A8DF79F58892119E75E60A0C0BFBA6E15707FE58D136E9EFC ] NETwNe64 C:\WINDOWS\system32\DRIVERS\Netwew00.sys
12:38:49.0410 0x1cdc NETwNe64 - ok
12:38:49.0426 0x1cdc [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
12:38:49.0441 0x1cdc NlaSvc - ok
12:38:49.0441 0x1cdc [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
12:38:49.0457 0x1cdc Npfs - ok
12:38:49.0457 0x1cdc [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
12:38:49.0472 0x1cdc npsvctrig - ok
12:38:49.0472 0x1cdc [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
12:38:49.0472 0x1cdc nsi - ok
12:38:49.0488 0x1cdc [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
12:38:49.0488 0x1cdc nsiproxy - ok
12:38:49.0535 0x1cdc [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
12:38:49.0597 0x1cdc Ntfs - ok
12:38:49.0597 0x1cdc [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
12:38:49.0613 0x1cdc Null - ok
12:38:49.0910 0x1cdc [ 40E48E5A23200529913399C88674FE4D, A86F3B8A26F703735578B66C6123BCD266172302A0D82609CAF20FBBD99383A8 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
12:38:49.0973 0x0d54 Object send P2P result: true
12:38:50.0223 0x1cdc nvlddmkm - ok
12:38:50.0269 0x1cdc [ 855093AFA0B795914D6DD5EF4796D38C, A19B94449DBA50BCC2C09D42DEA1BF29CEF3C79B8F7F384904189A579AAA85A0 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
12:38:50.0316 0x1cdc NvNetworkService - ok
12:38:50.0316 0x1cdc [ 3497F1FA734B3DBFFE84D7467402EBC6, E90C7C03CBF9269DF8F3057685B564E343D37075E2328C5AB2ECA7EEA1672B50 ] nvpciflt C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
12:38:50.0316 0x1cdc nvpciflt - ok
12:38:50.0332 0x1cdc [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
12:38:50.0348 0x1cdc nvraid - ok
12:38:50.0348 0x1cdc [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
12:38:50.0363 0x1cdc nvstor - ok
12:38:50.0363 0x1cdc [ BD96CA245DA2933BB68605D0C2075A72, E406CD97FA1A640C1C5FE01B360A0A9DED6E696F2765E395C16AAFF59F24B7B4 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
12:38:50.0363 0x1cdc NvStreamKms - ok
12:38:50.0566 0x1cdc [ CF27CDA72455B4A7853ED98CFC57218A, D66C3AECF8AAE38ED2DAFF9ABB38FE0301A85375250A8CDEF50F68DECE8BBC64 ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
12:38:50.0676 0x1cdc NvStreamNetworkSvc - ok
12:38:50.0785 0x1cdc [ 40BA84AD3348573609095D8F3FD2DA9F, FF68F2352AFCB8C278A2E704F3E9DCC4393299DEAECD9ACF96F2D7FD9830EDF1 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
12:38:50.0863 0x1cdc NvStreamSvc - ok
12:38:50.0894 0x1cdc [ 9139EEA14D2386543AFCC8F494A349C1, A4FD7C9A799A21BE41787D2F07AB5ADBB54E7DE878530D130733E06696E071C6 ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
12:38:50.0926 0x1cdc nvsvc - ok
12:38:50.0926 0x1cdc [ 64E8275CEAD43D3CA8E3A311B2F4B64A, 99E683890B9AF3243100B387317760B5F91745EF9F7FF2ABA2DC7B6551A6EAB6 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
12:38:50.0941 0x1cdc nvvad_WaveExtensible - ok
12:38:50.0941 0x1cdc [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
12:38:50.0957 0x1cdc nv_agp - ok
12:38:50.0988 0x1cdc [ FFF8C4C9F7DD5E108B82408834D24377, A57EDDACBDF6B68290EC660B88C6498E76DF635C730490F39E05552722590D83 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:38:51.0004 0x1cdc ose64 - ok
12:38:51.0004 0x1cdc [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
12:38:51.0019 0x1cdc p2pimsvc - ok
12:38:51.0035 0x1cdc [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
12:38:51.0051 0x1cdc p2psvc - ok
12:38:51.0066 0x1cdc [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys
12:38:51.0066 0x1cdc Parport - ok
12:38:51.0082 0x1cdc [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
12:38:51.0082 0x1cdc partmgr - ok
12:38:51.0098 0x1cdc [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
12:38:51.0113 0x1cdc PcaSvc - ok
12:38:51.0129 0x1cdc [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
12:38:51.0145 0x1cdc pci - ok
12:38:51.0145 0x1cdc [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
12:38:51.0145 0x1cdc pciide - ok
12:38:51.0160 0x1cdc [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
12:38:51.0160 0x1cdc pcmcia - ok
12:38:51.0176 0x1cdc [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
12:38:51.0176 0x1cdc pcw - ok
12:38:51.0176 0x1cdc [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
12:38:51.0191 0x1cdc pdc - ok
12:38:51.0207 0x1cdc [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
12:38:51.0223 0x1cdc PEAUTH - ok
12:38:51.0285 0x1cdc [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
12:38:51.0379 0x1cdc PerfHost - ok
12:38:51.0441 0x1cdc [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
12:38:51.0488 0x1cdc pla - ok
12:38:51.0504 0x1cdc [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
12:38:51.0504 0x1cdc PlugPlay - ok
12:38:51.0535 0x1cdc [ EDB407D1F55B9AA2FD2A718AF0EA89A3, 0E86BDD772CCF697E05F8F6F03EC35CBD66124A2A9803AE55C33DB022B7D2AE7 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
12:38:51.0566 0x1cdc PMBDeviceInfoProvider - ok
12:38:51.0566 0x1cdc [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
12:38:51.0582 0x1cdc PNRPAutoReg - ok
12:38:51.0582 0x1cdc [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
12:38:51.0598 0x1cdc PNRPsvc - ok
12:38:51.0613 0x1cdc [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
12:38:51.0629 0x1cdc PolicyAgent - ok
12:38:51.0629 0x1cdc [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
12:38:51.0645 0x1cdc Power - ok
12:38:51.0660 0x1cdc [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:38:51.0676 0x1cdc PptpMiniport - ok
12:38:51.0738 0x1cdc [ 346F352E17EA5793C726D3F6582BA855, 5CD830CDCC73335EDC58D26D1BC8B8830DA885CA6D1E21BB7EE763354B5C35EA ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
12:38:51.0801 0x1cdc PrintNotify - ok
12:38:51.0817 0x1cdc [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
12:38:51.0817 0x1cdc Processor - ok
12:38:51.0832 0x1cdc [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
12:38:51.0848 0x1cdc ProfSvc - ok
12:38:51.0848 0x1cdc [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
12:38:51.0863 0x1cdc Psched - ok
12:38:51.0879 0x1cdc [ 6C112DA6C86DB7FB2C50522EFDDA706A, 46BB9970F3C58E47143C133B34423ABE5D19F2A865280852CE672BF57EC2F98A ] PSI_SVC_2_x64 c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
12:38:51.0879 0x1cdc PSI_SVC_2_x64 - ok
12:38:51.0879 0x1cdc [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64 C:\WINDOWS\system32\Drivers\PxHlpa64.sys
12:38:51.0895 0x1cdc PxHlpa64 - ok
12:38:51.0895 0x1cdc [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
12:38:51.0910 0x1cdc QWAVE - ok
12:38:51.0926 0x1cdc [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
12:38:51.0926 0x1cdc QWAVEdrv - ok
12:38:51.0926 0x1cdc [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:38:51.0942 0x1cdc RasAcd - ok
12:38:51.0957 0x1cdc [ 3EE5097945A7F680E320953271EB2D4F, 0B9F2B458177A654F65C5E862B7C55B35E20271B76D5E20A20F30D3223A1216F ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
12:38:51.0973 0x1cdc RasAgileVpn - ok
12:38:51.0973 0x1cdc [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
12:38:51.0988 0x1cdc RasAuto - ok
12:38:51.0988 0x1cdc [ 1BD3022FD6E450B00DE560265638FD2A, 3878B443053DFFED62641BE8736891F426C7121EB8C4DB38FF0F218697133A6D ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:38:52.0004 0x1cdc Rasl2tp - ok
12:38:52.0020 0x1cdc [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan C:\WINDOWS\System32\rasmans.dll
12:38:52.0051 0x1cdc RasMan - ok
12:38:52.0051 0x1cdc [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:38:52.0067 0x1cdc RasPppoe - ok
12:38:52.0067 0x1cdc [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\WINDOWS\system32\DRIVERS
TDSSKiller
12:37:10.0708 0x126c TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
12:37:10.0708 0x126c UEFI system
12:37:10.0896 0x126c ============================================================
12:37:10.0896 0x126c Current date / time: 2016/03/21 12:37:10.0896
12:37:10.0896 0x126c SystemInfo:
12:37:10.0896 0x126c
12:37:10.0896 0x126c OS Version: 6.3.9600 ServicePack: 0.0
12:37:10.0896 0x126c Product type: Workstation
12:37:10.0896 0x126c ComputerName: VALIPC
12:37:10.0896 0x126c UserName: Vali PC
12:37:10.0896 0x126c Windows directory: C:\WINDOWS
12:37:10.0896 0x126c System windows directory: C:\WINDOWS
12:37:10.0896 0x126c Running under WOW64
12:37:10.0896 0x126c Processor architecture: Intel x64
12:37:10.0896 0x126c Number of processors: 8
12:37:10.0896 0x126c Page size: 0x1000
12:37:10.0896 0x126c Boot type: Normal boot
12:37:10.0896 0x126c ============================================================
12:37:10.0896 0x126c BG loaded
12:37:12.0021 0x126c System UUID: {668AAC17-2261-0F2D-252A-DCBF171016C6}
12:37:12.0927 0x126c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0B00000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:37:12.0927 0x126c Drive \Device\Harddisk1\DR1 - Size: 0x200000000 ( 8.00 Gb ), SectorSize: 0x200, Cylinders: 0x414, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:37:13.0099 0x126c ============================================================
12:37:13.0099 0x126c \Device\Harddisk0\DR0:
12:37:13.0115 0x126c GPT partitions:
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {6CE5CD8E-F0D1-4B1D-81B4-4633C4FD59E6}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {6EA77E07-6001-4305-9B03-74B3AC53BC7F}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6183BC34-D703-434E-92F0-954E56440148}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1092F4A8-63A6-45F4-AE1E-D9FFA904C93C}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x71DBC000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {44FA2579-FE5A-4DA2-ADCD-68DE34F94589}, Name: , StartLBA 0x71F46800, BlocksNum 0xE1000
12:37:13.0130 0x126c \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {5249529C-173A-487C-9911-6FA991CA1997}, Name: Basic data partition, StartLBA 0x72027800, BlocksNum 0x26DD800
12:37:13.0130 0x126c MBR partitions:
12:37:13.0130 0x126c \Device\Harddisk1\DR1:
12:37:13.0130 0x126c GPT partitions:
12:37:13.0146 0x126c \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {D3BFE2DE-3DAF-11DF-BA40-E3A556D89593}, UniqueGUID: {3BFA089C-FB3A-4BEE-978B-3778C43B6009}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xFFF000
12:37:13.0146 0x126c MBR partitions:
12:37:13.0146 0x126c ============================================================
12:37:13.0349 0x126c C: <-> \Device\Harddisk0\DR0\Partition4
12:37:13.0474 0x126c D: <-> \Device\Harddisk0\DR0\Partition6
12:37:13.0474 0x126c ============================================================
12:37:13.0474 0x126c Initialize success
12:37:13.0474 0x126c ============================================================
12:38:35.0241 0x1cdc ============================================================
12:38:35.0241 0x1cdc Scan started
12:38:35.0241 0x1cdc Mode: Manual; SigCheck; TDLFS;
12:38:35.0241 0x1cdc ============================================================
12:38:35.0241 0x1cdc KSN ping started
12:38:37.0617 0x1cdc KSN ping finished: true
12:38:39.0742 0x1cdc ================ Scan system memory ========================
12:38:39.0742 0x1cdc System memory - ok
12:38:39.0742 0x1cdc ================ Scan services =============================
12:38:39.0851 0x1cdc [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
12:38:39.0898 0x1cdc 1394ohci - ok
12:38:39.0914 0x1cdc [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
12:38:39.0930 0x1cdc 3ware - ok
12:38:39.0930 0x1cdc [ BE14A19386CC6711D2225D2B242AAC53, 06F1B12F245441AA228B55679D8DA45E8A9BBEF330C85A07D2B13CBD10075675 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
12:38:39.0930 0x1cdc Accelerometer - ok
12:38:39.0945 0x1cdc [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
12:38:39.0977 0x1cdc ACPI - ok
12:38:39.0977 0x1cdc [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
12:38:39.0992 0x1cdc acpiex - ok
12:38:39.0992 0x1cdc [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
12:38:40.0008 0x1cdc acpipagr - ok
12:38:40.0023 0x1cdc [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
12:38:40.0039 0x1cdc AcpiPmi - ok
12:38:40.0039 0x1cdc [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
12:38:40.0039 0x1cdc acpitime - ok
12:38:40.0070 0x1cdc [ 156D7DBA4807B3AA99DA5A85BB077CAA, 2BAE2E1CDD7748B320FAC2F87CF0A59DDD2995728E6560CC9DCB60F278C221EE ] AdAppMgrSvc C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
12:38:40.0102 0x1cdc AdAppMgrSvc - ok
12:38:40.0164 0x1cdc [ 99B993BD0F4C033D832B50D5E83BEBEC, A091635B2B428A51400468353F52D3FF35095460D3FA8CB29E2C4A804D87B845 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:38:40.0180 0x1cdc AdobeFlashPlayerUpdateSvc - ok
12:38:40.0195 0x1cdc [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
12:38:40.0227 0x1cdc ADP80XX - ok
12:38:40.0227 0x1cdc [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
12:38:40.0258 0x1cdc AeLookupSvc - ok
12:38:40.0273 0x1cdc [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
12:38:40.0305 0x1cdc AFD - ok
12:38:40.0305 0x1cdc [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
12:38:40.0305 0x1cdc agp440 - ok
12:38:40.0352 0x1cdc [ 8BA0756C7B80D039212F9BB957D84727, 2EFED9D87E37A95F7216D879FA2E054AE105DC5280F7393540C812C296E4FDAC ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
12:38:40.0398 0x1cdc AGSService - ok
12:38:40.0398 0x1cdc [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
12:38:40.0414 0x1cdc ahcache - ok
12:38:40.0414 0x1cdc [ 39403E45A4D1C9FE3AD623659F1085DA, B4E5A17F1C05063799C433E1ED7CDFB989ECD296A78D8537CC5408884DFDC65C ] aksdf C:\WINDOWS\system32\drivers\aksdf.sys
12:38:40.0430 0x1cdc aksdf - ok
12:38:40.0445 0x1cdc [ D0861224C8F7495CDE772FEF2AE1A8A4, 966AA78A399A017E89F8B09C8375D4B6A3A0635427A2BB85531EAC815A3F1DB2 ] aksfridge C:\WINDOWS\system32\DRIVERS\aksfridge.sys
12:38:40.0445 0x1cdc aksfridge - ok
12:38:40.0445 0x1cdc [ 6400543E681FE9ACAD2C94EA7BC658FF, EB29196D41D2EE2956E189908DF26D708C3CF2350CCDDB17EA985E48683191F6 ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys
12:38:40.0461 0x1cdc akshasp - ok
12:38:40.0461 0x1cdc [ AEC6A1C22F56B451A899FA1EC98F5392, 172D9A51B16992BEA9E8F886CADAD023F167D87CEF6D0F29D8D6A8458406F9E0 ] akshhl C:\WINDOWS\system32\DRIVERS\akshhl.sys
12:38:40.0477 0x1cdc akshhl - ok
12:38:40.0477 0x1cdc [ 07E8FC308F307A69B5053A89DC85ADB2, D75F375FC73B1F5DCADB21B22C177903E733DA25A3F5F5BA3B537B1EED73889F ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys
12:38:40.0492 0x1cdc aksusb - ok
12:38:40.0508 0x1cdc [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
12:38:40.0508 0x1cdc ALG - ok
12:38:40.0523 0x1cdc [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
12:38:40.0523 0x1cdc AmdK8 - ok
12:38:40.0539 0x1cdc [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
12:38:40.0539 0x1cdc AmdPPM - ok
12:38:40.0555 0x1cdc [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
12:38:40.0570 0x1cdc amdsata - ok
12:38:40.0586 0x1cdc [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
12:38:40.0586 0x1cdc amdsbs - ok
12:38:40.0602 0x1cdc [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
12:38:40.0602 0x1cdc amdxata - ok
12:38:40.0617 0x1cdc [ B716710EEE22D85EE26FB5EB26FC5C67, 3679071761AB88BEF40437EDB2C9DF71B1722F73FCF05E58D4EB767370366A9E ] AMPPAL C:\WINDOWS\System32\drivers\AMPPAL.sys
12:38:40.0617 0x1cdc AMPPAL - ok
12:38:40.0633 0x1cdc [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
12:38:40.0633 0x1cdc AppHostSvc - ok
12:38:40.0648 0x1cdc [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
12:38:40.0648 0x1cdc AppID - ok
12:38:40.0664 0x1cdc [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
