pomoc asi virus

[vyosek]

Restartujte znovu PC, to pomuze, pak mi sem dejte log

[marwe666]

reset pomohol a tu je ten log

dufam ze je to ten spravny


ComboFix 11-12-15.02 - Martin . 12. 2011 17:38:38.2.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.421.1051.18.2047.1273 [GMT 1:00]
Running from: c:\users\Martin\Downloads\ComboFix.exe
Command switches used :: c:\users\Martin\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
c:\program files\ICQ6Toolbar\voucher.bmp
c:\program files\ICQ6Toolbar\voucher2.bmp
C:\Windows 7 Loader
c:\windows 7 loader\Certificates\Acer.XRM-MS
c:\windows 7 loader\Certificates\Alienware.XRM-MS
c:\windows 7 loader\Certificates\Asus.XRM-MS
c:\windows 7 loader\Certificates\Dell.XRM-MS
c:\windows 7 loader\Certificates\Founder.XRM-MS
c:\windows 7 loader\Certificates\Fujitsu.XRM-MS
c:\windows 7 loader\Certificates\HP.XRM-MS
c:\windows 7 loader\Certificates\Lenovo.XRM-MS
c:\windows 7 loader\Certificates\MSI.XRM-MS
c:\windows 7 loader\Certificates\Note.txt
c:\windows 7 loader\Certificates\Toshiba.XRM-MS
c:\windows 7 loader\Keys.ini
c:\windows 7 loader\Notes\Arguments.txt
c:\windows 7 loader\Notes\Beta loader changelog.txt
c:\windows 7 loader\Notes\How to recover Windows.txt
c:\windows 7 loader\Notes\How to restore tokens.txt
c:\windows 7 loader\Notes\Checksums.txt
c:\windows 7 loader\Notes\qipinfium9032.exe
c:\windows 7 loader\Notes\Version history.txt
c:\windows 7 loader\Windows 7 Loader.exe
K:\Recycler
K:\Windows 7 Loader v1.9.2
k:\windows 7 loader v1.9.2\___
k:\windows 7 loader v1.9.2\Keys.ini
k:\windows 7 loader v1.9.2\Read me.txt
k:\windows 7 loader v1.9.2\Windows Loader.exe
.
Infected copy of c:\windows\system32\userinit.exe was found and disinfected
Restored copy from - c:\windows\ERDNT\cache\userinit.exe
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_ICQ Service
.
.
((((((((((((((((((((((((( Files Created from 2011-11-15 to 2011-12-15 )))))))))))))))))))))))))))))))
.
.
2011-12-15 16:49 . 2011-12-15 16:54 -------- d-----w- c:\users\Martin\AppData\Local\temp
2011-12-15 16:49 . 2011-12-15 16:49 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-15 12:21 . 2011-12-15 16:30 -------- d-----w- c:\users\Martin\AppData\Roaming\vlc
2011-12-15 12:15 . 2011-12-15 12:15 -------- d-----w- c:\users\Martin\AppData\Roaming\DAEMON Tools Lite
2011-12-15 11:42 . 2011-12-15 11:42 -------- d-----w- c:\program files\trend micro
2011-12-15 11:42 . 2011-12-15 11:43 -------- d-----w- C:\rsit
2011-12-15 11:36 . 2011-12-15 13:20 -------- d-----w- C:\UsbFix
2011-11-19 22:49 . 2011-11-19 22:49 -------- d-----w- c:\users\Martin\AppData\Local\Aiseesoft Studio
2011-11-19 22:49 . 2011-11-19 22:49 -------- d-----w- c:\programdata\Aiseesoft Studio
2011-11-19 22:49 . 2011-11-19 22:49 -------- d-----w- c:\program files\Aiseesoft Studio
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-15 13:20 . 2011-12-15 13:20 13807949 ----a-w- C:\UsbFix_Upload_Me_MARTIN-PC.zip
2011-05-08 16:31 . 2011-03-30 21:03 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Azmimi"="c:\users\Martin\AppData\Roaming\Azmimi.exe" [BU]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 61440]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"pdfFactory Pro Dispečer v3"="c:\windows\system32\spool\DRIVERS\W32X86\3\fppdis3a.exe" [2009-12-11 614400]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-06-08 9267816]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl.sys [2010-04-19 18432]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-02-02 691696]
S1 aswSP;aswSP; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-14 172032]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2010-07-07 47360]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSGB6.sys [2009-07-13 48128]
.
.
.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 158.193.86.1 158.193.86.5
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\q7snpjfi.default\
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
.
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\ATK Hotkey\ASLDRSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\P4G\BatteryLife.exe
c:\program files\ATK Hotkey\Hcontrol.exe
c:\program files\Wireless Console 2\wcourier.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\taskhost.exe
c:\program files\ATK Hotkey\ATKOSD.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Completion time: 2011-12-15 17:57:28 - machine was rebooted
ComboFix-quarantined-files.txt 2011-12-15 16:57
ComboFix2.txt 2011-12-15 15:42
.
Pre-Run: 14 619 852 800 bytes free
Post-Run: 14 264 176 640 bytes free
.
- - End Of File - - 83D04B516A12CFF3BFE730FF83223038

