goffer.exe

Zpráva

konu · #16 Příspěvek od **konu** » 15 dub 2015 13:55

IE nevadí. Ale o firefoxu nic nevím, možná jsem ho kdysi dávno používal , možná mám jen nějaký zbytky.Tedy kontaktuju infos. Zatím jsem čistej?

konu · #17 Příspěvek od **konu** » 17 dub 2015 13:30

Tak konečně odepsali .Snad vám to pomůže.

Dobry den.

Viry detekujeme pomoci aplikace SNORT.
Odchozi traffic od klientu hlida automat a v pripade detekce viru nebo malware posle email.
Definice viru a malware pouzivame primo z aplikace SNORT.

Pokud mate doma router a za nim vic zarizeni, musite zkontrolovat vsechny.
Jednotlive pocitace v lokalni siti nejsme schopni detekovat.

S pozdravem ing. L. Vyslouzil

konu · #18 Příspěvek od **konu** » 17 dub 2015 14:54

No právě dnes 0:05 zase upozornění

konu · #19 Příspěvek od **konu** » 17 dub 2015 15:09

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-04-2015 04
Ran by tom (administrator) on ASUS-PC on 17-04-2015 16:04:45
Running from C:\Users\tom\Desktop\Bezpečnost\FRST\FRST-OlderVersion
Loaded Profiles: tom (Available profiles: tom)
Platform: Windows 8.1 Enterprise (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Eyeo GmbH) C:\Program Files\Adblock Plus for IE\AdblockPlusEngine.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Opera Software) C:\Program Files (x86)\Opera\launcher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5138032 2012-03-30] (VIA)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5138032 2012-03-30] (VIA)
HKU\S-1-5-21-3332171635-80688016-592393309-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-3332171635-80688016-592393309-1001\...\MountPoints2: F - "F:\SETUP.EXE"
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3332171635-80688016-592393309-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
SearchScopes: HKU\S-1-5-21-3332171635-80688016-592393309-1001 -> DefaultScope {AAF95CB0-2208-4414-8A5B-63D268CF73AB} URL = http://search.seznam.cz/?q={searchTerms ... chmodule_1
SearchScopes: HKU\S-1-5-21-3332171635-80688016-592393309-1001 -> {AAF95CB0-2208-4414-8A5B-63D268CF73AB} URL = http://search.seznam.cz/?q={searchTerms ... chmodule_1
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25] (Eyeo GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-15] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25] (Eyeo GmbH)
Hosts: 127.0.0.1 player.kmpmedia.net
Tcpip\..\Interfaces\{0CAC6FFC-C225-4715-8D53-E2A5B6B4B21B}: [NameServer] 46.33.112.42,46.33.96.2

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll [2014-12-22] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll [2014-12-22] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-15] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll [2012-12-13] (Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-01-10] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-01-10] (NVIDIA Corporation)

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 FanChkService; C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe [45696 2012-01-20] (ASUSTek Computer Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-01-30] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-03] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-03-23] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 HitmanPro37CrusaderBoot; "G:\Programy\Bezpečnost\Hitman\HitmanPro_x64.exe" /crusader:boot [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-08-14] (Qualcomm Atheros Communications, Inc.)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 DLPortIO; C:\Windows\SysWOW64\DRIVERS\DLPortIO.SYS [3584 2000-06-29] () [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [170280 2014-12-14] (ESET)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 tapoas; C:\Windows\system32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [268800 2014-01-28] (Jungo Connectivity)
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-16 21:21 - 2015-04-16 21:21 - 00325576 _____ () C:\Windows\Minidump\041615-5437-01.dmp
2015-04-16 21:14 - 2015-04-16 21:16 - 00000000 ____D () C:\Users\tom\Desktop\Bezp
2015-04-16 21:13 - 2015-04-16 21:13 - 00021850 _____ () C:\Users\tom\Documents\cc_20150416_211336.reg
2015-04-16 21:11 - 2015-04-16 21:11 - 1372651520 _____ () C:\Users\tom\Desktop\NBRT.iso
2015-04-16 14:25 - 2015-04-16 21:21 - 535890945 _____ () C:\Windows\MEMORY.DMP
2015-04-16 14:25 - 2015-04-16 14:25 - 00325416 _____ () C:\Windows\Minidump\041615-5312-01.dmp
2015-04-15 17:08 - 2015-04-15 17:08 - 00000144 _____ () C:\Users\tom\Downloads\nmap.install
2015-04-15 16:45 - 2015-04-15 16:45 - 00001418 _____ () C:\Users\tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-15 16:41 - 2015-04-17 15:36 - 00004524 _____ () C:\Windows\setupact.log
2015-04-15 16:41 - 2015-04-15 16:41 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-15 15:54 - 2015-04-17 15:56 - 00678857 _____ () C:\Windows\WindowsUpdate.log
2015-04-15 13:52 - 2015-04-15 13:52 - 00003814 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1429098722
2015-04-15 13:52 - 2015-04-15 13:52 - 00001143 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-04-15 13:52 - 2015-04-15 13:52 - 00000000 ____D () C:\Users\tom\AppData\Local\Opera Software
2015-04-15 13:51 - 2015-04-15 13:52 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-04-15 13:51 - 2015-04-15 13:51 - 00691664 _____ (Opera Software) C:\Users\tom\Downloads\Opera_NI_stable.exe
2015-04-15 13:46 - 2015-04-15 13:46 - 00000000 ____D () C:\_OTL
2015-04-15 13:21 - 2015-04-15 15:47 - 00000000 ___DC () C:\Users\tom\AppData\Local\MigWiz
2015-04-15 13:10 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 13:10 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 13:10 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-04-15 13:10 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 13:10 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-04-15 13:10 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2015-04-15 13:10 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 13:10 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 13:10 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-04-15 13:10 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-04-15 13:10 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-04-15 13:10 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-04-15 13:09 - 2015-03-13 06:32 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 13:09 - 2015-03-13 06:08 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 13:09 - 2015-03-13 06:07 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 13:09 - 2015-03-13 05:53 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-15 13:09 - 2015-03-13 05:50 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 13:09 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 13:09 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 13:09 - 2015-03-13 05:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 13:09 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 13:09 - 2015-03-13 05:17 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-04-15 13:09 - 2015-03-13 05:16 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-15 13:09 - 2015-03-13 05:08 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 13:09 - 2015-03-13 05:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 13:09 - 2015-03-13 05:00 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 13:09 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-04-15 13:09 - 2015-03-13 04:50 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-04-15 13:09 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 13:09 - 2015-03-13 04:45 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 13:09 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 13:09 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-04-15 13:09 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 13:09 - 2015-03-13 04:33 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 13:09 - 2015-03-13 04:22 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 13:09 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 13:09 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 13:09 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 13:09 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-04-15 13:09 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 13:09 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 13:09 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-14 20:45 - 2015-03-14 10:54 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-14 20:45 - 2015-03-14 03:56 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-14 20:45 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-14 20:45 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 20:45 - 2015-03-14 03:37 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-14 20:45 - 2015-03-14 03:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-14 20:45 - 2015-03-14 02:22 - 03678720 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-14 20:45 - 2015-03-14 02:12 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-14 20:45 - 2015-03-14 02:12 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-14 20:45 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-04-14 20:45 - 2015-03-14 02:08 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-04-14 20:45 - 2015-03-14 02:08 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-14 20:45 - 2015-03-14 02:06 - 02373632 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-14 20:45 - 2015-03-14 02:06 - 00891392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-14 20:45 - 2015-03-14 02:02 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-14 20:45 - 2015-03-14 02:02 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-14 20:45 - 2015-03-14 01:59 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-14 20:45 - 2015-03-14 01:59 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-14 18:12 - 2015-04-14 18:12 - 00000512 _____ () C:\PhysicalMBR.bin
2015-04-14 17:11 - 2015-04-14 17:11 - 00005314 _____ () C:\Users\tom\Desktop\RKreport_SCN_04142015_171121.log
2015-04-14 16:24 - 2015-04-14 16:24 - 01222144 _____ () C:\Users\tom\Downloads\RSITx64.exe
2015-04-14 15:28 - 2012-07-26 07:32 - 00125872 _____ (GEAR Software Inc.) C:\Windows\system32\GEARAspi64.dll
2015-04-14 15:28 - 2012-07-26 07:32 - 00106928 _____ (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll
2015-04-14 15:28 - 2012-07-26 07:32 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2015-04-14 15:27 - 2015-04-14 15:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Bootable Recovery Tool Wizard
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D () C:\Windows\system32\Drivers\NBRTWizardx64
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D () C:\Program Files (x86)\Norton Bootable Recovery Tool Wizard
2015-04-14 15:26 - 2015-04-16 21:09 - 00001358 _____ () C:\Users\tom\Desktop\Norton Installation Files.lnk
2015-04-13 18:29 - 2015-04-13 18:34 - 308004864 _____ () C:\Users\tom\Desktop\Kaspersky Rescue Disk 10.iso
2015-04-12 21:54 - 2015-04-12 22:21 - 00000000 ____D () C:\Program Files (x86)\Anti-Spy.Info
2015-04-12 21:54 - 2015-04-12 22:07 - 00000000 ____D () C:\ProgramData\AntiSpyInfo
2015-04-12 21:54 - 2015-04-12 21:54 - 02553160 _____ () C:\Users\tom\Downloads\antispy17.exe
2015-04-12 21:46 - 2015-04-14 16:25 - 00000000 ____D () C:\Program Files\trend micro
2015-04-12 21:46 - 2015-04-12 21:48 - 00000000 ____D () C:\rsit
2015-04-12 21:44 - 2015-04-17 16:04 - 00029696 _____ () C:\Users\tom\AppData\Local\MSGBOX.EXE
2015-04-12 21:44 - 2015-04-14 20:50 - 00000000 ____D () C:\Users\tom\Desktop\Bezpečnost
2015-04-12 21:36 - 2015-04-17 16:04 - 00000000 ____D () C:\FRST
2015-04-12 11:32 - 2015-04-12 11:32 - 00000000 ____D () C:\NPE
2015-04-11 15:50 - 2015-04-11 15:50 - 00010284 _____ () C:\Users\tom\eaglerc.usr
2015-04-11 15:45 - 2015-04-11 15:45 - 00032112 _____ () C:\Users\tom\Desktop\untitled.s##
2015-04-09 07:41 - 2015-04-09 07:42 - 340670464 _____ () C:\Users\tom\Downloads\eset-sysrescue.1.0.9.0.enu.iso
2015-04-08 20:15 - 2015-03-23 00:45 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00957440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-08 20:15 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-04-08 20:15 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-04-08 20:15 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-04-08 17:04 - 2015-04-08 17:04 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2015-04-08 13:18 - 2015-04-08 13:18 - 00000000 ____D () C:\ProgramData\Emsisoft
2015-04-08 13:08 - 2015-04-08 13:08 - 166740264 _____ (Emsisoft Ltd. ) C:\Users\tom\Downloads\EmsisoftAntiMalwareSetup_4382129.exe
2015-04-07 20:59 - 2015-04-07 20:59 - 00000000 ____D () C:\Users\tom\Desktop\RS232
2015-04-07 20:56 - 2015-04-07 20:58 - 00640736 _____ () C:\Users\tom\Desktop\COM Port.rar
2015-04-06 20:53 - 2015-04-06 20:54 - 05046784 _____ () C:\Users\tom\Downloads\reverse-schema-web.vsd
2015-04-06 17:13 - 2015-04-06 17:29 - 184364089 _____ () C:\Users\tom\Downloads\Moderni-programovani.rar
2015-04-06 17:12 - 2015-04-09 08:20 - 00000000 ____D () C:\Users\tom\Desktop\Programování mikrokontrolérů PIC16Cxx -BEN- Jiří Hrbáček
2015-04-06 17:08 - 2015-04-06 17:11 - 12989461 _____ () C:\Users\tom\Downloads\Programování-mikrokontrolérů-PIC16Cxx.zip
2015-04-06 07:44 - 2015-04-06 07:44 - 02208768 _____ () C:\Users\tom\Downloads\adwcleaner_4.200.exe
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2015-04-04 17:47 - 2015-04-04 17:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PonyProg
2015-04-04 17:47 - 2015-04-04 17:47 - 00000000 ____D () C:\Program Files (x86)\PonyProg2000
2015-04-04 17:44 - 2015-04-04 17:44 - 00003096 _____ () C:\Windows\System32\Tasks\{E14ED81C-88FC-428B-B3DC-B9E84D21AEDD}
2015-04-04 17:03 - 2015-04-05 10:37 - 00000000 ____D () C:\Users\tom\AppData\Roaming\VisualAssistAtmel
2015-04-04 17:03 - 2015-04-05 10:37 - 00000000 ____D () C:\Users\tom\AppData\Local\VisualAssistAtmel
2015-04-04 17:03 - 2015-04-04 17:03 - 00000000 ____D () C:\Users\tom\AppData\Local\IsolatedStorage
2015-04-04 17:02 - 2015-04-04 17:02 - 00002130 _____ () C:\Users\Public\Desktop\Atmel Studio 6.2.lnk
2015-04-04 16:59 - 2015-04-04 17:23 - 00000000 ____D () C:\Users\tom\Documents\Atmel Studio
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D () C:\Users\tom\AppData\Roaming\Atmel
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D () C:\Users\tom\AppData\Local\Atmel
2015-04-04 16:58 - 2015-04-04 17:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atmel
2015-04-04 16:57 - 2015-04-04 17:01 - 00000000 ____D () C:\Program Files (x86)\Atmel
2015-04-04 16:57 - 2014-02-06 09:01 - 00067680 _____ (http://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll
2015-04-04 16:57 - 2014-02-06 09:01 - 00042592 _____ (http://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\Drivers\libusb0.sys
2015-04-04 16:57 - 2014-01-28 07:59 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1150.dll
2015-04-04 16:57 - 2013-11-11 08:42 - 00147456 _____ (Jungo) C:\Windows\SysWOW64\wdapi1021.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1140.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1100.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi102.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2015-04-04 16:50 - 2015-04-09 07:44 - 00000000 ____D () C:\Users\tom\Documents\Visual Studio 2010
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D () C:\Windows\SysWOW64\1033
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D () C:\Windows\PCHEALTH
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2015-04-04 16:44 - 2015-04-04 16:46 - 587327768 _____ (Atmel) C:\Users\tom\Downloads\AStudio6_2sp2_1563.exe
2015-04-04 16:19 - 2011-05-01 14:58 - 00022902 _____ () C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.hex
2015-04-04 16:19 - 2011-05-01 14:58 - 00008136 _____ () C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.bin
2015-04-04 16:09 - 2015-04-05 16:23 - 00002382 _____ () C:\Users\tom\gdbtk.ini
2015-04-04 16:07 - 2015-04-04 16:07 - 00000000 ____D () C:\WinAVR-20100110
2015-04-04 16:07 - 2015-04-04 16:07 - 00000000 ____D () C:\Users\tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinAVR-20100110
2015-04-04 16:03 - 2015-04-04 16:03 - 28840282 _____ () C:\Users\tom\Desktop\WinAVR-20100110-install.exe
2015-04-03 21:52 - 2015-04-03 21:52 - 00003024 _____ () C:\Windows\System32\Tasks\brbrw_1280
2015-04-03 21:47 - 2015-04-03 21:47 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D () C:\Program Files (x86)\c8e441a9-abd4-4721-b704-cb9cbd0d2ddb
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D () C:\Program Files (x86)\c5c1e8b7-9d03-40f6-9ecf-a015924a15c0
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D () C:\Program Files (x86)\5a1f3589-0adb-4951-8a7b-a30922551845
2015-04-03 21:46 - 2015-04-03 21:46 - 00004224 _____ () C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_333733343637343037312d3734555b414a507857374a55
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D () C:\Users\tom\AppData\Local\CrashRpt
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2015-04-03 20:52 - 2015-04-03 20:52 - 04210464 _____ () C:\Users\tom\Desktop\SIM_editor_Smart.zip
2015-03-31 18:54 - 2015-03-31 18:55 - 11038926 _____ () C:\Users\tom\Desktop\The-XX---Intro.flac
2015-03-28 16:20 - 2015-03-28 16:20 - 00000210 _____ () C:\Windows\ODBCINST.INI
2015-03-28 16:20 - 2015-03-28 16:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Návrh transformátorů
2015-03-28 16:20 - 2015-03-28 16:20 - 00000000 ____D () C:\Program Files (x86)\Transformer
2015-03-28 13:38 - 2015-03-28 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Výpočet transformátoru
2015-03-28 13:37 - 2015-03-28 13:37 - 00477278 _____ () C:\Users\tom\Downloads\trafo.zip
2015-03-28 13:00 - 2015-03-28 13:00 - 07803328 _____ () C:\Users\tom\Desktop\transformátor.exe
2015-03-28 00:13 - 2015-04-16 21:29 - 00000000 ____D () C:\Users\tom\AppData\Roaming\Nitro PDF
2015-03-27 17:15 - 2015-03-27 17:15 - 00002547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 8.lnk
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D () C:\Users\tom\AppData\Roaming\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D () C:\ProgramData\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D () C:\Program Files\Common Files\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D () C:\Program Files (x86)\Nitro
2015-03-27 17:15 - 2012-12-13 12:47 - 00029704 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalmon2.dll
2015-03-27 17:15 - 2012-12-13 12:47 - 00017928 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalui2.dll
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D () C:\Users\tom\AppData\Roaming\Downloaded Installations
2015-03-26 19:26 - 2015-04-11 12:04 - 00394006 _____ () C:\Users\tom\Desktop\zdroj 60v 40a.sch
2015-03-20 23:47 - 2015-03-20 23:47 - 00048208 _____ () C:\Users\tom\Downloads\vchdiy-board-files.zip
2015-03-20 22:11 - 2015-03-20 22:11 - 00348240 _____ () C:\Users\tom\Downloads\keykeriki-v2-devdbg-hardware.zip
2015-03-20 17:15 - 2015-03-20 17:15 - 00019513 _____ () C:\Users\tom\Downloads\[GET] Adobe Acrobat XI Pro 11.0.7 Multilanguage.rar
2015-03-19 19:12 - 2015-03-19 19:12 - 10190296 _____ (PortableApps.com) C:\Users\tom\Downloads\SQLiteDatabaseBrowserPortable_3.5.1_English.paf.exe
2015-03-19 19:12 - 2015-03-19 19:12 - 00000000 ____D () C:\Users\tom\Downloads\SQLiteDatabaseBrowserPortable

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-17 16:02 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-04-17 15:43 - 2014-12-13 18:15 - 00739924 _____ () C:\Windows\system32\perfh005.dat
2015-04-17 15:43 - 2014-12-13 18:15 - 00151610 _____ () C:\Windows\system32\perfc005.dat
2015-04-17 15:43 - 2014-12-13 11:48 - 01745984 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-17 15:41 - 2015-01-15 16:51 - 00003592 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3332171635-80688016-592393309-1001
2015-04-17 15:35 - 2014-12-15 15:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-17 15:35 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-17 14:43 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-04-17 14:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-04-16 21:22 - 2014-12-17 13:51 - 00007605 _____ () C:\Users\tom\AppData\Local\Resmon.ResmonCfg
2015-04-16 21:21 - 2014-12-13 21:25 - 00000000 ____D () C:\Windows\Minidump
2015-04-16 21:09 - 2015-01-15 16:40 - 00000000 ____D () C:\ProgramData\Norton
2015-04-16 19:33 - 2014-12-13 11:50 - 00003958 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6C40A664-6612-43B9-B571-28453941D32F}
2015-04-16 14:53 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2015-04-16 14:36 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-04-15 17:41 - 2015-01-01 13:33 - 00000000 ____D () C:\ProgramData\Oracle
2015-04-15 17:41 - 2015-01-01 13:33 - 00000000 ____D () C:\Program Files (x86)\Java
2015-04-15 17:40 - 2015-01-01 13:34 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-04-15 15:47 - 2015-01-19 20:06 - 00000000 ____D () C:\KMPlayer
2015-04-15 15:47 - 2015-01-16 14:01 - 00000000 ____D () C:\Users\tom\AppData\Local\CrashDumps
2015-04-15 13:53 - 2014-12-14 10:07 - 00000000 ____D () C:\Users\tom\AppData\Local\Google
2015-04-15 13:53 - 2014-12-14 10:07 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-15 13:52 - 2015-01-16 13:58 - 00000000 ____D () C:\Users\tom\AppData\Roaming\Opera Software
2015-04-15 13:36 - 2014-12-14 09:13 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 13:36 - 2014-12-14 09:12 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 13:29 - 2014-12-13 11:50 - 00000000 ____D () C:\Users\tom
2015-04-14 17:08 - 2015-01-27 20:34 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-04-14 15:26 - 2015-01-15 17:30 - 00000000 ____D () C:\Users\Public\Downloads\Norton
2015-04-14 01:24 - 2014-12-14 09:36 - 00792056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 01:24 - 2014-12-14 09:36 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-13 18:19 - 2015-02-22 16:42 - 00000000 ____D () C:\AdwCleaner
2015-04-12 19:58 - 2015-03-14 20:49 - 00000000 ____D () C:\Users\tom\Desktop\RFID Emulator
2015-04-12 11:37 - 2015-01-15 16:40 - 00000000 ____D () C:\Users\tom\AppData\Local\NPE
2015-04-10 08:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppCompat
2015-04-09 07:49 - 2014-12-13 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2015-04-08 20:15 - 2014-12-14 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-08 20:15 - 2014-12-14 11:58 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-08 17:04 - 2015-01-16 17:09 - 00003850 _____ () C:\Windows\system32\.crusader
2015-04-08 17:04 - 2015-01-16 16:49 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-04-06 12:26 - 2014-12-13 12:58 - 00000000 ____D () C:\Users\tom\AppData\Roaming\uTorrent
2015-04-06 09:48 - 2012-03-22 10:51 - 00000000 ____D () C:\Users\tom\Desktop\RFID Reader
2015-04-06 07:33 - 2015-02-22 18:41 - 00000000 ____D () C:\Users\tom\Desktop\Proramátor
2015-04-04 17:46 - 2015-02-15 12:57 - 00000000 ____D () C:\Users\tom\Desktop\SIM clone -Klonování sim
2015-04-04 16:58 - 2014-12-14 10:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-04 16:57 - 2015-02-03 16:24 - 00000000 ____D () C:\ProgramData\Package Cache
2015-04-04 10:43 - 2015-02-22 15:00 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-04 10:43 - 2015-01-20 19:10 - 00000000 ____D () C:\Program Files (x86)\AC3Filter
2015-04-03 21:46 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-01 15:13 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-28 16:21 - 2015-01-14 21:27 - 00000000 ____D () C:\Users\tom\AppData\Local\VirtualStore
2015-03-28 00:12 - 2013-08-22 16:44 - 00473040 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-27 17:05 - 2015-02-22 15:00 - 00000000 ____D () C:\ProgramData\Adobe
2015-03-24 16:11 - 2015-02-23 14:28 - 00000000 ____D () C:\Users\tom\Desktop\Kyocera

==================== Files in the root of some directories =======

2015-01-14 14:49 - 2015-01-14 14:49 - 0000001 _____ () C:\Users\tom\AppData\Local\llftool.4.25.agreement
2015-04-12 21:44 - 2015-04-17 16:04 - 0029696 _____ () C:\Users\tom\AppData\Local\MSGBOX.EXE
2014-12-17 13:51 - 2015-04-16 21:22 - 0007605 _____ () C:\Users\tom\AppData\Local\Resmon.ResmonCfg

Some content of TEMP:
====================
C:\Users\tom\AppData\Local\Temp\jre-8u45-windows-au.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-04-08 16:58

==================== End Of Log ============================

konu · #20 Příspěvek od **konu** » 17 dub 2015 15:38

Kód: Vybrat vše

MBRScan v1.1.1

OS             : Windows 8  (64 bit)
PROCESSOR      : Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
BOOT           : Normal Boot
DATE           : 2015/04/17 (ISO 8601) at 16:37:40
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __ADATA SX900 (5.0.7a)
BUS_TYPE       : (0x0B)  S-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

DISK           : Device\Harddisk1\DR1 __WDC WD10JPVX-00JC3T0 (01.01A01)
BUS_TYPE       : (0x0B)  S-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

Device\Harddisk0\DR0	119.2 Go  [Fixed] ==> 7 MBR Code

MBR_MD5   : 9DDB2CBE5F9463B7E683ADD6F49E8DCC
MBR_SHA1  : 188E99970FD07ADF61D474576A671E7BCE0D90A6

Device\Harddisk0\Partition1	100.0 Mo  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2	119.1 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk1\DR1	931.5 Go  [Fixed] ==> 7 MBR Code

MBR_MD5   : 458418546A14F847BFCB1E83841EDB52
MBR_SHA1  : CF3F4821AD3E0AFEF6DE140F9DA419B13930041B

Device\Harddisk1\Partition1	931.5 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

############################### Additional scan ################################

DRIVER  : C:\Windows\system32\ntoskrnl.exe => Invisible on the disk
ADDRESS : 0xB9009000
SIZE    : 7.58 Mo

DRIVER  : C:\Windows\system32\hal.dll => Invisible on the disk
ADDRESS : 0xB979D000
SIZE    : 448.0 Ko

DRIVER  : C:\Windows\system32\kd.dll => Invisible on the disk
ADDRESS : 0xB832B000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\system32\mcupdate_GenuineIntel.dll => Invisible on the disk
ADDRESS : 0xE1662000
SIZE    : 500.0 Ko

DRIVER  : C:\Windows\System32\drivers\werkernel.sys => Invisible on the disk
ADDRESS : 0xE16DF000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\drivers\CLFS.SYS => Invisible on the disk
ADDRESS : 0xE16ED000
SIZE    : 392.0 Ko

DRIVER  : C:\Windows\System32\drivers\tm.sys => Invisible on the disk
ADDRESS : 0xE174F000
SIZE    : 136.0 Ko

DRIVER  : C:\Windows\system32\CI.dll => Invisible on the disk
ADDRESS : 0xE184C000
SIZE    : 544.0 Ko

DRIVER  : C:\Windows\System32\drivers\msrpc.sys => Invisible on the disk
ADDRESS : 0xE18D4000
SIZE    : 372.0 Ko

DRIVER  : C:\Windows\system32\drivers\Wdf01000.sys => Invisible on the disk
ADDRESS : 0xE1931000
SIZE    : 828.0 Ko

DRIVER  : C:\Windows\system32\drivers\WDFLDR.SYS => Invisible on the disk
ADDRESS : 0xE1800000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\System32\Drivers\acpiex.sys => Invisible on the disk
ADDRESS : 0xE1811000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\System32\Drivers\WppRecorder.sys => Invisible on the disk
ADDRESS : 0xE1829000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\drivers\ACPI.sys => Invisible on the disk
ADDRESS : 0xE1A2B000
SIZE    : 544.0 Ko

DRIVER  : C:\Windows\System32\drivers\WMILIB.SYS => Invisible on the disk
ADDRESS : 0xE1AB3000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\System32\Drivers\cng.sys => Invisible on the disk
ADDRESS : 0xE1ABD000
SIZE    : 560.0 Ko

DRIVER  : C:\Windows\System32\drivers\msisadrv.sys => Invisible on the disk
ADDRESS : 0xE1B49000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\System32\drivers\pci.sys => Invisible on the disk
ADDRESS : 0xE1B53000
SIZE    : 288.0 Ko

DRIVER  : C:\Windows\System32\drivers\vdrvroot.sys => Invisible on the disk
ADDRESS : 0xE1B9B000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\drivers\pdc.sys => Invisible on the disk
ADDRESS : 0xE1BA8000
SIZE    : 112.0 Ko

DRIVER  : C:\Windows\System32\drivers\partmgr.sys => Invisible on the disk
ADDRESS : 0xE1BC4000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\System32\drivers\spaceport.sys => Invisible on the disk
ADDRESS : 0xE1790000
SIZE    : 420.0 Ko

DRIVER  : C:\Windows\System32\drivers\volmgr.sys => Invisible on the disk
ADDRESS : 0xE1BDC000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\System32\drivers\volmgrx.sys => Invisible on the disk
ADDRESS : 0xE1600000
SIZE    : 380.0 Ko

DRIVER  : C:\Windows\System32\drivers\mountmgr.sys => Invisible on the disk
ADDRESS : 0xE1A00000
SIZE    : 108.0 Ko

DRIVER  : C:\Windows\System32\drivers\storahci.sys => Invisible on the disk
ADDRESS : 0xE1C66000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\System32\drivers\storport.sys => Invisible on the disk
ADDRESS : 0xE1C83000
SIZE    : 376.0 Ko

DRIVER  : C:\Windows\system32\drivers\fltmgr.sys => Invisible on the disk
ADDRESS : 0xE1CFB000
SIZE    : 368.0 Ko

DRIVER  : C:\Windows\System32\drivers\fileinfo.sys => Invisible on the disk
ADDRESS : 0xE1D57000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Wof.sys => Invisible on the disk
ADDRESS : 0xE1D6D000
SIZE    : 172.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Ntfs.sys => Invisible on the disk
ADDRESS : 0xE1E6B000
SIZE    : 1.98 Mo

DRIVER  : C:\Windows\System32\Drivers\ksecdd.sys => Invisible on the disk
ADDRESS : 0xE2065000
SIZE    : 112.0 Ko

DRIVER  : C:\Windows\System32\drivers\pcw.sys => Invisible on the disk
ADDRESS : 0xE2081000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Fs_Rec.sys => Invisible on the disk
ADDRESS : 0xE2091000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\system32\drivers\ndis.sys => Invisible on the disk
ADDRESS : 0xE209C000
SIZE    : 1.09 Mo

DRIVER  : C:\Windows\system32\drivers\NETIO.SYS => Invisible on the disk
ADDRESS : 0xE22E5000
SIZE    : 480.0 Ko

DRIVER  : C:\Windows\System32\Drivers\ksecpkg.sys => Invisible on the disk
ADDRESS : 0xE235D000
SIZE    : 196.0 Ko

DRIVER  : C:\Windows\System32\drivers\tcpip.sys => Invisible on the disk
ADDRESS : 0xE247F000
SIZE    : 2.42 Mo

DRIVER  : C:\Windows\System32\drivers\fwpkclnt.sys => Invisible on the disk
ADDRESS : 0xE26EB000
SIZE    : 432.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\epfwwfp.sys => Invisible on the disk
ADDRESS : 0xE2757000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\wfplwfs.sys => Invisible on the disk
ADDRESS : 0xE276C000
SIZE    : 148.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\fvevol.sys => Invisible on the disk
ADDRESS : 0xE2200000
SIZE    : 596.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\edevmon.sys => Invisible on the disk
ADDRESS : 0xE2791000
SIZE    : 252.0 Ko

DRIVER  : C:\Windows\System32\drivers\volsnap.sys => Invisible on the disk
ADDRESS : 0xE2400000
SIZE    : 316.0 Ko

DRIVER  : C:\Windows\System32\drivers\rdyboost.sys => Invisible on the disk
ADDRESS : 0xE2295000
SIZE    : 280.0 Ko

DRIVER  : C:\Windows\System32\Drivers\mup.sys => Invisible on the disk
ADDRESS : 0xE244F000
SIZE    : 92.0 Ko

DRIVER  : C:\Windows\System32\drivers\intelpep.sys => Invisible on the disk
ADDRESS : 0xE2466000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\System32\drivers\disk.sys => Invisible on the disk
ADDRESS : 0xE27DC000
SIZE    : 112.0 Ko

DRIVER  : C:\Windows\System32\drivers\CLASSPNP.SYS => Invisible on the disk
ADDRESS : 0xE238E000
SIZE    : 344.0 Ko

DRIVER  : C:\Windows\System32\Drivers\crashdmp.sys => Invisible on the disk
ADDRESS : 0xE23E4000
SIZE    : 84.0 Ko

DRIVER  : C:\Windows\System32\drivers\cdrom.sys => Invisible on the disk
ADDRESS : 0xE1E00000
SIZE    : 184.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\eamonm.sys => Invisible on the disk
ADDRESS : 0xE2A65000
SIZE    : 828.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Null.SYS => Invisible on the disk
ADDRESS : 0xE2B34000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Beep.SYS => Invisible on the disk
ADDRESS : 0xE2B3D000
SIZE    : 32.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ehdrv.sys => Invisible on the disk
ADDRESS : 0xE2B45000
SIZE    : 180.0 Ko

DRIVER  : C:\Windows\System32\drivers\BasicRender.sys => Invisible on the disk
ADDRESS : 0xE2B72000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\drivers\dxgkrnl.sys => Invisible on the disk
ADDRESS : 0xE2C7A000
SIZE    : 1.50 Mo

DRIVER  : C:\Windows\System32\drivers\watchdog.sys => Invisible on the disk
ADDRESS : 0xE2C00000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\System32\drivers\dxgmms1.sys => Invisible on the disk
ADDRESS : 0xE2C12000
SIZE    : 396.0 Ko

DRIVER  : C:\Windows\System32\drivers\BasicDisplay.sys => Invisible on the disk
ADDRESS : 0xE2B80000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Npfs.SYS => Invisible on the disk
ADDRESS : 0xE2B92000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\System32\Drivers\Msfs.SYS => Invisible on the disk
ADDRESS : 0xE2BA6000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tdx.sys => Invisible on the disk
ADDRESS : 0xE2BB2000
SIZE    : 128.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\TDI.SYS => Invisible on the disk
ADDRESS : 0xE2BD2000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\system32\drivers\ws2ifsl.sys => Invisible on the disk
ADDRESS : 0xE2BE0000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\netbt.sys => Invisible on the disk
ADDRESS : 0xE2A00000
SIZE    : 304.0 Ko

DRIVER  : C:\Windows\system32\drivers\afd.sys => Invisible on the disk
ADDRESS : 0xE2EAA000
SIZE    : 584.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\pacer.sys => Invisible on the disk
ADDRESS : 0xE2F3C000
SIZE    : 168.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\vwififlt.sys => Invisible on the disk
ADDRESS : 0xE2F66000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\EpfwLWF.sys => Invisible on the disk
ADDRESS : 0xE2F7E000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\netbios.sys => Invisible on the disk
ADDRESS : 0xE2F8C000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rdbss.sys => Invisible on the disk
ADDRESS : 0xE2E00000
SIZE    : 448.0 Ko

DRIVER  : C:\Windows\system32\drivers\csc.sys => Invisible on the disk
ADDRESS : 0xE30BC000
SIZE    : 568.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\wanarp.sys => Invisible on the disk
ADDRESS : 0xE314A000
SIZE    : 100.0 Ko

DRIVER  : C:\Windows\System32\Drivers\SCDEmu.SYS => Invisible on the disk
ADDRESS : 0xE3163000
SIZE    : 156.0 Ko

