prosím o kontrolu

Zpráva

carodejdobrodej

MBRScan v1.1.1

OS             : Windows 7 Service Pack 1 (64 bit)
PROCESSOR      : Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
BOOT           : Normal Boot
DATE           : 2013/02/01 (ISO 8601) at 19:28:40
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __ST950032 5AS (0005)
BUS_TYPE       : (0x03)  P-ATA
USE_PIO        : NO
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

Device\Harddisk0\DR0	465.8 Go  [Fixed] ==> 7 MBR Code ==> PARTITION TABLE FAKED !!

MBR_MD5   : B1720ED790FA5382D7B9F8FFEA4089DE
MBR_SHA1  : BF637E314B6AA9E0CE803BB80D6C72CB8F500A72

Device\Harddisk0\Partition1	300.0 Mo  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2	444.7 Go  	0x07 NTFS / HPFS
Device\Harddisk0\Partition3	15.80 Go  	0x07 NTFS / HPFS
Device\Harddisk0\Partition4	5.00 Go  	0x0C FAT32 [LBA] 
________________________________________________________________________________

############################### Additional scan ################################

DRIVER  : C:\windows\system32\hal.dll => Invisible on the disk
ADDRESS : 0x02C0E000
SIZE    : 292.0 Ko

DRIVER  : C:\windows\system32\kdcom.dll => Invisible on the disk
ADDRESS : 0x00BAB000
SIZE    : 40.0 Ko

DRIVER  : C:\windows\system32\mcupdate_GenuineIntel.dll => Invisible on the disk
ADDRESS : 0x00C2F000
SIZE    : 316.0 Ko

DRIVER  : C:\windows\system32\CLFS.SYS => Invisible on the disk
ADDRESS : 0x00C92000
SIZE    : 376.0 Ko

DRIVER  : C:\windows\system32\CI.dll => Invisible on the disk
ADDRESS : 0x00CF0000
SIZE    : 768.0 Ko

DRIVER  : C:\windows\system32\drivers\Wdf01000.sys => Invisible on the disk
ADDRESS : 0x00E30000
SIZE    : 776.0 Ko

DRIVER  : C:\windows\system32\drivers\WDFLDR.SYS => Invisible on the disk
ADDRESS : 0x00EF2000
SIZE    : 64.0 Ko

DRIVER  : C:\windows\System32\Drivers\sptd.sys => Invisible on the disk
ADDRESS : 0x0104E000
SIZE    : 1.45 Mo

DRIVER  : C:\windows\system32\drivers\ACPI.sys => Invisible on the disk
ADDRESS : 0x00F02000
SIZE    : 348.0 Ko

DRIVER  : C:\windows\system32\drivers\WMILIB.SYS => Invisible on the disk
ADDRESS : 0x011C2000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\drivers\msisadrv.sys => Invisible on the disk
ADDRESS : 0x011CB000
SIZE    : 40.0 Ko

DRIVER  : C:\windows\system32\drivers\vdrvroot.sys => Invisible on the disk
ADDRESS : 0x011D5000
SIZE    : 52.0 Ko

DRIVER  : C:\windows\system32\drivers\pci.sys => Invisible on the disk
ADDRESS : 0x01000000
SIZE    : 204.0 Ko

DRIVER  : C:\windows\System32\drivers\partmgr.sys => Invisible on the disk
ADDRESS : 0x01033000
SIZE    : 84.0 Ko

DRIVER  : C:\windows\system32\drivers\compbatt.sys => Invisible on the disk
ADDRESS : 0x011E2000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\drivers\BATTC.SYS => Invisible on the disk
ADDRESS : 0x011EB000
SIZE    : 48.0 Ko

DRIVER  : C:\windows\system32\drivers\volmgr.sys => Invisible on the disk
ADDRESS : 0x00F59000
SIZE    : 84.0 Ko

DRIVER  : C:\windows\System32\drivers\volmgrx.sys => Invisible on the disk
ADDRESS : 0x00F6E000
SIZE    : 368.0 Ko

DRIVER  : C:\windows\System32\drivers\mountmgr.sys => Invisible on the disk
ADDRESS : 0x00FCA000
SIZE    : 104.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\iaStor.sys => Invisible on the disk
ADDRESS : 0x012A8000
SIZE    : 1.33 Mo

DRIVER  : C:\windows\system32\drivers\atapi.sys => Invisible on the disk
ADDRESS : 0x01200000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\drivers\ataport.SYS => Invisible on the disk
ADDRESS : 0x01209000
SIZE    : 168.0 Ko

DRIVER  : C:\windows\system32\drivers\msahci.sys => Invisible on the disk
ADDRESS : 0x01233000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\system32\drivers\PCIIDEX.SYS => Invisible on the disk
ADDRESS : 0x0123E000
SIZE    : 64.0 Ko

DRIVER  : C:\windows\system32\drivers\amdxata.sys => Invisible on the disk
ADDRESS : 0x0124E000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\system32\drivers\fltmgr.sys => Invisible on the disk
ADDRESS : 0x01259000
SIZE    : 304.0 Ko

DRIVER  : C:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS => Invisible on the disk
ADDRESS : 0x0148C000
SIZE    : 452.0 Ko

DRIVER  : C:\windows\system32\drivers\fileinfo.sys => Invisible on the disk
ADDRESS : 0x014FD000
SIZE    : 80.0 Ko

DRIVER  : C:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS => Invisible on the disk
ADDRESS : 0x01511000
SIZE    : 912.0 Ko

DRIVER  : C:\windows\System32\Drivers\Ntfs.sys => Invisible on the disk
ADDRESS : 0x01652000
SIZE    : 1.64 Mo

DRIVER  : C:\windows\System32\Drivers\msrpc.sys => Invisible on the disk
ADDRESS : 0x01400000
SIZE    : 376.0 Ko

DRIVER  : C:\windows\System32\Drivers\ksecdd.sys => Invisible on the disk
ADDRESS : 0x01600000
SIZE    : 108.0 Ko

DRIVER  : C:\windows\System32\Drivers\cng.sys => Invisible on the disk
ADDRESS : 0x0189B000
SIZE    : 456.0 Ko

DRIVER  : C:\windows\System32\drivers\pcw.sys => Invisible on the disk
ADDRESS : 0x0190D000
SIZE    : 68.0 Ko

DRIVER  : C:\windows\System32\Drivers\Fs_Rec.sys => Invisible on the disk
ADDRESS : 0x0191E000
SIZE    : 40.0 Ko

DRIVER  : C:\windows\system32\drivers\ndis.sys => Invisible on the disk
ADDRESS : 0x01A98000
SIZE    : 968.0 Ko

DRIVER  : C:\windows\system32\drivers\NETIO.SYS => Invisible on the disk
ADDRESS : 0x01B8A000
SIZE    : 384.0 Ko

DRIVER  : C:\windows\System32\Drivers\ksecpkg.sys => Invisible on the disk
ADDRESS : 0x01A00000
SIZE    : 168.0 Ko

DRIVER  : C:\windows\System32\drivers\tcpip.sys => Invisible on the disk
ADDRESS : 0x01CCF000
SIZE    : 2.00 Mo

DRIVER  : C:\windows\System32\drivers\fwpkclnt.sys => Invisible on the disk
ADDRESS : 0x01ED0000
SIZE    : 296.0 Ko

DRIVER  : C:\windows\system32\drivers\volsnap.sys => Invisible on the disk
ADDRESS : 0x01F1A000
SIZE    : 304.0 Ko

DRIVER  : C:\windows\System32\Drivers\spldr.sys => Invisible on the disk
ADDRESS : 0x01F66000
SIZE    : 32.0 Ko

DRIVER  : C:\windows\System32\drivers\rdyboost.sys => Invisible on the disk
ADDRESS : 0x01F6E000
SIZE    : 232.0 Ko

DRIVER  : C:\windows\System32\Drivers\mup.sys => Invisible on the disk
ADDRESS : 0x01FA8000
SIZE    : 72.0 Ko

DRIVER  : C:\windows\System32\Drivers\MfeEpePc.sys => Invisible on the disk
ADDRESS : 0x01FBA000
SIZE    : 160.0 Ko

DRIVER  : C:\windows\System32\drivers\hwpolicy.sys => Invisible on the disk
ADDRESS : 0x01FE2000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\hpdskflt.sys => Invisible on the disk
ADDRESS : 0x01FEB000
SIZE    : 40.0 Ko

DRIVER  : C:\windows\System32\DRIVERS\fvevol.sys => Invisible on the disk
ADDRESS : 0x01C00000
SIZE    : 232.0 Ko

DRIVER  : C:\windows\system32\drivers\disk.sys => Invisible on the disk
ADDRESS : 0x01C3A000
SIZE    : 88.0 Ko

DRIVER  : C:\windows\system32\drivers\CLASSPNP.SYS => Invisible on the disk
ADDRESS : 0x01C50000
SIZE    : 192.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\cdrom.sys => Invisible on the disk
ADDRESS : 0x04000000
SIZE    : 168.0 Ko

DRIVER  : C:\windows\System32\Drivers\Null.SYS => Invisible on the disk
ADDRESS : 0x0402A000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\System32\Drivers\Beep.SYS => Invisible on the disk
ADDRESS : 0x04033000
SIZE    : 28.0 Ko

DRIVER  : C:\windows\System32\drivers\vga.sys => Invisible on the disk
ADDRESS : 0x0403A000
SIZE    : 56.0 Ko

DRIVER  : C:\windows\System32\drivers\VIDEOPRT.SYS => Invisible on the disk
ADDRESS : 0x04048000
SIZE    : 148.0 Ko

DRIVER  : C:\windows\System32\drivers\watchdog.sys => Invisible on the disk
ADDRESS : 0x0406D000
SIZE    : 64.0 Ko

DRIVER  : C:\windows\System32\DRIVERS\RDPCDD.sys => Invisible on the disk
ADDRESS : 0x0407D000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\drivers\rdpencdd.sys => Invisible on the disk
ADDRESS : 0x04086000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\drivers\rdprefmp.sys => Invisible on the disk
ADDRESS : 0x01C8E000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\System32\Drivers\Msfs.SYS => Invisible on the disk
ADDRESS : 0x01C97000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\System32\Drivers\Npfs.SYS => Invisible on the disk
ADDRESS : 0x01CA2000
SIZE    : 68.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\tdx.sys => Invisible on the disk
ADDRESS : 0x01A2A000
SIZE    : 136.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\TDI.SYS => Invisible on the disk
ADDRESS : 0x01CB3000
SIZE    : 52.0 Ko

DRIVER  : C:\windows\system32\drivers\afd.sys => Invisible on the disk
ADDRESS : 0x01928000
SIZE    : 548.0 Ko

DRIVER  : C:\windows\System32\DRIVERS\netbt.sys => Invisible on the disk
ADDRESS : 0x01A4C000
SIZE    : 276.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\wfplwf.sys => Invisible on the disk
ADDRESS : 0x01CC0000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\pacer.sys => Invisible on the disk
ADDRESS : 0x019B1000
SIZE    : 152.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\vwififlt.sys => Invisible on the disk
ADDRESS : 0x01BEA000
SIZE    : 88.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\netbios.sys => Invisible on the disk
ADDRESS : 0x019D7000
SIZE    : 60.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\wanarp.sys => Invisible on the disk
ADDRESS : 0x01800000
SIZE    : 108.0 Ko