[vyosek]

Neco se nam tam obnovuje

Stahnete OTM (viz muj podpis)

• Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
• Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

• Kód: Vybrat vše

  :reg
  [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "Azmimi"=-
  
  :files
  c:\users\Martin\AppData\Roaming\*.exe
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]

• Kliknete na cervene tlacitko MoveIt!
• Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

[marwe666]

hotovo



All processes killed
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Azmimi deleted successfully.
========== FILES ==========
File/Folder c:\users\Martin\AppData\Roaming\*.exe not found.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\msdownld.tmp folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Martin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 44699889 bytes
->Java cache emptied: 24469594 bytes
->FireFox cache emptied: 136283450 bytes
->Google Chrome cache emptied: 244102317 bytes
->Flash cache emptied: 710 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 429,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Martin
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.19.0 log created on 12152011_182057

Files moved on Reboot...
File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[vyosek]

Zabalte slozku C:\Qoobox a nekam mi ji prosim uploadnete

Taktez mi prosim uploadnete soubor C:\UsbFix_Upload_Me_MARTIN-PC.zip

[marwe666]

este stale to nieje vsetko v poriadku?

tu je ten USB fix http://www.ulozto.sk/11792618/usbfix-up ... tin-pc-zip

qoobox nechce zbalit.. alebo upnem celu zlozku?

[vyosek]

Jeste se chci mrknout do karanten na vzorky...Ten qoobox bych rad tez nekde mel, z nej budu cerpat

[marwe666]

Bohuzial mi to odmieta winrar... a nic ine ma nenapada..
este tam ma nejaky bordel ci toto je uz len do Vasej databazy?

[vyosek]

Z jakeho duvodu to winrar odmita A i B je spravne, bordel zrejme je a vzorek napovi a tez chci mit vzorky abych mohl na dalsi usery aplikovat ucinnejsi metody.

[marwe666]

vobec to nechce zbalit

[vyosek]

Zkuste zabalit aspon obsah slozky a ne slozku samotnou jako takovou

[marwe666]

no nieco sa podarilo.. ale neviem ci je tam vsetko lebo jeden subor nemohlo nacitat


http://www.ulozto.sk/11793226/qoobox-rar

[vyosek]

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
• Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
• Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
• Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
• Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
• Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte

[marwe666]