DRIVER  : C:\Windows\system32\drivers\nsiproxy.sys => Invisible on the disk
ADDRESS : 0xE318A000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\drivers\npsvctrig.sys => Invisible on the disk
ADDRESS : 0xE3198000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\System32\drivers\mssmbios.sys => Invisible on the disk
ADDRESS : 0xE31A4000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\System32\Drivers\dfsc.sys => Invisible on the disk
ADDRESS : 0xE31B0000
SIZE    : 152.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ahcache.sys => Invisible on the disk
ADDRESS : 0xE3000000
SIZE    : 92.0 Ko

DRIVER  : C:\Windows\system32\drivers\windrvr6.sys => Invisible on the disk
ADDRESS : 0xE3017000
SIZE    : 288.0 Ko

DRIVER  : C:\Windows\system32\drivers\USBD.SYS => Invisible on the disk
ADDRESS : 0xE305F000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tap0901.sys => Invisible on the disk
ADDRESS : 0xE306B000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tapoas.sys => Invisible on the disk
ADDRESS : 0xE3078000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\System32\drivers\CompositeBus.sys => Invisible on the disk
ADDRESS : 0xE3085000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\kdnic.sys => Invisible on the disk
ADDRESS : 0xE3094000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\drivers\umbus.sys => Invisible on the disk
ADDRESS : 0xE309F000
SIZE    : 68.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\nvlddmkm.sys => Invisible on the disk
ADDRESS : 0xE3202000
SIZE    : 10.05 Mo

DRIVER  : C:\Windows\System32\drivers\HDAudBus.sys => Invisible on the disk
ADDRESS : 0xE3C10000
SIZE    : 100.0 Ko

DRIVER  : C:\Windows\System32\drivers\USBXHCI.SYS => Invisible on the disk
ADDRESS : 0xE3C29000
SIZE    : 340.0 Ko

DRIVER  : C:\Windows\System32\drivers\ucx01000.sys => Invisible on the disk
ADDRESS : 0xE3C7E000
SIZE    : 200.0 Ko

DRIVER  : C:\Windows\System32\drivers\HECIx64.sys => Invisible on the disk
ADDRESS : 0xE3CB0000
SIZE    : 76.0 Ko

DRIVER  : C:\Windows\System32\drivers\usbehci.sys => Invisible on the disk
ADDRESS : 0xE3CC3000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\System32\drivers\USBPORT.SYS => Invisible on the disk
ADDRESS : 0xE3CDB000
SIZE    : 444.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\athwbx.sys => Invisible on the disk
ADDRESS : 0xE3E78000
SIZE    : 3.71 Mo

DRIVER  : C:\Windows\System32\drivers\vwifibus.sys => Invisible on the disk
ADDRESS : 0xE422D000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\L1C63x64.sys => Invisible on the disk
ADDRESS : 0xE423A000
SIZE    : 136.0 Ko

DRIVER  : C:\Windows\System32\drivers\i8042prt.sys => Invisible on the disk
ADDRESS : 0xE425C000
SIZE    : 124.0 Ko

DRIVER  : C:\Windows\System32\drivers\mouclass.sys => Invisible on the disk
ADDRESS : 0xE427B000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\System32\drivers\kbdclass.sys => Invisible on the disk
ADDRESS : 0xE428B000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\GEARAspiWDM.sys => Invisible on the disk
ADDRESS : 0xE429D000
SIZE    : 28.0 Ko

DRIVER  : C:\Windows\System32\drivers\CmBatt.sys => Invisible on the disk
ADDRESS : 0xE42A4000
SIZE    : 28.0 Ko

DRIVER  : C:\Windows\System32\drivers\BATTC.SYS => Invisible on the disk
ADDRESS : 0xE42AB000
SIZE    : 48.0 Ko

DRIVER  : C:\Windows\System32\drivers\intelppm.sys => Invisible on the disk
ADDRESS : 0xE42B7000
SIZE    : 120.0 Ko

DRIVER  : C:\Windows\System32\drivers\wmiacpi.sys => Invisible on the disk
ADDRESS : 0xE42D5000
SIZE    : 40.0 Ko

DRIVER  : C:\Windows\System32\drivers\AsHIDSwitch64.sys => Invisible on the disk
ADDRESS : 0xE42DF000
SIZE    : 32.0 Ko

DRIVER  : C:\Windows\System32\drivers\HIDCLASS.SYS => Invisible on the disk
ADDRESS : 0xE42E7000
SIZE    : 124.0 Ko

DRIVER  : C:\Windows\System32\drivers\HIDPARSE.SYS => Invisible on the disk
ADDRESS : 0xE4306000
SIZE    : 32.0 Ko

DRIVER  : C:\Windows\system32\drivers\nvvad64v.sys => Invisible on the disk
ADDRESS : 0xE430E000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\drivers\portcls.sys => Invisible on the disk
ADDRESS : 0xE431B000
SIZE    : 284.0 Ko

DRIVER  : C:\Windows\system32\drivers\drmk.sys => Invisible on the disk
ADDRESS : 0xE4362000
SIZE    : 112.0 Ko

DRIVER  : C:\Windows\system32\drivers\ks.sys => Invisible on the disk
ADDRESS : 0xE437E000
SIZE    : 312.0 Ko

DRIVER  : C:\Windows\system32\drivers\ksthunk.sys => Invisible on the disk
ADDRESS : 0xE43CC000
SIZE    : 24.0 Ko

DRIVER  : C:\Windows\System32\drivers\NdisVirtualBus.sys => Invisible on the disk
ADDRESS : 0xE43D2000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\drivers\swenum.sys => Invisible on the disk
ADDRESS : 0xE43DD000
SIZE    : 8.0 Ko

DRIVER  : C:\Windows\System32\drivers\rdpbus.sys => Invisible on the disk
ADDRESS : 0xE43DF000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\drivers\usbhub.sys => Invisible on the disk
ADDRESS : 0xE3E00000
SIZE    : 424.0 Ko

DRIVER  : C:\Windows\system32\drivers\nvhda64v.sys => Invisible on the disk
ADDRESS : 0xE3D4A000
SIZE    : 208.0 Ko

DRIVER  : C:\Windows\System32\drivers\UsbHub3.sys => Invisible on the disk
ADDRESS : 0xE3D7E000
SIZE    : 480.0 Ko

DRIVER  : C:\Windows\system32\drivers\viahduaa.sys => Invisible on the disk
ADDRESS : 0xE44EE000
SIZE    : 2.14 Mo

DRIVER  : C:\Windows\System32\win32k.sys => Invisible on the disk
ADDRESS : 0x0016B000
SIZE    : 4.09 Mo

DRIVER  : C:\Windows\System32\Drivers\dump_storahci.sys => Invisible on the disk
ADDRESS : 0xE471D000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\System32\drivers\hidusb.sys => Invisible on the disk
ADDRESS : 0xE4750000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\drivers\mouhid.sys => Invisible on the disk
ADDRESS : 0xE475E000
SIZE    : 52.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\nvstusb.sys => Invisible on the disk
ADDRESS : 0xE476B000
SIZE    : 452.0 Ko

DRIVER  : C:\Windows\System32\TSDDD.dll => Invisible on the disk
ADDRESS : 0x007F1000
SIZE    : 36.0 Ko

DRIVER  : C:\Windows\System32\drivers\monitor.sys => Invisible on the disk
ADDRESS : 0xE47DC000
SIZE    : 56.0 Ko

DRIVER  : C:\Windows\System32\cdd.dll => Invisible on the disk
ADDRESS : 0x008A9000
SIZE    : 232.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\btfilter.sys => Invisible on the disk
ADDRESS : 0xE4400000
SIZE    : 668.0 Ko

DRIVER  : C:\Windows\System32\Drivers\BTHUSB.sys => Invisible on the disk
ADDRESS : 0xE44A7000
SIZE    : 100.0 Ko

DRIVER  : C:\Windows\System32\Drivers\bthport.sys => Invisible on the disk
ADDRESS : 0xE48BC000
SIZE    : 1.17 Mo

DRIVER  : C:\Windows\System32\drivers\usbccgp.sys => Invisible on the disk
ADDRESS : 0xE4800000
SIZE    : 156.0 Ko

DRIVER  : C:\Windows\system32\drivers\luafv.sys => Invisible on the disk
ADDRESS : 0xE4827000
SIZE    : 144.0 Ko

DRIVER  : C:\Windows\System32\Drivers\usbvideo.sys => Invisible on the disk
ADDRESS : 0xE484B000
SIZE    : 208.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\epfw.sys => Invisible on the disk
ADDRESS : 0xE487F000
SIZE    : 228.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\lltdio.sys => Invisible on the disk
ADDRESS : 0xE49E7000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\nwifi.sys => Invisible on the disk
ADDRESS : 0xE4CCD000
SIZE    : 464.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\ndisuio.sys => Invisible on the disk
ADDRESS : 0xE4D41000
SIZE    : 80.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\rspndr.sys => Invisible on the disk
ADDRESS : 0xE4D55000
SIZE    : 96.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\vwifimp.sys => Invisible on the disk
ADDRESS : 0xE4D75000
SIZE    : 60.0 Ko

DRIVER  : C:\Windows\system32\drivers\HTTP.sys => Invisible on the disk
ADDRESS : 0xE4E8A000
SIZE    : 1000.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\bowser.sys => Invisible on the disk
ADDRESS : 0xE4F84000
SIZE    : 128.0 Ko

DRIVER  : C:\Windows\System32\drivers\mpsdrv.sys => Invisible on the disk
ADDRESS : 0xE4FA4000
SIZE    : 92.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
ADDRESS : 0xE4E00000
SIZE    : 436.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
ADDRESS : 0xE4FBB000
SIZE    : 224.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
ADDRESS : 0xE4D84000
SIZE    : 300.0 Ko

DRIVER  : C:\Windows\system32\drivers\Ndu.sys => Invisible on the disk
ADDRESS : 0xE4E6D000
SIZE    : 116.0 Ko

DRIVER  : C:\Windows\system32\drivers\peauth.sys => Invisible on the disk
ADDRESS : 0xE4C00000
SIZE    : 676.0 Ko

DRIVER  : C:\Windows\System32\Drivers\secdrv.SYS => Invisible on the disk
ADDRESS : 0xE4FF3000
SIZE    : 44.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\srvnet.sys => Invisible on the disk
ADDRESS : 0xE2F9D000
SIZE    : 268.0 Ko

DRIVER  : C:\Windows\System32\drivers\tcpipreg.sys => Invisible on the disk
ADDRESS : 0xE4CA9000
SIZE    : 72.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\srv2.sys => Invisible on the disk
ADDRESS : 0xE5073000
SIZE    : 692.0 Ko

DRIVER  : C:\Windows\System32\DRIVERS\srv.sys => Invisible on the disk
ADDRESS : 0xE5120000
SIZE    : 568.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\tunnel.sys => Invisible on the disk
ADDRESS : 0xE5000000
SIZE    : 180.0 Ko

DRIVER  : C:\Windows\System32\drivers\condrv.sys => Invisible on the disk
ADDRESS : 0xE502D000
SIZE    : 64.0 Ko

DRIVER  : C:\Windows\system32\DRIVERS\mslldp.sys => Invisible on the disk
ADDRESS : 0xE503D000
SIZE    : 88.0 Ko

DRIVER  : C:\Windows\system32\drivers\WudfPf.sys => Invisible on the disk
ADDRESS : 0xE51D4000
SIZE    : 132.0 Ko

DRIVER  : C:\Windows\System32\Drivers\fastfat.SYS => Invisible on the disk
ADDRESS : 0xE2E70000
SIZE    : 228.0 Ko

SystemStartOptions :  NOEXECUTE=OPTIN

________________________________________________________________________________

_______MBR   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.Ð¼.|.À.Ø¾.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84   N.u..~......².ë.
0x000000B0   55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55   U2ä.V.Í.]ë..>þ}U
0x000000C0   AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64   ªun.v.è..u.ú°Ñæd
0x000000D0   E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75   è..°ßæ`è|.°.ædèu
0x000000E0   00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54   .û¸.»Í.f#Àu;f.ûT
0x000000F0   43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00   CPAu2.ù..r,fh.».
0x00000100   00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66   .fh....fh....fSf
0x00000110   53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66   SfUfh....fh.|..f
0x00000120   61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD   ah...Í.Z2öê.|..Í
0x00000130   18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4   ..·.ë..¶.ë..µ.2ä
0x00000140   05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD   ....ð¬<.t.»..´.Í
0x00000150   10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8   .ëòôëý+Éädë.$.àø
0x00000160   24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69   $.ÃInvalid parti
0x00000170   74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72   tion table.Error
0x00000180   20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69    loading operati
0x00000190   6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E   ng system.Missin
0x000001A0   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x000001B0   65 6D 00 00 00 63 7B 9A 7E 14 59 8D 65 63 80 20   em...c{.~.Y.ec. 
0x000001C0   21 00 07 DF 13 0C 00 08 00 00 00 20 03 00 00 DF   !..ß....... ...ß
0x000001D0   14 0C 07 FE FF FF 00 28 03 00 4E 93 E4 0E 00 00   ...þ...(..N.ä...
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

__________________________16_BIT_ASM_CODE
   
0x0000    33c0            XOR AX, AX   
0x0002    8ed0            MOV SS, AX   
0x0004    bc 007c         MOV SP, 0x7c00   
0x0007    8ec0            MOV ES, AX   
0x0009    8ed8            MOV DS, AX   
0x000B    be 007c         MOV SI, 0x7c00   
0x000E    bf 0006         MOV DI, 0x600   
0x0011    b9 0002         MOV CX, 0x200   
0x0014    fc              CLD   
0x0015    f3 a4           REP MOVSB   
0x0017    50              PUSH AX   
0x0018    68 1c06         PUSH 0x61c   
0x001B    cb              RETF   
0x001C    fb              STI   
0x001D    b9 0400         MOV CX, 0x4   
0x0020    bd be07         MOV BP, 0x7be   
0x0023    807e 00 00      CMP BYTE [BP+0x0], 0x0   
0x0027    7c 0b           JL 0x34   
0x0029    0f85 0e01       JNZ 0x13b   
0x002D    83c5 10         ADD BP, 0x10   
0x0030    e2 f1           LOOP 0x23   
0x0032    cd 18           INT 0x18   
0x0034    8856 00         MOV [BP+0x0], DL   
0x0037    55              PUSH BP   
0x0038    c646 11 05      MOV BYTE [BP+0x11], 0x5   
0x003C    c646 10 00      MOV BYTE [BP+0x10], 0x0   
0x0040    b4 41           MOV AH, 0x41   
0x0042    bb aa55         MOV BX, 0x55aa   
0x0045    cd 13           INT 0x13   
0x0047    5d              POP BP   
0x0048    72 0f           JB 0x59   
0x004A    81fb 55aa       CMP BX, 0xaa55   
0x004E    75 09           JNZ 0x59   
0x0050    f7c1 0100       TEST CX, 0x1   
0x0054    74 03           JZ 0x59   
0x0056    fe46 10         INC BYTE [BP+0x10]   
0x0059    66 60           PUSHAD   
0x005B    807e 10 00      CMP BYTE [BP+0x10], 0x0   
0x005F    74 26           JZ 0x87   
0x0061    66 68 00000000  PUSH 0x0   
0x0067    66 ff76 08      PUSH DWORD [BP+0x8]   
0x006B    68 0000         PUSH 0x0   
0x006E    68 007c         PUSH 0x7c00   
0x0071    68 0100         PUSH 0x1   
0x0074    68 1000         PUSH 0x10   
0x0077    b4 42           MOV AH, 0x42   
0x0079    8a56 00         MOV DL, [BP+0x0]   
0x007C    8bf4            MOV SI, SP   
0x007E    cd 13           INT 0x13   
0x0080    9f              LAHF   
0x0081    83c4 10         ADD SP, 0x10   
0x0084    9e              SAHF   
0x0085    eb 14           JMP 0x9b   
0x0087    b8 0102         MOV AX, 0x201   
0x008A    bb 007c         MOV BX, 0x7c00   
0x008D    8a56 00         MOV DL, [BP+0x0]   
0x0090    8a76 01         MOV DH, [BP+0x1]   
0x0093    8a4e 02         MOV CL, [BP+0x2]   
0x0096    8a6e 03         MOV CH, [BP+0x3]   
0x0099    cd 13           INT 0x13   
0x009B    66 61           POPAD   
0x009D    73 1c           JAE 0xbb   
0x009F    fe4e 11         DEC BYTE [BP+0x11]   
0x00A2    75 0c           JNZ 0xb0   
0x00A4    807e 00 80      CMP BYTE [BP+0x0], 0x80   
0x00A8    0f84 8a00       JZ 0x136   
0x00AC    b2 80           MOV DL, 0x80   
0x00AE    eb 84           JMP 0x34   
0x00B0    55              PUSH BP   
0x00B1    32e4            XOR AH, AH   
0x00B3    8a56 00         MOV DL, [BP+0x0]   
0x00B6    cd 13           INT 0x13   
0x00B8    5d              POP BP   
0x00B9    eb 9e           JMP 0x59   
0x00BB    813e fe7d 55aa  CMP WORD [0x7dfe], 0xaa55   
0x00C1    75 6e           JNZ 0x131   
0x00C3    ff76 00         PUSH WORD [BP+0x0]   
0x00C6    e8 8d00         CALL 0x156   
0x00C9    75 17           JNZ 0xe2   
0x00CB    fa              CLI   
0x00CC    b0 d1           MOV AL, 0xd1   
0x00CE    e6 64           OUT 0x64, AL   
0x00D0    e8 8300         CALL 0x156   
0x00D3    b0 df           MOV AL, 0xdf   
0x00D5    e6 60           OUT 0x60, AL   
0x00D7    e8 7c00         CALL 0x156   
0x00DA    b0 ff           MOV AL, 0xff   
0x00DC    e6 64           OUT 0x64, AL   
0x00DE    e8 7500         CALL 0x156   
0x00E1    fb              STI   
0x00E2    b8 00bb         MOV AX, 0xbb00   
0x00E5    cd 1a           INT 0x1a   
0x00E7    66 23c0         AND EAX, EAX   
0x00EA    75 3b           JNZ 0x127   
0x00EC    66 81fb 54435041CMP EBX, 0x41504354   
0x00F3    75 32           JNZ 0x127   
0x00F5    81f9 0201       CMP CX, 0x102   
0x00F9    72 2c           JB 0x127   
0x00FB    66 68 07bb0000  PUSH 0xbb07   
0x0101    66 68 00020000  PUSH 0x200   
0x0107    66 68 08000000  PUSH 0x8   
0x010D    66 53           PUSH EBX   
0x010F    66 53           PUSH EBX   
0x0111    66 55           PUSH EBP   
0x0113    66 68 00000000  PUSH 0x0   
0x0119    66 68 007c0000  PUSH 0x7c00   
0x011F    66 61           POPAD   
0x0121    68 0000         PUSH 0x0   
0x0124    07              POP ES   
0x0125    cd 1a           INT 0x1a   
0x0127    5a              POP DX   
0x0128    32f6            XOR DH, DH   
0x012A    ea 007c 0000    JMP FAR 0x0:0x7c00   
0x012F    cd 18           INT 0x18   
0x0131    a0 b707         MOV AL, [0x7b7]   
0x0134    eb 08           JMP 0x13e   
0x0136    a0 b607         MOV AL, [0x7b6]   
0x0139    eb 03           JMP 0x13e   
0x013B    a0 b507         MOV AL, [0x7b5]   
0x013E    32e4            XOR AH, AH   
0x0140    05 0007         ADD AX, 0x700   
0x0143    8bf0            MOV SI, AX   
0x0145    ac              LODSB   
0x0146    3c 00           CMP AL, 0x0   
0x0148    74 09           JZ 0x153   
0x014A    bb 0700         MOV BX, 0x7   
0x014D    b4 0e           MOV AH, 0xe   
0x014F    cd 10           INT 0x10   
0x0151    eb f2           JMP 0x145   
0x0153    f4              HLT   
0x0154    eb fd           JMP 0x153   
0x0156    2bc9            SUB CX, CX   
0x0158    e4 64           IN AL, 0x64   
0x015A    eb 00           JMP 0x15c   
0x015C    24 02           AND AL, 0x2   
0x015E    e0 f8           LOOPNZ 0x158   
0x0160    24 02           AND AL, 0x2   
0x0162    c3              RET   
0x0163    49              DEC CX   
0x0164    6e              OUTSB   
0x0165    76 61           JBE 0x1c8   
0x0167    6c              INSB   
0x0168    6964 20 7061    IMUL SP, [SI+0x20], 0x6170   
0x016D    72 74           JB 0x1e3   
0x016F    6974 69 6f6e    IMUL SI, [SI+0x69], 0x6e6f   
0x0174    2074 61         AND [SI+0x61], DH   
0x0177    626c 65         BOUND BP, [SI+0x65]   
0x017A    0045 72         ADD [DI+0x72], AL   
0x017D    72 6f           JB 0x1ee   
0x017F    72 20           JB 0x1a1   
0x0181    6c              INSB   
0x0182    6f              OUTSW   
0x0183    61              POPA   
0x0184    64 696e 67 206f IMUL BP, FS:[BP+0x67], 0x6f20   
0x018A    70 65           JO 0x1f1   
0x018C    72 61           JB 0x1ef   
0x018E    74 69           JZ 0x1f9   
0x0190    6e              OUTSB   
0x0191    67 2073 79      AND [EBX+0x79], DH   
0x0195    73 74           JAE 0x20b   
0x0197    65 6d           INS WORD GS:[DI], DX   
0x0199    004d 69         ADD [DI+0x69], CL   
0x019C    73 73           JAE 0x211   
0x019E    696e 67 206f    IMUL BP, [BP+0x67], 0x6f20   
0x01A3    70 65           JO 0x20a   
0x01A5    72 61           JB 0x208   
0x01A7    74 69           JZ 0x212   
0x01A9    6e              OUTSB   
0x01AA    67 2073 79      AND [EBX+0x79], DH   
0x01AE    73 74           JAE 0x224   
0x01B0    65 6d           INS WORD GS:[DI], DX   
0x01B2    0000            ADD [BX+SI], AL   
0x01B4    0063 7b         ADD [BP+DI+0x7b], AH   
0x01B7    9a 7e14 598d    CALL FAR 0x8d59:0x147e   
0x01BC    65 6380 2021    ARPL GS:[BX+SI+0x2120], AX   
0x01C1    0007            ADD [BX], AL   
0x01C3    df13            FIST WORD [BP+DI]   
0x01C5    0c 00           OR AL, 0x0   
0x01C7    0800            OR [BX+SI], AL   
0x01C9    0000            ADD [BX+SI], AL   
0x01CB    2003            AND [BP+DI], AL   
0x01CD    0000            ADD [BX+SI], AL   
0x01CF    df14            FIST WORD [SI]   
0x01D1    0c 07           OR AL, 0x7   
0x01D3    fe              DB 0xfe   
0x01D4    ff              DB 0xff   
0x01D5    ff00            INC WORD [BX+SI]   
0x01D7    2803            SUB [BP+DI], AL   
0x01D9    004e 93         ADD [BP-0x6d], CL   
0x01DC    e4 0e           IN AL, 0xe   
0x01DE    0000            ADD [BX+SI], AL   
0x01E0    0000            ADD [BX+SI], AL   
0x01E2    0000            ADD [BX+SI], AL   
0x01E4    0000            ADD [BX+SI], AL   
0x01E6    0000            ADD [BX+SI], AL   
0x01E8    0000            ADD [BX+SI], AL   
0x01EA    0000            ADD [BX+SI], AL   
0x01EC    0000            ADD [BX+SI], AL   
0x01EE    0000            ADD [BX+SI], AL   
0x01F0    0000            ADD [BX+SI], AL   
0x01F2    0000            ADD [BX+SI], AL   
0x01F4    0000            ADD [BX+SI], AL   
0x01F6    0000            ADD [BX+SI], AL   
0x01F8    0000            ADD [BX+SI], AL   
0x01FA    0000            ADD [BX+SI], AL   
0x01FC    0000            ADD [BX+SI], AL   
0x01FE    55              PUSH BP   
0x01FF    aa              STOSB   


_______MBR   \Device\Harddisk1\DR1  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.Ð¼.|.À.Ø¾.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84   N.u..~......².ë.
0x000000B0   55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55   U2ä.V.Í.]ë..>þ}U
0x000000C0   AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64   ªun.v.è..u.ú°Ñæd
0x000000D0   E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75   è..°ßæ`è|.°.ædèu
0x000000E0   00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54   .û¸.»Í.f#Àu;f.ûT
0x000000F0   43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00   CPAu2.ù..r,fh.».
0x00000100   00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66   .fh....fh....fSf
0x00000110   53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66   SfUfh....fh.|..f
0x00000120   61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD   ah...Í.Z2öê.|..Í
0x00000130   18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4   ..·.ë..¶.ë..µ.2ä
0x00000140   05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD   ....ð¬<.t.»..´.Í
0x00000150   10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8   .ëòôëý+Éädë.$.àø
0x00000160   24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69   $.ÃInvalid parti
0x00000170   74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72   tion table.Error
0x00000180   20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69    loading operati
0x00000190   6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E   ng system.Missin
0x000001A0   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x000001B0   65 6D 00 00 00 63 7B 9A D5 84 65 3A B1 BE 00 20   em...c{.Õ.e:±¾. 
0x000001C0   21 00 07 FE FF FF 00 08 00 00 C1 51 70 74 00 00   !..þ......ÁQpt..
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

__________________________16_BIT_ASM_CODE
   
0x0000    33c0            XOR AX, AX   
0x0002    8ed0            MOV SS, AX   
0x0004    bc 007c         MOV SP, 0x7c00   
0x0007    8ec0            MOV ES, AX   
0x0009    8ed8            MOV DS, AX   
0x000B    be 007c         MOV SI, 0x7c00   
0x000E    bf 0006         MOV DI, 0x600   
0x0011    b9 0002         MOV CX, 0x200   
0x0014    fc              CLD   
0x0015    f3 a4           REP MOVSB   
0x0017    50              PUSH AX   
0x0018    68 1c06         PUSH 0x61c   
0x001B    cb              RETF   
0x001C    fb              STI   
0x001D    b9 0400         MOV CX, 0x4   
0x0020    bd be07         MOV BP, 0x7be   
0x0023    807e 00 00      CMP BYTE [BP+0x0], 0x0   
0x0027    7c 0b           JL 0x34   
0x0029    0f85 0e01       JNZ 0x13b   
0x002D    83c5 10         ADD BP, 0x10   
0x0030    e2 f1           LOOP 0x23   
0x0032    cd 18           INT 0x18   
0x0034    8856 00         MOV [BP+0x0], DL   
0x0037    55              PUSH BP   
0x0038    c646 11 05      MOV BYTE [BP+0x11], 0x5   
0x003C    c646 10 00      MOV BYTE [BP+0x10], 0x0   
0x0040    b4 41           MOV AH, 0x41   
0x0042    bb aa55         MOV BX, 0x55aa   
0x0045    cd 13           INT 0x13   
0x0047    5d              POP BP   
0x0048    72 0f           JB 0x59   
0x004A    81fb 55aa       CMP BX, 0xaa55   
0x004E    75 09           JNZ 0x59   
0x0050    f7c1 0100       TEST CX, 0x1   
0x0054    74 03           JZ 0x59   
0x0056    fe46 10         INC BYTE [BP+0x10]   
0x0059    66 60           PUSHAD   
0x005B    807e 10 00      CMP BYTE [BP+0x10], 0x0   
0x005F    74 26           JZ 0x87   
0x0061    66 68 00000000  PUSH 0x0   
0x0067    66 ff76 08      PUSH DWORD [BP+0x8]   
0x006B    68 0000         PUSH 0x0   
0x006E    68 007c         PUSH 0x7c00   
0x0071    68 0100         PUSH 0x1   
0x0074    68 1000         PUSH 0x10   
0x0077    b4 42           MOV AH, 0x42   
0x0079    8a56 00         MOV DL, [BP+0x0]   
0x007C    8bf4            MOV SI, SP   
0x007E    cd 13           INT 0x13   
0x0080    9f              LAHF   
0x0081    83c4 10         ADD SP, 0x10   
0x0084    9e              SAHF   
0x0085    eb 14           JMP 0x9b   
0x0087    b8 0102         MOV AX, 0x201   
0x008A    bb 007c         MOV BX, 0x7c00   
0x008D    8a56 00         MOV DL, [BP+0x0]   
0x0090    8a76 01         MOV DH, [BP+0x1]   
0x0093    8a4e 02         MOV CL, [BP+0x2]   
0x0096    8a6e 03         MOV CH, [BP+0x3]   
0x0099    cd 13           INT 0x13   
0x009B    66 61           POPAD   
0x009D    73 1c           JAE 0xbb   
0x009F    fe4e 11         DEC BYTE [BP+0x11]   
0x00A2    75 0c           JNZ 0xb0   
0x00A4    807e 00 80      CMP BYTE [BP+0x0], 0x80   
0x00A8    0f84 8a00       JZ 0x136   
0x00AC    b2 80           MOV DL, 0x80   
0x00AE    eb 84           JMP 0x34   
0x00B0    55              PUSH BP   
0x00B1    32e4            XOR AH, AH   
0x00B3    8a56 00         MOV DL, [BP+0x0]   
0x00B6    cd 13           INT 0x13   
0x00B8    5d              POP BP   
0x00B9    eb 9e           JMP 0x59   
0x00BB    813e fe7d 55aa  CMP WORD [0x7dfe], 0xaa55   
0x00C1    75 6e           JNZ 0x131   
0x00C3    ff76 00         PUSH WORD [BP+0x0]   
0x00C6    e8 8d00         CALL 0x156   
0x00C9    75 17           JNZ 0xe2   
0x00CB    fa              CLI   
0x00CC    b0 d1           MOV AL, 0xd1   
0x00CE    e6 64           OUT 0x64, AL   
0x00D0    e8 8300         CALL 0x156   
0x00D3    b0 df           MOV AL, 0xdf   
0x00D5    e6 60           OUT 0x60, AL   
0x00D7    e8 7c00         CALL 0x156   
0x00DA    b0 ff           MOV AL, 0xff   
0x00DC    e6 64           OUT 0x64, AL   
0x00DE    e8 7500         CALL 0x156   
0x00E1    fb              STI   
0x00E2    b8 00bb         MOV AX, 0xbb00   
0x00E5    cd 1a           INT 0x1a   
0x00E7    66 23c0         AND EAX, EAX   
0x00EA    75 3b           JNZ 0x127   
0x00EC    66 81fb 54435041CMP EBX, 0x41504354   
0x00F3    75 32           JNZ 0x127   
0x00F5    81f9 0201       CMP CX, 0x102   
0x00F9    72 2c           JB 0x127   
0x00FB    66 68 07bb0000  PUSH 0xbb07   
0x0101    66 68 00020000  PUSH 0x200   
0x0107    66 68 08000000  PUSH 0x8   
0x010D    66 53           PUSH EBX   
0x010F    66 53           PUSH EBX   
0x0111    66 55           PUSH EBP   
0x0113    66 68 00000000  PUSH 0x0   
0x0119    66 68 007c0000  PUSH 0x7c00   
0x011F    66 61           POPAD   
0x0121    68 0000         PUSH 0x0   
0x0124    07              POP ES   
0x0125    cd 1a           INT 0x1a   
0x0127    5a              POP DX   
0x0128    32f6            XOR DH, DH   
0x012A    ea 007c 0000    JMP FAR 0x0:0x7c00   
0x012F    cd 18           INT 0x18   
0x0131    a0 b707         MOV AL, [0x7b7]   
0x0134    eb 08           JMP 0x13e   
0x0136    a0 b607         MOV AL, [0x7b6]   
0x0139    eb 03           JMP 0x13e   
0x013B    a0 b507         MOV AL, [0x7b5]   
0x013E    32e4            XOR AH, AH   
0x0140    05 0007         ADD AX, 0x700   
0x0143    8bf0            MOV SI, AX   
0x0145    ac              LODSB   
0x0146    3c 00           CMP AL, 0x0   
0x0148    74 09           JZ 0x153   
0x014A    bb 0700         MOV BX, 0x7   
0x014D    b4 0e           MOV AH, 0xe   
0x014F    cd 10           INT 0x10   
0x0151    eb f2           JMP 0x145   
0x0153    f4              HLT   
0x0154    eb fd           JMP 0x153   
0x0156    2bc9            SUB CX, CX   
0x0158    e4 64           IN AL, 0x64   
0x015A    eb 00           JMP 0x15c   
0x015C    24 02           AND AL, 0x2   
0x015E    e0 f8           LOOPNZ 0x158   
0x0160    24 02           AND AL, 0x2   
0x0162    c3              RET   
0x0163    49              DEC CX   
0x0164    6e              OUTSB   
0x0165    76 61           JBE 0x1c8   
0x0167    6c              INSB   
0x0168    6964 20 7061    IMUL SP, [SI+0x20], 0x6170   
0x016D    72 74           JB 0x1e3   
0x016F    6974 69 6f6e    IMUL SI, [SI+0x69], 0x6e6f   
0x0174    2074 61         AND [SI+0x61], DH   
0x0177    626c 65         BOUND BP, [SI+0x65]   
0x017A    0045 72         ADD [DI+0x72], AL   
0x017D    72 6f           JB 0x1ee   
0x017F    72 20           JB 0x1a1   
0x0181    6c              INSB   
0x0182    6f              OUTSW   
0x0183    61              POPA   
0x0184    64 696e 67 206f IMUL BP, FS:[BP+0x67], 0x6f20   
0x018A    70 65           JO 0x1f1   
0x018C    72 61           JB 0x1ef   
0x018E    74 69           JZ 0x1f9   
0x0190    6e              OUTSB   
0x0191    67 2073 79      AND [EBX+0x79], DH   
0x0195    73 74           JAE 0x20b   
0x0197    65 6d           INS WORD GS:[DI], DX   
0x0199    004d 69         ADD [DI+0x69], CL   
0x019C    73 73           JAE 0x211   
0x019E    696e 67 206f    IMUL BP, [BP+0x67], 0x6f20   
0x01A3    70 65           JO 0x20a   
0x01A5    72 61           JB 0x208   
0x01A7    74 69           JZ 0x212   
0x01A9    6e              OUTSB   
0x01AA    67 2073 79      AND [EBX+0x79], DH   
0x01AE    73 74           JAE 0x224   
0x01B0    65 6d           INS WORD GS:[DI], DX   
0x01B2    0000            ADD [BX+SI], AL   
0x01B4    0063 7b         ADD [BP+DI+0x7b], AH   
0x01B7    9a d584 653a    CALL FAR 0x3a65:0x84d5   
0x01BC    b1 be           MOV CL, 0xbe   
0x01BE    0020            ADD [BX+SI], AH   
0x01C0    2100            AND [BX+SI], AX   
0x01C2    07              POP ES   
0x01C3    fe              DB 0xfe   
0x01C4    ff              DB 0xff   
0x01C5    ff00            INC WORD [BX+SI]   
0x01C7    0800            OR [BX+SI], AL   
0x01C9    00c1            ADD CL, AL   
0x01CB    51              PUSH CX   
0x01CC    70 74           JO 0x242   
0x01CE    0000            ADD [BX+SI], AL   
0x01D0    0000            ADD [BX+SI], AL   
0x01D2    0000            ADD [BX+SI], AL   
0x01D4    0000            ADD [BX+SI], AL   
0x01D6    0000            ADD [BX+SI], AL   
0x01D8    0000            ADD [BX+SI], AL   
0x01DA    0000            ADD [BX+SI], AL   
0x01DC    0000            ADD [BX+SI], AL   
0x01DE    0000            ADD [BX+SI], AL   
0x01E0    0000            ADD [BX+SI], AL   
0x01E2    0000            ADD [BX+SI], AL   
0x01E4    0000            ADD [BX+SI], AL   
0x01E6    0000            ADD [BX+SI], AL   
0x01E8    0000            ADD [BX+SI], AL   
0x01EA    0000            ADD [BX+SI], AL   
0x01EC    0000            ADD [BX+SI], AL   
0x01EE    0000            ADD [BX+SI], AL   
0x01F0    0000            ADD [BX+SI], AL   
0x01F2    0000            ADD [BX+SI], AL   
0x01F4    0000            ADD [BX+SI], AL   
0x01F6    0000            ADD [BX+SI], AL   
0x01F8    0000            ADD [BX+SI], AL   
0x01FA    0000            ADD [BX+SI], AL   
0x01FC    0000            ADD [BX+SI], AL   
0x01FE    55              PUSH BP   
0x01FF    aa              STOSB

konu · #21 Příspěvek od **konu** » 17 dub 2015 15:41

https://www.virustotal.com/cs/file/7fe3 ... 429281565/

https://www.virustotal.com/cs/file/8e21 ... 429281597/

konu · #22 Příspěvek od **konu** » 17 dub 2015 15:42

Mám možnost jen dvd 4,7gb .Raději bych to dal na flešku

konu · #23 Příspěvek od **konu** » 17 dub 2015 15:52

Po skončení scanu tddskill... žádné okno nevyskočilo.Nemusel jsem dávat skip.