12:38:40.0664 0x1cdc AppIDSvc - ok
12:38:40.0664 0x1cdc [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo C:\WINDOWS\System32\appinfo.dll
12:38:40.0680 0x1cdc Appinfo - ok
12:38:40.0695 0x1cdc [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:38:40.0695 0x1cdc Apple Mobile Device Service - ok
12:38:40.0727 0x1cdc [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
12:38:40.0742 0x1cdc AppReadiness - ok
12:38:40.0773 0x1cdc [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
12:38:40.0805 0x1cdc AppXSvc - ok
12:38:40.0820 0x1cdc [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
12:38:40.0820 0x1cdc arcsas - ok
12:38:40.0836 0x1cdc [ 2AC1E04A3542137F5C28C509FE0EB430, 66E507AB2905505080E32B83693690EA232B7E68204874861FA1C932DA61F0C6 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:38:40.0852 0x1cdc aspnet_state - ok
12:38:40.0852 0x1cdc [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:38:40.0867 0x1cdc AsyncMac - ok
12:38:40.0867 0x1cdc [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
12:38:40.0867 0x1cdc atapi - ok
12:38:40.0883 0x1cdc [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
12:38:40.0898 0x1cdc AudioEndpointBuilder - ok
12:38:40.0914 0x1cdc [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
12:38:40.0945 0x1cdc Audiosrv - ok
12:38:40.0945 0x1cdc [ B52F9B2C63DF84B58E59016FE25648C0, 1FDBB382A288732216A45E773559AFFC241EA47D192BDFB34AA695C2122F5E4C ] Autodesk Content Service C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
12:38:40.0945 0x1cdc Autodesk Content Service - ok
12:38:40.0961 0x1cdc [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
12:38:40.0961 0x1cdc AxInstSV - ok
12:38:40.0977 0x1cdc [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
12:38:41.0008 0x1cdc b06bdrv - ok
12:38:41.0008 0x1cdc [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
12:38:41.0023 0x1cdc BasicDisplay - ok
12:38:41.0023 0x1cdc [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
12:38:41.0023 0x1cdc BasicRender - ok
12:38:41.0039 0x1cdc [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
12:38:41.0039 0x1cdc bcmfn2 - ok
12:38:41.0055 0x1cdc [ 4B6F61BD394DCEDA9B06D702836531C2, 83C739467BD9A00FE09BCE83BB9409EA2DA62FCDD2384F9EE98626226223E918 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
12:38:41.0070 0x1cdc BDESVC - ok
12:38:41.0070 0x1cdc [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
12:38:41.0086 0x1cdc Beep - ok
12:38:41.0102 0x1cdc [ 8F2AD111B47A190F325EE7495D3C1803, C61F1506E74A9EFBB61B8A06B30886B6E891C33211F755F30B924EBA202ECEC5 ] BFE C:\WINDOWS\System32\bfe.dll
12:38:41.0133 0x1cdc BFE - ok
12:38:41.0148 0x1cdc [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
12:38:41.0180 0x1cdc BITS - ok
12:38:41.0211 0x1cdc [ 4AF14827F1584D084BC136A51FAA8397, B6202545E2459D648BF668F7025A139F64DB6F28F88773FD997DFF10003D9B7C ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
12:38:41.0227 0x1cdc Bluetooth Device Monitor - ok
12:38:41.0258 0x1cdc [ BC89A4C6A2A9C65E8E88AD0B3BF180FD, 06ECD1BF3F3526A77E389413D060BAB6BD50E5DC4C926C8EFCE2B04D56EE16E4 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
12:38:41.0273 0x1cdc Bluetooth OBEX Service - ok
12:38:41.0289 0x1cdc [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:38:41.0305 0x1cdc Bonjour Service - ok
12:38:41.0305 0x1cdc [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
12:38:41.0320 0x1cdc bowser - ok
12:38:41.0320 0x1cdc [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
12:38:41.0336 0x1cdc BrokerInfrastructure - ok
12:38:41.0352 0x1cdc [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
12:38:41.0352 0x1cdc Browser - ok
12:38:41.0367 0x1cdc [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
12:38:41.0367 0x1cdc BthAvrcpTg - ok
12:38:41.0367 0x1cdc [ 12418846B057E4F92FC621F5C6CF737D, 0B8B0EADE4F2AD95D450A5C71C287C0F04F33897ABF27D3E3B6428A3C99C7B5D ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
12:38:41.0383 0x1cdc BthEnum - ok
12:38:41.0383 0x1cdc [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
12:38:41.0398 0x1cdc BthHFEnum - ok
12:38:41.0398 0x1cdc [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
12:38:41.0414 0x1cdc bthhfhid - ok
12:38:41.0414 0x1cdc [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
12:38:41.0430 0x1cdc BthHFSrv - ok
12:38:41.0445 0x1cdc [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
12:38:41.0461 0x1cdc BthLEEnum - ok
12:38:41.0461 0x1cdc [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
12:38:41.0477 0x1cdc BTHMODEM - ok
12:38:41.0477 0x1cdc [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
12:38:41.0492 0x1cdc BthPan - ok
12:38:41.0523 0x1cdc [ B810B2B39CCA90DC6BF42AF1658AE0D1, D184F927BCFBDE7063A0C9873BF2C174226E1AB5081A7108FCC66210CD117465 ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
12:38:41.0555 0x1cdc BTHPORT - ok
12:38:41.0570 0x1cdc [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
12:38:41.0570 0x1cdc bthserv - ok
12:38:41.0586 0x1cdc [ 52A1B7ECAB4C9EF70FD41241691E09D3, F7A5BFE72D3151E73DD9922A76964C08AC1FDCB8460D9A17DCF8B7969006AD42 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
12:38:41.0586 0x1cdc BTHUSB - ok
12:38:41.0617 0x1cdc [ 1134650C2F97611ACCDB02BC904AD35D, 59590C7C7D79105C4ED3F610861D58F55C3D7DDA6A13BBC9145AE23A3723B482 ] btmhsf C:\WINDOWS\system32\DRIVERS\btmhsf.sys
12:38:41.0633 0x1cdc btmhsf - ok
12:38:41.0648 0x1cdc [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
12:38:41.0648 0x1cdc cdfs - ok
12:38:41.0664 0x1cdc [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
12:38:41.0680 0x1cdc cdrom - ok
12:38:41.0680 0x1cdc [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
12:38:41.0695 0x1cdc CertPropSvc - ok
12:38:41.0695 0x1cdc [ 6D4391508AA902798259DE327DFDC621, D986949FCCDF1589FF484146B2F4ADB362877578E128AC2AEB19BD427C57E2B7 ] cfywlan1 C:\WINDOWS\system32\DRIVERS\cfywlan1.sys
12:38:41.0695 0x1cdc cfywlan1 - ok
12:38:41.0711 0x1cdc [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
12:38:41.0711 0x1cdc circlass - ok
12:38:41.0727 0x1cdc [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
12:38:41.0742 0x1cdc CLFS - ok
12:38:41.0805 0x1cdc [ B61A3E6B8D3473FC35FF2A928EACE7DE, BA4DAA1E918DD7467E81DDE34848A143C4DE48E7D66913DD48860B2A04D7D8A8 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
12:38:41.0852 0x1cdc ClickToRunSvc - ok
12:38:41.0867 0x1cdc [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
12:38:41.0883 0x1cdc CLVirtualDrive - ok
12:38:41.0883 0x1cdc [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
12:38:41.0914 0x1cdc CmBatt - ok
12:38:41.0945 0x1cdc [ 0DE32A0BB1FE2A773666572F79584520, C417C12476B937265BEDC9A2C3C3F6C50FD19AEC096362337B0921627A2A92EA ] CNG C:\WINDOWS\system32\Drivers\cng.sys
12:38:41.0964 0x1cdc CNG - ok
12:38:41.0980 0x1cdc [ 0E4142B0858B7F3F110E8BF8854062D7, 185F666CE89A77ADEE67F3C87102BE1B2BFBF467BDA676D5164C91D1C9E8FB43 ] cnnctfy3 C:\WINDOWS\system32\DRIVERS\cnnctfy3.sys
12:38:41.0980 0x1cdc cnnctfy3 - ok
12:38:41.0980 0x1cdc [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
12:38:41.0995 0x1cdc CompositeBus - ok
12:38:41.0995 0x1cdc COMSysApp - ok
12:38:41.0995 0x1cdc [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
12:38:42.0011 0x1cdc condrv - ok
12:38:42.0011 0x1cdc [ 6BAC4FEDB7E992FA0CCB782A52CE014F, 8227C7131A4F8A50BC0C255BA0D01DDB70226851EC5D7CE1710960C1FC909D44 ] Connectify C:\Program Files (x86)\Connectify\ConnectifyService.exe
12:38:42.0027 0x1cdc Connectify - ok
12:38:42.0089 0x1cdc [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
12:38:42.0105 0x1cdc cphs - ok
12:38:42.0120 0x1cdc [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
12:38:42.0120 0x1cdc CryptSvc - ok
12:38:42.0136 0x1cdc [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam C:\WINDOWS\system32\drivers\dam.sys
12:38:42.0136 0x1cdc dam - ok
12:38:42.0136 0x1cdc [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
12:38:42.0152 0x1cdc dbupdate - ok
12:38:42.0152 0x1cdc [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
12:38:42.0167 0x1cdc dbupdatem - ok
12:38:42.0183 0x1cdc [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
12:38:42.0199 0x1cdc DcomLaunch - ok
12:38:42.0245 0x1cdc [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
12:38:42.0261 0x1cdc defragsvc - ok
12:38:42.0277 0x1cdc [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
12:38:42.0292 0x1cdc DeviceAssociationService - ok
12:38:42.0292 0x1cdc [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
12:38:42.0308 0x1cdc DeviceInstall - ok
12:38:42.0308 0x1cdc [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
12:38:42.0324 0x1cdc Dfsc - ok
12:38:42.0324 0x1cdc [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
12:38:42.0339 0x1cdc Dhcp - ok
12:38:42.0386 0x1cdc [ 21EDAD8188372C912B7BB9B1C6CB0D38, 4A102745DE8A2A82D2C069B30503BF9FF2312A035A82854F84EF9C27E3533CEE ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
12:38:42.0417 0x1cdc DiagTrack - ok
12:38:42.0433 0x1cdc [ 68BFCCC1EC25F0F942EA32AD9D67A131, CF19DA2816262D9D532249970581E55DF595A5FD0ABE44C5124A40F42A9B28B4 ] DigitalWave.Update.Service C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
12:38:42.0449 0x1cdc DigitalWave.Update.Service - ok
12:38:42.0495 0x1cdc [ A3B1076615D6B83826CB8C963EC16043, B671B53200C5F242BFD528FB471EAB0E2A94D00FDF6F23AB47F13FF315B3B55E ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
12:38:42.0527 0x1cdc Disc Soft Lite Bus Service - ok
12:38:42.0527 0x1cdc [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\WINDOWS\system32\drivers\disk.sys
12:38:42.0542 0x1cdc disk - ok
12:38:42.0542 0x1cdc [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
12:38:42.0558 0x1cdc dmvsc - ok
12:38:42.0558 0x1cdc [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
12:38:42.0574 0x1cdc Dnscache - ok
12:38:42.0589 0x1cdc [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
12:38:42.0605 0x1cdc dot3svc - ok
12:38:42.0605 0x1cdc [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
12:38:42.0620 0x1cdc DPS - ok
12:38:42.0636 0x1cdc [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
12:38:42.0652 0x1cdc drmkaud - ok
12:38:42.0652 0x1cdc [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
12:38:42.0667 0x1cdc DsmSvc - ok
12:38:42.0667 0x1cdc [ 679FF716052109392D870F6A6C4A3535, BEF1784448CCA4AF1D67ED68BD0C7CFE01A7719E98CACF92C2DCBFAA916DC57E ] dtlitescsibus C:\WINDOWS\System32\drivers\dtlitescsibus.sys
12:38:42.0667 0x1cdc dtlitescsibus - ok
12:38:42.0683 0x1cdc [ DCAF642BF2091D9ED68AF3AE84306992, 4872F38EF2A6E8F2A2930FF39EC3220D550F64CEC0D76AE0E0FB59DF00560B85 ] dtliteusbbus C:\WINDOWS\System32\drivers\dtliteusbbus.sys
12:38:42.0683 0x1cdc dtliteusbbus - ok
12:38:42.0730 0x1cdc [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
12:38:42.0777 0x1cdc DXGKrnl - ok
12:38:42.0777 0x1cdc [ B4B52D2D4976FB06C53DCC6F476EAE2F, 2D48A3A6DC4E19840543A2F22CA45D3F6C0C989E00CBCA65F7B4B7222E6D69ED ] eamonm C:\WINDOWS\system32\DRIVERS\eamonm.sys
12:38:42.0792 0x1cdc eamonm - ok
12:38:42.0808 0x1cdc [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
12:38:42.0808 0x1cdc Eaphost - ok
12:38:42.0886 0x1cdc [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
12:38:42.0917 0x1d8c Object required for P2P: [ 99B993BD0F4C033D832B50D5E83BEBEC ] AdobeFlashPlayerUpdateSvc
12:38:42.0980 0x1cdc ebdrv - ok
12:38:42.0980 0x1cdc [ 86F4D86CD3ABBD75EB578A91C403FF93, 2C259AD584D6AB0FB9144651CCF44F23BA507EAF6DDB5A525EA705A7700D4F09 ] eelam C:\WINDOWS\system32\DRIVERS\eelam.sys
12:38:42.0995 0x1cdc eelam - ok
12:38:42.0995 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
12:38:42.0995 0x1cdc EFS - ok
12:38:43.0011 0x1cdc [ 2072E5C612C0C178A1E725433EB4E7EB, FA99355AE119FFEB1C9C2DB1349ABCF59F87AB113C9D91186F59829FFFBA1286 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
12:38:43.0027 0x1cdc ehdrv - ok
12:38:43.0027 0x1cdc [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
12:38:43.0027 0x1cdc EhStorClass - ok
12:38:43.0042 0x1cdc [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
12:38:43.0042 0x1cdc EhStorTcgDrv - ok
12:38:43.0105 0x1cdc [ 898929F39CCCF38C1981B35D01B8CEB1, 0DF4D425A0F034DF00090D938C4F2E941D2ACB5FC49DD791835B1BF39C18D968 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
12:38:43.0152 0x1cdc ekrn - ok
12:38:43.0167 0x1cdc [ FEBED910ADE0997D2AD10BE6456DE92A, 89A8AA6528E9A53329E34257E693214B33B7F77612159CF73D3D5C80DBA81FBA ] epfwwfpr C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys
12:38:43.0167 0x1cdc epfwwfpr - ok
12:38:43.0183 0x1cdc [ ABDD5AD016AFFD34AD40E944CE94BF59, 61089124CD8FEA31142CD4D3C47224A6310B9BE7B7FA974956D9EDDAD4381503 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
12:38:43.0183 0x1cdc EpsonBidirectionalService - detected UnsignedFile.Multi.Generic ( 1 )
12:38:44.0331 0x0858 Object required for P2P: [ 6D4391508AA902798259DE327DFDC621 ] cfywlan1
12:38:45.0253 0x1d8c Object send P2P result: true
12:38:45.0316 0x0d54 Object required for P2P: [ A1F58FFF448E4099297D6EE0641D4D0E ] dbupdate
12:38:45.0519 0x1cdc Detect skipped due to KSN trusted
12:38:45.0519 0x1cdc EpsonBidirectionalService - ok
12:38:45.0519 0x1cdc [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
12:38:45.0535 0x1cdc ErrDev - ok
12:38:45.0566 0x1cdc [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
12:38:45.0597 0x1cdc EventSystem - ok
12:38:45.0613 0x1cdc [ C8559336BB21FF701CBEF14527D7660F, AE8CD6514C0B121B260D9101D76E6225599B832504EB5719FD110E348C9E6682 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
12:38:45.0628 0x1cdc EvtEng - ok
12:38:45.0628 0x1cdc [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
12:38:45.0644 0x1cdc exfat - ok
12:38:45.0660 0x1cdc [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
12:38:45.0675 0x1cdc fastfat - ok
12:38:45.0722 0x1cdc [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
12:38:45.0753 0x1cdc Fax - ok
12:38:45.0753 0x1cdc [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
12:38:45.0769 0x1cdc fdc - ok
12:38:45.0769 0x1cdc [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
12:38:45.0769 0x1cdc fdPHost - ok
12:38:45.0769 0x1cdc [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
12:38:45.0785 0x1cdc FDResPub - ok
12:38:45.0785 0x1cdc [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
12:38:45.0800 0x1cdc fhsvc - ok
12:38:45.0800 0x1cdc [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
12:38:45.0816 0x1cdc FileInfo - ok
12:38:45.0816 0x1cdc [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
12:38:45.0831 0x1cdc Filetrace - ok
12:38:45.0863 0x1cdc [ 96A89625E34EC8B5F05A9D01AAD04759, B64B7E7AD5D02D4C91A2A45FB9F523A162482A37F784625233FE4AD8B2601453 ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
12:38:45.0910 0x1cdc FlexNet Licensing Service 64 - ok
12:38:45.0910 0x1cdc [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
12:38:45.0910 0x1cdc flpydisk - ok
12:38:45.0925 0x1cdc [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
12:38:45.0941 0x1cdc FltMgr - ok
12:38:45.0972 0x1cdc [ 2F225BC85B84C04EA01BAB8D8DACFA83, 1F6E20C8F0FFD3FA60BDF556FB8392FE014E6519C3F314D1D22D394DB2A040CA ] FontCache C:\WINDOWS\system32\FntCache.dll
12:38:46.0003 0x1cdc FontCache - ok
12:38:46.0019 0x1cdc [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:38:46.0019 0x1cdc FontCache3.0.0.0 - ok
12:38:46.0066 0x1cdc [ 5CAD1CAB9AE958339E9B2FFCC74ADC20, FB1139BAAFE41CCA6084DA420E8AF6E0FA77593144F6322A115162EA71003616 ] FPLService C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
12:38:46.0097 0x1cdc FPLService - ok
12:38:46.0097 0x1cdc [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
12:38:46.0097 0x1cdc FsDepends - ok
