Comodo cleaner esential mi hlasil rotkit

Zpráva

Davidov · #1 Příspěvek od **Davidov** » 28 dub 2013 21:42

Dobry den comodo mi hlasil rotkit tak prosim o overeni.Staci log v rsis nebo to chce neco jineho na rotkity diky.

#2 Příspěvek od **vyosek** » 28 dub 2013 22:17

Zdravim

Kde jej hlasi

Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/

Ulozte nejlepe na Plochu a rozbalte
Spustte kliknutim na mbanr
Nyni postupne kliknete na Next a Update
Po dokonceni update (aktualizace) databaze kliknete opet na Next
Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
PC bude restartovan
Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

Kliknete na volbu Change parametrs
V okne Additional Option zakliknete vsechny moznosti
Kliknete na OK
Utilite prikazte, at skenuje - klik na Start Scan
Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
Pokud mate vsude Skip, kliknete na Continue
Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

Davidov · #3 Příspěvek od **Davidov** » 28 dub 2013 22:48

Dobry den hlasilo mi to rootkit ve slozce system32 asi 9 souboru ale mel jsem zapnuty shadow defender tak jsem si rikal jestli to neovlivnuje MBR tak jsem ho vypnul a po restartu mi scan nic nehlasil zkousel jsem to 3 mozna to ovlivnila virtualizace v shadow defenderu.