19:15:01.0587 5856 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
19:15:01.0929 5856 ============================================================
19:15:01.0929 5856 Current date / time: 2011/12/15 19:15:01.0929
19:15:01.0929 5856 SystemInfo:
19:15:01.0929 5856
19:15:01.0929 5856 OS Version: 6.1.7600 ServicePack: 0.0
19:15:01.0929 5856 Product type: Workstation
19:15:01.0929 5856 ComputerName: MARTIN-PC
19:15:01.0931 5856 UserName: Martin
19:15:01.0931 5856 Windows directory: C:\Windows
19:15:01.0931 5856 System windows directory: C:\Windows
19:15:01.0931 5856 Processor architecture: Intel x86
19:15:01.0931 5856 Number of processors: 2
19:15:01.0931 5856 Page size: 0x1000
19:15:01.0931 5856 Boot type: Normal boot
19:15:01.0931 5856 ============================================================
19:15:03.0362 5856 Initialize success
19:15:06.0522 5172 ============================================================
19:15:06.0522 5172 Scan started
19:15:06.0522 5172 Mode: Manual;
19:15:06.0522 5172 ============================================================
19:15:07.0756 5172 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
19:15:07.0759 5172 1394ohci - ok
19:15:07.0833 5172 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
19:15:07.0837 5172 ACPI - ok
19:15:07.0904 5172 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
19:15:07.0905 5172 AcpiPmi - ok
19:15:08.0056 5172 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
19:15:08.0061 5172 adp94xx - ok
19:15:08.0242 5172 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
19:15:08.0246 5172 adpahci - ok
19:15:08.0323 5172 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
19:15:08.0325 5172 adpu320 - ok
19:15:08.0509 5172 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
19:15:08.0519 5172 AFD - ok
19:15:08.0580 5172 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
19:15:08.0582 5172 agp440 - ok
19:15:08.0653 5172 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
19:15:08.0655 5172 aic78xx - ok
19:15:08.0793 5172 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
19:15:08.0794 5172 aliide - ok
19:15:08.0906 5172 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
19:15:08.0907 5172 amdagp - ok
19:15:08.0949 5172 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
19:15:08.0950 5172 amdide - ok
19:15:09.0041 5172 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
19:15:09.0043 5172 AmdK8 - ok
19:15:09.0092 5172 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
19:15:09.0093 5172 AmdPPM - ok
19:15:09.0214 5172 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
19:15:09.0216 5172 amdsata - ok
19:15:09.0291 5172 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
19:15:09.0293 5172 amdsbs - ok
19:15:09.0343 5172 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
19:15:09.0344 5172 amdxata - ok
19:15:09.0452 5172 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
19:15:09.0454 5172 AppID - ok
19:15:09.0661 5172 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
19:15:09.0662 5172 arc - ok
19:15:09.0699 5172 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
19:15:09.0701 5172 arcsas - ok
19:15:09.0818 5172 ASMMAP (7b4d08d2017ac06689d422e06c43f0aa) C:\Program Files\ATKGFNEX\ASMMAP.sys
19:15:09.0819 5172 ASMMAP - ok
19:15:09.0968 5172 aswFsBlk (a0d86b8ac93ef95620420c7a24ac5344) C:\Windows\system32\drivers\aswFsBlk.sys
19:15:09.0970 5172 aswFsBlk - ok
19:15:10.0026 5172 aswMonFlt (bd9119468c32b7ecd1e0544d3f286a73) C:\Windows\system32\drivers\aswMonFlt.sys
19:15:10.0027 5172 aswMonFlt - ok
19:15:10.0067 5172 aswRdr (69823954bbd461a73d69774928c9737e) C:\Windows\system32\drivers\aswRdr.sys
19:15:10.0068 5172 aswRdr - ok
19:15:10.0113 5172 aswSP (7ecc2776638b04553f9a85bd684c3abf) C:\Windows\system32\drivers\aswSP.sys
19:15:10.0115 5172 aswSP - ok
19:15:10.0157 5172 aswTdi (095ed820a926aa8189180b305e1bcfc9) C:\Windows\system32\drivers\aswTdi.sys
19:15:10.0158 5172 aswTdi - ok
19:15:10.0228 5172 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
19:15:10.0229 5172 AsyncMac - ok
19:15:10.0273 5172 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
19:15:10.0274 5172 atapi - ok
19:15:10.0357 5172 athr (76bab0c824e2d05b940c4dd40a9b08bf) C:\Windows\system32\DRIVERS\athr.sys
19:15:10.0369 5172 athr - ok
19:15:10.0616 5172 atikmdag (65e22aa757601fb497ef495b202fb1a9) C:\Windows\system32\DRIVERS\atikmdag.sys
19:15:10.0686 5172 atikmdag - ok
19:15:10.0906 5172 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
19:15:10.0912 5172 b06bdrv - ok
19:15:10.0993 5172 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
19:15:10.0996 5172 b57nd60x - ok
19:15:11.0131 5172 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
19:15:11.0132 5172 Beep - ok
19:15:11.0209 5172 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
19:15:11.0210 5172 blbdrive - ok
19:15:11.0335 5172 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
19:15:11.0337 5172 bowser - ok
19:15:11.0448 5172 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:15:11.0449 5172 BrFiltLo - ok
