Problem s Security shield

Zpráva

Masso · #1 Příspěvek od **Masso** » 12 pro 2011 20:11

Dobry den,

dnes pri spusteni pc sa mi zaroven spustil aj tento "antivirovy" program, ktory je samozrejme nechceny. Skusal som vytvorit opravny registracny script (ucbsv) ako som nasiel pri rieseni podobneho problemu ale nefungoval, preto poprosim o pomoc. Prikladam log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Masso at 2011-12-12 20:01:32
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 5 GB (2%) free of 297 GB
Total RAM: 2045 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:01:45, on 12.12.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Safe mode with network support

Running processes:
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files\trend micro\Masso.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\TRANSLAT\WebIE.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\TRANSLAT\WebIE.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\RunOnce: [ytpfz] C:\Users\Masso\AppData\Local\ytpfz.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: Translator Settings - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: &Vocabulary - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: Translate Marked Text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: Translate Web Page - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\TRANSLAT\WebIE.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21bd21dd0a38d98e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21bd21dd0a38d98e\STacSV64.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - c:\Windows\system32\vfsFPService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8972 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
ctfmon.exe
"C:\Program Files (x86)\Opera\opera.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\Masso\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\TRANSLAT\WebIE.dll [2011-06-30 503808]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
BS Player Toolbar - C:\Program Files (x86)\BS_Player\tbBS_P.dll [2009-05-20 2085400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2011-01-20 1581376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - BS Player Toolbar - C:\Program Files (x86)\BS_Player\tbBS_P.dll [2009-05-20 2085400]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\TRANSLAT\WebIE.dll [2011-06-30 503808]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-20 988480]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-09-13 15935520]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-09-13 82464]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2008-09-11 441344]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2716216]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Nektra OEAPI"= []
"OEXPRESS"= []
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"KiesHelper"=C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe [2011-11-29 935312]
"KiesPDLR"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2011-11-29 21392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"ytpfz"=C:\Users\Masso\AppData\Local\ytpfz.exe [2011-12-12 384512]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2010-01-13 37888]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"NBAgent"=C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2011-11-29 3508624]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.reg - open - "regedit.exe" "%1"

======List of files/folders created in the last 1 month======

2011-12-12 20:01:33 ----D---- C:\Program Files\trend micro
2011-12-12 20:01:32 ----D---- C:\rsit
2011-12-12 19:28:31 ----A---- C:\Windows\ntbtlog.txt
2011-12-12 15:25:11 ----D---- C:\Windows\system32\appmgmt
2011-12-12 14:35:39 ----D---- C:\Program Files\ESET
2011-12-12 12:57:43 ----D---- C:\Temp
2011-12-12 12:56:41 ----D---- C:\Users\Masso\AppData\Roaming\Samsung
2011-12-10 17:07:39 ----A---- C:\Windows\system32\WdfCoInstaller01005.dll
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\WdfCoInstaller01005.dll
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadwhnt.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadwh.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadserd.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadmdm.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadmdfl.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadcmnt.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadcm.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadbus.sys
2011-12-10 17:07:39 ----A---- C:\Windows\system32\drivers\ssadadb.sys
2011-12-10 17:06:03 ----A---- C:\Windows\SYSWOW64\Redemption.dll
2011-12-10 17:05:47 ----D---- C:\Program Files (x86)\MarkAny
2011-12-10 17:05:47 ----A---- C:\Windows\SYSWOW64\dgderapi.dll
2011-12-10 17:05:12 ----D---- C:\ProgramData\Samsung
2011-12-10 17:05:12 ----D---- C:\Program Files (x86)\Samsung
2011-12-09 21:32:54 ----A---- C:\Windows\WINCMD.INI
2011-12-09 20:09:33 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2011-12-09 20:09:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2011-12-09 20:09:33 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2011-12-09 20:09:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2011-12-09 20:09:33 ----A---- C:\Windows\system32\XAudio2_7.dll
2011-12-09 20:09:33 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2011-12-09 20:09:33 ----A---- C:\Windows\system32\xactengine3_7.dll
2011-12-09 20:09:33 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2011-12-09 20:09:32 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2011-12-09 20:09:32 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2011-12-09 20:09:32 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2011-12-09 20:09:32 ----A---- C:\Windows\system32\d3dx11_43.dll
2011-12-09 20:09:32 ----A---- C:\Windows\system32\d3dx10_43.dll
2011-12-09 20:09:32 ----A---- C:\Windows\system32\d3dcsx_43.dll
2011-12-09 20:09:31 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2011-12-09 20:09:31 ----A---- C:\Windows\system32\D3DX9_43.dll
2011-12-09 20:09:30 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2011-12-09 20:09:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2011-12-09 20:09:30 ----A---- C:\Windows\system32\XAudio2_6.dll
2011-12-09 20:09:30 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2011-12-09 20:09:29 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2011-12-09 20:09:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2011-12-09 20:09:29 ----A---- C:\Windows\system32\xactengine3_6.dll
2011-12-09 20:09:29 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2011-12-09 20:09:28 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2011-12-09 20:09:28 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2011-12-09 20:09:28 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-12-09 20:09:28 ----A---- C:\Windows\system32\xactengine3_5.dll
2011-12-09 20:09:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2011-12-09 20:09:27 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2011-12-09 20:09:24 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2011-12-09 20:09:24 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2011-12-09 20:09:24 ----A---- C:\Windows\system32\d3dx11_42.dll
2011-12-09 20:09:24 ----A---- C:\Windows\system32\d3dcsx_42.dll
2011-12-09 20:09:23 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2011-12-09 20:09:23 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-12-09 20:09:22 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2011-12-09 20:09:22 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-12-09 20:09:20 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2011-12-09 20:09:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2011-12-09 20:09:20 ----A---- C:\Windows\system32\d3dx10_41.dll
2011-12-09 20:09:20 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2011-12-09 20:09:18 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2011-12-09 20:09:18 ----A---- C:\Windows\system32\D3DX9_41.dll
2011-12-09 20:09:17 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2011-12-09 20:09:17 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2011-12-09 20:09:17 ----A---- C:\Windows\system32\XAudio2_4.dll
2011-12-09 20:09:17 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-12-09 20:09:16 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2011-12-09 20:09:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2011-12-09 20:09:16 ----A---- C:\Windows\system32\xactengine3_4.dll
2011-12-09 20:09:16 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2011-12-09 20:09:14 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2011-12-09 20:09:14 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2011-12-09 20:09:14 ----A---- C:\Windows\system32\d3dx10_40.dll
2011-12-09 20:09:14 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2011-12-09 20:09:11 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2011-12-09 20:09:11 ----A---- C:\Windows\system32\D3DX9_40.dll
2011-12-09 20:09:10 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2011-12-09 20:09:10 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2011-12-09 20:09:10 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2011-12-09 20:09:10 ----A---- C:\Windows\system32\XAudio2_3.dll
2011-12-09 20:09:10 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2011-12-09 20:09:10 ----A---- C:\Windows\system32\xactengine3_3.dll
2011-12-09 20:09:09 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2011-12-09 20:09:09 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2011-12-09 20:09:08 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2011-12-09 20:09:08 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2011-12-09 20:09:08 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2011-12-09 20:09:08 ----A---- C:\Windows\system32\XAudio2_2.dll
2011-12-09 20:09:08 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2011-12-09 20:09:08 ----A---- C:\Windows\system32\xactengine3_2.dll
2011-12-09 20:09:07 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2011-12-09 20:09:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2011-12-09 20:09:07 ----A---- C:\Windows\system32\d3dx10_39.dll
2011-12-09 20:09:07 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2011-12-09 20:09:05 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2011-12-09 20:09:05 ----A---- C:\Windows\system32\D3DX9_39.dll
2011-12-09 20:09:04 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2011-12-09 20:09:04 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2011-12-09 20:09:04 ----A---- C:\Windows\system32\XAudio2_1.dll
2011-12-09 20:09:04 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2011-12-09 20:09:03 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2011-12-09 20:09:03 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2011-12-09 20:09:03 ----A---- C:\Windows\system32\xactengine3_1.dll
2011-12-09 20:09:03 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2011-12-09 20:09:02 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2011-12-09 20:09:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2011-12-09 20:09:02 ----A---- C:\Windows\system32\d3dx10_38.dll
2011-12-09 20:09:02 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2011-12-09 20:09:00 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2011-12-09 20:09:00 ----A---- C:\Windows\system32\D3DX9_38.dll
2011-12-09 20:08:59 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2011-12-09 20:08:59 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2011-12-09 20:08:59 ----A---- C:\Windows\system32\XAudio2_0.dll
2011-12-09 20:08:59 ----A---- C:\Windows\system32\xactengine3_0.dll
2011-12-09 20:08:58 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2011-12-09 20:08:58 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2011-12-09 20:08:56 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2011-12-09 20:08:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2011-12-09 20:08:56 ----A---- C:\Windows\system32\d3dx10_37.dll
2011-12-09 20:08:56 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2011-12-09 20:08:54 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2011-12-09 20:08:54 ----A---- C:\Windows\system32\D3DX9_37.dll
2011-12-09 20:08:53 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2011-12-09 20:08:53 ----A---- C:\Windows\system32\xactengine2_10.dll
2011-12-09 20:08:51 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2011-12-09 20:08:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2011-12-09 20:08:51 ----A---- C:\Windows\system32\d3dx10_36.dll
2011-12-09 20:08:51 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2011-12-09 20:08:49 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2011-12-09 20:08:49 ----A---- C:\Windows\system32\d3dx9_36.dll
2011-12-09 20:08:48 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2011-12-09 20:08:48 ----A---- C:\Windows\system32\xactengine2_9.dll
2011-12-09 20:08:47 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2011-12-09 20:08:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2011-12-09 20:08:47 ----A---- C:\Windows\system32\d3dx10_35.dll
2011-12-09 20:08:47 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2011-12-09 20:08:45 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2011-12-09 20:08:45 ----A---- C:\Windows\system32\d3dx9_35.dll
2011-12-09 20:08:43 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2011-12-09 20:08:43 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2011-12-09 20:08:43 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2011-12-09 20:08:43 ----A---- C:\Windows\system32\xactengine2_8.dll
2011-12-09 20:08:43 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2011-12-09 20:08:43 ----A---- C:\Windows\system32\d3dx10_34.dll
2011-12-09 20:08:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2011-12-09 20:08:42 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2011-12-09 20:08:41 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2011-12-09 20:08:41 ----A---- C:\Windows\system32\d3dx9_34.dll
2011-12-09 20:08:39 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2011-12-09 20:08:39 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2011-12-09 20:08:39 ----A---- C:\Windows\system32\xinput1_3.dll
2011-12-09 20:08:39 ----A---- C:\Windows\system32\xactengine2_7.dll
2011-12-09 20:08:38 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2011-12-09 20:08:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2011-12-09 20:08:38 ----A---- C:\Windows\system32\d3dx10_33.dll
2011-12-09 20:08:38 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2011-12-09 20:08:36 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2011-12-09 20:08:36 ----A---- C:\Windows\system32\d3dx9_33.dll
2011-12-09 20:08:35 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2011-12-09 20:08:35 ----A---- C:\Windows\system32\xactengine2_6.dll
2011-12-09 20:08:33 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2011-12-09 20:08:33 ----A---- C:\Windows\system32\xactengine2_5.dll
2011-12-09 20:08:32 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2011-12-09 20:08:32 ----A---- C:\Windows\system32\d3dx10.dll
2011-12-09 20:08:29 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2011-12-09 20:08:29 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-12-09 20:08:28 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2011-12-09 20:08:28 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2011-12-09 20:08:28 ----A---- C:\Windows\system32\xactengine2_4.dll
2011-12-09 20:08:28 ----A---- C:\Windows\system32\x3daudio1_1.dll
2011-12-09 20:08:26 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2011-12-09 20:08:26 ----A---- C:\Windows\system32\d3dx9_31.dll
2011-12-09 20:08:25 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2011-12-09 20:08:25 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2011-12-09 20:08:25 ----A---- C:\Windows\system32\xinput1_2.dll
2011-12-09 20:08:25 ----A---- C:\Windows\system32\xactengine2_3.dll
2011-12-09 20:08:24 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2011-12-09 20:08:24 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2011-12-09 20:08:24 ----A---- C:\Windows\system32\xinput1_1.dll
2011-12-09 20:08:24 ----A---- C:\Windows\system32\xactengine2_2.dll
2011-12-09 20:08:23 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2011-12-09 20:08:23 ----A---- C:\Windows\system32\xactengine2_1.dll
2011-12-09 20:08:13 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2011-12-09 20:08:13 ----A---- C:\Windows\system32\d3dx9_30.dll
2011-12-09 20:08:12 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2011-12-09 20:08:12 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2011-12-09 20:08:12 ----A---- C:\Windows\system32\xactengine2_0.dll
2011-12-09 20:08:12 ----A---- C:\Windows\system32\x3daudio1_0.dll
2011-12-09 20:08:10 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2011-12-09 20:08:10 ----A---- C:\Windows\system32\d3dx9_29.dll
2011-12-09 20:08:08 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2011-12-09 20:08:08 ----A---- C:\Windows\system32\d3dx9_28.dll
2011-12-09 20:08:07 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2011-12-09 20:08:07 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-12-09 20:08:05 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2011-12-09 20:08:05 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-12-09 20:08:03 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2011-12-09 20:08:03 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-12-09 20:08:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2011-12-09 20:08:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2011-12-02 12:35:45 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-12-02 12:35:40 ----A---- C:\Windows\system32\ieframe.dll
2011-12-02 12:35:38 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-12-02 12:35:34 ----A---- C:\Windows\system32\mshtml.dll
2011-12-02 12:35:32 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-12-02 12:35:32 ----A---- C:\Windows\system32\wininet.dll
2011-12-02 12:35:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-12-02 12:35:31 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-12-02 12:35:31 ----A---- C:\Windows\system32\urlmon.dll
2011-12-02 12:35:30 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-12-02 12:35:29 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-12-02 12:35:29 ----A---- C:\Windows\system32\msfeeds.dll
2011-12-02 12:35:29 ----A---- C:\Windows\system32\ieui.dll
2011-12-02 12:35:29 ----A---- C:\Windows\system32\iertutil.dll
2011-12-02 12:35:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-12-02 12:35:27 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-12-02 12:35:27 ----A---- C:\Windows\system32\mshtmled.dll
2011-12-02 12:35:26 ----A---- C:\Windows\SYSWOW64\url.dll
2011-12-02 12:35:26 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-12-02 12:35:26 ----A---- C:\Windows\system32\url.dll
2011-12-02 12:35:26 ----A---- C:\Windows\system32\jsproxy.dll
2011-12-02 12:34:54 ----A---- C:\Windows\system32\win32k.sys
2011-12-02 12:34:52 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-12-02 12:34:52 ----A---- C:\Windows\system32\psisdecd.dll
2011-12-02 12:34:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-12-02 12:34:38 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2011-12-02 12:34:38 ----A---- C:\Windows\system32\oleacc.dll
2011-12-02 12:34:37 ----A---- C:\Windows\system32\oleaut32.dll
2011-11-29 16:38:18 ----A---- C:\Windows\MusiccityDownload.exe
2011-11-29 16:38:18 ----A---- C:\Windows\MASetupCaller.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\muzwmts.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\muzapp.exe
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\muzapp.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\muzaf1.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MTXSYNCICON.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MTTELECHIP.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MSLUR71.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MSFLib.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MSCLib.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MK_Lyric.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MaXMLProto.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MASetupCleaner.exe
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MAMACExtract.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MaJGUILib.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MaDRM.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\MACXMLProto.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\issacapi_se-2.3.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\issacapi_pe-2.3.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\issacapi_bs-2.3.dll
2011-11-29 16:38:12 ----A---- C:\Windows\SYSWOW64\cis-2.4.dll
2011-11-23 07:28:22 ----D---- C:\Users\Masso\AppData\Roaming\Sawer
2011-11-23 07:27:33 ----D---- C:\Users\Masso\AppData\Roaming\Hardcore