DRIVER  : C:\windows\system32\drivers\termdd.sys => Invisible on the disk
ADDRESS : 0x0181B000
SIZE    : 80.0 Ko

DRIVER  : C:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS => Invisible on the disk
ADDRESS : 0x0182F000
SIZE    : 412.0 Ko

DRIVER  : C:\windows\system32\Drivers\SYMEVENT64x86.SYS => Invisible on the disk
ADDRESS : 0x0161B000
SIZE    : 216.0 Ko

DRIVER  : C:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS => Invisible on the disk
ADDRESS : 0x0145E000
SIZE    : 180.0 Ko

DRIVER  : C:\windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS => Invisible on the disk
ADDRESS : 0x019E6000
SIZE    : 88.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\rdbss.sys => Invisible on the disk
ADDRESS : 0x04290000
SIZE    : 324.0 Ko

DRIVER  : C:\windows\system32\drivers\nsiproxy.sys => Invisible on the disk
ADDRESS : 0x042E1000
SIZE    : 48.0 Ko

DRIVER  : C:\windows\system32\drivers\mssmbios.sys => Invisible on the disk
ADDRESS : 0x042ED000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\System32\drivers\discache.sys => Invisible on the disk
ADDRESS : 0x04226000
SIZE    : 60.0 Ko

DRIVER  : C:\windows\System32\Drivers\dfsc.sys => Invisible on the disk
ADDRESS : 0x04235000
SIZE    : 120.0 Ko

DRIVER  : C:\windows\system32\drivers\blbdrive.sys => Invisible on the disk
ADDRESS : 0x04253000
SIZE    : 68.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\tunnel.sys => Invisible on the disk
ADDRESS : 0x03393000
SIZE    : 152.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\intelppm.sys => Invisible on the disk
ADDRESS : 0x033B9000
SIZE    : 88.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\atikmpag.sys => Invisible on the disk
ADDRESS : 0x04486000
SIZE    : 340.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\atikmdag.sys => Invisible on the disk
ADDRESS : 0x04E19000
SIZE    : 10.33 Mo

DRIVER  : C:\windows\System32\Drivers\fastfat.SYS => Invisible on the disk
ADDRESS : 0x0586E000
SIZE    : 216.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\igdpmd64.sys => Invisible on the disk
ADDRESS : 0x05C32000
SIZE    : 11.74 Mo

DRIVER  : C:\windows\System32\drivers\dxgkrnl.sys => Invisible on the disk
ADDRESS : 0x058A4000
SIZE    : 976.0 Ko

DRIVER  : C:\windows\System32\drivers\dxgmms1.sys => Invisible on the disk
ADDRESS : 0x05998000
SIZE    : 280.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\HECIx64.sys => Invisible on the disk
ADDRESS : 0x067EF000
SIZE    : 68.0 Ko

DRIVER  : C:\windows\system32\drivers\usbehci.sys => Invisible on the disk
ADDRESS : 0x05C00000
SIZE    : 68.0 Ko

DRIVER  : C:\windows\system32\drivers\USBPORT.SYS => Invisible on the disk
ADDRESS : 0x044DB000
SIZE    : 344.0 Ko

DRIVER  : C:\windows\system32\drivers\HDAudBus.sys => Invisible on the disk
ADDRESS : 0x04531000
SIZE    : 144.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\SCSIPORT.SYS => Invisible on the disk
ADDRESS : 0x04583000
SIZE    : 188.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\rtl8192Ce.sys => Invisible on the disk
ADDRESS : 0x04675000
SIZE    : 1.45 Mo

DRIVER  : C:\windows\system32\DRIVERS\vwifibus.sys => Invisible on the disk
ADDRESS : 0x047E8000
SIZE    : 52.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\Rt64win7.sys => Invisible on the disk
ADDRESS : 0x04600000
SIZE    : 404.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\nusb3xhc.sys => Invisible on the disk
ADDRESS : 0x045B2000
SIZE    : 196.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\USBD.SYS => Invisible on the disk
ADDRESS : 0x04665000
SIZE    : 8.0 Ko

DRIVER  : C:\windows\system32\drivers\i8042prt.sys => Invisible on the disk
ADDRESS : 0x05C11000
SIZE    : 120.0 Ko

DRIVER  : C:\windows\system32\drivers\HpqKbFiltr.sys => Invisible on the disk
ADDRESS : 0x04667000
SIZE    : 48.0 Ko

DRIVER  : C:\windows\system32\drivers\kbdclass.sys => Invisible on the disk
ADDRESS : 0x059DE000
SIZE    : 60.0 Ko

DRIVER  : C:\windows\system32\drivers\SynTP.sys => Invisible on the disk
ADDRESS : 0x04880000
SIZE    : 1.37 Mo

DRIVER  : C:\windows\system32\DRIVERS\mouclass.sys => Invisible on the disk
ADDRESS : 0x049DF000
SIZE    : 60.0 Ko

DRIVER  : C:\windows\System32\Drivers\avnqpufa.SYS => Invisible on the disk
ADDRESS : 0x04800000
SIZE    : 304.0 Ko

DRIVER  : C:\windows\System32\Drivers\awmlqese.SYS => Invisible on the disk
ADDRESS : 0x04400000
SIZE    : 324.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\Accelerometer.sys => Invisible on the disk
ADDRESS : 0x0484C000
SIZE    : 52.0 Ko

DRIVER  : C:\windows\system32\drivers\CmBatt.sys => Invisible on the disk
ADDRESS : 0x04859000
SIZE    : 20.0 Ko

DRIVER  : C:\windows\system32\drivers\wmiacpi.sys => Invisible on the disk
ADDRESS : 0x0485E000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\drivers\CompositeBus.sys => Invisible on the disk
ADDRESS : 0x04867000
SIZE    : 64.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\ArcSoftVCapture.sys => Invisible on the disk
ADDRESS : 0x04877000
SIZE    : 28.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\ks.sys => Invisible on the disk
ADDRESS : 0x00DB0000
SIZE    : 268.0 Ko

DRIVER  : C:\windows\system32\drivers\ksthunk.sys => Invisible on the disk
ADDRESS : 0x049F7000
SIZE    : 24.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\AgileVpn.sys => Invisible on the disk
ADDRESS : 0x04E00000
SIZE    : 88.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\rasl2tp.sys => Invisible on the disk
ADDRESS : 0x04451000
SIZE    : 144.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\ndistapi.sys => Invisible on the disk
ADDRESS : 0x059ED000
SIZE    : 48.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\ndiswan.sys => Invisible on the disk
ADDRESS : 0x033CF000
SIZE    : 188.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\raspppoe.sys => Invisible on the disk
ADDRESS : 0x045E3000
SIZE    : 108.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\raspptp.sys => Invisible on the disk
ADDRESS : 0x03200000
SIZE    : 132.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\rassstp.sys => Invisible on the disk
ADDRESS : 0x03221000
SIZE    : 104.0 Ko

DRIVER  : C:\windows\system32\drivers\swenum.sys => Invisible on the disk
ADDRESS : 0x049FD000
SIZE    : 8.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\umbus.sys => Invisible on the disk
ADDRESS : 0x04264000
SIZE    : 72.0 Ko

DRIVER  : C:\windows\system32\drivers\usbhub.sys => Invisible on the disk
ADDRESS : 0x04A95000
SIZE    : 360.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\nusb3hub.sys => Invisible on the disk
ADDRESS : 0x04AEF000
SIZE    : 100.0 Ko

DRIVER  : C:\windows\System32\Drivers\NDProxy.SYS => Invisible on the disk
ADDRESS : 0x04B08000
SIZE    : 84.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\stwrt64.sys => Invisible on the disk
ADDRESS : 0x04B1D000
SIZE    : 524.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\portcls.sys => Invisible on the disk
ADDRESS : 0x04BA0000
SIZE    : 244.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\drmk.sys => Invisible on the disk
ADDRESS : 0x04BDD000
SIZE    : 136.0 Ko

DRIVER  : C:\windows\system32\drivers\HdAudio.sys => Invisible on the disk
ADDRESS : 0x04A00000
SIZE    : 368.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\hidusb.sys => Invisible on the disk
ADDRESS : 0x04A5C000
SIZE    : 56.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\HIDCLASS.SYS => Invisible on the disk
ADDRESS : 0x04A6A000
SIZE    : 100.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\HIDPARSE.SYS => Invisible on the disk
ADDRESS : 0x04A83000
SIZE    : 36.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\mouhid.sys => Invisible on the disk
ADDRESS : 0x04475000
SIZE    : 52.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\usbccgp.sys => Invisible on the disk
ADDRESS : 0x00E00000
SIZE    : 116.0 Ko

DRIVER  : C:\windows\System32\Drivers\SPUVCbv_x64.sys => Invisible on the disk
ADDRESS : 0x086D6000
SIZE    : 2.49 Mo

DRIVER  : C:\windows\System32\Drivers\STREAM.SYS => Invisible on the disk
ADDRESS : 0x08953000
SIZE    : 68.0 Ko

DRIVER  : C:\windows\System32\Drivers\btmusb.sys => Invisible on the disk
ADDRESS : 0x08964000
SIZE    : 476.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\btmnet.sys => Invisible on the disk
ADDRESS : 0x089DB000
SIZE    : 52.0 Ko

DRIVER  : C:\windows\System32\Drivers\crashdmp.sys => Invisible on the disk
ADDRESS : 0x089E8000
SIZE    : 56.0 Ko

DRIVER  : C:\windows\System32\Drivers\dump_iaStor.sys => Invisible on the disk
ADDRESS : 0x0408F000
SIZE    : 1.33 Mo

DRIVER  : C:\windows\System32\Drivers\dump_MfeEpeHb.sys => Invisible on the disk
ADDRESS : 0x089F6000
SIZE    : 8.0 Ko

DRIVER  : C:\windows\System32\Drivers\dump_dumpfve.sys => Invisible on the disk
ADDRESS : 0x08600000
SIZE    : 76.0 Ko

DRIVER  : C:\windows\System32\win32k.sys => Invisible on the disk
ADDRESS : 0x00080000
SIZE    : 3.09 Mo

DRIVER  : C:\windows\System32\drivers\Dxapi.sys => Invisible on the disk
ADDRESS : 0x08613000
SIZE    : 48.0 Ko

DRIVER  : C:\windows\System32\TSDDD.dll => Invisible on the disk
ADDRESS : 0x00540000
SIZE    : 40.0 Ko

DRIVER  : C:\windows\System32\cdd.dll => Invisible on the disk
ADDRESS : 0x007D0000
SIZE    : 156.0 Ko

DRIVER  : C:\windows\system32\drivers\luafv.sys => Invisible on the disk
ADDRESS : 0x0862D000
SIZE    : 140.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\Sftvollh.sys => Invisible on the disk
ADDRESS : 0x08650000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\lltdio.sys => Invisible on the disk
ADDRESS : 0x0865B000
SIZE    : 84.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\nwifi.sys => Invisible on the disk
ADDRESS : 0x08670000
SIZE    : 332.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\ndisuio.sys => Invisible on the disk
ADDRESS : 0x086C3000
SIZE    : 76.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\rspndr.sys => Invisible on the disk
ADDRESS : 0x04276000
SIZE    : 96.0 Ko