12:38:46.0113 0x1cdc [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:38:46.0113 0x1cdc Fs_Rec - ok
12:38:46.0128 0x1cdc [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
12:38:46.0144 0x1cdc fvevol - ok
12:38:46.0160 0x1cdc [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
12:38:46.0160 0x1cdc FxPPM - ok
12:38:46.0175 0x1cdc [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
12:38:46.0175 0x1cdc gagp30kx - ok
12:38:46.0175 0x1cdc [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
12:38:46.0191 0x1cdc GEARAspiWDM - ok
12:38:46.0191 0x1cdc [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
12:38:46.0207 0x1cdc gencounter - ok
12:38:46.0222 0x1cdc [ CBD39E74C61C3A3EF695DB25792F32E6, 95454F245DB818227BFE92EBA927A68FA78FB87E7BF5C28761046FF36C56CF32 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
12:38:46.0253 0x1cdc GfExperienceService - ok
12:38:46.0253 0x1cdc [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
12:38:46.0269 0x1cdc GPIOClx0101 - ok
12:38:46.0347 0x1cdc [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
12:38:46.0378 0x1cdc gpsvc - ok
12:38:46.0394 0x1cdc [ BA4404A051944461874E74276FFC19C8, 9A5DAE59A17BF6C4D436096BD3281BD89D967682D81344946ED05BE51B76C62E ] hardlock C:\WINDOWS\system32\drivers\hardlock.sys
12:38:46.0410 0x1cdc hardlock - ok
12:38:46.0425 0x1cdc hasplms - ok
12:38:46.0425 0x1cdc [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
12:38:46.0441 0x1cdc HDAudBus - ok
12:38:46.0441 0x1cdc [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
12:38:46.0441 0x1cdc HidBatt - ok
12:38:46.0457 0x1cdc [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
12:38:46.0457 0x1cdc HidBth - ok
12:38:46.0472 0x1cdc [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
12:38:46.0472 0x1cdc hidi2c - ok
12:38:46.0472 0x1cdc [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
12:38:46.0503 0x1cdc HidIr - ok
12:38:46.0503 0x1cdc [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
12:38:46.0503 0x1cdc hidserv - ok
12:38:46.0519 0x1cdc [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
12:38:46.0519 0x1cdc HidUsb - ok
12:38:46.0535 0x1cdc [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
12:38:46.0535 0x1cdc hkmsvc - ok
12:38:46.0550 0x1cdc [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
12:38:46.0566 0x1cdc HomeGroupListener - ok
12:38:46.0566 0x1cdc [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
12:38:46.0582 0x1cdc HomeGroupProvider - ok
12:38:46.0597 0x1cdc [ 77E81E788CC63E65272A7D247F441505, EA57947495A6FD5B6FCC06AD396AEEEEE44AA5EB924B1A4D71C81B1265120F7B ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
12:38:46.0613 0x1cdc HP Support Assistant Service - ok
12:38:46.0628 0x1cdc [ 0C28C65207A2BD4C737A5BCDAB26A430, 0A56B821445E10AFEF3C9019DECAB6B92CD17947CD053A216AE55F44D5A9C1FD ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
12:38:46.0628 0x1cdc hpdskflt - ok
12:38:46.0644 0x1cdc [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
12:38:46.0675 0x1cdc hpqwmiex - ok
12:38:46.0675 0x0858 Object send P2P result: true
12:38:46.0675 0x1cdc [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
12:38:46.0691 0x1cdc HpSAMD - ok
12:38:46.0691 0x1cdc [ 81E3EF01D1883394BDA9B8687B3BFE23, 5C1F2C97B63402E535832CB3FF954F3B958075AC82B63929DAE51AAF22554979 ] hpsrv C:\WINDOWS\system32\Hpservice.exe
12:38:46.0691 0x1cdc hpsrv - ok
12:38:46.0691 0x1cdc [ 3C5B2067338E4EFDADE94E4A72728F23, 72E21FA1E660F9405A5E39B0F89AB21C60F20BAC13247567EF7139AC130F1897 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
12:38:46.0707 0x1cdc HPWMISVC - ok
12:38:46.0722 0x1cdc [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
12:38:46.0753 0x1cdc HTTP - ok
12:38:46.0769 0x1cdc [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
12:38:46.0769 0x1cdc hwpolicy - ok
12:38:46.0769 0x1cdc [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
12:38:46.0785 0x1cdc hyperkbd - ok
12:38:46.0816 0x1cdc [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
12:38:46.0832 0x1cdc HyperVideo - ok
12:38:46.0847 0x1cdc [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
12:38:46.0863 0x1cdc i8042prt - ok
12:38:46.0863 0x1cdc [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
12:38:46.0878 0x1cdc iaLPSSi_GPIO - ok
12:38:46.0878 0x1cdc [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
12:38:46.0878 0x1cdc iaLPSSi_I2C - ok
12:38:46.0910 0x1cdc [ 050F2539E14F9D5E90A4B61738EC29BD, 0E65468B9F452FA7DB6DF2C1B2B2E9439C79031E27054FBDBDFE28A9F98721D7 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
12:38:46.0925 0x1cdc iaStorA - ok
12:38:46.0941 0x1cdc [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
12:38:46.0957 0x1cdc iaStorAV - ok
12:38:46.0972 0x1cdc [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
12:38:46.0988 0x1cdc iaStorV - ok
12:38:46.0988 0x1cdc [ 43E864824FCEBEE7119E1572B2703EB9, 8D90899F2279947AFD887567C7F60DC3264D56231F5403A64D722B3E25103202 ] iBtFltCoex C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys
12:38:46.0988 0x1cdc iBtFltCoex - ok
12:38:46.0988 0x1cdc IEEtwCollectorService - ok
12:38:47.0082 0x1cdc [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
12:38:47.0175 0x1cdc igfx - ok
12:38:47.0191 0x1cdc [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
12:38:47.0207 0x1cdc igfxCUIService1.0.0.0 - ok
12:38:47.0222 0x1cdc [ AF8A43C376F83A4A1E7DA16461EDE114, EBA10519B074888355A4FC11D52FF1E6A52F88F754B7F1F9863A8313638645CB ] IKEEXT C:\WINDOWS\System32\ikeext.dll
12:38:47.0254 0x1cdc IKEEXT - ok
12:38:47.0269 0x1cdc [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
12:38:47.0285 0x1cdc intaud_WaveExtensible - ok
12:38:47.0300 0x1cdc [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
12:38:47.0316 0x1cdc IntcDAud - ok
12:38:47.0332 0x1cdc [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:38:47.0347 0x1cdc Intel(R) Capability Licensing Service Interface - ok
12:38:47.0347 0x1cdc [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
12:38:47.0363 0x1cdc Intel(R) ME Service - ok
12:38:47.0363 0x1cdc [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
12:38:47.0363 0x1cdc intelide - ok
12:38:47.0379 0x1cdc [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
12:38:47.0379 0x1cdc intelpep - ok
12:38:47.0379 0x1cdc [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
12:38:47.0394 0x1cdc intelppm - ok
12:38:47.0394 0x1cdc [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:38:47.0410 0x1cdc IpFilterDriver - ok
12:38:47.0441 0x1cdc [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
12:38:47.0457 0x1cdc iphlpsvc - ok
12:38:47.0457 0x1cdc [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
12:38:47.0472 0x1cdc IPMIDRV - ok
12:38:47.0472 0x1cdc [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
12:38:47.0488 0x1cdc IPNAT - ok
12:38:47.0535 0x1cdc [ B066C46E4B638B849245E35A5703AF80, 738A2A76A68721DCA5004DFF381EF2F032A7E309454294E4ABDFF5141BAC9337 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:38:47.0550 0x1cdc iPod Service - ok
12:38:47.0550 0x1cdc [ FF785C8410D08BAC4D84E1F8A88B5757, 50A79471EB1E3C5DB2BFC5C1BFDA9166D2975733FC9477AC5F67BE19A3A444D9 ] IpOverUsbSvc C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
12:38:47.0566 0x1cdc IpOverUsbSvc - ok
12:38:47.0566 0x1cdc [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
12:38:47.0582 0x1cdc IRENUM - ok
12:38:47.0582 0x1cdc [ 4D9B9A794F22415B8C3E0CCFBE61BC7A, 4CF01BC95F0AD7DC42AF8A0FCE032DF00610524A98CF52F531E9DE93137E7B87 ] irstrtdv C:\WINDOWS\System32\drivers\irstrtdv.sys
12:38:47.0582 0x1cdc irstrtdv - ok
12:38:47.0644 0x1cdc [ E145E934392E7A49FDC6775AC3A347F8, 8E5DBC8C34FB3B68851489E0860BA3ACE6CDF46BB5E2AEFD1DEF6E895566068B ] irstrtsv C:\Windows\SysWOW64\irstrtsv.exe
12:38:47.0644 0x0d54 Object send P2P result: true
12:38:47.0644 0x0d54 Object required for P2P: [ A1F58FFF448E4099297D6EE0641D4D0E ] dbupdatem
12:38:47.0644 0x1cdc irstrtsv - ok
12:38:47.0644 0x1cdc [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
12:38:47.0660 0x1cdc isapnp - ok
12:38:47.0675 0x1cdc [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
12:38:47.0691 0x1cdc iScsiPrt - ok
12:38:47.0691 0x1cdc [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
12:38:47.0691 0x1cdc iwdbus - ok
12:38:47.0707 0x1cdc [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
12:38:47.0707 0x1cdc jhi_service - ok
12:38:47.0707 0x1cdc [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
12:38:47.0722 0x1cdc kbdclass - ok
12:38:47.0722 0x1cdc [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
12:38:47.0738 0x1cdc kbdhid - ok
12:38:47.0738 0x1cdc [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
12:38:47.0754 0x1cdc kdnic - ok
12:38:47.0754 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
12:38:47.0754 0x1cdc KeyIso - ok
12:38:47.0769 0x1cdc [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
12:38:47.0769 0x1cdc KSecDD - ok
12:38:47.0785 0x1cdc [ 35C19AF2116F67914712D7C4CBE47B8C, 5F976726880A6E51D7ABFA7E3EF7294C6FB7F383DC5710A2C2EC8DD26DAEC204 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
12:38:47.0785 0x1cdc KSecPkg - ok
12:38:47.0785 0x1cdc [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
12:38:47.0800 0x1cdc ksthunk - ok
12:38:47.0816 0x1cdc [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
12:38:47.0832 0x1cdc KtmRm - ok
12:38:47.0847 0x1cdc [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
12:38:47.0863 0x1cdc LanmanServer - ok
12:38:47.0863 0x1cdc [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
12:38:47.0879 0x1cdc LanmanWorkstation - ok
12:38:47.0894 0x1cdc [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
12:38:47.0910 0x1cdc lfsvc - ok
12:38:47.0925 0x1cdc [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
12:38:47.0925 0x1cdc lltdio - ok
12:38:47.0941 0x1cdc [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
12:38:47.0957 0x1cdc lltdsvc - ok
12:38:47.0957 0x1cdc [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
12:38:47.0972 0x1cdc lmhosts - ok
12:38:47.0972 0x1cdc [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:38:47.0988 0x1cdc LMS - ok
12:38:48.0004 0x1cdc [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
12:38:48.0004 0x1cdc LSI_SAS - ok
12:38:48.0004 0x1cdc [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
12:38:48.0019 0x1cdc LSI_SAS2 - ok
12:38:48.0019 0x1cdc [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
12:38:48.0035 0x1cdc LSI_SAS3 - ok
12:38:48.0035 0x1cdc [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
12:38:48.0051 0x1cdc LSI_SSS - ok
12:38:48.0066 0x1cdc [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
12:38:48.0082 0x1cdc LSM - ok
12:38:48.0097 0x1cdc [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
12:38:48.0097 0x1cdc luafv - ok
12:38:48.0097 0x1cdc [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
12:38:48.0113 0x1cdc megasas - ok
12:38:48.0129 0x1cdc [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
12:38:48.0144 0x1cdc megasr - ok
12:38:48.0160 0x1cdc [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
12:38:48.0160 0x1cdc MEIx64 - ok
12:38:48.0160 0x1cdc [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
12:38:48.0176 0x1cdc MMCSS - ok
12:38:48.0176 0x1cdc [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
12:38:48.0191 0x1cdc Modem - ok
12:38:48.0207 0x1cdc [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
12:38:48.0207 0x1cdc monitor - ok
12:38:48.0207 0x1cdc [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
12:38:48.0222 0x1cdc mouclass - ok
12:38:48.0222 0x1cdc [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
12:38:48.0238 0x1cdc mouhid - ok
12:38:48.0238 0x1cdc [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
12:38:48.0254 0x1cdc mountmgr - ok
12:38:48.0269 0x1cdc [ A43F5F2D3D71A902502D61E71A18C265, 9685DABFF80EFFFD28B9B12696BF4821F30989C8441EA0AA3FF0F03ED799AD9D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:38:48.0269 0x1cdc MozillaMaintenance - ok
12:38:48.0285 0x1cdc [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
12:38:48.0285 0x1cdc mpsdrv - ok
12:38:48.0316 0x1cdc [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
12:38:48.0332 0x1cdc MpsSvc - ok
12:38:48.0347 0x1cdc [ D2AC8F07995CE6CD18848C129435B481, 839B04116B49A757950E049150F6AADE41335914CC699ED73BE886BECAC39D36 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
12:38:48.0363 0x1cdc MRxDAV - ok
12:38:48.0379 0x1cdc [ 61000E7155E92342D0D5338CE05D102A, BCFA1A82B9727040C496A84F42D4613B96EC445018BDFBF2E180889B1B561559 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:38:48.0394 0x1cdc mrxsmb - ok
12:38:48.0410 0x1cdc [ BCBD64220AD85C26823453FF1DC3EFBD, 0245E3659E9135B9276F3CCFBEA0CEFFC4F4C0826F6D19B6329057620235F087 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
12:38:48.0426 0x1cdc mrxsmb10 - ok
12:38:48.0426 0x1cdc [ B0A106352DEF6D52332EA39E00462EA7, 274422C1E172B673130944F2FF2A2D9A9A364CFFC02FD04DD7D6D45B34C5022A ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
12:38:48.0441 0x1cdc mrxsmb20 - ok
12:38:48.0441 0x1cdc [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
12:38:48.0457 0x1cdc MsBridge - ok
12:38:48.0472 0x1cdc [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
12:38:48.0488 0x1cdc MSDTC - ok
12:38:48.0488 0x1cdc [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
12:38:48.0504 0x1cdc Msfs - ok
12:38:48.0519 0x1cdc [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
12:38:48.0519 0x1cdc msgpiowin32 - ok
12:38:48.0519 0x1cdc [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
12:38:48.0535 0x1cdc mshidkmdf - ok
12:38:48.0535 0x1cdc [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
12:38:48.0551 0x1cdc mshidumdf - ok
12:38:48.0551 0x1cdc [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
12:38:48.0551 0x1cdc msisadrv - ok
12:38:48.0566 0x1cdc [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
12:38:48.0566 0x1cdc MSiSCSI - ok
12:38:48.0566 0x1cdc msiserver - ok
12:38:48.0582 0x1cdc [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:38:48.0582 0x1cdc MSKSSRV - ok
12:38:48.0582 0x1cdc [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
12:38:48.0597 0x1cdc MsLldp - ok
12:38:48.0597 0x1cdc [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:38:48.0613 0x1cdc MSPCLOCK - ok
12:38:48.0613 0x1cdc [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
12:38:48.0613 0x1cdc MSPQM - ok
12:38:48.0629 0x1cdc [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
12:38:48.0644 0x1cdc MsRPC - ok
12:38:48.0644 0x1cdc [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
12:38:48.0660 0x1cdc mssmbios - ok
12:38:48.0660 0x1cdc [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
12:38:48.0660 0x1cdc MSTEE - ok
12:38:48.0676 0x1cdc [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
12:38:48.0676 0x1cdc MTConfig - ok
12:38:48.0676 0x1cdc [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys
12:38:48.0691 0x1cdc Mup - ok
12:38:48.0691 0x1cdc [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
12:38:48.0707 0x1cdc mvumis - ok
12:38:48.0707 0x1cdc [ 50E1967C1C2A2BBF4E361DE1A6DD9A5E, 914650EE73313FF15F778F9002D8A1F43D9850D3D1086282B408CD71AC3874D0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
12:38:48.0722 0x1cdc MyWiFiDHCPDNS - ok
12:38:48.0738 0x1cdc [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
12:38:48.0754 0x1cdc napagent - ok
12:38:48.0769 0x1cdc [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
12:38:48.0785 0x1cdc NativeWifiP - ok
12:38:48.0801 0x1cdc [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
12:38:48.0801 0x1cdc NcaSvc - ok
12:38:48.0816 0x1cdc [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
12:38:48.0816 0x1cdc NcbService - ok