Prikladam log z TDSS

23:39:39.0091 0580 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:39:39.0259 0580 ============================================================
23:39:39.0259 0580 Current date / time: 2013/04/28 23:39:39.0259
23:39:39.0259 0580 SystemInfo:
23:39:39.0259 0580
23:39:39.0259 0580 OS Version: 6.1.7601 ServicePack: 1.0
23:39:39.0259 0580 Product type: Workstation
23:39:39.0259 0580 ComputerName: DAVIDOV-PC
23:39:39.0259 0580 UserName: Davidov
23:39:39.0259 0580 Windows directory: C:\Windows
23:39:39.0259 0580 System windows directory: C:\Windows
23:39:39.0259 0580 Running under WOW64
23:39:39.0259 0580 Processor architecture: Intel x64
23:39:39.0260 0580 Number of processors: 4
23:39:39.0260 0580 Page size: 0x1000
23:39:39.0260 0580 Boot type: Normal boot
23:39:39.0260 0580 ============================================================
23:39:39.0497 0580 Drive \Device\Harddisk0\DR0 - Size: 0x7745D6000 (29.82 Gb), SectorSize: 0x200, Cylinders: 0xF34, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:39:39.0499 0580 Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:39:39.0526 0580 ============================================================
23:39:39.0526 0580 \Device\Harddisk0\DR0:
23:39:39.0526 0580 MBR partitions:
23:39:39.0526 0580 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3BA1800
23:39:39.0526 0580 \Device\Harddisk1\DR1:
23:39:39.0527 0580 MBR partitions:
23:39:39.0527 0580 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
23:39:39.0527 0580 ============================================================
23:39:39.0529 0580 C: <-> \Device\Harddisk0\DR0\Partition1
23:39:39.0534 0580 G: <-> \Device\Harddisk1\DR1\Partition1
23:39:39.0534 0580 ============================================================
23:39:39.0534 0580 Initialize success
23:39:39.0534 0580 ============================================================
23:40:07.0766 3896 ============================================================
23:40:07.0766 3896 Scan started
23:40:07.0766 3896 Mode: Manual; SigCheck; TDLFS;
23:40:07.0766 3896 ============================================================
23:40:08.0284 3896 ================ Scan system memory ========================
23:40:08.0284 3896 System memory - ok
23:40:08.0285 3896 ================ Scan services =============================
23:40:08.0335 3896 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
23:40:08.0423 3896 1394ohci - ok
23:40:08.0431 3896 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:40:08.0449 3896 ACPI - ok
23:40:08.0452 3896 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:40:08.0483 3896 AcpiPmi - ok
23:40:08.0491 3896 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:40:08.0508 3896 adp94xx - ok
23:40:08.0517 3896 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:40:08.0534 3896 adpahci - ok
23:40:08.0539 3896 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:40:08.0555 3896 adpu320 - ok
23:40:08.0560 3896 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:40:08.0628 3896 AeLookupSvc - ok
23:40:08.0636 3896 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
23:40:08.0663 3896 AFD - ok
23:40:08.0667 3896 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:40:08.0682 3896 agp440 - ok
23:40:08.0686 3896 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
23:40:08.0707 3896 ALG - ok
23:40:08.0709 3896 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
23:40:08.0723 3896 aliide - ok
23:40:08.0726 3896 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
23:40:08.0740 3896 amdide - ok
23:40:08.0743 3896 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:40:08.0762 3896 AmdK8 - ok
23:40:08.0765 3896 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:40:08.0786 3896 AmdPPM - ok
23:40:08.0791 3896 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:40:08.0806 3896 amdsata - ok
23:40:08.0811 3896 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
23:40:08.0828 3896 amdsbs - ok
23:40:08.0831 3896 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:40:08.0845 3896 amdxata - ok
23:40:08.0882 3896 [ D0D2878324CD8804DF7FE3813C25F42B ] AntiLog32 C:\Windows\system32\drivers\AntiLog64.sys
23:40:08.0906 3896 AntiLog32 - ok
23:40:08.0910 3896 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
23:40:08.0983 3896 AppID - ok
23:40:08.0986 3896 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:40:09.0021 3896 AppIDSvc - ok
23:40:09.0024 3896 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
23:40:09.0058 3896 Appinfo - ok
23:40:09.0063 3896 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
23:40:09.0078 3896 arc - ok
23:40:09.0082 3896 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:40:09.0097 3896 arcsas - ok
23:40:09.0110 3896 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:40:09.0131 3896 aspnet_state - ok
23:40:09.0138 3896 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:40:09.0172 3896 AsyncMac - ok
23:40:09.0175 3896 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
23:40:09.0189 3896 atapi - ok
23:40:09.0198 3896 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:40:09.0236 3896 AudioEndpointBuilder - ok
23:40:09.0245 3896 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:40:09.0280 3896 AudioSrv - ok
23:40:09.0286 3896 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:40:09.0309 3896 AxInstSV - ok
23:40:09.0317 3896 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
23:40:09.0338 3896 b06bdrv - ok
23:40:09.0344 3896 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:40:09.0366 3896 b57nd60a - ok
23:40:09.0373 3896 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
23:40:09.0392 3896 BDESVC - ok
23:40:09.0399 3896 [ 66116E0A4DA8407FF7F2AAACE52B8B54 ] bdfsfltr C:\Windows\system32\Drivers\bdfsfltr.sys
23:40:09.0416 3896 bdfsfltr - ok
23:40:09.0419 3896 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
23:40:09.0453 3896 Beep - ok
23:40:09.0463 3896 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
23:40:09.0501 3896 BFE - ok
23:40:09.0513 3896 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
23:40:09.0550 3896 BITS - ok
23:40:09.0553 3896 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:40:09.0571 3896 blbdrive - ok
23:40:09.0575 3896 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:40:09.0596 3896 bowser - ok
23:40:09.0599 3896 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
23:40:09.0621 3896 BrFiltLo - ok
23:40:09.0624 3896 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
23:40:09.0646 3896 BrFiltUp - ok
23:40:09.0650 3896 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
23:40:09.0669 3896 Browser - ok
23:40:09.0674 3896 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:40:09.0696 3896 Brserid - ok
23:40:09.0700 3896 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:40:09.0721 3896 BrSerWdm - ok
23:40:09.0724 3896 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:40:09.0746 3896 BrUsbMdm - ok
23:40:09.0749 3896 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:40:09.0769 3896 BrUsbSer - ok
23:40:09.0773 3896 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:40:09.0793 3896 BTHMODEM - ok
23:40:09.0798 3896 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
23:40:09.0831 3896 bthserv - ok
23:40:09.0835 3896 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:40:09.0867 3896 cdfs - ok
23:40:09.0871 3896 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:40:09.0892 3896 cdrom - ok
23:40:09.0895 3896 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
23:40:09.0927 3896 CertPropSvc - ok
23:40:09.0930 3896 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
23:40:09.0951 3896 circlass - ok
23:40:09.0957 3896 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
23:40:09.0974 3896 CLFS - ok
23:40:09.0979 3896 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:40:09.0994 3896 clr_optimization_v2.0.50727_32 - ok
23:40:10.0000 3896 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:40:10.0014 3896 clr_optimization_v2.0.50727_64 - ok
23:40:10.0023 3896 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:40:10.0047 3896 clr_optimization_v4.0.30319_32 - ok
23:40:10.0052 3896 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:40:10.0069 3896 clr_optimization_v4.0.30319_64 - ok
23:40:10.0072 3896 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
23:40:10.0090 3896 CmBatt - ok
23:40:10.0093 3896 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:40:10.0107 3896 cmdide - ok
23:40:10.0116 3896 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
23:40:10.0137 3896 CNG - ok
23:40:10.0141 3896 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
23:40:10.0154 3896 Compbatt - ok
23:40:10.0157 3896 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
23:40:10.0179 3896 CompositeBus - ok
23:40:10.0181 3896 COMSysApp - ok
23:40:10.0186 3896 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:40:10.0199 3896 crcdisk - ok
23:40:10.0204 3896 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
23:40:10.0213 3896 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
23:40:10.0213 3896 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
23:40:10.0235 3896 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:40:10.0255 3896 CryptSvc - ok
23:40:10.0263 3896 [ CACB67BC2E73894ECBCBC4EAD2F02456 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
23:40:10.0273 3896 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