DRIVER  : C:\windows\system32\drivers\HTTP.sys => Invisible on the disk
ADDRESS : 0x03A08000
SIZE    : 804.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\bowser.sys => Invisible on the disk
ADDRESS : 0x03AD1000
SIZE    : 120.0 Ko

DRIVER  : C:\windows\System32\drivers\mpsdrv.sys => Invisible on the disk
ADDRESS : 0x03AEF000
SIZE    : 96.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
ADDRESS : 0x03B07000
SIZE    : 180.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
ADDRESS : 0x03B34000
SIZE    : 312.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
ADDRESS : 0x03B82000
SIZE    : 144.0 Ko

DRIVER  : C:\windows\system32\drivers\peauth.sys => Invisible on the disk
ADDRESS : 0x0BEC8000
SIZE    : 664.0 Ko

DRIVER  : C:\windows\System32\Drivers\secdrv.SYS => Invisible on the disk
ADDRESS : 0x0BF6E000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\Sftfslh.sys => Invisible on the disk
ADDRESS : 0x0BE00000
SIZE    : 772.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\Sftplaylh.sys => Invisible on the disk
ADDRESS : 0x0BF79000
SIZE    : 308.0 Ko

DRIVER  : C:\windows\System32\DRIVERS\srvnet.sys => Invisible on the disk
ADDRESS : 0x0BFC6000
SIZE    : 196.0 Ko

DRIVER  : C:\windows\System32\drivers\tcpipreg.sys => Invisible on the disk
ADDRESS : 0x03BA6000
SIZE    : 72.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\cdfs.sys => Invisible on the disk
ADDRESS : 0x03BB8000
SIZE    : 116.0 Ko

DRIVER  : C:\windows\System32\DRIVERS\srv2.sys => Invisible on the disk
ADDRESS : 0x0D233000
SIZE    : 420.0 Ko

DRIVER  : C:\windows\System32\DRIVERS\srv.sys => Invisible on the disk
ADDRESS : 0x0D29C000
SIZE    : 608.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\Sftredirlh.sys => Invisible on the disk
ADDRESS : 0x0D334000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS => Invisible on the disk
ADDRESS : 0x0D33F000
SIZE    : 768.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\asyncmac.sys => Invisible on the disk
ADDRESS : 0x0DEE9000
SIZE    : 44.0 Ko

DRIVER  : C:\windows\system32\drivers\WudfPf.sys => Invisible on the disk
ADDRESS : 0x0DF73000
SIZE    : 100.0 Ko

DRIVER  : C:\windows\system32\DRIVERS\monitor.sys => Invisible on the disk
ADDRESS : 0x209C1000
SIZE    : 56.0 Ko

DRIVER  : C:\windows\System32\smss.exe => Invisible on the disk
ADDRESS : 0x477B0000
SIZE    : 128.0 Ko

BCD EmsSettings {0CE4991B-E6B3-4B16-B23C-5E0D9250E5D9} => BcdLibraryBoolean_EmsEnabled (16000020)

SystemStartOptions :  NOEXECUTE=OPTIN

________________________________________________________________________________

_____FAKED   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.Ð¼.|.À.Ø¾.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84   N.u..~......².ë.
0x000000B0   55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55   U2ä.V.Í.]ë..>þ}U
0x000000C0   AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64   ªun.v.è..u.ú°Ñæd
0x000000D0   E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75   è..°ßæ`è|.°.ædèu
0x000000E0   00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54   .û¸.»Í.f#Àu;f.ûT
0x000000F0   43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00   CPAu2.ù..r,fh.».
0x00000100   00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66   .fh....fh....fSf
0x00000110   53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66   SfUfh....fh.|..f
0x00000120   61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD   ah...Í.Z2öê.|..Í
0x00000130   18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4   ..·.ë..¶.ë..µ.2ä
0x00000140   05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD   ....ð¬<.t.»..´.Í
0x00000150   10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8   .ëòôëý+Éädë.$.àø
0x00000160   24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69   $.ÃInvalid parti
0x00000170   74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72   tion table.Error
0x00000180   20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69    loading operati
0x00000190   6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E   ng system.Missin
0x000001A0   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x000001B0   65 6D 00 00 00 63 7B 9A 63 D1 B5 D0 00 00 00 20   em...c{.cÑµÐ... 
0x000001C0   21 00 07 5E 38 26 00 08 00 00 00 60 09 00 00 5E   !..^8&.....`...^
0x000001D0   39 26 07 FE FF FF 00 68 09 00 00 00 80 07 80 FE   9&.þ...h.......þ
0x000001E0   FF FF 06 FE FF FF 00 78 03 0A 00 48 1F 00 00 FE   ...þ...x...H...þ
0x000001F0   FF FF 06 FE FF FF 00 80 40 0A 04 40 1F 00 55 AA   ...þ....@..@..Uª

__ORIGINAL   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.Ð¼.|.À.Ø¾.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84   N.u..~......².ë.
0x000000B0   55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55   U2ä.V.Í.]ë..>þ}U
0x000000C0   AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64   ªun.v.è..u.ú°Ñæd
0x000000D0   E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75   è..°ßæ`è|.°.ædèu
0x000000E0   00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54   .û¸.»Í.f#Àu;f.ûT
0x000000F0   43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00   CPAu2.ù..r,fh.».
0x00000100   00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66   .fh....fh....fSf
0x00000110   53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66   SfUfh....fh.|..f
0x00000120   61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD   ah...Í.Z2öê.|..Í
0x00000130   18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4   ..·.ë..¶.ë..µ.2ä
0x00000140   05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD   ....ð¬<.t.»..´.Í
0x00000150   10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8   .ëòôëý+Éädë.$.àø
0x00000160   24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69   $.ÃInvalid parti
0x00000170   74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72   tion table.Error
0x00000180   20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69    loading operati
0x00000190   6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E   ng system.Missin
0x000001A0   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x000001B0   65 6D 00 00 00 63 7B 9A 63 D1 B5 D0 00 00 80 20   em...c{.cÑµÐ... 
0x000001C0   21 00 07 5E 38 26 00 08 00 00 00 60 09 00 00 5E   !..^8&.....`...^
0x000001D0   39 26 07 FE FF FF 00 68 09 00 00 48 95 37 00 FE   9&.þ...h...H.7.þ
0x000001E0   FF FF 07 FE FF FF 00 B0 9E 37 00 98 F9 01 00 FE   ...þ...°.7..ù..þ
0x000001F0   FF FF 0C FE FF FF 00 48 98 39 00 D8 9F 00 55 AA   ...þ...H.9.Ø..Uª

#17 Příspěvek od **Márty84** » 01 úno 2013 20:14

A jeje. Posledni dobou mam na tohle pech. Zas mbr havet

Snad to bude falesny poplach

Postupujte podle navodu kolegy

vyosek píše: Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
Kliknete na volbu Change parametrs