12:38:48.0832 0x1cdc [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
12:38:48.0832 0x1cdc NcdAutoSetup - ok
12:38:48.0863 0x1cdc [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
12:38:48.0894 0x1cdc NDIS - ok
12:38:48.0910 0x1cdc [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
12:38:48.0910 0x1cdc NdisCap - ok
12:38:48.0910 0x1cdc [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
12:38:48.0926 0x1cdc NdisImPlatform - ok
12:38:48.0926 0x1cdc [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:38:48.0941 0x1cdc NdisTapi - ok
12:38:48.0941 0x1cdc [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:38:48.0957 0x1cdc Ndisuio - ok
12:38:48.0957 0x1cdc [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
12:38:48.0957 0x1cdc NdisVirtualBus - ok
12:38:48.0972 0x1cdc [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:38:48.0988 0x1cdc NdisWan - ok
12:38:48.0988 0x1cdc [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:38:49.0004 0x1cdc NdisWanLegacy - ok
12:38:49.0004 0x1cdc [ B8F36CBC72FC5C8B8A30AD850165EA8E, 478454B1399700B745265A64EC9C797C66BD0141471200BCF222F5EB15B0F40C ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
12:38:49.0019 0x1cdc NDProxy - ok
12:38:49.0019 0x1cdc [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
12:38:49.0035 0x1cdc Ndu - ok
12:38:49.0035 0x1cdc [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
12:38:49.0035 0x1cdc NetBIOS - ok
12:38:49.0051 0x1cdc [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
12:38:49.0066 0x1cdc NetBT - ok
12:38:49.0066 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
12:38:49.0082 0x1cdc Netlogon - ok
12:38:49.0082 0x1cdc [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
12:38:49.0097 0x1cdc Netman - ok
12:38:49.0113 0x1cdc [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
12:38:49.0129 0x1cdc netprofm - ok
12:38:49.0144 0x1cdc [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:38:49.0222 0x1cdc NetTcpPortSharing - ok
12:38:49.0238 0x1cdc [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
12:38:49.0254 0x1cdc netvsc - ok
12:38:49.0332 0x1cdc [ 4E28478C4CE7A0258BAE7127F8CE1AD6, 985C566978478F6A8DF79F58892119E75E60A0C0BFBA6E15707FE58D136E9EFC ] NETwNe64 C:\WINDOWS\system32\DRIVERS\Netwew00.sys
12:38:49.0410 0x1cdc NETwNe64 - ok
12:38:49.0426 0x1cdc [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
12:38:49.0441 0x1cdc NlaSvc - ok
12:38:49.0441 0x1cdc [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
12:38:49.0457 0x1cdc Npfs - ok
12:38:49.0457 0x1cdc [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
12:38:49.0472 0x1cdc npsvctrig - ok
12:38:49.0472 0x1cdc [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
12:38:49.0472 0x1cdc nsi - ok
12:38:49.0488 0x1cdc [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
12:38:49.0488 0x1cdc nsiproxy - ok
12:38:49.0535 0x1cdc [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
12:38:49.0597 0x1cdc Ntfs - ok
12:38:49.0597 0x1cdc [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
12:38:49.0613 0x1cdc Null - ok
12:38:49.0910 0x1cdc [ 40E48E5A23200529913399C88674FE4D, A86F3B8A26F703735578B66C6123BCD266172302A0D82609CAF20FBBD99383A8 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
12:38:49.0973 0x0d54 Object send P2P result: true
12:38:50.0223 0x1cdc nvlddmkm - ok
12:38:50.0269 0x1cdc [ 855093AFA0B795914D6DD5EF4796D38C, A19B94449DBA50BCC2C09D42DEA1BF29CEF3C79B8F7F384904189A579AAA85A0 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
12:38:50.0316 0x1cdc NvNetworkService - ok
12:38:50.0316 0x1cdc [ 3497F1FA734B3DBFFE84D7467402EBC6, E90C7C03CBF9269DF8F3057685B564E343D37075E2328C5AB2ECA7EEA1672B50 ] nvpciflt C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
12:38:50.0316 0x1cdc nvpciflt - ok
12:38:50.0332 0x1cdc [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
12:38:50.0348 0x1cdc nvraid - ok
12:38:50.0348 0x1cdc [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
12:38:50.0363 0x1cdc nvstor - ok
12:38:50.0363 0x1cdc [ BD96CA245DA2933BB68605D0C2075A72, E406CD97FA1A640C1C5FE01B360A0A9DED6E696F2765E395C16AAFF59F24B7B4 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
12:38:50.0363 0x1cdc NvStreamKms - ok
12:38:50.0566 0x1cdc [ CF27CDA72455B4A7853ED98CFC57218A, D66C3AECF8AAE38ED2DAFF9ABB38FE0301A85375250A8CDEF50F68DECE8BBC64 ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
12:38:50.0676 0x1cdc NvStreamNetworkSvc - ok
12:38:50.0785 0x1cdc [ 40BA84AD3348573609095D8F3FD2DA9F, FF68F2352AFCB8C278A2E704F3E9DCC4393299DEAECD9ACF96F2D7FD9830EDF1 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
12:38:50.0863 0x1cdc NvStreamSvc - ok
12:38:50.0894 0x1cdc [ 9139EEA14D2386543AFCC8F494A349C1, A4FD7C9A799A21BE41787D2F07AB5ADBB54E7DE878530D130733E06696E071C6 ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
12:38:50.0926 0x1cdc nvsvc - ok
12:38:50.0926 0x1cdc [ 64E8275CEAD43D3CA8E3A311B2F4B64A, 99E683890B9AF3243100B387317760B5F91745EF9F7FF2ABA2DC7B6551A6EAB6 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
12:38:50.0941 0x1cdc nvvad_WaveExtensible - ok
12:38:50.0941 0x1cdc [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
12:38:50.0957 0x1cdc nv_agp - ok
12:38:50.0988 0x1cdc [ FFF8C4C9F7DD5E108B82408834D24377, A57EDDACBDF6B68290EC660B88C6498E76DF635C730490F39E05552722590D83 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:38:51.0004 0x1cdc ose64 - ok
12:38:51.0004 0x1cdc [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
12:38:51.0019 0x1cdc p2pimsvc - ok
12:38:51.0035 0x1cdc [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
12:38:51.0051 0x1cdc p2psvc - ok
12:38:51.0066 0x1cdc [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys
12:38:51.0066 0x1cdc Parport - ok
12:38:51.0082 0x1cdc [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
12:38:51.0082 0x1cdc partmgr - ok
12:38:51.0098 0x1cdc [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
12:38:51.0113 0x1cdc PcaSvc - ok
12:38:51.0129 0x1cdc [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
12:38:51.0145 0x1cdc pci - ok
12:38:51.0145 0x1cdc [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
12:38:51.0145 0x1cdc pciide - ok
12:38:51.0160 0x1cdc [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
12:38:51.0160 0x1cdc pcmcia - ok
12:38:51.0176 0x1cdc [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
12:38:51.0176 0x1cdc pcw - ok
12:38:51.0176 0x1cdc [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
12:38:51.0191 0x1cdc pdc - ok
12:38:51.0207 0x1cdc [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
12:38:51.0223 0x1cdc PEAUTH - ok
12:38:51.0285 0x1cdc [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
12:38:51.0379 0x1cdc PerfHost - ok
12:38:51.0441 0x1cdc [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
12:38:51.0488 0x1cdc pla - ok
12:38:51.0504 0x1cdc [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
12:38:51.0504 0x1cdc PlugPlay - ok
12:38:51.0535 0x1cdc [ EDB407D1F55B9AA2FD2A718AF0EA89A3, 0E86BDD772CCF697E05F8F6F03EC35CBD66124A2A9803AE55C33DB022B7D2AE7 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
12:38:51.0566 0x1cdc PMBDeviceInfoProvider - ok
12:38:51.0566 0x1cdc [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
12:38:51.0582 0x1cdc PNRPAutoReg - ok
12:38:51.0582 0x1cdc [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
12:38:51.0598 0x1cdc PNRPsvc - ok
12:38:51.0613 0x1cdc [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
12:38:51.0629 0x1cdc PolicyAgent - ok
12:38:51.0629 0x1cdc [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
12:38:51.0645 0x1cdc Power - ok
12:38:51.0660 0x1cdc [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:38:51.0676 0x1cdc PptpMiniport - ok
12:38:51.0738 0x1cdc [ 346F352E17EA5793C726D3F6582BA855, 5CD830CDCC73335EDC58D26D1BC8B8830DA885CA6D1E21BB7EE763354B5C35EA ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
12:38:51.0801 0x1cdc PrintNotify - ok
12:38:51.0817 0x1cdc [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
12:38:51.0817 0x1cdc Processor - ok
12:38:51.0832 0x1cdc [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
12:38:51.0848 0x1cdc ProfSvc - ok
12:38:51.0848 0x1cdc [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
12:38:51.0863 0x1cdc Psched - ok
12:38:51.0879 0x1cdc [ 6C112DA6C86DB7FB2C50522EFDDA706A, 46BB9970F3C58E47143C133B34423ABE5D19F2A865280852CE672BF57EC2F98A ] PSI_SVC_2_x64 c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
12:38:51.0879 0x1cdc PSI_SVC_2_x64 - ok
12:38:51.0879 0x1cdc [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64 C:\WINDOWS\system32\Drivers\PxHlpa64.sys
12:38:51.0895 0x1cdc PxHlpa64 - ok
12:38:51.0895 0x1cdc [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
12:38:51.0910 0x1cdc QWAVE - ok
12:38:51.0926 0x1cdc [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
12:38:51.0926 0x1cdc QWAVEdrv - ok
12:38:51.0926 0x1cdc [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:38:51.0942 0x1cdc RasAcd - ok
12:38:51.0957 0x1cdc [ 3EE5097945A7F680E320953271EB2D4F, 0B9F2B458177A654F65C5E862B7C55B35E20271B76D5E20A20F30D3223A1216F ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
12:38:51.0973 0x1cdc RasAgileVpn - ok
12:38:51.0973 0x1cdc [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
12:38:51.0988 0x1cdc RasAuto - ok
12:38:51.0988 0x1cdc [ 1BD3022FD6E450B00DE560265638FD2A, 3878B443053DFFED62641BE8736891F426C7121EB8C4DB38FF0F218697133A6D ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:38:52.0004 0x1cdc Rasl2tp - ok
12:38:52.0020 0x1cdc [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan C:\WINDOWS\System32\rasmans.dll
12:38:52.0051 0x1cdc RasMan - ok
12:38:52.0051 0x1cdc [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:38:52.0067 0x1cdc RasPppoe - ok
12:38:52.0067 0x1cdc [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\WINDOWS\system32\DRIVERS
Re: Vir
\rassstp.sys
12:38:52.0082 0x1cdc RasSstp - ok
12:38:52.0098 0x1cdc [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:38:52.0113 0x1cdc rdbss - ok
12:38:52.0113 0x1cdc [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
12:38:52.0129 0x1cdc rdpbus - ok
12:38:52.0129 0x1cdc [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
12:38:52.0145 0x1cdc RDPDR - ok
12:38:52.0145 0x1cdc [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
12:38:52.0160 0x1cdc RdpVideoMiniport - ok
12:38:52.0160 0x1cdc [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
12:38:52.0176 0x1cdc rdyboost - ok
12:38:52.0192 0x1cdc [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
12:38:52.0223 0x1cdc ReFS - ok
12:38:52.0238 0x1cdc [ 7256A19A9397E71FADC46E23E11B1609, AF403728F751C3ECFBA68D05C1E9672CB7B52CB078DE85CB16EAEC5230BBD5BC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
12:38:52.0238 0x1cdc RegSrvc - ok
12:38:52.0254 0x1cdc [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
12:38:52.0270 0x1cdc RemoteAccess - ok
12:38:52.0270 0x1cdc [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
12:38:52.0285 0x1cdc RemoteRegistry - ok
12:38:52.0285 0x1cdc [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
12:38:52.0301 0x1cdc RFCOMM - ok
12:38:52.0301 0x1cdc [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
12:38:52.0317 0x1cdc RpcEptMapper - ok
12:38:52.0317 0x1cdc [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
12:38:52.0332 0x1cdc RpcLocator - ok
12:38:52.0348 0x1cdc [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs C:\WINDOWS\system32\rpcss.dll
12:38:52.0379 0x1cdc RpcSs - ok
12:38:52.0379 0x1cdc [ A1D5FFEFDBEB3881EC3D74CC7136847F, B3D278267EF17CC6F2FAF92D3FE67734FB9689EDDFA2A78F620300409DA5D0BB ] RSP2STOR C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys
12:38:52.0395 0x1cdc RSP2STOR - ok
12:38:52.0395 0x1cdc [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
12:38:52.0410 0x1cdc rspndr - ok
12:38:52.0426 0x1cdc [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
12:38:52.0457 0x1cdc RTL8168 - ok
12:38:52.0473 0x1cdc [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
12:38:52.0473 0x1cdc s3cap - ok
12:38:52.0488 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
12:38:52.0488 0x1cdc SamSs - ok
12:38:52.0488 0x1cdc [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
12:38:52.0504 0x1cdc sbp2port - ok
12:38:52.0504 0x1cdc [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
12:38:52.0520 0x1cdc SCardSvr - ok
12:38:52.0535 0x1cdc [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
12:38:52.0535 0x1cdc ScDeviceEnum - ok
12:38:52.0551 0x1cdc [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
12:38:52.0551 0x1cdc scfilter - ok
12:38:52.0582 0x1cdc [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
12:38:52.0613 0x1cdc Schedule - ok
12:38:52.0613 0x1cdc [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
12:38:52.0629 0x1cdc SCPolicySvc - ok
12:38:52.0645 0x1cdc [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
12:38:52.0660 0x1cdc sdbus - ok
12:38:52.0660 0x1cdc [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
12:38:52.0676 0x1cdc sdstor - ok
12:38:52.0676 0x1cdc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
12:38:52.0676 0x1cdc secdrv - ok
12:38:52.0692 0x1cdc [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\WINDOWS\system32\seclogon.dll
12:38:52.0692 0x1cdc seclogon - ok
12:38:52.0692 0x1cdc [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
12:38:52.0707 0x1cdc SENS - ok
12:38:52.0723 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsSimulatorDriver C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:38:52.0723 0x1cdc SensorsSimulatorDriver - ok
12:38:52.0738 0x1cdc [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
12:38:52.0754 0x1cdc SensrSvc - ok
12:38:52.0770 0x1cdc [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
12:38:52.0770 0x1cdc SerCx - ok
12:38:52.0785 0x1cdc [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
12:38:52.0785 0x1cdc SerCx2 - ok
12:38:52.0785 0x1cdc [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
12:38:52.0801 0x1cdc Serenum - ok
12:38:52.0801 0x1cdc [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys
12:38:52.0817 0x1cdc Serial - ok
12:38:52.0817 0x1cdc [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
12:38:52.0832 0x1cdc sermouse - ok
12:38:52.0832 0x1cdc [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv C:\WINDOWS\system32\sessenv.dll
12:38:52.0848 0x1cdc SessionEnv - ok
12:38:52.0848 0x1cdc [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
12:38:52.0863 0x1cdc sfloppy - ok
12:38:52.0879 0x1cdc [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
12:38:52.0895 0x1cdc SharedAccess - ok
12:38:52.0910 0x1cdc [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:38:52.0926 0x1cdc ShellHWDetection - ok
12:38:52.0942 0x1cdc [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
12:38:52.0942 0x1cdc SiSRaid2 - ok
12:38:52.0942 0x1cdc [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
12:38:52.0957 0x1cdc SiSRaid4 - ok
12:38:52.0973 0x1cdc [ AF5CC3F9B88F140D78FC967ABF0F4EC7, 7CE3AB7B0A36635CF00E35E84C14B8661FAF794ABCFA61AE45A0E5E8EA996A3B ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
12:38:52.0973 0x1cdc SmbDrv - ok
12:38:52.0973 0x1cdc [ 19555D03CB179BED8B8AAA239A36BDA4, 7B975821D52ABE077496B3CFC010B33D478CD2C36E6A74D8F72D2BF582B8C84A ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
12:38:52.0989 0x1cdc SmbDrvI - ok
12:38:52.0989 0x1cdc [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
12:38:52.0989 0x1cdc smphost - ok
12:38:53.0004 0x1cdc [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
12:38:53.0004 0x1cdc SNMPTRAP - ok