23:40:10.0273 3896 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
23:40:10.0283 3896 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:40:10.0318 3896 DcomLaunch - ok
23:40:10.0324 3896 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
23:40:10.0359 3896 defragsvc - ok
23:40:10.0363 3896 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:40:10.0395 3896 DfsC - ok
23:40:10.0472 3896 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
23:40:10.0493 3896 Dhcp - ok
23:40:10.0496 3896 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
23:40:10.0528 3896 discache - ok
23:40:10.0532 3896 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
23:40:10.0547 3896 Disk - ok
23:40:10.0558 3896 [ 6E936EA8E233EBF44864B86810345665 ] diskpt C:\Windows\system32\drivers\diskpt.sys
23:40:10.0573 3896 diskpt - ok
23:40:10.0578 3896 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:40:10.0597 3896 Dnscache - ok
23:40:10.0602 3896 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:40:10.0636 3896 dot3svc - ok
23:40:10.0641 3896 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
23:40:10.0673 3896 DPS - ok
23:40:10.0676 3896 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:40:10.0695 3896 drmkaud - ok
23:40:10.0700 3896 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
23:40:10.0715 3896 dtsoftbus01 - ok
23:40:10.0729 3896 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:40:10.0752 3896 DXGKrnl - ok
23:40:10.0758 3896 [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
23:40:10.0773 3896 eamonm - ok
23:40:10.0777 3896 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
23:40:10.0810 3896 EapHost - ok
23:40:10.0841 3896 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
23:40:10.0881 3896 ebdrv - ok
23:40:10.0885 3896 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
23:40:10.0905 3896 EFS - ok
23:40:10.0911 3896 [ 9E39134330C18CBAC0F24C1283701D7E ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
23:40:10.0926 3896 ehdrv - ok
23:40:10.0952 3896 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
23:40:10.0979 3896 ekrn - ok
23:40:10.0987 3896 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:40:11.0005 3896 elxstor - ok
23:40:11.0011 3896 [ B4E8DC817963B256537B1EC09AF0647E ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
23:40:11.0025 3896 epfwwfpr - ok
23:40:11.0028 3896 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:40:11.0046 3896 ErrDev - ok
23:40:11.0058 3896 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
23:40:11.0094 3896 EventSystem - ok
23:40:11.0129 3896 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
23:40:11.0162 3896 exfat - ok
23:40:11.0167 3896 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:40:11.0200 3896 fastfat - ok
23:40:11.0209 3896 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
23:40:11.0233 3896 Fax - ok
23:40:11.0236 3896 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
23:40:11.0255 3896 fdc - ok
23:40:11.0258 3896 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
23:40:11.0291 3896 fdPHost - ok
23:40:11.0294 3896 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
23:40:11.0327 3896 FDResPub - ok
23:40:11.0331 3896 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:40:11.0345 3896 FileInfo - ok
23:40:11.0348 3896 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:40:11.0381 3896 Filetrace - ok
23:40:11.0384 3896 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
23:40:11.0402 3896 flpydisk - ok
23:40:11.0407 3896 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:40:11.0423 3896 FltMgr - ok
23:40:11.0436 3896 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
23:40:11.0462 3896 FontCache - ok
23:40:11.0466 3896 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:40:11.0479 3896 FontCache3.0.0.0 - ok
23:40:11.0485 3896 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:40:11.0498 3896 FsDepends - ok
23:40:11.0502 3896 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:40:11.0515 3896 Fs_Rec - ok
23:40:11.0520 3896 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:40:11.0539 3896 fvevol - ok
23:40:11.0543 3896 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:40:11.0557 3896 gagp30kx - ok
23:40:11.0579 3896 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
23:40:11.0615 3896 gpsvc - ok
23:40:11.0621 3896 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:40:11.0634 3896 gupdate - ok
23:40:11.0637 3896 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:40:11.0650 3896 gupdatem - ok
23:40:11.0653 3896 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:40:11.0672 3896 hcw85cir - ok
23:40:11.0678 3896 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:40:11.0700 3896 HdAudAddService - ok
23:40:11.0724 3896 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:40:11.0744 3896 HDAudBus - ok
23:40:11.0747 3896 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
23:40:11.0766 3896 HidBatt - ok
23:40:11.0770 3896 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:40:11.0790 3896 HidBth - ok
23:40:11.0793 3896 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
23:40:11.0814 3896 HidIr - ok
23:40:11.0818 3896 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
23:40:11.0851 3896 hidserv - ok
23:40:11.0854 3896 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:40:11.0872 3896 HidUsb - ok
23:40:11.0877 3896 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:40:11.0909 3896 hkmsvc - ok
23:40:11.0915 3896 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:40:11.0934 3896 HomeGroupListener - ok
23:40:11.0939 3896 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:40:11.0958 3896 HomeGroupProvider - ok
23:40:11.0962 3896 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:40:11.0977 3896 HpSAMD - ok
23:40:11.0986 3896 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:40:12.0021 3896 HTTP - ok
23:40:12.0025 3896 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:40:12.0038 3896 hwpolicy - ok
23:40:12.0042 3896 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:40:12.0060 3896 i8042prt - ok
23:40:12.0067 3896 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:40:12.0085 3896 iaStorV - ok
23:40:12.0097 3896 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:40:12.0118 3896 idsvc - ok
23:40:12.0121 3896 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:40:12.0134 3896 iirsp - ok
23:40:12.0145 3896 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
23:40:12.0181 3896 IKEEXT - ok
23:40:12.0186 3896 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
23:40:12.0200 3896 intelide - ok
23:40:12.0205 3896 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
23:40:12.0223 3896 intelppm - ok
23:40:12.0227 3896 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:40:12.0260 3896 IPBusEnum - ok
23:40:12.0264 3896 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:40:12.0297 3896 IpFilterDriver - ok
23:40:12.0305 3896 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:40:12.0328 3896 iphlpsvc - ok
23:40:12.0332 3896 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:40:12.0351 3896 IPMIDRV - ok
23:40:12.0355 3896 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:40:12.0387 3896 IPNAT - ok
23:40:12.0390 3896 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:40:12.0411 3896 IRENUM - ok
23:40:12.0414 3896 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:40:12.0427 3896 isapnp - ok
23:40:12.0433 3896 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:40:12.0449 3896 iScsiPrt - ok
23:40:12.0453 3896 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:40:12.0466 3896 kbdclass - ok
23:40:12.0469 3896 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:40:12.0487 3896 kbdhid - ok
23:40:12.0490 3896 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
23:40:12.0509 3896 KeyIso - ok
23:40:12.0518 3896 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:40:12.0532 3896 KSecDD - ok
23:40:12.0537 3896 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:40:12.0551 3896 KSecPkg - ok
23:40:12.0554 3896 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:40:12.0587 3896 ksthunk - ok
23:40:12.0593 3896 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
23:40:12.0630 3896 KtmRm - ok
23:40:12.0638 3896 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:40:12.0671 3896 LanmanServer - ok
23:40:12.0675 3896 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:40:12.0709 3896 LanmanWorkstation - ok
23:40:12.0716 3896 [ 4ADC135F525D38A498F83B089228CC2D ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
23:40:12.0732 3896 LBTServ - ok
23:40:12.0738 3896 [ 24E09882BA51B9830AE029888A3AAF18 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
23:40:12.0751 3896 LHidFilt - ok
23:40:12.0754 3896 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:40:12.0788 3896 lltdio - ok
23:40:12.0793 3896 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:40:12.0827 3896 lltdsvc - ok
23:40:12.0831 3896 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:40:12.0863 3896 lmhosts - ok
23:40:12.0867 3896 [ 2F94325D8C10E2B715F3D753C2422AAC ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
23:40:12.0880 3896 LMouFilt - ok
23:40:12.0886 3896 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:40:12.0899 3896 LSI_FC - ok
23:40:12.0903 3896 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:40:12.0918 3896 LSI_SAS - ok
23:40:12.0932 3896 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