V okne Additional Option zakliknete vsechny moznosti

Kliknete na OK

Utilite prikazte, at skenuje - klik na Start Scan

Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip

Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip

Pokud mate vsude Skip, kliknete na Continue

Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

carodejdobrodej

22:20:43.0100 8516 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:20:44.0661 8516 ============================================================
22:20:44.0661 8516 Current date / time: 2013/02/01 22:20:44.0661
22:20:44.0661 8516 SystemInfo:
22:20:44.0661 8516
22:20:44.0661 8516 OS Version: 6.1.7601 ServicePack: 1.0
22:20:44.0661 8516 Product type: Workstation
22:20:44.0662 8516 ComputerName: POCITAC-HP
22:20:44.0662 8516 UserName: Pocitac
22:20:44.0662 8516 Windows directory: C:\windows
22:20:44.0662 8516 System windows directory: C:\windows
22:20:44.0662 8516 Running under WOW64
22:20:44.0662 8516 Processor architecture: Intel x64
22:20:44.0662 8516 Number of processors: 2
22:20:44.0662 8516 Page size: 0x1000
22:20:44.0662 8516 Boot type: Normal boot
22:20:44.0662 8516 ============================================================
22:20:46.0160 8516 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:20:46.0226 8516 ============================================================
22:20:46.0226 8516 \Device\Harddisk0\DR0:
22:20:46.0227 8516 MBR partitions:
22:20:46.0227 8516 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
22:20:46.0227 8516 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x37954800
22:20:46.0227 8516 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x379EB000, BlocksNum 0x1F99800
22:20:46.0227 8516 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x39984800, BlocksNum 0x9FD800
22:20:46.0227 8516 ============================================================
22:20:46.0287 8516 C: <-> \Device\Harddisk0\DR0\Partition2
22:20:46.0345 8516 E: <-> \Device\Harddisk0\DR0\Partition3
22:20:46.0356 8516 F: <-> \Device\Harddisk0\DR0\Partition4
22:20:46.0461 8516 ============================================================
22:20:46.0461 8516 Initialize success
22:20:46.0461 8516 ============================================================
22:21:39.0051 7524 ============================================================
22:21:39.0051 7524 Scan started
22:21:39.0052 7524 Mode: Manual; SigCheck; TDLFS;
22:21:39.0052 7524 ============================================================
22:21:42.0877 7524 ================ Scan system memory ========================
22:21:42.0877 7524 System memory - ok
22:21:42.0878 7524 ================ Scan services =============================
22:21:43.0036 7524 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
22:21:43.0786 7524 1394ohci - ok
22:21:43.0818 7524 [ 7A330A42870EB1FA81F88BE514D2D566 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
22:21:43.0881 7524 Accelerometer - ok
22:21:43.0988 7524 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:21:44.0027 7524 ACDaemon - ok
22:21:44.0104 7524 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
22:21:44.0173 7524 ACPI - ok
22:21:44.0203 7524 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
22:21:44.0442 7524 AcpiPmi - ok
22:21:44.0608 7524 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:21:44.0623 7524 AdobeFlashPlayerUpdateSvc - ok
22:21:44.0695 7524 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
22:21:44.0766 7524 adp94xx - ok
22:21:44.0803 7524 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
22:21:44.0826 7524 adpahci - ok
22:21:44.0866 7524 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
22:21:44.0885 7524 adpu320 - ok
22:21:44.0923 7524 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
22:21:45.0142 7524 AeLookupSvc - ok
22:21:45.0302 7524 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
22:21:45.0391 7524 AESTFilters - ok
22:21:45.0463 7524 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\windows\syswow64\drivers\Afc.sys
22:21:45.0500 7524 Afc - ok
22:21:45.0562 7524 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
22:21:45.0684 7524 AFD - ok
22:21:45.0724 7524 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
22:21:45.0760 7524 agp440 - ok
22:21:45.0827 7524 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
22:21:45.0895 7524 ALG - ok
22:21:45.0942 7524 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
22:21:45.0958 7524 aliide - ok
22:21:46.0004 7524 [ C08ADE825268D291AFE06EDA71415C7D ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
22:21:46.0178 7524 AMD External Events Utility - ok
22:21:46.0218 7524 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
22:21:46.0232 7524 amdide - ok
22:21:46.0253 7524 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
22:21:46.0330 7524 AmdK8 - ok
22:21:46.0555 7524 [ F59A32A90C4F96189CD74473F7BE572B ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
22:21:46.0873 7524 amdkmdag - ok
22:21:46.0913 7524 [ 0327723D45A7BB7C1FE4835EB784AC61 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
22:21:46.0989 7524 amdkmdap - ok
22:21:47.0013 7524 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
22:21:47.0071 7524 AmdPPM - ok
22:21:47.0109 7524 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
22:21:47.0124 7524 amdsata - ok
22:21:47.0257 7524 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
22:21:47.0297 7524 amdsbs - ok
22:21:47.0348 7524 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
22:21:47.0383 7524 amdxata - ok
22:21:47.0428 7524 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
22:21:47.0657 7524 AppID - ok
22:21:47.0692 7524 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
22:21:47.0786 7524 AppIDSvc - ok
22:21:47.0826 7524 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
22:21:47.0898 7524 Appinfo - ok
22:21:47.0954 7524 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
22:21:47.0971 7524 arc - ok
22:21:47.0990 7524 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
22:21:48.0009 7524 arcsas - ok
22:21:48.0065 7524 [ 357635F16D28558C50870F4EF8AA4712 ] ARCVCAM C:\windows\system32\DRIVERS\ArcSoftVCapture.sys
22:21:48.0104 7524 ARCVCAM - ok
22:21:48.0233 7524 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:21:48.0285 7524 aspnet_state - ok
22:21:48.0324 7524 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
22:21:48.0411 7524 AsyncMac - ok
22:21:48.0451 7524 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
22:21:48.0488 7524 atapi - ok
22:21:48.0566 7524 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
22:21:48.0665 7524 AudioEndpointBuilder - ok
22:21:48.0709 7524 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
22:21:48.0757 7524 AudioSrv - ok
22:21:48.0882 7524 [ 7692F4B242E45870873CAF4CB85CF769 ] AxAutoMntSrv C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
22:21:48.0924 7524 AxAutoMntSrv - ok
22:21:49.0008 7524 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
22:21:49.0124 7524 AxInstSV - ok
22:21:49.0182 7524 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
22:21:49.0240 7524 b06bdrv - ok
22:21:49.0294 7524 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
22:21:49.0333 7524 b57nd60a - ok
22:21:49.0460 7524 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
22:21:49.0505 7524 BBSvc - ok
22:21:49.0539 7524 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
22:21:49.0562 7524 BBUpdate - ok
22:21:49.0588 7524 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
22:21:49.0696 7524 BDESVC - ok
22:21:49.0732 7524 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
22:21:49.0801 7524 Beep - ok
22:21:49.0866 7524 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
22:21:49.0968 7524 BFE - ok
22:21:50.0204 7524 [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
22:21:50.0265 7524 BHDrvx64 - ok
22:21:50.0335 7524 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
22:21:50.0617 7524 BITS - ok
22:21:50.0668 7524 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\drivers\blbdrive.sys
22:21:50.0721 7524 blbdrive - ok
22:21:50.0837 7524 [ 94A6341079918DB7BF799EE897BD2563 ] Bluetooth Device Manager C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
22:21:51.0082 7524 Bluetooth Device Manager - ok
22:21:51.0157 7524 [ 7E76BF0972822A9B63FD55A73DF3EED6 ] Bluetooth Media Service C:\Program Files\Motorola\Bluetooth\audiosrv.exe
22:21:51.0228 7524 Bluetooth Media Service - ok
22:21:51.0281 7524 [ F7D36E135BF9274BB3435F95E7FAD339 ] Bluetooth OBEX Service C:\Program Files\Motorola\Bluetooth\obexsrv.exe
22:21:51.0318 7524 Bluetooth OBEX Service - ok
22:21:51.0352 7524 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
22:21:51.0457 7524 bowser - ok
22:21:51.0484 7524 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
22:21:51.0526 7524 BrFiltLo - ok
22:21:51.0555 7524 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
22:21:51.0579 7524 BrFiltUp - ok
22:21:51.0660 7524 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
22:21:51.0748 7524 Browser - ok
22:21:51.0771 7524 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
22:21:51.0861 7524 Brserid - ok
22:21:51.0899 7524 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
22:21:51.0918 7524 BrSerWdm - ok
22:21:51.0953 7524 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
22:21:52.0015 7524 BrUsbMdm - ok
22:21:52.0036 7524 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
22:21:52.0061 7524 BrUsbSer - ok
22:21:52.0102 7524 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
22:21:52.0302 7524 BthEnum - ok
22:21:52.0340 7524 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
22:21:52.0374 7524 BTHMODEM - ok
22:21:52.0418 7524 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
22:21:52.0443 7524 BthPan - ok
22:21:52.0485 7524 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
22:21:52.0559 7524 BTHPORT - ok
22:21:52.0608 7524 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
22:21:52.0821 7524 bthserv - ok
22:21:52.0862 7524 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
22:21:52.0915 7524 BTHUSB - ok
22:21:52.0945 7524 [ 6D3FF2B480F7AB8DA103CBC7FBEACD48 ] BTMCOM C:\windows\system32\Drivers\btmcom.sys
22:21:52.0997 7524 BTMCOM - ok
22:21:53.0025 7524 [ 8AEF214DD4816AF9AFB5D425F7302DAE ] BTMNET C:\windows\system32\DRIVERS\btmnet.sys
22:21:53.0109 7524 BTMNET - ok
22:21:53.0155 7524 [ B64CFABE65E241C784BB9F301795449B ] BTMUSB C:\windows\system32\Drivers\btmusb.sys
22:21:53.0289 7524 BTMUSB - ok
22:21:53.0311 7524 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
22:21:53.0396 7524 cdfs - ok
22:21:53.0431 7524 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
22:21:53.0492 7524 cdrom - ok
22:21:53.0547 7524 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
22:21:53.0612 7524 CertPropSvc - ok
22:21:53.0650 7524 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
22:21:53.0710 7524 circlass - ok
22:21:53.0746 7524 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
22:21:53.0774 7524 CLFS - ok
22:21:53.0826 7524 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:21:53.0857 7524 clr_optimization_v2.0.50727_32 - ok
22:21:53.0912 7524 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:21:53.0945 7524 clr_optimization_v2.0.50727_64 - ok
22:21:54.0022 7524 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:21:54.0222 7524 clr_optimization_v4.0.30319_32 - ok
22:21:54.0272 7524 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:21:54.0312 7524 clr_optimization_v4.0.30319_64 - ok
22:21:54.0355 7524 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\drivers\CmBatt.sys
22:21:54.0382 7524 CmBatt - ok
22:21:54.0415 7524 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
22:21:54.0428 7524 cmdide - ok
22:21:54.0461 7524 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
22:21:54.0541 7524 CNG - ok
22:21:54.0576 7524 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
22:21:54.0608 7524 Compbatt - ok
22:21:54.0649 7524 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
22:21:54.0701 7524 CompositeBus - ok
22:21:54.0714 7524 COMSysApp - ok
22:21:54.0733 7524 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
22:21:54.0748 7524 crcdisk - ok
22:21:54.0812 7524 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
22:21:54.0946 7524 CryptSvc - ok
22:21:55.0070 7524 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:21:55.0112 7524 cvhsvc - ok
22:21:55.0144 7524 [ B9AAC23BCC9326E5E50D937FECB7DCB5 ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
22:21:55.0178 7524 DAMDrv - ok
22:21:55.0227 7524 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
22:21:55.0294 7524 DcomLaunch - ok
22:21:55.0334 7524 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
22:21:55.0446 7524 defragsvc - ok
22:21:55.0492 7524 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
22:21:55.0573 7524 DfsC - ok
22:21:55.0632 7524 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
22:21:55.0713 7524 Dhcp - ok
22:21:55.0728 7524 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
22:21:55.0795 7524 discache - ok
22:21:55.0835 7524 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
22:21:55.0849 7524 Disk - ok
22:21:55.0878 7524 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
22:21:55.0965 7524 Dnscache - ok
22:21:55.0995 7524 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
22:21:56.0108 7524 dot3svc - ok
22:21:56.0176 7524 [ AA224B1BA5B2093DE97D6FCDDCF5D13B ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
22:21:56.0223 7524 DpHost - ok
22:21:56.0260 7524 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
22:21:56.0323 7524 DPS - ok
22:21:56.0359 7524 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
22:21:56.0412 7524 drmkaud - ok
22:21:56.0449 7524 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
22:21:56.0500 7524 DXGKrnl - ok
22:21:56.0529 7524 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
22:21:56.0588 7524 EapHost - ok
22:21:56.0679 7524 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
22:21:56.0785 7524 ebdrv - ok
22:21:56.0829 7524 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
22:21:56.0854 7524 eeCtrl - ok
22:21:56.0876 7524 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
22:21:57.0000 7524 EFS - ok
22:21:57.0059 7524 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
22:21:57.0208 7524 ehRecvr - ok
22:21:57.0219 7524 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