12:38:53.0020 0x1cdc [ B45AE0970B2D66CCE756DE6989E23EEC, 8393CF2DC4F65CD48D4D7B3C8C2D29E26728593B652D6CEAB65B50AEDA0884B7 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
12:38:53.0051 0x1cdc spaceport - ok
12:38:53.0051 0x1cdc [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
12:38:53.0051 0x1cdc SpbCx - ok
12:38:53.0082 0x1cdc [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler C:\WINDOWS\System32\spoolsv.exe
12:38:53.0098 0x1cdc Spooler - ok
12:38:53.0239 0x1cdc [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe
12:38:53.0379 0x1cdc sppsvc - ok
12:38:53.0395 0x1cdc [ 8FD8EE71D7D639F85805EEE4ADB2AA15, 027E680BE49F705843B0117A72FAFC7681798B99685B91989928EF03767CD7A5 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:38:53.0395 0x1cdc SQLWriter - ok
12:38:53.0411 0x1cdc [ 8003E034E3EA0E29DA54215A770FC27C, 28AB1FDEA372D33540A26DAE413A10336409D33B91F51DC0AE144D451022A2A7 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
12:38:53.0457 0x1cdc srv - ok
12:38:53.0473 0x1cdc [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
12:38:53.0489 0x1cdc srv2 - ok
12:38:53.0504 0x1cdc [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
12:38:53.0520 0x1cdc srvnet - ok
12:38:53.0520 0x1cdc [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
12:38:53.0536 0x1cdc SSDPSRV - ok
12:38:53.0551 0x1cdc [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
12:38:53.0551 0x1cdc SstpSvc - ok
12:38:53.0582 0x1cdc [ 098185E9B7C417CF7480BB9F839DB652, 5573CB98057DC2F01E8958780165A32AFD08E4C768F5625250628CB8A4C509D3 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
12:38:53.0598 0x1cdc STacSV - ok
12:38:53.0614 0x1cdc [ E5C796B621F6FBA8616511063D7F0FFE, 447FA64F552D4B04AD029E01485B4438A70D9B9B98EB49A883D5B17ED4C1D52F ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
12:38:53.0645 0x1cdc StarWindServiceAE - detected UnsignedFile.Multi.Generic ( 1 )
12:38:55.0973 0x1cdc Detect skipped due to KSN trusted
12:38:55.0973 0x1cdc StarWindServiceAE - ok
12:38:55.0973 0x1cdc [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
12:38:55.0989 0x1cdc stexstor - ok
12:38:56.0005 0x1cdc [ 32BE0B7CCA47A5BE30E7E43DC54B54F3, D4667E88E14393311F93D787C902B993B9451A94D332A65B0E22A8C40C3DFF44 ] STHDA C:\WINDOWS\system32\DRIVERS\stwrt64.sys
12:38:56.0036 0x1cdc STHDA - ok
12:38:56.0052 0x1cdc [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
12:38:56.0067 0x1cdc stisvc - ok
12:38:56.0083 0x1cdc [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
12:38:56.0083 0x1cdc storahci - ok
12:38:56.0083 0x1cdc [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
12:38:56.0098 0x1cdc storflt - ok
12:38:56.0098 0x1cdc [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
12:38:56.0114 0x1cdc stornvme - ok
12:38:56.0114 0x1cdc [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
12:38:56.0114 0x1cdc StorSvc - ok
12:38:56.0130 0x1cdc [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
12:38:56.0130 0x1cdc storvsc - ok
12:38:56.0130 0x1cdc [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
12:38:56.0145 0x1cdc svsvc - ok
12:38:56.0145 0x1cdc [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
12:38:56.0145 0x1cdc swenum - ok
12:38:56.0177 0x1cdc [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
12:38:56.0192 0x1cdc swprv - ok
12:38:56.0208 0x1cdc [ 3F45C3FE208CA5E68832B65C597A35A6, EACE9AAFC01C2BA52F4DA129AEF7BFA3CF7F10146E4F4330CD344BFC39DC959C ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
12:38:56.0223 0x1cdc SynTP - ok
12:38:56.0255 0x1cdc [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\WINDOWS\system32\sysmain.dll
12:38:56.0286 0x1cdc SysMain - ok
12:38:56.0286 0x1cdc [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
12:38:56.0302 0x1cdc SystemEventsBroker - ok
12:38:56.0302 0x1cdc [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
12:38:56.0317 0x1cdc TabletInputService - ok
12:38:56.0333 0x1cdc [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
12:38:56.0348 0x1cdc TapiSrv - ok
12:38:56.0411 0x1cdc [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
12:38:56.0473 0x1cdc Tcpip - ok
12:38:56.0536 0x1cdc [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:38:56.0583 0x1cdc TCPIP6 - ok
12:38:56.0598 0x1cdc [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
12:38:56.0598 0x1cdc tcpipreg - ok
12:38:56.0598 0x1cdc [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
12:38:56.0614 0x1cdc tdx - ok
12:38:56.0614 0x1cdc [ C1120AC0382E890410C020B439CAC2AA, CE9FE2FC90E69AE640DE53B677098E77DDFE6EAC64E4DB1544CCCCE0A01FB06C ] Te.Service C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe
12:38:56.0630 0x1cdc Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
12:38:58.0630 0x1ac4 Object required for P2P: [ CF27CDA72455B4A7853ED98CFC57218A ] NvStreamNetworkSvc
12:38:58.0958 0x1cdc Detect skipped due to KSN trusted
12:38:58.0958 0x1cdc Te.Service - ok
12:38:59.0146 0x1cdc [ E9D702580349582413503A28F8329B32, 405CEA2DB2B9EE9EF87E454375BEA6A3F6FB30B95BBD9F397129C73D4CCCC282 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
12:38:59.0271 0x1cdc TeamViewer - ok
12:38:59.0318 0x1cdc [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
12:38:59.0349 0x1cdc terminpt - ok
12:38:59.0380 0x1cdc [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
12:38:59.0411 0x1cdc TermService - ok
12:38:59.0411 0x1cdc [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
12:38:59.0427 0x1cdc Themes - ok
12:38:59.0427 0x1cdc [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
12:38:59.0443 0x1cdc THREADORDER - ok
12:38:59.0443 0x1cdc [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
12:38:59.0474 0x1cdc TimeBroker - ok
12:38:59.0474 0x1cdc [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
12:38:59.0490 0x1cdc TPM - ok
12:38:59.0490 0x1cdc [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
12:38:59.0505 0x1cdc TrkWks - ok
12:38:59.0521 0x1cdc [ 00629A30B9A95D3CC07E09C12F293BD1, CCB0EA347804CC7EDCDFBCA0AEAFF90310C7272D9F0AF7BC54D3F9D344AD4FCA ] TrueService C:\Program Files\Common Files\AuthenTec\TrueService.exe
12:38:59.0521 0x1cdc TrueService - ok
12:38:59.0536 0x1cdc [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
12:38:59.0536 0x1cdc TrustedInstaller - ok
12:38:59.0552 0x1cdc [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
12:38:59.0552 0x1cdc TsUsbFlt - ok
12:38:59.0552 0x1cdc [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
12:38:59.0568 0x1cdc TsUsbGD - ok
12:38:59.0568 0x1cdc [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
12:38:59.0583 0x1cdc tunnel - ok
12:38:59.0630 0x1cdc [ 56C10D3338B01D3FBCC5AF24B3833E1C, 99ABF0D33E2372521384DA3C98FD4A3534155AD5B6B7852EBE94E098AA3DC9B8 ] tvnserver C:\Program Files\TightVNC\tvnserver.exe
12:38:59.0677 0x1cdc tvnserver - ok
12:38:59.0677 0x1cdc [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
12:38:59.0693 0x1cdc uagp35 - ok
12:38:59.0693 0x1cdc [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
12:38:59.0708 0x1cdc UASPStor - ok
12:38:59.0708 0x1cdc [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
12:38:59.0724 0x1cdc UCX01000 - ok
12:38:59.0724 0x1cdc [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
12:38:59.0740 0x1cdc udfs - ok
12:38:59.0755 0x1cdc [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
12:38:59.0755 0x1cdc UEFI - ok
12:38:59.0755 0x1cdc [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
12:38:59.0771 0x1cdc UI0Detect - ok
12:38:59.0771 0x1cdc [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
12:38:59.0786 0x1cdc uliagpkx - ok
12:38:59.0786 0x1cdc [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
12:38:59.0802 0x1cdc umbus - ok
12:38:59.0802 0x1cdc [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
12:38:59.0802 0x1cdc UmPass - ok
12:38:59.0818 0x1cdc [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
12:38:59.0833 0x1cdc UmRdpService - ok
12:38:59.0849 0x1cdc [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:38:59.0865 0x1cdc UNS - ok
12:38:59.0880 0x1cdc [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
12:38:59.0896 0x1cdc upnphost - ok
12:38:59.0911 0x1cdc [ 30F02F642C2D141CAABD412B48A29D76, E94610E0CB46A9DD811AC03B028310D91E13B63A57A39749EEAC70FB5E729EE3 ] usb3Hub C:\WINDOWS\System32\drivers\usb3Hub.sys
12:38:59.0911 0x1cdc usb3Hub - ok
12:38:59.0927 0x1cdc [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
12:38:59.0943 0x1cdc USBAAPL64 - ok
12:38:59.0943 0x1cdc [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
12:38:59.0958 0x1cdc usbccgp - ok
12:38:59.0958 0x1cdc [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
12:38:59.0974 0x1cdc usbcir - ok
12:38:59.0974 0x1cdc [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
12:38:59.0990 0x1cdc usbehci - ok
12:39:00.0005 0x1cdc [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
12:39:00.0021 0x1cdc usbhub - ok
12:39:00.0036 0x1cdc [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
12:39:00.0052 0x1cdc USBHUB3 - ok
12:39:00.0068 0x1cdc [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
12:39:00.0068 0x1cdc usbohci - ok
12:39:00.0068 0x1cdc [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
12:39:00.0083 0x1cdc usbprint - ok
12:39:00.0083 0x1cdc [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:39:00.0099 0x1cdc usbscan - ok
12:39:00.0099 0x1cdc [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
12:39:00.0115 0x1cdc USBSTOR - ok
12:39:00.0115 0x1cdc [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
12:39:00.0130 0x1cdc usbuhci - ok
12:39:00.0130 0x1cdc [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
12:39:00.0146 0x1cdc usbvideo - ok
12:39:00.0162 0x1cdc [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
12:39:00.0177 0x1cdc USBXHCI - ok
12:39:00.0177 0x1cdc [ 49F2693BC3D821FA13AD6E7D5C5FEAFF, E0E109CAB6B19C77A870C5A0D8A99769F5B99C19C2E35A0615D91F87B25229A3 ] valWBFPolicyService C:\Windows\system32\valWBFPolicyService.exe
12:39:00.0177 0x1cdc valWBFPolicyService - detected UnsignedFile.Multi.Generic ( 1 )
12:39:00.0990 0x1ac4 Object send P2P result: true
12:39:00.0990 0x1ac4 Object required for P2P: [ 9139EEA14D2386543AFCC8F494A349C1 ] nvsvc
12:39:02.0490 0x1cdc Detect skipped due to KSN trusted
12:39:02.0490 0x1cdc valWBFPolicyService - ok
12:39:02.0505 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
12:39:02.0521 0x1cdc VaultSvc - ok
12:39:02.0521 0x1cdc [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
12:39:02.0537 0x1cdc vdrvroot - ok
12:39:02.0568 0x1cdc [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
12:39:02.0630 0x1cdc vds - ok
12:39:02.0630 0x1cdc [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
12:39:02.0646 0x1cdc VerifierExt - ok
12:39:02.0662 0x1cdc [ F6ECFD6128A16A4851CFE98D4E01B011, C349893E8D7FB9B510A3FAD040F70C3C72B0ACDD5F6EB336951849F9E953717D ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
12:39:02.0693 0x1cdc vhdmp - ok
12:39:02.0693 0x1cdc [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
12:39:02.0693 0x1cdc viaide - ok
12:39:02.0709 0x1cdc [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
12:39:02.0709 0x1cdc vmbus - ok
12:39:02.0724 0x1cdc [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
12:39:02.0724 0x1cdc VMBusHID - ok
12:39:02.0740 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
12:39:02.0755 0x1cdc vmicguestinterface - ok
12:39:02.0771 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
12:39:02.0787 0x1cdc vmicheartbeat - ok
12:39:02.0802 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
12:39:02.0818 0x1cdc vmickvpexchange - ok
12:39:02.0818 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
12:39:02.0834 0x1cdc vmicrdv - ok
12:39:02.0849 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
12:39:02.0865 0x1cdc vmicshutdown - ok
12:39:02.0881 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
12:39:02.0896 0x1cdc vmictimesync - ok
12:39:02.0912 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
12:39:02.0927 0x1cdc vmicvss - ok
12:39:02.0927 0x1cdc [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
12:39:02.0927 0x1cdc volmgr - ok
12:39:02.0943 0x1cdc [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
12:39:02.0959 0x1cdc volmgrx - ok
12:39:02.0974 0x1cdc [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
12:39:02.0990 0x1cdc volsnap - ok
12:39:03.0037 0x1cdc [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
12:39:03.0052 0x1cdc vpci - ok
12:39:03.0052 0x1cdc [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
12:39:03.0068 0x1cdc vsmraid - ok
12:39:03.0099 0x1cdc [ 3B7F9612439EA47151EC5EAB232C1C3F, CA08CCB14CB46512F72E2C20454242B18BC57E34C55B42A37B7EC27B79242CDC ] VSS C:\WINDOWS\system32\vssvc.exe
12:39:03.0146 0x1cdc VSS - ok
12:39:03.0146 0x1cdc [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
12:39:03.0162 0x1cdc VSTXRAID - ok
12:39:03.0162 0x1cdc [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
12:39:03.0177 0x1cdc vwifibus - ok
12:39:03.0177 0x1cdc [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
12:39:03.0193 0x1cdc vwififlt - ok
12:39:03.0193 0x1cdc [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
12:39:03.0209 0x1cdc vwifimp - ok
12:39:03.0209 0x1cdc [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
12:39:03.0240 0x1cdc W32Time - ok
12:39:03.0240 0x1cdc [ A22546B0093EBBDE03C52E56C3391373, 0C28D5C6A4E4EF12ABF0195409CAED17E07DEA22FB330D99FEEF847CBBC04A4E ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
12:39:03.0256 0x1cdc w3logsvc - ok
12:39:03.0256 0x1cdc [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
12:39:03.0256 0x1cdc WacomPen - ok
12:39:03.0271 0x1cdc [ 23006D660C0E54BF1CE8253E15F5E995, 4FA7ED2F6B29BACBE2BB43C79FC8231C4C59F27C79AB09DB07BBFE36B35689E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:39:03.0271 0x1cdc Wanarp - ok
12:39:03.0271 0x1cdc [ 23006D660C0E54BF1CE8253E15F5E995, 4FA7ED2F6B29BACBE2BB43C79FC8231C4C59F27C79AB09DB07BBFE36B35689E5 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:39:03.0287 0x1cdc Wanarpv6 - ok
12:39:03.0302 0x1cdc [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
12:39:03.0318 0x1ac4 Object send P2P result: true
12:39:03.0334 0x1cdc WAS - ok
12:39:03.0381 0x1cdc [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine C:\WINDOWS\system32\wbengine.exe
12:39:03.0427 0x1cdc wbengine - ok
12:39:03.0443 0x1cdc [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
12:39:03.0459 0x1cdc WbioSrvc - ok
12:39:03.0474 0x1cdc [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
12:39:03.0490 0x1cdc Wcmsvc - ok
12:39:03.0490 0x1cdc [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
12:39:03.0521 0x1cdc wcncsvc - ok
12:39:03.0521 0x1cdc [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
12:39:03.0521 0x1cdc WcsPlugInService - ok
12:39:03.0537 0x1cdc [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
12:39:03.0552 0x1cdc WdBoot - ok
12:39:03.0568 0x1cdc [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
12:39:03.0584 0x1cdc Wdf01000 - ok
12:39:03.0599 0x1cdc [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
12:39:03.0615 0x1cdc WdFilter - ok
12:39:03.0615 0x1cdc [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
12:39:03.0631 0x1cdc WdiServiceHost - ok
12:39:03.0631 0x1cdc [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
12:39:03.0646 0x1cdc WdiSystemHost - ok
12:39:03.0646 0x1cdc [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
12:39:03.0662 0x1cdc WdNisDrv - ok
12:39:03.0678 0x1cdc WdNisSvc - ok
12:39:03.0678 0x1cdc [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient C:\WINDOWS\System32\webclnt.dll
12:39:03.0693 0x1cdc WebClient - ok
12:39:03.0709 0x1cdc [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
12:39:03.0724 0x1cdc Wecsvc - ok