23:40:12.0946 3896 LSI_SAS2 - ok
23:40:12.0950 3896 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:40:12.0964 3896 LSI_SCSI - ok
23:40:12.0969 3896 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
23:40:13.0002 3896 luafv - ok
23:40:13.0006 3896 [ B8BE35421B9E8DC1AB4B0CB7B9B0328B ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
23:40:13.0018 3896 LUsbFilt - ok
23:40:13.0022 3896 [ 31C6AFFFAD7C733A65F888929548BC22 ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
23:40:13.0035 3896 mbamchameleon - ok
23:40:13.0047 3896 [ 77CCD845AF646972AF0C5BEFE81932CB ] mbamswissarmy C:\Windows\system32\drivers\mbamswissarmy.sys
23:40:13.0060 3896 mbamswissarmy - ok
23:40:13.0064 3896 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
23:40:13.0078 3896 megasas - ok
23:40:13.0083 3896 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
23:40:13.0099 3896 MegaSR - ok
23:40:13.0105 3896 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
23:40:13.0137 3896 MMCSS - ok
23:40:13.0141 3896 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
23:40:13.0174 3896 Modem - ok
23:40:13.0177 3896 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:40:13.0198 3896 monitor - ok
23:40:13.0201 3896 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:40:13.0216 3896 mouclass - ok
23:40:13.0219 3896 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:40:13.0237 3896 mouhid - ok
23:40:13.0244 3896 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:40:13.0257 3896 mountmgr - ok
23:40:13.0261 3896 [ 9CE4C8A46B585EB5103EFE5FDEF3703F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:40:13.0274 3896 MozillaMaintenance - ok
23:40:13.0278 3896 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
23:40:13.0293 3896 mpio - ok
23:40:13.0297 3896 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:40:13.0330 3896 mpsdrv - ok
23:40:13.0340 3896 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:40:13.0378 3896 MpsSvc - ok
23:40:13.0389 3896 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:40:13.0410 3896 MRxDAV - ok
23:40:13.0435 3896 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:40:13.0454 3896 mrxsmb - ok
23:40:13.0469 3896 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:40:13.0488 3896 mrxsmb10 - ok
23:40:13.0513 3896 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:40:13.0531 3896 mrxsmb20 - ok
23:40:13.0534 3896 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
23:40:13.0548 3896 msahci - ok
23:40:13.0557 3896 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:40:13.0571 3896 msdsm - ok
23:40:13.0575 3896 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
23:40:13.0595 3896 MSDTC - ok
23:40:13.0602 3896 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:40:13.0633 3896 Msfs - ok
23:40:13.0636 3896 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:40:13.0668 3896 mshidkmdf - ok
23:40:13.0675 3896 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:40:13.0688 3896 msisadrv - ok
23:40:13.0693 3896 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:40:13.0727 3896 MSiSCSI - ok
23:40:13.0730 3896 msiserver - ok
23:40:13.0733 3896 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:40:13.0765 3896 MSKSSRV - ok
23:40:13.0769 3896 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:40:13.0801 3896 MSPCLOCK - ok
23:40:13.0804 3896 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:40:13.0836 3896 MSPQM - ok
23:40:13.0843 3896 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:40:13.0859 3896 MsRPC - ok
23:40:13.0872 3896 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:40:13.0886 3896 mssmbios - ok
23:40:13.0889 3896 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:40:13.0921 3896 MSTEE - ok
23:40:13.0932 3896 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
23:40:13.0950 3896 MTConfig - ok
23:40:13.0964 3896 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
23:40:13.0977 3896 Mup - ok
23:40:13.0986 3896 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
23:40:14.0020 3896 napagent - ok
23:40:14.0037 3896 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:40:14.0060 3896 NativeWifiP - ok
23:40:14.0074 3896 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:40:14.0096 3896 NDIS - ok
23:40:14.0105 3896 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:40:14.0137 3896 NdisCap - ok
23:40:14.0145 3896 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:40:14.0177 3896 NdisTapi - ok
23:40:14.0185 3896 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:40:14.0217 3896 Ndisuio - ok
23:40:14.0225 3896 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:40:14.0257 3896 NdisWan - ok
23:40:14.0262 3896 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:40:14.0296 3896 NDProxy - ok
23:40:14.0306 3896 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:40:14.0339 3896 NetBIOS - ok
23:40:14.0347 3896 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:40:14.0382 3896 NetBT - ok
23:40:14.0387 3896 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
23:40:14.0407 3896 Netlogon - ok
23:40:14.0413 3896 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
23:40:14.0450 3896 Netman - ok
23:40:14.0454 3896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:14.0470 3896 NetMsmqActivator - ok
23:40:14.0488 3896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:14.0500 3896 NetPipeActivator - ok
23:40:14.0508 3896 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
23:40:14.0544 3896 netprofm - ok
23:40:14.0547 3896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:14.0562 3896 NetTcpActivator - ok
23:40:14.0565 3896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:14.0577 3896 NetTcpPortSharing - ok
23:40:14.0581 3896 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:40:14.0594 3896 nfrd960 - ok
23:40:14.0612 3896 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:40:14.0632 3896 NlaSvc - ok
23:40:14.0636 3896 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:40:14.0669 3896 Npfs - ok
23:40:14.0704 3896 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
23:40:14.0735 3896 nsi - ok
23:40:14.0738 3896 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:40:14.0769 3896 nsiproxy - ok
23:40:14.0788 3896 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:40:14.0818 3896 Ntfs - ok
23:40:14.0864 3896 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
23:40:14.0895 3896 Null - ok
23:40:15.0008 3896 [ 26AA3C7E6E1DB7107BF93503F6F57E88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:40:15.0123 3896 nvlddmkm - ok
23:40:15.0130 3896 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:40:15.0145 3896 nvraid - ok
23:40:15.0149 3896 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:40:15.0165 3896 nvstor - ok
23:40:15.0186 3896 [ A83AC04D672567CAF8BE7A4D73C0B850 ] nvsvc C:\Windows\system32\nvvsvc.exe
23:40:15.0207 3896 nvsvc - ok
23:40:15.0230 3896 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:40:15.0244 3896 nv_agp - ok
23:40:15.0247 3896 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:40:15.0266 3896 ohci1394 - ok
23:40:15.0293 3896 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:40:15.0314 3896 p2pimsvc - ok
23:40:15.0321 3896 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
23:40:15.0342 3896 p2psvc - ok
23:40:15.0346 3896 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
23:40:15.0365 3896 Parport - ok
23:40:15.0387 3896 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:40:15.0401 3896 partmgr - ok
23:40:15.0405 3896 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:40:15.0428 3896 PcaSvc - ok
23:40:15.0441 3896 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
23:40:15.0455 3896 pci - ok
23:40:15.0458 3896 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
23:40:15.0472 3896 pciide - ok
23:40:15.0508 3896 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:40:15.0524 3896 pcmcia - ok
23:40:15.0527 3896 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
23:40:15.0541 3896 pcw - ok
23:40:15.0549 3896 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:40:15.0587 3896 PEAUTH - ok
23:40:15.0606 3896 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:40:15.0626 3896 PerfHost - ok
23:40:15.0662 3896 [ 563A380DFB29E083DE4037E7C1EE1E5B ] PhenomMsrTweaker C:\Program Files\PhenomMsrTweaker\PhenomMsrTweakerService.exe
23:40:15.0671 3896 PhenomMsrTweaker ( UnsignedFile.Multi.Generic ) - warning
23:40:15.0671 3896 PhenomMsrTweaker - detected UnsignedFile.Multi.Generic (1)
23:40:15.0686 3896 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
23:40:15.0728 3896 pla - ok
23:40:15.0742 3896 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:40:15.0762 3896 PlugPlay - ok
23:40:15.0764 3896 PnkBstrA - ok
23:40:15.0769 3896 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:40:15.0788 3896 PNRPAutoReg - ok
23:40:15.0793 3896 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:40:15.0814 3896 PNRPsvc - ok
23:40:15.0841 3896 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:40:15.0875 3896 PolicyAgent - ok
23:40:15.0919 3896 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
23:40:15.0954 3896 Power - ok
23:40:15.0958 3896 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:40:15.0990 3896 PptpMiniport - ok
23:40:15.0998 3896 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
23:40:16.0016 3896 Processor - ok
23:40:16.0021 3896 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