22:21:57.0259 7524 ehSched - ok
22:21:57.0277 7524 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
22:21:57.0302 7524 elxstor - ok
22:21:57.0329 7524 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:21:57.0343 7524 EraserUtilRebootDrv - ok
22:21:57.0374 7524 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
22:21:57.0401 7524 ErrDev - ok
22:21:57.0448 7524 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
22:21:57.0513 7524 EventSystem - ok
22:21:57.0541 7524 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
22:21:57.0597 7524 exfat - ok
22:21:57.0618 7524 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
22:21:57.0685 7524 fastfat - ok
22:21:57.0738 7524 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
22:21:57.0879 7524 Fax - ok
22:21:57.0905 7524 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
22:21:57.0939 7524 fdc - ok
22:21:57.0983 7524 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
22:21:58.0041 7524 fdPHost - ok
22:21:58.0084 7524 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
22:21:58.0143 7524 FDResPub - ok
22:21:58.0170 7524 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
22:21:58.0185 7524 FileInfo - ok
22:21:58.0202 7524 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
22:21:58.0265 7524 Filetrace - ok
22:21:58.0357 7524 [ 551034D58AAAFE0EBB087CD4C7767EB8 ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
22:21:58.0478 7524 FLCDLOCK - ok
22:21:58.0531 7524 [ 3D9B36631032FDE0FFEA0DC0260E4E35 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:21:58.0596 7524 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
22:21:58.0596 7524 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
22:21:58.0640 7524 [ 52C0312AB35EB7187015FB6A99136BB5 ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
22:21:58.0697 7524 FLEXnet Licensing Service 64 ( UnsignedFile.Multi.Generic ) - warning
22:21:58.0697 7524 FLEXnet Licensing Service 64 - detected UnsignedFile.Multi.Generic (1)
22:21:58.0726 7524 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
22:21:58.0749 7524 flpydisk - ok
22:21:58.0801 7524 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
22:21:58.0822 7524 FltMgr - ok
22:21:58.0865 7524 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
22:21:59.0012 7524 FontCache - ok
22:21:59.0062 7524 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:21:59.0077 7524 FontCache3.0.0.0 - ok
22:21:59.0087 7524 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
22:21:59.0102 7524 FsDepends - ok
22:21:59.0144 7524 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
22:21:59.0183 7524 Fs_Rec - ok
22:21:59.0259 7524 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
22:21:59.0284 7524 fvevol - ok
22:21:59.0300 7524 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
22:21:59.0315 7524 gagp30kx - ok
22:21:59.0350 7524 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
22:21:59.0430 7524 gpsvc - ok
22:21:59.0466 7524 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
22:21:59.0558 7524 hcw85cir - ok
22:21:59.0593 7524 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
22:21:59.0632 7524 HdAudAddService - ok
22:21:59.0669 7524 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
22:21:59.0696 7524 HDAudBus - ok
22:21:59.0714 7524 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
22:21:59.0761 7524 HidBatt - ok
22:21:59.0790 7524 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
22:21:59.0825 7524 HidBth - ok
22:21:59.0850 7524 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
22:21:59.0869 7524 HidIr - ok
22:21:59.0898 7524 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
22:21:59.0941 7524 hidserv - ok
22:21:59.0977 7524 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
22:21:59.0993 7524 HidUsb - ok
22:22:00.0011 7524 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
22:22:00.0086 7524 hkmsvc - ok
22:22:00.0134 7524 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
22:22:00.0241 7524 HomeGroupListener - ok
22:22:00.0265 7524 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
22:22:00.0301 7524 HomeGroupProvider - ok
22:22:00.0382 7524 [ 5232DA12C867D93842DDE5F7EF50DD30 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
22:22:00.0413 7524 HP Health Check Service - ok
22:22:00.0449 7524 [ 02C2108111D9656A9729995D2219FB99 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
22:22:00.0479 7524 HP Power Assistant Service - ok
22:22:00.0533 7524 [ 37890FDD25BEAC6AEDA3E2D57F2B29EB ] HP ProtectTools Service c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
22:22:00.0607 7524 HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - warning
22:22:00.0607 7524 HP ProtectTools Service - detected UnsignedFile.Multi.Generic (1)
22:22:00.0726 7524 [ D4B198E9B3CE6D05771E116D2D560F2F ] hpCMSrv c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
22:22:00.0815 7524 hpCMSrv - ok
22:22:00.0911 7524 [ A9FC4D7EA174BBF5A675B299FFAD80A2 ] HPDayStarterService c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
22:22:00.0953 7524 HPDayStarterService - ok
22:22:00.0994 7524 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
22:22:01.0007 7524 HPDrvMntSvc.exe - ok
22:22:01.0043 7524 [ A4BE23C451ADEB252CD17A0532CAE220 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
22:22:01.0067 7524 hpdskflt - ok
22:22:01.0115 7524 [ 98FAB0413C7365C9069994D7CE47F3EC ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
22:22:01.0192 7524 HPFSService ( UnsignedFile.Multi.Generic ) - warning
22:22:01.0192 7524 HPFSService - detected UnsignedFile.Multi.Generic (1)
22:22:01.0237 7524 [ 0ADC6AFAB2B17FFC9C6E24DD1583F888 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
22:22:01.0277 7524 hpHotkeyMonitor - ok
22:22:01.0314 7524 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\windows\system32\drivers\HpqKbFiltr.sys
22:22:01.0327 7524 HpqKbFiltr - ok
22:22:01.0361 7524 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:22:01.0404 7524 hpqwmiex - ok
22:22:01.0419 7524 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
22:22:01.0434 7524 HpSAMD - ok
22:22:01.0451 7524 [ A88A45E82BC54BFFB49C63973010226A ] hpsrv C:\windows\system32\Hpservice.exe
22:22:01.0467 7524 hpsrv - ok
22:22:01.0496 7524 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
22:22:01.0614 7524 HTTP - ok
22:22:01.0633 7524 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
22:22:01.0655 7524 hwpolicy - ok
22:22:01.0697 7524 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
22:22:01.0715 7524 i8042prt - ok
22:22:01.0748 7524 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
22:22:01.0770 7524 iaStor - ok
22:22:01.0838 7524 [ 117FF657E0D9BBD61B5C3E71E63D3919 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
22:22:01.0860 7524 IAStorDataMgrSvc - ok
22:22:01.0908 7524 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
22:22:01.0931 7524 iaStorV - ok
22:22:01.0983 7524 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:22:02.0073 7524 idsvc - ok
22:22:02.0261 7524 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\IPSDefs\20130131.001\IDSvia64.sys
22:22:02.0297 7524 IDSVia64 - ok
22:22:02.0566 7524 [ 0D1B8C64BDF0E5CDC523A1409FFB5EF0 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
22:22:02.0931 7524 igfx - ok
22:22:02.0948 7524 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
22:22:02.0963 7524 iirsp - ok
22:22:03.0006 7524 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
22:22:03.0082 7524 IKEEXT - ok
22:22:03.0101 7524 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
22:22:03.0115 7524 intelide - ok
22:22:03.0397 7524 [ 0D1B8C64BDF0E5CDC523A1409FFB5EF0 ] intelkmd C:\windows\system32\DRIVERS\igdpmd64.sys
22:22:03.0808 7524 intelkmd - ok
22:22:03.0835 7524 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
22:22:03.0866 7524 intelppm - ok
22:22:03.0897 7524 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
22:22:03.0939 7524 IPBusEnum - ok
22:22:03.0967 7524 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
22:22:04.0039 7524 IpFilterDriver - ok
22:22:04.0082 7524 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
22:22:04.0189 7524 iphlpsvc - ok
22:22:04.0213 7524 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
22:22:04.0241 7524 IPMIDRV - ok
22:22:04.0279 7524 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
22:22:04.0332 7524 IPNAT - ok
22:22:04.0357 7524 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
22:22:04.0398 7524 IRENUM - ok
22:22:04.0419 7524 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
22:22:04.0434 7524 isapnp - ok
22:22:04.0457 7524 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
22:22:04.0488 7524 iScsiPrt - ok
22:22:04.0526 7524 [ 0B44199365A69696109AB9A5855E0841 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
22:22:04.0544 7524 JMCR - ok
22:22:04.0570 7524 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
22:22:04.0584 7524 kbdclass - ok
22:22:04.0592 7524 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
22:22:04.0624 7524 kbdhid - ok
22:22:04.0636 7524 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
22:22:04.0650 7524 KeyIso - ok
22:22:04.0680 7524 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
22:22:04.0711 7524 KSecDD - ok
22:22:04.0736 7524 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
22:22:04.0777 7524 KSecPkg - ok
22:22:04.0824 7524 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
22:22:04.0886 7524 ksthunk - ok
22:22:04.0919 7524 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
22:22:05.0008 7524 KtmRm - ok
22:22:05.0060 7524 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
22:22:05.0114 7524 LanmanServer - ok
22:22:05.0137 7524 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
22:22:05.0192 7524 LanmanWorkstation - ok
22:22:05.0232 7524 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
22:22:05.0291 7524 lltdio - ok
22:22:05.0331 7524 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
22:22:05.0415 7524 lltdsvc - ok
22:22:05.0434 7524 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
22:22:05.0486 7524 lmhosts - ok
22:22:05.0539 7524 [ 97F9EAAC985A663394CD8F54DCD3E73A ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:22:05.0572 7524 LMS - ok
22:22:05.0623 7524 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
22:22:05.0639 7524 LSI_FC - ok
22:22:05.0662 7524 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
22:22:05.0696 7524 LSI_SAS - ok
22:22:05.0725 7524 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
22:22:05.0740 7524 LSI_SAS2 - ok
22:22:05.0755 7524 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
22:22:05.0773 7524 LSI_SCSI - ok
22:22:05.0827 7524 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
22:22:05.0892 7524 luafv - ok
22:22:06.0031 7524 [ 80E7E71CAAF758BF084BDF13996D52D0 ] McAfee Endpoint Encryption Agent C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
22:22:06.0105 7524 McAfee Endpoint Encryption Agent ( UnsignedFile.Multi.Generic ) - warning
22:22:06.0105 7524 McAfee Endpoint Encryption Agent - detected UnsignedFile.Multi.Generic (1)
22:22:06.0158 7524 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
22:22:06.0209 7524 Mcx2Svc - ok
22:22:06.0225 7524 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
22:22:06.0239 7524 megasas - ok
22:22:06.0285 7524 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
22:22:06.0307 7524 MegaSR - ok
22:22:06.0338 7524 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
22:22:06.0350 7524 MEIx64 - ok
22:22:06.0396 7524 [ A11F574A809B3751A17815F00C88781F ] MfeEpePc C:\windows\system32\drivers\MfeEpePc.sys
22:22:06.0437 7524 MfeEpePc - ok
22:22:06.0480 7524 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
22:22:06.0532 7524 MMCSS - ok
22:22:06.0564 7524 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
22:22:06.0618 7524 Modem - ok
22:22:06.0646 7524 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
22:22:06.0683 7524 monitor - ok
22:22:06.0717 7524 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
22:22:06.0752 7524 mouclass - ok
22:22:06.0785 7524 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
22:22:06.0818 7524 mouhid - ok
22:22:06.0844 7524 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
22:22:06.0886 7524 mountmgr - ok
22:22:06.0953 7524 [ 754DFB3F6339B63312D1A3E642FD4FC9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:22:07.0011 7524 MozillaMaintenance - ok
22:22:07.0051 7524 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
22:22:07.0071 7524 mpio - ok
22:22:07.0099 7524 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
22:22:07.0143 7524 mpsdrv - ok
22:22:07.0183 7524 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
22:22:07.0247 7524 MpsSvc - ok
22:22:07.0268 7524 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
22:22:07.0299 7524 MRxDAV - ok
22:22:07.0338 7524 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
22:22:07.0450 7524 mrxsmb - ok
22:22:07.0475 7524 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
22:22:07.0510 7524 mrxsmb10 - ok
22:22:07.0529 7524 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
22:22:07.0547 7524 mrxsmb20 - ok
22:22:07.0560 7524 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
22:22:07.0580 7524 msahci - ok
22:22:07.0593 7524 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
22:22:07.0610 7524 msdsm - ok
22:22:07.0632 7524 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
22:22:07.0697 7524 MSDTC - ok
22:22:07.0747 7524 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
22:22:07.0796 7524 Msfs - ok
22:22:07.0826 7524 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
22:22:07.0882 7524 mshidkmdf - ok
22:22:07.0921 7524 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
22:22:07.0937 7524 msisadrv - ok
22:22:07.0975 7524 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
22:22:08.0058 7524 MSiSCSI - ok
22:22:08.0062 7524 msiserver - ok
22:22:08.0125 7524 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
22:22:08.0181 7524 MSKSSRV - ok
22:22:08.0195 7524 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
22:22:08.0251 7524 MSPCLOCK - ok
22:22:08.0266 7524 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
22:22:08.0345 7524 MSPQM - ok
22:22:08.0364 7524 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
22:22:08.0390 7524 MsRPC - ok
22:22:08.0439 7524 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