======List of files/folders modified in the last 1 month======

2011-12-12 20:01:40 ----D---- C:\Windows\Temp
2011-12-12 20:01:33 ----RD---- C:\Program Files
2011-12-12 19:48:30 ----D---- C:\Windows\system32\config
2011-12-12 19:28:31 ----D---- C:\Windows
2011-12-12 19:21:03 ----SHD---- C:\System Volume Information
2011-12-12 15:25:11 ----D---- C:\Windows\System32
2011-12-12 15:25:09 ----SHD---- C:\Windows\Installer
2011-12-12 14:46:12 ----D---- C:\Program Files (x86)\McAfee Security Scan
2011-12-12 14:36:12 ----SHD---- C:\Config.Msi
2011-12-12 14:36:06 ----D---- C:\Windows\system32\drivers
2011-12-12 13:03:46 ----SD---- C:\Users\Masso\AppData\Roaming\Microsoft
2011-12-12 12:58:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-12-12 12:58:32 ----D---- C:\Windows\inf
2011-12-10 17:08:20 ----D---- C:\Windows\system32\catroot
2011-12-10 17:08:19 ----D---- C:\Windows\system32\DriverStore
2011-12-10 17:07:37 ----D---- C:\Windows\system32\catroot2
2011-12-10 17:06:03 ----D---- C:\Windows\SysWOW64
2011-12-10 17:05:47 ----RD---- C:\Program Files (x86)
2011-12-10 17:05:40 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-12-10 17:05:12 ----HD---- C:\ProgramData
2011-12-09 21:20:23 ----D---- C:\ProgramData\Ubisoft
2011-12-09 21:15:29 ----RSD---- C:\Windows\assembly
2011-12-09 21:01:09 ----D---- C:\Program Files (x86)\Ubisoft
2011-12-09 20:40:58 ----D---- C:\Program Files (x86)\Rockstar Games
2011-12-09 19:51:14 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-12-08 19:54:23 ----D---- C:\Users\Masso\AppData\Roaming\Adobe
2011-12-08 19:42:24 ----D---- C:\Windows\system32\NDF
2011-12-06 13:47:24 ----D---- C:\Windows\system32\Tasks
2011-12-05 20:00:11 ----D---- C:\ProgramData\Solidshield
2011-12-04 14:45:19 ----D---- C:\Windows\Microsoft.NET
2011-12-04 13:40:41 ----D---- C:\Windows\debug
2011-12-04 13:39:14 ----D---- C:\Windows\winsxs
2011-12-04 13:28:55 ----D---- C:\Program Files (x86)\Common Files
2011-12-04 13:25:36 ----D---- C:\Program Files (x86)\3DO
2011-12-04 13:24:21 ----D---- C:\Windows\Prefetch
2011-12-04 13:08:06 ----D---- C:\Windows\SYSWOW64\migration
2011-12-04 13:08:06 ----D---- C:\Program Files\Internet Explorer
2011-12-04 13:08:06 ----D---- C:\Program Files\Common Files\System
2011-12-04 13:08:06 ----D---- C:\Program Files (x86)\Internet Explorer
2011-12-04 13:08:05 ----D---- C:\Windows\system32\migration
2011-12-04 13:08:05 ----D---- C:\Windows\ehome
2011-11-26 19:52:27 ----D---- C:\Windows\Tasks
2011-11-26 19:52:27 ----D---- C:\Windows\system32\wfp
2011-11-26 19:52:27 ----D---- C:\Windows\system32\wbem
2011-11-26 19:52:27 ----D---- C:\Windows\system32\CodeIntegrity
2011-11-26 19:52:26 ----D---- C:\Windows\AppCompat
2011-11-26 19:52:26 ----D---- C:\Users\Masso\AppData\Roaming\Winamp
2011-11-26 19:52:26 ----D---- C:\Users\Masso\AppData\Roaming\LangSoft
2011-11-26 19:52:26 ----D---- C:\ProgramData\McAfee Security Scan
2011-11-26 19:52:26 ----D---- C:\Program Files (x86)\VstPlugins
2011-11-26 19:52:18 ----D---- C:\Windows\registration
2011-11-26 19:52:00 ----D---- C:\Program Files (x86)\Image-Line
2011-11-26 19:51:44 ----D---- C:\a
2011-11-26 19:49:26 ----D---- C:\Windows\system32\LogFiles
2011-11-13 20:35:08 ----D---- C:\Windows\rescache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-06-11 254528]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 NETw5s64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETw5s64.sys [2010-01-13 7675392]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-11-16 136584]
S2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-06-11 311968]
S2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-11-16 145336]
S2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-12-18 123200]
S2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-06-11 43168]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-10-27 36328]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2008-06-26 4735488]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2008-08-06 56352]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-10-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-10-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-10-27 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-10-27 146920]
S3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2008-09-11 465408]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21bd21dd0a38d98e\AESTSr64.exe [2008-06-27 89088]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-11-16 735960]
S2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-09-13 357376]
S2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-06-11 75136]
S2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21bd21dd0a38d98e\STacSV64.exe [2008-09-11 279040]
S2 vfsFPService;Validity Fingerprint Service; c:\Windows\system32\vfsFPService.exe [2008-11-18 721712]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 23296]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe []
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-06-20 1255736]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 12 pro 2011 20:32

Zdravim a pekny vecer preji

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

Ukoncete vsechny programy
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Zvolte moznost 2 a potvrte enterem
Utilita provede svou cinnost a da log - ten sem vlozte
Nyni znovu, ale zvolte moznost 3 a pote jeste 4 - logy opet vlozte

Masso · #3 Příspěvek od **Masso** » 12 pro 2011 20:36

pekny vecer aj vam prajem

tu je prvy log po mazani ci co

RogueKiller V6.2.0 [12/12/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Safe mode with network support
User: Masso [Admin rights]
Mode: Remove -- Date : 12/12/2011 20:34:36

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Registry Entries: 5 ¤¤¤
[SUSP PATH] HKCU\[...]\RunOnce : ytpfz (C:\Users\Masso\AppData\Local\ytpfz.exe) -> DELETED
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

¤¤¤ MBR Check: ¤¤¤
--- User ---
[MBR] ae25168ac5ac8da55204930eb2153f81
[BSP] 847060ec2694c1375818297017a31545 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 63 | Size: 311773 Mo
1 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 608931840 | Size: 8296 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1].txt >>
RKreport[1].txt

Masso · #4 Příspěvek od **Masso** » 12 pro 2011 20:38

a tu je log z tretej a stvrtej moznosti:

RogueKiller V6.2.0 [12/12/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Safe mode with network support
User: Masso [Admin rights]
Mode: HOSTSFix -- Date : 12/12/2011 20:37:07

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

4:

RogueKiller V6.2.0 [12/12/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Safe mode with network support
User: Masso [Admin rights]
Mode: ProxyFix -- Date : 12/12/2011 20:38:05

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ Registry Entries: 0 ¤¤¤

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

#5 Příspěvek od **vyosek** » 12 pro 2011 20:40

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte

Masso · #6 Příspěvek od **Masso** » 12 pro 2011 20:54

prikladam log z TDSS Killer, nebolo nic zle najdene a ani nevyzadovalo restart:

20:46:29.0861 0840 TDSS rootkit removing tool 2.6.22.0 Dec 7 2011 13:21:06
20:46:29.0981 0840 ============================================================
20:46:29.0981 0840 Current date / time: 2011/12/12 20:46:29.0981
20:46:29.0981 0840 SystemInfo:
20:46:29.0981 0840
20:46:29.0981 0840 OS Version: 6.1.7601 ServicePack: 1.0
20:46:29.0981 0840 Product type: Workstation
20:46:29.0981 0840 ComputerName: MASSO-PC
20:46:29.0981 0840 UserName: Masso
20:46:29.0981 0840 Windows directory: C:\Windows
20:46:29.0981 0840 System windows directory: C:\Windows
20:46:29.0981 0840 Running under WOW64
20:46:29.0981 0840 Processor architecture: Intel x64
20:46:29.0981 0840 Number of processors: 2
20:46:29.0981 0840 Page size: 0x1000
20:46:29.0981 0840 Boot type: Safe boot with network
20:46:29.0981 0840 ============================================================
20:46:31.0106 0840 Initialize success
20:46:35.0218 0972 ============================================================
20:46:35.0218 0972 Scan started
20:46:35.0218 0972 Mode: Manual;
20:46:35.0218 0972 ============================================================
20:46:36.0048 0972 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
20:46:36.0051 0972 1394ohci - ok
20:46:36.0116 0972 Accelerometer (5c368f4b04ed2a923e6afca2d37baff5) C:\Windows\system32\DRIVERS\Accelerometer.sys
20:46:36.0116 0972 Accelerometer - ok
20:46:36.0151 0972 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
20:46:36.0156 0972 ACPI - ok
20:46:36.0193 0972 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
20:46:36.0196 0972 AcpiPmi - ok
20:46:36.0258 0972 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
20:46:36.0266 0972 adp94xx - ok
20:46:36.0278 0972 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
20:46:36.0281 0972 adpahci - ok
20:46:36.0296 0972 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
20:46:36.0301 0972 adpu320 - ok
20:46:36.0376 0972 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
20:46:36.0381 0972 AFD - ok
20:46:36.0433 0972 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
20:46:36.0436 0972 agp440 - ok
20:46:36.0483 0972 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
20:46:36.0483 0972 aliide - ok
20:46:36.0536 0972 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
20:46:36.0538 0972 amdide - ok
20:46:36.0591 0972 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
20:46:36.0593 0972 AmdK8 - ok
20:46:36.0611 0972 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
20:46:36.0611 0972 AmdPPM - ok
20:46:36.0668 0972 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
20:46:36.0671 0972 amdsata - ok
20:46:36.0723 0972 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
20:46:36.0726 0972 amdsbs - ok
20:46:36.0756 0972 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
20:46:36.0756 0972 amdxata - ok
20:46:36.0801 0972 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
20:46:36.0801 0972 androidusb - ok
20:46:36.0883 0972 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
20:46:36.0886 0972 AppID - ok
20:46:36.0926 0972 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
20:46:36.0926 0972 arc - ok
20:46:36.0946 0972 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
20:46:36.0948 0972 arcsas - ok
20:46:36.0968 0972 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
20:46:36.0968 0972 AsyncMac - ok
20:46:36.0996 0972 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
20:46:36.0996 0972 atapi - ok
20:46:37.0066 0972 atksgt (1fd0fa6618b31fad14385740d0f6c333) C:\Windows\system32\DRIVERS\atksgt.sys
20:46:37.0068 0972 atksgt - ok
20:46:37.0146 0972 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
20:46:37.0153 0972 b06bdrv - ok
20:46:37.0231 0972 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
20:46:37.0236 0972 b57nd60a - ok
20:46:37.0273 0972 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
20:46:37.0273 0972 Beep - ok
20:46:37.0336 0972 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
20:46:37.0336 0972 blbdrive - ok
20:46:37.0386 0972 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
20:46:37.0388 0972 bowser - ok
20:46:37.0426 0972 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:46:37.0426 0972 BrFiltLo - ok
20:46:37.0436 0972 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:46:37.0436 0972 BrFiltUp - ok
20:46:37.0466 0972 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
20:46:37.0468 0972 Brserid - ok
20:46:37.0478 0972 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
20:46:37.0481 0972 BrSerWdm - ok
20:46:37.0493 0972 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:46:37.0493 0972 BrUsbMdm - ok
20:46:37.0503 0972 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
20:46:37.0503 0972 BrUsbSer - ok
20:46:37.0568 0972 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
20:46:37.0568 0972 BthEnum - ok
20:46:37.0606 0972 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
20:46:37.0606 0972 BTHMODEM - ok
20:46:37.0651 0972 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
20:46:37.0653 0972 BthPan - ok
20:46:37.0686 0972 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
20:46:37.0693 0972 BTHPORT - ok
20:46:37.0713 0972 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
20:46:37.0713 0972 BTHUSB - ok
20:46:37.0773 0972 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
20:46:37.0773 0972 cdfs - ok
20:46:37.0823 0972 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
20:46:37.0826 0972 cdrom - ok
20:46:37.0868 0972 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
20:46:37.0868 0972 circlass - ok
20:46:37.0918 0972 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
20:46:37.0921 0972 CLFS - ok
20:46:38.0161 0972 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
20:46:38.0161 0972 CmBatt - ok
20:46:38.0196 0972 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
20:46:38.0198 0972 cmdide - ok
20:46:38.0258 0972 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
20:46:38.0263 0972 CNG - ok
20:46:38.0278 0972 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
20:46:38.0281 0972 Compbatt - ok
20:46:38.0321 0972 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
20:46:38.0323 0972 CompositeBus - ok
20:46:38.0361 0972 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
20:46:38.0363 0972 crcdisk - ok
20:46:38.0441 0972 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
20:46:38.0448 0972 CSC - ok
20:46:38.0558 0972 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
20:46:38.0561 0972 DfsC - ok
20:46:38.0576 0972 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
20:46:38.0576 0972 discache - ok
20:46:38.0611 0972 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
20:46:38.0611 0972 Disk - ok
20:46:38.0713 0972 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
20:46:38.0716 0972 drmkaud - ok
20:46:38.0773 0972 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
20:46:38.0773 0972 dtsoftbus01 - ok
20:46:38.0846 0972 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
20:46:38.0878 0972 DXGKrnl - ok
20:46:38.0926 0972 eamon (85e3ed13ec107a20d9b018328e0c9737) C:\Windows\system32\DRIVERS\eamon.sys
20:46:38.0928 0972 eamon - ok
20:46:39.0068 0972 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
20:46:39.0171 0972 ebdrv - ok
20:46:39.0213 0972 ehdrv (518fb66d5e21b2c246f96c1d9153cadc) C:\Windows\system32\DRIVERS\ehdrv.sys
20:46:39.0213 0972 ehdrv - ok
20:46:39.0303 0972 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
20:46:39.0311 0972 elxstor - ok
20:46:39.0363 0972 epfwwfpr (60643217107fd0dd2d11d0936f86506f) C:\Windows\system32\DRIVERS\epfwwfpr.sys
20:46:39.0366 0972 epfwwfpr - ok
20:46:39.0411 0972 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
20:46:39.0411 0972 ErrDev - ok
20:46:39.0481 0972 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
20:46:39.0483 0972 exfat - ok
20:46:39.0516 0972 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
20:46:39.0518 0972 fastfat - ok
20:46:39.0553 0972 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
20:46:39.0553 0972 fdc - ok
20:46:39.0583 0972 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
20:46:39.0586 0972 FileInfo - ok
20:46:39.0606 0972 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
20:46:39.0606 0972 Filetrace - ok
20:46:39.0638 0972 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
20:46:39.0641 0972 flpydisk - ok
20:46:39.0703 0972 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
20:46:39.0708 0972 FltMgr - ok
20:46:39.0743 0972 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
20:46:39.0746 0972 FsDepends - ok
20:46:39.0766 0972 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
20:46:39.0766 0972 Fs_Rec - ok
20:46:39.0826 0972 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
20:46:39.0828 0972 fvevol - ok
20:46:39.0866 0972 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:46:39.0868 0972 gagp30kx - ok
20:46:39.0896 0972 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
20:46:39.0896 0972 hcw85cir - ok
20:46:39.0968 0972 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
20:46:39.0973 0972 HdAudAddService - ok
20:46:40.0001 0972 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
20:46:40.0003 0972 HDAudBus - ok
20:46:40.0033 0972 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
20:46:40.0036 0972 HidBatt - ok
20:46:40.0046 0972 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
20:46:40.0048 0972 HidBth - ok
20:46:40.0061 0972 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
20:46:40.0061 0972 HidIr - ok
20:46:40.0118 0972 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
20:46:40.0118 0972 HidUsb - ok
20:46:40.0158 0972 hpdskflt (4e0bec0f78096ffd6d3314b497fc49d3) C:\Windows\system32\DRIVERS\hpdskflt.sys
20:46:40.0161 0972 hpdskflt - ok
20:46:40.0211 0972 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
20:46:40.0211 0972 HpSAMD - ok
20:46:40.0296 0972 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
20:46:40.0316 0972 HTTP - ok
20:46:40.0363 0972 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
20:46:40.0366 0972 hwpolicy - ok
20:46:40.0406 0972 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
20:46:40.0408 0972 i8042prt - ok
20:46:40.0476 0972 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
20:46:40.0481 0972 iaStorV - ok
20:46:40.0546 0972 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
20:46:40.0546 0972 iirsp - ok
20:46:40.0584 0972 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
20:46:40.0584 0972 intelide - ok
20:46:40.0611 0972 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
20:46:40.0614 0972 intelppm - ok
20:46:40.0674 0972 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:46:40.0676 0972 IpFilterDriver - ok
20:46:40.0724 0972 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
20:46:40.0724 0972 IPMIDRV - ok
20:46:40.0744 0972 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
20:46:40.0746 0972 IPNAT - ok
20:46:40.0784 0972 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
20:46:40.0784 0972 IRENUM - ok
20:46:40.0821 0972 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
20:46:40.0821 0972 isapnp - ok
20:46:40.0879 0972 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
20:46:40.0884 0972 iScsiPrt - ok
20:46:40.0931 0972 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
20:46:40.0931 0972 kbdclass - ok
20:46:40.0986 0972 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
20:46:40.0986 0972 kbdhid - ok
20:46:41.0034 0972 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
20:46:41.0036 0972 KSecDD - ok
20:46:41.0086 0972 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
20:46:41.0089 0972 KSecPkg - ok
20:46:41.0139 0972 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
20:46:41.0139 0972 ksthunk - ok
20:46:41.0204 0972 lirsgt (5ea407821bb3104c31a705175ab4f309) C:\Windows\system32\DRIVERS\lirsgt.sys
20:46:41.0206 0972 lirsgt - ok
20:46:41.0246 0972 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
20:46:41.0246 0972 lltdio - ok
20:46:41.0289 0972 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:46:41.0291 0972 LSI_FC - ok
20:46:41.0301 0972 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:46:41.0304 0972 LSI_SAS - ok
20:46:41.0314 0972 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:46:41.0314 0972 LSI_SAS2 - ok
20:46:41.0334 0972 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:46:41.0336 0972 LSI_SCSI - ok
20:46:41.0384 0972 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
20:46:41.0386 0972 luafv - ok
20:46:41.0431 0972 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
20:46:41.0431 0972 megasas - ok
20:46:41.0454 0972 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
20:46:41.0456 0972 MegaSR - ok
20:46:41.0491 0972 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
20:46:41.0494 0972 Modem - ok
20:46:41.0514 0972 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
20:46:41.0514 0972 monitor - ok
20:46:41.0539 0972 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
20:46:41.0541 0972 mouclass - ok
20:46:41.0561 0972 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
20:46:41.0564 0972 mouhid - ok
20:46:41.0606 0972 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
20:46:41.0606 0972 mountmgr - ok
20:46:41.0651 0972 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
20:46:41.0654 0972 mpio - ok
20:46:41.0684 0972 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
20:46:41.0684 0972 mpsdrv - ok
20:46:41.0726 0972 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
20:46:41.0729 0972 MRxDAV - ok
20:46:41.0759 0972 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:46:41.0761 0972 mrxsmb - ok
20:46:41.0794 0972 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:46:41.0799 0972 mrxsmb10 - ok
20:46:41.0831 0972 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:46:41.0834 0972 mrxsmb20 - ok
20:46:41.0864 0972 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
20:46:41.0864 0972 msahci - ok
20:46:41.0896 0972 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
20:46:41.0899 0972 msdsm - ok
20:46:41.0966 0972 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
20:46:41.0966 0972 Msfs - ok
20:46:41.0999 0972 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
20:46:41.0999 0972 mshidkmdf - ok
20:46:42.0016 0972 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
20:46:42.0019 0972 msisadrv - ok
20:46:42.0064 0972 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
20:46:42.0064 0972 MSKSSRV - ok
20:46:42.0074 0972 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
20:46:42.0074 0972 MSPCLOCK - ok
20:46:42.0084 0972 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
20:46:42.0084 0972 MSPQM - ok