23:40:16.0041 3896 ProfSvc - ok
23:40:16.0067 3896 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:40:16.0086 3896 ProtectedStorage - ok
23:40:16.0090 3896 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:40:16.0121 3896 Psched - ok
23:40:16.0141 3896 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:40:16.0168 3896 ql2300 - ok
23:40:16.0173 3896 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:40:16.0188 3896 ql40xx - ok
23:40:16.0193 3896 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
23:40:16.0217 3896 QWAVE - ok
23:40:16.0220 3896 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:40:16.0241 3896 QWAVEdrv - ok
23:40:16.0246 3896 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:40:16.0278 3896 RasAcd - ok
23:40:16.0281 3896 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:40:16.0314 3896 RasAgileVpn - ok
23:40:16.0318 3896 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
23:40:16.0353 3896 RasAuto - ok
23:40:16.0357 3896 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:40:16.0391 3896 Rasl2tp - ok
23:40:16.0398 3896 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
23:40:16.0433 3896 RasMan - ok
23:40:16.0437 3896 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:40:16.0470 3896 RasPppoe - ok
23:40:16.0480 3896 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:40:16.0513 3896 RasSstp - ok
23:40:16.0529 3896 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:40:16.0562 3896 rdbss - ok
23:40:16.0591 3896 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
23:40:16.0611 3896 rdpbus - ok
23:40:16.0627 3896 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:40:16.0659 3896 RDPCDD - ok
23:40:16.0664 3896 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:40:16.0698 3896 RDPENCDD - ok
23:40:16.0745 3896 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:40:16.0777 3896 RDPREFMP - ok
23:40:16.0784 3896 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:40:16.0802 3896 RdpVideoMiniport - ok
23:40:16.0832 3896 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:40:16.0852 3896 RDPWD - ok
23:40:16.0857 3896 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:40:16.0872 3896 rdyboost - ok
23:40:16.0901 3896 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:40:16.0934 3896 RemoteAccess - ok
23:40:16.0941 3896 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:40:16.0975 3896 RemoteRegistry - ok
23:40:16.0978 3896 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:40:17.0011 3896 RpcEptMapper - ok
23:40:17.0014 3896 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
23:40:17.0033 3896 RpcLocator - ok
23:40:17.0041 3896 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
23:40:17.0076 3896 RpcSs - ok
23:40:17.0080 3896 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:40:17.0113 3896 rspndr - ok
23:40:17.0118 3896 [ ABCB5A38A0D85BDF69B7877E1AD1EED5 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:40:17.0145 3896 RTL8167 - ok
23:40:17.0149 3896 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
23:40:17.0167 3896 SamSs - ok
23:40:17.0173 3896 [ CCBF62280DAF6D94A4C73E391CDAC68C ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
23:40:17.0191 3896 SbieDrv - ok
23:40:17.0194 3896 [ 8A1F63C6EC01C56C9EC4C681E593FE34 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
23:40:17.0207 3896 SbieSvc - ok
23:40:17.0210 3896 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:40:17.0224 3896 sbp2port - ok
23:40:17.0229 3896 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:40:17.0264 3896 SCardSvr - ok
23:40:17.0267 3896 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:40:17.0299 3896 scfilter - ok
23:40:17.0313 3896 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
23:40:17.0353 3896 Schedule - ok
23:40:17.0357 3896 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:40:17.0388 3896 SCPolicySvc - ok
23:40:17.0393 3896 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:40:17.0412 3896 SDRSVC - ok
23:40:17.0416 3896 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:40:17.0448 3896 secdrv - ok
23:40:17.0451 3896 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
23:40:17.0482 3896 seclogon - ok
23:40:17.0486 3896 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
23:40:17.0519 3896 SENS - ok
23:40:17.0524 3896 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:40:17.0542 3896 SensrSvc - ok
23:40:17.0546 3896 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:40:17.0564 3896 Serenum - ok
23:40:17.0568 3896 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:40:17.0586 3896 Serial - ok
23:40:17.0589 3896 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:40:17.0607 3896 sermouse - ok
23:40:17.0616 3896 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
23:40:17.0649 3896 SessionEnv - ok
23:40:17.0653 3896 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:40:17.0672 3896 sffdisk - ok
23:40:17.0676 3896 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:40:17.0695 3896 sffp_mmc - ok
23:40:17.0698 3896 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:40:17.0717 3896 sffp_sd - ok
23:40:17.0720 3896 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:40:17.0739 3896 sfloppy - ok
23:40:17.0745 3896 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:40:17.0780 3896 SharedAccess - ok
23:40:17.0788 3896 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:40:17.0822 3896 ShellHWDetection - ok
23:40:17.0825 3896 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
23:40:17.0838 3896 SiSRaid2 - ok
23:40:17.0841 3896 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:40:17.0855 3896 SiSRaid4 - ok
23:40:17.0859 3896 [ 01ACB9228C303DE1FFF82B807D28B2B0 ] skfiltv C:\Windows\system32\drivers\skfiltv.sys
23:40:17.0877 3896 skfiltv - ok
23:40:17.0881 3896 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:40:17.0915 3896 Smb - ok
23:40:17.0922 3896 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:40:17.0941 3896 SNMPTRAP - ok
23:40:17.0944 3896 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
23:40:17.0958 3896 spldr - ok
23:40:17.0965 3896 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
23:40:17.0986 3896 Spooler - ok
23:40:18.0021 3896 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
23:40:18.0080 3896 sppsvc - ok
23:40:18.0084 3896 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:40:18.0118 3896 sppuinotify - ok
23:40:18.0125 3896 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
23:40:18.0146 3896 srv - ok
23:40:18.0153 3896 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:40:18.0173 3896 srv2 - ok
23:40:18.0178 3896 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:40:18.0196 3896 srvnet - ok
23:40:18.0201 3896 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:40:18.0237 3896 SSDPSRV - ok
23:40:18.0240 3896 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:40:18.0275 3896 SstpSvc - ok
23:40:18.0278 3896 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
23:40:18.0292 3896 stexstor - ok
23:40:18.0300 3896 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
23:40:18.0328 3896 stisvc - ok
23:40:18.0331 3896 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:40:18.0344 3896 swenum - ok
23:40:18.0352 3896 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
23:40:18.0388 3896 swprv - ok
23:40:18.0408 3896 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
23:40:18.0442 3896 SysMain - ok
23:40:18.0447 3896 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:40:18.0469 3896 TabletInputService - ok
23:40:18.0475 3896 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:40:18.0509 3896 TapiSrv - ok
23:40:18.0512 3896 TBPanel - ok
23:40:18.0517 3896 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
23:40:18.0552 3896 TBS - ok
23:40:18.0579 3896 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:40:18.0608 3896 Tcpip - ok
23:40:18.0629 3896 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:40:18.0658 3896 TCPIP6 - ok
23:40:18.0664 3896 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:40:18.0681 3896 tcpipreg - ok
23:40:18.0685 3896 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:40:18.0703 3896 TDPIPE - ok
23:40:18.0706 3896 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:40:18.0724 3896 TDTCP - ok
23:40:18.0728 3896 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:40:18.0759 3896 tdx - ok
23:40:18.0762 3896 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:40:18.0775 3896 TermDD - ok
23:40:18.0786 3896 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
23:40:18.0822 3896 TermService - ok
23:40:18.0825 3896 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
23:40:18.0847 3896 Themes - ok
23:40:18.0851 3896 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
23:40:18.0884 3896 THREADORDER - ok
23:40:18.0888 3896 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
23:40:18.0921 3896 TrkWks - ok
23:40:18.0925 3896 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:40:18.0959 3896 TrustedInstaller - ok
23:40:18.0964 3896 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:40:18.0995 3896 tssecsrv - ok
23:40:18.0999 3896 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:40:19.0016 3896 TsUsbFlt - ok
23:40:19.0020 3896 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
23:40:19.0040 3896 TsUsbGD - ok
23:40:19.0045 3896 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:40:19.0077 3896 tunnel - ok