12:39:03.0724 0x1cdc [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
12:39:03.0724 0x1cdc WEPHOSTSVC - ok
12:39:03.0740 0x1cdc [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
12:39:03.0740 0x1cdc wercplsupport - ok
12:39:03.0756 0x1cdc [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
12:39:03.0771 0x1cdc WerSvc - ok
12:39:03.0771 0x1cdc [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
12:39:03.0771 0x1cdc WFPLWFS - ok
12:39:03.0787 0x1cdc [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
12:39:03.0787 0x1cdc WiaRpc - ok
12:39:03.0803 0x1cdc [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
12:39:03.0803 0x1cdc WIMMount - ok
12:39:03.0803 0x1cdc WinDefend - ok
12:39:03.0834 0x1cdc [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
12:39:03.0849 0x1cdc WinHttpAutoProxySvc - ok
12:39:03.0865 0x1cdc [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
12:39:03.0881 0x1cdc Winmgmt - ok
12:39:03.0974 0x1cdc [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
12:39:04.0037 0x1cdc WinRM - ok
12:39:04.0053 0x1cdc [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb C:\WINDOWS\System32\drivers\WinUSB.sys
12:39:04.0053 0x1cdc WinUsb - ok
12:39:04.0053 0x1cdc [ DAF801153E8F33E13AB278332250D78A, 0F277DA63E8A058A474994CF3A8345DEA967B78E54F4F97FEC995499A1D541A0 ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
12:39:04.0068 0x1cdc WirelessButtonDriver - ok
12:39:04.0099 0x1cdc [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
12:39:04.0131 0x1cdc WlanSvc - ok
12:39:04.0178 0x1cdc [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
12:39:04.0224 0x1cdc wlidsvc - ok
12:39:04.0224 0x1cdc [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
12:39:04.0240 0x1cdc WmiAcpi - ok
12:39:04.0240 0x1cdc [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
12:39:04.0256 0x1cdc wmiApSrv - ok
12:39:04.0256 0x1cdc WMPNetworkSvc - ok
12:39:04.0256 0x1cdc [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
12:39:04.0271 0x1cdc Wof - ok
12:39:04.0318 0x1cdc [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
12:39:04.0365 0x1cdc workfolderssvc - ok
12:39:04.0365 0x1cdc [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
12:39:04.0365 0x1cdc wpcfltr - ok
12:39:04.0381 0x1cdc [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
12:39:04.0381 0x1cdc WPCSvc - ok
12:39:04.0396 0x1cdc [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
12:39:04.0396 0x1cdc WPDBusEnum - ok
12:39:04.0396 0x1cdc [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
12:39:04.0412 0x1cdc WpdUpFltr - ok
12:39:04.0412 0x1cdc [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
12:39:04.0428 0x1cdc ws2ifsl - ok
12:39:04.0428 0x1cdc [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\WINDOWS\System32\wscsvc.dll
12:39:04.0443 0x1cdc wscsvc - ok
12:39:04.0443 0x1cdc [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
12:39:04.0459 0x1cdc WSDPrintDevice - ok
12:39:04.0459 0x1cdc [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan C:\WINDOWS\system32\DRIVERS\WSDScan.sys
12:39:04.0459 0x1cdc WSDScan - ok
12:39:04.0459 0x1cdc WSearch - ok
12:39:04.0568 0x1cdc [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
12:39:04.0662 0x1cdc WSService - ok
12:39:04.0756 0x1cdc [ 020F47C655ED1F63BBA834AA53575D5C, 7E36BB83B937CEA8B5D1EAF1DF63D32D64CA8045DA377DF5237D2F4DC16574CC ] wuauserv C:\WINDOWS\system32\wuaueng.dll
12:39:04.0849 0x1cdc wuauserv - ok
12:39:04.0849 0x1cdc [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
12:39:04.0865 0x1cdc WudfPf - ok
12:39:04.0881 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
12:39:04.0881 0x1cdc WUDFRd - ok
12:39:04.0896 0x1cdc [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
12:39:04.0896 0x1cdc wudfsvc - ok
12:39:04.0912 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:39:04.0912 0x1cdc WUDFWpdFs - ok
12:39:04.0928 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:39:04.0928 0x1cdc WUDFWpdMtp - ok
12:39:04.0943 0x1cdc [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
12:39:04.0959 0x1cdc WwanSvc - ok
12:39:04.0975 0x1cdc [ 6FDEE5E0741A3FFA5E5772C6C94E3F64, 859EBC7F8FF3CE9F3301B5BF93CF0C84C2A4271F205B67D9B8DC463DC67DE661 ] XHCIPort C:\WINDOWS\System32\drivers\XHCIPort.sys
12:39:04.0975 0x1cdc XHCIPort - ok
12:39:05.0068 0x1cdc [ 19137CA32DA7AA6F4936514721AA53BA, E9E5E6F05A1D529D19339F0C71AA5F9D412F6D3AE4BF84CF340C8569BA367D51 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
12:39:05.0131 0x1cdc ZeroConfigService - ok
12:39:05.0146 0x1cdc ================ Scan global ===============================
12:39:05.0146 0x1cdc [ 05B08C20B8428ECE088CB5635696A48D, 471642A2D0E5C3BB235962FC8D86A49AC30D7DDE80B97E348425BBFCDE4DCDC3 ] C:\WINDOWS\system32\basesrv.dll
12:39:05.0146 0x1cdc [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
12:39:05.0162 0x1cdc [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
12:39:05.0178 0x1cdc [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
12:39:05.0193 0x1cdc [ Global ] - ok
12:39:05.0193 0x1cdc ================ Scan MBR ==================================
12:39:05.0193 0x1cdc [ A78C646DB8D284B9C54ED366B2CA860E ] \Device\Harddisk0\DR0
12:39:05.0303 0x1cdc \Device\Harddisk0\DR0 - ok
12:39:05.0303 0x1cdc [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
12:39:05.0334 0x1cdc \Device\Harddisk1\DR1 - ok
12:39:05.0334 0x1cdc ================ Scan VBR ==================================
12:39:05.0334 0x1cdc [ C0E540D719252DD28C8020DED045A891 ] \Device\Harddisk0\DR0\Partition1
12:39:05.0350 0x1cdc \Device\Harddisk0\DR0\Partition1 - ok
12:39:05.0350 0x1cdc [ CEB08ECF1B9A7C7B92FE528D5CDD8894 ] \Device\Harddisk0\DR0\Partition2
12:39:05.0365 0x1cdc \Device\Harddisk0\DR0\Partition2 - ok
12:39:05.0365 0x1cdc [ 131DC1E5AF18F03F55A4A6E2D92FF589 ] \Device\Harddisk0\DR0\Partition3
12:39:05.0365 0x1cdc \Device\Harddisk0\DR0\Partition3 - ok
12:39:05.0365 0x1cdc [ F15E0F535A5945BF32D5C0DCD6ECC53C ] \Device\Harddisk0\DR0\Partition4
12:39:05.0397 0x1cdc \Device\Harddisk0\DR0\Partition4 - ok
12:39:05.0412 0x1cdc [ 0C8A164D6E1B12EAA5B2DBED4F079314 ] \Device\Harddisk0\DR0\Partition5
12:39:05.0522 0x1cdc \Device\Harddisk0\DR0\Partition5 - ok
12:39:05.0537 0x1cdc [ DBDDDB21A43765BC5E5BEE300764B4EE ] \Device\Harddisk0\DR0\Partition6
12:39:05.0537 0x1cdc \Device\Harddisk0\DR0\Partition6 - ok
12:39:05.0537 0x1cdc [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
12:39:05.0537 0x1cdc \Device\Harddisk1\DR1\Partition1 - ok
12:39:05.0537 0x1cdc ================ Scan generic autorun ======================
12:39:05.0553 0x1cdc [ 8D2A1935AE10BE1E11A8C58B2F473560, BAD89C2E6231C950D345FC8FD4E128136B5520C8429E101A79A64BAFC9DE0EB2 ] C:\Windows\system32\igfxtray.exe
12:39:05.0569 0x1cdc IgfxTray - ok
12:39:05.0569 0x1cdc BTMTrayAgent - ok
12:39:05.0678 0x1cdc [ F4CD6DA32F5FA8DF305C22A444DD7B5D, E8978FDB71597A4501429787E4729555C47292BD40AFDA2487C6D88DFDBD806C ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
12:39:05.0725 0x1cdc NvBackend - ok
12:39:05.0725 0x1cdc SynTPEnh - ok
12:39:05.0850 0x1cdc [ C380ED1AF948D2DD7B9795108F22E930, B02A85E8338097A913FE0048E0FB8F1A40519E395E948611F8E2151C60D73DB0 ] C:\Program Files (x86)\Connectify\Connectify.exe
12:39:05.0928 0x1cdc Connectify Hotspot - ok
12:39:05.0975 0x1cdc [ 210875E72C45D712120904128F357233, 4998BF27D28D4DDE79F9B06E0562E28A9D433DBFC0D3D4144A7A97EBF5110091 ] C:\Program Files\IDT\WDM\sttray64.exe
12:39:06.0006 0x1cdc SysTrayApp - ok
12:39:06.0022 0x1cdc [ ADFCC68B42627055979B26FC00759D17, 5C1C8395A7846E5DDEB6FFE2B37B537DDA4712D62CE05D7EA8B1773C75D46DE6 ] C:\Program Files\iTunes\iTunesHelper.exe
12:39:06.0022 0x1cdc iTunesHelper - ok
12:39:06.0022 0x1cdc [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\WINDOWS\system32\rundll32.exe
12:39:06.0053 0x1cdc ShadowPlay - ok
12:39:06.0100 0x1cdc [ 56C10D3338B01D3FBCC5AF24B3833E1C, 99ABF0D33E2372521384DA3C98FD4A3534155AD5B6B7852EBE94E098AA3DC9B8 ] C:\Program Files\TightVNC\tvnserver.exe
12:39:06.0131 0x1cdc tvncontrol - ok
12:39:06.0147 0x1cdc [ D6FF94ED4D086489A453134F0AE33FD3, 47E1CE640E9AB6B8DD148DACA80B1D07BCF69DF9F6B109285419447B9A4025FF ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
12:39:06.0162 0x1cdc CLVirtualDrive - ok
12:39:06.0178 0x1cdc [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
12:39:06.0194 0x1cdc RemoteControl10 - ok
12:39:06.0225 0x1cdc [ 9F3655267BA37004F519ABDDB3AEE244, 971BA4937F103F09C166BBCAE6D48688251AD603A743C81D9A50480BFEF22C83 ] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
12:39:06.0256 0x1cdc HP CoolSense - ok
12:39:06.0256 0x1cdc [ 7AA219D7AEAA8BADCAC7853AE6AE3BD5, 018F85DCD9EB33DC775CCCB58B999A640B6F8FEF37898EA45600B433E77CF9AE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
12:39:06.0272 0x1cdc APSDaemon - ok
12:39:06.0287 0x1cdc [ 4D3989C1259BF73F2543D81C0B75B30C, E9E413318C438762E8A64D24304F0CA9EBF030318AA10A5CD72EA03400F4B406 ] C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe
12:39:06.0303 0x1cdc ADSKAppManager - ok
12:39:06.0381 0x1cdc [ 74862BA761697FEE2FA175FDFF7CFC17, 51E45D57255AF1803EA0FCD42A5D18D17DF0004C5FAC6F729649B7B5B054D1F7 ] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
12:39:06.0444 0x1cdc PMBVolumeWatcher - ok
12:39:06.0459 0x1cdc Dropbox - ok
12:39:06.0475 0x1cdc [ 6198A9BC15ED77F318D5DDD1918CF1D1, 6C7E619BB053F09021F5867E3A70A3A2890E2318CF1A5CE294A5F894CB3A4890 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
12:39:06.0490 0x1cdc HP Quick Launch - ok
12:39:06.0615 0x1cdc [ 7E3B8DECD121644CB39E1BB25C4974BA, 844090C7010C974BB183EE96AA57C3758B70EFB330E11582702E1471251B4641 ] C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe
12:39:06.0787 0x1cdc AshSnap - ok
12:39:06.0803 0x1cdc [ 6D9C544ECF1D56AFDA3C03C19E75FE8B, 8FD676300ED596EDCB33F334709245424613CAB30868A2866785A47CBF689199 ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE
12:39:06.0819 0x1cdc EPSON SX525WD Series - ok
12:39:06.0819 0x1cdc [ 6D9C544ECF1D56AFDA3C03C19E75FE8B, 8FD676300ED596EDCB33F334709245424613CAB30868A2866785A47CBF689199 ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE
12:39:06.0834 0x1cdc EPSON68415A (Epson Stylus SX525WD) - ok
12:39:06.0834 0x1cdc [ 6D9C544ECF1D56AFDA3C03C19E75FE8B, 8FD676300ED596EDCB33F334709245424613CAB30868A2866785A47CBF689199 ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE
12:39:06.0850 0x1cdc Epson Stylus SX525WD(Síť) - ok
12:39:06.0865 0x1cdc Lync - ok
12:39:07.0069 0x1cdc [ F81770A2EE5FCFACC953880633A7582C, D3F80CCA565985D90F82D7DBD16AE56F8B585C97F6E1401BB9F8DC26361DE0F5 ] C:\Program Files (x86)\AirDroid\AirDroid.exe
12:39:07.0319 0x1cdc AirDroid 3 - detected UnsignedFile.Multi.Generic ( 1 )
12:39:09.0631 0x1cdc Object required for P2P: [ F81770A2EE5FCFACC953880633A7582C ] C:\Program Files (x86)\AirDroid\AirDroid.exe
12:39:12.0038 0x1cdc Object send P2P result: true
12:39:12.0038 0x1cdc Detect skipped due to KSN trusted
12:39:12.0038 0x1cdc AirDroid 3 - ok
12:39:12.0038 0x1cdc Waiting for KSN requests completion. In queue: 152
12:39:12.0304 0x1680 Object required for P2P: [ 19137CA32DA7AA6F4936514721AA53BA ] ZeroConfigService
12:39:13.0054 0x1cdc Waiting for KSN requests completion. In queue: 18
12:39:14.0058 0x1cdc Waiting for KSN requests completion. In queue: 18
12:39:14.0652 0x1680 Object send P2P result: true
12:39:14.0652 0x1680 Object required for P2P: [ 74862BA761697FEE2FA175FDFF7CFC17 ] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
12:39:15.0058 0x1cdc Waiting for KSN requests completion. In queue: 6
12:39:16.0059 0x1cdc Waiting for KSN requests completion. In queue: 6
12:39:17.0012 0x1680 Object send P2P result: true
12:39:17.0074 0x1cdc AV detected via SS2: ESET NOD32 Antivirus 9.0.374.1, C:\Program Files\ESET\ESET NOD32 Antivirus\ecmd.exe ( 9.0.374.0 ), 0x41000 ( enabled : updated )
12:39:17.0074 0x1cdc AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60110 ( disabled : outofdate )
12:39:17.0090 0x1cdc Win FW state via NFP2: enabled ( trusted )
12:39:19.0387 0x1cdc ============================================================
12:39:19.0387 0x1cdc Scan finished
12:39:19.0387 0x1cdc ============================================================
12:39:19.0387 0x199c Detected object count: 0
12:39:19.0387 0x199c Actual detected object count: 0
12:42:15.0880 0x1854 Deinitialize success
Mbar
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.03.21.02
rootkit: v2016.03.12.01
Windows 8.1 x64 NTFS
Internet Explorer 11.0.9600.18231
Vali PC :: VALIPC [administrator]
21. 3. 2016 12:45:04
mbar-log-2016-03-21 (12-45-04).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 464689
Time elapsed: 21 minute(s), 5 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
12:38:52.0082 0x1cdc RasSstp - ok
12:38:52.0098 0x1cdc [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:38:52.0113 0x1cdc rdbss - ok
12:38:52.0113 0x1cdc [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
12:38:52.0129 0x1cdc rdpbus - ok
12:38:52.0129 0x1cdc [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
12:38:52.0145 0x1cdc RDPDR - ok
12:38:52.0145 0x1cdc [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
12:38:52.0160 0x1cdc RdpVideoMiniport - ok
12:38:52.0160 0x1cdc [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
12:38:52.0176 0x1cdc rdyboost - ok
12:38:52.0192 0x1cdc [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
12:38:52.0223 0x1cdc ReFS - ok
12:38:52.0238 0x1cdc [ 7256A19A9397E71FADC46E23E11B1609, AF403728F751C3ECFBA68D05C1E9672CB7B52CB078DE85CB16EAEC5230BBD5BC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
12:38:52.0238 0x1cdc RegSrvc - ok
12:38:52.0254 0x1cdc [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
12:38:52.0270 0x1cdc RemoteAccess - ok
12:38:52.0270 0x1cdc [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
12:38:52.0285 0x1cdc RemoteRegistry - ok
12:38:52.0285 0x1cdc [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
12:38:52.0301 0x1cdc RFCOMM - ok
12:38:52.0301 0x1cdc [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
12:38:52.0317 0x1cdc RpcEptMapper - ok
12:38:52.0317 0x1cdc [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
12:38:52.0332 0x1cdc RpcLocator - ok
12:38:52.0348 0x1cdc [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs C:\WINDOWS\system32\rpcss.dll
12:38:52.0379 0x1cdc RpcSs - ok
12:38:52.0379 0x1cdc [ A1D5FFEFDBEB3881EC3D74CC7136847F, B3D278267EF17CC6F2FAF92D3FE67734FB9689EDDFA2A78F620300409DA5D0BB ] RSP2STOR C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys
12:38:52.0395 0x1cdc RSP2STOR - ok
12:38:52.0395 0x1cdc [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
12:38:52.0410 0x1cdc rspndr - ok
12:38:52.0426 0x1cdc [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
12:38:52.0457 0x1cdc RTL8168 - ok
12:38:52.0473 0x1cdc [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
12:38:52.0473 0x1cdc s3cap - ok
12:38:52.0488 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
12:38:52.0488 0x1cdc SamSs - ok
12:38:52.0488 0x1cdc [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
12:38:52.0504 0x1cdc sbp2port - ok
12:38:52.0504 0x1cdc [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
12:38:52.0520 0x1cdc SCardSvr - ok
12:38:52.0535 0x1cdc [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
12:38:52.0535 0x1cdc ScDeviceEnum - ok
12:38:52.0551 0x1cdc [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
12:38:52.0551 0x1cdc scfilter - ok
12:38:52.0582 0x1cdc [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
12:38:52.0613 0x1cdc Schedule - ok
12:38:52.0613 0x1cdc [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
12:38:52.0629 0x1cdc SCPolicySvc - ok
12:38:52.0645 0x1cdc [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
