pro vyosek

Zpráva

#16 Příspěvek od **vyosek** » 22 led 2012 19:26

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

fraha · #17 Příspěvek od **fraha** » 22 led 2012 19:36

Po stiahnuti a výstrahe Visty, že je to nebezpečné som vybral akciu povoliť aj tak, a len čo som to odklikol,
hneď sa spustila čierno zelená inštalácia a dosť rýchlo potom malá modrá obrazovka toho programu a čosi vypísala a vzápätí začala skenovať: píše mi:
Scanning for infected files . . .
This typically doesn´t taken more than 10 minutes....

Completed Stage_1
Completed Stage_2

Má to tak byť?

#18 Příspěvek od **vyosek** » 22 led 2012 19:41

Ano, tohle je v poradku, mel by vykonat neco kolem 50 tech stage

fraha · #19 Příspěvek od **fraha** » 22 led 2012 19:52

tak mam ten log ale na NTB na ktorom je problém mi po skene nejde internetové priehľadače tak to hodím cez tento:

ComboFix 12-01-21.02 - Simon . 01. 2012 19:42:39.3.2 - x86 NETWORK
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.421.1051.18.2939.2272 [GMT 1:00]
Running from: c:\users\Simon\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2011-12-22 to 2012-01-22 )))))))))))))))))))))))))))))))
.
.
2012-01-22 18:45 . 2012-01-22 18:45 -------- d-----w- c:\users\Simon\AppData\Local\temp
2012-01-22 18:45 . 2012-01-22 18:45 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-22 16:14 . 2012-01-22 16:14 -------- d-----w- c:\program files\trend micro
2012-01-22 16:14 . 2012-01-22 16:14 -------- d-----w- C:\rsit
2012-01-21 22:46 . 2012-01-21 22:58 -------- d-----w- c:\program files\RegCleaner
2012-01-21 19:54 . 2012-01-21 19:54 -------- d-----w- c:\users\Simon\AppData\Roaming\Malwarebytes
2012-01-21 19:54 . 2012-01-21 19:54 -------- d-----w- c:\programdata\Malwarebytes
2012-01-21 19:54 . 2012-01-21 19:54 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-01-21 19:54 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-01-21 19:25 . 2012-01-21 19:25 -------- d-----w- c:\users\Simon\AppData\Local\ESET
2012-01-21 17:58 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{69D7F2BD-DC24-4B28-A10F-17925CD51017}\mpengine.dll
2012-01-11 18:03 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 18:03 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
2011-12-30 18:42 . 2008-03-17 10:57 103680 ----a-w- c:\windows\system32\drivers\ewusbfake.sys
2011-12-30 18:42 . 2008-03-17 10:05 101632 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2011-12-30 18:42 . 2008-03-16 13:47 872192 ----a-w- c:\windows\system32\drivers\mod7700.sys
2011-12-30 18:42 . 2008-01-22 14:10 100864 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2011-12-30 18:42 . 2007-08-09 03:06 23424 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-15 13:29 . 2009-10-03 20:04 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-11-08 14:42 . 2011-12-14 11:33 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-08 14:47 . 2009-12-22 16:15 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-04-18 15146376]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-25 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-25 170520]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-01-17 431456]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-06-24 509816]
"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2008-09-26 417792]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-12-24 460872]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files\TOSHIBA\TRDCReminder\TRDCReminder.exe [2008-3-5 393216]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll
.
[HKLM\~\startupfolder\CCleaner.exe]
path=CCleaner.exe
backup=c:\windows\pss\CCleaner.exe.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\uninst.exe]
path=uninst.exe
backup=c:\windows\pss\uninst.exe.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-11 20:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2010-04-01 09:16 357696 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
2008-07-22 10:34 2772992 ---ha-w- c:\program files\Electronic Arts\EADM\Core.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2011-01-05 08:18 133432 ---ha-w- c:\program files\ICQ7.2\ICQ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
2007-11-20 16:15 1826816 ----a-w- c:\windows\SkyTel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2008-08-14 09:40 1348904 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toshiba Registration]
2008-01-11 02:07 574864 ----a-w- c:\program files\TOSHIBA\Registration\ToshibaRegistration.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toshiba TEMPO]
2008-04-24 08:22 103824 ----a-w- c:\program files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2008-01-21 02:25 202240 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - ECACHE
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2012-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-05 09:30]
.
2012-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-05 09:30]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://start.facemoods.com/?a=vsl
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSEA&bmod=TSEA
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-22 19:45
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
[0] 0x02000000
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-392934480-2787925916-1843694182-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:97,30,ef,2a,d8,f4,36,14,c5,d0,45,46,bb,c5,9b,16,15,0a,b0,a7,b4,e6,c8,
1e,bc,29,63,69,1a,37,8f,e4,5d,8a,9f,09,b3,f1,1e,a7,c0,c1,35,44,f4,86,06,8d,\
"??"=hex:38,3e,f9,10,e5,4b,d9,9f,e6,78,01,5e,4b,a8,97,67
.
[HKEY_USERS\S-1-5-21-392934480-2787925916-1843694182-1000\Software\SecuROM\License information*]
"datasecu"=hex:9d,00,af,2b,3f,3d,f3,5b,df,c4,d5,d4,c3,8c,18,e0,4c,f9,67,80,32,
e3,b0,c7,f6,f8,b8,85,34,79,ef,8c,d9,cf,66,88,29,94,64,f9,cd,60,a1,7a,23,d8,\
"rkeysecu"=hex:1a,41,6c,fa,51,bb,dd,4a,b9,be,67,2e,c0,cb,19,cf
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2012-01-22 19:46:50
ComboFix-quarantined-files.txt 2012-01-22 18:46
ComboFix2.txt 2012-01-22 16:04
.
Pre-Run: 13 692 375 040 bytes free
Post-Run: 13 659 811 840 bytes free
.
- - End Of File - - 7EEA48B340CC62A3AAAB6B67557DE556