20:46:42.0134 0972 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
20:46:42.0139 0972 MsRPC - ok
20:46:42.0161 0972 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
20:46:42.0161 0972 mssmbios - ok
20:46:42.0191 0972 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
20:46:42.0191 0972 MSTEE - ok
20:46:42.0201 0972 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
20:46:42.0201 0972 MTConfig - ok
20:46:42.0246 0972 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
20:46:42.0246 0972 Mup - ok
20:46:42.0289 0972 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
20:46:42.0291 0972 NativeWifiP - ok
20:46:42.0399 0972 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
20:46:42.0416 0972 NDIS - ok
20:46:42.0466 0972 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
20:46:42.0466 0972 NdisCap - ok
20:46:42.0514 0972 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
20:46:42.0514 0972 NdisTapi - ok
20:46:42.0564 0972 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
20:46:42.0564 0972 Ndisuio - ok
20:46:42.0614 0972 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
20:46:42.0616 0972 NdisWan - ok
20:46:42.0669 0972 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
20:46:42.0671 0972 NDProxy - ok
20:46:42.0691 0972 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
20:46:42.0691 0972 NetBIOS - ok
20:46:42.0741 0972 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
20:46:42.0746 0972 NetBT - ok
20:46:42.0969 0972 NETw5s64 (39ede676d17f37af4573c2b33ec28aca) C:\Windows\system32\DRIVERS\NETw5s64.sys
20:46:43.0161 0972 NETw5s64 - ok
20:46:43.0326 0972 netw5v64 (f17eda58c8c5b1a4f873b322729168ff) C:\Windows\system32\DRIVERS\netw5v64.sys
20:46:43.0459 0972 netw5v64 - ok
20:46:43.0531 0972 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
20:46:43.0531 0972 nfrd960 - ok
20:46:43.0559 0972 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
20:46:43.0561 0972 Npfs - ok
20:46:43.0584 0972 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
20:46:43.0586 0972 nsiproxy - ok
20:46:43.0644 0972 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
20:46:43.0689 0972 Ntfs - ok
20:46:43.0706 0972 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
20:46:43.0706 0972 Null - ok
20:46:43.0761 0972 NVHDA (6e022d5f44cd8b029cf799807bb31269) C:\Windows\system32\drivers\nvhda64v.sys
20:46:43.0764 0972 NVHDA - ok
20:46:44.0026 0972 nvlddmkm (9433bac10deb18fe9f6220d5e984d999) C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:46:44.0239 0972 nvlddmkm - ok
20:46:44.0294 0972 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
20:46:44.0296 0972 nvraid - ok
20:46:44.0336 0972 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
20:46:44.0339 0972 nvstor - ok
20:46:44.0384 0972 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
20:46:44.0386 0972 nv_agp - ok
20:46:44.0421 0972 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
20:46:44.0424 0972 ohci1394 - ok
20:46:44.0469 0972 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
20:46:44.0471 0972 Parport - ok
20:46:44.0516 0972 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
20:46:44.0516 0972 partmgr - ok
20:46:44.0539 0972 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
20:46:44.0541 0972 pci - ok
20:46:44.0569 0972 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
20:46:44.0569 0972 pciide - ok
20:46:44.0596 0972 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
20:46:44.0599 0972 pcmcia - ok
20:46:44.0621 0972 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
20:46:44.0624 0972 pcw - ok
20:46:44.0659 0972 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
20:46:44.0674 0972 PEAUTH - ok
20:46:44.0794 0972 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
20:46:44.0796 0972 PptpMiniport - ok
20:46:44.0831 0972 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
20:46:44.0831 0972 Processor - ok
20:46:44.0924 0972 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
20:46:44.0926 0972 Psched - ok
20:46:44.0996 0972 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
20:46:45.0039 0972 ql2300 - ok
20:46:45.0049 0972 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
20:46:45.0051 0972 ql40xx - ok
20:46:45.0079 0972 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
20:46:45.0081 0972 QWAVEdrv - ok
20:46:45.0111 0972 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
20:46:45.0111 0972 RasAcd - ok
20:46:45.0164 0972 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:46:45.0164 0972 RasAgileVpn - ok
20:46:45.0231 0972 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:46:45.0234 0972 Rasl2tp - ok
20:46:45.0254 0972 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
20:46:45.0256 0972 RasPppoe - ok
20:46:45.0276 0972 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
20:46:45.0276 0972 RasSstp - ok
20:46:45.0326 0972 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
20:46:45.0329 0972 rdbss - ok
20:46:45.0341 0972 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
20:46:45.0344 0972 rdpbus - ok
20:46:45.0361 0972 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:46:45.0364 0972 RDPCDD - ok
20:46:45.0414 0972 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
20:46:45.0416 0972 RDPDR - ok
20:46:45.0451 0972 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
20:46:45.0451 0972 RDPENCDD - ok
20:46:45.0466 0972 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
20:46:45.0466 0972 RDPREFMP - ok
20:46:45.0541 0972 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
20:46:45.0541 0972 RdpVideoMiniport - ok
20:46:45.0589 0972 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
20:46:45.0591 0972 RDPWD - ok
20:46:45.0641 0972 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
20:46:45.0644 0972 rdyboost - ok
20:46:45.0699 0972 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
20:46:45.0701 0972 RFCOMM - ok
20:46:45.0766 0972 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
20:46:45.0769 0972 rspndr - ok
20:46:45.0839 0972 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
20:46:45.0841 0972 RTL8167 - ok
20:46:45.0879 0972 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
20:46:45.0881 0972 s3cap - ok
20:46:45.0914 0972 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
20:46:45.0916 0972 sbp2port - ok
20:46:45.0951 0972 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
20:46:45.0954 0972 scfilter - ok
20:46:45.0996 0972 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
20:46:45.0999 0972 sdbus - ok
20:46:46.0066 0972 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
20:46:46.0069 0972 secdrv - ok
20:46:46.0096 0972 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
20:46:46.0096 0972 Serenum - ok
20:46:46.0124 0972 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
20:46:46.0126 0972 Serial - ok
20:46:46.0164 0972 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
20:46:46.0164 0972 sermouse - ok
20:46:46.0209 0972 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
20:46:46.0209 0972 sffdisk - ok
20:46:46.0226 0972 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
20:46:46.0229 0972 sffp_mmc - ok
20:46:46.0249 0972 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
20:46:46.0251 0972 sffp_sd - ok
20:46:46.0259 0972 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
20:46:46.0261 0972 sfloppy - ok
20:46:46.0294 0972 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:46:46.0296 0972 SiSRaid2 - ok
20:46:46.0319 0972 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
20:46:46.0321 0972 SiSRaid4 - ok
20:46:46.0366 0972 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
20:46:46.0369 0972 Smb - ok
20:46:46.0416 0972 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
20:46:46.0416 0972 spldr - ok
20:46:46.0496 0972 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
20:46:46.0501 0972 srv - ok
20:46:46.0531 0972 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
20:46:46.0536 0972 srv2 - ok
20:46:46.0571 0972 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
20:46:46.0574 0972 srvnet - ok
20:46:46.0601 0972 ssadbus (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
20:46:46.0604 0972 ssadbus - ok
20:46:46.0649 0972 ssadmdfl (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
20:46:46.0649 0972 ssadmdfl - ok
20:46:46.0679 0972 ssadmdm (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
20:46:46.0681 0972 ssadmdm - ok
20:46:46.0734 0972 ssadserd (d33d1bd3ec0e766211a234f56a12726d) C:\Windows\system32\DRIVERS\ssadserd.sys
20:46:46.0736 0972 ssadserd - ok
20:46:46.0801 0972 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
20:46:46.0804 0972 stexstor - ok
20:46:46.0884 0972 STHDA (e01797a54f8a61512b7e590fde6d1988) C:\Windows\system32\DRIVERS\stwrt64.sys
20:46:46.0891 0972 STHDA - ok
20:46:46.0926 0972 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
20:46:46.0926 0972 storflt - ok
20:46:46.0954 0972 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
20:46:46.0956 0972 storvsc - ok
20:46:46.0999 0972 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
20:46:46.0999 0972 swenum - ok
20:46:47.0041 0972 Synth3dVsc - ok
20:46:47.0134 0972 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
20:46:47.0191 0972 Tcpip - ok
20:46:47.0281 0972 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
20:46:47.0291 0972 TCPIP6 - ok
20:46:47.0339 0972 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
20:46:47.0339 0972 tcpipreg - ok
20:46:47.0379 0972 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
20:46:47.0394 0972 TDPIPE - ok
20:46:47.0424 0972 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
20:46:47.0424 0972 TDTCP - ok
20:46:47.0486 0972 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
20:46:47.0489 0972 tdx - ok
20:46:47.0526 0972 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
20:46:47.0529 0972 TermDD - ok
20:46:47.0614 0972 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:46:47.0614 0972 tssecsrv - ok
20:46:47.0649 0972 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
20:46:47.0649 0972 TsUsbFlt - ok
20:46:47.0659 0972 tsusbhub - ok
20:46:47.0734 0972 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
20:46:47.0736 0972 tunnel - ok
20:46:47.0781 0972 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
20:46:47.0784 0972 uagp35 - ok
20:46:47.0839 0972 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
20:46:47.0844 0972 udfs - ok
20:46:47.0911 0972 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
20:46:47.0911 0972 uliagpkx - ok
20:46:47.0954 0972 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
20:46:47.0956 0972 umbus - ok
20:46:47.0976 0972 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
20:46:47.0979 0972 UmPass - ok
20:46:48.0014 0972 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
20:46:48.0016 0972 usbccgp - ok
20:46:48.0054 0972 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
20:46:48.0056 0972 usbcir - ok
20:46:48.0084 0972 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
20:46:48.0084 0972 usbehci - ok
20:46:48.0114 0972 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
20:46:48.0119 0972 usbhub - ok
20:46:48.0139 0972 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
20:46:48.0141 0972 usbohci - ok
20:46:48.0169 0972 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
20:46:48.0171 0972 usbprint - ok
20:46:48.0196 0972 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:46:48.0199 0972 USBSTOR - ok
20:46:48.0214 0972 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
20:46:48.0216 0972 usbuhci - ok
20:46:48.0254 0972 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
20:46:48.0256 0972 usbvideo - ok
20:46:48.0276 0972 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
20:46:48.0276 0972 vdrvroot - ok
20:46:48.0294 0972 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
20:46:48.0296 0972 vga - ok
20:46:48.0331 0972 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
20:46:48.0331 0972 VgaSave - ok
20:46:48.0346 0972 VGPU - ok
20:46:48.0379 0972 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
20:46:48.0381 0972 vhdmp - ok
20:46:48.0414 0972 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
20:46:48.0414 0972 viaide - ok
20:46:48.0426 0972 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
20:46:48.0429 0972 vmbus - ok
20:46:48.0469 0972 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
20:46:48.0469 0972 VMBusHID - ok
20:46:48.0489 0972 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
20:46:48.0491 0972 volmgr - ok
20:46:48.0539 0972 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
20:46:48.0544 0972 volmgrx - ok
20:46:48.0571 0972 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
20:46:48.0576 0972 volsnap - ok
20:46:48.0624 0972 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
20:46:48.0626 0972 vsmraid - ok
20:46:48.0661 0972 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
20:46:48.0661 0972 vwifibus - ok
20:46:48.0689 0972 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
20:46:48.0691 0972 vwififlt - ok
20:46:48.0711 0972 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
20:46:48.0711 0972 vwifimp - ok
20:46:48.0726 0972 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
20:46:48.0729 0972 WacomPen - ok
20:46:48.0809 0972 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:46:48.0811 0972 WANARP - ok
20:46:48.0816 0972 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:46:48.0816 0972 Wanarpv6 - ok
20:46:48.0836 0972 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
20:46:48.0836 0972 Wd - ok
20:46:48.0871 0972 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
20:46:48.0889 0972 Wdf01000 - ok
20:46:48.0936 0972 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
20:46:48.0936 0972 WfpLwf - ok
20:46:48.0969 0972 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
20:46:48.0969 0972 WIMMount - ok
20:46:49.0051 0972 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
20:46:49.0051 0972 WinUSB - ok
20:46:49.0081 0972 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
20:46:49.0081 0972 WmiAcpi - ok
20:46:49.0114 0972 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
20:46:49.0114 0972 ws2ifsl - ok
20:46:49.0169 0972 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
20:46:49.0171 0972 WudfPf - ok
20:46:49.0204 0972 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:46:49.0206 0972 WUDFRd - ok
20:46:49.0251 0972 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:46:49.0256 0972 \Device\Harddisk0\DR0 - ok
20:46:49.0259 0972 Boot (0x1200) (40d26137be4244fdd6d361d1c13bafff) \Device\Harddisk0\DR0\Partition0
20:46:49.0261 0972 \Device\Harddisk0\DR0\Partition0 - ok