12:38:52.0660 0x1cdc sdbus - ok
12:38:52.0660 0x1cdc [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
12:38:52.0676 0x1cdc sdstor - ok
12:38:52.0676 0x1cdc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
12:38:52.0676 0x1cdc secdrv - ok
12:38:52.0692 0x1cdc [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\WINDOWS\system32\seclogon.dll
12:38:52.0692 0x1cdc seclogon - ok
12:38:52.0692 0x1cdc [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
12:38:52.0707 0x1cdc SENS - ok
12:38:52.0723 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsSimulatorDriver C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:38:52.0723 0x1cdc SensorsSimulatorDriver - ok
12:38:52.0738 0x1cdc [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
12:38:52.0754 0x1cdc SensrSvc - ok
12:38:52.0770 0x1cdc [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
12:38:52.0770 0x1cdc SerCx - ok
12:38:52.0785 0x1cdc [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
12:38:52.0785 0x1cdc SerCx2 - ok
12:38:52.0785 0x1cdc [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
12:38:52.0801 0x1cdc Serenum - ok
12:38:52.0801 0x1cdc [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys
12:38:52.0817 0x1cdc Serial - ok
12:38:52.0817 0x1cdc [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
12:38:52.0832 0x1cdc sermouse - ok
12:38:52.0832 0x1cdc [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv C:\WINDOWS\system32\sessenv.dll
12:38:52.0848 0x1cdc SessionEnv - ok
12:38:52.0848 0x1cdc [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
12:38:52.0863 0x1cdc sfloppy - ok
12:38:52.0879 0x1cdc [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
12:38:52.0895 0x1cdc SharedAccess - ok
12:38:52.0910 0x1cdc [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:38:52.0926 0x1cdc ShellHWDetection - ok
12:38:52.0942 0x1cdc [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
12:38:52.0942 0x1cdc SiSRaid2 - ok
12:38:52.0942 0x1cdc [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
12:38:52.0957 0x1cdc SiSRaid4 - ok
12:38:52.0973 0x1cdc [ AF5CC3F9B88F140D78FC967ABF0F4EC7, 7CE3AB7B0A36635CF00E35E84C14B8661FAF794ABCFA61AE45A0E5E8EA996A3B ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
12:38:52.0973 0x1cdc SmbDrv - ok
12:38:52.0973 0x1cdc [ 19555D03CB179BED8B8AAA239A36BDA4, 7B975821D52ABE077496B3CFC010B33D478CD2C36E6A74D8F72D2BF582B8C84A ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
12:38:52.0989 0x1cdc SmbDrvI - ok
12:38:52.0989 0x1cdc [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
12:38:52.0989 0x1cdc smphost - ok
12:38:53.0004 0x1cdc [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
12:38:53.0004 0x1cdc SNMPTRAP - ok
12:38:53.0020 0x1cdc [ B45AE0970B2D66CCE756DE6989E23EEC, 8393CF2DC4F65CD48D4D7B3C8C2D29E26728593B652D6CEAB65B50AEDA0884B7 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
12:38:53.0051 0x1cdc spaceport - ok
12:38:53.0051 0x1cdc [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
12:38:53.0051 0x1cdc SpbCx - ok
12:38:53.0082 0x1cdc [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler C:\WINDOWS\System32\spoolsv.exe
12:38:53.0098 0x1cdc Spooler - ok
12:38:53.0239 0x1cdc [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe
12:38:53.0379 0x1cdc sppsvc - ok
12:38:53.0395 0x1cdc [ 8FD8EE71D7D639F85805EEE4ADB2AA15, 027E680BE49F705843B0117A72FAFC7681798B99685B91989928EF03767CD7A5 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:38:53.0395 0x1cdc SQLWriter - ok
12:38:53.0411 0x1cdc [ 8003E034E3EA0E29DA54215A770FC27C, 28AB1FDEA372D33540A26DAE413A10336409D33B91F51DC0AE144D451022A2A7 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
12:38:53.0457 0x1cdc srv - ok
12:38:53.0473 0x1cdc [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
12:38:53.0489 0x1cdc srv2 - ok
12:38:53.0504 0x1cdc [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
12:38:53.0520 0x1cdc srvnet - ok
12:38:53.0520 0x1cdc [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
12:38:53.0536 0x1cdc SSDPSRV - ok
12:38:53.0551 0x1cdc [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
12:38:53.0551 0x1cdc SstpSvc - ok
12:38:53.0582 0x1cdc [ 098185E9B7C417CF7480BB9F839DB652, 5573CB98057DC2F01E8958780165A32AFD08E4C768F5625250628CB8A4C509D3 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
12:38:53.0598 0x1cdc STacSV - ok
12:38:53.0614 0x1cdc [ E5C796B621F6FBA8616511063D7F0FFE, 447FA64F552D4B04AD029E01485B4438A70D9B9B98EB49A883D5B17ED4C1D52F ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
12:38:53.0645 0x1cdc StarWindServiceAE - detected UnsignedFile.Multi.Generic ( 1 )
12:38:55.0973 0x1cdc Detect skipped due to KSN trusted
12:38:55.0973 0x1cdc StarWindServiceAE - ok
12:38:55.0973 0x1cdc [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
12:38:55.0989 0x1cdc stexstor - ok
12:38:56.0005 0x1cdc [ 32BE0B7CCA47A5BE30E7E43DC54B54F3, D4667E88E14393311F93D787C902B993B9451A94D332A65B0E22A8C40C3DFF44 ] STHDA C:\WINDOWS\system32\DRIVERS\stwrt64.sys
12:38:56.0036 0x1cdc STHDA - ok
12:38:56.0052 0x1cdc [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
12:38:56.0067 0x1cdc stisvc - ok
12:38:56.0083 0x1cdc [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
12:38:56.0083 0x1cdc storahci - ok
12:38:56.0083 0x1cdc [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
12:38:56.0098 0x1cdc storflt - ok
12:38:56.0098 0x1cdc [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
12:38:56.0114 0x1cdc stornvme - ok
12:38:56.0114 0x1cdc [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
12:38:56.0114 0x1cdc StorSvc - ok
12:38:56.0130 0x1cdc [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
12:38:56.0130 0x1cdc storvsc - ok
12:38:56.0130 0x1cdc [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
12:38:56.0145 0x1cdc svsvc - ok
12:38:56.0145 0x1cdc [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
12:38:56.0145 0x1cdc swenum - ok
12:38:56.0177 0x1cdc [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
12:38:56.0192 0x1cdc swprv - ok
12:38:56.0208 0x1cdc [ 3F45C3FE208CA5E68832B65C597A35A6, EACE9AAFC01C2BA52F4DA129AEF7BFA3CF7F10146E4F4330CD344BFC39DC959C ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
12:38:56.0223 0x1cdc SynTP - ok
12:38:56.0255 0x1cdc [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\WINDOWS\system32\sysmain.dll
12:38:56.0286 0x1cdc SysMain - ok
12:38:56.0286 0x1cdc [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
12:38:56.0302 0x1cdc SystemEventsBroker - ok
12:38:56.0302 0x1cdc [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
12:38:56.0317 0x1cdc TabletInputService - ok
12:38:56.0333 0x1cdc [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
12:38:56.0348 0x1cdc TapiSrv - ok
12:38:56.0411 0x1cdc [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
12:38:56.0473 0x1cdc Tcpip - ok
12:38:56.0536 0x1cdc [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:38:56.0583 0x1cdc TCPIP6 - ok
12:38:56.0598 0x1cdc [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
12:38:56.0598 0x1cdc tcpipreg - ok
12:38:56.0598 0x1cdc [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
12:38:56.0614 0x1cdc tdx - ok
12:38:56.0614 0x1cdc [ C1120AC0382E890410C020B439CAC2AA, CE9FE2FC90E69AE640DE53B677098E77DDFE6EAC64E4DB1544CCCCE0A01FB06C ] Te.Service C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe
12:38:56.0630 0x1cdc Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
12:38:58.0630 0x1ac4 Object required for P2P: [ CF27CDA72455B4A7853ED98CFC57218A ] NvStreamNetworkSvc
12:38:58.0958 0x1cdc Detect skipped due to KSN trusted
12:38:58.0958 0x1cdc Te.Service - ok
12:38:59.0146 0x1cdc [ E9D702580349582413503A28F8329B32, 405CEA2DB2B9EE9EF87E454375BEA6A3F6FB30B95BBD9F397129C73D4CCCC282 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
12:38:59.0271 0x1cdc TeamViewer - ok
12:38:59.0318 0x1cdc [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
12:38:59.0349 0x1cdc terminpt - ok
12:38:59.0380 0x1cdc [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
12:38:59.0411 0x1cdc TermService - ok
12:38:59.0411 0x1cdc [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
12:38:59.0427 0x1cdc Themes - ok
12:38:59.0427 0x1cdc [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
12:38:59.0443 0x1cdc THREADORDER - ok
12:38:59.0443 0x1cdc [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
12:38:59.0474 0x1cdc TimeBroker - ok
12:38:59.0474 0x1cdc [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
12:38:59.0490 0x1cdc TPM - ok
12:38:59.0490 0x1cdc [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
12:38:59.0505 0x1cdc TrkWks - ok
12:38:59.0521 0x1cdc [ 00629A30B9A95D3CC07E09C12F293BD1, CCB0EA347804CC7EDCDFBCA0AEAFF90310C7272D9F0AF7BC54D3F9D344AD4FCA ] TrueService C:\Program Files\Common Files\AuthenTec\TrueService.exe
12:38:59.0521 0x1cdc TrueService - ok
12:38:59.0536 0x1cdc [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
12:38:59.0536 0x1cdc TrustedInstaller - ok
12:38:59.0552 0x1cdc [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
12:38:59.0552 0x1cdc TsUsbFlt - ok
12:38:59.0552 0x1cdc [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
12:38:59.0568 0x1cdc TsUsbGD - ok
12:38:59.0568 0x1cdc [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
12:38:59.0583 0x1cdc tunnel - ok
12:38:59.0630 0x1cdc [ 56C10D3338B01D3FBCC5AF24B3833E1C, 99ABF0D33E2372521384DA3C98FD4A3534155AD5B6B7852EBE94E098AA3DC9B8 ] tvnserver C:\Program Files\TightVNC\tvnserver.exe
12:38:59.0677 0x1cdc tvnserver - ok
12:38:59.0677 0x1cdc [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
12:38:59.0693 0x1cdc uagp35 - ok
12:38:59.0693 0x1cdc [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
12:38:59.0708 0x1cdc UASPStor - ok
12:38:59.0708 0x1cdc [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
12:38:59.0724 0x1cdc UCX01000 - ok
12:38:59.0724 0x1cdc [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
12:38:59.0740 0x1cdc udfs - ok
12:38:59.0755 0x1cdc [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
12:38:59.0755 0x1cdc UEFI - ok
12:38:59.0755 0x1cdc [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
12:38:59.0771 0x1cdc UI0Detect - ok
12:38:59.0771 0x1cdc [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
12:38:59.0786 0x1cdc uliagpkx - ok
12:38:59.0786 0x1cdc [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
12:38:59.0802 0x1cdc umbus - ok
12:38:59.0802 0x1cdc [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
12:38:59.0802 0x1cdc UmPass - ok
12:38:59.0818 0x1cdc [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
12:38:59.0833 0x1cdc UmRdpService - ok
12:38:59.0849 0x1cdc [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:38:59.0865 0x1cdc UNS - ok
12:38:59.0880 0x1cdc [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
12:38:59.0896 0x1cdc upnphost - ok
12:38:59.0911 0x1cdc [ 30F02F642C2D141CAABD412B48A29D76, E94610E0CB46A9DD811AC03B028310D91E13B63A57A39749EEAC70FB5E729EE3 ] usb3Hub C:\WINDOWS\System32\drivers\usb3Hub.sys
12:38:59.0911 0x1cdc usb3Hub - ok
12:38:59.0927 0x1cdc [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
12:38:59.0943 0x1cdc USBAAPL64 - ok
12:38:59.0943 0x1cdc [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
12:38:59.0958 0x1cdc usbccgp - ok
12:38:59.0958 0x1cdc [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
12:38:59.0974 0x1cdc usbcir - ok
12:38:59.0974 0x1cdc [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
12:38:59.0990 0x1cdc usbehci - ok
12:39:00.0005 0x1cdc [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
12:39:00.0021 0x1cdc usbhub - ok
12:39:00.0036 0x1cdc [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
12:39:00.0052 0x1cdc USBHUB3 - ok
12:39:00.0068 0x1cdc [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
12:39:00.0068 0x1cdc usbohci - ok
12:39:00.0068 0x1cdc [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
12:39:00.0083 0x1cdc usbprint - ok
12:39:00.0083 0x1cdc [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:39:00.0099 0x1cdc usbscan - ok
12:39:00.0099 0x1cdc [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
12:39:00.0115 0x1cdc USBSTOR - ok
12:39:00.0115 0x1cdc [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
12:39:00.0130 0x1cdc usbuhci - ok
12:39:00.0130 0x1cdc [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
12:39:00.0146 0x1cdc usbvideo - ok
12:39:00.0162 0x1cdc [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
12:39:00.0177 0x1cdc USBXHCI - ok
12:39:00.0177 0x1cdc [ 49F2693BC3D821FA13AD6E7D5C5FEAFF, E0E109CAB6B19C77A870C5A0D8A99769F5B99C19C2E35A0615D91F87B25229A3 ] valWBFPolicyService C:\Windows\system32\valWBFPolicyService.exe
12:39:00.0177 0x1cdc valWBFPolicyService - detected UnsignedFile.Multi.Generic ( 1 )
12:39:00.0990 0x1ac4 Object send P2P result: true
12:39:00.0990 0x1ac4 Object required for P2P: [ 9139EEA14D2386543AFCC8F494A349C1 ] nvsvc
12:39:02.0490 0x1cdc Detect skipped due to KSN trusted
12:39:02.0490 0x1cdc valWBFPolicyService - ok
12:39:02.0505 0x1cdc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
12:39:02.0521 0x1cdc VaultSvc - ok
12:39:02.0521 0x1cdc [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
12:39:02.0537 0x1cdc vdrvroot - ok
12:39:02.0568 0x1cdc [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
12:39:02.0630 0x1cdc vds - ok
12:39:02.0630 0x1cdc [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
12:39:02.0646 0x1cdc VerifierExt - ok
12:39:02.0662 0x1cdc [ F6ECFD6128A16A4851CFE98D4E01B011, C349893E8D7FB9B510A3FAD040F70C3C72B0ACDD5F6EB336951849F9E953717D ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
12:39:02.0693 0x1cdc vhdmp - ok
12:39:02.0693 0x1cdc [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
12:39:02.0693 0x1cdc viaide - ok
12:39:02.0709 0x1cdc [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
12:39:02.0709 0x1cdc vmbus - ok
12:39:02.0724 0x1cdc [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
12:39:02.0724 0x1cdc VMBusHID - ok
12:39:02.0740 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
12:39:02.0755 0x1cdc vmicguestinterface - ok
12:39:02.0771 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
12:39:02.0787 0x1cdc vmicheartbeat - ok
12:39:02.0802 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
12:39:02.0818 0x1cdc vmickvpexchange - ok
12:39:02.0818 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
12:39:02.0834 0x1cdc vmicrdv - ok
12:39:02.0849 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
12:39:02.0865 0x1cdc vmicshutdown - ok
12:39:02.0881 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
12:39:02.0896 0x1cdc vmictimesync - ok
12:39:02.0912 0x1cdc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
12:39:02.0927 0x1cdc vmicvss - ok
12:39:02.0927 0x1cdc [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
12:39:02.0927 0x1cdc volmgr - ok
12:39:02.0943 0x1cdc [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
12:39:02.0959 0x1cdc volmgrx - ok
12:39:02.0974 0x1cdc [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
12:39:02.0990 0x1cdc volsnap - ok
12:39:03.0037 0x1cdc [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
12:39:03.0052 0x1cdc vpci - ok
12:39:03.0052 0x1cdc [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
12:39:03.0068 0x1cdc vsmraid - ok
12:39:03.0099 0x1cdc [ 3B7F9612439EA47151EC5EAB232C1C3F, CA08CCB14CB46512F72E2C20454242B18BC57E34C55B42A37B7EC27B79242CDC ] VSS C:\WINDOWS\system32\vssvc.exe
12:39:03.0146 0x1cdc VSS - ok
12:39:03.0146 0x1cdc [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
12:39:03.0162 0x1cdc VSTXRAID - ok
12:39:03.0162 0x1cdc [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