16:43:52.0074 0x1038 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
16:44:03.0341 0x1038 ============================================================
16:44:03.0341 0x1038 Current date / time: 2015/04/17 16:44:03.0341
16:44:03.0341 0x1038 SystemInfo:
16:44:03.0341 0x1038
16:44:03.0341 0x1038 OS Version: 6.3.9600 ServicePack: 0.0
16:44:03.0341 0x1038 Product type: Workstation
16:44:03.0341 0x1038 ComputerName: ASUS-PC
16:44:03.0341 0x1038 UserName: tom
16:44:03.0341 0x1038 Windows directory: C:\Windows
16:44:03.0341 0x1038 System windows directory: C:\Windows
16:44:03.0341 0x1038 Running under WOW64
16:44:03.0341 0x1038 Processor architecture: Intel x64
16:44:03.0341 0x1038 Number of processors: 8
16:44:03.0341 0x1038 Page size: 0x1000
16:44:03.0341 0x1038 Boot type: Normal boot
16:44:03.0341 0x1038 ============================================================
16:44:03.0403 0x1038 KLMD registered as C:\Windows\system32\drivers\39788842.sys
16:44:03.0544 0x1038 System UUID: {B71D786A-BA71-4F6F-15F7-371B2BCB756D}
16:44:03.0872 0x1038 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:44:03.0872 0x1038 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:44:03.0888 0x1038 ============================================================
16:44:03.0888 0x1038 \Device\Harddisk0\DR0:
16:44:03.0888 0x1038 MBR partitions:
16:44:03.0888 0x1038 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:44:03.0888 0x1038 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE4934E
16:44:03.0888 0x1038 \Device\Harddisk1\DR1:
16:44:03.0888 0x1038 MBR partitions:
16:44:03.0888 0x1038 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x747051C1
16:44:03.0888 0x1038 ============================================================
16:44:03.0888 0x1038 C: <-> \Device\Harddisk0\DR0\Partition2
16:44:04.0388 0x1038 D: <-> \Device\Harddisk1\DR1\Partition1
16:44:04.0388 0x1038 ============================================================
16:44:04.0388 0x1038 Initialize success
16:44:04.0388 0x1038 ============================================================
16:45:13.0723 0x0b58 ============================================================
16:45:13.0723 0x0b58 Scan started
16:45:13.0723 0x0b58 Mode: Manual; SigCheck; TDLFS;
16:45:13.0723 0x0b58 ============================================================
16:45:13.0723 0x0b58 KSN ping started
16:45:16.0082 0x0b58 KSN ping finished: true
16:45:16.0645 0x0b58 ================ Scan system memory ========================
16:45:16.0645 0x0b58 System memory - ok
16:45:16.0645 0x0b58 ================ Scan services =============================
16:45:16.0707 0x0b58 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
16:45:16.0738 0x0b58 1394ohci - ok
16:45:16.0738 0x0b58 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\Windows\system32\drivers\3ware.sys
16:45:16.0754 0x0b58 3ware - ok
16:45:16.0770 0x0b58 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:45:16.0785 0x0b58 ACPI - ok
16:45:16.0785 0x0b58 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\Windows\system32\Drivers\acpiex.sys
16:45:16.0785 0x0b58 acpiex - ok
16:45:16.0801 0x0b58 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
16:45:16.0801 0x0b58 acpipagr - ok
16:45:16.0801 0x0b58 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
16:45:16.0816 0x0b58 AcpiPmi - ok
16:45:16.0816 0x0b58 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\Windows\System32\drivers\acpitime.sys
16:45:16.0816 0x0b58 acpitime - ok
16:45:16.0832 0x0b58 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\Windows\system32\drivers\ADP80XX.SYS
16:45:16.0863 0x0b58 ADP80XX - ok
16:45:16.0863 0x0b58 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:45:16.0879 0x0b58 AeLookupSvc - ok
16:45:16.0895 0x0b58 [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD C:\Windows\system32\drivers\afd.sys
16:45:16.0910 0x0b58 AFD - ok
16:45:16.0910 0x0b58 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:45:16.0926 0x0b58 agp440 - ok
16:45:16.0926 0x0b58 [ F0CB6DB513CAC393D04A0FCE0A59E1BF, E6EE159D0E6B1F666946B1FE421874044E89BB2EB60A521BAA111A1229FA7B2D ] ahcache C:\Windows\system32\DRIVERS\ahcache.sys
16:45:16.0941 0x0b58 ahcache - ok
16:45:16.0941 0x0b58 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\Windows\System32\alg.exe
16:45:16.0941 0x0b58 ALG - ok
16:45:16.0957 0x0b58 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
16:45:16.0957 0x0b58 AmdK8 - ok
16:45:16.0973 0x0b58 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
16:45:16.0973 0x0b58 AmdPPM - ok
16:45:16.0973 0x0b58 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:45:16.0988 0x0b58 amdsata - ok
16:45:16.0988 0x0b58 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:45:17.0004 0x0b58 amdsbs - ok
16:45:17.0004 0x0b58 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:45:17.0020 0x0b58 amdxata - ok
16:45:17.0020 0x0b58 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\Windows\system32\drivers\appid.sys
16:45:17.0020 0x0b58 AppID - ok
16:45:17.0035 0x0b58 [ 34B2E222F82D05398DAE7203B36B6A2B, AC04BC6B5A36A6807FFE302E9ACF073342B4D76B0BB386249251CB3CA1852CE8 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:45:17.0035 0x0b58 AppIDSvc - ok
16:45:17.0035 0x0b58 [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo C:\Windows\System32\appinfo.dll
16:45:17.0051 0x0b58 Appinfo - ok
16:45:17.0051 0x0b58 [ 1A8EA3500576DD4B43E9318F10709E0E, 85F8581C319DE241B223366F08A5F9301858DA9DA1A0CAA10ED387A2B99EC216 ] AppMgmt C:\Windows\System32\appmgmts.dll
16:45:17.0067 0x0b58 AppMgmt - ok
16:45:17.0082 0x0b58 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\Windows\system32\AppReadiness.dll
16:45:17.0098 0x0b58 AppReadiness - ok
16:45:17.0129 0x0b58 [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc C:\Windows\system32\appxdeploymentserver.dll
16:45:17.0160 0x0b58 AppXSvc - ok
16:45:17.0160 0x0b58 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:45:17.0176 0x0b58 arcsas - ok
16:45:17.0176 0x0b58 [ 12C15AC0B97C02CF08777DBB1BC9B5F2, 257BDA862E6058DD2057F95C850A4874307F0B1017B7CCAD63E8A9B2C8D0B8B2 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
16:45:17.0207 0x0b58 ASLDRService - ok
16:45:17.0207 0x0b58 [ 4C016FD76ED5C05E84CA8CAB77993961, 025E7BE9FCEFD6A83F4471BBA0C11F1C11BD5047047D26626DA24EE9A419CDC4 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
16:45:17.0207 0x0b58 ASMMAP64 - ok
16:45:17.0223 0x0b58 [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:45:17.0223 0x0b58 AsyncMac - ok
16:45:17.0223 0x0b58 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\Windows\system32\drivers\atapi.sys
16:45:17.0238 0x0b58 atapi - ok
16:45:17.0301 0x0b58 [ 688941322FB20DB0407B6F149607517D, 53ABFCE11485E307D56598BF03121DDCD8D3E75FE2D85E513252C5A649D7EBAD ] athr C:\Windows\system32\DRIVERS\athwbx.sys
16:45:17.0363 0x0b58 athr - ok
16:45:17.0379 0x0b58 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
16:45:17.0379 0x0b58 ATKGFNEXSrv - ok
16:45:17.0379 0x0b58 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
16:45:17.0395 0x0b58 ATKWMIACPIIO - ok
16:45:17.0395 0x0b58 [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
16:45:17.0410 0x0b58 AudioEndpointBuilder - ok
16:45:17.0426 0x0b58 [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:45:17.0442 0x0b58 Audiosrv - ok
16:45:17.0457 0x0b58 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:45:17.0457 0x0b58 AxInstSV - ok
16:45:17.0473 0x0b58 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:45:17.0488 0x0b58 b06bdrv - ok
16:45:17.0488 0x0b58 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
16:45:17.0504 0x0b58 BasicDisplay - ok
16:45:17.0504 0x0b58 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
16:45:17.0504 0x0b58 BasicRender - ok
16:45:17.0520 0x0b58 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\Windows\System32\drivers\bcmfn2.sys
16:45:17.0520 0x0b58 bcmfn2 - ok
16:45:17.0520 0x0b58 [ 77D760E9B477C21487C171F561497F98, 2393D466CEC863C771C5BB4CD81B251635DC084386134B8E13F74F3E1C6D68DF ] BDESVC C:\Windows\System32\bdesvc.dll
16:45:17.0535 0x0b58 BDESVC - ok
16:45:17.0535 0x0b58 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\Windows\system32\drivers\Beep.sys
16:45:17.0551 0x0b58 Beep - ok
16:45:17.0567 0x0b58 [ 22A5582ACF0CEE97268D7868C69F35CE, 78A44C10966FE467D3FCC76BE37647AE2CC2BCA9DE5715AD9E643162B23C3A19 ] BFE C:\Windows\System32\bfe.dll
16:45:17.0582 0x0b58 BFE - ok
16:45:17.0598 0x0b58 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\Windows\System32\qmgr.dll
16:45:17.0629 0x0b58 BITS - ok
16:45:17.0629 0x0b58 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:45:17.0645 0x0b58 bowser - ok
16:45:17.0645 0x0b58 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
16:45:17.0660 0x0b58 BrokerInfrastructure - ok
16:45:17.0660 0x0b58 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\Windows\System32\browser.dll
16:45:17.0676 0x0b58 Browser - ok
16:45:17.0692 0x0b58 [ B4A748101F8A06EFD0BF89AA7220B6EE, E36BA3EE483E3FBF45C2E97FA682D94EEA02856D3B4171A1A3507EDCF9B16A87 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
16:45:17.0707 0x0b58 BtFilter - ok
16:45:17.0707 0x0b58 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
16:45:17.0707 0x0b58 BthAvrcpTg - ok
16:45:17.0723 0x0b58 [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum C:\Windows\System32\drivers\BthEnum.sys
16:45:17.0723 0x0b58 BthEnum - ok
16:45:17.0723 0x0b58 [ 67343511D80BF3D6D9EEDB5BA8D0B06B, 28436B2E62762686C4FF4FA3F9E7ABB56DA9D6884B6C924ACC544161400593DD ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
16:45:17.0738 0x0b58 BthHFEnum - ok
16:45:17.0738 0x0b58 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
16:45:17.0754 0x0b58 bthhfhid - ok
16:45:17.0754 0x0b58 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\Windows\System32\BthHFSrv.dll
16:45:17.0770 0x0b58 BthHFSrv - ok
16:45:17.0785 0x0b58 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\Windows\System32\drivers\BthLEEnum.sys
16:45:17.0785 0x0b58 BthLEEnum - ok
16:45:17.0785 0x0b58 [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
16:45:17.0801 0x0b58 BTHMODEM - ok
16:45:17.0801 0x0b58 [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan C:\Windows\System32\drivers\bthpan.sys
16:45:17.0817 0x0b58 BthPan - ok
16:45:17.0848 0x0b58 [ C37F4930795B771400C63C3C87E7A6C2, 0D0F54184B2DAA45F646E4F69B85C4411E8DFA88EB4763BB0F386055A420F217 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
16:45:17.0863 0x0b58 BTHPORT - ok
16:45:17.0879 0x0b58 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\Windows\system32\bthserv.dll
16:45:17.0879 0x0b58 bthserv - ok
16:45:17.0879 0x0b58 [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
16:45:17.0895 0x0b58 BTHUSB - ok
16:45:17.0895 0x0b58 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:45:17.0910 0x0b58 cdfs - ok
16:45:17.0910 0x0b58 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\Windows\System32\drivers\cdrom.sys
16:45:17.0926 0x0b58 cdrom - ok
16:45:17.0926 0x0b58 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\Windows\System32\certprop.dll
16:45:17.0942 0x0b58 CertPropSvc - ok
16:45:17.0942 0x0b58 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\Windows\System32\drivers\circlass.sys
16:45:17.0942 0x0b58 circlass - ok
16:45:17.0957 0x0b58 [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS C:\Windows\system32\drivers\CLFS.sys
16:45:17.0973 0x0b58 CLFS - ok
16:45:17.0973 0x0b58 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
16:45:17.0988 0x0b58 CmBatt - ok
16:45:18.0004 0x0b58 [ 3930E508DDA46C1FF68FD963F350AA0A, BF63F9C7AB30E2A8199D65EDD6DCBB797C93A4A0B972373643FBE1C38BCFA697 ] CNG C:\Windows\system32\Drivers\cng.sys
16:45:18.0020 0x0b58 CNG - ok
16:45:18.0020 0x0b58 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
16:45:18.0020 0x0b58 CompositeBus - ok
16:45:18.0035 0x0b58 COMSysApp - ok
16:45:18.0035 0x0b58 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\Windows\system32\drivers\condrv.sys
16:45:18.0035 0x0b58 condrv - ok
16:45:18.0051 0x0b58 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:45:18.0051 0x0b58 CryptSvc - ok
16:45:18.0067 0x0b58 [ 9DBC32A45CFA67074432D2AF6C2832B6, B3B26302961A95EDFD4F994D56B1E5A8452266E0C2161D15C1213BBE376227A2 ] CSC C:\Windows\system32\drivers\csc.sys
16:45:18.0082 0x0b58 CSC - ok
16:45:18.0098 0x0b58 [ 86079FF8A3B625ABAEB68841D2BF6FE6, 49FF4D458DF8FAB4ECA8CAD9BBF88C929C8B9AB7F063938A6A332B31F2C0F8EB ] CscService C:\Windows\System32\cscsvc.dll
16:45:18.0113 0x0b58 CscService - ok
16:45:18.0129 0x0b58 [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam C:\Windows\system32\drivers\dam.sys
16:45:18.0129 0x0b58 dam - ok
16:45:18.0145 0x0b58 [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:45:18.0192 0x0b58 DcomLaunch - ok
16:45:18.0192 0x0b58 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\Windows\System32\defragsvc.dll
16:45:18.0207 0x0b58 defragsvc - ok
16:45:18.0223 0x0b58 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\Windows\system32\das.dll
16:45:18.0238 0x0b58 DeviceAssociationService - ok
16:45:18.0238 0x0b58 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
16:45:18.0254 0x0b58 DeviceInstall - ok
16:45:18.0254 0x0b58 [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
16:45:18.0270 0x0b58 Dfsc - ok
16:45:18.0270 0x0b58 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\Windows\system32\dhcpcore.dll
16:45:18.0285 0x0b58 Dhcp - ok
16:45:18.0285 0x0b58 [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\Windows\system32\drivers\disk.sys
16:45:18.0301 0x0b58 disk - ok
16:45:18.0301 0x0b58 DLPortIO - ok
16:45:18.0301 0x0b58 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
16:45:18.0317 0x0b58 dmvsc - ok
16:45:18.0317 0x0b58 [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:45:18.0332 0x0b58 Dnscache - ok
16:45:18.0332 0x0b58 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\Windows\System32\dot3svc.dll
16:45:18.0348 0x0b58 dot3svc - ok
16:45:18.0348 0x0b58 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\Windows\system32\dps.dll
16:45:18.0363 0x0b58 DPS - ok
16:45:18.0363 0x0b58 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:45:18.0379 0x0b58 drmkaud - ok
16:45:18.0379 0x0b58 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
16:45:18.0395 0x0b58 DsmSvc - ok
16:45:18.0426 0x0b58 [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:45:18.0457 0x0b58 DXGKrnl - ok
16:45:18.0457 0x0b58 [ D47E023B543D9FA72EBAAD4D30E499B3, 7045060D418B1EE1499336A973C334869330843F3ADE5420D93B64A1BDAB2DA8 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
16:45:18.0473 0x0b58 eamonm - ok
16:45:18.0473 0x0b58 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\Windows\System32\eapsvc.dll
16:45:18.0488 0x0b58 Eaphost - ok
16:45:18.0535 0x0b58 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:45:18.0613 0x0b58 ebdrv - ok
16:45:18.0613 0x0b58 [ 9FB0479D9398C785C607B1196307F782, 7247E631E55D177C403E2C0009417D3FB478A33F180E7E07EE22531C13CAFC4D ] edevmon C:\Windows\system32\DRIVERS\edevmon.sys
16:45:18.0629 0x0b58 edevmon - ok
16:45:18.0629 0x0b58 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\Windows\System32\lsass.exe
16:45:18.0629 0x0b58 EFS - ok
16:45:18.0645 0x0b58 [ EDE769200779A9746A0F1425EBEE59FE, 001DAE9569FCA7CD5A97B8F74940ADCD084DADD2F69F1002765F424B10D30B97 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
16:45:18.0645 0x0b58 ehdrv - ok
16:45:18.0660 0x0b58 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
16:45:18.0660 0x0b58 EhStorClass - ok
16:45:18.0660 0x0b58 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
16:45:18.0676 0x0b58 EhStorTcgDrv - ok
16:45:18.0707 0x0b58 [ 58FBDA10FC403CF9F82ABD0A68129BA3, D731021C2A94A31CD944E95628AC2DFFF0D555659BF0DF6FC57676B8B88355A4 ] ekrn C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
16:45:18.0723 0x0b58 ekrn - ok
16:45:18.0738 0x0b58 [ D8A6B4CAA5E240878D65E0EAEE6D9082, 930247BDD721CBDCC515AC294FE10032FDCA7D27AD4FEB4E2216B733BA2B5F43 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
16:45:18.0738 0x0b58 epfw - ok
16:45:18.0754 0x0b58 [ C581DEBB25220862D325BE141F02E989, 0B2F9736160DA624719F3F2296CABAEEC3C5542F4ED28C8DCF358621C5B7758D ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
16:45:18.0754 0x0b58 EpfwLWF - ok
16:45:18.0754 0x0b58 [ DC4E3C33A00AF1165E7BDA9CE147ED2D, 8325664A161118AACFC0DC9E4139D8D1ABCA052A1197F43F4C9C40D0AED2DE1B ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
16:45:18.0770 0x0b58 epfwwfp - ok
16:45:18.0770 0x0b58 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\Windows\System32\drivers\errdev.sys
16:45:18.0770 0x0b58 ErrDev - ok
16:45:18.0785 0x0b58 [ F037314138494EE6BD7DDC4C19C63012, C78477093374BA57DDDDC8F25E67397126AF03700513D24128BDA5C8EA8CFF1A ] ESETCleanersDriver C:\Windows\system32\Drivers\ESETCleanersDriver.sys
16:45:18.0785 0x0b58 ESETCleanersDriver - ok
16:45:18.0801 0x0b58 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\Windows\system32\es.dll
16:45:18.0817 0x0b58 EventSystem - ok
16:45:18.0817 0x0b58 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\Windows\system32\drivers\exfat.sys
16:45:18.0832 0x0b58 exfat - ok
16:45:18.0832 0x0b58 [ 440698D7CF32AA990B295AFA40EE9517, 313E02D7B303D4D6BF0BD41A1EE6F42D84834DF8E9AFB38C4DC8A07EA2B79A61 ] FanChkService C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe
16:45:18.0848 0x0b58 FanChkService - ok
16:45:18.0848 0x0b58 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:45:18.0863 0x0b58 fastfat - ok
16:45:18.0863 0x0b58 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\Windows\System32\drivers\fdc.sys
16:45:18.0863 0x0b58 fdc - ok
16:45:18.0879 0x0b58 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\Windows\system32\fdPHost.dll
16:45:18.0879 0x0b58 fdPHost - ok
16:45:18.0879 0x0b58 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\Windows\system32\fdrespub.dll
16:45:18.0895 0x0b58 FDResPub - ok
16:45:18.0895 0x0b58 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\Windows\system32\fhsvc.dll
16:45:18.0910 0x0b58 fhsvc - ok
16:45:18.0910 0x0b58 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:45:18.0910 0x0b58 FileInfo - ok
16:45:18.0910 0x0b58 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:45:18.0926 0x0b58 Filetrace - ok
16:45:18.0926 0x0b58 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
16:45:18.0942 0x0b58 flpydisk - ok
16:45:18.0942 0x0b58 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:45:18.0957 0x0b58 FltMgr - ok
16:45:18.0988 0x0b58 [ 7269C9013FCFA3C6E70F03E2630DBFC3, AAB282B4444CC17D197974D05063C7C97E5202E604681DD2DC3BCF0AE77D6057 ] FontCache C:\Windows\system32\FntCache.dll
16:45:19.0020 0x0b58 FontCache - ok
16:45:19.0020 0x0b58 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:45:19.0035 0x0b58 FontCache3.0.0.0 - ok
16:45:19.0035 0x0b58 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:45:19.0035 0x0b58 FsDepends - ok
16:45:19.0035 0x0b58 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:45:19.0051 0x0b58 Fs_Rec - ok
16:45:19.0051 0x0b58 [ 0B0E36E669B47E256BE7BDB66D76CCCF, EE52E6EB6F4E41429687124246CF988CAFC4D7FF26EDAD5EAB762239E6DF8FBB ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
16:45:19.0067 0x0b58 FTDIBUS - ok
16:45:19.0067 0x0b58 [ F1544BBC7E08BB5B9E9E97996C3FA04B, 2D998E4DCF7EA918B537119583BE678121148DB314BDC338925D8588A30F4BE0 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
16:45:19.0067 0x0b58 FTSER2K - ok
16:45:19.0082 0x0b58 [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:45:19.0098 0x0b58 fvevol - ok
16:45:19.0098 0x0b58 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
16:45:19.0113 0x0b58 FxPPM - ok
16:45:19.0113 0x0b58 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:45:19.0113 0x0b58 gagp30kx - ok
16:45:19.0129 0x0b58 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:45:19.0129 0x0b58 GEARAspiWDM - ok
16:45:19.0129 0x0b58 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
16:45:19.0145 0x0b58 gencounter - ok
16:45:19.0160 0x0b58 [ 4DF4ABCA09AF1530D712FA589CE3BE9F, 573C04358BBAEAEDFDC4F265627E8029295C31BB17C13B428D5694119AECEDAD ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
16:45:19.0176 0x0b58 GfExperienceService - ok
16:45:19.0192 0x0b58 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
16:45:19.0192 0x0b58 GPIOClx0101 - ok
16:45:19.0223 0x0b58 [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc C:\Windows\System32\gpsvc.dll
16:45:19.0254 0x0b58 gpsvc - ok
16:45:19.0270 0x0b58 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:45:19.0285 0x0b58 HdAudAddService - ok
16:45:19.0285 0x0b58 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
16:45:19.0301 0x0b58 HDAudBus - ok
16:45:19.0301 0x0b58 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
16:45:19.0301 0x0b58 HidBatt - ok
16:45:19.0317 0x0b58 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\Windows\System32\drivers\hidbth.sys
16:45:19.0317 0x0b58 HidBth - ok
16:45:19.0317 0x0b58 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
16:45:19.0332 0x0b58 hidi2c - ok
16:45:19.0332 0x0b58 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\Windows\System32\drivers\hidir.sys
16:45:19.0332 0x0b58 HidIr - ok
16:45:19.0348 0x0b58 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\Windows\system32\hidserv.dll
16:45:19.0348 0x0b58 hidserv - ok
16:45:19.0348 0x0b58 [ 894D982CEAB8CD45A56AE2C9988E86C0, AA2DEB62CB69FF1AEF772989342F2CF77CA48F212C9489A92A4FF97FD46D3866 ] HIDSwitch C:\Windows\System32\drivers\AsHIDSwitch64.sys
16:45:19.0363 0x0b58 HIDSwitch - ok
16:45:19.0363 0x0b58 [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
16:45:19.0363 0x0b58 HidUsb - ok
16:45:19.0363 0x0b58 HitmanPro37CrusaderBoot - ok
16:45:19.0379 0x0b58 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\Windows\system32\kmsvc.dll
16:45:19.0379 0x0b58 hkmsvc - ok
16:45:19.0395 0x0b58 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:45:19.0395 0x0b58 HomeGroupListener - ok
16:45:19.0410 0x0b58 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:45:19.0426 0x0b58 HomeGroupProvider - ok
16:45:19.0426 0x0b58 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:45:19.0442 0x0b58 HpSAMD - ok
16:45:19.0457 0x0b58 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:45:19.0473 0x0b58 HTTP - ok
16:45:19.0489 0x0b58 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:45:19.0489 0x0b58 hwpolicy - ok
16:45:19.0489 0x0b58 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
16:45:19.0504 0x0b58 hyperkbd - ok
16:45:19.0504 0x0b58 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
16:45:19.0504 0x0b58 HyperVideo - ok
16:45:19.0520 0x0b58 [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
16:45:19.0520 0x0b58 i8042prt - ok
16:45:19.0520 0x0b58 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
16:45:19.0535 0x0b58 iaLPSSi_GPIO - ok
16:45:19.0535 0x0b58 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\Windows\System32\drivers\iaLPSSi_I2C.sys
16:45:19.0535 0x0b58 iaLPSSi_I2C - ok
16:45:19.0551 0x0b58 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\Windows\system32\drivers\iaStorAV.sys
16:45:19.0567 0x0b58 iaStorAV - ok
16:45:19.0582 0x0b58 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:45:19.0598 0x0b58 iaStorV - ok
16:45:19.0598 0x0b58 IEEtwCollectorService - ok
16:45:19.0614 0x0b58 [ 57322EBB67A59FB64E228F31A84CA43D, 258DA26BDFAB635F145E55CF65CDFCFE4EB91454E3F930489E92810250EF9FD7 ] IKEEXT C:\Windows\System32\ikeext.dll
16:45:19.0645 0x0b58 IKEEXT - ok
16:45:19.0645 0x0b58 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\Windows\system32\drivers\intelide.sys
16:45:19.0645 0x0b58 intelide - ok
16:45:19.0660 0x0b58 [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep C:\Windows\system32\drivers\intelpep.sys
16:45:19.0660 0x0b58 intelpep - ok
16:45:19.0660 0x0b58 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\Windows\System32\drivers\intelppm.sys
16:45:19.0676 0x0b58 intelppm - ok
16:45:19.0676 0x0b58 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:45:19.0692 0x0b58 IpFilterDriver - ok
16:45:19.0707 0x0b58 [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:45:19.0723 0x0b58 iphlpsvc - ok
16:45:19.0723 0x0b58 [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
16:45:19.0739 0x0b58 IPMIDRV - ok
16:45:19.0739 0x0b58 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:45:19.0754 0x0b58 IPNAT - ok
16:45:19.0754 0x0b58 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:45:19.0754 0x0b58 IRENUM - ok
16:45:19.0770 0x0b58 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:45:19.0770 0x0b58 isapnp - ok
16:45:19.0785 0x0b58 [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
16:45:19.0785 0x0b58 iScsiPrt - ok
16:45:19.0801 0x0b58 [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
16:45:19.0801 0x0b58 kbdclass - ok
16:45:19.0801 0x0b58 [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
16:45:19.0817 0x0b58 kbdhid - ok
16:45:19.0817 0x0b58 [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr C:\Windows\system32\drivers\kbldfltr.sys
16:45:19.0817 0x0b58 kbldfltr - ok
16:45:19.0832 0x0b58 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
16:45:19.0832 0x0b58 kdnic - ok
16:45:19.0832 0x0b58 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\Windows\system32\lsass.exe
16:45:19.0848 0x0b58 KeyIso - ok
16:45:19.0848 0x0b58 [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:45:19.0848 0x0b58 KSecDD - ok
16:45:19.0864 0x0b58 [ 15C8C65CEA018C02EA0F648448C491C5, DF909704D22D891BE439B2E3D8386EA659444F91DC92AABFF9766446AEE5EBC0 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:45:19.0864 0x0b58 KSecPkg - ok
16:45:19.0879 0x0b58 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:45:19.0879 0x0b58 ksthunk - ok
16:45:19.0895 0x0b58 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:45:19.0895 0x0b58 KtmRm - ok
16:45:19.0910 0x0b58 [ 50AECF8C21AB2A6428A6E1E10549D8E5, 6BC7C60CF5E8AFB9972619EE1C78357756E9C0A3EC783C3056CEB600DCBB1555 ] L1C C:\Windows\system32\DRIVERS\L1C63x64.sys
16:45:19.0910 0x0b58 L1C - ok
16:45:19.0926 0x0b58 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\Windows\system32\srvsvc.dll
16:45:19.0926 0x0b58 LanmanServer - ok
16:45:19.0942 0x0b58 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:45:19.0957 0x0b58 LanmanWorkstation - ok
16:45:19.0957 0x0b58 [ 2B7479EB47731A8ACBA28AF4C4BDA32D, 67AEB98E7B41337FEFD92CC81BFAD25FBB679998B318C110A4873B1AD8927A97 ] lfsvc C:\Windows\System32\GeofenceMonitorService.dll
16:45:19.0973 0x0b58 lfsvc - ok
16:45:19.0989 0x0b58 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:45:19.0989 0x0b58 lltdio - ok
16:45:20.0004 0x0b58 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:45:20.0004 0x0b58 lltdsvc - ok
16:45:20.0020 0x0b58 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:45:20.0020 0x0b58 lmhosts - ok
16:45:20.0020 0x0b58 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:45:20.0035 0x0b58 LSI_SAS - ok
16:45:20.0035 0x0b58 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
16:45:20.0051 0x0b58 LSI_SAS2 - ok
16:45:20.0051 0x0b58 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\Windows\system32\drivers\lsi_sas3.sys
16:45:20.0051 0x0b58 LSI_SAS3 - ok
16:45:20.0067 0x0b58 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
16:45:20.0067 0x0b58 LSI_SSS - ok
16:45:20.0082 0x0b58 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\Windows\System32\lsm.dll
16:45:20.0098 0x0b58 LSM - ok
16:45:20.0114 0x0b58 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\Windows\system32\drivers\luafv.sys
16:45:20.0114 0x0b58 luafv - ok
16:45:20.0114 0x0b58 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\Windows\system32\drivers\megasas.sys
16:45:20.0129 0x0b58 megasas - ok
16:45:20.0145 0x0b58 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\Windows\system32\drivers\megasr.sys
16:45:20.0160 0x0b58 megasr - ok
16:45:20.0160 0x0b58 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\Windows\System32\drivers\HECIx64.sys
16:45:20.0160 0x0b58 MEIx64 - ok
16:45:20.0176 0x0b58 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\Windows\system32\mmcss.dll
16:45:20.0176 0x0b58 MMCSS - ok
16:45:20.0176 0x0b58 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\Windows\system32\drivers\modem.sys
16:45:20.0192 0x0b58 Modem - ok
16:45:20.0192 0x0b58 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\Windows\System32\drivers\monitor.sys
16:45:20.0192 0x0b58 monitor - ok
16:45:20.0207 0x0b58 [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\Windows\System32\drivers\mouclass.sys
16:45:20.0207 0x0b58 mouclass - ok
16:45:20.0207 0x0b58 [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\Windows\System32\drivers\mouhid.sys
16:45:20.0223 0x0b58 mouhid - ok
16:45:20.0223 0x0b58 [ D1D82F007A079A4D623DBD1F36EF30A1, 7901F81B62C5A4196D75A10C05386B16831CB290EFB9A1611CECF281068C520F ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:45:20.0239 0x0b58 mountmgr - ok
16:45:20.0239 0x0b58 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:45:20.0239 0x0b58 mpsdrv - ok
16:45:20.0270 0x0b58 [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc C:\Windows\system32\mpssvc.dll
16:45:20.0285 0x0b58 MpsSvc - ok
16:45:20.0285 0x0b58 [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:45:20.0301 0x0b58 MRxDAV - ok
16:45:20.0301 0x0b58 [ 31233271EDE50D1BBB220F78AFA60486, 2122FAB5BD353DF63CF0FE9CEDBD5DFD1F26F2DE04303E1B3FFB03AA02AECED9 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:45:20.0317 0x0b58 mrxsmb - ok
16:45:20.0332 0x0b58 [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:45:20.0332 0x0b58 mrxsmb10 - ok
16:45:20.0348 0x0b58 [ 6276AC2AA203CF47811F6EFBBD214FBF, AE55D87D863A626347B0074F4E962080F1989A94153DAF8475593249F616DA2F ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:45:20.0348 0x0b58 mrxsmb20 - ok
16:45:20.0364 0x0b58 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
16:45:20.0364 0x0b58 MsBridge - ok
16:45:20.0379 0x0b58 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\Windows\System32\msdtc.exe
16:45:20.0379 0x0b58 MSDTC - ok
16:45:20.0395 0x0b58 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:45:20.0395 0x0b58 Msfs - ok
16:45:20.0395 0x0b58 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
16:45:20.0410 0x0b58 msgpiowin32 - ok
16:45:20.0410 0x0b58 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:45:20.0410 0x0b58 mshidkmdf - ok
16:45:20.0410 0x0b58 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
16:45:20.0426 0x0b58 mshidumdf - ok
16:45:20.0426 0x0b58 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:45:20.0442 0x0b58 msisadrv - ok
16:45:20.0442 0x0b58 [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:45:20.0442 0x0b58 MSiSCSI - ok
16:45:20.0457 0x0b58 msiserver - ok
16:45:20.0457 0x0b58 [ 4C1A0E9B4C6CC09E8C68FD33998013AA, 190ADFCCAE844DB9F807BD9668EB90BE0C9887719DF2820E66D121655AF27614 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
16:45:20.0457 0x0b58 MsKeyboardFilter - ok
16:45:20.0473 0x0b58 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:45:20.0473 0x0b58 MSKSSRV - ok
16:45:20.0473 0x0b58 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
16:45:20.0489 0x0b58 MsLldp - ok
16:45:20.0489 0x0b58 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:45:20.0489 0x0b58 MSPCLOCK - ok
16:45:20.0489 0x0b58 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:45:20.0504 0x0b58 MSPQM - ok
16:45:20.0504 0x0b58 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:45:20.0520 0x0b58 MsRPC - ok
16:45:20.0535 0x0b58 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
16:45:20.0535 0x0b58 mssmbios - ok
16:45:20.0535 0x0b58 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:45:20.0551 0x0b58 MSTEE - ok
16:45:20.0551 0x0b58 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
16:45:20.0551 0x0b58 MTConfig - ok
16:45:20.0551 0x0b58 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\Windows\system32\Drivers\mup.sys
16:45:20.0567 0x0b58 Mup - ok
16:45:20.0567 0x0b58 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\Windows\system32\drivers\mvumis.sys
16:45:20.0582 0x0b58 mvumis - ok
16:45:20.0582 0x0b58 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\Windows\system32\qagentRT.dll
16:45:20.0598 0x0b58 napagent - ok
16:45:20.0614 0x0b58 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