19:15:11.0561 5172 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:15:11.0561 5172 BrFiltUp - ok
19:15:11.0620 5172 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
19:15:11.0623 5172 Brserid - ok
19:15:11.0700 5172 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
19:15:11.0701 5172 BrSerWdm - ok
19:15:11.0759 5172 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:15:11.0760 5172 BrUsbMdm - ok
19:15:11.0859 5172 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
19:15:11.0861 5172 BrUsbSer - ok
19:15:11.0943 5172 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\DRIVERS\BthEnum.sys
19:15:11.0944 5172 BthEnum - ok
19:15:12.0073 5172 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
19:15:12.0074 5172 BTHMODEM - ok
19:15:12.0178 5172 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
19:15:12.0180 5172 BthPan - ok
19:15:12.0269 5172 BTHPORT (4a34888e13224678dd062466afec4240) C:\Windows\system32\Drivers\BTHport.sys
19:15:12.0273 5172 BTHPORT - ok
19:15:12.0375 5172 BTHUSB (fa04c63916fa221dbb91fce153d07a55) C:\Windows\system32\Drivers\BTHUSB.sys
19:15:12.0376 5172 BTHUSB - ok
19:15:12.0480 5172 catchme - ok
19:15:12.0636 5172 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
19:15:12.0637 5172 cdfs - ok
19:15:12.0739 5172 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
19:15:12.0740 5172 cdrom - ok
19:15:12.0812 5172 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
19:15:12.0813 5172 circlass - ok
19:15:12.0875 5172 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
19:15:12.0878 5172 CLFS - ok
19:15:12.0967 5172 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
19:15:12.0968 5172 CmBatt - ok
19:15:13.0002 5172 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
19:15:13.0003 5172 cmdide - ok
19:15:13.0079 5172 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
19:15:13.0084 5172 CNG - ok
19:15:13.0154 5172 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
19:15:13.0155 5172 Compbatt - ok
19:15:13.0250 5172 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:15:13.0252 5172 CompositeBus - ok
19:15:13.0325 5172 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
19:15:13.0326 5172 crcdisk - ok
19:15:13.0412 5172 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
19:15:13.0416 5172 CSC - ok
19:15:13.0601 5172 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
19:15:13.0603 5172 DfsC - ok
19:15:13.0705 5172 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
19:15:13.0706 5172 discache - ok
19:15:13.0872 5172 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
19:15:13.0873 5172 Disk - ok
19:15:14.0000 5172 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
19:15:14.0000 5172 drmkaud - ok
19:15:14.0072 5172 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys
19:15:14.0081 5172 DXGKrnl - ok
19:15:14.0326 5172 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
19:15:14.0361 5172 ebdrv - ok
19:15:14.0533 5172 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
19:15:14.0539 5172 elxstor - ok
19:15:14.0595 5172 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
19:15:14.0596 5172 ErrDev - ok
19:15:14.0713 5172 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
19:15:14.0715 5172 exfat - ok
19:15:14.0786 5172 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
19:15:14.0788 5172 fastfat - ok
19:15:14.0907 5172 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
19:15:14.0908 5172 fdc - ok
19:15:14.0971 5172 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
19:15:14.0972 5172 FileInfo - ok
19:15:15.0067 5172 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
19:15:15.0069 5172 Filetrace - ok
19:15:15.0228 5172 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
19:15:15.0229 5172 flpydisk - ok
19:15:15.0280 5172 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
19:15:15.0282 5172 FltMgr - ok
19:15:15.0380 5172 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
19:15:15.0382 5172 FsDepends - ok
19:15:15.0461 5172 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
19:15:15.0463 5172 Fs_Rec - ok
19:15:15.0567 5172 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
19:15:15.0570 5172 fvevol - ok
19:15:15.0697 5172 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:15:15.0699 5172 gagp30kx - ok
19:15:15.0736 5172 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:15:15.0738 5172 GEARAspiWDM - ok
19:15:15.0784 5172 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
19:15:15.0785 5172 hcw85cir - ok
19:15:15.0867 5172 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
19:15:15.0871 5172 HdAudAddService - ok
19:15:16.0022 5172 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:15:16.0022 5172 HDAudBus - ok
19:15:16.0077 5172 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
19:15:16.0077 5172 HidBatt - ok
19:15:16.0127 5172 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
19:15:16.0127 5172 HidBth - ok
19:15:16.0205 5172 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