20:46:49.0289 0972 Boot (0x1200) (cb159a14385a2c1adede31e4af0a91aa) \Device\Harddisk0\DR0\Partition1
20:46:49.0289 0972 \Device\Harddisk0\DR0\Partition1 - ok
20:46:49.0291 0972 ============================================================
20:46:49.0291 0972 Scan finished
20:46:49.0291 0972 ============================================================
20:46:49.0299 1972 Detected object count: 0
20:46:49.0299 1972 Actual detected object count: 0
20:52:03.0231 1508 ============================================================
20:52:03.0231 1508 Scan started
20:52:03.0231 1508 Mode: Manual;
20:52:03.0231 1508 ============================================================
20:52:03.0501 1508 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
20:52:03.0503 1508 1394ohci - ok
20:52:03.0546 1508 Accelerometer (5c368f4b04ed2a923e6afca2d37baff5) C:\Windows\system32\DRIVERS\Accelerometer.sys
20:52:03.0546 1508 Accelerometer - ok
20:52:03.0571 1508 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
20:52:03.0573 1508 ACPI - ok
20:52:03.0591 1508 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
20:52:03.0591 1508 AcpiPmi - ok
20:52:03.0643 1508 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
20:52:03.0648 1508 adp94xx - ok
20:52:03.0661 1508 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
20:52:03.0663 1508 adpahci - ok
20:52:03.0683 1508 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
20:52:03.0683 1508 adpu320 - ok
20:52:03.0738 1508 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
20:52:03.0741 1508 AFD - ok
20:52:03.0776 1508 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
20:52:03.0776 1508 agp440 - ok
20:52:03.0803 1508 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
20:52:03.0803 1508 aliide - ok
20:52:03.0823 1508 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
20:52:03.0823 1508 amdide - ok
20:52:03.0856 1508 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
20:52:03.0856 1508 AmdK8 - ok
20:52:03.0873 1508 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
20:52:03.0876 1508 AmdPPM - ok
20:52:03.0898 1508 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
20:52:03.0898 1508 amdsata - ok
20:52:03.0921 1508 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
20:52:03.0921 1508 amdsbs - ok
20:52:03.0953 1508 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
20:52:03.0953 1508 amdxata - ok
20:52:03.0986 1508 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
20:52:03.0986 1508 androidusb - ok
20:52:04.0036 1508 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
20:52:04.0038 1508 AppID - ok
20:52:04.0053 1508 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
20:52:04.0053 1508 arc - ok
20:52:04.0063 1508 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
20:52:04.0063 1508 arcsas - ok
20:52:04.0088 1508 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
20:52:04.0088 1508 AsyncMac - ok
20:52:04.0113 1508 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
20:52:04.0116 1508 atapi - ok
20:52:04.0151 1508 atksgt (1fd0fa6618b31fad14385740d0f6c333) C:\Windows\system32\DRIVERS\atksgt.sys
20:52:04.0153 1508 atksgt - ok
20:52:04.0198 1508 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
20:52:04.0201 1508 b06bdrv - ok
20:52:04.0228 1508 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
20:52:04.0231 1508 b57nd60a - ok
20:52:04.0258 1508 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
20:52:04.0258 1508 Beep - ok
20:52:04.0276 1508 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
20:52:04.0278 1508 blbdrive - ok
20:52:04.0306 1508 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
20:52:04.0306 1508 bowser - ok
20:52:04.0316 1508 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:52:04.0316 1508 BrFiltLo - ok
20:52:04.0326 1508 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:52:04.0326 1508 BrFiltUp - ok
20:52:04.0373 1508 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
20:52:04.0373 1508 Brserid - ok
20:52:04.0383 1508 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
20:52:04.0383 1508 BrSerWdm - ok
20:52:04.0396 1508 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:52:04.0396 1508 BrUsbMdm - ok
20:52:04.0403 1508 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
20:52:04.0406 1508 BrUsbSer - ok
20:52:04.0443 1508 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
20:52:04.0443 1508 BthEnum - ok
20:52:04.0456 1508 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
20:52:04.0458 1508 BTHMODEM - ok
20:52:04.0503 1508 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
20:52:04.0506 1508 BthPan - ok
20:52:04.0538 1508 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
20:52:04.0541 1508 BTHPORT - ok
20:52:04.0563 1508 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
20:52:04.0566 1508 BTHUSB - ok
20:52:04.0591 1508 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
20:52:04.0593 1508 cdfs - ok
20:52:04.0621 1508 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
20:52:04.0621 1508 cdrom - ok
20:52:04.0663 1508 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
20:52:04.0666 1508 circlass - ok
20:52:04.0708 1508 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
20:52:04.0711 1508 CLFS - ok
20:52:04.0733 1508 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
20:52:04.0736 1508 CmBatt - ok
20:52:04.0771 1508 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
20:52:04.0771 1508 cmdide - ok
20:52:04.0833 1508 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
20:52:04.0833 1508 CNG - ok
20:52:04.0853 1508 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
20:52:04.0853 1508 Compbatt - ok
20:52:04.0883 1508 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
20:52:04.0886 1508 CompositeBus - ok
20:52:04.0926 1508 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
20:52:04.0926 1508 crcdisk - ok
20:52:04.0993 1508 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
20:52:04.0996 1508 CSC - ok
20:52:05.0056 1508 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
20:52:05.0056 1508 DfsC - ok
20:52:05.0071 1508 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
20:52:05.0071 1508 discache - ok
20:52:05.0096 1508 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
20:52:05.0096 1508 Disk - ok
20:52:05.0133 1508 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
20:52:05.0133 1508 drmkaud - ok
20:52:05.0181 1508 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
20:52:05.0181 1508 dtsoftbus01 - ok
20:52:05.0253 1508 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
20:52:05.0258 1508 DXGKrnl - ok
20:52:05.0288 1508 eamon (85e3ed13ec107a20d9b018328e0c9737) C:\Windows\system32\DRIVERS\eamon.sys
20:52:05.0291 1508 eamon - ok
20:52:05.0421 1508 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
20:52:05.0438 1508 ebdrv - ok
20:52:05.0476 1508 ehdrv (518fb66d5e21b2c246f96c1d9153cadc) C:\Windows\system32\DRIVERS\ehdrv.sys
20:52:05.0476 1508 ehdrv - ok
20:52:05.0521 1508 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
20:52:05.0526 1508 elxstor - ok
20:52:05.0548 1508 epfwwfpr (60643217107fd0dd2d11d0936f86506f) C:\Windows\system32\DRIVERS\epfwwfpr.sys
20:52:05.0551 1508 epfwwfpr - ok
20:52:05.0596 1508 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
20:52:05.0596 1508 ErrDev - ok
20:52:05.0633 1508 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
20:52:05.0633 1508 exfat - ok
20:52:05.0668 1508 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
20:52:05.0668 1508 fastfat - ok
20:52:05.0681 1508 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
20:52:05.0681 1508 fdc - ok
20:52:05.0713 1508 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
20:52:05.0713 1508 FileInfo - ok
20:52:05.0733 1508 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
20:52:05.0736 1508 Filetrace - ok
20:52:05.0743 1508 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
20:52:05.0746 1508 flpydisk - ok
20:52:05.0788 1508 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
20:52:05.0791 1508 FltMgr - ok
20:52:05.0818 1508 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
20:52:05.0818 1508 FsDepends - ok
20:52:05.0838 1508 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
20:52:05.0841 1508 Fs_Rec - ok
20:52:05.0888 1508 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
20:52:05.0891 1508 fvevol - ok
20:52:05.0918 1508 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:52:05.0918 1508 gagp30kx - ok
20:52:05.0948 1508 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
20:52:05.0948 1508 hcw85cir - ok
20:52:06.0008 1508 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
20:52:06.0011 1508 HdAudAddService - ok
20:52:06.0041 1508 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
20:52:06.0043 1508 HDAudBus - ok
20:52:06.0051 1508 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
20:52:06.0051 1508 HidBatt - ok
20:52:06.0061 1508 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
20:52:06.0064 1508 HidBth - ok
20:52:06.0096 1508 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
20:52:06.0096 1508 HidIr - ok
20:52:06.0124 1508 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
20:52:06.0126 1508 HidUsb - ok
20:52:06.0166 1508 hpdskflt (4e0bec0f78096ffd6d3314b497fc49d3) C:\Windows\system32\DRIVERS\hpdskflt.sys
20:52:06.0166 1508 hpdskflt - ok
20:52:06.0196 1508 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
20:52:06.0196 1508 HpSAMD - ok
20:52:06.0249 1508 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
20:52:06.0251 1508 HTTP - ok
20:52:06.0306 1508 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
20:52:06.0306 1508 hwpolicy - ok
20:52:06.0336 1508 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
20:52:06.0336 1508 i8042prt - ok
20:52:06.0374 1508 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
20:52:06.0374 1508 iaStorV - ok
20:52:06.0419 1508 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
20:52:06.0419 1508 iirsp - ok
20:52:06.0456 1508 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
20:52:06.0459 1508 intelide - ok
20:52:06.0474 1508 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
20:52:06.0476 1508 intelppm - ok
20:52:06.0526 1508 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:52:06.0526 1508 IpFilterDriver - ok
20:52:06.0551 1508 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
20:52:06.0554 1508 IPMIDRV - ok
20:52:06.0574 1508 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
20:52:06.0574 1508 IPNAT - ok
20:52:06.0601 1508 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
20:52:06.0604 1508 IRENUM - ok
20:52:06.0629 1508 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
20:52:06.0629 1508 isapnp - ok
20:52:06.0654 1508 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
20:52:06.0654 1508 iScsiPrt - ok
20:52:06.0694 1508 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
20:52:06.0694 1508 kbdclass - ok
20:52:06.0726 1508 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
20:52:06.0726 1508 kbdhid - ok
20:52:06.0776 1508 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
20:52:06.0776 1508 KSecDD - ok
20:52:06.0826 1508 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
20:52:06.0826 1508 KSecPkg - ok
20:52:06.0866 1508 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
20:52:06.0866 1508 ksthunk - ok
20:52:06.0956 1508 lirsgt (5ea407821bb3104c31a705175ab4f309) C:\Windows\system32\DRIVERS\lirsgt.sys
20:52:06.0956 1508 lirsgt - ok
20:52:06.0974 1508 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
20:52:06.0976 1508 lltdio - ok
20:52:07.0019 1508 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:52:07.0019 1508 LSI_FC - ok
20:52:07.0029 1508 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:52:07.0031 1508 LSI_SAS - ok
20:52:07.0041 1508 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:52:07.0041 1508 LSI_SAS2 - ok
20:52:07.0051 1508 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:52:07.0051 1508 LSI_SCSI - ok
20:52:07.0079 1508 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
20:52:07.0081 1508 luafv - ok
20:52:07.0094 1508 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
20:52:07.0094 1508 megasas - ok
20:52:07.0126 1508 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
20:52:07.0129 1508 MegaSR - ok
20:52:07.0166 1508 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
20:52:07.0166 1508 Modem - ok
20:52:07.0186 1508 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
20:52:07.0186 1508 monitor - ok
20:52:07.0214 1508 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
20:52:07.0214 1508 mouclass - ok
20:52:07.0259 1508 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
20:52:07.0259 1508 mouhid - ok
20:52:07.0301 1508 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
20:52:07.0304 1508 mountmgr - ok
20:52:07.0349 1508 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
20:52:07.0349 1508 mpio - ok
20:52:07.0379 1508 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
20:52:07.0379 1508 mpsdrv - ok
20:52:07.0421 1508 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
20:52:07.0424 1508 MRxDAV - ok
20:52:07.0459 1508 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:52:07.0459 1508 mrxsmb - ok
20:52:07.0501 1508 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:52:07.0504 1508 mrxsmb10 - ok
20:52:07.0529 1508 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:52:07.0529 1508 mrxsmb20 - ok
20:52:07.0559 1508 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
20:52:07.0561 1508 msahci - ok
20:52:07.0594 1508 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
20:52:07.0594 1508 msdsm - ok
20:52:07.0651 1508 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
20:52:07.0651 1508 Msfs - ok
20:52:07.0671 1508 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
20:52:07.0674 1508 mshidkmdf - ok
20:52:07.0691 1508 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
20:52:07.0691 1508 msisadrv - ok
20:52:07.0726 1508 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
20:52:07.0726 1508 MSKSSRV - ok
20:52:07.0736 1508 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
20:52:07.0736 1508 MSPCLOCK - ok
20:52:07.0746 1508 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
20:52:07.0746 1508 MSPQM - ok
20:52:07.0796 1508 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
20:52:07.0799 1508 MsRPC - ok
20:52:07.0814 1508 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
20:52:07.0814 1508 mssmbios - ok
20:52:07.0844 1508 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
20:52:07.0844 1508 MSTEE - ok
20:52:07.0851 1508 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
20:52:07.0851 1508 MTConfig - ok
20:52:07.0886 1508 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