22:22:08.0454 7524 mssmbios - ok
22:22:08.0474 7524 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
22:22:08.0531 7524 MSTEE - ok
22:22:08.0547 7524 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
22:22:08.0576 7524 MTConfig - ok
22:22:08.0592 7524 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
22:22:08.0607 7524 Mup - ok
22:22:08.0635 7524 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
22:22:08.0694 7524 napagent - ok
22:22:08.0742 7524 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
22:22:08.0829 7524 NativeWifiP - ok
22:22:08.0939 7524 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20130201.004\ENG64.SYS
22:22:08.0957 7524 NAVENG - ok
22:22:09.0021 7524 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20130201.004\EX64.SYS
22:22:09.0073 7524 NAVEX15 - ok
22:22:09.0158 7524 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
22:22:09.0233 7524 NDIS - ok
22:22:09.0261 7524 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
22:22:09.0318 7524 NdisCap - ok
22:22:09.0350 7524 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
22:22:09.0394 7524 NdisTapi - ok
22:22:09.0414 7524 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
22:22:09.0468 7524 Ndisuio - ok
22:22:09.0486 7524 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
22:22:09.0551 7524 NdisWan - ok
22:22:09.0578 7524 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
22:22:09.0618 7524 NDProxy - ok
22:22:09.0627 7524 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
22:22:09.0683 7524 NetBIOS - ok
22:22:09.0708 7524 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
22:22:09.0765 7524 NetBT - ok
22:22:09.0786 7524 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
22:22:09.0800 7524 Netlogon - ok
22:22:09.0840 7524 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
22:22:09.0900 7524 Netman - ok
22:22:09.0974 7524 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:22:10.0041 7524 NetMsmqActivator - ok
22:22:10.0063 7524 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:22:10.0077 7524 NetPipeActivator - ok
22:22:10.0101 7524 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
22:22:10.0182 7524 netprofm - ok
22:22:10.0249 7524 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:22:10.0264 7524 NetTcpActivator - ok
22:22:10.0282 7524 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:22:10.0294 7524 NetTcpPortSharing - ok
22:22:10.0305 7524 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
22:22:10.0320 7524 nfrd960 - ok
22:22:10.0413 7524 [ E78A365CC3E0FBFC018A33DCE01909F8 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
22:22:10.0430 7524 NIS - ok
22:22:10.0463 7524 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
22:22:10.0496 7524 NlaSvc - ok
22:22:10.0527 7524 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
22:22:10.0572 7524 Npfs - ok
22:22:10.0594 7524 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
22:22:10.0660 7524 nsi - ok
22:22:10.0676 7524 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
22:22:10.0739 7524 nsiproxy - ok
22:22:10.0818 7524 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
22:22:10.0928 7524 Ntfs - ok
22:22:10.0952 7524 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
22:22:11.0000 7524 Null - ok
22:22:11.0032 7524 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
22:22:11.0099 7524 nusb3hub - ok
22:22:11.0137 7524 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
22:22:11.0183 7524 nusb3xhc - ok
22:22:11.0221 7524 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
22:22:11.0238 7524 nvraid - ok
22:22:11.0266 7524 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
22:22:11.0285 7524 nvstor - ok
22:22:11.0318 7524 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
22:22:11.0335 7524 nv_agp - ok
22:22:11.0349 7524 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
22:22:11.0382 7524 ohci1394 - ok
22:22:11.0445 7524 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:22:11.0480 7524 ose - ok
22:22:11.0619 7524 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:22:11.0789 7524 osppsvc - ok
22:22:11.0824 7524 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
22:22:11.0879 7524 p2pimsvc - ok
22:22:11.0910 7524 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
22:22:11.0934 7524 p2psvc - ok
22:22:11.0962 7524 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
22:22:11.0983 7524 Parport - ok
22:22:12.0007 7524 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
22:22:12.0025 7524 partmgr - ok
22:22:12.0040 7524 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
22:22:12.0083 7524 PcaSvc - ok
22:22:12.0104 7524 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
22:22:12.0122 7524 pci - ok
22:22:12.0150 7524 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
22:22:12.0170 7524 pciide - ok
22:22:12.0189 7524 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
22:22:12.0209 7524 pcmcia - ok
22:22:12.0230 7524 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
22:22:12.0264 7524 pcw - ok
22:22:12.0305 7524 pdfcDispatcher - ok
22:22:12.0332 7524 [ 8F924F00F2F81422FD7C340FDA0E00D8 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
22:22:12.0381 7524 PdiService - ok
22:22:12.0414 7524 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
22:22:12.0503 7524 PEAUTH - ok
22:22:12.0587 7524 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
22:22:12.0669 7524 PerfHost - ok
22:22:12.0741 7524 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
22:22:12.0838 7524 pla - ok
22:22:12.0873 7524 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
22:22:12.0979 7524 PlugPlay - ok
22:22:12.0983 7524 PnkBstrA - ok
22:22:13.0008 7524 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
22:22:13.0072 7524 PNRPAutoReg - ok
22:22:13.0090 7524 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
22:22:13.0112 7524 PNRPsvc - ok
22:22:13.0149 7524 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
22:22:13.0215 7524 PolicyAgent - ok
22:22:13.0255 7524 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
22:22:13.0328 7524 Power - ok
22:22:13.0367 7524 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
22:22:13.0419 7524 PptpMiniport - ok
22:22:13.0449 7524 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
22:22:13.0484 7524 Processor - ok
22:22:13.0522 7524 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
22:22:13.0609 7524 ProfSvc - ok
22:22:13.0616 7524 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
22:22:13.0630 7524 ProtectedStorage - ok
22:22:13.0662 7524 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
22:22:13.0708 7524 Psched - ok
22:22:13.0764 7524 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
22:22:13.0839 7524 ql2300 - ok
22:22:13.0852 7524 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
22:22:13.0872 7524 ql40xx - ok
22:22:13.0904 7524 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
22:22:13.0929 7524 QWAVE - ok
22:22:13.0947 7524 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
22:22:13.0989 7524 QWAVEdrv - ok
22:22:14.0021 7524 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
22:22:14.0079 7524 RasAcd - ok
22:22:14.0123 7524 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
22:22:14.0171 7524 RasAgileVpn - ok
22:22:14.0206 7524 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
22:22:14.0259 7524 RasAuto - ok
22:22:14.0281 7524 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
22:22:14.0341 7524 Rasl2tp - ok
22:22:14.0364 7524 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
22:22:14.0429 7524 RasMan - ok
22:22:14.0457 7524 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
22:22:14.0516 7524 RasPppoe - ok
22:22:14.0551 7524 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
22:22:14.0631 7524 RasSstp - ok
22:22:14.0657 7524 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
22:22:14.0717 7524 rdbss - ok
22:22:14.0734 7524 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
22:22:14.0768 7524 rdpbus - ok
22:22:14.0796 7524 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
22:22:14.0852 7524 RDPCDD - ok
22:22:14.0879 7524 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
22:22:14.0939 7524 RDPENCDD - ok
22:22:14.0958 7524 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
22:22:15.0000 7524 RDPREFMP - ok
22:22:15.0031 7524 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
22:22:15.0142 7524 RDPWD - ok
22:22:15.0162 7524 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
22:22:15.0181 7524 rdyboost - ok
22:22:15.0203 7524 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
22:22:15.0298 7524 RemoteAccess - ok
22:22:15.0328 7524 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
22:22:15.0385 7524 RemoteRegistry - ok
22:22:15.0425 7524 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
22:22:15.0464 7524 RFCOMM - ok
22:22:15.0512 7524 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
22:22:15.0576 7524 RpcEptMapper - ok
22:22:15.0597 7524 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
22:22:15.0660 7524 RpcLocator - ok
22:22:15.0686 7524 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
22:22:15.0733 7524 RpcSs - ok
22:22:15.0769 7524 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
22:22:15.0817 7524 rspndr - ok
22:22:15.0853 7524 [ 2777226EE8BF50B059D7A7C90177E99C ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
22:22:15.0878 7524 RTL8167 - ok
22:22:15.0926 7524 [ F33E70E48A54A7A1BFBEEB4F3B273E4A ] RTL8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys
22:22:16.0014 7524 RTL8192Ce - ok
22:22:16.0026 7524 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
22:22:16.0046 7524 SamSs - ok
22:22:16.0073 7524 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
22:22:16.0090 7524 sbp2port - ok
22:22:16.0116 7524 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
22:22:16.0205 7524 SCardSvr - ok
22:22:16.0236 7524 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
22:22:16.0293 7524 scfilter - ok
22:22:16.0332 7524 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
22:22:16.0420 7524 Schedule - ok
22:22:16.0449 7524 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
22:22:16.0492 7524 SCPolicySvc - ok
22:22:16.0533 7524 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\DRIVERS\sdbus.sys
22:22:16.0592 7524 sdbus - ok
22:22:16.0627 7524 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
22:22:16.0678 7524 SDRSVC - ok
22:22:16.0710 7524 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
22:22:16.0788 7524 secdrv - ok
22:22:16.0810 7524 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
22:22:16.0894 7524 seclogon - ok
22:22:16.0913 7524 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
22:22:16.0968 7524 SENS - ok
22:22:17.0001 7524 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
22:22:17.0089 7524 SensrSvc - ok
22:22:17.0128 7524 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
22:22:17.0164 7524 Serenum - ok
22:22:17.0202 7524 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
22:22:17.0239 7524 Serial - ok
22:22:17.0260 7524 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
22:22:17.0287 7524 sermouse - ok
22:22:17.0313 7524 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
22:22:17.0371 7524 SessionEnv - ok
22:22:17.0407 7524 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
22:22:17.0440 7524 sffdisk - ok
22:22:17.0460 7524 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
22:22:17.0485 7524 sffp_mmc - ok
22:22:17.0500 7524 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
22:22:17.0529 7524 sffp_sd - ok
22:22:17.0556 7524 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
22:22:17.0586 7524 sfloppy - ok
22:22:17.0647 7524 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
22:22:17.0722 7524 Sftfs - ok
22:22:17.0784 7524 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:22:17.0808 7524 sftlist - ok
22:22:17.0830 7524 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
22:22:17.0866 7524 Sftplay - ok
22:22:17.0906 7524 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
22:22:17.0943 7524 Sftredir - ok
22:22:17.0976 7524 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
22:22:17.0989 7524 Sftvol - ok
22:22:18.0023 7524 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:22:18.0040 7524 sftvsa - ok
22:22:18.0064 7524 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
22:22:18.0161 7524 SharedAccess - ok
22:22:18.0186 7524 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
22:22:18.0251 7524 ShellHWDetection - ok
22:22:18.0273 7524 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
22:22:18.0287 7524 SiSRaid2 - ok
22:22:18.0307 7524 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
22:22:18.0321 7524 SiSRaid4 - ok
22:22:18.0399 7524 [ 65F9539E506D43FCD7CB59F8FD5CCABC ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:22:18.0568 7524 SkypeUpdate - ok
22:22:18.0604 7524 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
22:22:18.0668 7524 Smb - ok
22:22:18.0708 7524 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
22:22:18.0767 7524 SNMPTRAP - ok
22:22:18.0781 7524 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
22:22:18.0796 7524 spldr - ok
22:22:18.0836 7524 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
22:22:18.0956 7524 Spooler - ok
22:22:19.0059 7524 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
22:22:19.0242 7524 sppsvc - ok
22:22:19.0260 7524 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
22:22:19.0304 7524 sppuinotify - ok
22:22:19.0401 7524 [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd C:\windows\System32\Drivers\sptd.sys
22:22:19.0490 7524 sptd - ok
22:22:19.0571 7524 [ 201DD8F0F943584A857DA0AE93ADF2DD ] SPUVCbv C:\windows\system32\Drivers\SPUVCbv_x64.sys
22:22:19.0743 7524 SPUVCbv - ok
22:22:19.0838 7524 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS
22:22:19.0883 7524 SRTSP - ok
22:22:19.0898 7524 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS
22:22:19.0913 7524 SRTSPX - ok
22:22:19.0952 7524 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
22:22:20.0049 7524 srv - ok
22:22:20.0075 7524 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
22:22:20.0114 7524 srv2 - ok
22:22:20.0132 7524 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
22:22:20.0151 7524 srvnet - ok
22:22:20.0189 7524 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