23:40:19.0080 3896 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:40:19.0094 3896 uagp35 - ok
23:40:19.0100 3896 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:40:19.0134 3896 udfs - ok
23:40:19.0141 3896 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:40:19.0160 3896 UI0Detect - ok
23:40:19.0163 3896 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:40:19.0177 3896 uliagpkx - ok
23:40:19.0181 3896 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:40:19.0199 3896 umbus - ok
23:40:19.0201 3896 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
23:40:19.0220 3896 UmPass - ok
23:40:19.0226 3896 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
23:40:19.0261 3896 upnphost - ok
23:40:19.0265 3896 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:40:19.0286 3896 usbaudio - ok
23:40:19.0290 3896 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:40:19.0308 3896 usbccgp - ok
23:40:19.0312 3896 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:40:19.0334 3896 usbcir - ok
23:40:19.0337 3896 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:40:19.0356 3896 usbehci - ok
23:40:19.0362 3896 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:40:19.0381 3896 usbhub - ok
23:40:19.0385 3896 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
23:40:19.0404 3896 usbohci - ok
23:40:19.0407 3896 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
23:40:19.0427 3896 usbprint - ok
23:40:19.0431 3896 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:40:19.0449 3896 USBSTOR - ok
23:40:19.0452 3896 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:40:19.0470 3896 usbuhci - ok
23:40:19.0474 3896 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
23:40:19.0508 3896 UxSms - ok
23:40:19.0510 3896 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
23:40:19.0530 3896 VaultSvc - ok
23:40:19.0533 3896 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:40:19.0547 3896 vdrvroot - ok
23:40:19.0555 3896 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
23:40:19.0591 3896 vds - ok
23:40:19.0594 3896 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:40:19.0614 3896 vga - ok
23:40:19.0617 3896 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
23:40:19.0650 3896 VgaSave - ok
23:40:19.0655 3896 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:40:19.0670 3896 vhdmp - ok
23:40:19.0673 3896 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
23:40:19.0686 3896 viaide - ok
23:40:19.0690 3896 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:40:19.0704 3896 volmgr - ok
23:40:19.0709 3896 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:40:19.0726 3896 volmgrx - ok
23:40:19.0732 3896 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:40:19.0748 3896 volsnap - ok
23:40:19.0753 3896 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:40:19.0768 3896 vsmraid - ok
23:40:19.0785 3896 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
23:40:19.0828 3896 VSS - ok
23:40:19.0832 3896 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
23:40:19.0852 3896 vwifibus - ok
23:40:19.0858 3896 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
23:40:19.0895 3896 W32Time - ok
23:40:19.0900 3896 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:40:19.0918 3896 WacomPen - ok
23:40:19.0922 3896 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:40:19.0953 3896 WANARP - ok
23:40:19.0956 3896 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:40:19.0988 3896 Wanarpv6 - ok
23:40:20.0033 3896 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:40:20.0057 3896 WatAdminSvc - ok
23:40:20.0082 3896 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
23:40:20.0111 3896 wbengine - ok
23:40:20.0116 3896 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:40:20.0139 3896 WbioSrvc - ok
23:40:20.0145 3896 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:40:20.0169 3896 wcncsvc - ok
23:40:20.0172 3896 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:40:20.0193 3896 WcsPlugInService - ok
23:40:20.0196 3896 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
23:40:20.0209 3896 Wd - ok
23:40:20.0219 3896 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:40:20.0241 3896 Wdf01000 - ok
23:40:20.0244 3896 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:40:20.0268 3896 WdiServiceHost - ok
23:40:20.0271 3896 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:40:20.0292 3896 WdiSystemHost - ok
23:40:20.0297 3896 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
23:40:20.0320 3896 WebClient - ok
23:40:20.0325 3896 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:40:20.0359 3896 Wecsvc - ok
23:40:20.0362 3896 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:40:20.0396 3896 wercplsupport - ok
23:40:20.0400 3896 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
23:40:20.0433 3896 WerSvc - ok
23:40:20.0436 3896 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:40:20.0468 3896 WfpLwf - ok
23:40:20.0471 3896 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:40:20.0485 3896 WIMMount - ok
23:40:20.0488 3896 WinDefend - ok
23:40:20.0502 3896 [ CA84C2A0D1F70AF0A990130BB3CF4AAD ] Windows7FirewallService C:\Program Files\Windows7FirewallControl\Windows7FirewallService.exe
23:40:20.0517 3896 Windows7FirewallService ( UnsignedFile.Multi.Generic ) - warning
23:40:20.0517 3896 Windows7FirewallService - detected UnsignedFile.Multi.Generic (1)
23:40:20.0519 3896 WinHttpAutoProxySvc - ok
23:40:20.0528 3896 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:40:20.0562 3896 Winmgmt - ok
23:40:20.0564 3896 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:\Program Files\PhenomMsrTweaker\WinRing0x64.sys
23:40:20.0578 3896 WinRing0_1_2_0 - ok
23:40:20.0599 3896 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
23:40:20.0644 3896 WinRM - ok
23:40:20.0657 3896 [ F514C1C9D814F3DB46A17C59EA8214B2 ] WiseBootAssistant C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe
23:40:20.0675 3896 WiseBootAssistant - ok
23:40:20.0691 3896 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
23:40:20.0718 3896 Wlansvc - ok
23:40:20.0722 3896 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:40:20.0740 3896 WmiAcpi - ok
23:40:20.0746 3896 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:40:20.0766 3896 wmiApSrv - ok
23:40:20.0769 3896 WMPNetworkSvc - ok
23:40:20.0773 3896 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:40:20.0792 3896 WPCSvc - ok
23:40:20.0796 3896 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:40:20.0817 3896 WPDBusEnum - ok
23:40:20.0820 3896 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:40:20.0853 3896 ws2ifsl - ok
23:40:20.0857 3896 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
23:40:20.0880 3896 wscsvc - ok
23:40:20.0882 3896 WSearch - ok
23:40:20.0918 3896 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
23:40:20.0953 3896 wuauserv - ok
23:40:20.0958 3896 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:40:20.0976 3896 WudfPf - ok
23:40:20.0981 3896 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:40:21.0002 3896 WUDFRd - ok
23:40:21.0006 3896 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:40:21.0027 3896 wudfsvc - ok
23:40:21.0032 3896 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
23:40:21.0056 3896 WwanSvc - ok
23:40:21.0061 3896 ================ Scan global ===============================
23:40:21.0064 3896 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:40:21.0069 3896 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:40:21.0077 3896 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:40:21.0082 3896 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:40:21.0089 3896 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:40:21.0092 3896 [Global] - ok
23:40:21.0092 3896 ================ Scan MBR ==================================
23:40:21.0094 3896 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:40:21.0217 3896 \Device\Harddisk0\DR0 - ok
23:40:21.0240 3896 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
23:40:21.0410 3896 \Device\Harddisk1\DR1 - ok
23:40:21.0410 3896 ================ Scan VBR ==================================
23:40:21.0412 3896 [ AB601CB55902DDD4237641E78B479E0D ] \Device\Harddisk0\DR0\Partition1
23:40:21.0413 3896 \Device\Harddisk0\DR0\Partition1 - ok
23:40:21.0417 3896 [ 0D596A28F99193D9E3DEA0053F8C0C56 ] \Device\Harddisk1\DR1\Partition1
23:40:21.0419 3896 \Device\Harddisk1\DR1\Partition1 - ok
23:40:21.0420 3896 ============================================================
23:40:21.0420 3896 Scan finished
23:40:21.0420 3896 ============================================================
23:40:21.0426 0952 Detected object count: 4
23:40:21.0426 0952 Actual detected object count: 4
23:40:42.0209 0952 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
23:40:42.0209 0952 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:40:42.0210 0952 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
23:40:42.0211 0952 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:40:42.0212 0952 PhenomMsrTweaker ( UnsignedFile.Multi.Generic ) - skipped by user
23:40:42.0212 0952 PhenomMsrTweaker ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:40:42.0213 0952 Windows7FirewallService ( UnsignedFile.Multi.Generic ) - skipped by user
23:40:42.0213 0952 Windows7FirewallService ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:40:47.0477 1932 Deinitialize success