19:15:16.0207 5172 HidIr - ok
19:15:16.0377 5172 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
19:15:16.0378 5172 HidUsb - ok
19:15:16.0506 5172 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
19:15:16.0508 5172 HpSAMD - ok
19:15:16.0608 5172 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
19:15:16.0617 5172 HTTP - ok
19:15:16.0689 5172 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
19:15:16.0690 5172 hwpolicy - ok
19:15:16.0819 5172 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
19:15:16.0821 5172 i8042prt - ok
19:15:16.0924 5172 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
19:15:16.0929 5172 iaStorV - ok
19:15:17.0031 5172 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
19:15:17.0033 5172 iirsp - ok
19:15:17.0304 5172 IntcAzAudAddService (5a4aad2240cb8b50ffeaedb2bf747abd) C:\Windows\system32\drivers\RTKVHDA.sys
19:15:17.0345 5172 IntcAzAudAddService - ok
19:15:17.0487 5172 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
19:15:17.0488 5172 intelide - ok
19:15:17.0552 5172 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
19:15:17.0554 5172 intelppm - ok
19:15:17.0633 5172 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:15:17.0635 5172 IpFilterDriver - ok
19:15:17.0808 5172 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:15:17.0810 5172 IPMIDRV - ok
19:15:17.0857 5172 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
19:15:17.0859 5172 IPNAT - ok
19:15:18.0020 5172 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
19:15:18.0022 5172 IRENUM - ok
19:15:18.0102 5172 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
19:15:18.0103 5172 isapnp - ok
19:15:18.0167 5172 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
19:15:18.0170 5172 iScsiPrt - ok
19:15:18.0247 5172 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:15:18.0248 5172 kbdclass - ok
19:15:18.0320 5172 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
19:15:18.0322 5172 kbdhid - ok
19:15:18.0431 5172 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
19:15:18.0433 5172 KSecDD - ok
19:15:18.0461 5172 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
19:15:18.0464 5172 KSecPkg - ok
19:15:18.0656 5172 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
19:15:18.0658 5172 lltdio - ok
19:15:18.0849 5172 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:15:18.0852 5172 LSI_FC - ok
19:15:18.0950 5172 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:15:18.0952 5172 LSI_SAS - ok
19:15:19.0050 5172 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:15:19.0052 5172 LSI_SAS2 - ok
19:15:19.0161 5172 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:15:19.0164 5172 LSI_SCSI - ok
19:15:19.0239 5172 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
19:15:19.0241 5172 luafv - ok
19:15:19.0290 5172 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
19:15:19.0291 5172 megasas - ok
19:15:19.0361 5172 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
19:15:19.0364 5172 MegaSR - ok
19:15:19.0501 5172 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
19:15:19.0503 5172 Modem - ok
19:15:19.0581 5172 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
19:15:19.0583 5172 monitor - ok
19:15:19.0679 5172 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
19:15:19.0681 5172 mouclass - ok
19:15:19.0773 5172 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
19:15:19.0774 5172 mouhid - ok
19:15:19.0872 5172 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
19:15:19.0874 5172 mountmgr - ok
19:15:19.0913 5172 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
19:15:19.0915 5172 mpio - ok
19:15:20.0000 5172 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
19:15:20.0002 5172 mpsdrv - ok
19:15:20.0095 5172 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
19:15:20.0098 5172 MRxDAV - ok
19:15:20.0208 5172 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:15:20.0211 5172 mrxsmb - ok
19:15:20.0268 5172 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:15:20.0272 5172 mrxsmb10 - ok
19:15:20.0332 5172 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:15:20.0334 5172 mrxsmb20 - ok
19:15:20.0380 5172 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
19:15:20.0382 5172 msahci - ok
19:15:20.0458 5172 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
19:15:20.0460 5172 msdsm - ok
19:15:20.0500 5172 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
19:15:20.0501 5172 Msfs - ok
19:15:20.0619 5172 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
19:15:20.0619 5172 mshidkmdf - ok
19:15:20.0658 5172 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
19:15:20.0662 5172 msisadrv - ok
19:15:20.0842 5172 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
19:15:20.0844 5172 MSKSSRV - ok
19:15:20.0891 5172 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
19:15:20.0893 5172 MSPCLOCK - ok
19:15:20.0946 5172 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
19:15:20.0947 5172 MSPQM - ok
19:15:20.0978 5172 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