22:22:20.0262 7524 SSDPSRV - ok
22:22:20.0295 7524 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
22:22:20.0366 7524 SstpSvc - ok
22:22:20.0459 7524 [ 0CDEA5ACBB69C45F642E96D81E906CCD ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
22:22:20.0496 7524 STacSV - ok
22:22:20.0579 7524 [ E5C796B621F6FBA8616511063D7F0FFE ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
22:22:20.0619 7524 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
22:22:20.0619 7524 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
22:22:20.0641 7524 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
22:22:20.0681 7524 stexstor - ok
22:22:20.0746 7524 [ 5C8D6072D1D09F11789C6A014688048A ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
22:22:20.0832 7524 STHDA - ok
22:22:20.0881 7524 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
22:22:20.0948 7524 stisvc - ok
22:22:20.0963 7524 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
22:22:20.0978 7524 swenum - ok
22:22:21.0017 7524 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
22:22:21.0087 7524 swprv - ok
22:22:21.0118 7524 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS
22:22:21.0142 7524 SymDS - ok
22:22:21.0178 7524 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS
22:22:21.0227 7524 SymEFA - ok
22:22:21.0264 7524 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\windows\system32\Drivers\SYMEVENT64x86.SYS
22:22:21.0306 7524 SymEvent - ok
22:22:21.0330 7524 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS
22:22:21.0346 7524 SymIRON - ok
22:22:21.0368 7524 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS
22:22:21.0389 7524 SymNetS - ok
22:22:21.0448 7524 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\drivers\SynTP.sys
22:22:21.0509 7524 SynTP - ok
22:22:21.0590 7524 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
22:22:21.0681 7524 SysMain - ok
22:22:21.0695 7524 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
22:22:21.0718 7524 TabletInputService - ok
22:22:21.0740 7524 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
22:22:21.0801 7524 TapiSrv - ok
22:22:21.0822 7524 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
22:22:21.0883 7524 TBS - ok
22:22:21.0961 7524 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
22:22:22.0078 7524 Tcpip - ok
22:22:22.0137 7524 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
22:22:22.0181 7524 TCPIP6 - ok
22:22:22.0202 7524 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
22:22:22.0258 7524 tcpipreg - ok
22:22:22.0285 7524 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
22:22:22.0413 7524 TDPIPE - ok
22:22:22.0433 7524 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
22:22:22.0476 7524 TDTCP - ok
22:22:22.0507 7524 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
22:22:22.0552 7524 tdx - ok
22:22:22.0566 7524 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
22:22:22.0582 7524 TermDD - ok
22:22:22.0615 7524 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
22:22:22.0703 7524 TermService - ok
22:22:22.0716 7524 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
22:22:22.0753 7524 Themes - ok
22:22:22.0779 7524 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
22:22:22.0818 7524 THREADORDER - ok
22:22:22.0840 7524 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
22:22:22.0911 7524 TrkWks - ok
22:22:22.0968 7524 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
22:22:23.0044 7524 TrustedInstaller - ok
22:22:23.0072 7524 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
22:22:23.0124 7524 tssecsrv - ok
22:22:23.0172 7524 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
22:22:23.0241 7524 TsUsbFlt - ok
22:22:23.0262 7524 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
22:22:23.0281 7524 TsUsbGD - ok
22:22:23.0333 7524 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
22:22:23.0414 7524 tunnel - ok
22:22:23.0444 7524 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
22:22:23.0463 7524 uagp35 - ok
22:22:23.0530 7524 [ D5994AB5C2B2D72D6320A7004D52617C ] uArcCapture C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
22:22:23.0575 7524 uArcCapture - ok
22:22:23.0599 7524 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
22:22:23.0658 7524 udfs - ok
22:22:23.0689 7524 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
22:22:23.0753 7524 UI0Detect - ok
22:22:23.0787 7524 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
22:22:23.0803 7524 uliagpkx - ok
22:22:23.0838 7524 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
22:22:23.0868 7524 umbus - ok
22:22:23.0888 7524 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
22:22:23.0917 7524 UmPass - ok
22:22:24.0032 7524 [ A69CD6BDB82872999D2E46F9324ADA83 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:22:24.0140 7524 UNS - ok
22:22:24.0166 7524 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
22:22:24.0218 7524 upnphost - ok
22:22:24.0249 7524 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
22:22:24.0323 7524 usbccgp - ok
22:22:24.0346 7524 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
22:22:24.0378 7524 usbcir - ok
22:22:24.0400 7524 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
22:22:24.0435 7524 usbehci - ok
22:22:24.0475 7524 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\drivers\usbhub.sys
22:22:24.0511 7524 usbhub - ok
22:22:24.0539 7524 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
22:22:24.0557 7524 usbohci - ok
22:22:24.0584 7524 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
22:22:24.0615 7524 usbprint - ok
22:22:24.0632 7524 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
22:22:24.0738 7524 USBSTOR - ok
22:22:24.0757 7524 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
22:22:24.0786 7524 usbuhci - ok
22:22:24.0824 7524 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
22:22:24.0862 7524 usbvideo - ok
22:22:24.0890 7524 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
22:22:24.0948 7524 UxSms - ok
22:22:24.0963 7524 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
22:22:24.0982 7524 VaultSvc - ok
22:22:25.0091 7524 [ 41EEF971DD82A3674D07F275A4DEF702 ] vcsFPService C:\windows\system32\vcsFPService.exe
22:22:25.0286 7524 vcsFPService - ok
22:22:25.0305 7524 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
22:22:25.0321 7524 vdrvroot - ok
22:22:25.0350 7524 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
22:22:25.0465 7524 vds - ok
22:22:25.0502 7524 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
22:22:25.0546 7524 vga - ok
22:22:25.0577 7524 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
22:22:25.0632 7524 VgaSave - ok
22:22:25.0672 7524 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
22:22:25.0690 7524 vhdmp - ok
22:22:25.0701 7524 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
22:22:25.0719 7524 viaide - ok
22:22:25.0745 7524 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
22:22:25.0760 7524 volmgr - ok
22:22:25.0785 7524 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
22:22:25.0824 7524 volmgrx - ok
22:22:25.0851 7524 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
22:22:25.0876 7524 volsnap - ok
22:22:25.0890 7524 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
22:22:25.0907 7524 vsmraid - ok
22:22:25.0955 7524 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
22:22:26.0084 7524 VSS - ok
22:22:26.0112 7524 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
22:22:26.0143 7524 vwifibus - ok
22:22:26.0169 7524 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
22:22:26.0206 7524 vwififlt - ok
22:22:26.0252 7524 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
22:22:26.0330 7524 W32Time - ok
22:22:26.0352 7524 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
22:22:26.0379 7524 WacomPen - ok
22:22:26.0422 7524 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
22:22:26.0481 7524 WANARP - ok
22:22:26.0488 7524 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
22:22:26.0525 7524 Wanarpv6 - ok
22:22:26.0600 7524 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
22:22:26.0684 7524 WatAdminSvc - ok
22:22:26.0739 7524 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
22:22:26.0846 7524 wbengine - ok
22:22:26.0868 7524 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
22:22:26.0897 7524 WbioSrvc - ok
22:22:26.0919 7524 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
22:22:26.0988 7524 wcncsvc - ok
22:22:27.0003 7524 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
22:22:27.0093 7524 WcsPlugInService - ok
22:22:27.0120 7524 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
22:22:27.0156 7524 Wd - ok
22:22:27.0200 7524 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
22:22:27.0281 7524 Wdf01000 - ok
22:22:27.0302 7524 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
22:22:27.0400 7524 WdiServiceHost - ok
22:22:27.0404 7524 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
22:22:27.0427 7524 WdiSystemHost - ok
22:22:27.0446 7524 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
22:22:27.0490 7524 WebClient - ok
22:22:27.0507 7524 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
22:22:27.0597 7524 Wecsvc - ok
22:22:27.0613 7524 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
22:22:27.0674 7524 wercplsupport - ok
22:22:27.0711 7524 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
22:22:27.0792 7524 WerSvc - ok
22:22:27.0840 7524 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
22:22:27.0887 7524 WfpLwf - ok
22:22:27.0911 7524 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
22:22:27.0925 7524 WIMMount - ok
22:22:27.0951 7524 WinDefend - ok
22:22:27.0960 7524 WinHttpAutoProxySvc - ok
22:22:28.0025 7524 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
22:22:28.0086 7524 Winmgmt - ok
22:22:28.0144 7524 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
22:22:28.0277 7524 WinRM - ok
22:22:28.0334 7524 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
22:22:28.0398 7524 Wlansvc - ok
22:22:28.0499 7524 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:22:28.0593 7524 wlidsvc - ok
22:22:28.0622 7524 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
22:22:28.0637 7524 WmiAcpi - ok
22:22:28.0666 7524 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
22:22:28.0737 7524 wmiApSrv - ok
22:22:28.0760 7524 WMPNetworkSvc - ok
22:22:28.0778 7524 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
22:22:28.0865 7524 WPCSvc - ok
22:22:28.0888 7524 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
22:22:28.0980 7524 WPDBusEnum - ok
22:22:29.0005 7524 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
22:22:29.0084 7524 ws2ifsl - ok
22:22:29.0125 7524 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
22:22:29.0163 7524 wscsvc - ok
22:22:29.0202 7524 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\windows\system32\DRIVERS\WSDPrint.sys
22:22:29.0261 7524 WSDPrintDevice - ok
22:22:29.0268 7524 WSearch - ok
22:22:29.0347 7524 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
22:22:29.0457 7524 wuauserv - ok
22:22:29.0491 7524 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
22:22:29.0572 7524 WudfPf - ok
22:22:29.0596 7524 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
22:22:29.0636 7524 WUDFRd - ok
22:22:29.0670 7524 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
22:22:29.0718 7524 wudfsvc - ok
22:22:29.0758 7524 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
22:22:29.0821 7524 WwanSvc - ok
22:22:29.0872 7524 [ A35820791F940822C31908F58F91D973 ] XobniService C:\Program Files (x86)\Xobni\XobniService.exe
22:22:29.0948 7524 XobniService - ok
22:22:29.0973 7524 ================ Scan global ===============================
22:22:29.0996 7524 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
22:22:30.0041 7524 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\windows\system32\winsrv.dll
22:22:30.0052 7524 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\windows\system32\winsrv.dll
22:22:30.0071 7524 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
22:22:30.0103 7524 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
22:22:30.0109 7524 [Global] - ok
22:22:30.0110 7524 ================ Scan MBR ==================================
22:22:30.0119 7524 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:22:30.0548 7524 \Device\Harddisk0\DR0 - ok
22:22:30.0549 7524 ================ Scan VBR ==================================
22:22:30.0581 7524 [ E393193F57D9F48780CD68A46090DE74 ] \Device\Harddisk0\DR0\Partition1
22:22:30.0584 7524 \Device\Harddisk0\DR0\Partition1 - ok
22:22:30.0592 7524 [ B3DE8F1E8BE13353E842955AF4DA9893 ] \Device\Harddisk0\DR0\Partition2
22:22:30.0594 7524 \Device\Harddisk0\DR0\Partition2 - ok
22:22:30.0640 7524 [ 74756DC45ADB40192C06A4E44AA943D9 ] \Device\Harddisk0\DR0\Partition3
22:22:30.0642 7524 \Device\Harddisk0\DR0\Partition3 - ok
22:22:30.0667 7524 [ FAC01B354443539F0245BBA6790377B6 ] \Device\Harddisk0\DR0\Partition4
22:22:30.0668 7524 \Device\Harddisk0\DR0\Partition4 - ok
22:22:30.0669 7524 ============================================================
22:22:30.0669 7524 Scan finished
22:22:30.0669 7524 ============================================================
22:22:30.0691 8700 Detected object count: 6
22:22:30.0691 8700 Actual detected object count: 6
22:22:52.0510 8700 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:22:52.0510 8700 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:22:52.0513 8700 FLEXnet Licensing Service 64 ( UnsignedFile.Multi.Generic ) - skipped by user
22:22:52.0513 8700 FLEXnet Licensing Service 64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:22:52.0515 8700 HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:22:52.0515 8700 HP ProtectTools Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:22:52.0516 8700 HPFSService ( UnsignedFile.Multi.Generic ) - skipped by user
22:22:52.0516 8700 HPFSService ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:22:52.0518 8700 McAfee Endpoint Encryption Agent ( UnsignedFile.Multi.Generic ) - skipped by user
22:22:52.0518 8700 McAfee Endpoint Encryption Agent ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:22:52.0520 8700 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
22:22:52.0520 8700 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:23:07.0118 8036 Deinitialize success