#20 Příspěvek od **vyosek** » 22 led 2012 19:56

Pokud pise neco o neplatne akci na klic registru, tak jen restartujte, da se do kupy...

Udelejte znovu TDSSKiller (vsude skip), aswMBR a MBRScan

fraha · #21 Příspěvek od **fraha** » 22 led 2012 19:58

O.K.
Idem na to !

Keď urobím všetky operácie ozvem sa!!!

#22 Příspěvek od **vyosek** » 22 led 2012 20:00

Jasny, ja tu budu nakukovat

fraha · #23 Příspěvek od **fraha** » 22 led 2012 21:04

a este log z MBR:

Kód: Vybrat vše

MBRScan v1.0.6

OS             : Windows Vista Service Pack 2 (32 bit)
PROCESSOR      : x86 Family 6 Model 15 Stepping 13, GenuineIntel
BOOT           : Safe Boot with network
DATE           : 2012/01/22 (ISO 8601) at 21:04:24
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __ST932032 0AS (SD56)
BUS_TYPE       : (0x03)  P-ATA
USE_PIO        : NO
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

DISK           : Device\Harddisk1\DR2 __Kingston DataTraveler 2.0 (PMAP)
BUS_TYPE       : (0x07)  USB
USE_PIO        : NO
MAX_TRANSFER   : 64 Kb
ALIGNMENT_MASK : byte aligned
________________________________________________________________________________

Device\Harddisk0\DR0	298.1 Go  [Fixed] ==> Vista MBR Code..