19:15:20.0981 5172 MsRPC - ok
19:15:21.0066 5172 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
19:15:21.0068 5172 mssmbios - ok
19:15:21.0195 5172 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
19:15:21.0196 5172 MSTEE - ok
19:15:21.0309 5172 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
19:15:21.0311 5172 MTConfig - ok
19:15:21.0388 5172 MTsensor (97affa9d95ffe20eee6229bc6be166cf) C:\Windows\system32\DRIVERS\ATKACPI.sys
19:15:21.0389 5172 MTsensor - ok
19:15:21.0447 5172 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
19:15:21.0449 5172 Mup - ok
19:15:21.0533 5172 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
19:15:21.0537 5172 NativeWifiP - ok
19:15:21.0630 5172 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
19:15:21.0641 5172 NDIS - ok
19:15:21.0737 5172 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
19:15:21.0739 5172 NdisCap - ok
19:15:21.0814 5172 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
19:15:21.0816 5172 NdisTapi - ok
19:15:21.0939 5172 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
19:15:21.0941 5172 Ndisuio - ok
19:15:22.0001 5172 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
19:15:22.0004 5172 NdisWan - ok
19:15:22.0054 5172 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
19:15:22.0056 5172 NDProxy - ok
19:15:22.0206 5172 Netaapl (7afd0e39ab15cb355487b7cc19f4e2c5) C:\Windows\system32\DRIVERS\netaapl.sys
19:15:22.0207 5172 Netaapl - ok
19:15:22.0293 5172 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
19:15:22.0295 5172 NetBIOS - ok
19:15:22.0339 5172 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
19:15:22.0343 5172 NetBT - ok
19:15:22.0536 5172 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
19:15:22.0538 5172 nfrd960 - ok
19:15:22.0719 5172 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
19:15:22.0721 5172 Npfs - ok
19:15:22.0771 5172 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
19:15:22.0772 5172 nsiproxy - ok
19:15:22.0847 5172 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
19:15:22.0866 5172 Ntfs - ok
19:15:22.0963 5172 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
19:15:22.0965 5172 Null - ok
19:15:23.0035 5172 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
19:15:23.0038 5172 nvraid - ok
19:15:23.0108 5172 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
19:15:23.0112 5172 nvstor - ok
19:15:23.0149 5172 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
19:15:23.0152 5172 nv_agp - ok
19:15:23.0298 5172 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
19:15:23.0300 5172 ohci1394 - ok
19:15:23.0467 5172 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
19:15:23.0469 5172 Parport - ok
19:15:23.0506 5172 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
19:15:23.0508 5172 partmgr - ok
19:15:23.0605 5172 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
19:15:23.0607 5172 Parvdm - ok
19:15:23.0658 5172 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
19:15:23.0661 5172 pci - ok
19:15:23.0778 5172 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
19:15:23.0780 5172 pciide - ok
19:15:23.0818 5172 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
19:15:23.0822 5172 pcmcia - ok
19:15:23.0946 5172 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
19:15:23.0947 5172 pcouffin - ok
19:15:24.0000 5172 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
19:15:24.0002 5172 pcw - ok
19:15:24.0051 5172 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
19:15:24.0061 5172 PEAUTH - ok
19:15:24.0268 5172 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
19:15:24.0271 5172 PptpMiniport - ok
19:15:24.0315 5172 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
19:15:24.0317 5172 Processor - ok
19:15:24.0469 5172 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
19:15:24.0472 5172 Psched - ok
19:15:24.0650 5172 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\Windows\system32\Drivers\PxHelp20.sys
19:15:24.0652 5172 PxHelp20 - ok
19:15:24.0747 5172 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
19:15:24.0766 5172 ql2300 - ok
19:15:24.0848 5172 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
19:15:24.0850 5172 ql40xx - ok
19:15:24.0957 5172 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
19:15:24.0959 5172 QWAVEdrv - ok
19:15:24.0993 5172 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
19:15:24.0995 5172 RasAcd - ok
19:15:25.0138 5172 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:15:25.0140 5172 RasAgileVpn - ok
19:15:25.0240 5172 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:15:25.0242 5172 Rasl2tp - ok
19:15:25.0349 5172 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
19:15:25.0352 5172 RasPppoe - ok
19:15:25.0441 5172 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
19:15:25.0443 5172 RasSstp - ok
19:15:25.0470 5172 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
19:15:25.0475 5172 rdbss - ok
19:15:25.0499 5172 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