konu · #24 Příspěvek od **konu** » 17 dub 2015 15:52

16:45:20.0629 0x0b58 NativeWifiP - ok
16:45:20.0629 0x0b58 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\Windows\System32\ncasvc.dll
16:45:20.0645 0x0b58 NcaSvc - ok
16:45:20.0645 0x0b58 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\Windows\System32\ncbservice.dll
16:45:20.0660 0x0b58 NcbService - ok
16:45:20.0660 0x0b58 [ 9ACED0F5B458C9011F39143326494E93, 9DFFC7EE7DE6FD92545EC6A203213C498A01EEFB0BC55460D339BCE498E56A7F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
16:45:20.0676 0x0b58 NcdAutoSetup - ok
16:45:20.0692 0x0b58 [ 6D3A2565E01B3E4B0F1BEDB0D4B00B3F, 95F2608E17CA3E25BD7958D1A49F7030EC8088BC1DF12422F1DAC5BA99113E34 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:45:20.0723 0x0b58 NDIS - ok
16:45:20.0723 0x0b58 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:45:20.0723 0x0b58 NdisCap - ok
16:45:20.0739 0x0b58 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
16:45:20.0739 0x0b58 NdisImPlatform - ok
16:45:20.0739 0x0b58 [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:45:20.0754 0x0b58 NdisTapi - ok
16:45:20.0754 0x0b58 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:45:20.0754 0x0b58 Ndisuio - ok
16:45:20.0770 0x0b58 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\Windows\System32\drivers\NdisVirtualBus.sys
16:45:20.0770 0x0b58 NdisVirtualBus - ok
16:45:20.0785 0x0b58 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:45:20.0785 0x0b58 NdisWan - ok
16:45:20.0801 0x0b58 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\Windows\system32\DRIVERS\ndiswan.sys
16:45:20.0801 0x0b58 NdisWanLegacy - ok
16:45:20.0817 0x0b58 [ 0BBE2FA30BAD58C9ADC01E4F84A3D2A1, 913AEC8A5F735C2EFDCB417E4077AB5A15457C601E6E88A1F4FA52C91E6E0BBF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:45:20.0817 0x0b58 NDProxy - ok
16:45:20.0817 0x0b58 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\Windows\system32\drivers\Ndu.sys
16:45:20.0832 0x0b58 Ndu - ok
16:45:20.0832 0x0b58 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:45:20.0848 0x0b58 NetBIOS - ok
16:45:20.0848 0x0b58 [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:45:20.0864 0x0b58 NetBT - ok
16:45:20.0864 0x0b58 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\Windows\system32\lsass.exe
16:45:20.0879 0x0b58 Netlogon - ok
16:45:20.0879 0x0b58 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\Windows\System32\netman.dll
16:45:20.0895 0x0b58 Netman - ok
16:45:20.0910 0x0b58 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\Windows\System32\netprofmsvc.dll
16:45:20.0926 0x0b58 netprofm - ok
16:45:20.0926 0x0b58 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:45:20.0942 0x0b58 NetTcpPortSharing - ok
16:45:20.0942 0x0b58 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\Windows\System32\drivers\netvsc63.sys
16:45:20.0957 0x0b58 netvsc - ok
16:45:20.0957 0x0b58 [ 2DD2B016354ECBAB0C4E3AB5CC1DD0A7, 49A1051E22251C4D1D321B0EE4E4B79B0243D46CA019C9E115B5BCDC2DD2C30F ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
16:45:20.0957 0x0b58 NitroDriverReadSpool8 - ok
16:45:20.0973 0x0b58 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\Windows\System32\nlasvc.dll
16:45:20.0989 0x0b58 NlaSvc - ok
16:45:20.0989 0x0b58 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:45:21.0004 0x0b58 Npfs - ok
16:45:21.0004 0x0b58 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
16:45:21.0004 0x0b58 npsvctrig - ok
16:45:21.0020 0x0b58 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\Windows\system32\nsisvc.dll
16:45:21.0020 0x0b58 nsi - ok
16:45:21.0020 0x0b58 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:45:21.0035 0x0b58 nsiproxy - ok
16:45:21.0067 0x0b58 [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:45:21.0114 0x0b58 Ntfs - ok
16:45:21.0129 0x0b58 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\Windows\system32\drivers\Null.sys
16:45:21.0129 0x0b58 Null - ok
16:45:21.0145 0x0b58 [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
16:45:21.0145 0x0b58 NVHDA - ok
16:45:21.0332 0x0b58 [ 7F58A8A5F208557F1FF8D7F45D5811DB, D9999DAD9BBBC907C8633AD08D90E40D861E9941A74CCF3C6183C9E220FEA0E9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:45:21.0489 0x0b58 nvlddmkm - ok
16:45:21.0535 0x0b58 [ EC4F787905DC5753C46A4C05CEBADF45, 334E7E277A6FDABD91108DC4FE0D861DE6C00616CCFDC5E2D390CDDED62AF5D5 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:45:21.0567 0x0b58 NvNetworkService - ok
16:45:21.0567 0x0b58 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:45:21.0582 0x0b58 nvraid - ok
16:45:21.0582 0x0b58 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:45:21.0598 0x0b58 nvstor - ok
16:45:21.0598 0x0b58 [ D92F4ED189C8207D0274B8B6BB494892, 8F7656662D3F26BE51AED9B7368278B18915F98A627E70021F914016BF3E22DB ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:45:21.0598 0x0b58 NvStreamKms - ok
16:45:21.0598 0x0b58 NvStreamSvc - ok
16:45:21.0614 0x0b58 [ EC43F992182F6F810BF86400CE6F89C4, 24CFC6FD892A63A1F962292067069FA0AB704931E61D843A83A28162DF62A58E ] NvStUSB C:\Windows\system32\DRIVERS\nvstusb.sys
16:45:21.0629 0x0b58 NvStUSB - ok
16:45:21.0645 0x0b58 [ 806069C408AE736E2182D2FF6C2FA8EE, 9C2D2309C4F4135772C53C10C7442BCA362657B062177B20C2F00DC2137E8362 ] nvsvc C:\Windows\system32\nvvsvc.exe
16:45:21.0660 0x0b58 nvsvc - ok
16:45:21.0676 0x0b58 [ DBFE7B2DF103F74AE51840B3C5F25FE9, 436CAA417FD24BA870F117FA4BABA2AB694825795508BCFCC8C927CC2D5BBC5E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
16:45:21.0676 0x0b58 nvvad_WaveExtensible - ok
16:45:21.0676 0x0b58 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:45:21.0692 0x0b58 nv_agp - ok
16:45:21.0723 0x0b58 [ 4F2ED8FB21F127DC1FA98D4CA2279E75, 96DB5DF9C55757EB2F761309036F87D8C55BAB2851FBB716A02A9248712CB13A ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
16:45:21.0754 0x0b58 Origin Client Service - ok
16:45:21.0770 0x0b58 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:45:21.0785 0x0b58 p2pimsvc - ok
16:45:21.0785 0x0b58 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\Windows\system32\p2psvc.dll
16:45:21.0801 0x0b58 p2psvc - ok
16:45:21.0817 0x0b58 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\Windows\System32\drivers\parport.sys
16:45:21.0817 0x0b58 Parport - ok
16:45:21.0832 0x0b58 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:45:21.0832 0x0b58 partmgr - ok
16:45:21.0848 0x0b58 [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:45:21.0864 0x0b58 PcaSvc - ok
16:45:21.0864 0x0b58 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\Windows\system32\drivers\pci.sys
16:45:21.0879 0x0b58 pci - ok
16:45:21.0879 0x0b58 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\Windows\system32\drivers\pciide.sys
16:45:21.0895 0x0b58 pciide - ok
16:45:21.0895 0x0b58 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:45:21.0895 0x0b58 pcmcia - ok
16:45:21.0911 0x0b58 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\Windows\system32\drivers\pcw.sys
16:45:21.0911 0x0b58 pcw - ok
16:45:21.0911 0x0b58 [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc C:\Windows\system32\drivers\pdc.sys
16:45:21.0926 0x0b58 pdc - ok
16:45:21.0942 0x0b58 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:45:21.0957 0x0b58 PEAUTH - ok
16:45:21.0989 0x0b58 [ A35EC8F902475350DA31BDF0E1402A91, 5AB43B4BD70B44A62FFD21A9D3CB8D1BC035B6E001DBB1BAC30D6D7A07475D83 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
16:45:22.0036 0x0b58 PeerDistSvc - ok
16:45:22.0082 0x0b58 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:45:22.0098 0x0b58 PerfHost - ok
16:45:22.0145 0x0b58 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\Windows\system32\pla.dll
16:45:22.0176 0x0b58 pla - ok
16:45:22.0176 0x0b58 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:45:22.0192 0x0b58 PlugPlay - ok
16:45:22.0192 0x0b58 PnkBstrA - ok
16:45:22.0192 0x0b58 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:45:22.0207 0x0b58 PNRPAutoReg - ok
16:45:22.0207 0x0b58 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:45:22.0223 0x0b58 PNRPsvc - ok
16:45:22.0239 0x0b58 [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:45:22.0254 0x0b58 PolicyAgent - ok
16:45:22.0254 0x0b58 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\Windows\system32\umpo.dll
16:45:22.0270 0x0b58 Power - ok
16:45:22.0270 0x0b58 [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:45:22.0286 0x0b58 PptpMiniport - ok
16:45:22.0332 0x0b58 [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
16:45:22.0395 0x0b58 PrintNotify - ok
16:45:22.0395 0x0b58 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\Windows\System32\drivers\processr.sys
16:45:22.0411 0x0b58 Processor - ok
16:45:22.0411 0x0b58 [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc C:\Windows\system32\profsvc.dll
16:45:22.0426 0x0b58 ProfSvc - ok
16:45:22.0426 0x0b58 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:45:22.0442 0x0b58 Psched - ok
16:45:22.0442 0x0b58 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\Windows\system32\qwave.dll
16:45:22.0457 0x0b58 QWAVE - ok
16:45:22.0457 0x0b58 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:45:22.0473 0x0b58 QWAVEdrv - ok
16:45:22.0473 0x0b58 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:45:22.0473 0x0b58 RasAcd - ok
16:45:22.0489 0x0b58 [ 3EE5097945A7F680E320953271EB2D4F, 0B9F2B458177A654F65C5E862B7C55B35E20271B76D5E20A20F30D3223A1216F ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:45:22.0489 0x0b58 RasAgileVpn - ok
16:45:22.0489 0x0b58 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\Windows\System32\rasauto.dll
16:45:22.0504 0x0b58 RasAuto - ok
16:45:22.0504 0x0b58 [ 1BD3022FD6E450B00DE560265638FD2A, 3878B443053DFFED62641BE8736891F426C7121EB8C4DB38FF0F218697133A6D ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:45:22.0520 0x0b58 Rasl2tp - ok
16:45:22.0536 0x0b58 [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan C:\Windows\System32\rasmans.dll
16:45:22.0551 0x0b58 RasMan - ok
16:45:22.0551 0x0b58 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:45:22.0551 0x0b58 RasPppoe - ok
16:45:22.0567 0x0b58 [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:45:22.0567 0x0b58 RasSstp - ok
16:45:22.0582 0x0b58 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:45:22.0598 0x0b58 rdbss - ok
16:45:22.0598 0x0b58 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
16:45:22.0614 0x0b58 rdpbus - ok
16:45:22.0614 0x0b58 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
16:45:22.0629 0x0b58 RDPDR - ok
16:45:22.0629 0x0b58 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:45:22.0629 0x0b58 RdpVideoMiniport - ok
16:45:22.0645 0x0b58 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:45:22.0645 0x0b58 rdyboost - ok
16:45:22.0676 0x0b58 [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS C:\Windows\system32\drivers\ReFS.sys
16:45:22.0692 0x0b58 ReFS - ok
16:45:22.0707 0x0b58 [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:45:22.0707 0x0b58 RemoteAccess - ok
16:45:22.0723 0x0b58 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:45:22.0739 0x0b58 RemoteRegistry - ok
16:45:22.0739 0x0b58 [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
16:45:22.0739 0x0b58 Revoflt - ok
16:45:22.0739 0x0b58 [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys
16:45:22.0754 0x0b58 RFCOMM - ok
16:45:22.0754 0x0b58 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:45:22.0770 0x0b58 RpcEptMapper - ok
16:45:22.0770 0x0b58 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\Windows\system32\locator.exe
16:45:22.0786 0x0b58 RpcLocator - ok
16:45:22.0801 0x0b58 [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs C:\Windows\system32\rpcss.dll
16:45:22.0817 0x0b58 RpcSs - ok
16:45:22.0817 0x0b58 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:45:22.0832 0x0b58 rspndr - ok
16:45:22.0832 0x0b58 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\Windows\System32\drivers\vms3cap.sys
16:45:22.0848 0x0b58 s3cap - ok
16:45:22.0848 0x0b58 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\Windows\system32\lsass.exe
16:45:22.0848 0x0b58 SamSs - ok
16:45:22.0864 0x0b58 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:45:22.0864 0x0b58 sbp2port - ok
16:45:22.0879 0x0b58 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:45:22.0879 0x0b58 SCardSvr - ok
16:45:22.0895 0x0b58 [ A5C91E4A9B97665E5A10317C1625AFF9, 2B0B5F658AE259DF971112EA1A0266748E6092D08A49F48CE2872CB049B572D8 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
16:45:22.0895 0x0b58 SCDEmu - ok
16:45:22.0895 0x0b58 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\Windows\System32\ScDeviceEnum.dll
16:45:22.0911 0x0b58 ScDeviceEnum - ok
16:45:22.0911 0x0b58 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:45:22.0926 0x0b58 scfilter - ok
16:45:22.0942 0x0b58 [ A626F5E446860F22835E783142D7AE33, 3A786639E1FABCA512F4F91A10811DD3C4D9C9C9BB893362E4D019219D0BD8E2 ] Schedule C:\Windows\system32\schedsvc.dll
16:45:22.0973 0x0b58 Schedule - ok
16:45:22.0973 0x0b58 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:45:22.0989 0x0b58 SCPolicySvc - ok
16:45:23.0004 0x0b58 [ 27FF998504DEF8D29A771FBB41707C5E, 82035EA15E5241C9C39B5474E5CBA49BB188B4B792B121ABF98659460A1EDE85 ] sdbus C:\Windows\System32\drivers\sdbus.sys
16:45:23.0004 0x0b58 sdbus - ok
16:45:23.0020 0x0b58 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\Windows\System32\drivers\sdstor.sys
16:45:23.0020 0x0b58 sdstor - ok
16:45:23.0020 0x0b58 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:45:23.0036 0x0b58 secdrv - ok
16:45:23.0036 0x0b58 [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon C:\Windows\system32\seclogon.dll
16:45:23.0051 0x0b58 seclogon - ok
16:45:23.0051 0x0b58 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\Windows\System32\sens.dll
16:45:23.0051 0x0b58 SENS - ok
16:45:23.0067 0x0b58 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:45:23.0082 0x0b58 SensrSvc - ok
16:45:23.0082 0x0b58 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\Windows\system32\drivers\SerCx.sys
16:45:23.0082 0x0b58 SerCx - ok
16:45:23.0098 0x0b58 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\Windows\system32\drivers\SerCx2.sys
16:45:23.0098 0x0b58 SerCx2 - ok
16:45:23.0098 0x0b58 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\Windows\System32\drivers\serenum.sys
16:45:23.0114 0x0b58 Serenum - ok
16:45:23.0114 0x0b58 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\Windows\System32\drivers\serial.sys
16:45:23.0129 0x0b58 Serial - ok
16:45:23.0129 0x0b58 [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\Windows\System32\drivers\sermouse.sys
16:45:23.0129 0x0b58 sermouse - ok
16:45:23.0145 0x0b58 [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv C:\Windows\system32\sessenv.dll
16:45:23.0161 0x0b58 SessionEnv - ok
16:45:23.0161 0x0b58 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
16:45:23.0176 0x0b58 sfloppy - ok
16:45:23.0176 0x0b58 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:45:23.0192 0x0b58 SharedAccess - ok
16:45:23.0207 0x0b58 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:45:23.0223 0x0b58 ShellHWDetection - ok
16:45:23.0223 0x0b58 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
16:45:23.0239 0x0b58 SiSRaid2 - ok
16:45:23.0239 0x0b58 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:45:23.0254 0x0b58 SiSRaid4 - ok
16:45:23.0254 0x0b58 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\Windows\System32\smphost.dll
16:45:23.0254 0x0b58 smphost - ok
16:45:23.0270 0x0b58 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:45:23.0270 0x0b58 SNMPTRAP - ok
16:45:23.0286 0x0b58 [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport C:\Windows\system32\drivers\spaceport.sys
16:45:23.0301 0x0b58 spaceport - ok
16:45:23.0301 0x0b58 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
16:45:23.0317 0x0b58 SpbCx - ok
16:45:23.0332 0x0b58 [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler C:\Windows\System32\spoolsv.exe
16:45:23.0348 0x0b58 Spooler - ok
16:45:23.0457 0x0b58 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\Windows\system32\sppsvc.exe
16:45:23.0582 0x0b58 sppsvc - ok
16:45:23.0598 0x0b58 [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:45:23.0614 0x0b58 srv - ok
16:45:23.0629 0x0b58 [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:45:23.0645 0x0b58 srv2 - ok
16:45:23.0645 0x0b58 [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:45:23.0661 0x0b58 srvnet - ok
16:45:23.0676 0x0b58 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:45:23.0676 0x0b58 SSDPSRV - ok
16:45:23.0692 0x0b58 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:45:23.0692 0x0b58 SstpSvc - ok
16:45:23.0707 0x0b58 [ 8330F6741D4D8691B58663EBD831F8D7, 42452A69CD2EA7CCD50A7F0ACFB804AA7CC7F38F47111CB57EEB8E8EA07A4D73 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:45:23.0723 0x0b58 Stereo Service - ok
16:45:23.0723 0x0b58 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\Windows\system32\drivers\stexstor.sys
16:45:23.0723 0x0b58 stexstor - ok
16:45:23.0739 0x0b58 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\Windows\System32\wiaservc.dll
16:45:23.0770 0x0b58 stisvc - ok
16:45:23.0770 0x0b58 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\Windows\system32\drivers\storahci.sys
16:45:23.0770 0x0b58 storahci - ok
16:45:23.0786 0x0b58 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
16:45:23.0786 0x0b58 storflt - ok
16:45:23.0786 0x0b58 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\Windows\system32\drivers\stornvme.sys
16:45:23.0801 0x0b58 stornvme - ok
16:45:23.0801 0x0b58 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\Windows\system32\storsvc.dll
16:45:23.0801 0x0b58 StorSvc - ok
16:45:23.0817 0x0b58 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\Windows\system32\drivers\storvsc.sys
16:45:23.0817 0x0b58 storvsc - ok
16:45:23.0817 0x0b58 [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp C:\Windows\System32\drivers\storvsp.sys
16:45:23.0832 0x0b58 storvsp - ok
16:45:23.0832 0x0b58 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\Windows\system32\svsvc.dll
16:45:23.0848 0x0b58 svsvc - ok
16:45:23.0848 0x0b58 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\Windows\System32\drivers\swenum.sys
16:45:23.0848 0x0b58 swenum - ok
16:45:23.0864 0x0b58 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\Windows\System32\swprv.dll
16:45:23.0879 0x0b58 swprv - ok
16:45:23.0895 0x0b58 [ 25F0DA8E7F26416FDB5D77592B5C1A8B, 99E7ACA2FA0E3D98BA30947F7E7A59662D36048D9EB83E5BA04D643033B84DB5 ] Synth3dVsc C:\Windows\System32\drivers\Synth3dVsc.sys
16:45:23.0895 0x0b58 Synth3dVsc - ok
16:45:23.0911 0x0b58 [ 3114CB46C2853CA71525428CB0C7CB58, A9CC51506AABBC23BAB2B90E30AB13197A72268A3DE6D2F281C1C367ED7118AE ] SysMain C:\Windows\system32\sysmain.dll
16:45:23.0942 0x0b58 SysMain - ok
16:45:23.0957 0x0b58 [ 23BECB70654B192A7E378DEE3DBD8D42, 7596174AE7508B62C40A429645198F6A420D0CD5B62A10AB78516113584E7EDB ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
16:45:23.0957 0x0b58 SystemEventsBroker - ok
16:45:23.0973 0x0b58 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:45:23.0973 0x0b58 TabletInputService - ok
16:45:23.0989 0x0b58 [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
16:45:23.0989 0x0b58 tap0901 - ok
16:45:24.0004 0x0b58 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\Windows\System32\tapisrv.dll
16:45:24.0004 0x0b58 TapiSrv - ok
16:45:24.0020 0x0b58 [ 927D0CDB3F96EFC1E98FB1A2C9FB67AD, 58F14DAA0EA21EA2F2A1D3D62C88BD8E5A0E0EF498B7B8D367BEEADE6A46843C ] tapoas C:\Windows\system32\DRIVERS\tapoas.sys
16:45:24.0020 0x0b58 tapoas - ok
16:45:24.0067 0x0b58 [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:45:24.0114 0x0b58 Tcpip - ok
16:45:24.0161 0x0b58 [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:45:24.0207 0x0b58 TCPIP6 - ok
16:45:24.0223 0x0b58 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:45:24.0223 0x0b58 tcpipreg - ok
16:45:24.0239 0x0b58 [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:45:24.0239 0x0b58 tdx - ok
16:45:24.0239 0x0b58 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\Windows\System32\drivers\terminpt.sys
16:45:24.0254 0x0b58 terminpt - ok
16:45:24.0270 0x0b58 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\Windows\System32\termsrv.dll
16:45:24.0301 0x0b58 TermService - ok
16:45:24.0301 0x0b58 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\Windows\system32\themeservice.dll
16:45:24.0317 0x0b58 Themes - ok
16:45:24.0317 0x0b58 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\Windows\system32\mmcss.dll
16:45:24.0317 0x0b58 THREADORDER - ok
16:45:24.0332 0x0b58 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
16:45:24.0348 0x0b58 TimeBroker - ok
16:45:24.0348 0x0b58 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\Windows\system32\drivers\tpm.sys
16:45:24.0364 0x0b58 TPM - ok
16:45:24.0364 0x0b58 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\Windows\System32\trkwks.dll
16:45:24.0379 0x0b58 TrkWks - ok
16:45:24.0379 0x0b58 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:45:24.0379 0x0b58 TrustedInstaller - ok
16:45:24.0395 0x0b58 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:45:24.0395 0x0b58 TsUsbFlt - ok
16:45:24.0395 0x0b58 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
16:45:24.0411 0x0b58 TsUsbGD - ok
16:45:24.0411 0x0b58 [ 4A445D5E44CD996D18E128EF321D54B2, 7B5F504F34B0CBBD1D4B0F3634F707F4876D6B14B41EEEB09AEAA4BDDC75FDDD ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
16:45:24.0426 0x0b58 tsusbhub - ok
16:45:24.0426 0x0b58 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:45:24.0442 0x0b58 tunnel - ok
16:45:24.0442 0x0b58 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:45:24.0442 0x0b58 uagp35 - ok
16:45:24.0458 0x0b58 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
16:45:24.0458 0x0b58 UASPStor - ok
16:45:24.0473 0x0b58 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
16:45:24.0473 0x0b58 UCX01000 - ok
16:45:24.0489 0x0b58 [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:45:24.0504 0x0b58 udfs - ok
16:45:24.0504 0x0b58 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\Windows\System32\drivers\UEFI.sys
16:45:24.0504 0x0b58 UEFI - ok
16:45:24.0520 0x0b58 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:45:24.0520 0x0b58 UI0Detect - ok
16:45:24.0536 0x0b58 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:45:24.0536 0x0b58 uliagpkx - ok
16:45:24.0536 0x0b58 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\Windows\System32\drivers\umbus.sys
16:45:24.0551 0x0b58 umbus - ok
16:45:24.0551 0x0b58 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\Windows\System32\drivers\umpass.sys
16:45:24.0551 0x0b58 UmPass - ok
16:45:24.0567 0x0b58 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\Windows\System32\umrdp.dll
16:45:24.0583 0x0b58 UmRdpService - ok
16:45:24.0583 0x0b58 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\Windows\System32\upnphost.dll
16:45:24.0598 0x0b58 upnphost - ok
16:45:24.0614 0x0b58 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
16:45:24.0614 0x0b58 usbccgp - ok
16:45:24.0614 0x0b58 USBCCID - ok
16:45:24.0629 0x0b58 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\Windows\System32\drivers\usbcir.sys
16:45:24.0629 0x0b58 usbcir - ok
16:45:24.0645 0x0b58 [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci C:\Windows\System32\drivers\usbehci.sys
16:45:24.0645 0x0b58 usbehci - ok
16:45:24.0661 0x0b58 [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub C:\Windows\System32\drivers\usbhub.sys
16:45:24.0676 0x0b58 usbhub - ok
16:45:24.0692 0x0b58 [ FAA564A13576F9284546BF016D27B551, 1D2CD13DC0B02DD40657EE4F93F4A13C78D2F2EF91685E563D78E217C96DF544 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
16:45:24.0708 0x0b58 USBHUB3 - ok
16:45:24.0708 0x0b58 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\Windows\System32\drivers\usbohci.sys
16:45:24.0708 0x0b58 usbohci - ok
16:45:24.0723 0x0b58 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\Windows\System32\drivers\usbprint.sys
16:45:24.0723 0x0b58 usbprint - ok
16:45:24.0723 0x0b58 [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:45:24.0739 0x0b58 usbscan - ok
16:45:24.0739 0x0b58 [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
16:45:24.0754 0x0b58 USBSTOR - ok
16:45:24.0754 0x0b58 [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
16:45:24.0770 0x0b58 usbuhci - ok
16:45:24.0770 0x0b58 [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:45:24.0786 0x0b58 usbvideo - ok
16:45:24.0786 0x0b58 [ 1A20F03700D2B2ED775E38D751EF2F63, 76F8BE9F412D4397437E60A7E6231C80EA9B4F5436C9A8FAB967C78604994AE9 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
16:45:24.0801 0x0b58 USBXHCI - ok
16:45:24.0801 0x0b58 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\Windows\system32\lsass.exe
16:45:24.0817 0x0b58 VaultSvc - ok
16:45:24.0817 0x0b58 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:45:24.0833 0x0b58 vdrvroot - ok
16:45:24.0864 0x0b58 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\Windows\System32\vds.exe
16:45:24.0879 0x0b58 vds - ok
16:45:24.0895 0x0b58 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
16:45:24.0895 0x0b58 VerifierExt - ok
16:45:24.0911 0x0b58 [ F6ECFD6128A16A4851CFE98D4E01B011, C349893E8D7FB9B510A3FAD040F70C3C72B0ACDD5F6EB336951849F9E953717D ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
16:45:24.0926 0x0b58 vhdmp - ok
16:45:24.0989 0x0b58 [ 3826718E3B26643470094C414AA762CA, D3006479BE36D986844113B5B91976C9E6802E7B6207780D48ED00FCB50B6FE1 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
16:45:25.0036 0x0b58 VIAHdAudAddService - ok
16:45:25.0036 0x0b58 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\Windows\system32\drivers\viaide.sys
16:45:25.0051 0x0b58 viaide - ok
16:45:25.0051 0x0b58 [ A83A9731D98F7ACEC581AF9DDD57FE10, AA62505DA3D3270DA4287CC24642B21E08E62B46A8A50CFE6831F54C7C796C9B ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
16:45:25.0051 0x0b58 VIAKaraokeService - ok
16:45:25.0067 0x0b58 [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid C:\Windows\System32\drivers\Vid.sys
16:45:25.0067 0x0b58 Vid - ok
16:45:25.0083 0x0b58 [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\Windows\system32\drivers\vmbus.sys
16:45:25.0083 0x0b58 vmbus - ok
16:45:25.0083 0x0b58 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
16:45:25.0098 0x0b58 VMBusHID - ok
16:45:25.0098 0x0b58 [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr C:\Windows\System32\drivers\vmbusr.sys
16:45:25.0114 0x0b58 vmbusr - ok
16:45:25.0114 0x0b58 vmci - ok
16:45:25.0114 0x0b58 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
16:45:25.0129 0x0b58 vmicguestinterface - ok
16:45:25.0145 0x0b58 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
16:45:25.0161 0x0b58 vmicheartbeat - ok
16:45:25.0176 0x0b58 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
16:45:25.0192 0x0b58 vmickvpexchange - ok
16:45:25.0192 0x0b58 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\Windows\System32\ICSvc.dll
16:45:25.0208 0x0b58 vmicrdv - ok
16:45:25.0223 0x0b58 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\Windows\System32\ICSvc.dll
16:45:25.0239 0x0b58 vmicshutdown - ok
16:45:25.0254 0x0b58 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\Windows\System32\ICSvc.dll
16:45:25.0270 0x0b58 vmictimesync - ok
16:45:25.0270 0x0b58 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\Windows\System32\ICSvc.dll
16:45:25.0286 0x0b58 vmicvss - ok
16:45:25.0301 0x0b58 VMnetAdapter - ok
16:45:25.0301 0x0b58 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:45:25.0301 0x0b58 volmgr - ok
16:45:25.0317 0x0b58 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:45:25.0333 0x0b58 volmgrx - ok
16:45:25.0348 0x0b58 [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:45:25.0348 0x0b58 volsnap - ok
16:45:25.0364 0x0b58 [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci C:\Windows\System32\drivers\vpci.sys
16:45:25.0364 0x0b58 vpci - ok
16:45:25.0364 0x0b58 [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys
16:45:25.0379 0x0b58 vpcivsp - ok
16:45:25.0379 0x0b58 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:45:25.0395 0x0b58 vsmraid - ok
16:45:25.0411 0x0b58 [ 3B7F9612439EA47151EC5EAB232C1C3F, CA08CCB14CB46512F72E2C20454242B18BC57E34C55B42A37B7EC27B79242CDC ] VSS C:\Windows\system32\vssvc.exe
16:45:25.0442 0x0b58 VSS - ok
16:45:25.0458 0x0b58 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
16:45:25.0473 0x0b58 VSTXRAID - ok
16:45:25.0473 0x0b58 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
16:45:25.0473 0x0b58 vwifibus - ok
16:45:25.0489 0x0b58 [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:45:25.0489 0x0b58 vwififlt - ok
16:45:25.0489 0x0b58 [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:45:25.0504 0x0b58 vwifimp - ok
16:45:25.0504 0x0b58 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\Windows\system32\w32time.dll
16:45:25.0520 0x0b58 W32Time - ok
16:45:25.0536 0x0b58 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\Windows\System32\drivers\wacompen.sys
16:45:25.0536 0x0b58 WacomPen - ok
16:45:25.0536 0x0b58 [ B41F3E5780D97CFD44A717153AD9CF2C, 6133104D9E5BCFDCDF55E3C52AA701766102A8F86D3F2667BBBF7168E3B3E2AB ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:45:25.0551 0x0b58 WANARP - ok
16:45:25.0551 0x0b58 [ B41F3E5780D97CFD44A717153AD9CF2C, 6133104D9E5BCFDCDF55E3C52AA701766102A8F86D3F2667BBBF7168E3B3E2AB ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:45:25.0567 0x0b58 Wanarpv6 - ok
16:45:25.0598 0x0b58 [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine C:\Windows\system32\wbengine.exe
16:45:25.0629 0x0b58 wbengine - ok
16:45:25.0645 0x0b58 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:45:25.0661 0x0b58 WbioSrvc - ok
16:45:25.0661 0x0b58 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
16:45:25.0676 0x0b58 Wcmsvc - ok
16:45:25.0692 0x0b58 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:45:25.0708 0x0b58 wcncsvc - ok
16:45:25.0708 0x0b58 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:45:25.0708 0x0b58 WcsPlugInService - ok
16:45:25.0723 0x0b58 [ 1751F6B031ADAC34724511057D2E455D, BCBC77DE02718868302F7469E8FBB8F2E7E0F8A5D3E46A5B4D48713E829FBAF6 ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
16:45:25.0723 0x0b58 WdBoot - ok
16:45:25.0739 0x0b58 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:45:25.0754 0x0b58 Wdf01000 - ok
16:45:25.0770 0x0b58 [ D296D0F0DB2CD1504F90405603664493, 9531034AE2E027B5C7366713AA9003085501800B35F971D1CE7FFB8E5DAE3825 ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
16:45:25.0786 0x0b58 WdFilter - ok
16:45:25.0786 0x0b58 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:45:25.0801 0x0b58 WdiServiceHost - ok
16:45:25.0801 0x0b58 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:45:25.0817 0x0b58 WdiSystemHost - ok
16:45:25.0817 0x0b58 [ 9F4DF0043965808973023A9B51A11136, 3A799125CBC5C214D9FBB91C348B39563B1FDB7403B520270752E9A177464723 ] WdNisDrv C:\Windows\system32\Drivers\WdNisDrv.sys
16:45:25.0817 0x0b58 WdNisDrv - ok
16:45:25.0817 0x0b58 WdNisSvc - ok
16:45:25.0833 0x0b58 [ 185E4111627F7AA6799E1366B5E91D65, 7A02C816DFBCCF47EDB49E5E2005A3D0B80719FAC94F9298D2DBAC63950EDA05 ] WebClient C:\Windows\System32\webclnt.dll
16:45:25.0848 0x0b58 WebClient - ok
16:45:25.0848 0x0b58 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:45:25.0864 0x0b58 Wecsvc - ok
16:45:25.0864 0x0b58 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\Windows\system32\wephostsvc.dll
16:45:25.0879 0x0b58 WEPHOSTSVC - ok
16:45:25.0879 0x0b58 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:45:25.0895 0x0b58 wercplsupport - ok
16:45:25.0895 0x0b58 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\Windows\System32\WerSvc.dll
16:45:25.0911 0x0b58 WerSvc - ok
16:45:25.0911 0x0b58 [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
16:45:25.0911 0x0b58 WFPLWFS - ok
16:45:25.0926 0x0b58 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\Windows\System32\wiarpc.dll
16:45:25.0926 0x0b58 WiaRpc - ok
16:45:25.0942 0x0b58 [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
16:45:25.0942 0x0b58 WimFltr - ok
16:45:25.0942 0x0b58 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:45:25.0958 0x0b58 WIMMount - ok
16:45:25.0958 0x0b58 WinDefend - ok
16:45:25.0958 0x0b58 [ 82597A56652EB73A95484ADA65EB532B, 8DAFA715B9192CB37422DD6DDAC9B358B12CFE6B52A53240BF980C7559FE9371 ] WinDriver6 C:\Windows\system32\drivers\windrvr6.sys
16:45:25.0973 0x0b58 WinDriver6 - ok
16:45:25.0989 0x0b58 [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
16:45:26.0004 0x0b58 WinHttpAutoProxySvc - ok
16:45:26.0020 0x0b58 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:45:26.0036 0x0b58 Winmgmt - ok
16:45:26.0083 0x0b58 [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM C:\Windows\system32\WsmSvc.dll
16:45:26.0129 0x0b58 WinRM - ok
16:45:26.0161 0x0b58 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\Windows\System32\wlansvc.dll
16:45:26.0192 0x0b58 WlanSvc - ok
16:45:26.0223 0x0b58 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\Windows\system32\wlidsvc.dll
16:45:26.0270 0x0b58 wlidsvc - ok
16:45:26.0270 0x0b58 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
16:45:26.0270 0x0b58 WmiAcpi - ok
16:45:26.0286 0x0b58 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:45:26.0286 0x0b58 wmiApSrv - ok
16:45:26.0301 0x0b58 WMPNetworkSvc - ok
16:45:26.0301 0x0b58 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\Windows\system32\drivers\Wof.sys
16:45:26.0301 0x0b58 Wof - ok
16:45:26.0333 0x0b58 [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc C:\Windows\system32\workfolderssvc.dll
16:45:26.0379 0x0b58 workfolderssvc - ok
16:45:26.0379 0x0b58 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
16:45:26.0379 0x0b58 wpcfltr - ok
16:45:26.0395 0x0b58 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:45:26.0395 0x0b58 WPCSvc - ok
16:45:26.0395 0x0b58 [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:45:26.0411 0x0b58 WPDBusEnum - ok
16:45:26.0411 0x0b58 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
16:45:26.0426 0x0b58 WpdUpFltr - ok
16:45:26.0426 0x0b58 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:45:26.0426 0x0b58 ws2ifsl - ok
16:45:26.0442 0x0b58 [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc C:\Windows\System32\wscsvc.dll
16:45:26.0442 0x0b58 wscsvc - ok
16:45:26.0442 0x0b58 WSearch - ok
16:45:26.0504 0x0b58 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\Windows\System32\WSService.dll
16:45:26.0583 0x0b58 WSService - ok
16:45:26.0645 0x0b58 [ 5F3D70B19BCAC985DA90F22CA2FF45E4, BBD82BAEF0DCA2C6361F8D1ADF5BED36D0F1AB1A2AEADB0E4526B917F40C2E52 ] wuauserv C:\Windows\system32\wuaueng.dll
16:45:26.0708 0x0b58 wuauserv - ok
16:45:26.0723 0x0b58 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:45:26.0723 0x0b58 WudfPf - ok
16:45:26.0739 0x0b58 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
16:45:26.0739 0x0b58 WUDFRd - ok
16:45:26.0754 0x0b58 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP C:\Windows\System32\drivers\WUDFRd.sys
16:45:26.0754 0x0b58 WUDFSensorLP - ok
16:45:26.0770 0x0b58 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:45:26.0770 0x0b58 wudfsvc - ok
16:45:26.0786 0x0b58 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\Windows\System32\drivers\WUDFRd.sys
16:45:26.0786 0x0b58 WUDFWpdFs - ok
16:45:26.0801 0x0b58 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\Windows\System32\wwansvc.dll
16:45:26.0817 0x0b58 WwanSvc - ok
16:45:26.0833 0x0b58 ================ Scan global ===============================
16:45:26.0848 0x0b58 [ 243F54DBA6EB48A369CA465E263ABA4A, 9D9F9DE783D000F3EA130EB68FD71319F21E4F1CD4232FB8B2F8A9A67E08F5F4 ] C:\Windows\system32\basesrv.dll
16:45:26.0848 0x0b58 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\Windows\system32\winsrv.dll
16:45:26.0864 0x0b58 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\Windows\system32\sxssrv.dll
16:45:26.0864 0x0b58 [ 5BF02EBEFEDC706318C96E2E60EDCB91, DC866C5BC3A887CAAA7169AB9BB2992F6F877B3EA04B62B4F95B6BD54943155F ] C:\Windows\system32\services.exe
16:45:26.0879 0x0b58 [ Global ] - ok
16:45:26.0879 0x0b58 ================ Scan MBR ==================================
16:45:26.0879 0x0b58 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:45:27.0020 0x0b58 \Device\Harddisk0\DR0 - ok
16:45:27.0020 0x0b58 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:45:27.0395 0x0b58 \Device\Harddisk1\DR1 - ok
16:45:27.0395 0x0b58 ================ Scan VBR ==================================
16:45:27.0395 0x0b58 [ 71F12674AE054908A8FA5C3BE1DD9C24 ] \Device\Harddisk0\DR0\Partition1
16:45:27.0411 0x0b58 \Device\Harddisk0\DR0\Partition1 - ok
16:45:27.0411 0x0b58 [ 33AA3A1E24727DD17065EF2CE8E4D763 ] \Device\Harddisk0\DR0\Partition2
16:45:27.0411 0x0b58 \Device\Harddisk0\DR0\Partition2 - ok
16:45:27.0411 0x0b58 [ 2E43452C4D4E970510553ABD421E13CD ] \Device\Harddisk1\DR1\Partition1
16:45:27.0505 0x0b58 \Device\Harddisk1\DR1\Partition1 - ok
16:45:27.0505 0x0b58 ================ Scan generic autorun ======================
16:45:27.0630 0x0b58 [ C019E2FEB48A2B618E03A9FCD879B72A, 585B8072337C9E11BE1854E2A062E59CDCEC1406292987E6FDCA752F1848FD4E ] C:\Program Files\ESET\ESET Smart Security\egui.exe
16:45:27.0708 0x0b58 egui - ok
16:45:27.0755 0x0b58 [ 1F441326CD77B3F1532D487004B180FF, FD2FE6EECE1EF99F800DAF7B0C825C94FACE4C6D5806A2335B4D3C41F1E87F7F ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:45:27.0801 0x0b58 NvBackend - ok
16:45:27.0895 0x0b58 [ 713E871D7FF6A61AE32FFD688AD0E55A, 3FE91A1789F6E901DB2BF1F6C23934F2686EEAB5E20F0016B5B4915C50073D3A ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
16:45:27.0973 0x0b58 HDAudDeck - ok
16:45:27.0989 0x0b58 [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\Windows\system32\rundll32.exe
16:45:27.0989 0x0b58 ShadowPlay - ok
16:45:28.0083 0x0b58 [ 713E871D7FF6A61AE32FFD688AD0E55A, 3FE91A1789F6E901DB2BF1F6C23934F2686EEAB5E20F0016B5B4915C50073D3A ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
16:45:28.0161 0x0b58 HDAudDeck - ok
16:45:28.0301 0x0b58 [ 14EF06B1EA531D681B5738F37388B99C, AB74735A3569B7995572FD7B0D026919CADA27C43A6AD0503659CE7CA3FF6B84 ] C:\Program Files\CCleaner\CCleaner64.exe
16:45:28.0426 0x0b58 CCleaner Monitoring - ok
16:45:28.0426 0x0b58 Waiting for KSN requests completion. In queue: 339
16:45:29.0442 0x0b58 Waiting for KSN requests completion. In queue: 29
16:45:30.0458 0x0b58 Waiting for KSN requests completion. In queue: 29
16:45:31.0474 0x0b58 AV detected via SS2: ESET Smart Security 8.0, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 8.0.304.0 ), 0x42000 ( disabled : updated )
16:45:31.0474 0x0b58 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.7.205.0 ), 0x60100 ( disabled : updated )
16:45:31.0474 0x0b58 FW detected via SS2: ESET Personální firewall, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 8.0.304.0 ), 0x40010 ( disabled )
16:45:31.0474 0x0b58 Win FW state via NFP2: enabled
16:45:33.0896 0x0b58 ============================================================
16:45:33.0896 0x0b58 Scan finished
16:45:33.0896 0x0b58 ============================================================
16:45:33.0896 0x1560 Detected object count: 0
16:45:33.0896 0x1560 Actual detected object count: 0
16:48:26.0535 0x0b5c Deinitialize success

konu · #25 Příspěvek od **konu** » 17 dub 2015 21:50

Bohužel mi nejde vytvořit bootovatelný disk zkoušel jsem to podle návodu s exe extraktorem ,přes ten wintoflash, yumy.
Přepnout na IDE nepomohlo. Stejně se mi vždycky v biosu ukáže automaticky název nového boot disku nebo boot cd při startu i bez přepínání IDE/SATA.
Možná to je mnou.

Tak jsem ho otevřel aspoň ve Windows s flešky

OTL logfile created on: 17. 4. 2015 22:36:10 - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = G:\PROGRAMS\OTLPE
64bit-Windows 8.1 Enterprise (Version = 6.3.9600) - Type = System
Internet Explorer (Version = 9.11.9600.17728)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

12,00 Gb Total Physical Memory | 11,00 Gb Available Physical Memory | 88,00% Memory free
24,00 Gb Paging File | 23,00 Gb Available in Paging File | 94,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119,14 Gb Total Space | 64,35 Gb Free Space | 54,01% Space Free | Partition Type: NTFS
Drive D: | 931,51 Gb Total Space | 72,87 Gb Free Space | 7,82% Space Free | Partition Type: NTFS
Drive G: | 14,42 Gb Total Space | 13,99 Gb Free Space | 96,98% Space Free | Partition Type: FAT32

Computer Name: ASUS-PC | User Name: tom
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2015/02/04 01:58:28 | 000,366,520 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2015/02/04 01:58:28 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2015/01/16 08:42:37 | 001,148,744 | ---- | M] (NVIDIA Corporation) [Auto] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:64bit: - [2015/01/16 08:42:33 | 021,833,544 | ---- | M] (NVIDIA Corporation) [Auto] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2014/10/29 03:48:54 | 000,155,648 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2014/10/29 03:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\smphost.dll -- (smphost)
SRV:64bit: - [2014/10/29 03:02:34 | 000,695,296 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/10/29 03:01:27 | 000,046,592 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV:64bit: - [2014/10/29 02:53:11 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/10/01 15:40:28 | 001,349,576 | ---- | M] (ESET) [Auto] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2014/08/16 05:29:40 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012/12/13 12:47:42 | 000,230,408 | ---- | M] (Nitro PDF Software) [Auto] -- C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe -- (NitroDriverReadSpool8)
SRV - [2015/02/03 16:26:15 | 000,076,152 | ---- | M] () [Auto] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2015/01/30 18:18:21 | 001,910,128 | ---- | M] (Electronic Arts) [On_Demand] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2015/01/16 08:42:37 | 001,706,312 | ---- | M] (NVIDIA Corporation) [Auto] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015/01/10 00:27:57 | 000,410,768 | ---- | M] (NVIDIA Corporation) [Auto] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/10/29 03:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2014/10/29 03:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2014/10/29 02:53:11 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2012/11/14 15:42:46 | 000,106,880 | ---- | M] (ASUSTek Computer Inc.) [Auto] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2012/01/20 10:35:26 | 000,045,696 | ---- | M] (ASUSTek Computer Inc.) [Auto] -- C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe -- (FanChkService)
SRV - [2011/11/21 15:19:50 | 000,096,896 | ---- | M] (ASUS) [Auto] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2015/01/16 08:42:32 | 000,019,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:64bit: - [2000/06/29 15:24:14 | 000,003,584 | ---- | M] () [Kernel | On_Demand] -- C:\Windows\System32\drivers\DLPORTIO.SYS -- (DLPortIO)
DRV - [2011/09/07 10:55:04 | 000,017,536 | ---- | M] (ASUS) [Kernel | System] -- C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys -- (ATKWMIACPIIO)
DRV - [2009/07/02 18:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)
DRV - [2000/06/29 15:24:14 | 000,003,584 | ---- | M] () [Kernel | On_Demand] -- C:\Windows\SysWOW64\drivers\DLPORTIO.SYS -- (DLPortIO)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3332171635-80688016-592393309-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-3332171635-80688016-592393309-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-3332171635-80688016-592393309-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: File not found
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npdeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

O1 HOSTS File: ([2015/02/02 19:15:32 | 000,000,853 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 player.kmpmedia.net
O2:64bit: - BHO: (Adblock Plus for IE Browser Helper Object) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Eyeo GmbH)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (WinToFlash Suggestor) - {FC36B0BD-27F0-4cdd-8AB1-50651EFC3EFD} - C:\Program Files (x86)\WinToFlash Suggestor\WinToFlashSuggestor.dll (Novicorp LLC)
O2 - BHO: (Adblock Plus for IE Browser Helper Object) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Eyeo GmbH)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ShadowPlay] File not found
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKU\S-1-5-21-3332171635-80688016-592393309-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: WinToFlash Suggestor - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - C:\Program Files (x86)\WinToFlash Suggestor\WinToFlashSuggestor.dll (Novicorp LLC)
O9 - Extra 'Tools' menuitem : WinToFlash Suggestor options - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - C:\Program Files (x86)\WinToFlash Suggestor\WinToFlashSuggestor.dll (Novicorp LLC)
O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\System32\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015/01/15 15:59:36 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - Unable to obtain root file information for disk D:\
O32 - AutoRun File - [2015/04/17 22:20:34 | 000,000,053 | ---- | M] () - G:\AUTORUN.INF -- [ FAT32 ]
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = "F:\SETUP.EXE"
O33 - MountPoints2\F\Shell\configure\command - "" = F:\SETUP.EXE
O33 - MountPoints2\F\Shell\install\command - "" = F:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2015/04/17 17:32:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinToFlash Suggestor
[2015/04/15 17:41:15 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2015/04/15 17:41:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015/04/15 13:52:09 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Local\Opera Software
[2015/04/15 13:51:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2015/04/15 13:46:29 | 000,000,000 | ---D | C] -- C:\_OTL
[2015/04/15 13:21:48 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Local\MigWiz
[2015/04/15 13:10:01 | 001,498,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
[2015/04/15 13:10:01 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2015/04/15 13:10:01 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2015/04/15 13:10:01 | 000,257,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
[2015/04/15 13:10:00 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tracerpt.exe
[2015/04/15 13:10:00 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tracerpt.exe
[2015/04/15 13:09:47 | 004,305,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll
[2015/04/15 13:09:47 | 004,305,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015/04/15 13:09:45 | 000,664,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2015/04/15 13:09:45 | 000,664,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2015/04/15 13:09:44 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2015/04/15 13:09:44 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2015/04/15 13:09:44 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2015/04/15 13:09:44 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015/04/15 13:09:44 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2015/04/15 13:09:01 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clfsw32.dll
[2015/04/15 13:09:01 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clfsw32.dll
[2015/04/14 20:45:12 | 000,721,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2015/04/14 20:45:12 | 000,721,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2015/04/14 20:45:11 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2015/04/14 20:45:11 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2015/04/14 20:45:11 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2015/04/14 20:45:11 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2015/04/14 20:45:11 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2015/04/14 20:45:11 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2015/04/14 20:45:11 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2015/04/14 20:45:11 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2015/04/14 15:28:04 | 000,106,928 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[2015/04/14 15:28:04 | 000,106,928 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2015/04/14 15:27:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Bootable Recovery Tool Wizard
[2015/04/14 15:27:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Bootable Recovery Tool Wizard
[2015/04/14 15:27:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2015/04/12 21:54:41 | 000,000,000 | ---D | C] -- C:\ProgramData\AntiSpyInfo
[2015/04/12 21:54:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Anti-Spy.Info
[2015/04/12 21:46:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015/04/12 21:46:55 | 000,000,000 | ---D | C] -- C:\rsit
[2015/04/12 21:44:59 | 000,000,000 | ---D | C] -- C:\Users\tom\Desktop\Bezpečnost
[2015/04/12 21:36:57 | 000,000,000 | ---D | C] -- C:\FRST
[2015/04/12 11:32:26 | 000,000,000 | ---D | C] -- C:\NPE
[2015/04/08 20:15:02 | 001,124,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
[2015/04/08 13:18:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Emsisoft
[2015/04/07 20:59:19 | 000,000,000 | ---D | C] -- C:\Users\tom\Desktop\RS232
[2015/04/06 17:12:22 | 000,000,000 | ---D | C] -- C:\Users\tom\Desktop\Programování mikrokontrolérů PIC16Cxx -BEN- Jiří Hrbáček
[2015/04/04 17:47:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PonyProg2000
[2015/04/04 17:47:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PonyProg
[2015/04/04 17:03:07 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Local\IsolatedStorage
[2015/04/04 17:03:05 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Roaming\VisualAssistAtmel
[2015/04/04 17:03:04 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Local\VisualAssistAtmel
[2015/04/04 16:59:30 | 000,000,000 | ---D | C] -- C:\Users\tom\Documents\Atmel Studio
[2015/04/04 16:59:30 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Roaming\Atmel
[2015/04/04 16:59:29 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Local\Atmel
[2015/04/04 16:58:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atmel
[2015/04/04 16:57:48 | 000,067,680 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\SysWow64\libusb0.dll
[2015/04/04 16:57:48 | 000,067,680 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\System32\libusb0.dll
[2015/04/04 16:57:48 | 000,042,592 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\SysWow64\drivers\libusb0.sys
[2015/04/04 16:57:48 | 000,042,592 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\System32\drivers\libusb0.sys
[2015/04/04 16:57:34 | 000,151,552 | ---- | C] (Jungo Connectivity) -- C:\Windows\SysWow64\wdapi1150.dll
[2015/04/04 16:57:34 | 000,151,552 | ---- | C] (Jungo Connectivity) -- C:\Windows\System32\wdapi1150.dll
[2015/04/04 16:57:34 | 000,151,552 | ---- | C] (Jungo Connectivity) -- C:\Windows\SysWow64\wdapi1140.dll
[2015/04/04 16:57:34 | 000,151,552 | ---- | C] (Jungo Connectivity) -- C:\Windows\System32\wdapi1140.dll
[2015/04/04 16:57:34 | 000,147,456 | ---- | C] (Jungo) -- C:\Windows\SysWow64\wdapi1021.dll
[2015/04/04 16:57:34 | 000,147,456 | ---- | C] (Jungo) -- C:\Windows\System32\wdapi1021.dll
[2015/04/04 16:57:34 | 000,143,360 | ---- | C] (Jungo) -- C:\Windows\SysWow64\wdapi1010.dll
[2015/04/04 16:57:34 | 000,143,360 | ---- | C] (Jungo) -- C:\Windows\System32\wdapi1010.dll
[2015/04/04 16:57:34 | 000,110,592 | ---- | C] (Jungo) -- C:\Windows\SysWow64\wdapi1100.dll
[2015/04/04 16:57:34 | 000,110,592 | ---- | C] (Jungo) -- C:\Windows\System32\wdapi1100.dll
[2015/04/04 16:57:34 | 000,110,592 | ---- | C] (Jungo) -- C:\Windows\SysWow64\wdapi102.dll
[2015/04/04 16:57:34 | 000,110,592 | ---- | C] (Jungo) -- C:\Windows\System32\wdapi102.dll
[2015/04/04 16:57:34 | 000,110,592 | ---- | C] (Jungo) -- C:\Windows\SysWow64\wdapi1011.dll
[2015/04/04 16:57:34 | 000,110,592 | ---- | C] (Jungo) -- C:\Windows\System32\wdapi1011.dll
[2015/04/04 16:57:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Atmel
[2015/04/04 16:51:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Help Viewer
[2015/04/04 16:51:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
[2015/04/04 16:50:55 | 000,000,000 | ---D | C] -- C:\Users\tom\Documents\Visual Studio 2010
[2015/04/04 16:50:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Designer
[2015/04/04 16:50:39 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\1033
[2015/04/04 16:50:39 | 000,000,000 | ---D | C] -- C:\Windows\System32\1033
[2015/04/04 16:50:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs
[2015/04/04 16:50:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 10.0
[2015/04/04 16:50:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Merge Modules
[2015/04/04 16:50:06 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2015/04/04 16:07:41 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinAVR-20100110
[2015/04/04 16:07:26 | 000,000,000 | ---D | C] -- C:\WinAVR-20100110
[2015/04/03 21:46:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\c5c1e8b7-9d03-40f6-9ecf-a015924a15c0
[2015/04/03 21:46:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\5a1f3589-0adb-4951-8a7b-a30922551845
[2015/04/03 21:46:30 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\ShopperPro
[2015/04/03 21:46:24 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Local\CrashRpt
[2015/04/03 21:46:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\c8e441a9-abd4-4721-b704-cb9cbd0d2ddb
[2015/03/28 16:20:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Transformer Database
[2015/03/28 16:20:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Transformer
[2015/03/28 16:20:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Návrh transformátorů
[2015/03/28 16:20:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Borland Shared
[2015/03/28 13:38:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Výpočet transformátoru
[2015/03/28 00:13:32 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Roaming\Nitro PDF
[2015/03/27 17:15:37 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Roaming\Nitro
[2015/03/27 17:15:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Nitro
[2015/03/27 17:15:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nitro
[2015/03/27 17:15:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nitro
[2015/03/27 17:14:56 | 000,000,000 | ---D | C] -- C:\Users\tom\AppData\Roaming\Downloaded Installations

========== Files - Modified Within 30 Days ==========

[2015/04/17 22:35:41 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/04/17 22:33:40 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2015/04/17 18:27:39 | 030,827,275 | ---- | M] () -- C:\Users\tom\Desktop\Novicorp WinToFlash 0.8.0059 beta Portable.zip
[2015/04/17 16:04:15 | 000,029,696 | ---- | M] () -- C:\Users\tom\AppData\Local\MSGBOX.EXE
[2015/04/16 21:22:26 | 000,007,605 | ---- | M] () -- C:\Users\tom\AppData\Local\Resmon.ResmonCfg
[2015/04/16 21:21:44 | 535,890,945 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2015/04/16 21:13:40 | 000,021,850 | ---- | M] () -- C:\Users\tom\Documents\cc_20150416_211336.reg
[2015/04/16 21:11:35 | 1372,651,520 | ---- | M] () -- C:\Users\tom\Desktop\NBRT.iso
[2015/04/16 21:09:32 | 000,001,358 | ---- | M] () -- C:\Users\tom\Desktop\Norton Installation Files.lnk
[2015/04/15 17:40:39 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2015/04/15 17:40:39 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge-32.dll
[2015/04/15 16:45:21 | 000,001,412 | ---- | M] () -- C:\Users\tom\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2015/04/15 13:52:02 | 000,001,143 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2015/04/14 18:36:07 | 001,363,030 | ---- | M] () -- C:\Users\tom\Desktop\me_vyb_kap_all_2r.pdf
[2015/04/14 18:12:03 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/04/14 17:03:05 | 000,101,655 | ---- | M] () -- C:\Users\tom\Desktop\el_mereni výkonu.PDF
[2015/04/14 15:28:05 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Bootable Recovery Tool Wizard
[2015/04/14 01:24:21 | 000,792,056 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2015/04/14 01:24:21 | 000,792,056 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015/04/14 01:24:21 | 000,178,168 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2015/04/14 01:24:21 | 000,178,168 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015/04/13 18:34:19 | 308,004,864 | ---- | M] () -- C:\Users\tom\Desktop\Kaspersky Rescue Disk 10.iso
[2015/04/11 20:12:40 | 000,680,934 | ---- | M] () -- C:\Users\tom\Desktop\IGBT tranzistor.PDF
[2015/04/11 20:04:23 | 000,791,731 | ---- | M] () -- C:\Users\tom\Desktop\T1.5-Tranzistor.pdf
[2015/04/11 12:04:16 | 000,394,006 | ---- | M] () -- C:\Users\tom\Desktop\zdroj 60v 40a.sch
[2015/04/10 12:01:43 | 000,048,483 | ---- | M] () -- C:\Users\tom\Desktop\slože marek ingr.PDF
[2015/04/09 07:49:05 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
[2015/04/08 15:21:58 | 000,151,190 | ---- | M] () -- C:\Users\tom\Desktop\css_jdm_programator.pdf
[2015/04/07 20:58:43 | 000,640,736 | ---- | M] () -- C:\Users\tom\Desktop\COM Port.rar
[2015/04/04 17:47:19 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PonyProg
[2015/04/04 17:02:52 | 000,002,130 | ---- | M] () -- C:\Users\Public\Desktop\Atmel Studio 6.2.lnk
[2015/04/04 17:02:52 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atmel
[2015/04/04 16:03:14 | 028,840,282 | ---- | M] () -- C:\Users\tom\Desktop\WinAVR-20100110-install.exe
[2015/04/03 20:52:27 | 004,210,464 | ---- | M] () -- C:\Users\tom\Desktop\SIM_editor_Smart.zip
[2015/04/03 20:03:41 | 000,181,430 | ---- | M] () -- C:\Users\tom\Desktop\mereni_a_formovani_elektrolytickych_kondenzatoru.pdf
[2015/04/02 20:00:34 | 000,386,006 | ---- | M] () -- C:\Users\tom\Desktop\Ard MEGA2560 2x bot top.pdf
[2015/04/02 20:00:05 | 004,089,945 | ---- | M] () -- C:\Users\tom\Desktop\Arduino_MEGA2560_ref bottom.pdf
[2015/04/02 19:03:01 | 000,115,590 | ---- | M] () -- C:\Users\tom\Desktop\Ard mega top bot.pdf
[2015/04/02 18:57:59 | 000,115,580 | ---- | M] () -- C:\Users\tom\Desktop\Arduino_MEGA2560_ref.pdf
[2015/03/31 18:55:01 | 011,038,926 | ---- | M] () -- C:\Users\tom\Desktop\The-XX---Intro.flac
[2015/03/30 18:47:50 | 000,105,470 | ---- | M] () -- C:\Users\tom\Desktop\druhy_siti_nn.pdf
[2015/03/30 18:04:46 | 051,207,312 | ---- | M] () -- C:\Users\tom\Documents\BEN Elektrotechnická schémata a zapojení 1.pdf
[2015/03/29 10:30:41 | 000,094,157 | ---- | M] () -- C:\Users\tom\Desktop\elektrické teplo.PDF
[2015/03/28 16:20:50 | 000,000,210 | ---- | M] () -- C:\Windows\ODBCINST.INI
[2015/03/28 16:20:50 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Návrh transformátorů
[2015/03/28 13:38:43 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Výpočet transformátoru
[2015/03/28 13:05:48 | 000,278,579 | ---- | M] () -- C:\Users\tom\Desktop\T1.5-Proudový-chránič+batový rozvaděč.PDF
[2015/03/28 13:00:15 | 007,803,328 | ---- | M] () -- C:\Users\tom\Desktop\transformátor.exe
[2015/03/27 17:15:25 | 000,002,547 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 8.lnk
[2015/03/26 21:10:39 | 002,208,377 | ---- | M] () -- C:\Users\tom\Desktop\Mala-vetrna-elektrarna.pdf
[2015/03/26 16:33:50 | 005,365,887 | ---- | M] () -- C:\Users\tom\Desktop\Yeah-Yeah-Yeahs---Heads-Will-Roll-(A-Trak-remix)-[www.4music.lt].mp3
[2015/03/26 15:36:47 | 004,047,109 | ---- | M] () -- C:\Users\tom\Desktop\Justice---Civilization.mp3
[2015/03/26 15:30:38 | 008,395,899 | ---- | M] () -- C:\Users\tom\Desktop\The-Bloody-Beetroots-feat.-Paul-McCartney-&-Youth---Out-Of-Sight.mp3
[2015/03/23 23:58:58 | 001,498,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
[2015/03/23 23:45:04 | 000,257,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
[2015/03/22 11:08:01 | 000,108,757 | ---- | M] () -- C:\Users\tom\Documents\vyroba_a_rozvod el. energie.pdf
[2015/03/22 11:07:28 | 000,212,237 | ---- | M] () -- C:\Users\tom\Documents\Uzemneni , měření zemního R.pdf
[2015/03/22 11:07:06 | 000,057,796 | ---- | M] () -- C:\Users\tom\Documents\synchronni_stroje.pdf
[2015/03/22 11:06:50 | 000,176,109 | ---- | M] () -- C:\Users\tom\Documents\el.přístroje oblouk jistící spojovací.pdf
[2015/03/22 11:06:01 | 000,103,076 | ---- | M] () -- C:\Users\tom\Documents\Vysokofrekvencni_ruseni.pdf
[2015/03/22 11:05:49 | 000,557,978 | ---- | M] () -- C:\Users\tom\Documents\satelitní komunikace.pdf
[2015/03/22 11:05:30 | 000,189,720 | ---- | M] () -- C:\Users\tom\Documents\el_pristroje.pdf
[2015/03/22 11:05:10 | 000,210,169 | ---- | M] () -- C:\Users\tom\Documents\mereni_funkce_proudovych_chranicu_.pdf
[2015/03/22 11:04:39 | 001,279,986 | ---- | M] () -- C:\Users\tom\Documents\Transformatory 2.pdf
[2015/03/22 11:04:08 | 000,064,456 | ---- | M] () -- C:\Users\tom\Documents\Predpisy pro pohyblive privody POHYBYBLIVÉ PRÍVODY, ŠNUROVÁ VEDENÍ,.pdf
[2015/03/22 11:03:31 | 000,079,517 | ---- | M] () -- C:\Users\tom\Documents\ochranné kryty el. zař a předmětů.pdf
[2015/03/22 11:02:25 | 000,149,724 | ---- | M] () -- C:\Users\tom\Documents\hromosvody a uzemění.pdf
[2015/03/22 11:02:10 | 000,105,167 | ---- | M] () -- C:\Users\tom\Documents\1_mereni_impedance_poruchove_smycky.pdf
[2015/03/22 11:01:55 | 000,145,256 | ---- | M] () -- C:\Users\tom\Documents\mereni_a_regulace.pdf
[2015/03/22 11:01:44 | 000,156,806 | ---- | M] () -- C:\Users\tom\Documents\rozvadece a rozvodnice.pdf
[2015/03/22 11:01:28 | 000,475,599 | ---- | M] () -- C:\Users\tom\Documents\el_stroje.pdf
[2015/03/22 11:01:11 | 000,920,852 | ---- | M] () -- C:\Users\tom\Documents\Tabulka dimenzování a jištění vedení , ochranné pospojování.pdf
[2015/03/22 11:00:09 | 000,077,350 | ---- | M] () -- C:\Users\tom\Documents\mag pole.pdf
[2015/03/22 10:59:52 | 000,190,531 | ---- | M] () -- C:\Users\tom\Documents\OCHRANA PRED ÚRAZEM el. proudem.pdf
[2015/03/22 10:59:27 | 000,582,919 | ---- | M] () -- C:\Users\tom\Documents\odporové delice U.pdf
[2015/03/22 10:58:51 | 000,035,563 | ---- | M] () -- C:\Users\tom\Documents\Elektricka zarizeni na horlavych latkach a v nich.pdf
[2015/03/22 10:58:33 | 000,332,901 | ---- | M] () -- C:\Users\tom\Documents\Polovodičové Usměrnovače.pdf
[2015/03/22 10:58:00 | 000,768,989 | ---- | M] () -- C:\Users\tom\Documents\Ucinky el. proudu na lidský organismus.pdf
[2015/03/22 10:57:41 | 000,374,342 | ---- | M] () -- C:\Users\tom\Documents\transformátory.pdf
[2015/03/22 10:57:21 | 000,152,430 | ---- | M] () -- C:\Users\tom\Documents\svetlo a osvetlovani.pdf
[2015/03/22 10:57:01 | 000,116,137 | ---- | M] () -- C:\Users\tom\Documents\dimenzování a jištění el. vedení.pdf
[2015/03/22 10:56:11 | 000,359,397 | ---- | M] () -- C:\Users\tom\Documents\Elektrická zařízení a jejich bezpečný provoz.pdf
[2015/03/22 10:55:31 | 000,043,905 | ---- | M] () -- C:\Users\tom\Documents\ELEKTRICKÁ INSTALACE V koupelnách i sprchách.pdf
[2015/03/22 10:55:00 | 000,297,228 | ---- | M] () -- C:\Users\tom\Documents\šíčení vln na 1 i 2 vodičovém vedení.pdf
[2015/03/22 10:54:12 | 000,155,658 | ---- | M] () -- C:\Users\tom\Documents\Merení unikajících a dotykových proudu u spotrebicu.pdf
[2015/03/22 10:53:44 | 000,560,089 | ---- | M] () -- C:\Users\tom\Documents\šíření elektromagnetických vln Sch...pdf
[2015/03/22 10:45:32 | 002,099,205 | ---- | M] () -- C:\Users\tom\Desktop\Ochrana pred bleskem-CSN.pdf
[2015/03/22 10:20:13 | 000,218,523 | ---- | M] () -- C:\Users\tom\Documents\druhy rozvodných sítí.pdf
[2015/03/22 10:19:24 | 000,689,334 | ---- | M] () -- C:\Users\tom\Documents\systemova technika budov a bytů.pdf
[2015/03/22 10:18:40 | 000,137,050 | ---- | M] () -- C:\Users\tom\Documents\kladeni _vedeni.pdf
[2015/03/21 10:27:18 | 000,022,731 | ---- | M] () -- C:\Users\tom\Desktop\RFID_Reader_Writer_Schematic proxclone.pdf
[2015/03/20 22:58:17 | 000,021,004 | ---- | M] () -- C:\Users\tom\Desktop\vogelgrippe_lpc17xx_v1.pdf
[2015/03/20 21:59:03 | 002,909,220 | ---- | M] () -- C:\Users\tom\Desktop\keykeriki_v2_cansec_v1.1.pdf
[2015/03/20 04:41:28 | 000,369,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tracerpt.exe
[2015/03/20 04:41:28 | 000,369,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tracerpt.exe
[2015/03/20 04:16:45 | 000,749,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2015/03/20 04:16:45 | 000,749,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2015/03/19 21:36:19 | 000,118,225 | ---- | M] () -- C:\Users\tom\Desktop\PT002B_dps.jpg

========== Files Created - No Company Name ==========

[2015/04/17 16:13:18 | 001,405,446 | ---- | C] () -- C:\Users\tom\Desktop\Marek ingr-Tom konupka.jpg
[2015/04/16 21:13:39 | 000,021,850 | ---- | C] () -- C:\Users\tom\Documents\cc_20150416_211336.reg
[2015/04/16 21:11:30 | 1372,651,520 | ---- | C] () -- C:\Users\tom\Desktop\NBRT.iso
[2015/04/16 14:25:30 | 535,890,945 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2015/04/15 16:45:21 | 000,001,418 | ---- | C] () -- C:\Users\tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2015/04/15 16:45:21 | 000,001,412 | ---- | C] () -- C:\Users\tom\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2015/04/15 13:52:03 | 000,001,143 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2015/04/15 13:09:44 | 000,016,303 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2015/04/15 13:09:44 | 000,016,303 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2015/04/14 18:37:02 | 001,363,030 | ---- | C] () -- C:\Users\tom\Desktop\me_vyb_kap_all_2r.pdf
[2015/04/14 18:12:03 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/04/14 17:03:34 | 000,101,655 | ---- | C] () -- C:\Users\tom\Desktop\el_mereni výkonu.PDF
[2015/04/14 15:26:11 | 000,001,358 | ---- | C] () -- C:\Users\tom\Desktop\Norton Installation Files.lnk
[2015/04/13 18:29:22 | 308,004,864 | ---- | C] () -- C:\Users\tom\Desktop\Kaspersky Rescue Disk 10.iso
[2015/04/12 21:44:18 | 000,029,696 | ---- | C] () -- C:\Users\tom\AppData\Local\MSGBOX.EXE
[2015/04/11 20:13:36 | 000,680,934 | ---- | C] () -- C:\Users\tom\Desktop\IGBT tranzistor.PDF
[2015/04/11 20:05:20 | 000,791,731 | ---- | C] () -- C:\Users\tom\Desktop\T1.5-Tranzistor.pdf
[2015/04/10 12:02:17 | 000,048,483 | ---- | C] () -- C:\Users\tom\Desktop\slože marek ingr.PDF
[2015/04/08 15:22:21 | 000,151,190 | ---- | C] () -- C:\Users\tom\Desktop\css_jdm_programator.pdf
[2015/04/07 20:56:58 | 000,640,736 | ---- | C] () -- C:\Users\tom\Desktop\COM Port.rar
[2015/04/07 06:53:07 | 004,979,389 | ---- | C] () -- C:\Users\tom\Desktop\_KE02_2004.pdf
[2015/04/07 06:51:08 | 001,142,402 | ---- | C] () -- C:\Users\tom\Desktop\_KE04_2004.pdf
[2015/04/04 17:02:52 | 000,002,130 | ---- | C] () -- C:\Users\Public\Desktop\Atmel Studio 6.2.lnk
[2015/04/04 16:19:32 | 000,022,902 | ---- | C] () -- C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.hex
[2015/04/04 16:19:32 | 000,008,136 | ---- | C] () -- C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.bin
[2015/04/04 16:03:01 | 028,840,282 | ---- | C] () -- C:\Users\tom\Desktop\WinAVR-20100110-install.exe
[2015/04/03 20:52:18 | 004,210,464 | ---- | C] () -- C:\Users\tom\Desktop\SIM_editor_Smart.zip
[2015/04/03 20:03:49 | 000,181,430 | ---- | C] () -- C:\Users\tom\Desktop\mereni_a_formovani_elektrolytickych_kondenzatoru.pdf
[2015/04/02 20:00:34 | 000,386,006 | ---- | C] () -- C:\Users\tom\Desktop\Ard MEGA2560 2x bot top.pdf
[2015/04/02 19:03:01 | 000,115,590 | ---- | C] () -- C:\Users\tom\Desktop\Ard mega top bot.pdf
[2015/04/02 19:00:59 | 004,089,945 | ---- | C] () -- C:\Users\tom\Desktop\Arduino_MEGA2560_ref bottom.pdf
[2015/04/02 18:57:59 | 000,115,580 | ---- | C] () -- C:\Users\tom\Desktop\Arduino_MEGA2560_ref.pdf
[2015/03/31 18:54:30 | 011,038,926 | ---- | C] () -- C:\Users\tom\Desktop\The-XX---Intro.flac
[2015/03/30 18:48:11 | 000,105,470 | ---- | C] () -- C:\Users\tom\Desktop\druhy_siti_nn.pdf
[2015/03/29 10:32:26 | 000,094,157 | ---- | C] () -- C:\Users\tom\Desktop\elektrické teplo.PDF
[2015/03/28 16:20:50 | 000,000,210 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2015/03/28 13:07:21 | 000,278,579 | ---- | C] () -- C:\Users\tom\Desktop\T1.5-Proudový-chránič+batový rozvaděč.PDF
[2015/03/28 13:00:15 | 007,803,328 | ---- | C] () -- C:\Users\tom\Desktop\transformátor.exe
[2015/03/27 17:15:25 | 000,002,547 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 8.lnk
[2015/03/26 21:10:39 | 002,208,377 | ---- | C] () -- C:\Users\tom\Desktop\Mala-vetrna-elektrarna.pdf
[2015/03/26 19:26:14 | 000,394,006 | ---- | C] () -- C:\Users\tom\Desktop\zdroj 60v 40a.sch
[2015/03/26 16:33:35 | 005,365,887 | ---- | C] () -- C:\Users\tom\Desktop\Yeah-Yeah-Yeahs---Heads-Will-Roll-(A-Trak-remix)-[www.4music.lt].mp3
[2015/03/26 15:36:36 | 004,047,109 | ---- | C] () -- C:\Users\tom\Desktop\Justice---Civilization.mp3
[2015/03/26 15:30:12 | 008,395,899 | ---- | C] () -- C:\Users\tom\Desktop\The-Bloody-Beetroots-feat.-Paul-McCartney-&-Youth---Out-Of-Sight.mp3
[2015/03/22 11:08:01 | 000,108,757 | ---- | C] () -- C:\Users\tom\Documents\vyroba_a_rozvod el. energie.pdf
[2015/03/22 11:07:28 | 000,212,237 | ---- | C] () -- C:\Users\tom\Documents\Uzemneni , měření zemního R.pdf
[2015/03/22 11:07:06 | 000,057,796 | ---- | C] () -- C:\Users\tom\Documents\synchronni_stroje.pdf
[2015/03/22 11:06:50 | 000,176,109 | ---- | C] () -- C:\Users\tom\Documents\el.přístroje oblouk jistící spojovací.pdf
[2015/03/22 11:06:00 | 000,103,076 | ---- | C] () -- C:\Users\tom\Documents\Vysokofrekvencni_ruseni.pdf
[2015/03/22 11:05:49 | 000,557,978 | ---- | C] () -- C:\Users\tom\Documents\satelitní komunikace.pdf
[2015/03/22 11:05:30 | 000,189,720 | ---- | C] () -- C:\Users\tom\Documents\el_pristroje.pdf
[2015/03/22 11:05:10 | 000,210,169 | ---- | C] () -- C:\Users\tom\Documents\mereni_funkce_proudovych_chranicu_.pdf
[2015/03/22 11:04:39 | 001,279,986 | ---- | C] () -- C:\Users\tom\Documents\Transformatory 2.pdf
[2015/03/22 11:04:07 | 000,064,456 | ---- | C] () -- C:\Users\tom\Documents\Predpisy pro pohyblive privody POHYBYBLIVÉ PRÍVODY, ŠNUROVÁ VEDENÍ,.pdf
[2015/03/22 11:03:31 | 000,079,517 | ---- | C] () -- C:\Users\tom\Documents\ochranné kryty el. zař a předmětů.pdf
[2015/03/22 11:02:25 | 000,149,724 | ---- | C] () -- C:\Users\tom\Documents\hromosvody a uzemění.pdf
[2015/03/22 11:02:10 | 000,105,167 | ---- | C] () -- C:\Users\tom\Documents\1_mereni_impedance_poruchove_smycky.pdf
[2015/03/22 11:01:55 | 000,145,256 | ---- | C] () -- C:\Users\tom\Documents\mereni_a_regulace.pdf
[2015/03/22 11:01:44 | 000,156,806 | ---- | C] () -- C:\Users\tom\Documents\rozvadece a rozvodnice.pdf
[2015/03/22 11:01:28 | 000,475,599 | ---- | C] () -- C:\Users\tom\Documents\el_stroje.pdf
[2015/03/22 11:01:11 | 000,920,852 | ---- | C] () -- C:\Users\tom\Documents\Tabulka dimenzování a jištění vedení , ochranné pospojování.pdf
[2015/03/22 11:00:09 | 000,077,350 | ---- | C] () -- C:\Users\tom\Documents\mag pole.pdf
[2015/03/22 10:59:52 | 000,190,531 | ---- | C] () -- C:\Users\tom\Documents\OCHRANA PRED ÚRAZEM el. proudem.pdf
[2015/03/22 10:59:27 | 000,582,919 | ---- | C] () -- C:\Users\tom\Documents\odporové delice U.pdf
[2015/03/22 10:58:51 | 000,035,563 | ---- | C] () -- C:\Users\tom\Documents\Elektricka zarizeni na horlavych latkach a v nich.pdf
[2015/03/22 10:58:33 | 000,332,901 | ---- | C] () -- C:\Users\tom\Documents\Polovodičové Usměrnovače.pdf
[2015/03/22 10:58:00 | 000,768,989 | ---- | C] () -- C:\Users\tom\Documents\Ucinky el. proudu na lidský organismus.pdf
[2015/03/22 10:57:41 | 000,374,342 | ---- | C] () -- C:\Users\tom\Documents\transformátory.pdf
[2015/03/22 10:57:21 | 000,152,430 | ---- | C] () -- C:\Users\tom\Documents\svetlo a osvetlovani.pdf
[2015/03/22 10:57:01 | 000,116,137 | ---- | C] () -- C:\Users\tom\Documents\dimenzování a jištění el. vedení.pdf
[2015/03/22 10:56:11 | 000,359,397 | ---- | C] () -- C:\Users\tom\Documents\Elektrická zařízení a jejich bezpečný provoz.pdf
[2015/03/22 10:55:31 | 000,043,905 | ---- | C] () -- C:\Users\tom\Documents\ELEKTRICKÁ INSTALACE V koupelnách i sprchách.pdf
[2015/03/22 10:55:00 | 000,297,228 | ---- | C] () -- C:\Users\tom\Documents\šíčení vln na 1 i 2 vodičovém vedení.pdf
[2015/03/22 10:54:12 | 000,155,658 | ---- | C] () -- C:\Users\tom\Documents\Merení unikajících a dotykových proudu u spotrebicu.pdf
[2015/03/22 10:53:44 | 000,560,089 | ---- | C] () -- C:\Users\tom\Documents\šíření elektromagnetických vln Sch...pdf
[2015/03/22 10:45:32 | 002,099,205 | ---- | C] () -- C:\Users\tom\Desktop\Ochrana pred bleskem-CSN.pdf
[2015/03/22 10:20:13 | 000,218,523 | ---- | C] () -- C:\Users\tom\Documents\druhy rozvodných sítí.pdf
[2015/03/22 10:19:24 | 000,689,334 | ---- | C] () -- C:\Users\tom\Documents\systemova technika budov a bytů.pdf
[2015/03/22 10:18:40 | 000,137,050 | ---- | C] () -- C:\Users\tom\Documents\kladeni _vedeni.pdf
[2015/03/21 10:27:17 | 000,022,731 | ---- | C] () -- C:\Users\tom\Desktop\RFID_Reader_Writer_Schematic proxclone.pdf
[2015/03/20 22:57:32 | 000,021,004 | ---- | C] () -- C:\Users\tom\Desktop\vogelgrippe_lpc17xx_v1.pdf
[2015/03/20 21:59:03 | 002,909,220 | ---- | C] () -- C:\Users\tom\Desktop\keykeriki_v2_cansec_v1.1.pdf
[2015/03/20 16:38:32 | 051,207,312 | ---- | C] () -- C:\Users\tom\Documents\BEN Elektrotechnická schémata a zapojení 1.pdf
[2015/03/19 21:36:38 | 000,118,225 | ---- | C] () -- C:\Users\tom\Desktop\PT002B_dps.jpg
[2015/02/03 16:24:45 | 000,226,680 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2015/02/03 16:24:44 | 000,076,152 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2015/01/24 21:31:56 | 000,000,412 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2015/01/17 20:57:14 | 001,772,950 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2015/01/14 14:49:10 | 000,000,001 | ---- | C] () -- C:\Users\tom\AppData\Local\llftool.4.25.agreement
[2014/12/18 19:40:19 | 000,107,008 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2014/12/18 19:40:15 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2014/12/17 13:51:28 | 000,007,605 | ---- | C] () -- C:\Users\tom\AppData\Local\Resmon.ResmonCfg
[2014/12/14 09:52:02 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2013/08/22 17:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013/08/22 17:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013/08/22 16:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013/08/22 09:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013/08/22 01:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013/08/22 01:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2000/06/29 15:24:14 | 000,003,584 | ---- | C] () -- C:\Windows\SysWow64\drivers\DLPORTIO.SYS

========== LOP Check ==========

[2015/02/12 19:00:34 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\AC3Filter
[2015/04/04 16:59:30 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\Atmel
[2015/03/27 17:14:56 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\Downloaded Installations
[2014/12/14 14:26:15 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\ESET
[2015/01/20 16:06:38 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\LockAP
[2015/03/27 17:15:37 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\Nitro
[2015/04/17 16:48:29 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\Nitro PDF
[2015/04/15 13:52:09 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\Opera Software
[2015/02/03 15:46:25 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\Origin
[2015/01/15 16:45:53 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\PhrozenSoft
[2015/01/06 16:47:55 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\Prodiance
[2015/01/25 12:12:22 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\ProfiCAD
[2015/04/06 12:26:31 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\uTorrent
[2015/04/05 10:37:55 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\VisualAssistAtmel
[2014/12/22 17:27:13 | 000,000,000 | ---D | M] -- C:\Users\tom\AppData\Roaming\VS Revo Group
[2015/04/12 22:07:32 | 000,000,000 | ---D | M] -- C:\ProgramData\AntiSpyInfo
[2013/08/22 16:45:52 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2013/08/22 16:45:52 | 000,000,000 | -HSD | M] -- C:\ProgramData\Desktop
[2013/08/22 16:45:52 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2015/02/03 16:38:47 | 000,000,000 | ---D | M] -- C:\ProgramData\Electronic Arts
[2015/04/08 13:18:02 | 000,000,000 | ---D | M] -- C:\ProgramData\Emsisoft
[2014/12/14 14:24:31 | 000,000,000 | ---D | M] -- C:\ProgramData\ESET
[2015/04/08 17:04:45 | 000,000,000 | ---D | M] -- C:\ProgramData\HitmanPro
[2015/03/27 17:15:19 | 000,000,000 | ---D | M] -- C:\ProgramData\Nitro
[2015/04/15 17:41:20 | 000,000,000 | ---D | M] -- C:\ProgramData\Oracle
[2015/02/05 17:41:53 | 000,000,000 | ---D | M] -- C:\ProgramData\Origin
[2015/04/04 16:57:34 | 000,000,000 | ---D | M] -- C:\ProgramData\Package Cache
[2015/02/22 15:33:46 | 000,000,000 | ---D | M] -- C:\ProgramData\regid.1986-12.com.adobe
[2015/01/31 19:41:13 | 000,000,000 | ---D | M] -- C:\ProgramData\regid.1991-06.com.microsoft
[2015/01/27 21:08:13 | 000,000,000 | ---D | M] -- C:\ProgramData\RogueKiller
[2013/08/22 16:45:52 | 000,000,000 | -HSD | M] -- C:\ProgramData\Start Menu
[2015/02/22 16:25:05 | 000,000,000 | ---D | M] -- C:\ProgramData\SUPERSetup
[2013/08/22 16:45:52 | 000,000,000 | -HSD | M] -- C:\ProgramData\Templates
[2014/12/14 09:02:26 | 000,000,000 | ---D | M] -- C:\ProgramData\VS Revo Group
[2015/01/16 17:09:58 | 000,000,000 | ---D | M] -- C:\ProgramData\{246d4938-dee5-f0a7-246d-d4938dee24e3}

========== Purity Check ==========

< End of report >

konu · #26 Příspěvek od **konu** » 17 dub 2015 21:54

Co znamená tohle-

O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing

Slovem to je podobné goffer.exe

konu · #27 Příspěvek od **konu** » 18 dub 2015 16:22

Tak se mi konečně povedlo udělat boot na flešku s http://www.malekal.com/2013/02/22/malekal-live-cd/ (zničil jsem 2 dvd)
Je tam i roguekill...frst...antimalware... Ale jak na svinu ten otlpe nejde spustit píše mi francouzsky chyba runscaneru.

Mám ntb ale asi nikdo z mých známých by ani nepochopil co vlastně s hdd potřebuju udělat. Nevím jestli by se jim do toho chtělo.

Přeinstalace až na posledním místě. Pokud nebude jednoduší se na to vykašlat.

konu · #28 Příspěvek od **konu** » 20 dub 2015 12:12

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-07-2013 01 (ATTENTION: FRST version is 649 days old)
Ran by Système on 20-04-2015 13:04:56
Running from Y:\Programs\FRST
Windows 8.1 Enterprise Service Pack 1 (X86) OS Language: French Standard
Internet Explorer Version 11
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.

ATTENTION!:=====> THE OPERATING SYSTEM IS A X64 SYSTEM BUT THE BOOT DISK THAT IS USED TO BOOT TO RECOVERY ENVIRONMENT IS A X86 SYSTEM DISK.
==================== Registry (Whitelisted) ==================

HKLM\...\Run: [egui] - "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice [5595336 2014-10-01] (ESET)
HKLM\...\Run: [NvBackend] - "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2585928 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r [5138032 2012-03-30] (VIA)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [1514528 2015-01-16] (NVIDIA Corporation)
HKU\tom\...\Run: [CCleaner Monitoring] - "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [ 2015-01-20] (Piriform Ltd)

========================== Services (Whitelisted) =================

S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [562688 2014-10-29] (Microsoft Corporation)
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1348096 2014-10-29] (Microsoft Corporation)
S2 ASLDRService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [106880 2012-11-14] (ASUSTek Computer Inc.)
S2 ATKGFNEXSrv; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
S2 FanChkService; C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe [45696 2012-01-20] (ASUSTek Computer Inc.)
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2013-08-03] (Microsoft Corporation)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [114688 2014-10-31] (Microsoft Corporation)
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [521728 2014-10-29] (Microsoft Corporation)
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [92992 2014-10-29] (Microsoft Corporation)
S3 NcbService; C:\Windows\System32\ncbservice.dll [154112 2014-10-29] (Microsoft Corporation)
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-08-10] (Microsoft Corporation)
S2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-01-30] (Electronic Arts)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation)
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2014-08-16] (Microsoft Corporation)
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [131072 2014-10-29] (Microsoft Corporation)
S3 smphost; C:\Windows\System32\smphost.dll [13312 2014-10-29] (Microsoft Corporation)
S2 Stereo Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410768 2015-01-10] (NVIDIA Corporation)
S2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-03-23] (VIA Technologies, Inc.)
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [26112 2014-10-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1668096 2014-10-29] (Microsoft Corporation)
S2 HitmanPro37CrusaderBoot; "G:\Programy\Bezpečnost\Hitman\HitmanPro_x64.exe" /crusader:boot [x]
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [x]

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [75776 2014-12-12] (Microsoft Corporation)
S2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [15416 2009-07-02] (ASUS)
S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-08-14] (Qualcomm Atheros Communications, Inc.)
S1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2013-08-22] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [593000 2014-01-28] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
S1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
S2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
S1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
S0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [170280 2014-12-14] (ESET)
S3 FTDIBUS; C:\Windows\system32\drivers\ftdibus.sys [94704 2014-01-31] (FTDI Ltd.)
S3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch64.sys [20280 2013-11-04] (ASUS)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
S0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39744 2014-10-17] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-08-23] (Microsoft Corporation)
S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation)
S3 L1C; C:\Windows\system32\DRIVERS\L1C63x64.sys [129224 2013-06-18] (Qualcomm Atheros Co., Ltd.)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 MEIx64; C:\Windows\System32\drivers\HECIx64.sys [62784 2012-07-17] (Intel Corporation)
S3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\System32\drivers\netvsc63.sys [87040 2014-10-29] (Microsoft Corporation)
S3 NVHDA; C:\Windows\system32\drivers\nvhda64v.sys [195728 2015-01-13] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
S3 NvStUSB; C:\Windows\system32\DRIVERS\nvstusb.sys [452424 2015-01-13] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [921920 2014-10-15] (Microsoft Corporation)
S1 SCDEmu; C:\Windows\System32\Drivers\SCDEmu.sys [127760 2014-10-08] (Power Software Ltd)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
S3 storvsp; C:\Windows\System32\drivers\storvsp.sys [68608 2013-08-23] (Microsoft Corporation)
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [40664 2013-08-22] (The OpenVPN Project)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 VIAHdAudAddService; C:\Windows\system32\drivers\viahduaa.sys [2193008 2012-03-23] (VIA Technologies, Inc.)
S3 Vid; C:\Windows\System32\drivers\Vid.sys [220672 2013-08-23] (Microsoft Corporation)
S3 vmbusr; C:\Windows\System32\drivers\vmbusr.sys [129536 2013-08-23] (Microsoft Corporation)
S3 vpci; C:\Windows\System32\drivers\vpci.sys [69952 2014-10-07] (Microsoft Corporation)
S3 vpcivsp; C:\Windows\System32\drivers\vpcivsp.sys [65536 2013-08-23] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [268800 2014-01-28] (Jungo Connectivity)
S0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-03-13] (Microsoft Corporation)
S3 WUDFSensorLP; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S3 DLPortIO; \??\C:\Windows\system32\DRIVERS\DLPortIO.SYS [x]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [x]
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [x]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [x]

==================== NetSvcs (Whitelisted) ===================

NETSVC: lfsvc -> C:\Windows\System32\GeofenceMonitorService.dll (Microsoft Corporation)
NETSVC: MsKeyboardFilter -> C:\Windows\System32\KeyboardFilterSvc.dll (Microsoft Corporation)

==================== One Month Created Files and Folders ========

2015-04-18 19:43 - 2015-01-06 05:01 - 00072192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndproxy.sys
2015-04-18 19:43 - 2015-01-06 04:59 - 00080896 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\wanarp.sys
2015-04-18 19:43 - 2015-01-06 03:12 - 00185856 ____A (Microsoft Corporation) C:\Windows\System32\rascfg.dll
2015-04-18 19:43 - 2015-01-06 03:02 - 00164864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-04-18 19:05 - 2015-04-18 19:10 - 651165696 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso
2015-04-18 19:05 - 2015-04-18 19:05 - 00025244 ____A C:\Users\tom\Downloads\overclockix-amd64-.018.iso.torrent
2015-04-18 19:05 - 2015-04-18 19:05 - 00000060 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso.md5
2015-04-18 19:00 - 2015-04-18 19:03 - 621283886 ____A C:\Users\tom\Downloads\Hirens.BootCD.15.2.zip
2015-04-18 17:38 - 2015-04-18 17:39 - 00000000 ____D C:\MyBootCD
2015-04-18 16:48 - 2015-04-18 18:57 - 00000000 ____D C:\Program Files (x86)\Top Password
2015-04-18 16:48 - 2015-04-18 16:48 - 00001043 ____A C:\Users\tom\Desktop\ISO2Disc.lnk
2015-04-18 16:18 - 2015-04-18 16:24 - 574615552 ____A C:\Users\tom\Downloads\CD_Live_Malekal.iso
2015-04-18 16:06 - 2011-07-17 16:05 - 297922560 ____A C:\Users\tom\Desktop\OTLPE_New_Std.iso
2015-04-18 16:05 - 2015-04-18 16:05 - 98077435 ____A (Igor Pavlov) C:\Users\tom\Downloads\OTLPEStd.exe
2015-04-18 15:36 - 2015-04-18 18:29 - 00000000 ____D C:\Users\tom\AppData\Local\ShamurShamur
2015-04-18 15:20 - 2015-04-18 15:20 - 05516740 ____A C:\Users\tom\Downloads\XBootv1.0beta14.zip
2015-04-18 15:16 - 2015-04-18 15:16 - 01310422 ____A (pendrivelinux.com) C:\Users\tom\Desktop\YUMI-2.0.1.6.exe
2015-04-17 22:59 - 2015-04-17 23:02 - 30786843 ____A C:\Users\tom\Desktop\Novicorp WinToFlash 0.8.0122 beta Portable.zip
2015-04-17 22:37 - 2015-04-17 22:37 - 00094404 ____A C:\OTL.Txt
2015-04-17 17:41 - 2015-04-17 17:44 - 448530432 ____A C:\Users\tom\Downloads\Win8PE_x64_EFI.ISO
2015-04-17 17:32 - 2015-04-17 23:01 - 00000000 ____D C:\Program Files (x86)\WinToFlash Suggestor
2015-04-16 21:21 - 2015-04-16 21:21 - 00325576 ____A C:\Windows\Minidump\041615-5437-01.dmp
2015-04-16 21:13 - 2015-04-16 21:13 - 00021850 ____A C:\Users\tom\Documents\cc_20150416_211336.reg
2015-04-16 21:11 - 2015-04-16 21:11 - 1372651520 ____A C:\Users\tom\Desktop\NBRT.iso
2015-04-16 14:25 - 2015-04-16 21:21 - 535890945 ____A C:\Windows\MEMORY.DMP
2015-04-16 14:25 - 2015-04-16 14:25 - 00325416 ____A C:\Windows\Minidump\041615-5312-01.dmp
2015-04-15 17:08 - 2015-04-15 17:08 - 00000144 ____A C:\Users\tom\Downloads\nmap.install
2015-04-15 16:41 - 2015-04-19 17:59 - 00019232 ____A C:\Windows\setupact.log
2015-04-15 16:41 - 2015-04-15 16:41 - 00000000 ____A C:\Windows\setuperr.log
2015-04-15 15:54 - 2015-04-19 19:57 - 01645145 ____A C:\Windows\WindowsUpdate.log
2015-04-15 13:52 - 2015-04-15 13:52 - 00000000 ____D C:\Users\tom\AppData\Local\Opera Software
2015-04-15 13:51 - 2015-04-19 18:04 - 00000000 ____D C:\Program Files (x86)\Opera
2015-04-15 13:51 - 2015-04-15 13:51 - 00691664 ____A (Opera Software) C:\Users\tom\Downloads\Opera_NI_stable.exe
2015-04-15 13:46 - 2015-04-15 13:46 - 00000000 ____D C:\_OTL
2015-04-15 13:10 - 2015-03-23 23:59 - 07476032 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2015-04-15 13:10 - 2015-03-23 23:59 - 01733952 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2015-04-15 13:10 - 2015-03-23 23:59 - 00360480 ____A (Microsoft Corporation) C:\Windows\System32\sechost.dll
2015-04-15 13:10 - 2015-03-23 23:58 - 01498872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 13:10 - 2015-03-23 23:45 - 00257216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-04-15 13:10 - 2015-03-20 06:12 - 00246272 ____A (Microsoft Corporation) C:\Windows\System32\microsoft-windows-system-events.dll
2015-04-15 13:10 - 2015-03-20 06:10 - 00285184 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll
2015-04-15 13:10 - 2015-03-20 06:10 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2015-04-15 13:10 - 2015-03-20 05:17 - 00411648 ____A (Microsoft Corporation) C:\Windows\System32\tracerpt.exe
2015-04-15 13:10 - 2015-03-20 04:41 - 00369152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-04-15 13:10 - 2015-03-20 04:40 - 00950784 ____A (Microsoft Corporation) C:\Windows\System32\tdh.dll
2015-04-15 13:10 - 2015-03-20 04:16 - 00749568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-04-15 13:09 - 2015-03-13 06:32 - 24980480 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2015-04-15 13:09 - 2015-03-13 06:08 - 00584192 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2015-04-15 13:09 - 2015-03-13 06:07 - 02886144 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2015-04-15 13:09 - 2015-03-13 05:53 - 00816128 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2015-04-15 13:09 - 2015-03-13 05:50 - 06025216 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2015-04-15 13:09 - 2015-03-13 05:42 - 19695616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 13:09 - 2015-03-13 05:28 - 00503296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 13:09 - 2015-03-13 05:26 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2015-04-15 13:09 - 2015-03-13 05:22 - 02278400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 13:09 - 2015-03-13 05:17 - 01032704 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2015-04-15 13:09 - 2015-03-13 05:16 - 00664064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-15 13:09 - 2015-03-13 05:08 - 00720384 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2015-04-15 13:09 - 2015-03-13 05:07 - 00801280 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2015-04-15 13:09 - 2015-03-13 05:00 - 14397440 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2015-04-15 13:09 - 2015-03-13 04:58 - 00259072 ____A (Microsoft Corporation) C:\Windows\System32\pku2u.dll
2015-04-15 13:09 - 2015-03-13 04:50 - 00880128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-04-15 13:09 - 2015-03-13 04:49 - 04305408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 13:09 - 2015-03-13 04:45 - 02358784 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2015-04-15 13:09 - 2015-03-13 04:44 - 00689152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 13:09 - 2015-03-13 04:37 - 00208896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-04-15 13:09 - 2015-03-13 04:34 - 12825600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 13:09 - 2015-03-13 04:33 - 01548288 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2015-04-15 13:09 - 2015-03-13 04:22 - 00800768 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2015-04-15 13:09 - 2015-03-13 04:20 - 01888256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 13:09 - 2015-03-13 04:16 - 01311232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 13:09 - 2015-03-13 04:14 - 00710144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 13:09 - 2015-03-04 12:25 - 00377152 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\clfs.sys
2015-04-15 13:09 - 2015-03-04 05:04 - 00075264 ____A (Microsoft Corporation) C:\Windows\System32\clfsw32.dll
2015-04-15 13:09 - 2015-03-04 04:19 - 00058880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 13:09 - 2015-02-24 10:32 - 00991552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2015-04-14 20:45 - 2015-03-14 10:54 - 00133256 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2015-04-14 20:45 - 2015-03-14 03:56 - 00066048 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2015-04-14 20:45 - 2015-03-14 03:56 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2015-04-14 20:45 - 2015-03-14 03:51 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\wu.upgrade.ps.dll
2015-04-14 20:45 - 2015-03-14 03:37 - 00267264 ____A (Microsoft Corporation) C:\Windows\System32\WinSetupUI.dll
2015-04-14 20:45 - 2015-03-14 03:14 - 00027136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-14 20:45 - 2015-03-14 02:22 - 03678720 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2015-04-14 20:45 - 2015-03-14 02:12 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2015-04-14 20:45 - 2015-03-14 02:12 - 00035840 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2015-04-14 20:45 - 2015-03-14 02:09 - 00200192 ____A (Microsoft Corporation) C:\Windows\System32\storewuauth.dll
2015-04-14 20:45 - 2015-03-14 02:08 - 00408064 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll
2015-04-14 20:45 - 2015-03-14 02:08 - 00095744 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2015-04-14 20:45 - 2015-03-14 02:06 - 02373632 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2015-04-14 20:45 - 2015-03-14 02:06 - 00891392 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2015-04-14 20:45 - 2015-03-14 02:02 - 00124928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-14 20:45 - 2015-03-14 02:02 - 00029696 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-14 20:45 - 2015-03-14 01:59 - 00721920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-14 20:45 - 2015-03-14 01:59 - 00081920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-14 18:12 - 2015-04-14 18:12 - 00000512 ____A C:\PhysicalMBR.bin
2015-04-14 17:11 - 2015-04-14 17:11 - 00005314 ____A C:\Users\tom\Desktop\RKreport_SCN_04142015_171121.log
2015-04-14 16:24 - 2015-04-14 16:24 - 01222144 ____A C:\Users\tom\Downloads\RSITx64.exe
2015-04-14 15:28 - 2012-07-26 07:32 - 00125872 ____A (GEAR Software Inc.) C:\Windows\System32\GEARAspi64.dll
2015-04-14 15:28 - 2012-07-26 07:32 - 00106928 ____A (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll
2015-04-14 15:28 - 2012-07-26 07:32 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Windows\System32\Drivers\NBRTWizardx64
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Program Files (x86)\Norton Bootable Recovery Tool Wizard
2015-04-14 15:26 - 2015-04-16 21:09 - 00001358 ____A C:\Users\tom\Desktop\Norton Installation Files.lnk
2015-04-13 18:29 - 2015-04-13 18:34 - 308004864 ____A C:\Users\tom\Desktop\Kaspersky Rescue Disk 10.iso
2015-04-12 21:54 - 2015-04-12 22:21 - 00000000 ____D C:\Program Files (x86)\Anti-Spy.Info
2015-04-12 21:54 - 2015-04-12 22:07 - 00000000 ____D C:\ProgramData\AntiSpyInfo
2015-04-12 21:54 - 2015-04-12 21:54 - 02553160 ____A C:\Users\tom\Downloads\antispy17.exe
2015-04-12 21:46 - 2015-04-14 16:25 - 00000000 ____D C:\Program Files\trend micro
2015-04-12 21:46 - 2015-04-12 21:48 - 00000000 ____D C:\rsit
2015-04-12 21:44 - 2015-04-17 18:25 - 00000000 ____D C:\Users\tom\Desktop\Bezpečnost
2015-04-12 21:44 - 2015-04-17 16:04 - 00029696 ____A C:\Users\tom\AppData\Local\MSGBOX.EXE
2015-04-12 21:36 - 2015-04-17 16:05 - 00000000 ____D C:\FRST
2015-04-12 11:32 - 2015-04-12 11:32 - 00000000 ____D C:\NPE
2015-04-11 15:50 - 2015-04-11 15:50 - 00010284 ____A C:\Users\tom\eaglerc.usr
2015-04-09 07:41 - 2015-04-09 07:42 - 340670464 ____A C:\Users\tom\Downloads\eset-sysrescue.1.0.9.0.enu.iso
2015-04-08 20:15 - 2015-03-23 00:45 - 00227328 ____A (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 01111552 ____A (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00957440 ____A (Microsoft Corporation) C:\Windows\System32\appraiser.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00769024 ____A (Microsoft Corporation) C:\Windows\System32\invagent.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00726528 ____A (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00419328 ____A (Microsoft Corporation) C:\Windows\System32\devinv.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\acmigration.dll
2015-04-08 20:15 - 2015-03-14 10:20 - 01385256 ____A (Microsoft Corporation) C:\Windows\System32\msctf.dll
2015-04-08 20:15 - 2015-03-14 10:13 - 01124352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-04-08 20:15 - 2015-02-21 01:49 - 00780800 ____A (Microsoft Corporation) C:\Windows\System32\lsm.dll
2015-04-08 17:04 - 2015-04-08 17:04 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2015-04-08 13:18 - 2015-04-08 13:18 - 00000000 ____D C:\ProgramData\Emsisoft
2015-04-08 13:08 - 2015-04-08 13:08 - 166740264 ____A (Emsisoft Ltd. ) C:\Users\tom\Downloads\EmsisoftAntiMalwareSetup_4382129.exe
2015-04-07 20:59 - 2015-04-07 20:59 - 00000000 ____D C:\Users\tom\Desktop\RS232
2015-04-07 20:56 - 2015-04-07 20:58 - 00640736 ____A C:\Users\tom\Desktop\COM Port.rar
2015-04-06 20:53 - 2015-04-06 20:54 - 05046784 ____A C:\Users\tom\Downloads\reverse-schema-web.vsd
2015-04-06 17:13 - 2015-04-06 17:29 - 184364089 ____A C:\Users\tom\Downloads\Moderni-programovani.rar
2015-04-06 17:12 - 2015-04-09 08:20 - 00000000 ___AD C:\Users\tom\Desktop\Programování mikrokontrolérů PIC16Cxx -BEN- Jiří Hrbáček
2015-04-06 17:08 - 2015-04-06 17:11 - 12989461 ____A C:\Users\tom\Downloads\Programování-mikrokontrolérů-PIC16Cxx.zip
2015-04-06 07:44 - 2015-04-06 07:44 - 02208768 ____A C:\Users\tom\Downloads\adwcleaner_4.200.exe
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2015-04-04 17:47 - 2015-04-04 17:47 - 00000000 ____D C:\Program Files (x86)\PonyProg2000
2015-04-04 17:03 - 2015-04-05 10:37 - 00000000 ____D C:\Users\tom\AppData\Roaming\VisualAssistAtmel
2015-04-04 17:03 - 2015-04-05 10:37 - 00000000 ____D C:\Users\tom\AppData\Local\VisualAssistAtmel
2015-04-04 17:03 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Local\IsolatedStorage
2015-04-04 17:02 - 2015-04-04 17:02 - 00002130 ____A C:\Users\Public\Desktop\Atmel Studio 6.2.lnk
2015-04-04 16:59 - 2015-04-04 17:23 - 00000000 ____D C:\Users\tom\Documents\Atmel Studio
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Roaming\Atmel
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Local\Atmel
2015-04-04 16:57 - 2015-04-04 17:01 - 00000000 ____D C:\Program Files (x86)\Atmel
2015-04-04 16:57 - 2014-02-06 09:01 - 00067680 ____A (http://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll
2015-04-04 16:57 - 2014-01-28 07:59 - 00151552 ____A (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1150.dll
2015-04-04 16:57 - 2013-11-11 08:42 - 00147456 ____A (Jungo) C:\Windows\SysWOW64\wdapi1021.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00151552 ____A (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1140.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00143360 ____A (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 ____A (Jungo) C:\Windows\SysWOW64\wdapi1100.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 ____A (Jungo) C:\Windows\SysWOW64\wdapi102.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 ____A (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-04-04 16:50 - 2015-04-09 07:44 - 00000000 ____D C:\Users\tom\Documents\Visual Studio 2010
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\SysWOW64\1033
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\PCHEALTH
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-04-04 16:44 - 2015-04-04 16:46 - 587327768 ____A (Atmel) C:\Users\tom\Downloads\AStudio6_2sp2_1563.exe
2015-04-04 16:19 - 2011-05-01 14:58 - 00022902 ____A C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.hex
2015-04-04 16:19 - 2011-05-01 14:58 - 00008136 ____A C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.bin
2015-04-04 16:09 - 2015-04-05 16:23 - 00002382 ____A C:\Users\tom\gdbtk.ini
2015-04-04 16:07 - 2015-04-04 16:07 - 00000000 ____D C:\WinAVR-20100110
2015-04-04 16:03 - 2015-04-04 16:03 - 28840282 ____A C:\Users\tom\Desktop\WinAVR-20100110-install.exe
2015-04-03 21:47 - 2015-04-03 21:47 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D C:\Program Files (x86)\c8e441a9-abd4-4721-b704-cb9cbd0d2ddb
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D C:\Program Files (x86)\c5c1e8b7-9d03-40f6-9ecf-a015924a15c0
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D C:\Program Files (x86)\5a1f3589-0adb-4951-8a7b-a30922551845
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\tom\AppData\Local\CrashRpt
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\Public\Documents\ShopperPro
2015-04-03 20:52 - 2015-04-03 20:52 - 04210464 ____A C:\Users\tom\Desktop\SIM_editor_Smart.zip
2015-03-31 18:54 - 2015-03-31 18:55 - 11038926 ____A C:\Users\tom\Desktop\The-XX---Intro.flac
2015-03-28 16:20 - 2015-03-28 16:20 - 00000210 ____A C:\Windows\ODBCINST.INI
2015-03-28 13:37 - 2015-03-28 13:37 - 00477278 ____A C:\Users\tom\Downloads\trafo.zip
2015-03-28 13:00 - 2015-03-28 13:00 - 07803328 ____A C:\Users\tom\Desktop\transformátor.exe
2015-03-28 00:13 - 2015-04-18 19:16 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro PDF
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\ProgramData\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files\Common Files\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files (x86)\Nitro
2015-03-27 17:15 - 2012-12-13 12:47 - 00029704 ____A (Nitro PDF Software) C:\Windows\System32\nitrolocalmon2.dll
2015-03-27 17:15 - 2012-12-13 12:47 - 00017928 ____A (Nitro PDF Software) C:\Windows\System32\nitrolocalui2.dll
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D C:\Users\tom\AppData\Roaming\Downloaded Installations
2015-03-26 19:26 - 2015-04-11 12:04 - 00394006 ____A C:\Users\tom\Desktop\zdroj 60v 40a.sch
2015-03-26 10:46 - 2015-04-18 19:17 - 00000000 ____D C:\Users\tom\Desktop\sardu_3

==================== One Month Modified Files and Folders =======

2015-04-19 20:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\System32\sru
2015-04-19 19:57 - 2015-04-15 15:54 - 01645145 ____A C:\Windows\WindowsUpdate.log
2015-04-19 18:06 - 2014-12-13 11:48 - 01745984 ____A C:\Windows\System32\PerfStringBackup.INI
2015-04-19 18:04 - 2015-04-15 13:51 - 00000000 ____D C:\Program Files (x86)\Opera
2015-04-19 17:59 - 2015-04-15 16:41 - 00019232 ____A C:\Windows\setupact.log
2015-04-19 17:59 - 2014-12-15 15:52 - 00000000 ____D C:\ProgramData\NVIDIA
2015-04-19 12:00 - 2014-12-13 12:58 - 00000000 ____D C:\Users\tom\AppData\Roaming\uTorrent
2015-04-19 07:31 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Microsoft.NET
2015-04-18 19:45 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64
2015-04-18 19:44 - 2013-08-22 17:31 - 00000000 ____D C:\Windows\System32\DriverStore
2015-04-18 19:17 - 2015-03-26 10:46 - 00000000 ____D C:\Users\tom\Desktop\sardu_3
2015-04-18 19:16 - 2015-03-28 00:13 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro PDF
2015-04-18 19:14 - 2015-01-16 14:01 - 00000000 ____D C:\Users\tom\AppData\Local\CrashDumps
2015-04-18 19:10 - 2015-04-18 19:05 - 651165696 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso
2015-04-18 19:05 - 2015-04-18 19:05 - 00025244 ____A C:\Users\tom\Downloads\overclockix-amd64-.018.iso.torrent
2015-04-18 19:05 - 2015-04-18 19:05 - 00000060 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso.md5
2015-04-18 19:03 - 2015-04-18 19:00 - 621283886 ____A C:\Users\tom\Downloads\Hirens.BootCD.15.2.zip
2015-04-18 18:57 - 2015-04-18 16:48 - 00000000 ____D C:\Program Files (x86)\Top Password
2015-04-18 18:29 - 2015-04-18 15:36 - 00000000 ____D C:\Users\tom\AppData\Local\ShamurShamur
2015-04-18 17:39 - 2015-04-18 17:38 - 00000000 ____D C:\MyBootCD
2015-04-18 16:48 - 2015-04-18 16:48 - 00001043 ____A C:\Users\tom\Desktop\ISO2Disc.lnk
2015-04-18 16:48 - 2013-08-22 15:36 - 00000000 ___RD C:\Program Files (x86)
2015-04-18 16:24 - 2015-04-18 16:18 - 574615552 ____A C:\Users\tom\Downloads\CD_Live_Malekal.iso
2015-04-18 16:05 - 2015-04-18 16:05 - 98077435 ____A (Igor Pavlov) C:\Users\tom\Downloads\OTLPEStd.exe
2015-04-18 15:20 - 2015-04-18 15:20 - 05516740 ____A C:\Users\tom\Downloads\XBootv1.0beta14.zip
2015-04-18 15:16 - 2015-04-18 15:16 - 01310422 ____A (pendrivelinux.com) C:\Users\tom\Desktop\YUMI-2.0.1.6.exe
2015-04-17 23:02 - 2015-04-17 22:59 - 30786843 ____A C:\Users\tom\Desktop\Novicorp WinToFlash 0.8.0122 beta Portable.zip
2015-04-17 23:01 - 2015-04-17 17:32 - 00000000 ____D C:\Program Files (x86)\WinToFlash Suggestor
2015-04-17 22:37 - 2015-04-17 22:37 - 00094404 ____A C:\OTL.Txt
2015-04-17 18:25 - 2015-04-12 21:44 - 00000000 ____D C:\Users\tom\Desktop\Bezpečnost
2015-04-17 17:55 - 2013-08-22 15:25 - 00262144 __ASH C:\Windows\System32\config\BBI
2015-04-17 17:44 - 2015-04-17 17:41 - 448530432 ____A C:\Users\tom\Downloads\Win8PE_x64_EFI.ISO
2015-04-17 17:27 - 2015-01-14 21:27 - 00000000 ____D C:\Users\tom\AppData\Local\VirtualStore
2015-04-17 16:29 - 2015-01-15 16:40 - 00000000 ____D C:\Users\tom\AppData\Local\NPE
2015-04-17 16:05 - 2015-04-12 21:36 - 00000000 ____D C:\FRST
2015-04-17 16:04 - 2015-04-12 21:44 - 00029696 ____A C:\Users\tom\AppData\Local\MSGBOX.EXE
2015-04-17 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-04-16 21:22 - 2014-12-17 13:51 - 00007605 ____A C:\Users\tom\AppData\Local\Resmon.ResmonCfg
2015-04-16 21:21 - 2015-04-16 21:21 - 00325576 ____A C:\Windows\Minidump\041615-5437-01.dmp
2015-04-16 21:21 - 2015-04-16 14:25 - 535890945 ____A C:\Windows\MEMORY.DMP
2015-04-16 21:21 - 2014-12-13 21:25 - 00000000 ____D C:\Windows\Minidump
2015-04-16 21:13 - 2015-04-16 21:13 - 00021850 ____A C:\Users\tom\Documents\cc_20150416_211336.reg
2015-04-16 21:11 - 2015-04-16 21:11 - 1372651520 ____A C:\Users\tom\Desktop\NBRT.iso
2015-04-16 21:09 - 2015-04-14 15:26 - 00001358 ____A C:\Users\tom\Desktop\Norton Installation Files.lnk
2015-04-16 21:09 - 2015-01-15 16:40 - 00000000 ____D C:\ProgramData\Norton
2015-04-16 14:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-04-16 14:25 - 2015-04-16 14:25 - 00325416 ____A C:\Windows\Minidump\041615-5312-01.dmp
2015-04-15 17:41 - 2015-01-01 13:33 - 00000000 ____D C:\ProgramData\Oracle
2015-04-15 17:41 - 2015-01-01 13:33 - 00000000 ____D C:\Program Files (x86)\Java
2015-04-15 17:40 - 2015-01-01 13:34 - 00098216 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-04-15 17:08 - 2015-04-15 17:08 - 00000144 ____A C:\Users\tom\Downloads\nmap.install
2015-04-15 16:41 - 2015-04-15 16:41 - 00000000 ____A C:\Windows\setuperr.log
2015-04-15 15:47 - 2015-01-19 20:06 - 00000000 ____D C:\KMPlayer
2015-04-15 13:53 - 2014-12-14 10:07 - 00000000 ____D C:\Users\tom\AppData\Local\Google
2015-04-15 13:53 - 2014-12-14 10:07 - 00000000 ____D C:\Program Files (x86)\Google
2015-04-15 13:52 - 2015-04-15 13:52 - 00000000 ____D C:\Users\tom\AppData\Local\Opera Software
2015-04-15 13:52 - 2015-01-16 13:58 - 00000000 ____D C:\Users\tom\AppData\Roaming\Opera Software
2015-04-15 13:51 - 2015-04-15 13:51 - 00691664 ____A (Opera Software) C:\Users\tom\Downloads\Opera_NI_stable.exe
2015-04-15 13:46 - 2015-04-15 13:46 - 00000000 ____D C:\_OTL
2015-04-15 13:36 - 2014-12-14 09:13 - 00000000 ____D C:\Windows\System32\MRT
2015-04-15 13:36 - 2014-12-14 09:12 - 128913832 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2015-04-15 13:29 - 2014-12-13 11:50 - 00000000 ____D C:\users\tom
2015-04-14 18:12 - 2015-04-14 18:12 - 00000512 ____A C:\PhysicalMBR.bin
2015-04-14 17:11 - 2015-04-14 17:11 - 00005314 ____A C:\Users\tom\Desktop\RKreport_SCN_04142015_171121.log
2015-04-14 17:08 - 2015-01-27 20:34 - 00037624 ____A C:\Windows\System32\Drivers\TrueSight.sys
2015-04-14 16:25 - 2015-04-12 21:46 - 00000000 ____D C:\Program Files\trend micro
2015-04-14 16:24 - 2015-04-14 16:24 - 01222144 ____A C:\Users\tom\Downloads\RSITx64.exe
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Windows\System32\Drivers\NBRTWizardx64
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Program Files (x86)\Norton Bootable Recovery Tool Wizard
2015-04-14 15:26 - 2015-01-15 17:30 - 00000000 ____D C:\Users\Public\Downloads\Norton
2015-04-14 01:24 - 2014-12-14 09:36 - 00792056 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 01:24 - 2014-12-14 09:36 - 00178168 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-13 18:34 - 2015-04-13 18:29 - 308004864 ____A C:\Users\tom\Desktop\Kaspersky Rescue Disk 10.iso
2015-04-13 18:19 - 2015-02-22 16:42 - 00000000 ____D C:\AdwCleaner
2015-04-12 22:21 - 2015-04-12 21:54 - 00000000 ____D C:\Program Files (x86)\Anti-Spy.Info
2015-04-12 22:07 - 2015-04-12 21:54 - 00000000 ____D C:\ProgramData\AntiSpyInfo
2015-04-12 21:54 - 2015-04-12 21:54 - 02553160 ____A C:\Users\tom\Downloads\antispy17.exe
2015-04-12 21:48 - 2015-04-12 21:46 - 00000000 ____D C:\rsit
2015-04-12 19:58 - 2015-03-14 20:49 - 00000000 ____D C:\Users\tom\Desktop\RFID Emulator
2015-04-12 11:32 - 2015-04-12 11:32 - 00000000 ____D C:\NPE
2015-04-11 15:50 - 2015-04-11 15:50 - 00010284 ____A C:\Users\tom\eaglerc.usr
2015-04-11 12:04 - 2015-03-26 19:26 - 00394006 ____A C:\Users\tom\Desktop\zdroj 60v 40a.sch
2015-04-10 08:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat
2015-04-09 08:20 - 2015-04-06 17:12 - 00000000 ___AD C:\Users\tom\Desktop\Programování mikrokontrolérů PIC16Cxx -BEN- Jiří Hrbáček
2015-04-09 07:44 - 2015-04-04 16:50 - 00000000 ____D C:\Users\tom\Documents\Visual Studio 2010
2015-04-09 07:42 - 2015-04-09 07:41 - 340670464 ____A C:\Users\tom\Downloads\eset-sysrescue.1.0.9.0.enu.iso
2015-04-08 20:15 - 2014-12-14 11:58 - 00000000 ___SD C:\Windows\System32\CompatTel
2015-04-08 20:15 - 2014-12-14 11:58 - 00000000 ____D C:\Windows\System32\appraiser
2015-04-08 17:04 - 2015-04-08 17:04 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2015-04-08 17:04 - 2015-01-16 17:09 - 00003850 ____A C:\Windows\System32\.crusader
2015-04-08 17:04 - 2015-01-16 16:49 - 00000000 ____D C:\ProgramData\HitmanPro
2015-04-08 13:18 - 2015-04-08 13:18 - 00000000 ____D C:\ProgramData\Emsisoft
2015-04-08 13:08 - 2015-04-08 13:08 - 166740264 ____A (Emsisoft Ltd. ) C:\Users\tom\Downloads\EmsisoftAntiMalwareSetup_4382129.exe
2015-04-07 20:59 - 2015-04-07 20:59 - 00000000 ____D C:\Users\tom\Desktop\RS232
2015-04-07 20:58 - 2015-04-07 20:56 - 00640736 ____A C:\Users\tom\Desktop\COM Port.rar
2015-04-06 20:54 - 2015-04-06 20:53 - 05046784 ____A C:\Users\tom\Downloads\reverse-schema-web.vsd
2015-04-06 17:29 - 2015-04-06 17:13 - 184364089 ____A C:\Users\tom\Downloads\Moderni-programovani.rar
2015-04-06 17:11 - 2015-04-06 17:08 - 12989461 ____A C:\Users\tom\Downloads\Programování-mikrokontrolérů-PIC16Cxx.zip
2015-04-06 09:48 - 2012-03-22 10:51 - 00000000 ____D C:\Users\tom\Desktop\RFID Reader
2015-04-06 07:44 - 2015-04-06 07:44 - 02208768 ____A C:\Users\tom\Downloads\adwcleaner_4.200.exe
2015-04-06 07:33 - 2015-02-22 18:41 - 00000000 ____D C:\Users\tom\Desktop\Proramátor
2015-04-05 16:23 - 2015-04-04 16:09 - 00002382 ____A C:\Users\tom\gdbtk.ini
2015-04-05 10:37 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Roaming\VisualAssistAtmel
2015-04-05 10:37 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Local\VisualAssistAtmel
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2015-04-04 17:47 - 2015-04-04 17:47 - 00000000 ____D C:\Program Files (x86)\PonyProg2000
2015-04-04 17:46 - 2015-02-15 12:57 - 00000000 ____D C:\Users\tom\Desktop\SIM clone -Klonování sim
2015-04-04 17:23 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\Documents\Atmel Studio
2015-04-04 17:03 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Local\IsolatedStorage
2015-04-04 17:02 - 2015-04-04 17:02 - 00002130 ____A C:\Users\Public\Desktop\Atmel Studio 6.2.lnk
2015-04-04 17:01 - 2015-04-04 16:57 - 00000000 ____D C:\Program Files (x86)\Atmel
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Roaming\Atmel
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Local\Atmel
2015-04-04 16:58 - 2014-12-14 10:16 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-04-04 16:57 - 2015-02-03 16:24 - 00000000 ____D C:\ProgramData\Package Cache
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\SysWOW64\1033
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\PCHEALTH
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-04-04 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2015-04-04 16:46 - 2015-04-04 16:44 - 587327768 ____A (Atmel) C:\Users\tom\Downloads\AStudio6_2sp2_1563.exe
2015-04-04 16:07 - 2015-04-04 16:07 - 00000000 ____D C:\WinAVR-20100110
2015-04-04 16:03 - 2015-04-04 16:03 - 28840282 ____A C:\Users\tom\Desktop\WinAVR-20100110-install.exe
2015-04-04 10:43 - 2015-04-03 21:46 - 00000000 ____D C:\Program Files (x86)\c8e441a9-abd4-4721-b704-cb9cbd0d2ddb
2015-04-04 10:43 - 2015-04-03 21:46 - 00000000 ____D C:\Program Files (x86)\c5c1e8b7-9d03-40f6-9ecf-a015924a15c0
2015-04-04 10:43 - 2015-04-03 21:46 - 00000000 ____D C:\Program Files (x86)\5a1f3589-0adb-4951-8a7b-a30922551845
2015-04-04 10:43 - 2015-02-22 15:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-04-04 10:43 - 2015-01-20 19:10 - 00000000 ____D C:\Program Files (x86)\AC3Filter
2015-04-03 21:47 - 2015-04-03 21:47 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\tom\AppData\Local\CrashRpt
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\Public\Documents\ShopperPro
2015-04-03 21:46 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-04-03 20:52 - 2015-04-03 20:52 - 04210464 ____A C:\Users\tom\Desktop\SIM_editor_Smart.zip
2015-04-01 15:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\System32\NDF
2015-03-31 18:55 - 2015-03-31 18:54 - 11038926 ____A C:\Users\tom\Desktop\The-XX---Intro.flac
2015-03-28 16:20 - 2015-03-28 16:20 - 00000210 ____A C:\Windows\ODBCINST.INI
2015-03-28 13:37 - 2015-03-28 13:37 - 00477278 ____A C:\Users\tom\Downloads\trafo.zip
2015-03-28 13:00 - 2015-03-28 13:00 - 07803328 ____A C:\Users\tom\Desktop\transformátor.exe
2015-03-28 00:12 - 2013-08-22 16:44 - 00473040 ____A C:\Windows\System32\FNTCACHE.DAT
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\ProgramData\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files\Common Files\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files (x86)\Nitro
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D C:\Users\tom\AppData\Roaming\Downloaded Installations
2015-03-27 17:05 - 2015-02-22 15:00 - 00000000 ____D C:\ProgramData\Adobe
2015-03-24 16:11 - 2015-02-23 14:28 - 00000000 ____D C:\Users\tom\Desktop\Kyocera
2015-03-23 23:59 - 2015-04-15 13:10 - 07476032 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2015-03-23 23:59 - 2015-04-15 13:10 - 01733952 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2015-03-23 23:59 - 2015-04-15 13:10 - 00360480 ____A (Microsoft Corporation) C:\Windows\System32\sechost.dll
2015-03-23 23:58 - 2015-04-15 13:10 - 01498872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-03-23 23:45 - 2015-04-15 13:10 - 00257216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-03-23 00:45 - 2015-04-08 20:15 - 00227328 ____A (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 01111552 ____A (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00957440 ____A (Microsoft Corporation) C:\Windows\System32\appraiser.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00769024 ____A (Microsoft Corporation) C:\Windows\System32\invagent.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00726528 ____A (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00419328 ____A (Microsoft Corporation) C:\Windows\System32\devinv.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\acmigration.dll

==================== Known DLLs (Whitelisted) ============

C:\Windows\System32\_Wow64cpu.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\_Wow64win.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\_Wow64.dll IS MISSING <==== ATTENTION!.

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2015-03-10 21:32] - [2015-01-28 01:47] - 2501368 ____A (Microsoft Corporation) C10A66189DC8C090E7C84873EDCEBC88

C:\Windows\System32\winlogon.exe
[2014-12-18 19:40] - [2014-10-29 03:22] - 0572416 ____A (Microsoft Corporation) EC498BAE1F0D3E0E401C963F8D76C437

C:\Windows\System32\wininit.exe
[2014-12-18 19:40] - [2014-10-29 03:25] - 0145920 ____A (Microsoft Corporation) A570A64292214C43E0BA50E6A72A6380

C:\Windows\System32\svchost.exe
[2014-12-18 19:40] - [2014-10-29 06:11] - 0038792 ____A (Microsoft Corporation) E3A2AD05E24105B35E986CF9CB38EC47

C:\Windows\System32\services.exe
[2014-12-18 19:40] - [2014-10-29 05:53] - 0411128 ____A (Microsoft Corporation) 5BF02EBEFEDC706318C96E2E60EDCB91

C:\Windows\System32\User32.dll
[2014-12-18 19:41] - [2014-10-29 06:00] - 1540696 ____A (Microsoft Corporation) 25026E350BC3BE37631634EC72B10BD5

C:\Windows\System32\userinit.exe
[2014-12-18 19:40] - [2014-10-29 03:28] - 0026112 ____A (Microsoft Corporation) 5C131534A3EA4A461A793FB507A8004F

C:\Windows\System32\Drivers\volsnap.sys
[2014-12-14 12:05] - [2014-06-19 04:13] - 0310080 ___AC (Microsoft Corporation) 64CA2B4A49A8EAF495E435623ECCE7DB

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2015-04-18 19:43:41

==================== Memory info ===========================

Percentage of memory in use: 19%
Total physical RAM: 3548.98 MB
Available physical RAM: 2843.25 MB
Total Pagefile: 3547.27 MB
Available Pagefile: 2843.12 MB
Total Virtual: 2047.88 MB
Available Virtual: 1928.22 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:65.41 GB) NTFS
Drive d: (Seagate Momentus) (Fixed) (Total:931.51 GB) (Free:71.16 GB) NTFS
Drive e: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive x: (Boot) (Fixed) (Total:0.25 GB) (Free:0.25 GB) NTFS
Drive y: (SARDU) (Removable) (Total:14.44 GB) (Free:13.82 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 3A6584D5)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: 8D59147E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 14 GB) (Disk ID: 9E211ABC)
Partition 1: (Active) - (Size=14 GB) - (Type=0C)

LastRegBack: 2015-04-19 07:31

==================== End Of Log ============================

konu · #29 Příspěvek od **konu** » 20 dub 2015 12:28

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-07-2013 01 (ATTENTION: FRST version is 649 days old)
Ran by Système on 20-04-2015 13:19:32
Running from Y:\Programs\FRST
Windows 8.1 Enterprise Service Pack 1 (X86) OS Language: French Standard
Internet Explorer Version 11
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.

ATTENTION!:=====> THE OPERATING SYSTEM IS A X64 SYSTEM BUT THE BOOT DISK THAT IS USED TO BOOT TO RECOVERY ENVIRONMENT IS A X86 SYSTEM DISK.
==================== Registry (Whitelisted) ==================

HKLM\...\Run: [egui] - "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice [5595336 2014-10-01] (ESET)
HKLM\...\Run: [NvBackend] - "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2585928 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r [5138032 2012-03-30] (VIA)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [1514528 2015-01-16] (NVIDIA Corporation)
HKU\tom\...\Run: [CCleaner Monitoring] - "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [ 2015-01-20] (Piriform Ltd)

========================== Services (Whitelisted) =================

S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [562688 2014-10-29] (Microsoft Corporation)
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1348096 2014-10-29] (Microsoft Corporation)
S2 ASLDRService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [106880 2012-11-14] (ASUSTek Computer Inc.)
S2 ATKGFNEXSrv; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
S2 FanChkService; C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe [45696 2012-01-20] (ASUSTek Computer Inc.)
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2013-08-03] (Microsoft Corporation)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [114688 2014-10-31] (Microsoft Corporation)
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [521728 2014-10-29] (Microsoft Corporation)
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [92992 2014-10-29] (Microsoft Corporation)
S3 NcbService; C:\Windows\System32\ncbservice.dll [154112 2014-10-29] (Microsoft Corporation)
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-08-10] (Microsoft Corporation)
S2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-01-30] (Electronic Arts)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation)
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2014-08-16] (Microsoft Corporation)
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [131072 2014-10-29] (Microsoft Corporation)
S3 smphost; C:\Windows\System32\smphost.dll [13312 2014-10-29] (Microsoft Corporation)
S2 Stereo Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410768 2015-01-10] (NVIDIA Corporation)
S2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-03-23] (VIA Technologies, Inc.)
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [26112 2014-10-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1668096 2014-10-29] (Microsoft Corporation)
S2 HitmanPro37CrusaderBoot; "G:\Programy\Bezpečnost\Hitman\HitmanPro_x64.exe" /crusader:boot [x]
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [x]

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [75776 2014-12-12] (Microsoft Corporation)
S2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [15416 2009-07-02] (ASUS)
S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-08-14] (Qualcomm Atheros Communications, Inc.)
S1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2013-08-22] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [593000 2014-01-28] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
S1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
S2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
S1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
S0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [170280 2014-12-14] (ESET)
S3 FTDIBUS; C:\Windows\system32\drivers\ftdibus.sys [94704 2014-01-31] (FTDI Ltd.)
S3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch64.sys [20280 2013-11-04] (ASUS)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
S0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39744 2014-10-17] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-08-23] (Microsoft Corporation)
S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation)
S3 L1C; C:\Windows\system32\DRIVERS\L1C63x64.sys [129224 2013-06-18] (Qualcomm Atheros Co., Ltd.)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 MEIx64; C:\Windows\System32\drivers\HECIx64.sys [62784 2012-07-17] (Intel Corporation)
S3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\System32\drivers\netvsc63.sys [87040 2014-10-29] (Microsoft Corporation)
S3 NVHDA; C:\Windows\system32\drivers\nvhda64v.sys [195728 2015-01-13] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
S3 NvStUSB; C:\Windows\system32\DRIVERS\nvstusb.sys [452424 2015-01-13] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [921920 2014-10-15] (Microsoft Corporation)
S1 SCDEmu; C:\Windows\System32\Drivers\SCDEmu.sys [127760 2014-10-08] (Power Software Ltd)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
S3 storvsp; C:\Windows\System32\drivers\storvsp.sys [68608 2013-08-23] (Microsoft Corporation)
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [40664 2013-08-22] (The OpenVPN Project)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 VIAHdAudAddService; C:\Windows\system32\drivers\viahduaa.sys [2193008 2012-03-23] (VIA Technologies, Inc.)
S3 Vid; C:\Windows\System32\drivers\Vid.sys [220672 2013-08-23] (Microsoft Corporation)
S3 vmbusr; C:\Windows\System32\drivers\vmbusr.sys [129536 2013-08-23] (Microsoft Corporation)
S3 vpci; C:\Windows\System32\drivers\vpci.sys [69952 2014-10-07] (Microsoft Corporation)
S3 vpcivsp; C:\Windows\System32\drivers\vpcivsp.sys [65536 2013-08-23] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [268800 2014-01-28] (Jungo Connectivity)
S0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-03-13] (Microsoft Corporation)
S3 WUDFSensorLP; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S3 DLPortIO; \??\C:\Windows\system32\DRIVERS\DLPortIO.SYS [x]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [x]
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [x]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [x]

==================== NetSvcs (Whitelisted) ===================

NETSVC: lfsvc -> C:\Windows\System32\GeofenceMonitorService.dll (Microsoft Corporation)
NETSVC: MsKeyboardFilter -> C:\Windows\System32\KeyboardFilterSvc.dll (Microsoft Corporation)

==================== One Month Created Files and Folders ========

2015-04-18 19:43 - 2015-01-06 05:01 - 00072192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndproxy.sys
2015-04-18 19:43 - 2015-01-06 04:59 - 00080896 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\wanarp.sys
2015-04-18 19:43 - 2015-01-06 03:12 - 00185856 ____A (Microsoft Corporation) C:\Windows\System32\rascfg.dll
2015-04-18 19:43 - 2015-01-06 03:02 - 00164864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-04-18 19:05 - 2015-04-18 19:10 - 651165696 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso
2015-04-18 19:05 - 2015-04-18 19:05 - 00025244 ____A C:\Users\tom\Downloads\overclockix-amd64-.018.iso.torrent
2015-04-18 19:05 - 2015-04-18 19:05 - 00000060 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso.md5
2015-04-18 19:00 - 2015-04-18 19:03 - 621283886 ____A C:\Users\tom\Downloads\Hirens.BootCD.15.2.zip
2015-04-18 17:38 - 2015-04-18 17:39 - 00000000 ____D C:\MyBootCD
2015-04-18 16:48 - 2015-04-18 18:57 - 00000000 ____D C:\Program Files (x86)\Top Password
2015-04-18 16:48 - 2015-04-18 16:48 - 00001043 ____A C:\Users\tom\Desktop\ISO2Disc.lnk
2015-04-18 16:18 - 2015-04-18 16:24 - 574615552 ____A C:\Users\tom\Downloads\CD_Live_Malekal.iso
2015-04-18 16:06 - 2011-07-17 16:05 - 297922560 ____A C:\Users\tom\Desktop\OTLPE_New_Std.iso
2015-04-18 16:05 - 2015-04-18 16:05 - 98077435 ____A (Igor Pavlov) C:\Users\tom\Downloads\OTLPEStd.exe
2015-04-18 15:36 - 2015-04-18 18:29 - 00000000 ____D C:\Users\tom\AppData\Local\ShamurShamur
2015-04-18 15:20 - 2015-04-18 15:20 - 05516740 ____A C:\Users\tom\Downloads\XBootv1.0beta14.zip
2015-04-18 15:16 - 2015-04-18 15:16 - 01310422 ____A (pendrivelinux.com) C:\Users\tom\Desktop\YUMI-2.0.1.6.exe
2015-04-17 22:59 - 2015-04-17 23:02 - 30786843 ____A C:\Users\tom\Desktop\Novicorp WinToFlash 0.8.0122 beta Portable.zip
2015-04-17 22:37 - 2015-04-17 22:37 - 00094404 ____A C:\OTL.Txt
2015-04-17 17:41 - 2015-04-17 17:44 - 448530432 ____A C:\Users\tom\Downloads\Win8PE_x64_EFI.ISO
2015-04-17 17:32 - 2015-04-17 23:01 - 00000000 ____D C:\Program Files (x86)\WinToFlash Suggestor
2015-04-16 21:21 - 2015-04-16 21:21 - 00325576 ____A C:\Windows\Minidump\041615-5437-01.dmp
2015-04-16 21:13 - 2015-04-16 21:13 - 00021850 ____A C:\Users\tom\Documents\cc_20150416_211336.reg
2015-04-16 21:11 - 2015-04-16 21:11 - 1372651520 ____A C:\Users\tom\Desktop\NBRT.iso
2015-04-16 14:25 - 2015-04-16 21:21 - 535890945 ____A C:\Windows\MEMORY.DMP
2015-04-16 14:25 - 2015-04-16 14:25 - 00325416 ____A C:\Windows\Minidump\041615-5312-01.dmp
2015-04-15 17:08 - 2015-04-15 17:08 - 00000144 ____A C:\Users\tom\Downloads\nmap.install
2015-04-15 16:41 - 2015-04-20 13:15 - 00020276 ____A C:\Windows\setupact.log
2015-04-15 16:41 - 2015-04-15 16:41 - 00000000 ____A C:\Windows\setuperr.log
2015-04-15 15:54 - 2015-04-20 13:16 - 01807219 ____A C:\Windows\WindowsUpdate.log
2015-04-15 13:52 - 2015-04-15 13:52 - 00000000 ____D C:\Users\tom\AppData\Local\Opera Software
2015-04-15 13:51 - 2015-04-20 13:13 - 00000000 ____D C:\Program Files (x86)\Opera
2015-04-15 13:51 - 2015-04-15 13:51 - 00691664 ____A (Opera Software) C:\Users\tom\Downloads\Opera_NI_stable.exe
2015-04-15 13:46 - 2015-04-15 13:46 - 00000000 ____D C:\_OTL
2015-04-15 13:10 - 2015-03-23 23:59 - 07476032 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2015-04-15 13:10 - 2015-03-23 23:59 - 01733952 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2015-04-15 13:10 - 2015-03-23 23:59 - 00360480 ____A (Microsoft Corporation) C:\Windows\System32\sechost.dll
2015-04-15 13:10 - 2015-03-23 23:58 - 01498872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 13:10 - 2015-03-23 23:45 - 00257216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-04-15 13:10 - 2015-03-20 06:12 - 00246272 ____A (Microsoft Corporation) C:\Windows\System32\microsoft-windows-system-events.dll
2015-04-15 13:10 - 2015-03-20 06:10 - 00285184 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll
2015-04-15 13:10 - 2015-03-20 06:10 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2015-04-15 13:10 - 2015-03-20 05:17 - 00411648 ____A (Microsoft Corporation) C:\Windows\System32\tracerpt.exe
2015-04-15 13:10 - 2015-03-20 04:41 - 00369152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-04-15 13:10 - 2015-03-20 04:40 - 00950784 ____A (Microsoft Corporation) C:\Windows\System32\tdh.dll
2015-04-15 13:10 - 2015-03-20 04:16 - 00749568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-04-15 13:09 - 2015-03-13 06:32 - 24980480 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2015-04-15 13:09 - 2015-03-13 06:08 - 00584192 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2015-04-15 13:09 - 2015-03-13 06:07 - 02886144 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2015-04-15 13:09 - 2015-03-13 05:53 - 00816128 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2015-04-15 13:09 - 2015-03-13 05:50 - 06025216 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2015-04-15 13:09 - 2015-03-13 05:42 - 19695616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 13:09 - 2015-03-13 05:28 - 00503296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 13:09 - 2015-03-13 05:26 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2015-04-15 13:09 - 2015-03-13 05:22 - 02278400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 13:09 - 2015-03-13 05:17 - 01032704 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2015-04-15 13:09 - 2015-03-13 05:16 - 00664064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-15 13:09 - 2015-03-13 05:08 - 00720384 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2015-04-15 13:09 - 2015-03-13 05:07 - 00801280 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2015-04-15 13:09 - 2015-03-13 05:00 - 14397440 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2015-04-15 13:09 - 2015-03-13 04:58 - 00259072 ____A (Microsoft Corporation) C:\Windows\System32\pku2u.dll
2015-04-15 13:09 - 2015-03-13 04:50 - 00880128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-04-15 13:09 - 2015-03-13 04:49 - 04305408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 13:09 - 2015-03-13 04:45 - 02358784 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2015-04-15 13:09 - 2015-03-13 04:44 - 00689152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 13:09 - 2015-03-13 04:37 - 00208896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-04-15 13:09 - 2015-03-13 04:34 - 12825600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 13:09 - 2015-03-13 04:33 - 01548288 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2015-04-15 13:09 - 2015-03-13 04:22 - 00800768 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2015-04-15 13:09 - 2015-03-13 04:20 - 01888256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 13:09 - 2015-03-13 04:16 - 01311232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 13:09 - 2015-03-13 04:14 - 00710144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 13:09 - 2015-03-04 12:25 - 00377152 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\clfs.sys
2015-04-15 13:09 - 2015-03-04 05:04 - 00075264 ____A (Microsoft Corporation) C:\Windows\System32\clfsw32.dll
2015-04-15 13:09 - 2015-03-04 04:19 - 00058880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 13:09 - 2015-02-24 10:32 - 00991552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2015-04-14 20:45 - 2015-03-14 10:54 - 00133256 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2015-04-14 20:45 - 2015-03-14 03:56 - 00066048 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2015-04-14 20:45 - 2015-03-14 03:56 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2015-04-14 20:45 - 2015-03-14 03:51 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\wu.upgrade.ps.dll
2015-04-14 20:45 - 2015-03-14 03:37 - 00267264 ____A (Microsoft Corporation) C:\Windows\System32\WinSetupUI.dll
2015-04-14 20:45 - 2015-03-14 03:14 - 00027136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-14 20:45 - 2015-03-14 02:22 - 03678720 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2015-04-14 20:45 - 2015-03-14 02:12 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2015-04-14 20:45 - 2015-03-14 02:12 - 00035840 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2015-04-14 20:45 - 2015-03-14 02:09 - 00200192 ____A (Microsoft Corporation) C:\Windows\System32\storewuauth.dll
2015-04-14 20:45 - 2015-03-14 02:08 - 00408064 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll
2015-04-14 20:45 - 2015-03-14 02:08 - 00095744 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2015-04-14 20:45 - 2015-03-14 02:06 - 02373632 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2015-04-14 20:45 - 2015-03-14 02:06 - 00891392 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2015-04-14 20:45 - 2015-03-14 02:02 - 00124928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-14 20:45 - 2015-03-14 02:02 - 00029696 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-14 20:45 - 2015-03-14 01:59 - 00721920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-14 20:45 - 2015-03-14 01:59 - 00081920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-14 18:12 - 2015-04-14 18:12 - 00000512 ____A C:\PhysicalMBR.bin
2015-04-14 17:11 - 2015-04-14 17:11 - 00005314 ____A C:\Users\tom\Desktop\RKreport_SCN_04142015_171121.log
2015-04-14 16:24 - 2015-04-14 16:24 - 01222144 ____A C:\Users\tom\Downloads\RSITx64.exe
2015-04-14 15:28 - 2012-07-26 07:32 - 00125872 ____A (GEAR Software Inc.) C:\Windows\System32\GEARAspi64.dll
2015-04-14 15:28 - 2012-07-26 07:32 - 00106928 ____A (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll
2015-04-14 15:28 - 2012-07-26 07:32 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Windows\System32\Drivers\NBRTWizardx64
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Program Files (x86)\Norton Bootable Recovery Tool Wizard
2015-04-14 15:26 - 2015-04-16 21:09 - 00001358 ____A C:\Users\tom\Desktop\Norton Installation Files.lnk
2015-04-13 18:29 - 2015-04-13 18:34 - 308004864 ____A C:\Users\tom\Desktop\Kaspersky Rescue Disk 10.iso
2015-04-12 21:54 - 2015-04-12 22:21 - 00000000 ____D C:\Program Files (x86)\Anti-Spy.Info
2015-04-12 21:54 - 2015-04-12 22:07 - 00000000 ____D C:\ProgramData\AntiSpyInfo
2015-04-12 21:54 - 2015-04-12 21:54 - 02553160 ____A C:\Users\tom\Downloads\antispy17.exe
2015-04-12 21:46 - 2015-04-14 16:25 - 00000000 ____D C:\Program Files\trend micro
2015-04-12 21:46 - 2015-04-12 21:48 - 00000000 ____D C:\rsit
2015-04-12 21:44 - 2015-04-17 18:25 - 00000000 ____D C:\Users\tom\Desktop\Bezpečnost
2015-04-12 21:44 - 2015-04-17 16:04 - 00029696 ____A C:\Users\tom\AppData\Local\MSGBOX.EXE
2015-04-12 21:36 - 2015-04-17 16:05 - 00000000 ____D C:\FRST
2015-04-12 11:32 - 2015-04-12 11:32 - 00000000 ____D C:\NPE
2015-04-11 15:50 - 2015-04-11 15:50 - 00010284 ____A C:\Users\tom\eaglerc.usr
2015-04-09 07:41 - 2015-04-09 07:42 - 340670464 ____A C:\Users\tom\Downloads\eset-sysrescue.1.0.9.0.enu.iso
2015-04-08 20:15 - 2015-03-23 00:45 - 00227328 ____A (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 01111552 ____A (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00957440 ____A (Microsoft Corporation) C:\Windows\System32\appraiser.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00769024 ____A (Microsoft Corporation) C:\Windows\System32\invagent.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00726528 ____A (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00419328 ____A (Microsoft Corporation) C:\Windows\System32\devinv.dll
2015-04-08 20:15 - 2015-03-23 00:09 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\acmigration.dll
2015-04-08 20:15 - 2015-03-14 10:20 - 01385256 ____A (Microsoft Corporation) C:\Windows\System32\msctf.dll
2015-04-08 20:15 - 2015-03-14 10:13 - 01124352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-04-08 20:15 - 2015-02-21 01:49 - 00780800 ____A (Microsoft Corporation) C:\Windows\System32\lsm.dll
2015-04-08 17:04 - 2015-04-08 17:04 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2015-04-08 13:18 - 2015-04-08 13:18 - 00000000 ____D C:\ProgramData\Emsisoft
2015-04-08 13:08 - 2015-04-08 13:08 - 166740264 ____A (Emsisoft Ltd. ) C:\Users\tom\Downloads\EmsisoftAntiMalwareSetup_4382129.exe
2015-04-07 20:59 - 2015-04-07 20:59 - 00000000 ____D C:\Users\tom\Desktop\RS232
2015-04-07 20:56 - 2015-04-07 20:58 - 00640736 ____A C:\Users\tom\Desktop\COM Port.rar
2015-04-06 20:53 - 2015-04-06 20:54 - 05046784 ____A C:\Users\tom\Downloads\reverse-schema-web.vsd
2015-04-06 17:13 - 2015-04-06 17:29 - 184364089 ____A C:\Users\tom\Downloads\Moderni-programovani.rar
2015-04-06 17:12 - 2015-04-09 08:20 - 00000000 ___AD C:\Users\tom\Desktop\Programování mikrokontrolérů PIC16Cxx -BEN- Jiří Hrbáček
2015-04-06 17:08 - 2015-04-06 17:11 - 12989461 ____A C:\Users\tom\Downloads\Programování-mikrokontrolérů-PIC16Cxx.zip
2015-04-06 07:44 - 2015-04-06 07:44 - 02208768 ____A C:\Users\tom\Downloads\adwcleaner_4.200.exe
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2015-04-04 17:47 - 2015-04-04 17:47 - 00000000 ____D C:\Program Files (x86)\PonyProg2000
2015-04-04 17:03 - 2015-04-05 10:37 - 00000000 ____D C:\Users\tom\AppData\Roaming\VisualAssistAtmel
2015-04-04 17:03 - 2015-04-05 10:37 - 00000000 ____D C:\Users\tom\AppData\Local\VisualAssistAtmel
2015-04-04 17:03 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Local\IsolatedStorage
2015-04-04 17:02 - 2015-04-04 17:02 - 00002130 ____A C:\Users\Public\Desktop\Atmel Studio 6.2.lnk
2015-04-04 16:59 - 2015-04-04 17:23 - 00000000 ____D C:\Users\tom\Documents\Atmel Studio
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Roaming\Atmel
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Local\Atmel
2015-04-04 16:57 - 2015-04-04 17:01 - 00000000 ____D C:\Program Files (x86)\Atmel
2015-04-04 16:57 - 2014-02-06 09:01 - 00067680 ____A (http://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll
2015-04-04 16:57 - 2014-01-28 07:59 - 00151552 ____A (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1150.dll
2015-04-04 16:57 - 2013-11-11 08:42 - 00147456 ____A (Jungo) C:\Windows\SysWOW64\wdapi1021.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00151552 ____A (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1140.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00143360 ____A (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 ____A (Jungo) C:\Windows\SysWOW64\wdapi1100.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 ____A (Jungo) C:\Windows\SysWOW64\wdapi102.dll
2015-04-04 16:57 - 2013-11-11 08:41 - 00110592 ____A (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-04-04 16:50 - 2015-04-09 07:44 - 00000000 ____D C:\Users\tom\Documents\Visual Studio 2010
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\SysWOW64\1033
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\PCHEALTH
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-04-04 16:44 - 2015-04-04 16:46 - 587327768 ____A (Atmel) C:\Users\tom\Downloads\AStudio6_2sp2_1563.exe
2015-04-04 16:19 - 2011-05-01 14:58 - 00022902 ____A C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.hex
2015-04-04 16:19 - 2011-05-01 14:58 - 00008136 ____A C:\Users\tom\Desktop\atmega_fusebit_doctor_2.11_m8.bin
2015-04-04 16:09 - 2015-04-05 16:23 - 00002382 ____A C:\Users\tom\gdbtk.ini
2015-04-04 16:07 - 2015-04-04 16:07 - 00000000 ____D C:\WinAVR-20100110
2015-04-04 16:03 - 2015-04-04 16:03 - 28840282 ____A C:\Users\tom\Desktop\WinAVR-20100110-install.exe
2015-04-03 21:47 - 2015-04-03 21:47 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D C:\Program Files (x86)\c8e441a9-abd4-4721-b704-cb9cbd0d2ddb
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D C:\Program Files (x86)\c5c1e8b7-9d03-40f6-9ecf-a015924a15c0
2015-04-03 21:46 - 2015-04-04 10:43 - 00000000 ____D C:\Program Files (x86)\5a1f3589-0adb-4951-8a7b-a30922551845
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\tom\AppData\Local\CrashRpt
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\Public\Documents\ShopperPro
2015-04-03 20:52 - 2015-04-03 20:52 - 04210464 ____A C:\Users\tom\Desktop\SIM_editor_Smart.zip
2015-03-31 18:54 - 2015-03-31 18:55 - 11038926 ____A C:\Users\tom\Desktop\The-XX---Intro.flac
2015-03-28 16:20 - 2015-03-28 16:20 - 00000210 ____A C:\Windows\ODBCINST.INI
2015-03-28 13:37 - 2015-03-28 13:37 - 00477278 ____A C:\Users\tom\Downloads\trafo.zip
2015-03-28 13:00 - 2015-03-28 13:00 - 07803328 ____A C:\Users\tom\Desktop\transformátor.exe
2015-03-28 00:13 - 2015-04-20 13:12 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro PDF
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\ProgramData\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files\Common Files\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files (x86)\Nitro
2015-03-27 17:15 - 2012-12-13 12:47 - 00029704 ____A (Nitro PDF Software) C:\Windows\System32\nitrolocalmon2.dll
2015-03-27 17:15 - 2012-12-13 12:47 - 00017928 ____A (Nitro PDF Software) C:\Windows\System32\nitrolocalui2.dll
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D C:\Users\tom\AppData\Roaming\Downloaded Installations
2015-03-26 19:26 - 2015-04-11 12:04 - 00394006 ____A C:\Users\tom\Desktop\zdroj 60v 40a.sch
2015-03-26 10:46 - 2015-04-18 19:17 - 00000000 ____D C:\Users\tom\Desktop\sardu_3

==================== One Month Modified Files and Folders =======

2015-04-20 13:16 - 2015-04-15 15:54 - 01807219 ____A C:\Windows\WindowsUpdate.log
2015-04-20 13:15 - 2015-04-15 16:41 - 00020276 ____A C:\Windows\setupact.log
2015-04-20 13:15 - 2014-12-15 15:52 - 00000000 ____D C:\ProgramData\NVIDIA
2015-04-20 13:13 - 2015-04-15 13:51 - 00000000 ____D C:\Program Files (x86)\Opera
2015-04-20 13:12 - 2015-03-28 00:13 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro PDF
2015-04-19 20:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\System32\sru
2015-04-19 18:06 - 2014-12-13 11:48 - 01745984 ____A C:\Windows\System32\PerfStringBackup.INI
2015-04-19 12:00 - 2014-12-13 12:58 - 00000000 ____D C:\Users\tom\AppData\Roaming\uTorrent
2015-04-19 07:31 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Microsoft.NET
2015-04-18 19:45 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64
2015-04-18 19:44 - 2013-08-22 17:31 - 00000000 ____D C:\Windows\System32\DriverStore
2015-04-18 19:17 - 2015-03-26 10:46 - 00000000 ____D C:\Users\tom\Desktop\sardu_3
2015-04-18 19:14 - 2015-01-16 14:01 - 00000000 ____D C:\Users\tom\AppData\Local\CrashDumps
2015-04-18 19:10 - 2015-04-18 19:05 - 651165696 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso
2015-04-18 19:05 - 2015-04-18 19:05 - 00025244 ____A C:\Users\tom\Downloads\overclockix-amd64-.018.iso.torrent
2015-04-18 19:05 - 2015-04-18 19:05 - 00000060 ____A C:\Users\tom\Downloads\overclockix-i386-.018.iso.md5
2015-04-18 19:03 - 2015-04-18 19:00 - 621283886 ____A C:\Users\tom\Downloads\Hirens.BootCD.15.2.zip
2015-04-18 18:57 - 2015-04-18 16:48 - 00000000 ____D C:\Program Files (x86)\Top Password
2015-04-18 18:29 - 2015-04-18 15:36 - 00000000 ____D C:\Users\tom\AppData\Local\ShamurShamur
2015-04-18 17:39 - 2015-04-18 17:38 - 00000000 ____D C:\MyBootCD
2015-04-18 16:48 - 2015-04-18 16:48 - 00001043 ____A C:\Users\tom\Desktop\ISO2Disc.lnk
2015-04-18 16:48 - 2013-08-22 15:36 - 00000000 ___RD C:\Program Files (x86)
2015-04-18 16:24 - 2015-04-18 16:18 - 574615552 ____A C:\Users\tom\Downloads\CD_Live_Malekal.iso
2015-04-18 16:05 - 2015-04-18 16:05 - 98077435 ____A (Igor Pavlov) C:\Users\tom\Downloads\OTLPEStd.exe
2015-04-18 15:20 - 2015-04-18 15:20 - 05516740 ____A C:\Users\tom\Downloads\XBootv1.0beta14.zip
2015-04-18 15:16 - 2015-04-18 15:16 - 01310422 ____A (pendrivelinux.com) C:\Users\tom\Desktop\YUMI-2.0.1.6.exe
2015-04-17 23:02 - 2015-04-17 22:59 - 30786843 ____A C:\Users\tom\Desktop\Novicorp WinToFlash 0.8.0122 beta Portable.zip
2015-04-17 23:01 - 2015-04-17 17:32 - 00000000 ____D C:\Program Files (x86)\WinToFlash Suggestor
2015-04-17 22:37 - 2015-04-17 22:37 - 00094404 ____A C:\OTL.Txt
2015-04-17 18:25 - 2015-04-12 21:44 - 00000000 ____D C:\Users\tom\Desktop\Bezpečnost
2015-04-17 17:55 - 2013-08-22 15:25 - 00262144 __ASH C:\Windows\System32\config\BBI
2015-04-17 17:44 - 2015-04-17 17:41 - 448530432 ____A C:\Users\tom\Downloads\Win8PE_x64_EFI.ISO
2015-04-17 17:27 - 2015-01-14 21:27 - 00000000 ____D C:\Users\tom\AppData\Local\VirtualStore
2015-04-17 16:29 - 2015-01-15 16:40 - 00000000 ____D C:\Users\tom\AppData\Local\NPE
2015-04-17 16:05 - 2015-04-12 21:36 - 00000000 ____D C:\FRST
2015-04-17 16:04 - 2015-04-12 21:44 - 00029696 ____A C:\Users\tom\AppData\Local\MSGBOX.EXE
2015-04-17 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-04-16 21:22 - 2014-12-17 13:51 - 00007605 ____A C:\Users\tom\AppData\Local\Resmon.ResmonCfg
2015-04-16 21:21 - 2015-04-16 21:21 - 00325576 ____A C:\Windows\Minidump\041615-5437-01.dmp
2015-04-16 21:21 - 2015-04-16 14:25 - 535890945 ____A C:\Windows\MEMORY.DMP
2015-04-16 21:21 - 2014-12-13 21:25 - 00000000 ____D C:\Windows\Minidump
2015-04-16 21:13 - 2015-04-16 21:13 - 00021850 ____A C:\Users\tom\Documents\cc_20150416_211336.reg
2015-04-16 21:11 - 2015-04-16 21:11 - 1372651520 ____A C:\Users\tom\Desktop\NBRT.iso
2015-04-16 21:09 - 2015-04-14 15:26 - 00001358 ____A C:\Users\tom\Desktop\Norton Installation Files.lnk
2015-04-16 21:09 - 2015-01-15 16:40 - 00000000 ____D C:\ProgramData\Norton
2015-04-16 14:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-04-16 14:25 - 2015-04-16 14:25 - 00325416 ____A C:\Windows\Minidump\041615-5312-01.dmp
2015-04-15 17:41 - 2015-01-01 13:33 - 00000000 ____D C:\ProgramData\Oracle
2015-04-15 17:41 - 2015-01-01 13:33 - 00000000 ____D C:\Program Files (x86)\Java
2015-04-15 17:40 - 2015-01-01 13:34 - 00098216 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-04-15 17:08 - 2015-04-15 17:08 - 00000144 ____A C:\Users\tom\Downloads\nmap.install
2015-04-15 16:41 - 2015-04-15 16:41 - 00000000 ____A C:\Windows\setuperr.log
2015-04-15 15:47 - 2015-01-19 20:06 - 00000000 ____D C:\KMPlayer
2015-04-15 13:53 - 2014-12-14 10:07 - 00000000 ____D C:\Users\tom\AppData\Local\Google
2015-04-15 13:53 - 2014-12-14 10:07 - 00000000 ____D C:\Program Files (x86)\Google
2015-04-15 13:52 - 2015-04-15 13:52 - 00000000 ____D C:\Users\tom\AppData\Local\Opera Software
2015-04-15 13:52 - 2015-01-16 13:58 - 00000000 ____D C:\Users\tom\AppData\Roaming\Opera Software
2015-04-15 13:51 - 2015-04-15 13:51 - 00691664 ____A (Opera Software) C:\Users\tom\Downloads\Opera_NI_stable.exe
2015-04-15 13:46 - 2015-04-15 13:46 - 00000000 ____D C:\_OTL
2015-04-15 13:36 - 2014-12-14 09:13 - 00000000 ____D C:\Windows\System32\MRT
2015-04-15 13:36 - 2014-12-14 09:12 - 128913832 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2015-04-15 13:29 - 2014-12-13 11:50 - 00000000 ____D C:\users\tom
2015-04-14 18:12 - 2015-04-14 18:12 - 00000512 ____A C:\PhysicalMBR.bin
2015-04-14 17:11 - 2015-04-14 17:11 - 00005314 ____A C:\Users\tom\Desktop\RKreport_SCN_04142015_171121.log
2015-04-14 17:08 - 2015-01-27 20:34 - 00037624 ____A C:\Windows\System32\Drivers\TrueSight.sys
2015-04-14 16:25 - 2015-04-12 21:46 - 00000000 ____D C:\Program Files\trend micro
2015-04-14 16:24 - 2015-04-14 16:24 - 01222144 ____A C:\Users\tom\Downloads\RSITx64.exe
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Windows\System32\Drivers\NBRTWizardx64
2015-04-14 15:27 - 2015-04-14 15:27 - 00000000 ____D C:\Program Files (x86)\Norton Bootable Recovery Tool Wizard
2015-04-14 15:26 - 2015-01-15 17:30 - 00000000 ____D C:\Users\Public\Downloads\Norton
2015-04-14 01:24 - 2014-12-14 09:36 - 00792056 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 01:24 - 2014-12-14 09:36 - 00178168 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-13 18:34 - 2015-04-13 18:29 - 308004864 ____A C:\Users\tom\Desktop\Kaspersky Rescue Disk 10.iso
2015-04-13 18:19 - 2015-02-22 16:42 - 00000000 ____D C:\AdwCleaner
2015-04-12 22:21 - 2015-04-12 21:54 - 00000000 ____D C:\Program Files (x86)\Anti-Spy.Info
2015-04-12 22:07 - 2015-04-12 21:54 - 00000000 ____D C:\ProgramData\AntiSpyInfo
2015-04-12 21:54 - 2015-04-12 21:54 - 02553160 ____A C:\Users\tom\Downloads\antispy17.exe
2015-04-12 21:48 - 2015-04-12 21:46 - 00000000 ____D C:\rsit
2015-04-12 19:58 - 2015-03-14 20:49 - 00000000 ____D C:\Users\tom\Desktop\RFID Emulator
2015-04-12 11:32 - 2015-04-12 11:32 - 00000000 ____D C:\NPE
2015-04-11 15:50 - 2015-04-11 15:50 - 00010284 ____A C:\Users\tom\eaglerc.usr
2015-04-11 12:04 - 2015-03-26 19:26 - 00394006 ____A C:\Users\tom\Desktop\zdroj 60v 40a.sch
2015-04-10 08:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat
2015-04-09 08:20 - 2015-04-06 17:12 - 00000000 ___AD C:\Users\tom\Desktop\Programování mikrokontrolérů PIC16Cxx -BEN- Jiří Hrbáček
2015-04-09 07:44 - 2015-04-04 16:50 - 00000000 ____D C:\Users\tom\Documents\Visual Studio 2010
2015-04-09 07:42 - 2015-04-09 07:41 - 340670464 ____A C:\Users\tom\Downloads\eset-sysrescue.1.0.9.0.enu.iso
2015-04-08 20:15 - 2014-12-14 11:58 - 00000000 ___SD C:\Windows\System32\CompatTel
2015-04-08 20:15 - 2014-12-14 11:58 - 00000000 ____D C:\Windows\System32\appraiser
2015-04-08 17:04 - 2015-04-08 17:04 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2015-04-08 17:04 - 2015-01-16 17:09 - 00003850 ____A C:\Windows\System32\.crusader
2015-04-08 17:04 - 2015-01-16 16:49 - 00000000 ____D C:\ProgramData\HitmanPro
2015-04-08 13:18 - 2015-04-08 13:18 - 00000000 ____D C:\ProgramData\Emsisoft
2015-04-08 13:08 - 2015-04-08 13:08 - 166740264 ____A (Emsisoft Ltd. ) C:\Users\tom\Downloads\EmsisoftAntiMalwareSetup_4382129.exe
2015-04-07 20:59 - 2015-04-07 20:59 - 00000000 ____D C:\Users\tom\Desktop\RS232
2015-04-07 20:58 - 2015-04-07 20:56 - 00640736 ____A C:\Users\tom\Desktop\COM Port.rar
2015-04-06 20:54 - 2015-04-06 20:53 - 05046784 ____A C:\Users\tom\Downloads\reverse-schema-web.vsd
2015-04-06 17:29 - 2015-04-06 17:13 - 184364089 ____A C:\Users\tom\Downloads\Moderni-programovani.rar
2015-04-06 17:11 - 2015-04-06 17:08 - 12989461 ____A C:\Users\tom\Downloads\Programování-mikrokontrolérů-PIC16Cxx.zip
2015-04-06 09:48 - 2012-03-22 10:51 - 00000000 ____D C:\Users\tom\Desktop\RFID Reader
2015-04-06 07:44 - 2015-04-06 07:44 - 02208768 ____A C:\Users\tom\Downloads\adwcleaner_4.200.exe
2015-04-06 07:33 - 2015-02-22 18:41 - 00000000 ____D C:\Users\tom\Desktop\Proramátor
2015-04-05 16:23 - 2015-04-04 16:09 - 00002382 ____A C:\Users\tom\gdbtk.ini
2015-04-05 10:37 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Roaming\VisualAssistAtmel
2015-04-05 10:37 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Local\VisualAssistAtmel
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2015-04-05 08:53 - 2015-04-05 08:53 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2015-04-04 17:47 - 2015-04-04 17:47 - 00000000 ____D C:\Program Files (x86)\PonyProg2000
2015-04-04 17:46 - 2015-02-15 12:57 - 00000000 ____D C:\Users\tom\Desktop\SIM clone -Klonování sim
2015-04-04 17:23 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\Documents\Atmel Studio
2015-04-04 17:03 - 2015-04-04 17:03 - 00000000 ____D C:\Users\tom\AppData\Local\IsolatedStorage
2015-04-04 17:02 - 2015-04-04 17:02 - 00002130 ____A C:\Users\Public\Desktop\Atmel Studio 6.2.lnk
2015-04-04 17:01 - 2015-04-04 16:57 - 00000000 ____D C:\Program Files (x86)\Atmel
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Roaming\Atmel
2015-04-04 16:59 - 2015-04-04 16:59 - 00000000 ____D C:\Users\tom\AppData\Local\Atmel
2015-04-04 16:58 - 2014-12-14 10:16 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-04-04 16:57 - 2015-02-03 16:24 - 00000000 ____D C:\ProgramData\Package Cache
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2015-04-04 16:51 - 2015-04-04 16:51 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\SysWOW64\1033
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Windows\PCHEALTH
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2015-04-04 16:50 - 2015-04-04 16:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-04-04 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2015-04-04 16:46 - 2015-04-04 16:44 - 587327768 ____A (Atmel) C:\Users\tom\Downloads\AStudio6_2sp2_1563.exe
2015-04-04 16:07 - 2015-04-04 16:07 - 00000000 ____D C:\WinAVR-20100110
2015-04-04 16:03 - 2015-04-04 16:03 - 28840282 ____A C:\Users\tom\Desktop\WinAVR-20100110-install.exe
2015-04-04 10:43 - 2015-04-03 21:46 - 00000000 ____D C:\Program Files (x86)\c8e441a9-abd4-4721-b704-cb9cbd0d2ddb
2015-04-04 10:43 - 2015-04-03 21:46 - 00000000 ____D C:\Program Files (x86)\c5c1e8b7-9d03-40f6-9ecf-a015924a15c0
2015-04-04 10:43 - 2015-04-03 21:46 - 00000000 ____D C:\Program Files (x86)\5a1f3589-0adb-4951-8a7b-a30922551845
2015-04-04 10:43 - 2015-02-22 15:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-04-04 10:43 - 2015-01-20 19:10 - 00000000 ____D C:\Program Files (x86)\AC3Filter
2015-04-03 21:47 - 2015-04-03 21:47 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\tom\AppData\Local\CrashRpt
2015-04-03 21:46 - 2015-04-03 21:46 - 00000000 ____D C:\Users\Public\Documents\ShopperPro
2015-04-03 21:46 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-04-03 20:52 - 2015-04-03 20:52 - 04210464 ____A C:\Users\tom\Desktop\SIM_editor_Smart.zip
2015-04-01 15:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\System32\NDF
2015-03-31 18:55 - 2015-03-31 18:54 - 11038926 ____A C:\Users\tom\Desktop\The-XX---Intro.flac
2015-03-28 16:20 - 2015-03-28 16:20 - 00000210 ____A C:\Windows\ODBCINST.INI
2015-03-28 13:37 - 2015-03-28 13:37 - 00477278 ____A C:\Users\tom\Downloads\trafo.zip
2015-03-28 13:00 - 2015-03-28 13:00 - 07803328 ____A C:\Users\tom\Desktop\transformátor.exe
2015-03-28 00:12 - 2013-08-22 16:44 - 00473040 ____A C:\Windows\System32\FNTCACHE.DAT
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Users\tom\AppData\Roaming\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\ProgramData\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files\Common Files\Nitro
2015-03-27 17:15 - 2015-03-27 17:15 - 00000000 ____D C:\Program Files (x86)\Nitro
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D C:\Users\tom\AppData\Roaming\Downloaded Installations
2015-03-27 17:05 - 2015-02-22 15:00 - 00000000 ____D C:\ProgramData\Adobe
2015-03-24 16:11 - 2015-02-23 14:28 - 00000000 ____D C:\Users\tom\Desktop\Kyocera
2015-03-23 23:59 - 2015-04-15 13:10 - 07476032 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2015-03-23 23:59 - 2015-04-15 13:10 - 01733952 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2015-03-23 23:59 - 2015-04-15 13:10 - 00360480 ____A (Microsoft Corporation) C:\Windows\System32\sechost.dll
2015-03-23 23:58 - 2015-04-15 13:10 - 01498872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-03-23 23:45 - 2015-04-15 13:10 - 00257216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-03-23 00:45 - 2015-04-08 20:15 - 00227328 ____A (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 01111552 ____A (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00957440 ____A (Microsoft Corporation) C:\Windows\System32\appraiser.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00769024 ____A (Microsoft Corporation) C:\Windows\System32\invagent.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00726528 ____A (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00419328 ____A (Microsoft Corporation) C:\Windows\System32\devinv.dll
2015-03-23 00:09 - 2015-04-08 20:15 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\acmigration.dll

==================== Known DLLs (Whitelisted) ============

C:\Windows\System32\_Wow64cpu.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\_Wow64win.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\_Wow64.dll IS MISSING <==== ATTENTION!.

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2015-03-10 21:32] - [2015-01-28 01:47] - 2501368 ____A (Microsoft Corporation) C10A66189DC8C090E7C84873EDCEBC88

C:\Windows\System32\winlogon.exe
[2014-12-18 19:40] - [2014-10-29 03:22] - 0572416 ____A (Microsoft Corporation) EC498BAE1F0D3E0E401C963F8D76C437

C:\Windows\System32\wininit.exe
[2014-12-18 19:40] - [2014-10-29 03:25] - 0145920 ____A (Microsoft Corporation) A570A64292214C43E0BA50E6A72A6380

C:\Windows\System32\svchost.exe
[2014-12-18 19:40] - [2014-10-29 06:11] - 0038792 ____A (Microsoft Corporation) E3A2AD05E24105B35E986CF9CB38EC47

C:\Windows\System32\services.exe
[2014-12-18 19:40] - [2014-10-29 05:53] - 0411128 ____A (Microsoft Corporation) 5BF02EBEFEDC706318C96E2E60EDCB91

C:\Windows\System32\User32.dll
[2014-12-18 19:41] - [2014-10-29 06:00] - 1540696 ____A (Microsoft Corporation) 25026E350BC3BE37631634EC72B10BD5

C:\Windows\System32\userinit.exe
[2014-12-18 19:40] - [2014-10-29 03:28] - 0026112 ____A (Microsoft Corporation) 5C131534A3EA4A461A793FB507A8004F

C:\Windows\System32\Drivers\volsnap.sys
[2014-12-14 12:05] - [2014-06-19 04:13] - 0310080 ___AC (Microsoft Corporation) 64CA2B4A49A8EAF495E435623ECCE7DB

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2015-04-18 19:43:41

==================== Memory info ===========================

Percentage of memory in use: 19%
Total physical RAM: 3548.98 MB
Available physical RAM: 2855.77 MB
Total Pagefile: 3547.27 MB
Available Pagefile: 2862.05 MB
Total Virtual: 2047.88 MB
Available Virtual: 1931.26 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:65.35 GB) NTFS
Drive d: (Seagate Momentus) (Fixed) (Total:931.51 GB) (Free:71.16 GB) NTFS
Drive e: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive x: (Boot) (Fixed) (Total:0.25 GB) (Free:0.25 GB) NTFS
Drive y: (SARDU) (Removable) (Total:14.44 GB) (Free:13.82 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 3A6584D5)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: 8D59147E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 14 GB) (Disk ID: 9E211ABC)
Partition 1: (Active) - (Size=14 GB) - (Type=0C)

LastRegBack: 2015-04-19 07:31

==================== End Of Log ============================

konu · #30 Příspěvek od **konu** » 21 dub 2015 18:38

No budu. Dík moc za 8 dní vyčerpávající pomoc.

VIRY.CZ

goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe

Re: goffer.exe