20:52:07.0886 1508 Mup - ok
20:52:07.0916 1508 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
20:52:07.0919 1508 NativeWifiP - ok
20:52:07.0994 1508 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
20:52:07.0999 1508 NDIS - ok
20:52:08.0029 1508 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
20:52:08.0029 1508 NdisCap - ok
20:52:08.0054 1508 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
20:52:08.0054 1508 NdisTapi - ok
20:52:08.0104 1508 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
20:52:08.0104 1508 Ndisuio - ok
20:52:08.0156 1508 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
20:52:08.0156 1508 NdisWan - ok
20:52:08.0211 1508 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
20:52:08.0211 1508 NDProxy - ok
20:52:08.0231 1508 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
20:52:08.0231 1508 NetBIOS - ok
20:52:08.0284 1508 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
20:52:08.0284 1508 NetBT - ok
20:52:08.0486 1508 NETw5s64 (39ede676d17f37af4573c2b33ec28aca) C:\Windows\system32\DRIVERS\NETw5s64.sys
20:52:08.0529 1508 NETw5s64 - ok
20:52:08.0686 1508 netw5v64 (f17eda58c8c5b1a4f873b322729168ff) C:\Windows\system32\DRIVERS\netw5v64.sys
20:52:08.0711 1508 netw5v64 - ok
20:52:08.0736 1508 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
20:52:08.0739 1508 nfrd960 - ok
20:52:08.0766 1508 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
20:52:08.0766 1508 Npfs - ok
20:52:08.0791 1508 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
20:52:08.0791 1508 nsiproxy - ok
20:52:08.0851 1508 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
20:52:08.0859 1508 Ntfs - ok
20:52:08.0881 1508 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
20:52:08.0881 1508 Null - ok
20:52:08.0924 1508 NVHDA (6e022d5f44cd8b029cf799807bb31269) C:\Windows\system32\drivers\nvhda64v.sys
20:52:08.0924 1508 NVHDA - ok
20:52:09.0186 1508 nvlddmkm (9433bac10deb18fe9f6220d5e984d999) C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:52:09.0236 1508 nvlddmkm - ok
20:52:09.0289 1508 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
20:52:09.0291 1508 nvraid - ok
20:52:09.0321 1508 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
20:52:09.0321 1508 nvstor - ok
20:52:09.0346 1508 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
20:52:09.0349 1508 nv_agp - ok
20:52:09.0384 1508 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
20:52:09.0384 1508 ohci1394 - ok
20:52:09.0441 1508 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
20:52:09.0444 1508 Parport - ok
20:52:09.0489 1508 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
20:52:09.0489 1508 partmgr - ok
20:52:09.0511 1508 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
20:52:09.0511 1508 pci - ok
20:52:09.0531 1508 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
20:52:09.0531 1508 pciide - ok
20:52:09.0559 1508 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
20:52:09.0559 1508 pcmcia - ok
20:52:09.0584 1508 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
20:52:09.0584 1508 pcw - ok
20:52:09.0619 1508 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
20:52:09.0624 1508 PEAUTH - ok
20:52:09.0701 1508 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
20:52:09.0701 1508 PptpMiniport - ok
20:52:09.0736 1508 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
20:52:09.0736 1508 Processor - ok
20:52:09.0786 1508 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
20:52:09.0786 1508 Psched - ok
20:52:09.0859 1508 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
20:52:09.0869 1508 ql2300 - ok
20:52:09.0879 1508 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
20:52:09.0879 1508 ql40xx - ok
20:52:09.0919 1508 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
20:52:09.0919 1508 QWAVEdrv - ok
20:52:09.0929 1508 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
20:52:09.0929 1508 RasAcd - ok
20:52:09.0981 1508 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:52:09.0981 1508 RasAgileVpn - ok
20:52:10.0039 1508 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:52:10.0039 1508 Rasl2tp - ok
20:52:10.0061 1508 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
20:52:10.0061 1508 RasPppoe - ok
20:52:10.0081 1508 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
20:52:10.0084 1508 RasSstp - ok
20:52:10.0131 1508 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
20:52:10.0134 1508 rdbss - ok
20:52:10.0149 1508 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
20:52:10.0149 1508 rdpbus - ok
20:52:10.0169 1508 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:52:10.0169 1508 RDPCDD - ok
20:52:10.0221 1508 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
20:52:10.0221 1508 RDPDR - ok
20:52:10.0246 1508 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
20:52:10.0246 1508 RDPENCDD - ok
20:52:10.0274 1508 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
20:52:10.0274 1508 RDPREFMP - ok
20:52:10.0314 1508 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
20:52:10.0314 1508 RdpVideoMiniport - ok
20:52:10.0361 1508 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
20:52:10.0364 1508 RDPWD - ok
20:52:10.0414 1508 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
20:52:10.0416 1508 rdyboost - ok
20:52:10.0474 1508 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
20:52:10.0474 1508 RFCOMM - ok
20:52:10.0496 1508 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
20:52:10.0496 1508 rspndr - ok
20:52:10.0546 1508 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
20:52:10.0546 1508 RTL8167 - ok
20:52:10.0586 1508 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
20:52:10.0586 1508 s3cap - ok
20:52:10.0621 1508 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
20:52:10.0621 1508 sbp2port - ok
20:52:10.0659 1508 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
20:52:10.0659 1508 scfilter - ok
20:52:10.0691 1508 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
20:52:10.0694 1508 sdbus - ok
20:52:10.0751 1508 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
20:52:10.0751 1508 secdrv - ok
20:52:10.0791 1508 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
20:52:10.0791 1508 Serenum - ok
20:52:10.0819 1508 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
20:52:10.0821 1508 Serial - ok
20:52:10.0846 1508 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
20:52:10.0849 1508 sermouse - ok
20:52:10.0881 1508 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
20:52:10.0881 1508 sffdisk - ok
20:52:10.0899 1508 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
20:52:10.0901 1508 sffp_mmc - ok
20:52:10.0921 1508 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
20:52:10.0924 1508 sffp_sd - ok
20:52:10.0931 1508 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
20:52:10.0934 1508 sfloppy - ok
20:52:10.0949 1508 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:52:10.0949 1508 SiSRaid2 - ok
20:52:10.0981 1508 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
20:52:10.0981 1508 SiSRaid4 - ok
20:52:10.0991 1508 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
20:52:10.0994 1508 Smb - ok
20:52:11.0034 1508 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
20:52:11.0034 1508 spldr - ok
20:52:11.0079 1508 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
20:52:11.0081 1508 srv - ok
20:52:11.0104 1508 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
20:52:11.0106 1508 srv2 - ok
20:52:11.0121 1508 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
20:52:11.0124 1508 srvnet - ok
20:52:11.0151 1508 ssadbus (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
20:52:11.0151 1508 ssadbus - ok
20:52:11.0176 1508 ssadmdfl (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
20:52:11.0179 1508 ssadmdfl - ok
20:52:11.0206 1508 ssadmdm (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
20:52:11.0209 1508 ssadmdm - ok
20:52:11.0241 1508 ssadserd (d33d1bd3ec0e766211a234f56a12726d) C:\Windows\system32\DRIVERS\ssadserd.sys
20:52:11.0241 1508 ssadserd - ok
20:52:11.0286 1508 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
20:52:11.0286 1508 stexstor - ok
20:52:11.0334 1508 STHDA (e01797a54f8a61512b7e590fde6d1988) C:\Windows\system32\DRIVERS\stwrt64.sys
20:52:11.0336 1508 STHDA - ok
20:52:11.0366 1508 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
20:52:11.0366 1508 storflt - ok
20:52:11.0394 1508 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
20:52:11.0394 1508 storvsc - ok
20:52:11.0426 1508 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
20:52:11.0429 1508 swenum - ok
20:52:11.0441 1508 Synth3dVsc - ok
20:52:11.0541 1508 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
20:52:11.0551 1508 Tcpip - ok
20:52:11.0619 1508 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
20:52:11.0629 1508 TCPIP6 - ok
20:52:11.0689 1508 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
20:52:11.0689 1508 tcpipreg - ok
20:52:11.0741 1508 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
20:52:11.0741 1508 TDPIPE - ok
20:52:11.0751 1508 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
20:52:11.0751 1508 TDTCP - ok
20:52:11.0794 1508 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
20:52:11.0794 1508 tdx - ok
20:52:11.0834 1508 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
20:52:11.0834 1508 TermDD - ok
20:52:11.0899 1508 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:52:11.0899 1508 tssecsrv - ok
20:52:11.0931 1508 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
20:52:11.0931 1508 TsUsbFlt - ok
20:52:11.0941 1508 tsusbhub - ok
20:52:11.0994 1508 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
20:52:11.0996 1508 tunnel - ok
20:52:12.0044 1508 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
20:52:12.0044 1508 uagp35 - ok
20:52:12.0089 1508 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
20:52:12.0091 1508 udfs - ok
20:52:12.0149 1508 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
20:52:12.0151 1508 uliagpkx - ok
20:52:12.0194 1508 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
20:52:12.0194 1508 umbus - ok
20:52:12.0216 1508 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
20:52:12.0216 1508 UmPass - ok
20:52:12.0254 1508 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
20:52:12.0256 1508 usbccgp - ok
20:52:12.0294 1508 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
20:52:12.0294 1508 usbcir - ok
20:52:12.0324 1508 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
20:52:12.0324 1508 usbehci - ok
20:52:12.0354 1508 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
20:52:12.0354 1508 usbhub - ok
20:52:12.0379 1508 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
20:52:12.0379 1508 usbohci - ok
20:52:12.0409 1508 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
20:52:12.0409 1508 usbprint - ok
20:52:12.0436 1508 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:52:12.0436 1508 USBSTOR - ok
20:52:12.0466 1508 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
20:52:12.0466 1508 usbuhci - ok
20:52:12.0494 1508 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
20:52:12.0494 1508 usbvideo - ok
20:52:12.0516 1508 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
20:52:12.0516 1508 vdrvroot - ok
20:52:12.0531 1508 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
20:52:12.0531 1508 vga - ok
20:52:12.0549 1508 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
20:52:12.0549 1508 VgaSave - ok
20:52:12.0556 1508 VGPU - ok
20:52:12.0596 1508 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
20:52:12.0596 1508 vhdmp - ok
20:52:12.0641 1508 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
20:52:12.0641 1508 viaide - ok
20:52:12.0671 1508 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
20:52:12.0671 1508 vmbus - ok
20:52:12.0696 1508 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
20:52:12.0696 1508 VMBusHID - ok
20:52:12.0719 1508 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
20:52:12.0719 1508 volmgr - ok
20:52:12.0769 1508 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
20:52:12.0771 1508 volmgrx - ok
20:52:12.0811 1508 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
20:52:12.0814 1508 volsnap - ok
20:52:12.0851 1508 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
20:52:12.0854 1508 vsmraid - ok
20:52:12.0879 1508 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
20:52:12.0879 1508 vwifibus - ok
20:52:12.0896 1508 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
20:52:12.0896 1508 vwififlt - ok
20:52:12.0906 1508 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
20:52:12.0906 1508 vwifimp - ok
20:52:12.0921 1508 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
20:52:12.0921 1508 WacomPen - ok
20:52:12.0936 1508 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:52:12.0939 1508 WANARP - ok
20:52:12.0946 1508 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:52:12.0949 1508 Wanarpv6 - ok
20:52:12.0969 1508 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
20:52:12.0969 1508 Wd - ok
20:52:12.0999 1508 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
20:52:13.0004 1508 Wdf01000 - ok
20:52:13.0041 1508 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
20:52:13.0041 1508 WfpLwf - ok
20:52:13.0074 1508 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
20:52:13.0074 1508 WIMMount - ok
20:52:13.0124 1508 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
20:52:13.0124 1508 WinUSB - ok
20:52:13.0141 1508 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
20:52:13.0144 1508 WmiAcpi - ok
20:52:13.0176 1508 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
20:52:13.0176 1508 ws2ifsl - ok
20:52:13.0229 1508 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
20:52:13.0231 1508 WudfPf - ok
20:52:13.0254 1508 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:52:13.0256 1508 WUDFRd - ok
20:52:13.0291 1508 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:52:13.0296 1508 \Device\Harddisk0\DR0 - ok
20:52:13.0299 1508 Boot (0x1200) (40d26137be4244fdd6d361d1c13bafff) \Device\Harddisk0\DR0\Partition0
20:52:13.0299 1508 \Device\Harddisk0\DR0\Partition0 - ok
20:52:13.0329 1508 Boot (0x1200) (cb159a14385a2c1adede31e4af0a91aa) \Device\Harddisk0\DR0\Partition1
20:52:13.0329 1508 \Device\Harddisk0\DR0\Partition1 - ok
20:52:13.0329 1508 ============================================================
20:52:13.0329 1508 Scan finished
20:52:13.0329 1508 ============================================================
20:52:13.0336 0696 Detected object count: 0
20:52:13.0336 0696 Actual detected object count: 0
20:52:20.0981 1608 Deinitialize success