19:15:25.0500 5172 rdpbus - ok
19:15:25.0575 5172 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:15:25.0577 5172 RDPCDD - ok
19:15:25.0634 5172 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
19:15:25.0637 5172 RDPDR - ok
19:15:25.0740 5172 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
19:15:25.0742 5172 RDPENCDD - ok
19:15:25.0780 5172 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
19:15:25.0783 5172 RDPREFMP - ok
19:15:25.0818 5172 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
19:15:25.0824 5172 RDPWD - ok
19:15:25.0968 5172 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
19:15:25.0971 5172 rdyboost - ok
19:15:26.0052 5172 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
19:15:26.0055 5172 RFCOMM - ok
19:15:26.0208 5172 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
19:15:26.0210 5172 rspndr - ok
19:15:26.0250 5172 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
19:15:26.0252 5172 s3cap - ok
19:15:26.0362 5172 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
19:15:26.0362 5172 sbp2port - ok
19:15:26.0425 5172 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
19:15:26.0428 5172 scfilter - ok
19:15:26.0564 5172 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:15:26.0566 5172 secdrv - ok
19:15:26.0663 5172 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
19:15:26.0665 5172 Serenum - ok
19:15:26.0703 5172 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
19:15:26.0705 5172 Serial - ok
19:15:26.0758 5172 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
19:15:26.0760 5172 sermouse - ok
19:15:26.0840 5172 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
19:15:26.0841 5172 sffdisk - ok
19:15:26.0884 5172 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
19:15:26.0885 5172 sffp_mmc - ok
19:15:26.0942 5172 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
19:15:26.0944 5172 sffp_sd - ok
19:15:27.0015 5172 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
19:15:27.0017 5172 sfloppy - ok
19:15:27.0111 5172 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
19:15:27.0113 5172 sisagp - ok
19:15:27.0196 5172 SiSGbeLH (6f0c643c7f49f2091b01d014eae72e1a) C:\Windows\system32\DRIVERS\SiSGB6.sys
19:15:27.0198 5172 SiSGbeLH - ok
19:15:27.0294 5172 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:15:27.0295 5172 SiSRaid2 - ok
19:15:27.0342 5172 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
19:15:27.0345 5172 SiSRaid4 - ok
19:15:27.0412 5172 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
19:15:27.0415 5172 Smb - ok
19:15:27.0522 5172 smserial (19301c27f3425dc39f6c599f527e507d) C:\Windows\system32\DRIVERS\smserial.sys
19:15:27.0537 5172 smserial - ok
19:15:27.0669 5172 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
19:15:27.0671 5172 spldr - ok
19:15:27.0854 5172 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
19:15:27.0854 5172 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
19:15:27.0858 5172 sptd ( LockedFile.Multi.Generic ) - warning
19:15:27.0858 5172 sptd - detected LockedFile.Multi.Generic (1)
19:15:27.0939 5172 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys
19:15:27.0945 5172 srv - ok
19:15:27.0997 5172 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys
19:15:28.0001 5172 srv2 - ok
19:15:28.0041 5172 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys
19:15:28.0042 5172 srvnet - ok
19:15:28.0133 5172 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
19:15:28.0135 5172 stexstor - ok
19:15:28.0208 5172 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
19:15:28.0210 5172 storflt - ok
19:15:28.0308 5172 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
19:15:28.0309 5172 storvsc - ok
19:15:28.0346 5172 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
19:15:28.0348 5172 swenum - ok
19:15:28.0530 5172 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys
19:15:28.0546 5172 Tcpip - ok
19:15:28.0695 5172 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys
19:15:28.0711 5172 TCPIP6 - ok
19:15:28.0840 5172 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
19:15:28.0842 5172 tcpipreg - ok
19:15:28.0873 5172 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
19:15:28.0874 5172 TDPIPE - ok
19:15:28.0956 5172 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
19:15:28.0958 5172 TDTCP - ok
19:15:29.0004 5172 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
19:15:29.0006 5172 tdx - ok
19:15:29.0035 5172 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
19:15:29.0037 5172 TermDD - ok
19:15:29.0154 5172 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:15:29.0156 5172 tssecsrv - ok
19:15:29.0235 5172 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
19:15:29.0237 5172 tunnel - ok
19:15:29.0279 5172 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
19:15:29.0281 5172 uagp35 - ok
19:15:29.0334 5172 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
19:15:29.0339 5172 udfs - ok
19:15:29.0438 5172 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