#19 Příspěvek od **Márty84** » 01 úno 2013 23:34

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni programu bude hlasena chyba, staci restartovat pc a bude to v poradku

carodejdobrodej

ComboFix 13-02-02.05 - Pocitac 03.02.2013 2:55.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4030.2922 [GMT 1:00]
Spuštěný z: c:\users\Pocitac\Downloads\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-01-03 do 2013-02-03 )))))))))))))))))))))))))))))))
.
.
2013-02-03 02:49 . 2013-02-03 02:49 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-02 14:19 . 2013-02-02 14:41 -------- d-----w- c:\programdata\Blizzard Entertainment
2013-02-02 14:19 . 2013-02-02 14:41 -------- d-----w- c:\program files (x86)\StarCraft II
2013-02-02 14:19 . 2013-02-02 14:34 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment
2013-02-01 22:44 . 2013-02-01 22:44 -------- d-----w- c:\users\Pocitac\AppData\Roaming\Tific
2013-02-01 22:44 . 2013-02-01 22:44 -------- d-----w- c:\users\Pocitac\AppData\Local\Symantec
2013-01-30 11:40 . 2013-01-30 11:40 -------- d-----w- c:\users\Pocitac\AppData\Roaming\Malwarebytes
2013-01-30 11:39 . 2013-01-30 11:39 -------- d-----w- c:\programdata\Malwarebytes
2013-01-30 11:39 . 2013-01-30 11:39 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-01-30 11:39 . 2012-12-14 15:49 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-29 18:56 . 2013-01-29 18:56 174 ----a-w- c:\windows\DeleteOnReboot.bat
2013-01-26 22:57 . 2013-01-26 22:58 -------- d-----w- c:\program files\trend micro
2013-01-26 17:06 . 2013-01-26 17:06 -------- d-----w- c:\program files (x86)\trend micro
2013-01-26 17:05 . 2013-01-26 17:06 -------- d-----w- C:\rsit
2013-01-22 18:53 . 2013-01-22 18:53 8282192 ----a-w- c:\programdata\Microsoft\BingBar\BBSvc\7.1.391.0oemBingBarSetup-Partner.EXE
2013-01-09 17:36 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-01-09 17:36 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-01-09 17:34 . 2012-11-30 05:38 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-05 21:09 . 2013-01-05 21:13 -------- d-----w- c:\users\Pocitac\7kaa
2013-01-05 20:11 . 2013-01-05 20:11 -------- d-----w- c:\users\Pocitac\AppData\Roaming\Command & Conquer 3 Kane's Wrath
2013-01-05 18:56 . 2013-01-05 18:56 -------- d-----w- c:\program files (x86)\Transport Giant Gold
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-09 04:30 . 2012-06-30 14:29 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-09 04:30 . 2012-06-30 14:29 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-22 02:19 . 2012-12-22 02:19 0 ----a-w- c:\windows\SysWow64\sho4C92.tmp
2012-12-16 17:11 . 2012-12-22 02:01 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-22 02:01 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-22 02:01 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-22 02:01 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-14 02:20 . 2012-12-14 02:20 0 ----a-w- c:\windows\SysWow64\sho8E53.tmp
2012-12-10 17:54 . 2012-12-10 17:54 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-12-10 17:54 . 2012-12-10 17:54 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-12-10 17:54 . 2012-12-10 17:54 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-11-30 04:45 . 2013-01-09 17:35 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-15 03:07 . 2012-11-15 03:07 0 ----a-w- c:\windows\SysWow64\sho8FFC.tmp
2012-11-14 07:06 . 2012-12-13 09:25 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-11-14 06:32 . 2012-12-13 09:25 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-11-14 06:11 . 2012-12-13 09:25 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-11-14 06:04 . 2012-12-13 09:25 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-14 06:04 . 2012-12-13 09:25 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-11-14 06:02 . 2012-12-13 09:25 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-14 06:02 . 2012-12-13 09:25 237056 ----a-w- c:\windows\system32\url.dll
2012-11-14 05:59 . 2012-12-13 09:25 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-11-14 05:58 . 2012-12-13 09:25 816640 ----a-w- c:\windows\system32\jscript.dll
2012-11-14 05:57 . 2012-12-13 09:25 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-11-14 05:57 . 2012-12-13 09:25 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-11-14 05:55 . 2012-12-13 09:25 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-11-14 05:55 . 2012-12-13 09:25 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-11-14 05:53 . 2012-12-13 09:26 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-11-14 05:52 . 2012-12-13 09:26 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-11-14 05:46 . 2012-12-13 09:25 248320 ----a-w- c:\windows\system32\ieui.dll
2012-11-14 02:09 . 2012-12-13 09:25 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-11-14 01:58 . 2012-12-13 09:25 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57 . 2012-12-13 09:25 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-11-14 01:49 . 2012-12-13 09:25 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48 . 2012-12-13 09:25 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-11-14 01:44 . 2012-12-13 09:26 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-11-09 05:45 . 2012-12-12 13:14 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-09 04:42 . 2012-12-12 13:14 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-11-07 12:31 . 2012-06-02 17:14 564824 ----a-w- c:\windows\system32\drivers\sptd.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2012-01-05 75624]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2011-02-01 656920]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2011-01-28 299576]
"File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2011-02-07 12274688]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-01-26 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"HP HD Webcam [Fixed]_Monitor"="c:\program files (x86)\HP HD Webcam [Fixed]\monitor.exe" [2010-11-26 11:31 267128]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-14 343168]
"DTRun"="c:\program files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2010-11-24 517456]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-04-05 94264]
"HPQuickWebProxy"="c:\program files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" [2011-11-10 169528]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2011-05-09 23:43 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe [2012-06-11 193616]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe [2011-03-07 62184]
R3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys [2010-06-30 52736]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
R3 HP ProtectTools Service;HP ProtectTools Service;c:\program files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-03 1255736]
S0 MfeEpePc;MfeEpePc; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\BASHDefs\20130116.013\BHDrvx64.sys [2013-01-16 1388120]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\IPSDefs\20130201.001\IDSvia64.sys [2012-09-01 513184]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-10-14 204288]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files\Motorola\Bluetooth\obexsrv.exe [2011-02-16 680016]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2011-01-27 30520]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
S2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe [2012-06-11 240208]
S3 Bluetooth Device Manager;Bluetooth Device Manager;c:\program files\Motorola\Bluetooth\devmgrsrv.exe [2011-02-09 4151376]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files\Motorola\Bluetooth\audiosrv.exe [2011-02-28 1189968]
S3 BTMNET;Motorola Bluetooth Network Adapter Service;c:\windows\system32\DRIVERS\btmnet.sys [2010-07-16 30208]
S3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys [2011-02-09 486144]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-08-10 138912]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-01-08 1028096]
S3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [2011-09-01 12306848]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys [2011-07-19 1145448]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 SPUVCbv;SPUVCb Driver Service;c:\windows\system32\Drivers\SPUVCbv_x64.sys [2011-02-12 2612728]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-02-03 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-30 04:30]
.
2013-02-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-821910267-2363166786-1326928997-1001Core.job
- c:\users\Pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-02 14:13]
.
2013-02-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-821910267-2363166786-1326928997-1001UA.job
- c:\users\Pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-02 14:13]
.
2013-01-05 c:\windows\Tasks\HPCeeScheduleForPOCITAC-HP$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 06:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2011-01-27 13880]
"BTMTrayAgent"="c:\program files\Motorola\Bluetooth\btmshell.dll" [2011-02-16 21709904]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-09-01 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-09-01 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-09-01 416024]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-27 835072]
"MfeEpePcMonitor"="c:\program files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe" [2011-02-09 200704]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.bing.com?pc=CMNTDF
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Pocitac\AppData\Roaming\Mozilla\Firefox\Profiles\c23bogi5.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - seznam.cz
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{E02FBF01-0DE3-4BCB-89E8-D300FEFC3289} - c:\program files (x86)\InstallShield Installation Information\{E02FBF01-0DE3-4BCB-89E8-D300FEFC3289}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll\" /prefetch:1"
--
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-02-03 04:17:29
ComboFix-quarantined-files.txt 2013-02-03 03:17
.
Před spuštěním: Volných bajtů: 119 173 267 456
Po spuštění: Volných bajtů: 119 172 386 816
.
- - End Of File - - 67C937C3CF8D06F9F005E068AC5AFE13

#21 Příspěvek od **Márty84** » 03 úno 2013 10:50

Znate tento soubor? c:\windows\DeleteOnReboot.bat To tam mate schvalne?

Presunte ComboFix na plochu!
Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

DDS::
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.bing.com?pc=CMNTDF
mLocal Page = c:\windows\SysWOW64\blank.htm

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=-
"DAEMON Tools Lite"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=-
"StartCCC"=-
"SunJavaUpdateSched"=-

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Driver::
BBSvc
SkypeUpdate
BBUpdate

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni programu bude hlasena chyba, staci restartovat pc a bude to v poradku

10.3.2013 pro neaktivitu

http://forum.viry.cz/viewtopic.php?f=12&t=123975

VIRY.CZ

prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu