avast blazni co minutu

[kyky66]

Zdravím,
žádám o kontrolu logu neboť avast mi hlásí co pár minut tuto chybu(vira)
-9.9.2015 18:00:04 http://kjhaskdjhkuhk2qwskjakjshdkjh123kjs2.in/index.php [L] URL:Mal (0)
proces: C:\\windows\explorer.exe

[kyky66]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Doma at 2015-09-09 17:58:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 873 GB (93%) free of 935 GB
Total RAM: 3948 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:59:06, on 9.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Windows\SysWOW64\regsvr32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp1314.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Doma\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Windows\SysWOW64\regsvr32.exe
C:\Windows\SysWOW64\regsvr32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\trend micro\Doma.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F3 - REG:win.ini: load=C:\ProgramData\msximvs.exe
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [] mshta javascript:JBjj6qxnP="PONJEJb0";G90e=new%20ActiveXObject("WScript.Shell");ifJQjl6="u09p";n7ZiY=G90e.RegRead("HKCU\\software\\8f8bf2c193\\2dcb1891");DOkwL5q="8OZmPWNJ";eval(n7ZiY);hV6FGcqP8="0XMm0E2";
O4 - HKCU\..\Run: [] mshta javascript:bohSSe80Z="FY";TV9=new%20ActiveXObject("WScript.Shell");r0oGeUqL0="pSlN8D2Xfj";jdE1D6=TV9.RegRead("HKCU\\software\\8f8bf2c193\\2dcb1891");FznR38aA="vbWb4";eval(jdE1D6);IPfea8XS="t9kS";
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Doma\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Doma\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [AVDworks] regsvr32.exe C:\Users\Doma\AppData\Local\AVDworks\Stltext90.dll
O4 - HKCU\..\Run: [UZDmedia] C:\Windows\SysWOW64\regsvr32.exe C:\Users\Doma\AppData\Local\Otics\HcwCuda8.dll
O4 - HKCU\..\Run: [Dhfmltco] rundll32 "C:\Users\Doma\AppData\Roaming\devobj8.dll",qlae
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12688 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 32928144
\??\C:\Windows\system32\conhost.exe "468312833-2137640565-1553120144921446955-756205185-686807588867378831770757222
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"C:\Windows\SysWOW64\regsvr32.exe" C:\Users\Doma\AppData\Local\Otics\HcwCuda8.dll
"C:\Windows\System32\rundll32.exe" "C:\Users\Doma\AppData\Roaming\devobj8.dll",qlae
"C:\Windows\System32\rundll32.exe" "C:\Users\Doma\AppData\Roaming\devobj8.dll",qlae
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp1314.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Dolby PCEE4\pcee4.exe" -autostart
szndesktop.exe default start
"C:\Users\Doma\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "1878924772-267242971-1561445527203441895114126601113403460841262798211-1631462923
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
C:\Windows\SysWOW64\RunDll32.exe "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\igfxext.exe -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
regsvr32.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\SysWOW64\regsvr32.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\servicing\TrustedInstaller.exe
taskeng.exe {77401549-1C33-4DAC-B569-199295C3CBAD}
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
rundll32.exe msvcrt.dll,_sleep
taskeng.exe {71439B05-28BC-476A-BDDA-E9B0D9BC8BBA}
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" /autoupdate /silent /autoclose
taskeng.exe {A70D105F-31E0-4BCC-AEB3-BBC12810B6EE}
"C:\Users\Doma\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Acer Registration - Reminder Recall task.job - C:\Program Files (x86)\Acer\Registration\GREG.exe /RR
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-19 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll [2012-11-13 3214392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-19 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07 1152264]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07 1152264]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-06-21 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-06-21 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-06-21 416024]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-05 2589992]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-28 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-08-02 1831016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
""= []
"cz.seznam.software.autoupdate"=C:\Users\Doma\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Doma\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-04-23 8204056]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"AVDworks"=regsvr32.exe C:\Users\Doma\AppData\Local\AVDworks\Stltext90.dll []
"UZDmedia"=C:\Windows\SysWOW64\regsvr32.exe [2009-07-14 14848]
"Dhfmltco"=rundll32 C:\Users\Doma\AppData\Roaming\devobj8.dll,qlae []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-06-22 341360]
"BackupManagerTray"=C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [2011-04-24 297280]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-07-01 1103440]
"Dolby Advanced Audio v2"=C:\Dolby PCEE4\pcee4.exe [2011-02-03 506712]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-26 6111824]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2012-11-13 3825176]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-06-10 389632]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-09 17:58:56 ----D---- C:\rsit
2015-09-09 17:58:56 ----D---- C:\Program Files\trend micro
2015-09-01 18:27:11 ----D---- C:\Program Files (x86)\phenomedia
2015-09-01 18:27:10 ----D---- C:\Program Files (x86)\Einfach_Spielen
2015-09-01 18:22:54 ----D---- C:\Users\Doma\AppData\Roaming\WinRAR
2015-09-01 18:22:35 ----D---- C:\Program Files\WinRAR
2015-08-25 14:13:30 ----A---- C:\Windows\system32\mshtml.dll
2015-08-25 14:13:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-25 07:31:20 ----RASH---- C:\Users\Doma\AppData\Roaming\devobj8.dll
2015-08-23 17:54:03 ----SD---- C:\Windows\SYSWOW64\GWX
2015-08-23 17:54:03 ----SD---- C:\Windows\system32\GWX
2015-08-23 15:20:49 ----SHD---- C:\Config.Msi
2015-08-23 15:13:44 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-08-23 15:13:44 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-08-22 15:55:55 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2015-08-22 15:55:53 ----D---- C:\Program Files (x86)\eSupport.com
2015-08-22 15:51:42 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-22 13:39:15 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2015-08-22 13:39:15 ----A---- C:\Windows\system32\KBDTAT.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDYAK.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDRU1.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDRU.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDBASH.DLL
2015-08-22 13:39:11 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-08-22 13:39:11 ----A---- C:\Windows\system32\d2d1.dll
2015-08-22 13:39:09 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-22 13:39:09 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-22 13:39:09 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-22 13:39:09 ----A---- C:\Windows\system32\iertutil.dll
2015-08-22 13:39:09 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-22 13:39:09 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-22 13:39:08 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-22 13:39:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-22 13:39:08 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-22 13:39:08 ----A---- C:\Windows\system32\iernonce.dll
2015-08-22 13:39:08 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-22 13:39:07 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-22 13:39:06 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-22 13:39:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-22 13:39:06 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-22 13:39:06 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-22 13:39:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-22 13:39:03 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-22 13:39:03 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-22 13:39:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-22 13:39:03 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-22 13:39:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-22 13:39:03 ----A---- C:\Windows\system32\urlmon.dll
2015-08-22 13:39:03 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-22 13:39:03 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-22 13:39:02 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-22 13:39:02 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-22 13:39:02 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-22 13:39:02 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-22 13:39:02 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-22 13:39:02 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-22 13:39:01 ----A---- C:\Windows\system32\iesetup.dll
2015-08-22 13:39:01 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-22 13:39:00 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-22 13:39:00 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-22 13:39:00 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-22 13:39:00 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-22 13:39:00 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-22 13:39:00 ----A---- C:\Windows\system32\vbscript.dll
2015-08-22 13:39:00 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-22 13:39:00 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-22 13:38:59 ----A---- C:\Windows\system32\ieui.dll
2015-08-22 13:38:59 ----A---- C:\Windows\system32\ieframe.dll
2015-08-22 13:38:59 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-22 13:38:58 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-22 13:38:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-22 13:38:58 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-22 13:38:58 ----A---- C:\Windows\system32\jscript9.dll
2015-08-22 13:38:58 ----A---- C:\Windows\system32\jscript.dll
2015-08-22 13:38:57 ----A---- C:\Windows\system32\wininet.dll
2015-08-22 13:38:56 ----A---- C:\Windows\system32\msrating.dll
2015-08-22 13:38:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-22 13:28:12 ----A---- C:\Windows\system32\spoolsv.exe
2015-08-22 13:28:12 ----A---- C:\Windows\splwow64.exe
2015-08-22 13:22:17 ----D---- C:\Windows\SYSWOW64\Wat
2015-08-22 13:22:17 ----D---- C:\Windows\system32\Wat
2015-08-22 12:54:35 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:54:35 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:38:24 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2015-08-22 12:38:24 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2015-08-22 12:38:23 ----A---- C:\Windows\system32\WUDFSvc.dll
2015-08-22 12:38:23 ----A---- C:\Windows\system32\WUDFPlatform.dll
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFx.dll
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFHost.exe
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2015-08-22 12:13:27 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2015-08-22 12:13:27 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2015-08-22 12:13:27 ----A---- C:\Windows\system32\infocardapi.dll
2015-08-22 12:13:27 ----A---- C:\Windows\system32\icardagt.exe
2015-08-22 12:13:25 ----A---- C:\Windows\SYSWOW64\icardres.dll
2015-08-22 12:13:25 ----A---- C:\Windows\system32\icardres.dll
2015-08-22 12:12:57 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2015-08-22 12:12:57 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-08-22 11:33:21 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-22 11:33:21 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\FntCache.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\DWrite.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\d3d10warp.dll
2015-08-22 11:33:11 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-08-22 11:33:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-08-22 11:32:52 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-08-22 11:32:52 ----A---- C:\Windows\system32\WMPhoto.dll
2015-08-22 11:24:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-22 11:24:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-21 19:02:41 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-21 17:32:29 ----D---- C:\Windows\Migration
2015-08-21 17:32:28 ----SD---- C:\Windows\system32\CompatTel
2015-08-21 17:32:28 ----D---- C:\Windows\system32\appraiser
2015-08-21 17:04:42 ----A---- C:\Windows\system32\IEUDINIT.EXE
2015-08-21 16:57:44 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2015-08-21 16:57:41 ----A---- C:\Windows\system32\elshyph.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\url.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\icardie.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msls31.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\mshtmler.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msfeedssync.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\jsIntl.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\iesysprep.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-08-21 16:57:35 ----A---- C:\Windows\system32\url.dll
2015-08-21 16:57:35 ----A---- C:\Windows\system32\ieapfltr.dat
2015-08-21 16:57:35 ----A---- C:\Windows\system32\icardie.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\wextract.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\webcheck.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\pngfilt.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\occache.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\mshta.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\licmgr10.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\inseng.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\imgutil.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\iexpress.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\iepeers.dll
2015-08-21 16:55:07 ----A---- C:\Windows\system32\taskhost.exe
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\XpsPrint.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\UIAnimation.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\dxgi.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10level9.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10_1.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10.dll
2015-08-21 15:44:36 ----D---- C:\Program Files\CCleaner
2015-08-21 15:25:45 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\wdi.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\powertracker.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\perftrack.dll
2015-08-21 15:22:04 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-08-21 15:22:04 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-08-21 15:21:40 ----A---- C:\Windows\system32\dpapiprovider.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\dimsroam.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\cngprovider.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\capiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\objsel.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\wincredprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\objsel.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\adprovider.dll
2015-08-21 15:20:28 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-21 15:20:28 ----A---- C:\Windows\system32\aitstatic.exe
2015-08-21 15:20:27 ----A---- C:\Windows\system32\invagent.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\generaltel.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\devinv.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\appraiser.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\aepic.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\aeinv.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\acmigration.dll
2015-08-21 15:20:25 ----A---- C:\Windows\system32\aepdu.dll
2015-08-21 15:20:23 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-08-21 15:20:23 ----A---- C:\Windows\system32\cewmdm.dll
2015-08-21 15:20:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-08-21 15:20:15 ----A---- C:\Windows\system32\certcli.dll
2015-08-21 15:19:37 ----A---- C:\Windows\system32\services.exe
2015-08-21 15:19:35 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-08-21 15:19:33 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2015-08-21 15:19:33 ----A---- C:\Windows\system32\xmllite.dll
2015-08-21 15:19:16 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2015-08-21 15:19:16 ----A---- C:\Windows\system32\msieftp.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbctrac.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccu32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccr32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccp32.dll
2015-08-21 15:19:06 ----A---- C:\Windows\system32\wwansvc.dll
2015-08-21 15:19:05 ----A---- C:\Windows\system32\wwanprotdim.dll
2015-08-21 15:19:04 ----A---- C:\Windows\system32\wmp.dll
2015-08-21 15:19:03 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-08-21 15:19:01 ----A---- C:\Windows\system32\wmploc.DLL
2015-08-21 15:19:01 ----A---- C:\Windows\system32\spwmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\system32\dxmasf.dll
2015-08-21 15:18:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2015-08-21 15:18:40 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-21 15:18:39 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-21 15:18:39 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-21 15:18:39 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-21 15:18:39 ----A---- C:\Windows\system32\ntdll.dll
2015-08-21 15:18:39 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-21 15:18:38 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-21 15:18:38 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-21 15:18:38 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-21 15:18:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-21 15:18:38 ----A---- C:\Windows\system32\schannel.dll
2015-08-21 15:18:38 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-21 15:18:38 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-21 15:18:38 ----A---- C:\Windows\system32\kernel32.dll
2015-08-21 15:18:38 ----A---- C:\Windows\system32\kerberos.dll
2015-08-21 15:18:38 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-21 15:18:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-21 15:18:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-21 15:18:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-21 15:18:37 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\wow64win.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\wow64.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\winsrv.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\wdigest.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\sysmain.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\sspicli.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\srcore.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\srclient.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\smss.exe
2015-08-21 15:18:37 ----A---- C:\Windows\system32\secur32.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\rstrui.exe
2015-08-21 15:18:37 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\msaudite.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\lsass.exe
2015-08-21 15:18:37 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-21 15:18:37 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-21 15:18:37 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-21 15:18:37 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-21 15:18:37 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\credssp.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\conhost.exe
2015-08-21 15:18:37 ----A---- C:\Windows\system32\auditpol.exe
2015-08-21 15:18:37 ----A---- C:\Windows\system32\adtschema.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-21 15:18:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-21 15:18:36 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-21 15:18:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-21 15:18:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-21 15:18:36 ----A---- C:\Windows\system32\msobjs.dll
2015-08-21 15:18:36 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\mstscax.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\aaclient.dll
2015-08-21 15:17:46 ----A---- C:\Windows\system32\UtcResources.dll
2015-08-21 15:17:45 ----A---- C:\Windows\system32\diagtrack.dll
2015-08-21 15:17:43 ----A---- C:\Windows\system32\tdh.dll
2015-08-21 15:17:43 ----A---- C:\Windows\system32\advapi32.dll
2015-08-21 15:17:42 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-08-21 15:17:40 ----A---- C:\Windows\system32\tracerpt.exe
2015-08-21 15:17:40 ----A---- C:\Windows\system32\sechost.dll
2015-08-21 15:17:40 ----A---- C:\Windows\system32\logman.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\typeperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\relog.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\diskperf.exe
2015-08-21 15:17:04 ----A---- C:\Windows\system32\ntshrui.dll
2015-08-21 15:17:03 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2015-08-21 15:16:25 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-08-21 15:16:25 ----A---- C:\Windows\system32\usp10.dll
2015-08-21 15:16:23 ----A---- C:\Windows\SYSWOW64\webio.dll
2015-08-21 15:16:23 ----A---- C:\Windows\system32\webio.dll
2015-08-21 15:16:22 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-08-21 15:16:21 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-08-21 15:15:59 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-08-21 15:15:59 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-08-21 15:15:59 ----A---- C:\Windows\system32\drmv2clt.dll
2015-08-21 15:15:59 ----A---- C:\Windows\system32\blackbox.dll
2015-08-21 15:15:55 ----A---- C:\Windows\system32\mf.dll
2015-08-21 15:15:54 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-08-21 15:15:54 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-08-21 15:15:53 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-08-21 15:15:53 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-08-21 15:15:51 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-08-21 15:15:50 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-08-21 15:15:50 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-08-21 15:15:50 ----A---- C:\Windows\system32\ci.dll
2015-08-21 15:15:49 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-08-21 15:15:49 ----A---- C:\Windows\system32\winresume.exe
2015-08-21 15:15:49 ----A---- C:\Windows\system32\winload.exe
2015-08-21 15:15:49 ----A---- C:\Windows\system32\quartz.dll
2015-08-21 15:15:49 ----A---- C:\Windows\system32\audiosrv.dll
2015-08-21 15:15:48 ----A---- C:\Windows\system32\evr.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\qdvd.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\mfplat.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\cryptui.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\AudioEng.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\pcasvc.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\msscp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\EncDump.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\cryptsp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\AudioSes.dll
2015-08-21 15:15:45 ----A---- C:\Windows\system32\msnetobj.dll
2015-08-21 15:15:45 ----A---- C:\Windows\system32\appidsvc.dll
2015-08-21 15:15:45 ----A---- C:\Windows\system32\appidapi.dll
2015-08-21 15:15:44 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\rrinstaller.exe
2015-08-21 15:15:43 ----A---- C:\Windows\system32\pcadm.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\mfps.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\mfpmp.exe
2015-08-21 15:15:43 ----A---- C:\Windows\system32\drivers\appid.sys
2015-08-21 15:15:43 ----A---- C:\Windows\system32\audiodg.exe
2015-08-21 15:15:43 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-08-21 15:15:42 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-08-21 15:15:42 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-08-21 15:15:42 ----A---- C:\Windows\system32\pcawrk.exe
2015-08-21 15:15:42 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-08-21 15:15:41 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-08-21 15:15:41 ----A---- C:\Windows\system32\pcalua.exe
2015-08-21 15:15:41 ----A---- C:\Windows\system32\pcaevts.dll
2015-08-21 15:15:41 ----A---- C:\Windows\system32\mferror.dll
2015-08-21 15:14:23 ----A---- C:\Windows\system32\profsvc.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\mscories.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\mscorier.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\dfshim.dll
2015-08-21 15:12:56 ----A---- C:\Windows\system32\wer.dll
2015-08-21 15:12:55 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-08-21 15:12:49 ----A---- C:\Windows\SYSWOW64\wmi.dll
2015-08-21 15:12:49 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\wmi.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\imagehlp.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-08-21 15:12:32 ----A---- C:\Windows\system32\InkEd.dll
2015-08-21 15:12:31 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-08-21 15:12:29 ----A---- C:\Windows\system32\jnwmon.dll
2015-08-21 15:11:25 ----A---- C:\Windows\system32\termsrv.dll
2015-08-21 15:10:42 ----A---- C:\Windows\system32\basesrv.dll
2015-08-21 15:09:50 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-08-21 15:09:50 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-08-21 15:09:50 ----A---- C:\Windows\system32\nlasvc.dll
2015-08-21 15:09:46 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-08-21 15:09:46 ----A---- C:\Windows\system32\drivers\drmk.sys
2015-08-21 15:09:44 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-08-21 15:09:44 ----A---- C:\Windows\system32\ubpm.dll
2015-08-21 15:09:42 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-08-21 15:09:42 ----A---- C:\Windows\system32\wpdshext.dll
2015-08-21 15:09:38 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2015-08-21 15:09:38 ----A---- C:\Windows\SYSWOW64\credui.dll
2015-08-21 15:09:38 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-08-21 15:09:38 ----A---- C:\Windows\system32\credui.dll
2015-08-21 15:09:28 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\system32\davclnt.dll
2015-08-21 15:09:26 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-21 15:09:26 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-21 15:09:26 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-21 15:09:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-21 15:09:26 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-21 15:09:26 ----A---- C:\Windows\system32\msxml6.dll
2015-08-21 15:09:26 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-21 15:09:26 ----A---- C:\Windows\system32\msxml3.dll
2015-08-21 15:09:24 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-08-21 15:09:24 ----A---- C:\Windows\system32\gdi32.dll
2015-08-21 15:09:23 ----A---- C:\Windows\system32\drivers\usbehci.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbport.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbd.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2015-08-21 15:09:20 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-08-21 15:09:20 ----A---- C:\Windows\system32\d3d11.dll
2015-08-21 15:09:17 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-08-21 15:09:17 ----A---- C:\Windows\system32\qedit.dll
2015-08-21 15:09:16 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-08-21 15:09:16 ----A---- C:\Windows\system32\comctl32.dll
2015-08-21 15:09:12 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-08-21 15:09:07 ----A---- C:\Windows\system32\Wdfres.dll
2015-08-21 15:09:07 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2015-08-21 15:09:07 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-08-21 15:09:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-08-21 15:09:02 ----A---- C:\Windows\system32\crypt32.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\wintrust.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\cryptsvc.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\cryptnet.dll
2015-08-21 15:08:19 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2015-08-21 15:08:19 ----A---- C:\Windows\system32\drivers\usbcir.sys
2015-08-21 15:07:34 ----A---- C:\Windows\system32\OxpsConverter.exe
2015-08-21 15:07:28 ----A---- C:\Windows\system32\drivers\ataport.sys
2015-08-21 15:07:26 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\netio.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-08-21 15:06:56 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-08-21 15:06:56 ----A---- C:\Windows\system32\osk.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_ssp.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\msdrm.dll
2015-08-21 15:06:36 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2015-08-21 15:06:36 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-08-21 15:06:33 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-08-21 15:06:33 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-08-21 15:06:32 ----A---- C:\Windows\system32\drivers\afd.sys
2015-08-21 15:06:30 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-08-21 15:06:30 ----A---- C:\Windows\system32\ole32.dll
2015-08-21 15:06:22 ----A---- C:\Windows\system32\drivers\cng.sys
2015-08-21 15:05:44 ----A---- C:\Windows\system32\ncsi.dll
2015-08-21 15:05:43 ----A---- C:\Windows\SYSWOW64\netevent.dll
2015-08-21 15:05:43 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\nlaapi.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\netevent.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\netcorehc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2015-08-21 15:04:51 ----A---- C:\Windows\system32\win32k.sys
2015-08-21 15:04:49 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-08-21 15:04:49 ----A---- C:\Windows\system32\atmfd.dll
2015-08-21 15:04:47 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-08-21 15:04:47 ----A---- C:\Windows\system32\lpk.dll
2015-08-21 15:04:47 ----A---- C:\Windows\system32\atmlib.dll
2015-08-21 15:04:46 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-08-21 15:04:46 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-08-21 15:04:46 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-08-21 15:04:46 ----A---- C:\Windows\system32\fontsub.dll
2015-08-21 15:04:46 ----A---- C:\Windows\system32\dciman32.dll
2015-08-21 15:04:43 ----A---- C:\Windows\system32\drivers\hidparse.sys
2015-08-21 15:04:43 ----A---- C:\Windows\system32\drivers\hidclass.sys
2015-08-21 15:04:26 ----A---- C:\Windows\system32\Wpc.dll
2015-08-21 15:04:25 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2015-08-21 15:04:25 ----A---- C:\Windows\SYSWOW64\gameux.dll
2015-08-21 15:04:25 ----A---- C:\Windows\system32\gameux.dll
2015-08-21 15:04:04 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-08-21 15:04:01 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-08-21 15:04:01 ----A---- C:\Windows\system32\dpnet.dll
2015-08-21 15:03:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-08-21 15:03:57 ----A---- C:\Windows\system32\msi.dll
2015-08-21 15:03:56 ----SH---- C:\ProgramData\msximvs.exe
2015-08-21 15:03:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-08-21 15:03:56 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-08-21 15:03:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-08-21 15:03:56 ----A---- C:\Windows\system32\msihnd.dll
2015-08-21 15:03:56 ----A---- C:\Windows\system32\msiexec.exe
2015-08-21 15:03:56 ----A---- C:\Windows\system32\consent.exe
2015-08-21 15:03:56 ----A---- C:\Windows\system32\authui.dll
2015-08-21 15:03:56 ----A---- C:\Windows\system32\appinfo.dll
2015-08-21 15:03:55 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-08-21 15:03:55 ----A---- C:\Windows\system32\msimsg.dll
2015-08-21 06:54:48 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-08-21 06:54:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-08-21 06:54:48 ----A---- C:\Windows\system32\cdd.dll
2015-08-21 06:54:45 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-08-21 06:54:45 ----A---- C:\Windows\system32\mswsock.dll
2015-08-21 06:44:29 ----A---- C:\Windows\system32\rdrmemptylst.exe
2015-08-21 06:44:29 ----A---- C:\Windows\system32\rdpwsx.dll
2015-08-21 06:43:47 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2015-08-21 06:43:47 ----A---- C:\Windows\system32\psisdecd.dll
2015-08-21 06:42:53 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-08-21 06:42:53 ----A---- C:\Windows\system32\oleaut32.dll
2015-08-21 06:42:33 ----A---- C:\Windows\system32\drivers\partmgr.sys
2015-08-21 06:42:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-08-21 06:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-08-21 06:42:19 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-08-21 06:42:19 ----A---- C:\Windows\system32\pku2u.dll
2015-08-21 06:41:18 ----A---- C:\Windows\system32\drivers\stream.sys
2015-08-21 06:41:17 ----A---- C:\Windows\system32\drivers\http.sys
2015-08-21 06:41:16 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-08-21 06:41:12 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2015-08-21 06:41:12 ----A---- C:\Windows\system32\iologmsg.dll
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\storport.sys
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2015-08-21 06:40:58 ----A---- C:\Windows\SYSWOW64\synceng.dll
2015-08-21 06:40:58 ----A---- C:\Windows\system32\synceng.dll
2015-08-21 06:40:57 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-08-21 06:40:57 ----A---- C:\Windows\system32\charmap.exe
2015-08-21 06:40:43 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2015-08-21 06:40:43 ----A---- C:\Windows\system32\shdocvw.dll
2015-08-21 06:40:29 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-08-21 06:40:29 ----A---- C:\Windows\system32\msctf.dll
2015-08-21 06:40:27 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-08-21 06:40:27 ----A---- C:\Windows\system32\rastls.dll
2015-08-21 06:40:25 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2015-08-21 06:40:25 ----A---- C:\Windows\system32\win32spl.dll
2015-08-21 06:40:24 ----A---- C:\Windows\system32\WsmSvc.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WsmAuto.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-08-21 06:40:05 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2015-08-21 06:40:05 ----A---- C:\Windows\system32\cryptdlg.dll
2015-08-21 06:39:32 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-08-21 06:39:32 ----A---- C:\Windows\system32\tzres.dll
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\shimeng.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\sdbinst.exe
2015-08-21 06:39:05 ----A---- C:\Windows\system32\apphelp.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\aelupsvc.dll
2015-08-21 06:38:40 ----A---- C:\Windows\system32\winlogon.exe
2015-08-21 06:38:39 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-08-21 06:38:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-08-21 06:38:39 ----A---- C:\Windows\system32\winsta.dll
2015-08-21 06:38:39 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-08-21 06:38:39 ----A---- C:\Windows\system32\mstsc.exe
2015-08-21 06:38:39 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-08-21 06:38:38 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-08-21 06:38:12 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-08-21 06:38:12 ----A---- C:\Windows\system32\packager.dll
2015-08-21 06:38:10 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2015-08-21 06:38:10 ----A---- C:\Windows\SYSWOW64\browcli.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\netapi32.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\browser.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\browcli.dll
2015-08-21 06:37:25 ----A---- C:\Windows\system32\drivers\fvevol.sys
2015-08-21 06:37:24 ----A---- C:\Windows\system32\msvcrt.dll
2015-08-21 06:37:23 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2015-08-21 06:37:19 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-08-21 06:37:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-08-21 06:37:18 ----A---- C:\Windows\system32\scesrv.dll
2015-08-21 06:37:15 ----A---- C:\Windows\system32\certutil.exe
2015-08-21 06:37:14 ----A---- C:\Windows\SYSWOW64\certutil.exe
2015-08-21 06:37:14 ----A---- C:\Windows\SYSWOW64\certenc.dll
2015-08-21 06:37:14 ----A---- C:\Windows\system32\certenc.dll
2015-08-21 06:37:04 ----A---- C:\Windows\SYSWOW64\wscript.exe
2015-08-21 06:37:04 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2015-08-21 06:37:04 ----A---- C:\Windows\system32\wscript.exe
2015-08-21 06:37:04 ----A---- C:\Windows\system32\scrrun.dll
2015-08-21 06:37:04 ----A---- C:\Windows\system32\cscript.exe
2015-08-21 06:37:03 ----A---- C:\Windows\SYSWOW64\cscript.exe
2015-08-21 06:36:21 ----A---- C:\Windows\system32\shell32.dll
2015-08-21 06:36:19 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-08-21 06:36:15 ----A---- C:\Windows\system32\localspl.dll
2015-08-21 06:36:10 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2015-08-21 06:36:10 ----A---- C:\Windows\system32\oleacc.dll
2015-08-21 06:36:02 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2015-08-21 06:36:02 ----A---- C:\Windows\system32\EncDec.dll
2015-08-21 06:36:00 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-08-21 06:36:00 ----A---- C:\Windows\system32\clfsw32.dll
2015-08-21 06:36:00 ----A---- C:\Windows\system32\clfs.sys
2015-08-21 06:33:33 ----A---- C:\Windows\SYSWOW64\cdosys.dll

[kyky66]

2015-08-21 06:33:33 ----A---- C:\Windows\system32\cdosys.dll
2015-08-21 06:28:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-21 06:28:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-21 06:28:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-21 06:28:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-21 06:28:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-21 06:28:26 ----A---- C:\Windows\system32\wucltux.dll
2015-08-21 06:28:26 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-21 06:28:26 ----A---- C:\Windows\system32\wuapp.exe
2015-08-21 06:28:26 ----A---- C:\Windows\system32\wuapi.dll
2015-08-21 06:28:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-21 06:28:25 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-21 06:28:25 ----A---- C:\Windows\system32\wups2.dll
2015-08-21 06:28:25 ----A---- C:\Windows\system32\wups.dll
2015-08-21 06:28:25 ----A---- C:\Windows\system32\wudriver.dll
2015-08-21 06:28:25 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-21 06:28:25 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-21 06:26:31 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-08-21 06:26:31 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-08-21 06:26:30 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2015-08-21 06:26:30 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2015-08-21 06:26:30 ----A---- C:\Windows\system32\nshwfp.dll
2015-08-21 06:26:14 ----A---- C:\Windows\system32\scavengeui.dll
2015-08-20 21:41:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-20 21:40:58 ----D---- C:\Windows\system32\Macromed
2015-08-20 21:25:52 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-08-20 21:25:40 ----A---- C:\Windows\system32\sdnclean64.exe
2015-08-20 21:25:33 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-08-20 21:25:24 ----D---- C:\Users\Doma\AppData\Roaming\Opera
2015-08-20 21:14:34 ----D---- C:\AdwCleaner
2015-08-20 21:08:02 ----D---- C:\Windows\SYSWOW64\VLX Player
2015-08-20 21:07:47 ----D---- C:\Program Files (x86)\Seznam.cz
2015-08-20 20:07:15 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2015-08-20 20:07:15 ----A---- C:\Windows\system32\rdpcore.dll
2015-08-20 20:07:14 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2015-08-20 19:27:32 ----D---- C:\Users\Doma\AppData\Roaming\vlc
2015-08-20 19:26:51 ----D---- C:\Program Files (x86)\VideoLAN
2015-08-20 19:06:41 ----A---- C:\autoexec.bat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfi005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfh005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfd005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfc005.dat
2015-08-20 02:56:33 ----D---- C:\Windows\SYSWOW64\cs
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\XPSViewer
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2015-08-20 02:56:31 ----D---- C:\Windows\system32\cs
2015-08-20 02:56:31 ----D---- C:\Windows\cs-CZ
2015-08-20 02:56:30 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-20 02:50:19 ----D---- C:\Windows\NAPP_Dism_Log
2015-08-19 19:02:43 ----D---- C:\Users\Doma\AppData\Roaming\Seznam.cz
2015-08-19 19:00:38 ----D---- C:\Users\Doma\AppData\Roaming\uTorrent
2015-08-19 18:37:34 ----D---- C:\Users\Doma\AppData\Roaming\Opera Software
2015-08-19 18:36:52 ----D---- C:\Program Files (x86)\Opera
2015-08-19 18:35:42 ----D---- C:\KMPlayer
2015-08-19 18:19:02 ----D---- C:\Users\Doma\AppData\Roaming\AVAST Software
2015-08-19 18:18:39 ----D---- C:\Windows\SYSWOW64\vbox
2015-08-19 18:18:39 ----D---- C:\Windows\system32\vbox
2015-08-19 18:18:11 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-08-19 18:18:10 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-08-19 18:18:10 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-08-19 18:18:09 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-08-19 18:18:08 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\ngvss.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-08-19 18:18:05 ----A---- C:\Windows\system32\aswBoot.exe
2015-08-19 18:17:58 ----A---- C:\Windows\avastSS.scr
2015-08-19 18:15:48 ----D---- C:\Program Files\AVAST Software
2015-08-19 18:15:13 ----D---- C:\ProgramData\AVAST Software
2015-08-19 18:11:07 ----D---- C:\Users\Doma\AppData\Roaming\Mozilla
2015-08-19 18:08:33 ----D---- C:\Users\Doma\AppData\Roaming\Adobe
2015-08-19 18:00:08 ----D---- C:\Users\Doma\AppData\Roaming\Macromedia
2015-08-19 17:59:44 ----D---- C:\Users\Doma\AppData\Roaming\Identities
2015-08-19 17:58:01 ----D---- C:\Users\Doma\AppData\Roaming\CyberLink
2015-08-19 17:57:33 ----SD---- C:\Users\Doma\AppData\Roaming\Microsoft
2015-08-19 17:57:33 ----D---- C:\Users\Doma\AppData\Roaming\Media Center Programs
2015-08-19 17:57:15 ----SHD---- C:\Recovery
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Šablony
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Plocha
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Oblíbené položky
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Dokumenty
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Data aplikací
2015-08-19 17:30:03 ----D---- C:\ProgramData\CLSK
2015-08-19 17:28:52 ----D---- C:\ProgramData\Temp
2015-08-19 17:28:52 ----D---- C:\ProgramData\CyberLink
2015-08-19 17:25:59 ----D---- C:\ProgramData\NTI Launcher
2015-08-19 17:24:37 ----D---- C:\ProgramData\FLEXnet
2015-08-19 17:24:00 ----D---- C:\Program Files (x86)\Microsoft Office
2015-08-19 17:22:38 ----D---- C:\Program Files (x86)\Microsoft
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\btwcoins.dll
2015-08-19 17:17:43 ----D---- C:\Program Files\WIDCOMM
2015-08-19 17:15:03 ----D---- C:\Dolby PCEE4
2015-08-19 17:14:55 ----D---- C:\Windows\SYSWOW64\RTCOM
2015-08-19 17:14:46 ----D---- C:\Program Files\Realtek
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtPCEE4.DAT
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtPCEE3.DAT
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\rtkhdaud.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtHdatEx.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTHDAEQ1.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX3.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX2.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX1.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX0.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTConvEQ.dat
2015-08-19 17:14:45 ----A---- C:\Windows\system32\WavesGUILib.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSWOW64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSTSX64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSTSH64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSHP64.dll
2015-08-19 17:14:44 ----N---- C:\Windows\SYSWOW64\SFCOM.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFNHK64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFCOM64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFAPO64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkCfg64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkAPO64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkApi64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEP64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEL64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEG64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEED64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTCOM64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RP3DHT64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RP3DAA64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RCoRes64.dat
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RCoInst64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EED64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2015-08-19 17:14:41 ----HD---- C:\Program Files (x86)\Temp
2015-08-19 17:14:41 ----D---- C:\Program Files (x86)\Realtek
2015-08-19 17:14:41 ----A---- C:\Windows\system32\FMAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\AERTAR64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\AERTAC64.dll
2015-08-19 17:14:40 ----A---- C:\Windows\RtlExUpd.dll
2015-08-19 17:13:14 ----D---- C:\Program Files\Elantech
2015-08-19 17:10:27 ----D---- C:\Program Files\Intel
2015-08-19 17:09:05 ----D---- C:\Program Files (x86)\Launch Manager
2015-08-19 17:07:12 ----AD---- C:\book
2015-08-19 17:07:09 ----D---- C:\ProgramData\EgisTec
2015-08-19 17:07:05 ----D---- C:\ProgramData\Intel
2015-08-19 17:04:14 ----D---- C:\Windows\SoftwareDistribution
2015-08-19 17:03:54 ----D---- C:\Program Files\Common Files\Intel
2015-08-19 17:01:12 ----ASH---- C:\hiberfil.sys
2015-08-19 17:01:11 ----SHD---- C:\System Volume Information
2015-08-19 17:01:11 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 month======

2015-09-09 17:59:06 ----D---- C:\Windows\Prefetch
2015-09-09 17:58:59 ----D---- C:\Windows\Temp
2015-09-09 17:58:56 ----RD---- C:\Program Files
2015-09-09 17:30:29 ----D---- C:\Windows\Tasks
2015-09-09 17:26:28 ----D---- C:\Windows\winsxs
2015-09-09 17:26:18 ----D---- C:\Windows\system32\catroot2
2015-09-09 17:13:29 ----D---- C:\Windows\inf
2015-09-09 17:13:28 ----D---- C:\Windows
2015-09-09 17:08:38 ----D---- C:\Windows\system32\config
2015-09-09 17:07:17 ----A---- C:\Windows\SYSWOW64\log.txt
2015-09-09 17:05:52 ----HD---- C:\ProgramData
2015-09-07 17:07:49 ----SHD---- C:\Windows\Installer
2015-09-07 17:05:33 ----D---- C:\Windows\SysWOW64
2015-09-07 14:54:58 ----SD---- C:\ProgramData\Microsoft
2015-09-07 14:54:58 ----D---- C:\Windows\system32\drivers
2015-09-07 14:54:54 ----D---- C:\Windows\system32\drivers\UMDF
2015-09-07 14:54:54 ----D---- C:\Windows\System32
2015-09-01 18:27:11 ----RD---- C:\Program Files (x86)
2015-08-30 11:30:17 ----HD---- C:\$Windows.~BT
2015-08-30 11:14:04 ----D---- C:\Windows\Panther
2015-08-30 10:23:00 ----D---- C:\Windows\Logs
2015-08-24 08:01:38 ----D---- C:\Windows\rescache
2015-08-23 18:53:58 ----D---- C:\Windows\Microsoft.NET
2015-08-23 18:53:57 ----RSD---- C:\Windows\assembly
2015-08-23 18:02:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-23 17:59:29 ----D---- C:\ProgramData\Adobe
2015-08-23 17:54:02 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-23 17:54:02 ----D---- C:\Program Files\Internet Explorer
2015-08-23 17:53:57 ----D---- C:\Windows\system32\en-US
2015-08-23 17:53:55 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-23 17:53:46 ----RSD---- C:\Windows\Fonts
2015-08-23 17:53:44 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-23 17:53:40 ----D---- C:\Windows\system32\cs-CZ
2015-08-23 17:53:38 ----D---- C:\Windows\AppPatch
2015-08-23 13:06:17 ----D---- C:\Windows\AppCompat
2015-08-22 21:51:23 ----D---- C:\Windows\system32\LogFiles
2015-08-22 15:55:55 ----D---- C:\Windows\SYSWOW64\drivers
2015-08-22 15:55:05 ----D---- C:\Windows\system32\Tasks
2015-08-22 13:21:46 ----D---- C:\Windows\PolicyDefinitions
2015-08-22 13:21:40 ----D---- C:\Windows\system32\DriverStore
2015-08-21 17:32:28 ----D---- C:\Windows\system32\wbem
2015-08-21 17:32:27 ----D---- C:\Windows\ehome
2015-08-21 17:32:25 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-21 17:32:24 ----D---- C:\Program Files\Windows Media Player
2015-08-21 17:32:24 ----D---- C:\Program Files\Common Files\System
2015-08-21 17:32:19 ----D---- C:\Windows\SYSWOW64\migration
2015-08-21 17:32:15 ----D---- C:\Windows\system32\migration
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\zh-HK
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\tr-TR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\sv-SE
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pt-PT
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pt-BR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\ko-KR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\it-IT
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\fi-FI
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\el-GR
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\zh-TW
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\zh-CN
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\ru-RU
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\nb-NO
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\ja-JP
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\es-ES
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\de-DE
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\da-DK
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pt-PT
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pt-BR
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pl-PL
2015-08-21 17:32:04 ----D---- C:\Windows\system32\ko-KR
2015-08-21 17:32:04 ----D---- C:\Windows\system32\it-IT
2015-08-21 17:32:03 ----D---- C:\Windows\system32\zh-HK
2015-08-21 17:32:03 ----D---- C:\Windows\system32\tr-TR
2015-08-21 17:32:03 ----D---- C:\Windows\system32\nl-NL
2015-08-21 17:32:03 ----D---- C:\Windows\system32\hu-HU
2015-08-21 17:32:03 ----D---- C:\Windows\system32\fr-FR
2015-08-21 17:32:03 ----D---- C:\Windows\system32\fi-FI
2015-08-21 17:32:03 ----D---- C:\Windows\system32\el-GR
2015-08-21 17:32:02 ----D---- C:\Windows\system32\zh-TW
2015-08-21 17:32:02 ----D---- C:\Windows\system32\zh-CN
2015-08-21 17:32:02 ----D---- C:\Windows\system32\sv-SE
2015-08-21 17:32:02 ----D---- C:\Windows\system32\ja-JP
2015-08-21 17:32:02 ----D---- C:\Windows\system32\es-ES
2015-08-21 17:32:02 ----D---- C:\Windows\system32\de-DE
2015-08-21 17:32:01 ----D---- C:\Windows\system32\ru-RU
2015-08-21 17:32:01 ----D---- C:\Windows\system32\nb-NO
2015-08-21 17:32:01 ----D---- C:\Windows\system32\da-DK
2015-08-21 17:31:39 ----D---- C:\Windows\SYSWOW64\Dism
2015-08-21 17:31:35 ----D---- C:\Windows\system32\Dism
2015-08-21 17:31:29 ----D---- C:\Windows\system32\CodeIntegrity
2015-08-21 17:31:29 ----D---- C:\Windows\system32\Boot
2015-08-21 17:31:16 ----D---- C:\Program Files\Windows Journal
2015-08-21 17:31:12 ----D---- C:\Windows\system32\AdvancedInstallers
2015-08-21 17:30:56 ----D---- C:\Windows\tracing
2015-08-21 17:30:56 ----D---- C:\Program Files\Windows Defender
2015-08-21 17:30:56 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-21 17:03:43 ----D---- C:\Windows\system32\catroot
2015-08-20 21:15:45 ----D---- C:\Program Files (x86)\Common Files
2015-08-20 19:36:00 ----D---- C:\Windows\system32\wdi
2015-08-20 18:42:41 ----D---- C:\Windows\debug
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\winrm
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\WCN
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\slmgr
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\en
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\DriverStore
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2015-08-20 02:59:09 ----D---- C:\Windows\servicing
2015-08-20 02:59:08 ----D---- C:\Windows\system32\winrm
2015-08-20 02:59:08 ----D---- C:\Windows\system32\WCN
2015-08-20 02:59:08 ----D---- C:\Windows\system32\slmgr
2015-08-20 02:59:08 ----D---- C:\Windows\system32\en
2015-08-20 02:59:08 ----D---- C:\Windows\system32\drivers\en-US
2015-08-20 02:59:08 ----D---- C:\Windows\Speech
2015-08-20 02:59:08 ----D---- C:\Windows\en-US
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Sidebar
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Mail
2015-08-20 02:56:34 ----D---- C:\Program Files\DVD Maker
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Sidebar
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-20 02:56:33 ----D---- C:\Windows\SYSWOW64\migwiz
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\wbem
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\MUI
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\com
2015-08-20 02:56:31 ----D---- C:\Windows\system32\oobe
2015-08-20 02:56:31 ----D---- C:\Windows\system32\migwiz
2015-08-20 02:56:31 ----D---- C:\Windows\IME
2015-08-20 02:56:30 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2015-08-20 02:56:30 ----D---- C:\Windows\system32\MUI
2015-08-20 02:56:30 ----D---- C:\Windows\system32\com
2015-08-19 19:16:25 ----D---- C:\ProgramData\McAfee
2015-08-19 19:16:25 ----D---- C:\Program Files\Common Files
2015-08-19 18:23:48 ----SHD---- C:\$Recycle.Bin
2015-08-19 18:13:33 ----D---- C:\ProgramData\Skype
2015-08-19 18:12:09 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-19 18:11:59 ----D---- C:\Program Files (x86)\Acer
2015-08-19 18:06:22 ----D---- C:\Windows\system32\restore
2015-08-19 18:00:18 ----D---- C:\ProgramData\oem
2015-08-19 18:00:14 ----D---- C:\Windows\system32\OEM
2015-08-19 17:59:11 ----HD---- C:\OEM
2015-08-19 17:57:27 ----RD---- C:\Users
2015-08-19 17:57:15 ----D---- C:\Windows\system32\Recovery
2015-08-19 17:57:15 ----D---- C:\Program Files\Windows NT
2015-08-19 17:53:59 ----D---- C:\Windows\system32\sysprep
2015-08-19 17:40:06 ----D---- C:\Windows\Help
2015-08-19 17:31:59 ----D---- C:\Program Files\Acer
2015-08-19 17:24:57 ----D---- C:\Program Files (x86)\NTI
2015-08-19 17:18:17 ----SD---- C:\Windows\system32\Microsoft
2015-08-19 17:16:27 ----D---- C:\ProgramData\EgisTec IPS
2015-08-19 17:08:17 ----D---- C:\Program Files\Broadcom
2015-08-19 17:08:14 ----D---- C:\Windows\Downloaded Installations
2015-08-19 17:07:35 ----AD---- C:\Windows\DeployWinRE2
2015-08-19 17:03:51 ----D---- C:\Program Files (x86)\Intel
2015-08-19 17:03:27 ----D---- C:\Intel

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-08-19 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-08-19 274808]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-04-26 557848]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-08-19 115152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-08-19 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-08-19 1048344]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-08-19 447944]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-08-12 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-08-12 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-08-12 62776]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-08-19 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-08-19 90968]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-08-19 150672]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-08-19 273824]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-20 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-20 19496]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-06-08 4729408]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-05-16 51240]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-05 142632]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-06-10 12230912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-29 2819560]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-05-10 425000]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2011-03-10 18432]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2011-03-10 17408]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2011-01-10 349736]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-01-24 107560]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-09-14 138280]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-02-15 39464]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-09-14 21416]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2015-08-22 22200]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-26 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-19 146600]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-05-12 249648]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2011-05-10 956192]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-07-01 353360]
R2 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-08-02 872552]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2011-05-30 36456]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-04-22 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2011-04-24 256832]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-08-19 4047768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-03 269000]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-06-07 191752]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-06-21 173424]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-08-19 655624]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-08-22 1255736]
S3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

[Márty84]

Zdravim

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[kyky66]

# AdwCleaner v5.007 - Logfile created 10/09/2015 at 15:10:54
# Updated 08/09/2015 by Xplode
# Database : 2015-09-08.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Doma - DOMA-PC
# Running from : C:\Users\Doma\Desktop\adwcleaner_5.007.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\eSupport.com
[-] Folder Deleted : C:\Users\Doma\AppData\Local\eSupport.com

***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\eSupport.com
[-] Key Deleted : HKCU\Software\OCS
[!] Key Not Deleted : [x64] HKCU\Software\eSupport.com
[!] Key Not Deleted : [x64] HKCU\Software\OCS

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [923 bytes] ##########

[kyky66]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 10.9.2015
Čas skenování: 15:15
Protokol: malware.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.10.06
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Doma

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 496329
Uplynulý čas: 2 hod, 17 min, 48 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 3
Trojan.Sathurbot, HKLM\SOFTWARE\CLASSES\CLSID\{3B5B973C-92A4-4855-9D3F-0F3D23332208}, , [85b91d111f6c6cca13447762ce349c64],
PUP.Optional.eShield, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\dkmjljdbbgogihjcapfhgkonfmccbffp, , [4bf35bd3f59662d43bccb1dfbb494eb2],
PUP.Optional.TidyNetwork, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\DRAGDROP\{70BC1CDB-0744-4172-BDA0-B5A487D00C3A}, , [1b23d9553b50e6500e21a811d1339c64],

Hodnoty registru: 2
Rootkit.Fileless.MTGen, HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|^6980d17f, , [9ba38ca2117acf670180254c917315eb],
Rootkit.Fileless.MTGen, HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|^40ba02b9, , [35093cf28803ec4a206184eda55f59a7],

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 5
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\cache, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\data, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp, , [3806e7479af126109fe4936754aefb05],

Soubory: 78
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\PerformanceMonitor.dll, , [85b91d111f6c6cca13447762ce349c64],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\87737dd0-ad90-4193-bd48-336966b8d777\updater.bak.vir, , [320c909ec0cb4aecb710415cc73e4bb5],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\87737dd0-ad90-4193-bd48-336966b8d777\updater.exe.vir, , [e8561e103358241274532a7341c49b65],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Record Page\Uninstaller.exe.vir, , [0539b777fe8d2e089c2bf3aa6e97956b],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Record Page\Extensions\2335267c-dbba-4dd5-a9d0-c4db8e6a75a4.dll.vir, , [6ad4fc32c2c93cfa7f48633ac24320e0],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugincontainer.bak.vir, , [8ab42707a2e9b77f586f118c85806f91],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugincontainer.exe.vir, , [f14d62ccd4b7a294d6f1396437ce9a66],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\10\Plugin.exe.vir, , [241add51800b49ed527577267194916f],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\10bak\Plugin.exe.vir, , [e5597bb35833c37301c60e8f0df841bf],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\12\Plugin.exe.vir, , [99a537f743484cea4a7d9805bb4ad729],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\12\resources\plugin.dll.vir, , [c07e9b93adde52e4cef98914e71e1be5],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\12bak\Plugin.exe.vir, , [88b608263a5154e204c39508cf36f60a],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\12bak\resources\plugin.dll.vir, , [28168da1f794a096c403f5a84eb739c7],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\2\Plugin.exe.vir, , [af8fad816229d6607b4c079643c2b050],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\2bak\Plugin.exe.vir, , [201ec5693b50171f01c66f2e25e06a96],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\3\Plugin.exe.vir, , [db6338f6c3c8270fab1cb8e530d57789],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\3bak\Plugin.exe.vir, , [82bc73bb286323131ea9a3fad4313dc3],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\5\Plugin.exe.vir, , [89b5d955c6c5b97dc1061f7e2ed7ee12],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\5bak\Plugin.exe.vir, , [132b54dad5b673c3b413009d08fded13],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7\Plugin.exe.vir, , [b48a34fae3a83402facdd3ca7491f20e],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7\resources\38.0.5.dll.vir, , [1a24ce60a7e462d4ba0deab3d82daf51],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7\resources\39.0.0.dll.vir, , [40fe919dc6c549edf2d5633a669f9868],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7\resources\40.0.0.dll.vir, , [a698f7371b70f0468d3aaeef1ce98977],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7bak\Plugin.exe.vir, , [7bc3b47ab2d9f1455c6b57462dd8b54b],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7bak\resources\38.0.5.dll.vir, , [48f6d35b7a115dd903c44558ae57df21],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7bak\resources\39.0.0.dll.vir, , [de603fef682357df3196c0dd9570629e],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7bak\resources\40.0.0.dll.vir, , [3e0045e9e0ab7cbaffc84954957048b8],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\8\Plugin.exe.vir, , [0836b47a93f80234cef96439877eb050],
PUP.Optional.RecordPage, C:\AdwCleaner\Quarantine\C\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\8bak\Plugin.exe.vir, , [95a9b17ddead70c6a324d8c5867feb15],
Trojan.MalPack.VB, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp1314.exe, , [85b9200e5932f343ba3d667479882ed2],
Trojan.Downloader, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp7686.exe, , [1f1fb27c6b209d994fc28852e71ab34d],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityHelper.dll, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\zepplauncher.mif, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp8362.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp1314.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp157.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp2168.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp250F.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp253E.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp2C00.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp2F0F.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp34C5.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp3804.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp3BD8.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp3E77.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp4884.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp4E8D.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp4FB4.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp511B.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp5341.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp5380.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp5BB9.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp65E3.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp69F8.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp6E9A.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp7521.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp752E.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp7686.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp7A1F.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp7A5D.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp8361.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp9244.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp94EF.exe, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp94EF.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp9B09.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp9CBC.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp9F0F.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpA7F1.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpB961.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpCE86.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpD88.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpDD72.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpFA75.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpFD14.tmp, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\{0518FFE4-7779-AE6D-4671-FC23C6ADE8E8}, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\{6EE9721E-A045-1F43-0A2C-E50A7B7BE205}, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\{9852E0BF-7189-877F-CF79-1DA258A2C533}, , [3806e7479af126109fe4936754aefb05],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\{DA68E02A-3B47-5C14-BE8B-8F8FEBB4132D}, , [3806e7479af126109fe4936754aefb05],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Márty84]

Je tam toho hodne Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.

[kyky66]

Provedu. Prave jsem to kvuli tomu ze tech viru tam bylo hodne preinstalovala ale po aktualizacich se to jakoby vse vratilo.

[Márty84]

Delala jste kompletni reinstal, vcetne formatu disku? Nebo jen opravnou instalaci?

[kyky66]

Kompletni reinstal. Fotky, pisnicky a filmy jsem zalohovala na hardisk. Akorat si nejsem jista formatu ale asi probehl kdyz se vse smazlo. Ja to delala pres vyrobni cd k notebooku.

[Márty84]

Tak v tom pripade jinak.


Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku



Postupujte podle navodu kolegy

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Kliknete na volbu Change parametrs
• V okne Additional Option zakliknete vsechny moznosti
• Kliknete na OK
• Utilite prikazte, at skenuje - klik na Start Scan
• Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
• Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
• Pokud mate vsude Skip, kliknete na Continue
• Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

Postupujte podle navodu kolegy

Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/

• Ulozte nejlepe na Plochu a rozbalte
• Spustte kliknutim na mbar
• Nyni postupne kliknete na Next a Update
• Po dokonceni update (aktualizace) databaze kliknete opet na Next
• Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
• Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
• Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
• Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
• PC bude restartovan
• Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

[kyky66]

ten combofix mi nejde spustit. Okno kde se ma dat souslasim mi hned zmizne.

[Márty84]

Zkuste to v nouzovem rezimu. Kdyz nepujde, pokracujte dalsimi kroky.

[kyky66]

Akorat mi furt hlasil ze mam vypnout ten spybot ale kdyz jsem ho vypla tak to hlasilo furt tak jsem ho pak odinstalovala a hlasilo to taky furt tak jsem to pak teda nechala jet. Kdyztak to mam zkusit jeste jednou v tom normalnim rezimu???

ComboFix 15-09-07.01 - Doma 11.09.2015 5:58.1.4 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3948.2479 [GMT 2:00]
Spuštěný z: c:\users\Doma\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Doma\AppData\Roaming\devobj8.dll
c:\users\Public\Documents\NTILiveUpdateV9.dll
c:\users\Public\Documents\NTIMMV9Acer.dll
c:\users\Public\Documents\NTIMMV9REGET.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-08-11 do 2015-09-11 )))))))))))))))))))))))))))))))
.
.
2015-09-11 04:03 . 2015-09-11 04:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-09-11 03:56 . 2015-09-11 03:56 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{475E80B5-4975-416A-B8C6-3D0C04B919B5}\offreg.888.dll
2015-09-10 13:15 . 2015-09-10 13:15 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{475E80B5-4975-416A-B8C6-3D0C04B919B5}\offreg.5092.dll
2015-09-10 13:13 . 2015-09-10 17:30 113880 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-09-10 13:04 . 2015-09-10 13:04 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-09-10 13:04 . 2015-09-10 13:04 -------- d-----w- c:\programdata\Malwarebytes
2015-09-10 13:04 . 2015-06-18 06:41 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-09-10 13:04 . 2015-06-18 06:41 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-09-10 13:04 . 2015-06-18 06:41 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-09-09 15:58 . 2015-09-09 15:59 -------- d-----w- C:\rsit
2015-09-09 15:58 . 2015-09-09 15:59 -------- d-----w- c:\program files\trend micro
2015-09-09 15:32 . 2015-08-05 17:56 1737216 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2015-09-09 15:32 . 2015-08-05 17:56 1411072 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2015-09-09 15:32 . 2015-08-05 17:56 1398272 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2015-09-09 15:32 . 2015-08-05 17:56 1372160 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-09-09 15:30 . 2015-08-18 01:14 816744 ----a-w- c:\program files (x86)\Internet Explorer\iexplore.exe
2015-09-09 15:29 . 2015-07-23 00:06 5568960 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-09-09 15:28 . 2015-08-27 18:18 2004480 ----a-w- c:\windows\system32\msxml6.dll
2015-09-09 15:27 . 2015-09-02 01:51 3209216 ----a-w- c:\windows\system32\win32k.sys
2015-09-09 15:21 . 2015-07-31 09:21 11745192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{475E80B5-4975-416A-B8C6-3D0C04B919B5}\mpengine.dll
2015-09-01 16:27 . 2015-09-01 16:27 -------- d-----w- c:\program files (x86)\phenomedia
2015-09-01 16:27 . 2015-09-01 16:27 -------- d-----w- c:\program files (x86)\Einfach_Spielen
2015-09-01 16:22 . 2015-09-01 16:22 -------- d-----w- c:\program files\WinRAR
2015-08-23 15:54 . 2015-08-23 15:57 -------- d-s---w- c:\windows\system32\GWX
2015-08-23 15:54 . 2015-08-23 15:54 -------- d-s---w- c:\windows\SysWow64\GWX
2015-08-23 13:13 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-08-23 13:13 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-08-22 13:55 . 2015-08-22 13:55 22200 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2015-08-22 13:51 . 2015-08-22 13:51 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDTAT.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDRU1.DLL
2015-08-22 11:39 . 2014-07-09 02:03 6656 ----a-w- c:\windows\system32\KBDRU.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDBASH.DLL
2015-08-22 11:39 . 2014-07-09 01:31 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL
2015-08-22 11:39 . 2014-07-09 01:31 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL
2015-08-22 11:39 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2015-08-22 11:39 . 2013-11-22 22:48 3928064 ----a-w- c:\windows\system32\d2d1.dll
2015-08-22 11:28 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2015-08-22 11:28 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2015-08-22 11:22 . 2015-08-22 11:22 -------- d-----w- c:\windows\SysWow64\Wat
2015-08-22 11:22 . 2015-08-22 11:22 -------- d-----w- c:\windows\system32\Wat
2015-08-22 10:54 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 10:54 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 10:38 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-08-22 10:38 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-08-22 10:38 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-08-22 10:38 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-08-22 10:38 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-08-22 10:38 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-08-22 10:38 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-08-22 10:13 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-08-22 10:13 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-08-22 10:13 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-08-22 10:13 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-08-22 10:13 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-08-22 10:13 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-08-22 10:12 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-08-22 10:12 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-08-22 09:33 . 2015-07-30 18:06 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2015-08-22 09:33 . 2015-07-30 18:06 1648128 ----a-w- c:\windows\system32\DWrite.dll
2015-08-22 09:33 . 2015-07-30 18:06 1180160 ----a-w- c:\windows\system32\FntCache.dll
2015-08-22 09:33 . 2015-07-30 17:57 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2015-08-22 09:33 . 2015-07-30 17:57 1251328 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-08-22 09:33 . 2015-02-03 03:31 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-08-22 09:33 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-08-22 09:32 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2015-08-22 09:32 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2015-08-22 09:24 . 2015-08-22 09:24 -------- d-----w- c:\program files\Microsoft Silverlight
2015-08-22 09:24 . 2015-08-22 09:24 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-----w- c:\windows\Migration
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-s---w- c:\windows\system32\CompatTel
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-----w- c:\windows\system32\appraiser
2015-08-21 15:04 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2015-08-21 14:55 . 2015-08-21 14:55 68608 ----a-w- c:\windows\system32\taskhost.exe
2015-08-21 13:44 . 2015-08-21 13:44 -------- d-----w- c:\program files\CCleaner
2015-08-21 13:25 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
2015-08-21 13:25 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
2015-08-21 13:25 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
2015-08-21 13:25 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
2015-08-21 13:22 . 2014-08-12 02:02 878080 ----a-w- c:\windows\system32\IMJP10K.DLL
2015-08-21 13:22 . 2014-08-12 01:36 701440 ----a-w- c:\windows\SysWow64\IMJP10K.DLL
2015-08-21 13:20 . 2015-06-03 20:16 1239720 ----a-w- c:\windows\system32\aitstatic.exe
2015-08-21 13:20 . 2015-07-28 20:05 774656 ----a-w- c:\windows\system32\invagent.dll
2015-08-21 13:20 . 2015-07-28 20:05 743424 ----a-w- c:\windows\system32\generaltel.dll
2015-08-21 13:20 . 2015-07-28 20:05 437760 ----a-w- c:\windows\system32\devinv.dll
2015-08-21 13:20 . 2015-07-28 20:05 69120 ----a-w- c:\windows\system32\acmigration.dll
2015-08-21 13:20 . 2015-07-28 19:55 1148416 ----a-w- c:\windows\system32\aeinv.dll
2015-08-21 13:20 . 2015-06-03 20:16 193536 ----a-w- c:\windows\system32\aepic.dll
2015-08-21 13:20 . 2015-07-28 20:05 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-08-21 13:20 . 2015-06-02 00:07 254976 ----a-w- c:\windows\system32\cewmdm.dll
2015-08-21 13:20 . 2015-06-01 23:47 210432 ----a-w- c:\windows\SysWow64\cewmdm.dll
2015-08-21 13:20 . 2015-04-18 03:10 460800 ----a-w- c:\windows\system32\certcli.dll
2015-08-21 13:20 . 2015-04-18 02:56 342016 ----a-w- c:\windows\SysWow64\certcli.dll
2015-08-21 13:18 . 2011-10-01 05:45 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
2015-08-21 13:17 . 2015-05-25 18:19 113664 ----a-w- c:\windows\system32\sechost.dll
2015-08-21 13:16 . 2014-04-25 02:34 801280 ----a-w- c:\windows\system32\usp10.dll
2015-08-21 13:16 . 2014-04-25 02:06 626688 ----a-w- c:\windows\SysWow64\usp10.dll
2015-08-21 13:16 . 2011-11-17 06:35 395776 ----a-w- c:\windows\system32\webio.dll
2015-08-21 13:16 . 2011-11-17 05:35 314880 ----a-w- c:\windows\SysWow64\webio.dll
2015-08-21 13:16 . 2014-08-01 11:53 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2015-08-21 13:16 . 2014-08-01 11:35 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2015-08-21 13:14 . 2014-12-19 03:06 210432 ----a-w- c:\windows\system32\profsvc.dll
2015-08-21 13:14 . 2014-06-18 22:23 73880 ----a-w- c:\windows\system32\mscories.dll
2015-08-21 13:14 . 2014-06-18 22:23 1943696 ----a-w- c:\windows\system32\dfshim.dll
2015-08-21 13:14 . 2014-06-18 22:23 156312 ----a-w- c:\windows\system32\mscorier.dll
2015-08-21 13:14 . 2014-06-18 22:23 81560 ----a-w- c:\windows\SysWow64\mscories.dll
2015-08-21 13:14 . 2014-06-18 22:23 156824 ----a-w- c:\windows\SysWow64\mscorier.dll
2015-08-21 13:14 . 2014-06-18 22:23 1131664 ----a-w- c:\windows\SysWow64\dfshim.dll
2015-08-21 13:12 . 2014-01-29 02:32 484864 ----a-w- c:\windows\system32\wer.dll
2015-08-21 13:12 . 2014-01-29 02:06 381440 ----a-w- c:\windows\SysWow64\wer.dll
2015-08-21 13:12 . 2013-10-19 02:18 81408 ----a-w- c:\windows\system32\imagehlp.dll
2015-08-21 13:12 . 2013-10-19 01:36 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2015-08-21 13:12 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-08-21 13:12 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-08-21 13:12 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-08-21 13:11 . 2014-10-14 02:13 683520 ----a-w- c:\windows\system32\termsrv.dll
2015-08-21 13:10 . 2015-07-15 03:19 52736 ----a-w- c:\windows\system32\basesrv.dll
2015-08-21 13:08 . 2013-07-12 10:41 185344 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2015-08-21 13:08 . 2013-07-12 10:41 100864 ----a-w- c:\windows\system32\drivers\usbcir.sys
2015-08-21 13:07 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2015-08-21 13:07 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2015-08-21 13:07 . 2014-12-19 01:46 141312 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2015-08-21 13:07 . 2014-04-05 02:47 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2015-08-21 13:07 . 2014-04-05 02:47 288192 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-09-03 14:10 . 2011-08-12 07:32 142536 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-08-21 14:57 . 2015-08-21 14:57 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2015-08-21 14:57 . 2015-08-21 14:57 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-08-20 00:55 . 2015-08-20 00:55 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 5632 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 50176 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 27136 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
2015-08-20 00:55 . 2015-08-20 00:55 15360 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
2015-08-19 16:08 . 2011-03-29 01:36 24288 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-07-22 17:53 . 2015-09-09 15:29 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-06-23 11:30 . 2010-11-21 03:27 300704 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"="c:\users\Doma\AppData\Roaming\Seznam.cz\szninstall.exe" [2013-05-16 1062472]
"cz.seznam.software.szndesktop"="c:\users\Doma\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" [2015-05-26 103080]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2015-04-23 8204056]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"AVDworks"="c:\users\Doma\AppData\Local\AVDworks\Stltext90.dll" [2015-08-22 50688]
"UZDmedia"="c:\users\Doma\AppData\Local\Otics\HcwCuda8.dll" [2015-08-22 47104]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-06-21 341360]
"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-04-24 297280]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-07-01 1103440]
"Dolby Advanced Audio v2"="c:\dolby pcee4\pcee4.exe" [2011-02-03 506712]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-08-26 6111824]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2015-06-15 73216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-5-10 1131296]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R0 aswRvrt;avast! Revert; [x]
R0 aswVmm;avast! VM Monitor; [x]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
R1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
R1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
R1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
R2 ePowerSvc;ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
R2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]
R2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
R3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]
R3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 ngvss;ngvss; [x]
S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdbd.sys [x]
S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdmp.sys [x]
S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiMSa.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2015-09-10 c:\windows\Tasks\Acer Registration - Reminder Recall task.job
- c:\program files (x86)\Acer\Registration\GREG.exe [2011-05-11 11:30]
.
2015-09-05 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe [2015-08-22 14:10]
.
2015-09-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-20 14:10]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-08-19 16:18 778056 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-21 416024]
"IntelTBRunOnce"="wscript.exe" [2013-10-12 168960]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-21 2207848]
"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-08-02 1831016]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=16194
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.0.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-Dhfmltco - c:\users\Doma\AppData\Roaming\devobj8.dll
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{3B5B973C-92A4-4855-9D3F-0F3D23332208} - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.18"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-09-11 06:05:44
ComboFix-quarantined-files.txt 2015-09-11 04:05
.
Před spuštěním: Volných bajtů: 915 173 908 480
Po spuštění: Volných bajtů: 914 970 042 368
.
- - End Of File - - 723BA41CCF52A6F1DF56D3BCBF5795CD

[kyky66]

06:12:45.0215 0x0b0c TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
06:13:00.0197 0x0b0c ============================================================
06:13:00.0197 0x0b0c Current date / time: 2015/09/11 06:13:00.0197
06:13:00.0197 0x0b0c SystemInfo:
06:13:00.0197 0x0b0c
06:13:00.0197 0x0b0c OS Version: 6.1.7601 ServicePack: 1.0
06:13:00.0198 0x0b0c Product type: Workstation
06:13:00.0198 0x0b0c ComputerName: DOMA-PC
06:13:00.0198 0x0b0c UserName: Doma
06:13:00.0198 0x0b0c Windows directory: C:\Windows
06:13:00.0198 0x0b0c System windows directory: C:\Windows
06:13:00.0198 0x0b0c Running under WOW64
06:13:00.0198 0x0b0c Processor architecture: Intel x64
06:13:00.0198 0x0b0c Number of processors: 4
06:13:00.0198 0x0b0c Page size: 0x1000
06:13:00.0198 0x0b0c Boot type: Normal boot
06:13:00.0198 0x0b0c ============================================================
06:13:01.0601 0x0b0c KLMD registered as C:\Windows\system32\drivers\90751996.sys
06:13:02.0156 0x0b0c System UUID: {E1F564A1-0D29-BF83-0D4B-A14193EAEDD8}
06:13:02.0598 0x0b0c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:13:02.0608 0x0b0c ============================================================
06:13:02.0608 0x0b0c \Device\Harddisk0\DR0:
06:13:02.0609 0x0b0c MBR partitions:
06:13:02.0609 0x0b0c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2400800, BlocksNum 0x32000
06:13:02.0609 0x0b0c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2432800, BlocksNum 0x722D3DB0
06:13:02.0609 0x0b0c ============================================================
06:13:02.0633 0x0b0c C: <-> \Device\Harddisk0\DR0\Partition2
06:13:02.0633 0x0b0c ============================================================
06:13:02.0633 0x0b0c Initialize success
06:13:02.0633 0x0b0c ============================================================
06:13:26.0091 0x1498 ============================================================
06:13:26.0092 0x1498 Scan started
06:13:26.0092 0x1498 Mode: Manual; SigCheck; TDLFS;
06:13:26.0092 0x1498 ============================================================
06:13:26.0092 0x1498 KSN ping started
06:13:28.0783 0x1498 KSN ping finished: true
06:13:30.0647 0x1498 ================ Scan system memory ========================
06:13:30.0647 0x1498 System memory - ok
06:13:30.0647 0x1498 ================ Scan services =============================
06:13:30.0857 0x1498 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
06:13:30.0949 0x1498 1394ohci - ok
06:13:30.0987 0x1498 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
06:13:31.0005 0x1498 ACPI - ok
06:13:31.0039 0x1498 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
06:13:31.0092 0x1498 AcpiPmi - ok
06:13:31.0192 0x1498 [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
06:13:31.0213 0x1498 AdobeARMservice - ok
06:13:31.0345 0x1498 [ BBF37D81780EBB4919636CF7E5C789BE, AB866B25B0388D9F1CD79B7BDD85B2BDBF152DFFFAC91743CCC52AC00054ED6D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
06:13:31.0376 0x1498 AdobeFlashPlayerUpdateSvc - ok
06:13:31.0427 0x1498 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
06:13:31.0456 0x1498 adp94xx - ok
06:13:31.0496 0x1498 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
06:13:31.0514 0x1498 adpahci - ok
06:13:31.0536 0x1498 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
06:13:31.0550 0x1498 adpu320 - ok
06:13:31.0584 0x1498 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
06:13:31.0606 0x1498 AeLookupSvc - ok
06:13:31.0647 0x1498 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
06:13:31.0690 0x1498 AFD - ok
06:13:31.0732 0x1498 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
06:13:31.0760 0x1498 agp440 - ok
06:13:31.0805 0x1498 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
06:13:31.0840 0x1498 ALG - ok
06:13:31.0877 0x1498 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
06:13:31.0908 0x1498 aliide - ok
06:13:31.0914 0x1498 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
06:13:31.0932 0x1498 amdide - ok
06:13:31.0988 0x1498 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
06:13:32.0024 0x1498 AmdK8 - ok
06:13:32.0029 0x1498 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
06:13:32.0043 0x1498 AmdPPM - ok
06:13:32.0061 0x1498 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
06:13:32.0075 0x1498 amdsata - ok
06:13:32.0097 0x1498 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
06:13:32.0111 0x1498 amdsbs - ok
06:13:32.0122 0x1498 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
06:13:32.0132 0x1498 amdxata - ok
06:13:32.0178 0x1498 [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID C:\Windows\system32\drivers\appid.sys
06:13:32.0225 0x1498 AppID - ok
06:13:32.0257 0x1498 [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
06:13:32.0300 0x1498 AppIDSvc - ok
06:13:32.0343 0x1498 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
06:13:32.0369 0x1498 Appinfo - ok
06:13:32.0431 0x1498 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
06:13:32.0443 0x1498 arc - ok
06:13:32.0448 0x1498 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
06:13:32.0460 0x1498 arcsas - ok
06:13:32.0508 0x1498 [ 525F5989C095F5757414E1F4B39175B2, 0CA28553AE4BF07C3952A6E2355FAB2B0CB862CFD88DEFD7232FD48ABA99CFCB ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
06:13:32.0523 0x1498 aswHwid - ok
06:13:32.0549 0x1498 [ 76D585093398DB973470BB83FCF0CE52, F7135232E7F50270A253C9F04574F22B827A42B2BE42DE6E391CE3A56B2EA51F ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
06:13:32.0560 0x1498 aswMonFlt - ok
06:13:32.0583 0x1498 [ 719FF5568B5E71832541636E2A7DFE27, C49ADB31B5DE6FCFB252290D5B831A90E555F86058500538BBD288B10CDCC46F ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
06:13:32.0594 0x1498 aswRdr - ok
06:13:32.0627 0x1498 [ 21C13E3C9B801C8AE172FABBD235221E, 0AE02CB0F4A87C6065159B68545DD536C4E98C8C23E954ED3392A7CE5F28868C ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
06:13:32.0638 0x1498 aswRvrt - ok
06:13:32.0693 0x1498 [ E0F47617EB31CD205BF68B55CE88862D, EE3ED93E51E310E1D713F8692CF2A61147C0EFCFA465969C04B85DA2E271F3E6 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
06:13:32.0723 0x1498 aswSnx - ok
06:13:32.0751 0x1498 [ C43A0929DE32035499D6BB39A7F44439, 6269380D25D6BFFB7C234758114B700A75BD55D654B6D93ED44D50660A86FCA7 ] aswSP C:\Windows\system32\drivers\aswSP.sys
06:13:32.0769 0x1498 aswSP - ok
06:13:32.0796 0x1498 [ 763C27EA21875F54615A0174EEC78FC4, 4EE48D475B183DD2066781137F46A4BEE2E510B3A085B9B1385F8C0043A5BE08 ] aswStm C:\Windows\system32\drivers\aswStm.sys
06:13:32.0808 0x1498 aswStm - ok
06:13:32.0830 0x1498 [ C85B35201A253B99199C0A9F5B98FC18, 18FF49D52035C79AD70A96FBD4663C41A58830D432DD4B9EDA6E7FCDFD12C18F ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
06:13:32.0845 0x1498 aswVmm - ok
06:13:32.0888 0x1498 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
06:13:32.0931 0x1498 AsyncMac - ok
06:13:32.0967 0x1498 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
06:13:32.0976 0x1498 atapi - ok
06:13:33.0056 0x1498 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:13:33.0116 0x1498 AudioEndpointBuilder - ok
06:13:33.0136 0x1498 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
06:13:33.0165 0x1498 AudioSrv - ok
06:13:33.0303 0x1498 [ 4956380A54B1C9E6BFDF3D80DACB9698, 0B0F9807EEF0F3BFE4F862876633D241DBA8F72A1373445976FF388678C4734C ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
06:13:33.0323 0x1498 avast! Antivirus - ok
06:13:33.0542 0x1498 [ CCC3FE1DDCCF99633539B3D7681EF7D7, 0C048EDCD22681C82586845B822990FB4A9303B3B1F4161EBA5A6C444EF7C5CC ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
06:13:33.0721 0x1498 AvastVBoxSvc - ok
06:13:33.0780 0x1498 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
06:13:33.0835 0x1498 AxInstSV - ok
06:13:33.0891 0x1498 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
06:13:33.0937 0x1498 b06bdrv - ok
06:13:33.0969 0x1498 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
06:13:34.0006 0x1498 b57nd60a - ok
06:13:34.0045 0x1498 [ A424CB46A145E5AABF15621550976DF2, B6CA183FD5ED72237D2DC1F599FD04A066C06A717A2CF63AF08D3AA0A227D7BA ] b57xdbd C:\Windows\system32\DRIVERS\b57xdbd.sys
06:13:34.0055 0x1498 b57xdbd - ok
06:13:34.0059 0x1498 [ BE4E6FD5A898812B85D5817AD9754A9F, 46A7C80283BE53F43A0D73DA3338461024DD002A7CF43660F9C7D640E0C72876 ] b57xdmp C:\Windows\system32\DRIVERS\b57xdmp.sys
06:13:34.0067 0x1498 b57xdmp - ok
06:13:34.0129 0x1498 [ 87F3BCF82A63E900AF896CD930BF7E05, A68141E81D0541DDC1863FAC0DDBF0362641B8B0DBE06D645D00CC0DB36B30BB ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
06:13:34.0164 0x1498 BBSvc - ok
06:13:34.0194 0x1498 [ 78779EE07231C658B483B1F38B5088DF, 42DE06151DA17C218067CA3A22509BC626CB505F87238E39D024CE29554EF47D ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
06:13:34.0211 0x1498 BBUpdate - ok
06:13:34.0405 0x1498 [ 11F844B46B631337395651ABE9C4167B, 98771B4D9DABEE4C485D718E3BB7D4EF365CA1D7CF043BE12431BC08F6D16EFD ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
06:13:34.0514 0x1498 BCM43XX - ok
06:13:34.0564 0x1498 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
06:13:34.0598 0x1498 BDESVC - ok
06:13:34.0647 0x1498 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
06:13:34.0730 0x1498 Beep - ok
06:13:34.0778 0x1498 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
06:13:34.0807 0x1498 BFE - ok
06:13:34.0842 0x1498 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
06:13:34.0904 0x1498 BITS - ok
06:13:34.0936 0x1498 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
06:13:34.0981 0x1498 blbdrive - ok
06:13:34.0992 0x1498 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
06:13:35.0024 0x1498 bowser - ok
06:13:35.0056 0x1498 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
06:13:35.0091 0x1498 BrFiltLo - ok
06:13:35.0107 0x1498 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
06:13:35.0124 0x1498 BrFiltUp - ok
06:13:35.0185 0x1498 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
06:13:35.0246 0x1498 BridgeMP - ok
06:13:35.0301 0x1498 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
06:13:35.0344 0x1498 Browser - ok
06:13:35.0383 0x1498 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
06:13:35.0418 0x1498 Brserid - ok
06:13:35.0428 0x1498 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
06:13:35.0464 0x1498 BrSerWdm - ok
06:13:35.0468 0x1498 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
06:13:35.0490 0x1498 BrUsbMdm - ok
06:13:35.0493 0x1498 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
06:13:35.0513 0x1498 BrUsbSer - ok
06:13:35.0554 0x1498 [ 0970D8B7151E9113BF8D44CE2E954DF7, D467DFFA1668F3BE29620154A13867568C25211ED823BE6A220D2DEE7E3A1278 ] bScsiMSa C:\Windows\system32\DRIVERS\bScsiMSa.sys
06:13:35.0563 0x1498 bScsiMSa - ok
06:13:35.0578 0x1498 [ 0C1EEE5AF32402D306874B110DE237EC, B0FE0F3B6A1E2C003E6F4B6330601C43126881262B328D7DD93AC2C0B714DC86 ] bScsiSDa C:\Windows\system32\DRIVERS\bScsiSDa.sys
06:13:35.0589 0x1498 bScsiSDa - ok
06:13:35.0626 0x1498 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
06:13:35.0678 0x1498 BthEnum - ok
06:13:35.0713 0x1498 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
06:13:35.0746 0x1498 BTHMODEM - ok
06:13:35.0797 0x1498 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
06:13:35.0833 0x1498 BthPan - ok
06:13:35.0898 0x1498 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
06:13:35.0945 0x1498 BTHPORT - ok
06:13:35.0986 0x1498 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
06:13:36.0035 0x1498 bthserv - ok
06:13:36.0068 0x1498 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
06:13:36.0124 0x1498 BTHUSB - ok
06:13:36.0176 0x1498 [ A0DFB69ADE3444C78B17636FCF28E898, 21B1E76F056C2AFD5DEAFD620D2F90F4F617F8E76A88CEA2196E69D2CFBEE88B ] BTWAMPFL C:\Windows\system32\DRIVERS\btwampfl.sys
06:13:36.0202 0x1498 BTWAMPFL - ok
06:13:36.0218 0x1498 [ 7CF028CE78696882B327FF13D2DFA534, 624C88C3CB511DE5F8279B7E982632F81FDFCAC8F2B038B69FEB686400E0C4F8 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
06:13:36.0233 0x1498 btwaudio - ok
06:13:36.0247 0x1498 [ 3DEF2370E414B4E299673558BA171A51, 5A0923D9F941ABD34EC9BEE0EB62A62F135CBF128061239CC6EA0E6752791636 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
06:13:36.0261 0x1498 btwavdt - ok
06:13:36.0360 0x1498 [ 2E79F03D1DC44426C59D01BFDD3462C0, 3DAD830DCFA9804D02002593776371E886DCC27133872236A5B1B5D3618E59CA ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
06:13:36.0395 0x1498 btwdins - ok
06:13:36.0433 0x1498 [ 346B4051B3D7FF70E8F027869B8ECA6E, 7C0485F592368016C6BAB8B1BC24C89454D4B305C3E6DFB8AAF4CDB26062D4EB ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
06:13:36.0461 0x1498 btwl2cap - ok
06:13:36.0478 0x1498 [ 9937E0E4DFC0030560A6DFE9D3A94B39, 0B9CF1932D4534BD7B1F5D7B7BD5FBF9C8D156838D24ABBDE475E79EEF1150F1 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
06:13:36.0490 0x1498 btwrchid - ok
06:13:36.0507 0x1498 catchme - ok
06:13:36.0548 0x1498 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
06:13:36.0601 0x1498 cdfs - ok
06:13:36.0630 0x1498 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
06:13:36.0704 0x1498 cdrom - ok
06:13:36.0733 0x1498 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
06:13:36.0788 0x1498 CertPropSvc - ok
06:13:36.0839 0x1498 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
06:13:36.0880 0x1498 circlass - ok
06:13:36.0913 0x1498 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
06:13:36.0931 0x1498 CLFS - ok
06:13:37.0006 0x1498 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:13:37.0039 0x1498 clr_optimization_v2.0.50727_32 - ok
06:13:37.0052 0x1498 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
06:13:37.0070 0x1498 clr_optimization_v2.0.50727_64 - ok
06:13:37.0158 0x1498 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:13:37.0188 0x1498 clr_optimization_v4.0.30319_32 - ok
06:13:37.0259 0x1498 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
06:13:37.0286 0x1498 clr_optimization_v4.0.30319_64 - ok
06:13:37.0329 0x1498 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
06:13:37.0364 0x1498 CmBatt - ok
06:13:37.0382 0x1498 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
06:13:37.0396 0x1498 cmdide - ok
06:13:37.0432 0x1498 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
06:13:37.0457 0x1498 CNG - ok
06:13:37.0490 0x1498 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
06:13:37.0500 0x1498 Compbatt - ok
06:13:37.0516 0x1498 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
06:13:37.0538 0x1498 CompositeBus - ok
06:13:37.0551 0x1498 COMSysApp - ok
06:13:37.0564 0x1498 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
06:13:37.0574 0x1498 crcdisk - ok
06:13:37.0617 0x1498 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
06:13:37.0690 0x1498 CryptSvc - ok
06:13:37.0743 0x1498 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
06:13:37.0795 0x1498 DcomLaunch - ok
06:13:37.0874 0x1498 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
06:13:37.0924 0x1498 defragsvc - ok
06:13:37.0949 0x1498 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
06:13:37.0996 0x1498 DfsC - ok
06:13:38.0050 0x1498 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
06:13:38.0082 0x1498 Dhcp - ok
06:13:38.0320 0x1498 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
06:13:38.0440 0x1498 DiagTrack - ok
06:13:38.0459 0x1498 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
06:13:38.0522 0x1498 discache - ok
06:13:38.0553 0x1498 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
06:13:38.0564 0x1498 Disk - ok
06:13:38.0599 0x1498 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
06:13:38.0616 0x1498 Dnscache - ok
06:13:38.0655 0x1498 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
06:13:38.0706 0x1498 dot3svc - ok
06:13:38.0713 0x1498 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
06:13:38.0753 0x1498 DPS - ok
06:13:38.0807 0x1498 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
06:13:38.0840 0x1498 drmkaud - ok
06:13:38.0909 0x1498 [ 8407DDFAB85AE664E507C30314090385, 05F052C64D192CF69A462A5EC16DDA0D43CA5D0245900C9FCB9201685A2E7748 ] DrvAgent64 C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
06:13:38.0938 0x1498 DrvAgent64 - ok
06:13:39.0011 0x1498 [ 9DD3A22F804697606C2B7FF9E912FF6B, BBE2FC0D554030BA9E3A96CC4A360D61DBCCAA1D81BD7547809F29A3AF0B3A25 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
06:13:39.0028 0x1498 DsiWMIService - ok
06:13:39.0091 0x1498 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
06:13:39.0119 0x1498 DXGKrnl - ok
06:13:39.0152 0x1498 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
06:13:39.0195 0x1498 EapHost - ok
06:13:39.0397 0x1498 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
06:13:39.0518 0x1498 ebdrv - ok
06:13:39.0560 0x1498 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS C:\Windows\System32\lsass.exe
06:13:39.0609 0x1498 EFS - ok
06:13:39.0687 0x1498 [ 5332EC2BA1C112BD4BB1F38127848FEF, 156585CE4011546B20EDD20D04E639A0788B1DE6455B23B94E2CD31BA725FE3C ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
06:13:39.0714 0x1498 EgisTec Ticket Service - ok
06:13:39.0800 0x1498 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
06:13:39.0847 0x1498 ehRecvr - ok
06:13:39.0865 0x1498 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
06:13:39.0880 0x1498 ehSched - ok
06:13:39.0949 0x1498 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
06:13:39.0971 0x1498 elxstor - ok
06:13:40.0057 0x1498 [ 48425C93B6F36529707206E4FA680CF3, 328BD59DEDFAD359EF79CCFBC2AD3E9C95657EC616AE0611F5EFEB34B810692A ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
06:13:40.0089 0x1498 ePowerSvc - ok
06:13:40.0107 0x1498 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
06:13:40.0145 0x1498 ErrDev - ok
06:13:40.0193 0x1498 [ DBAA0C650C9549DC5C599D1E81DEDAAD, C8DF68CDACEF27C91CFD1FE8032A8DAF830D9E77C573C25DE5D41FC3DB824ABA ] ETD C:\Windows\system32\DRIVERS\ETD.sys
06:13:40.0209 0x1498 ETD - ok
06:13:40.0258 0x1498 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
06:13:40.0333 0x1498 EventSystem - ok
06:13:40.0353 0x1498 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
06:13:40.0404 0x1498 exfat - ok
06:13:40.0424 0x1498 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
06:13:40.0466 0x1498 fastfat - ok
06:13:40.0517 0x1498 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
06:13:40.0561 0x1498 Fax - ok
06:13:40.0579 0x1498 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
06:13:40.0591 0x1498 fdc - ok
06:13:40.0624 0x1498 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
06:13:40.0653 0x1498 fdPHost - ok
06:13:40.0671 0x1498 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
06:13:40.0712 0x1498 FDResPub - ok
06:13:40.0742 0x1498 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
06:13:40.0754 0x1498 FileInfo - ok
06:13:40.0764 0x1498 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
06:13:40.0807 0x1498 Filetrace - ok
06:13:40.0863 0x1498 [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
06:13:40.0887 0x1498 FLEXnet Licensing Service - ok
06:13:40.0915 0x1498 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
06:13:40.0939 0x1498 flpydisk - ok
06:13:40.0982 0x1498 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
06:13:40.0999 0x1498 FltMgr - ok
06:13:41.0074 0x1498 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
06:13:41.0134 0x1498 FontCache - ok
06:13:41.0177 0x1498 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
06:13:41.0206 0x1498 FontCache3.0.0.0 - ok
06:13:41.0232 0x1498 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
06:13:41.0260 0x1498 FsDepends - ok
06:13:41.0284 0x1498 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
06:13:41.0296 0x1498 Fs_Rec - ok
06:13:41.0337 0x1498 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
06:13:41.0356 0x1498 fvevol - ok
06:13:41.0402 0x1498 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
06:13:41.0414 0x1498 gagp30kx - ok
06:13:41.0496 0x1498 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
06:13:41.0528 0x1498 GamesAppService - ok
06:13:41.0601 0x1498 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
06:13:41.0668 0x1498 gpsvc - ok
06:13:41.0728 0x1498 [ C9B2D1D3F86FD3673EF847DEF73B6F9E, 9D3822A6464F685F770F8D02A8AE623A676888F135E8425C3BAF1CC077429A7F ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
06:13:41.0753 0x1498 GREGService - ok
06:13:41.0791 0x1498 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
06:13:41.0825 0x1498 hcw85cir - ok
06:13:41.0868 0x1498 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
06:13:41.0912 0x1498 HdAudAddService - ok
06:13:41.0943 0x1498 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
06:13:41.0967 0x1498 HDAudBus - ok
06:13:41.0971 0x1498 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
06:13:41.0991 0x1498 HidBatt - ok
06:13:42.0027 0x1498 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
06:13:42.0056 0x1498 HidBth - ok
06:13:42.0068 0x1498 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
06:13:42.0094 0x1498 HidIr - ok
06:13:42.0120 0x1498 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
06:13:42.0161 0x1498 hidserv - ok
06:13:42.0210 0x1498 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
06:13:42.0242 0x1498 HidUsb - ok
06:13:42.0275 0x1498 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
06:13:42.0324 0x1498 hkmsvc - ok
06:13:42.0338 0x1498 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
06:13:42.0356 0x1498 HomeGroupListener - ok
06:13:42.0391 0x1498 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
06:13:42.0409 0x1498 HomeGroupProvider - ok
06:13:42.0443 0x1498 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
06:13:42.0455 0x1498 HpSAMD - ok
06:13:42.0516 0x1498 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
06:13:42.0555 0x1498 HTTP - ok
06:13:42.0594 0x1498 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
06:13:42.0603 0x1498 hwpolicy - ok
06:13:42.0608 0x1498 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
06:13:42.0623 0x1498 i8042prt - ok
06:13:42.0654 0x1498 [ 26CF4275034214ECEDD8EC17B0A18A99, 95A08C63971C28F1BC97040C0ADA247E3B43DE7D937B14E33A394B955D0AC8B7 ] iaStor C:\Windows\system32\drivers\iaStor.sys
06:13:42.0675 0x1498 iaStor - ok
06:13:42.0732 0x1498 [ E79A8E33BD136D14BAE1FA20EB2EF124, 54AD784570282FEF21021BE76C57EE878EC6FF6423CE2FFC3A4372AF6C3112D4 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
06:13:42.0754 0x1498 IAStorDataMgrSvc - ok
06:13:42.0799 0x1498 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
06:13:42.0829 0x1498 iaStorV - ok
06:13:42.0924 0x1498 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
06:13:42.0958 0x1498 idsvc - ok
06:13:42.0978 0x1498 IEEtwCollectorService - ok
06:13:43.0358 0x1498 [ 9937600A1584FF00565D5379EB4C9EDB, CF03333E9E7BD940B27194A9CF21ED8A6A10B698B545A898291976F650FC2675 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
06:13:43.0907 0x1498 igfx - ok
06:13:43.0955 0x1498 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
06:13:43.0966 0x1498 iirsp - ok
06:13:44.0022 0x1498 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
06:13:44.0066 0x1498 IKEEXT - ok
06:13:44.0231 0x1498 [ 1CE438B31551746AB450D8FFA403BDB5, 56000B9A2E9EBCB3D5F1E516EECFC10BEEAC9CBF6E088FC23D9B4B2C7FC9686A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
06:13:44.0298 0x1498 IntcAzAudAddService - ok
06:13:44.0353 0x1498 [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
06:13:44.0372 0x1498 IntcDAud - ok
06:13:44.0392 0x1498 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
06:13:44.0402 0x1498 intelide - ok
06:13:44.0435 0x1498 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
06:13:44.0457 0x1498 intelppm - ok
06:13:44.0480 0x1498 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
06:13:44.0527 0x1498 IPBusEnum - ok
06:13:44.0547 0x1498 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:13:44.0583 0x1498 IpFilterDriver - ok
06:13:44.0636 0x1498 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
06:13:44.0662 0x1498 iphlpsvc - ok
06:13:44.0682 0x1498 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
06:13:44.0720 0x1498 IPMIDRV - ok
06:13:44.0743 0x1498 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
06:13:44.0775 0x1498 IPNAT - ok
06:13:44.0800 0x1498 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
06:13:44.0816 0x1498 IRENUM - ok
06:13:44.0819 0x1498 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
06:13:44.0830 0x1498 isapnp - ok
06:13:44.0862 0x1498 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
06:13:44.0878 0x1498 iScsiPrt - ok
06:13:44.0922 0x1498 [ 455B75C19BF3F1F2EE3AC10E1169826C, C8CE6DE48E0B4621F2851A994261FA787556A27F9868A8859E5E8A8354028257 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
06:13:44.0939 0x1498 k57nd60a - ok
06:13:44.0980 0x1498 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
06:13:44.0990 0x1498 kbdclass - ok
06:13:45.0021 0x1498 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
06:13:45.0034 0x1498 kbdhid - ok
06:13:45.0058 0x1498 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso C:\Windows\system32\lsass.exe
06:13:45.0071 0x1498 KeyIso - ok
06:13:45.0102 0x1498 [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
06:13:45.0114 0x1498 KSecDD - ok
06:13:45.0151 0x1498 [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
06:13:45.0164 0x1498 KSecPkg - ok
06:13:45.0232 0x1498 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
06:13:45.0295 0x1498 ksthunk - ok
06:13:45.0335 0x1498 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
06:13:45.0383 0x1498 KtmRm - ok
06:13:45.0426 0x1498 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
06:13:45.0477 0x1498 LanmanServer - ok
06:13:45.0499 0x1498 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
06:13:45.0548 0x1498 LanmanWorkstation - ok
06:13:45.0619 0x1498 [ B705C7097F9A0EC941D02DCE7C7D426C, 1A137BEA25BF7BA1EF190212CD6E556B53293D6388E9F7E790BF53F641F3CF89 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
06:13:45.0637 0x1498 Live Updater Service - ok
06:13:45.0665 0x1498 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
06:13:45.0716 0x1498 lltdio - ok
06:13:45.0786 0x1498 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
06:13:45.0855 0x1498 lltdsvc - ok
06:13:45.0872 0x1498 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
06:13:45.0920 0x1498 lmhosts - ok
06:13:45.0968 0x1498 [ 50C7CE53EF461870410355F1F2E7D515, D6E84C63D74E4603D37FD7CC88BF51DE23CD17DB1D1AD4ADBED62F949F3C470C ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
06:13:45.0983 0x1498 LMS - ok
06:13:46.0027 0x1498 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
06:13:46.0040 0x1498 LSI_FC - ok
06:13:46.0045 0x1498 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
06:13:46.0057 0x1498 LSI_SAS - ok
06:13:46.0061 0x1498 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
06:13:46.0073 0x1498 LSI_SAS2 - ok
06:13:46.0090 0x1498 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
06:13:46.0103 0x1498 LSI_SCSI - ok
06:13:46.0122 0x1498 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
06:13:46.0167 0x1498 luafv - ok
06:13:46.0209 0x1498 [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
06:13:46.0219 0x1498 MBAMProtector - ok
06:13:46.0360 0x1498 [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
06:13:46.0410 0x1498 MBAMService - ok
06:13:46.0461 0x1498 [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
06:13:46.0488 0x1498 MBAMWebAccessControl - ok
06:13:46.0520 0x1498 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
06:13:46.0545 0x1498 Mcx2Svc - ok
06:13:46.0559 0x1498 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
06:13:46.0571 0x1498 megasas - ok
06:13:46.0625 0x1498 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
06:13:46.0644 0x1498 MegaSR - ok
06:13:46.0683 0x1498 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
06:13:46.0694 0x1498 MEIx64 - ok
06:13:46.0716 0x1498 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
06:13:46.0761 0x1498 MMCSS - ok
06:13:46.0767 0x1498 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
06:13:46.0803 0x1498 Modem - ok
06:13:46.0821 0x1498 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
06:13:46.0851 0x1498 monitor - ok
06:13:46.0871 0x1498 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
06:13:46.0881 0x1498 mouclass - ok
06:13:46.0903 0x1498 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\drivers\mouhid.sys
06:13:46.0922 0x1498 mouhid - ok
06:13:46.0949 0x1498 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
06:13:46.0960 0x1498 mountmgr - ok
06:13:46.0973 0x1498 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
06:13:46.0986 0x1498 mpio - ok
06:13:47.0002 0x1498 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
06:13:47.0031 0x1498 mpsdrv - ok
06:13:47.0077 0x1498 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
06:13:47.0127 0x1498 MpsSvc - ok
06:13:47.0187 0x1498 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
06:13:47.0213 0x1498 MRxDAV - ok
06:13:47.0256 0x1498 [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
06:13:47.0287 0x1498 mrxsmb - ok
06:13:47.0325 0x1498 [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:13:47.0343 0x1498 mrxsmb10 - ok
06:13:47.0361 0x1498 [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:13:47.0388 0x1498 mrxsmb20 - ok
06:13:47.0422 0x1498 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
06:13:47.0432 0x1498 msahci - ok
06:13:47.0458 0x1498 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
06:13:47.0472 0x1498 msdsm - ok
06:13:47.0484 0x1498 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
06:13:47.0514 0x1498 MSDTC - ok
06:13:47.0551 0x1498 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
06:13:47.0595 0x1498 Msfs - ok
06:13:47.0652 0x1498 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
06:13:47.0727 0x1498 mshidkmdf - ok
06:13:47.0731 0x1498 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
06:13:47.0742 0x1498 msisadrv - ok
06:13:47.0778 0x1498 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
06:13:47.0840 0x1498 MSiSCSI - ok
06:13:47.0843 0x1498 msiserver - ok
06:13:47.0876 0x1498 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
06:13:47.0930 0x1498 MSKSSRV - ok
06:13:47.0935 0x1498 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
06:13:47.0973 0x1498 MSPCLOCK - ok
06:13:47.0976 0x1498 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
06:13:48.0012 0x1498 MSPQM - ok
06:13:48.0040 0x1498 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
06:13:48.0059 0x1498 MsRPC - ok
06:13:48.0064 0x1498 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
06:13:48.0074 0x1498 mssmbios - ok
06:13:48.0109 0x1498 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
06:13:48.0167 0x1498 MSTEE - ok
06:13:48.0170 0x1498 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
06:13:48.0201 0x1498 MTConfig - ok
06:13:48.0206 0x1498 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
06:13:48.0216 0x1498 Mup - ok
06:13:48.0220 0x1498 [ C009123B206C56854F4E88596035231D, 670403A40B425F77C90ECB048A0C8BC11FB19E40A8CECC2C3DCF79175B745863 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
06:13:48.0229 0x1498 mwlPSDFilter - ok
06:13:48.0247 0x1498 [ BF3739EEB9F008B1DEBAC115089A53F8, 8546AB69087656259BBE17D6F80F4AB164B04171673CE2BF9FFD1B5C9584E9A4 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
06:13:48.0256 0x1498 mwlPSDNServ - ok
06:13:48.0260 0x1498 [ 38DD143D95E7A01B86F219DDA9C28779, 5FA8C0595CCF835DBCE1CC5322E8FD4BFB6DFB6CF869BB7CB73F919445D469AA ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
06:13:48.0270 0x1498 mwlPSDVDisk - ok
06:13:48.0338 0x1498 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
06:13:48.0385 0x1498 napagent - ok
06:13:48.0427 0x1498 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
06:13:48.0465 0x1498 NativeWifiP - ok
06:13:48.0513 0x1498 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
06:13:48.0545 0x1498 NDIS - ok
06:13:48.0578 0x1498 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
06:13:48.0610 0x1498 NdisCap - ok
06:13:48.0636 0x1498 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
06:13:48.0675 0x1498 NdisTapi - ok
06:13:48.0679 0x1498 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
06:13:48.0720 0x1498 Ndisuio - ok
06:13:48.0726 0x1498 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
06:13:48.0763 0x1498 NdisWan - ok
06:13:48.0783 0x1498 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
06:13:48.0812 0x1498 NDProxy - ok
06:13:48.0828 0x1498 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
06:13:48.0859 0x1498 NetBIOS - ok
06:13:48.0867 0x1498 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
06:13:48.0910 0x1498 NetBT - ok
06:13:48.0937 0x1498 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon C:\Windows\system32\lsass.exe
06:13:48.0948 0x1498 Netlogon - ok
06:13:48.0987 0x1498 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
06:13:49.0038 0x1498 Netman - ok
06:13:49.0051 0x1498 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
06:13:49.0092 0x1498 netprofm - ok
06:13:49.0128 0x1498 [ 9D0157074866FCF3EA2A07185D93FC72, C4107EE60ADA7E326DF7B27602166E9D57CB9982717605730BF7C7D2401E30A9 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
06:13:49.0161 0x1498 NetTcpPortSharing - ok
06:13:49.0201 0x1498 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
06:13:49.0215 0x1498 nfrd960 - ok
06:13:49.0268 0x1498 [ C88EB6EA6819740B97DECE3E6FD1C7BA, E37E3E07F9D0778913DDABAA8957626DFA81D8370DFA931D48AB53B1838B0D7B ] ngvss C:\Windows\system32\drivers\ngvss.sys
06:13:49.0294 0x1498 ngvss - ok
06:13:49.0323 0x1498 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
06:13:49.0353 0x1498 NlaSvc - ok
06:13:49.0369 0x1498 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
06:13:49.0399 0x1498 Npfs - ok
06:13:49.0419 0x1498 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
06:13:49.0450 0x1498 nsi - ok
06:13:49.0460 0x1498 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
06:13:49.0505 0x1498 nsiproxy - ok
06:13:49.0612 0x1498 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
06:13:49.0687 0x1498 Ntfs - ok
06:13:49.0760 0x1498 [ 1873214666F6F0A883742DF91FBC48C9, DCF5382CE338D4B5B0C3A3B722A19B6C7BAB59EB7B266FEF04698B79070E2C4B ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
06:13:49.0795 0x1498 NTI IScheduleSvc - ok
06:13:49.0830 0x1498 [ EE3BA1024594D5D09E314F206B94069E, 34C8EC3DF1C3088D8A0442CAA4F5506665AFB2DF016709457ED2AB7DA45F53A6 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
06:13:49.0845 0x1498 NTIDrvr - ok
06:13:49.0849 0x1498 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
06:13:49.0891 0x1498 Null - ok
06:13:49.0913 0x1498 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
06:13:49.0926 0x1498 nvraid - ok
06:13:49.0932 0x1498 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
06:13:49.0946 0x1498 nvstor - ok
06:13:49.0967 0x1498 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
06:13:49.0979 0x1498 nv_agp - ok
06:13:49.0990 0x1498 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
06:13:50.0019 0x1498 ohci1394 - ok
06:13:50.0056 0x1498 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
06:13:50.0094 0x1498 p2pimsvc - ok
06:13:50.0119 0x1498 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
06:13:50.0158 0x1498 p2psvc - ok
06:13:50.0184 0x1498 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
06:13:50.0198 0x1498 Parport - ok
06:13:50.0218 0x1498 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
06:13:50.0229 0x1498 partmgr - ok
06:13:50.0252 0x1498 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
06:13:50.0275 0x1498 PcaSvc - ok
06:13:50.0308 0x1498 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
06:13:50.0321 0x1498 pci - ok
06:13:50.0355 0x1498 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
06:13:50.0385 0x1498 pciide - ok
06:13:50.0411 0x1498 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
06:13:50.0432 0x1498 pcmcia - ok
06:13:50.0437 0x1498 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
06:13:50.0450 0x1498 pcw - ok
06:13:50.0494 0x1498 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
06:13:50.0526 0x1498 PEAUTH - ok
06:13:50.0554 0x1498 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
06:13:50.0588 0x1498 PerfHost - ok
06:13:50.0716 0x1498 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
06:13:50.0778 0x1498 pla - ok
06:13:50.0835 0x1498 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
06:13:50.0868 0x1498 PlugPlay - ok
06:13:50.0896 0x1498 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
06:13:50.0919 0x1498 PNRPAutoReg - ok
06:13:50.0945 0x1498 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
06:13:50.0964 0x1498 PNRPsvc - ok
06:13:51.0005 0x1498 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
06:13:51.0053 0x1498 PolicyAgent - ok
06:13:51.0078 0x1498 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
06:13:51.0113 0x1498 Power - ok