19:15:29.0439 5172 uliagpkx - ok
19:15:29.0540 5172 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
19:15:29.0541 5172 umbus - ok
19:15:29.0581 5172 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
19:15:29.0583 5172 UmPass - ok
19:15:29.0670 5172 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys
19:15:29.0672 5172 USBAAPL - ok
19:15:29.0721 5172 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
19:15:29.0723 5172 usbccgp - ok
19:15:29.0762 5172 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
19:15:29.0765 5172 usbcir - ok
19:15:29.0806 5172 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
19:15:29.0808 5172 usbehci - ok
19:15:29.0896 5172 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
19:15:29.0901 5172 usbhub - ok
19:15:29.0945 5172 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
19:15:29.0947 5172 usbohci - ok
19:15:30.0032 5172 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
19:15:30.0034 5172 usbprint - ok
19:15:30.0088 5172 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:15:30.0090 5172 USBSTOR - ok
19:15:30.0128 5172 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
19:15:30.0130 5172 usbuhci - ok
19:15:30.0245 5172 usbvideo (f642a7e4bf78cfa359cca0a3557c28d7) C:\Windows\system32\Drivers\usbvideo.sys
19:15:30.0248 5172 usbvideo - ok
19:15:30.0344 5172 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
19:15:30.0346 5172 vdrvroot - ok
19:15:30.0480 5172 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
19:15:30.0482 5172 vga - ok
19:15:30.0508 5172 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
19:15:30.0511 5172 VgaSave - ok
19:15:30.0576 5172 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
19:15:30.0581 5172 vhdmp - ok
19:15:30.0629 5172 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
19:15:30.0631 5172 viaagp - ok
19:15:30.0690 5172 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
19:15:30.0692 5172 ViaC7 - ok
19:15:30.0721 5172 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
19:15:30.0723 5172 viaide - ok
19:15:30.0794 5172 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
19:15:30.0797 5172 vmbus - ok
19:15:30.0829 5172 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
19:15:30.0831 5172 VMBusHID - ok
19:15:30.0921 5172 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
19:15:30.0922 5172 volmgr - ok
19:15:30.0977 5172 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
19:15:30.0983 5172 volmgrx - ok
19:15:31.0032 5172 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
19:15:31.0037 5172 volsnap - ok
19:15:31.0136 5172 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
19:15:31.0139 5172 vsmraid - ok
19:15:31.0169 5172 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
19:15:31.0171 5172 vwifibus - ok
19:15:31.0309 5172 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
19:15:31.0311 5172 vwififlt - ok
19:15:31.0368 5172 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
19:15:31.0369 5172 WacomPen - ok
19:15:31.0469 5172 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
19:15:31.0472 5172 WANARP - ok
19:15:31.0480 5172 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
19:15:31.0483 5172 Wanarpv6 - ok
19:15:31.0553 5172 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
19:15:31.0555 5172 Wd - ok
19:15:31.0615 5172 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
19:15:31.0623 5172 Wdf01000 - ok
19:15:31.0806 5172 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
19:15:31.0808 5172 WfpLwf - ok
19:15:31.0838 5172 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
19:15:31.0840 5172 WIMMount - ok
19:15:32.0034 5172 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
19:15:32.0036 5172 WinUsb - ok
19:15:32.0080 5172 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:15:32.0082 5172 WmiAcpi - ok
19:15:32.0233 5172 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
19:15:32.0235 5172 ws2ifsl - ok
19:15:32.0337 5172 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
19:15:32.0340 5172 WudfPf - ok
19:15:32.0481 5172 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:15:32.0484 5172 WUDFRd - ok
19:15:32.0577 5172 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:15:32.0614 5172 \Device\Harddisk0\DR0 - ok
19:15:32.0622 5172 Boot (0x1200) (06b0b9270a3d47b15f46113a8e882951) \Device\Harddisk0\DR0\Partition0
19:15:32.0623 5172 \Device\Harddisk0\DR0\Partition0 - ok
19:15:32.0658 5172 Boot (0x1200) (64ffedb5401584322bc8f9849beb7ac2) \Device\Harddisk0\DR0\Partition1
19:15:32.0659 5172 \Device\Harddisk0\DR0\Partition1 - ok
19:15:32.0660 5172 ============================================================
19:15:32.0660 5172 Scan finished
19:15:32.0660 5172 ============================================================
19:15:32.0685 4944 Detected object count: 1
19:15:32.0685 4944 Actual detected object count: 1
19:15:40.0690 4944 sptd ( LockedFile.Multi.Generic ) - skipped by user
19:15:40.0690 4944 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

[vyosek]

Jak se chova PC