#7 Příspěvek od **vyosek** » 12 pro 2011 20:57

OK, tohle bylo jen pro ujisteni pac RogueKilleru se neco nelibilo

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

Pokud ho havet blokuje, pouzijte jeden z nasledujicich
motji píše: Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill SCR:
http://download.bleepingcomputer.com/grinler/rkill.scr

Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif
Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
Spustte tradicne dvojklikem - program probehne temer okamzite a ukonci i svou cinnost
RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
Ted nerestartujte PC - prisli byste o ucinek RKillu

Aplikujte exeHelper by Raktor

Linky ke stazeni
- COM soubor http://vyosek.ic.cz/BE/exeHelper.com
- SCR soubor http://vyosek.ic.cz/BE/exeHelper.scr
Utilitu staci spustit jako Spravce (klik pravym mysidlem), probehne oprava a vznikne log exehelperlog.txt

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Masso · #8 Příspěvek od **Masso** » 12 pro 2011 21:04

mam otazku, pracujem pod nudzovym rezimom kde ta havet nebezi, aby som vedel robit aspon nieco, mam teda restartnut do normalneho rezimu ked stiahnem tie programy? lebo ked ten shield bezi tak sa nedostanem ani do IE alebo Opery....

#9 Příspěvek od **vyosek** » 12 pro 2011 21:09

Kroky co jsem napsal udelejte klikne v nouzovem rezimu

ComboFix stahnete odsud http://www.infospyware.com/Software/ComboFix.exe BleepingComputeru spadl web, takze je nedostupny

Masso · #10 Příspěvek od **Masso** » 12 pro 2011 22:38

tak konecne prikladam log z combofixu. kedze nefungoval server bleepingcomputru tak som mal co robit kym som vygooglil rkill, exehelper a combofix bo 90% odkazov bolo prave na bleepingcomputer. ale rkill nevypol rezidentny stit nod32 tak dufam ze log bude ucinny, log z exehelperu mozem prilozit...

ComboFix 11-12-12.02 - Masso 12.12.2011 22:24:34.1.2 - x64 NETWORK
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2045.1463 [GMT 1:00]
Spuštěný z: c:\users\Masso\Desktop\nove\ComboFix1.exe
AV: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
SP: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-12 do 2011-12-12 )))))))))))))))))))))))))))))))
.
.
2011-12-12 21:30 . 2011-12-12 21:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-12 21:21 . 2011-12-12 21:23 -------- d-----w- C:\ComboFix
2011-12-12 21:18 . 2011-12-12 21:18 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{66F53C24-4F02-4C1E-9858-E65C83B41587}\offreg.dll
2011-12-12 19:01 . 2011-12-12 19:01 -------- d-----w- c:\program files\trend micro
2011-12-12 19:01 . 2011-12-12 19:01 -------- d-----w- C:\rsit
2011-12-12 14:25 . 2011-12-12 14:25 -------- d-----w- c:\windows\system32\appmgmt
2011-12-12 13:35 . 2011-12-12 13:35 -------- d-----w- c:\program files\ESET
2011-12-12 11:57 . 2011-12-12 11:57 -------- d-----w- C:\Temp
2011-12-12 11:57 . 2011-12-12 11:57 -------- d-----w- c:\users\Masso\AppData\Local\Samsung
2011-12-12 11:56 . 2011-12-12 11:56 -------- d-----w- c:\users\Masso\AppData\Roaming\Samsung
2011-12-10 16:07 . 2011-10-27 01:25 36328 ----a-w- c:\windows\system32\drivers\ssadadb.sys
2011-12-10 16:07 . 2011-10-27 01:25 1917416 ----a-w- c:\windows\system32\WdfCoInstaller01005.dll
2011-12-10 16:07 . 2011-10-27 01:25 1917416 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01005.dll
2011-12-10 16:07 . 2011-10-27 01:25 177640 ----a-w- c:\windows\system32\drivers\ssadmdm.sys
2011-12-10 16:07 . 2011-10-27 01:25 16872 ----a-w- c:\windows\system32\drivers\ssadmdfl.sys
2011-12-10 16:07 . 2011-10-27 01:25 157672 ----a-w- c:\windows\system32\drivers\ssadbus.sys
2011-12-10 16:07 . 2011-10-27 01:25 146920 ----a-w- c:\windows\system32\drivers\ssadserd.sys
2011-12-10 16:07 . 2011-10-27 01:25 13800 ----a-w- c:\windows\system32\drivers\ssadwhnt.sys
2011-12-10 16:07 . 2011-10-27 01:25 13800 ----a-w- c:\windows\system32\drivers\ssadwh.sys
2011-12-10 16:07 . 2011-10-27 01:25 13288 ----a-w- c:\windows\system32\drivers\ssadcmnt.sys
2011-12-10 16:07 . 2011-10-27 01:25 13288 ----a-w- c:\windows\system32\drivers\ssadcm.sys
2011-12-10 16:06 . 2011-11-29 15:39 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll
2011-12-10 16:05 . 2011-12-10 16:05 -------- d-----w- c:\program files (x86)\MarkAny
2011-12-10 16:05 . 2011-11-29 15:38 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll
2011-12-10 16:05 . 2011-12-10 16:06 -------- d-----w- c:\program files (x86)\Samsung
2011-12-10 16:05 . 2011-12-10 16:06 -------- d-----w- c:\programdata\Samsung
2011-12-10 16:04 . 2011-12-10 16:04 -------- d-----w- c:\users\Masso\AppData\Local\Downloaded Installations
2011-12-09 20:34 . 2011-12-09 20:34 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-12-09 20:34 . 2011-12-09 20:34 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-12-09 19:17 . 2011-12-09 20:36 -------- d-----w- c:\users\Masso\AppData\Local\Ubisoft Game Launcher
2011-12-09 19:08 . 2008-03-05 15:04 489480 ----a-w- c:\windows\system32\XAudio2_0.dll
2011-12-06 12:45 . 2011-11-30 01:21 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{66F53C24-4F02-4C1E-9858-E65C83B41587}\mpengine.dll
2011-12-02 11:34 . 2011-09-29 04:03 3144704 ----a-w- c:\windows\system32\win32k.sys
2011-12-02 11:34 . 2011-08-17 05:26 613888 ----a-w- c:\windows\system32\psisdecd.dll
2011-12-02 11:34 . 2011-08-17 04:24 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll
2011-12-02 11:34 . 2011-08-17 04:19 75776 ----a-w- c:\windows\SysWow64\psisrndr.ax
2011-12-02 11:34 . 2011-08-17 05:25 108032 ----a-w- c:\windows\system32\psisrndr.ax
2011-12-02 11:34 . 2011-08-13 05:27 6144 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2011-12-02 11:34 . 2011-08-13 04:18 6144 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
2011-12-02 11:34 . 2011-08-27 05:37 331776 ----a-w- c:\windows\system32\oleacc.dll
2011-12-02 11:34 . 2011-08-27 04:26 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2011-12-02 11:34 . 2011-08-27 04:26 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
2011-12-02 11:34 . 2011-08-27 05:37 861696 ----a-w- c:\windows\system32\oleaut32.dll
2011-11-27 11:18 . 2011-11-27 11:29 -------- d-----w- c:\users\Masso\AppData\Local\ElevatedDiagnostics
2011-11-23 06:28 . 2011-11-23 06:28 -------- d-----w- c:\users\Masso\AppData\Roaming\Sawer
2011-11-23 06:27 . 2011-11-23 06:27 -------- d-----w- c:\users\Masso\AppData\Roaming\Hardcore
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-27 15:23 . 2011-10-27 15:21 52736 ----a-w- c:\windows\ipuninst.exe
2011-10-10 12:05 . 2011-10-10 12:05 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-10-10 12:04 . 2011-10-10 12:04 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-10-04 11:40 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-10-04 11:40 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"= "c:\program files (x86)\BS_Player\tbBS_P.dll" [2009-05-20 2085400]
.
[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 14:50 1197448 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
2009-05-20 16:05 2085400 ----a-w- c:\program files (x86)\BS_Player\tbBS_P.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"= "c:\program files (x86)\BS_Player\tbBS_P.dll" [2009-05-20 2085400]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
.
[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
"KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2011-11-29 935312]
"KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2011-11-29 21392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"="c:\program files (x86)\Winamp\winampa.exe" [2010-01-13 37888]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2011-11-29 3508624]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe [2010-9-2 255536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
R1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21bd21dd0a38d98e\AESTSr64.exe [2008-06-27 89088]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-11-16 735960]
R2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
R2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-11-18 721712]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S3 NETw5s64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 10:11 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-13 15935520]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-13 82464]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-11-16 2716216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = my.daemon-search.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\translat\WebIE.dll
TCP: DhcpNameServer = 195.146.132.58 195.146.128.62
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-Nektra OEAPI - (no file)
Wow6432Node-HKCU-Run-OEXPRESS - (no file)
WebBrowser-{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-SysTrayApp - c:\program files (x86)\IDT\WDM\sttray64.exe
AddRemove-Heroes III The Shadow of Death - c:\a\old games\HOMM III\Uninst.isu
AddRemove-McAfee Security Scan - c:\program files (x86)\McAfee Security Scan\uninstall.exe
AddRemove-PC Translator - c:\users\Masso\AppData\Local\Temp\UN32.EXE
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-647148261-3916247163-2175208366-1000\Software\SecuROM\License information*]
"datasecu"=hex:2e,b7,07,b1,62,ac,7c,16,b9,35,1f,dd,dc,17,0d,8f,97,f5,ea,e3,07,
e1,ef,07,d5,a6,2d,9c,c5,ba,53,7d,68,85,0e,1e,14,07,01,a0,bd,d1,21,67,8c,22,\
"rkeysecu"=hex:8e,6b,f3,74,59,60,56,c5,33,a9,3a,1f,59,dd,ea,6b
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-12-12 22:32:33
ComboFix-quarantined-files.txt 2011-12-12 21:32
.
Před spuštěním: 4 647 038 976
Po spuštění: 4 838 051 840
.
- - End Of File - - AAEBD25F826B36AF8AD6368324759D40