12:39:03.0177 0x1cdc vwifibus - ok
12:39:03.0177 0x1cdc [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
12:39:03.0193 0x1cdc vwififlt - ok
12:39:03.0193 0x1cdc [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
12:39:03.0209 0x1cdc vwifimp - ok
12:39:03.0209 0x1cdc [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
12:39:03.0240 0x1cdc W32Time - ok
12:39:03.0240 0x1cdc [ A22546B0093EBBDE03C52E56C3391373, 0C28D5C6A4E4EF12ABF0195409CAED17E07DEA22FB330D99FEEF847CBBC04A4E ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
12:39:03.0256 0x1cdc w3logsvc - ok
12:39:03.0256 0x1cdc [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
12:39:03.0256 0x1cdc WacomPen - ok
12:39:03.0271 0x1cdc [ 23006D660C0E54BF1CE8253E15F5E995, 4FA7ED2F6B29BACBE2BB43C79FC8231C4C59F27C79AB09DB07BBFE36B35689E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:39:03.0271 0x1cdc Wanarp - ok
12:39:03.0271 0x1cdc [ 23006D660C0E54BF1CE8253E15F5E995, 4FA7ED2F6B29BACBE2BB43C79FC8231C4C59F27C79AB09DB07BBFE36B35689E5 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:39:03.0287 0x1cdc Wanarpv6 - ok
12:39:03.0302 0x1cdc [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
12:39:03.0318 0x1ac4 Object send P2P result: true
12:39:03.0334 0x1cdc WAS - ok
12:39:03.0381 0x1cdc [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine C:\WINDOWS\system32\wbengine.exe
12:39:03.0427 0x1cdc wbengine - ok
12:39:03.0443 0x1cdc [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
12:39:03.0459 0x1cdc WbioSrvc - ok
12:39:03.0474 0x1cdc [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
12:39:03.0490 0x1cdc Wcmsvc - ok
12:39:03.0490 0x1cdc [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
12:39:03.0521 0x1cdc wcncsvc - ok
12:39:03.0521 0x1cdc [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
12:39:03.0521 0x1cdc WcsPlugInService - ok
12:39:03.0537 0x1cdc [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
12:39:03.0552 0x1cdc WdBoot - ok
12:39:03.0568 0x1cdc [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
12:39:03.0584 0x1cdc Wdf01000 - ok
12:39:03.0599 0x1cdc [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
12:39:03.0615 0x1cdc WdFilter - ok
12:39:03.0615 0x1cdc [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
12:39:03.0631 0x1cdc WdiServiceHost - ok
12:39:03.0631 0x1cdc [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
12:39:03.0646 0x1cdc WdiSystemHost - ok
12:39:03.0646 0x1cdc [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
12:39:03.0662 0x1cdc WdNisDrv - ok
12:39:03.0678 0x1cdc WdNisSvc - ok
12:39:03.0678 0x1cdc [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient C:\WINDOWS\System32\webclnt.dll
12:39:03.0693 0x1cdc WebClient - ok
12:39:03.0709 0x1cdc [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
12:39:03.0724 0x1cdc Wecsvc - ok
12:39:03.0724 0x1cdc [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
12:39:03.0724 0x1cdc WEPHOSTSVC - ok
12:39:03.0740 0x1cdc [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
12:39:03.0740 0x1cdc wercplsupport - ok
12:39:03.0756 0x1cdc [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
12:39:03.0771 0x1cdc WerSvc - ok
12:39:03.0771 0x1cdc [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
12:39:03.0771 0x1cdc WFPLWFS - ok
12:39:03.0787 0x1cdc [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
12:39:03.0787 0x1cdc WiaRpc - ok
12:39:03.0803 0x1cdc [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
12:39:03.0803 0x1cdc WIMMount - ok
12:39:03.0803 0x1cdc WinDefend - ok
12:39:03.0834 0x1cdc [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
12:39:03.0849 0x1cdc WinHttpAutoProxySvc - ok
12:39:03.0865 0x1cdc [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
12:39:03.0881 0x1cdc Winmgmt - ok
12:39:03.0974 0x1cdc [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
12:39:04.0037 0x1cdc WinRM - ok
12:39:04.0053 0x1cdc [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb C:\WINDOWS\System32\drivers\WinUSB.sys
12:39:04.0053 0x1cdc WinUsb - ok
12:39:04.0053 0x1cdc [ DAF801153E8F33E13AB278332250D78A, 0F277DA63E8A058A474994CF3A8345DEA967B78E54F4F97FEC995499A1D541A0 ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
12:39:04.0068 0x1cdc WirelessButtonDriver - ok
12:39:04.0099 0x1cdc [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
12:39:04.0131 0x1cdc WlanSvc - ok
12:39:04.0178 0x1cdc [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
12:39:04.0224 0x1cdc wlidsvc - ok
12:39:04.0224 0x1cdc [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
12:39:04.0240 0x1cdc WmiAcpi - ok
12:39:04.0240 0x1cdc [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
12:39:04.0256 0x1cdc wmiApSrv - ok
12:39:04.0256 0x1cdc WMPNetworkSvc - ok
12:39:04.0256 0x1cdc [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
12:39:04.0271 0x1cdc Wof - ok
12:39:04.0318 0x1cdc [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
12:39:04.0365 0x1cdc workfolderssvc - ok
12:39:04.0365 0x1cdc [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
12:39:04.0365 0x1cdc wpcfltr - ok
12:39:04.0381 0x1cdc [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
12:39:04.0381 0x1cdc WPCSvc - ok
12:39:04.0396 0x1cdc [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
12:39:04.0396 0x1cdc WPDBusEnum - ok
12:39:04.0396 0x1cdc [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
12:39:04.0412 0x1cdc WpdUpFltr - ok
12:39:04.0412 0x1cdc [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
12:39:04.0428 0x1cdc ws2ifsl - ok
12:39:04.0428 0x1cdc [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\WINDOWS\System32\wscsvc.dll
12:39:04.0443 0x1cdc wscsvc - ok
12:39:04.0443 0x1cdc [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
12:39:04.0459 0x1cdc WSDPrintDevice - ok
12:39:04.0459 0x1cdc [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan C:\WINDOWS\system32\DRIVERS\WSDScan.sys
12:39:04.0459 0x1cdc WSDScan - ok
12:39:04.0459 0x1cdc WSearch - ok
12:39:04.0568 0x1cdc [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
12:39:04.0662 0x1cdc WSService - ok
12:39:04.0756 0x1cdc [ 020F47C655ED1F63BBA834AA53575D5C, 7E36BB83B937CEA8B5D1EAF1DF63D32D64CA8045DA377DF5237D2F4DC16574CC ] wuauserv C:\WINDOWS\system32\wuaueng.dll
12:39:04.0849 0x1cdc wuauserv - ok
12:39:04.0849 0x1cdc [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
12:39:04.0865 0x1cdc WudfPf - ok
12:39:04.0881 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
12:39:04.0881 0x1cdc WUDFRd - ok
12:39:04.0896 0x1cdc [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
12:39:04.0896 0x1cdc wudfsvc - ok
12:39:04.0912 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:39:04.0912 0x1cdc WUDFWpdFs - ok
12:39:04.0928 0x1cdc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:39:04.0928 0x1cdc WUDFWpdMtp - ok
12:39:04.0943 0x1cdc [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
12:39:04.0959 0x1cdc WwanSvc - ok
12:39:04.0975 0x1cdc [ 6FDEE5E0741A3FFA5E5772C6C94E3F64, 859EBC7F8FF3CE9F3301B5BF93CF0C84C2A4271F205B67D9B8DC463DC67DE661 ] XHCIPort C:\WINDOWS\System32\drivers\XHCIPort.sys
12:39:04.0975 0x1cdc XHCIPort - ok
12:39:05.0068 0x1cdc [ 19137CA32DA7AA6F4936514721AA53BA, E9E5E6F05A1D529D19339F0C71AA5F9D412F6D3AE4BF84CF340C8569BA367D51 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
12:39:05.0131 0x1cdc ZeroConfigService - ok
12:39:05.0146 0x1cdc ================ Scan global ===============================
12:39:05.0146 0x1cdc [ 05B08C20B8428ECE088CB5635696A48D, 471642A2D0E5C3BB235962FC8D86A49AC30D7DDE80B97E348425BBFCDE4DCDC3 ] C:\WINDOWS\system32\basesrv.dll
12:39:05.0146 0x1cdc [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
12:39:05.0162 0x1cdc [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
12:39:05.0178 0x1cdc [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
12:39:05.0193 0x1cdc [ Global ] - ok
12:39:05.0193 0x1cdc ================ Scan MBR ==================================
12:39:05.0193 0x1cdc [ A78C646DB8D284B9C54ED366B2CA860E ] \Device\Harddisk0\DR0
12:39:05.0303 0x1cdc \Device\Harddisk0\DR0 - ok
12:39:05.0303 0x1cdc [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
12:39:05.0334 0x1cdc \Device\Harddisk1\DR1 - ok
12:39:05.0334 0x1cdc ================ Scan VBR ==================================
12:39:05.0334 0x1cdc [ C0E540D719252DD28C8020DED045A891 ] \Device\Harddisk0\DR0\Partition1
12:39:05.0350 0x1cdc \Device\Harddisk0\DR0\Partition1 - ok
12:39:05.0350 0x1cdc [ CEB08ECF1B9A7C7B92FE528D5CDD8894 ] \Device\Harddisk0\DR0\Partition2
12:39:05.0365 0x1cdc \Device\Harddisk0\DR0\Partition2 - ok
12:39:05.0365 0x1cdc [ 131DC1E5AF18F03F55A4A6E2D92FF589 ] \Device\Harddisk0\DR0\Partition3
12:39:05.0365 0x1cdc \Device\Harddisk0\DR0\Partition3 - ok
12:39:05.0365 0x1cdc [ F15E0F535A5945BF32D5C0DCD6ECC53C ] \Device\Harddisk0\DR0\Partition4
12:39:05.0397 0x1cdc \Device\Harddisk0\DR0\Partition4 - ok
12:39:05.0412 0x1cdc [ 0C8A164D6E1B12EAA5B2DBED4F079314 ] \Device\Harddisk0\DR0\Partition5
12:39:05.0522 0x1cdc \Device\Harddisk0\DR0\Partition5 - ok
12:39:05.0537 0x1cdc [ DBDDDB21A43765BC5E5BEE300764B4EE ] \Device\Harddisk0\DR0\Partition6
12:39:05.0537 0x1cdc \Device\Harddisk0\DR0\Partition6 - ok
12:39:05.0537 0x1cdc [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
12:39:05.0537 0x1cdc \Device\Harddisk1\DR1\Partition1 - ok
12:39:05.0537 0x1cdc ================ Scan generic autorun ======================
12:39:05.0553 0x1cdc [ 8D2A1935AE10BE1E11A8C58B2F473560, BAD89C2E6231C950D345FC8FD4E128136B5520C8429E101A79A64BAFC9DE0EB2 ] C:\Windows\system32\igfxtray.exe
12:39:05.0569 0x1cdc IgfxTray - ok
12:39:05.0569 0x1cdc BTMTrayAgent - ok
12:39:05.0678 0x1cdc [ F4CD6DA32F5FA8DF305C22A444DD7B5D, E8978FDB71597A4501429787E4729555C47292BD40AFDA2487C6D88DFDBD806C ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
12:39:05.0725 0x1cdc NvBackend - ok
12:39:05.0725 0x1cdc SynTPEnh - ok
12:39:05.0850 0x1cdc [ C380ED1AF948D2DD7B9795108F22E930, B02A85E8338097A913FE0048E0FB8F1A40519E395E948611F8E2151C60D73DB0 ] C:\Program Files (x86)\Connectify\Connectify.exe
12:39:05.0928 0x1cdc Connectify Hotspot - ok
12:39:05.0975 0x1cdc [ 210875E72C45D712120904128F357233, 4998BF27D28D4DDE79F9B06E0562E28A9D433DBFC0D3D4144A7A97EBF5110091 ] C:\Program Files\IDT\WDM\sttray64.exe
12:39:06.0006 0x1cdc SysTrayApp - ok
12:39:06.0022 0x1cdc [ ADFCC68B42627055979B26FC00759D17, 5C1C8395A7846E5DDEB6FFE2B37B537DDA4712D62CE05D7EA8B1773C75D46DE6 ] C:\Program Files\iTunes\iTunesHelper.exe
12:39:06.0022 0x1cdc iTunesHelper - ok
12:39:06.0022 0x1cdc [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\WINDOWS\system32\rundll32.exe
12:39:06.0053 0x1cdc ShadowPlay - ok
12:39:06.0100 0x1cdc [ 56C10D3338B01D3FBCC5AF24B3833E1C, 99ABF0D33E2372521384DA3C98FD4A3534155AD5B6B7852EBE94E098AA3DC9B8 ] C:\Program Files\TightVNC\tvnserver.exe
12:39:06.0131 0x1cdc tvncontrol - ok
12:39:06.0147 0x1cdc [ D6FF94ED4D086489A453134F0AE33FD3, 47E1CE640E9AB6B8DD148DACA80B1D07BCF69DF9F6B109285419447B9A4025FF ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
12:39:06.0162 0x1cdc CLVirtualDrive - ok
12:39:06.0178 0x1cdc [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
12:39:06.0194 0x1cdc RemoteControl10 - ok
12:39:06.0225 0x1cdc [ 9F3655267BA37004F519ABDDB3AEE244, 971BA4937F103F09C166BBCAE6D48688251AD603A743C81D9A50480BFEF22C83 ] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
12:39:06.0256 0x1cdc HP CoolSense - ok
12:39:06.0256 0x1cdc [ 7AA219D7AEAA8BADCAC7853AE6AE3BD5, 018F85DCD9EB33DC775CCCB58B999A640B6F8FEF37898EA45600B433E77CF9AE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
12:39:06.0272 0x1cdc APSDaemon - ok
12:39:06.0287 0x1cdc [ 4D3989C1259BF73F2543D81C0B75B30C, E9E413318C438762E8A64D24304F0CA9EBF030318AA10A5CD72EA03400F4B406 ] C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe
12:39:06.0303 0x1cdc ADSKAppManager - ok
12:39:06.0381 0x1cdc [ 74862BA761697FEE2FA175FDFF7CFC17, 51E45D57255AF1803EA0FCD42A5D18D17DF0004C5FAC6F729649B7B5B054D1F7 ] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
12:39:06.0444 0x1cdc PMBVolumeWatcher - ok
12:39:06.0459 0x1cdc Dropbox - ok
12:39:06.0475 0x1cdc [ 6198A9BC15ED77F318D5DDD1918CF1D1, 6C7E619BB053F09021F5867E3A70A3A2890E2318CF1A5CE294A5F894CB3A4890 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
12:39:06.0490 0x1cdc HP Quick Launch - ok
12:39:06.0615 0x1cdc [ 7E3B8DECD121644CB39E1BB25C4974BA, 844090C7010C974BB183EE96AA57C3758B70EFB330E11582702E1471251B4641 ] C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe
12:39:06.0787 0x1cdc AshSnap - ok
12:39:06.0803 0x1cdc [ 6D9C544ECF1D56AFDA3C03C19E75FE8B, 8FD676300ED596EDCB33F334709245424613CAB30868A2866785A47CBF689199 ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE
12:39:06.0819 0x1cdc EPSON SX525WD Series - ok
12:39:06.0819 0x1cdc [ 6D9C544ECF1D56AFDA3C03C19E75FE8B, 8FD676300ED596EDCB33F334709245424613CAB30868A2866785A47CBF689199 ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE
12:39:06.0834 0x1cdc EPSON68415A (Epson Stylus SX525WD) - ok
12:39:06.0834 0x1cdc [ 6D9C544ECF1D56AFDA3C03C19E75FE8B, 8FD676300ED596EDCB33F334709245424613CAB30868A2866785A47CBF689199 ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE
12:39:06.0850 0x1cdc Epson Stylus SX525WD(Síť) - ok
12:39:06.0865 0x1cdc Lync - ok
12:39:07.0069 0x1cdc [ F81770A2EE5FCFACC953880633A7582C, D3F80CCA565985D90F82D7DBD16AE56F8B585C97F6E1401BB9F8DC26361DE0F5 ] C:\Program Files (x86)\AirDroid\AirDroid.exe
12:39:07.0319 0x1cdc AirDroid 3 - detected UnsignedFile.Multi.Generic ( 1 )
12:39:09.0631 0x1cdc Object required for P2P: [ F81770A2EE5FCFACC953880633A7582C ] C:\Program Files (x86)\AirDroid\AirDroid.exe
12:39:12.0038 0x1cdc Object send P2P result: true
12:39:12.0038 0x1cdc Detect skipped due to KSN trusted
12:39:12.0038 0x1cdc AirDroid 3 - ok
12:39:12.0038 0x1cdc Waiting for KSN requests completion. In queue: 152
12:39:12.0304 0x1680 Object required for P2P: [ 19137CA32DA7AA6F4936514721AA53BA ] ZeroConfigService
12:39:13.0054 0x1cdc Waiting for KSN requests completion. In queue: 18
12:39:14.0058 0x1cdc Waiting for KSN requests completion. In queue: 18
12:39:14.0652 0x1680 Object send P2P result: true
12:39:14.0652 0x1680 Object required for P2P: [ 74862BA761697FEE2FA175FDFF7CFC17 ] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
12:39:15.0058 0x1cdc Waiting for KSN requests completion. In queue: 6
12:39:16.0059 0x1cdc Waiting for KSN requests completion. In queue: 6
12:39:17.0012 0x1680 Object send P2P result: true
12:39:17.0074 0x1cdc AV detected via SS2: ESET NOD32 Antivirus 9.0.374.1, C:\Program Files\ESET\ESET NOD32 Antivirus\ecmd.exe ( 9.0.374.0 ), 0x41000 ( enabled : updated )
12:39:17.0074 0x1cdc AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60110 ( disabled : outofdate )
12:39:17.0090 0x1cdc Win FW state via NFP2: enabled ( trusted )
12:39:19.0387 0x1cdc ============================================================
12:39:19.0387 0x1cdc Scan finished
12:39:19.0387 0x1cdc ============================================================
12:39:19.0387 0x199c Detected object count: 0
12:39:19.0387 0x199c Actual detected object count: 0
12:42:15.0880 0x1854 Deinitialize success
Mbar
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.03.21.02
rootkit: v2016.03.12.01
Windows 8.1 x64 NTFS
Internet Explorer 11.0.9600.18231
Vali PC :: VALIPC [administrator]
21. 3. 2016 12:45:04
mbar-log-2016-03-21 (12-45-04).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 464689
Time elapsed: 21 minute(s), 5 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Re: Vir
Je to ciste. Zopakujte krok s DelFix, uklidi po pouzitych programech. Bezi tedy ted vse jak ma? Pokud ano, mame hotovo
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?