log z Mbam anti-rootkit
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.05.0.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 10.0.9200.16540

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, G:\ DRIVE_FIXED
CPU speed: 3.716000 GHz
Memory total: 8586305536, free: 7136362496

------------ Kernel report ------------
04/28/2013 23:38:21
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\SYSTEM32\drivers\diskpt.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\dtsoftbus01.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\eamonm.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\ehdrv.sys
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\??\C:\Windows\system32\drivers\AntiLog64.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\amdppm.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\Rt64win7.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\1394ohci.sys
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\HdAudio.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_msahci.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\drivers\usbaudio.sys
\SystemRoot\system32\drivers\skfiltv.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\??\C:\Windows\system32\Drivers\bdfsfltr.sys
\SystemRoot\System32\Drivers\LUsbFilt.Sys
\SystemRoot\system32\DRIVERS\LHidFilt.Sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\LMouFilt.Sys
\SystemRoot\system32\DRIVERS\kbdhid.sys
\??\C:\Program Files\Sandboxie\SbieDrv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\DRIVERS\epfwwfpr.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\??\C:\Program Files\PhenomMsrTweaker\WinRing0x64.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\gdi32.dll
\Windows\System32\lpk.dll
\Windows\System32\shlwapi.dll
\Windows\System32\setupapi.dll
\Windows\System32\psapi.dll
\Windows\System32\iertutil.dll
\Windows\System32\advapi32.dll
\Windows\System32\imm32.dll
\Windows\System32\msctf.dll
\Windows\System32\ws2_32.dll
\Windows\System32\shell32.dll
\Windows\System32\usp10.dll
\Windows\System32\user32.dll
\Windows\System32\msvcrt.dll
\Windows\System32\oleaut32.dll
\Windows\System32\Wldap32.dll
\Windows\System32\ole32.dll
\Windows\System32\comdlg32.dll
\Windows\System32\difxapi.dll
\Windows\System32\sechost.dll
\Windows\System32\kernel32.dll
\Windows\System32\urlmon.dll
\Windows\System32\imagehlp.dll
\Windows\System32\nsi.dll
\Windows\System32\clbcatq.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\wininet.dll
\Windows\System32\normaliz.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\comctl32.dll
\Windows\System32\crypt32.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\wintrust.dll
\Windows\System32\KernelBase.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\devobj.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\msasn1.dll
\Windows\SysWOW64\normaliz.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR1
Upper Device Object: 0xfffffa8008814790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\00000077\
Lower Device Object: 0xfffffa800880f6d0
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
Initialization returned 0x0
Load Function returned 0x0
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa8007a60060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP4T0L0-6\
Lower Device Object: 0xfffffa8006b29680
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\ataport.sys (0x0)
Load Function returned 0x0
Downloaded database version: v2013.04.28.04
Downloaded database version: v2013.04.25.01
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 1
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa8007a60060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8007a60b30, DeviceName: Unknown, DriverName: \Driver\diskpt\
DevicePointer: 0xfffffa8007950890, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8007a60060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8006b29680, DeviceName: \Device\Ide\IdeDeviceP4T0L0-6\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: Unknown, DriverName: \Driver\partmgr\
Upper DeviceData: 0xfffff8a00808caf0, 0xfffffa8007a60060, 0xfffffa80075c2790
Lower DeviceData: 0xfffff8a007f2f1c0, 0xfffffa8006b29680, 0xfffffa800757e090
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 1
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: BD151149