#11 Příspěvek od **vyosek** » 13 pro 2011 08:48

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

Folder::
c:\program files (x86)\Ask.com

File::
c:\program files (x86)\BS_Player\tbBS_P.dll
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"=-
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"=-
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"=-
"SwitchBoard"=-
"AdobeCS5ServiceManager"=-
"NBAgent"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=-

Driver::
NAUpdate

DDS::
uStart Page = my.daemon-search.com

RegNull::
[HKEY_USERS\S-1-5-21-647148261-3916247163-2175208366-1000\Software\SecuROM\License information*]

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

ClearJavaCache::

AtJob::

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

Masso · #12 Příspěvek od **Masso** » 13 pro 2011 09:25

dobre rano prajem

tak po aplikacii scriptu na combofix som nechal restartovat pc do normalneho rezimu, tvari sa ze security shield uz nenabieha ale nechcelo mi spustit operu ani Iexplorer, ze chyba nejaky kluc k registru, prikladam log z combofix po pouziti scriptu:

ComboFix 11-12-12.02 - Masso 13.12.2011 9:04.2.2 - x64 NETWORK
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2045.1266 [GMT 1:00]
Spuštěný z: c:\users\Masso\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Masso\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
SP: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\program files (x86)\BS_Player\tbBS_P.dll"
"c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Ask.com
c:\program files (x86)\Ask.com\cobrand.ico
c:\program files (x86)\Ask.com\config.xml
c:\program files (x86)\Ask.com\favicon.ico
c:\program files (x86)\Ask.com\GenericAskToolbar.dll
c:\program files (x86)\Ask.com\mupcfg.xml
c:\program files (x86)\Ask.com\SaUpdate.exe
c:\program files (x86)\Ask.com\UpdateTask.exe
c:\program files (x86)\BS_Player\tbBS_P.dll
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_NAUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-13 do 2011-12-13 )))))))))))))))))))))))))))))))
.
.
2011-12-12 19:01 . 2011-12-12 19:01 -------- d-----w- c:\program files\trend micro
2011-12-12 19:01 . 2011-12-12 19:01 -------- d-----w- C:\rsit
2011-12-12 14:25 . 2011-12-12 14:25 -------- d-----w- c:\windows\system32\appmgmt
2011-12-12 13:35 . 2011-12-12 13:35 -------- d-----w- c:\program files\ESET
2011-12-12 11:57 . 2011-12-12 11:57 -------- d-----w- C:\Temp
2011-12-12 11:57 . 2011-12-12 11:57 -------- d-----w- c:\users\Masso\AppData\Local\Samsung
2011-12-12 11:56 . 2011-12-12 11:56 -------- d-----w- c:\users\Masso\AppData\Roaming\Samsung
2011-12-10 16:07 . 2011-10-27 01:25 36328 ----a-w- c:\windows\system32\drivers\ssadadb.sys
2011-12-10 16:07 . 2011-10-27 01:25 1917416 ----a-w- c:\windows\system32\WdfCoInstaller01005.dll
2011-12-10 16:07 . 2011-10-27 01:25 1917416 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01005.dll
2011-12-10 16:07 . 2011-10-27 01:25 177640 ----a-w- c:\windows\system32\drivers\ssadmdm.sys
2011-12-10 16:07 . 2011-10-27 01:25 16872 ----a-w- c:\windows\system32\drivers\ssadmdfl.sys
2011-12-10 16:07 . 2011-10-27 01:25 157672 ----a-w- c:\windows\system32\drivers\ssadbus.sys
2011-12-10 16:07 . 2011-10-27 01:25 146920 ----a-w- c:\windows\system32\drivers\ssadserd.sys
2011-12-10 16:07 . 2011-10-27 01:25 13800 ----a-w- c:\windows\system32\drivers\ssadwhnt.sys
2011-12-10 16:07 . 2011-10-27 01:25 13800 ----a-w- c:\windows\system32\drivers\ssadwh.sys
2011-12-10 16:07 . 2011-10-27 01:25 13288 ----a-w- c:\windows\system32\drivers\ssadcmnt.sys
2011-12-10 16:07 . 2011-10-27 01:25 13288 ----a-w- c:\windows\system32\drivers\ssadcm.sys
2011-12-10 16:06 . 2011-11-29 15:39 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll
2011-12-10 16:05 . 2011-12-10 16:05 -------- d-----w- c:\program files (x86)\MarkAny
2011-12-10 16:05 . 2011-11-29 15:38 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll
2011-12-10 16:05 . 2011-12-10 16:06 -------- d-----w- c:\program files (x86)\Samsung
2011-12-10 16:05 . 2011-12-10 16:06 -------- d-----w- c:\programdata\Samsung
2011-12-10 16:04 . 2011-12-10 16:04 -------- d-----w- c:\users\Masso\AppData\Local\Downloaded Installations
2011-12-09 20:34 . 2011-12-09 20:34 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-12-09 20:34 . 2011-12-09 20:34 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-12-09 19:17 . 2011-12-09 20:36 -------- d-----w- c:\users\Masso\AppData\Local\Ubisoft Game Launcher
2011-12-09 19:08 . 2008-03-05 15:04 489480 ----a-w- c:\windows\system32\XAudio2_0.dll
2011-12-06 12:45 . 2011-11-30 01:21 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{66F53C24-4F02-4C1E-9858-E65C83B41587}\mpengine.dll
2011-12-02 11:34 . 2011-09-29 04:03 3144704 ----a-w- c:\windows\system32\win32k.sys
2011-12-02 11:34 . 2011-08-17 05:26 613888 ----a-w- c:\windows\system32\psisdecd.dll
2011-12-02 11:34 . 2011-08-17 04:24 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll
2011-12-02 11:34 . 2011-08-17 04:19 75776 ----a-w- c:\windows\SysWow64\psisrndr.ax
2011-12-02 11:34 . 2011-08-17 05:25 108032 ----a-w- c:\windows\system32\psisrndr.ax
2011-12-02 11:34 . 2011-08-13 05:27 6144 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2011-12-02 11:34 . 2011-08-13 04:18 6144 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
2011-12-02 11:34 . 2011-08-27 05:37 331776 ----a-w- c:\windows\system32\oleacc.dll
2011-12-02 11:34 . 2011-08-27 04:26 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2011-12-02 11:34 . 2011-08-27 04:26 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
2011-12-02 11:34 . 2011-08-27 05:37 861696 ----a-w- c:\windows\system32\oleaut32.dll
2011-11-27 11:18 . 2011-11-27 11:29 -------- d-----w- c:\users\Masso\AppData\Local\ElevatedDiagnostics
2011-11-23 06:28 . 2011-11-23 06:28 -------- d-----w- c:\users\Masso\AppData\Roaming\Sawer
2011-11-23 06:27 . 2011-11-23 06:27 -------- d-----w- c:\users\Masso\AppData\Roaming\Hardcore
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-27 15:23 . 2011-10-27 15:21 52736 ----a-w- c:\windows\ipuninst.exe
2011-10-10 12:05 . 2011-10-10 12:05 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-10-10 12:04 . 2011-10-10 12:04 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-10-04 11:40 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-10-04 11:40 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-12-12_21.30.52 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-14 05:10 . 2011-12-13 08:13 39246 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
- 2009-07-14 05:10 . 2011-12-12 18:35 39246 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-06-11 10:59 . 2011-12-13 08:13 13178 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-647148261-3916247163-2175208366-1000_UserData.bin
- 2011-12-12 21:16 . 2011-12-12 21:16 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-12-13 08:11 . 2011-12-13 08:11 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-12-13 08:11 . 2011-12-13 08:11 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-12-12 21:16 . 2011-12-12 21:16 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
"KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2011-11-29 935312]
"KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2011-11-29 21392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2011-11-29 3508624]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21bd21dd0a38d98e\AESTSr64.exe [2008-06-27 89088]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-11-16 735960]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-11-18 721712]
S3 NETw5s64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 10:11 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-13 15935520]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-13 82464]
"SysTrayApp"="c:\program files (x86)\IDT\WDM\sttray64.exe" [BU]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-11-16 2716216]
"combofix"="c:\combofix\CF1189.3XE" [2010-11-20 345088]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\translat\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\translat\WebIE.dll
TCP: DhcpNameServer = 195.146.128.62 195.146.132.58
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2011-12-13 09:17:55 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-12-13 08:17
ComboFix2.txt 2011-12-12 21:32
.
Před spuštěním: 4 919 390 208
Po spuštění: 4 784 545 792
.
- - End Of File - - E57CACEB98C54808DB51EE5E0E2F617B

#13 Příspěvek od **vyosek** » 13 pro 2011 09:27

Restartujte jeste jednou PC, mely by se registry dat do kupy.

Napiste ci je to OK

Masso · #14 Příspěvek od **Masso** » 13 pro 2011 09:41

Tvari sa ze by to uz malo byt v poriadku, po Security shield uz nevidim ani stopy. Dakujem velmi pekne za ochotu a cas ktory ste mi venoval

#15 Příspěvek od **vyosek** » 13 pro 2011 09:45

Tak jeste uklidime

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

VIRY.CZ

Problem s Security shield

Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield

Re: Problem s Security shield