Partition information:

Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 62527488
Partition file system is NTFS
Partition is bootable

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 32017047552 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-2047-62513296-62533296)...
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa8008814790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8008815040, DeviceName: Unknown, DriverName: \Driver\diskpt\
DevicePointer: 0xfffffa80079f9b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8008814790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800880f6d0, DeviceName: \Device\00000077\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: Unknown, DriverName: \Driver\partmgr\
Upper DeviceData: 0xfffff8a00802aac0, 0xfffffa8008814790, 0xfffffa80075cf790
Lower DeviceData: 0xfffff8a001ef9560, 0xfffffa800880f6d0, 0xfffffa80075c07e0
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 7BC1B137

Partition information:

Partition 0 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 63 Numsec = 488392002

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 250059350016 bytes
Sector size: 512 bytes

Done!
Performing system, memory and registry scan...
Done!
Scan finished
=======================================

#4 Příspěvek od **vyosek** » 29 dub 2013 22:06

Zda se mi to ciste

Davidov · #5 Příspěvek od **Davidov** » 30 dub 2013 19:43

nemuzeme udelat jeste nejaky test treba pres GMER cetl jsem ze se vnem da analizovat lepe ale pokud to staci tak dekuji:))

#6 Příspěvek od **vyosek** » 01 kvě 2013 08:02

Gmer neni treba, zas to s tou paranoiou neprehanejte...

Nemate zac

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Comodo cleaner esential mi hlasil rotkit

Comodo cleaner esential mi hlasil rotkit

Re: Comodo cleaner esential mi hlasil rotkit

Re: Comodo cleaner esential mi hlasil rotkit

Re: Comodo cleaner esential mi hlasil rotkit

Re: Comodo cleaner esential mi hlasil rotkit

Re: Comodo cleaner esential mi hlasil rotkit