MBR_MD5   : D43BFD2F2249A742678D81A53511A019
MBR_SHA1  : 481F763A3029521FD6A05CBFF6758307D49E4A04

Device\Harddisk0\Partition1	1.46 Go  	0x27 RE Hidden partition 
Device\Harddisk0\Partition2	148.9 Go  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition3	147.7 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk1\DR2	1.86 Go  [Removable] ==> Unknown MBR Code

MBR_MD5   : CDAAE7BD2A7CA7F7F35B455389FAC3E2
MBR_SHA1  : 8500DCC74AC8D73DB7DC4EE3FB6254A1BCD61F60

Device\Harddisk1\Partition1	1.86 Go  	0x0B FAT32 [CHS] 
________________________________________________________________________________


_______MBR   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.Ð¼.|.À.Ø¾.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 10 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1E FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 0F 85 0C 00 80 7E 00 80 0F 84 8A 00 B2 80   N......~......².
0x000000B0   EB 82 55 32 E4 8A 56 00 CD 13 5D EB 9C 81 3E FE   ë.U2ä.V.Í.]ë..>þ
0x000000C0   7D 55 AA 75 6E FF 76 00 E8 8A 00 0F 85 15 00 B0   }Uªun.v.è......°
0x000000D0   D1 E6 64 E8 7F 00 B0 DF E6 60 E8 78 00 B0 FF E6   Ñædè..°ßæ`èx.°.æ
0x000000E0   64 E8 71 00 B8 00 BB CD 1A 66 23 C0 75 3B 66 81   dèq.¸.»Í.f#Àu;f.
0x000000F0   FB 54 43 50 41 75 32 81 F9 02 01 72 2C 66 68 07   ûTCPAu2.ù..r,fh.
0x00000100   BB 00 00 66 68 00 02 00 00 66 68 08 00 00 00 66   »..fh....fh....f
0x00000110   53 66 53 66 55 66 68 00 00 00 00 66 68 00 7C 00   SfSfUfh....fh.|.
0x00000120   00 66 61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00   .fah...Í.Z2öê.|.
0x00000130   00 CD 18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07   .Í..·.ë..¶.ë..µ.
0x00000140   32 E4 05 00 07 8B F0 AC 3C 00 74 FC BB 07 00 B4   2ä....ð¬<.tü»..´
0x00000150   0E CD 10 EB F2 2B C9 E4 64 EB 00 24 02 E0 F8 24   .Í.ëò+Éädë.$.àø$
0x00000160   02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69 74   .ÃInvalid partit
0x00000170   69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72 20   ion table.Error 
0x00000180   6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 6E   loading operatin
0x00000190   67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E 67   g system.Missing
0x000001A0   20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65    operating syste
0x000001B0   6D 00 00 00 00 62 7A 99 CB 84 28 1C 00 00 00 20   m....bz.Ë.(.... 
0x000001C0   21 00 27 59 1A BF 00 08 00 00 00 E0 2E 00 80 59   !.'Y.¿.....à...Y
0x000001D0   1B BF 07 FE FF FF 00 E8 2E 00 00 78 9C 12 00 FE   .¿.þ...è...x...þ
0x000001E0   FF FF 07 FE FF FF 00 60 CB 12 B0 82 77 12 00 00   ...þ...`Ë.°.w...
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk1\DR2  

0x00000000   FA BE 00 7C BF 00 7A B9 00 01 FC 0E 1F 0E 07 F3   ú¾.|¿.z¹..ü....ó
0x00000010   A5 EA 16 7A 00 00 BB BE 7B 33 C9 80 3F 80 75 06   ¥ê.z..»¾{3É.?.u.
0x00000020   FE C5 8B F3 EB 07 80 3F 00 75 02 FE C1 83 C3 10   þÅ.óë..?.u.þÁ.Ã.
0x00000030   81 FB FE 7B 72 E5 83 F9 04 74 0B 81 F9 03 01 74   .ûþ{rå.ù.t..ù..t
0x00000040   0A BB A5 7A EB 2C BB 87 7A EB 27 8B 4C 02 8B 14   .»¥zë,».zë'.L...
0x00000050   B8 01 02 BB 00 7C CD 13 73 05 BB BC 7A EB 13 2E   ¸..».|Í.s.»¼zë..
0x00000060   A1 FE 7D 3D 55 AA 74 05 BB BC 7A EB 05 EA 00 7C   ¡þ}=Uªt.»¼zë.ê.|
0x00000070   00 00 2E 8A 07 3C 00 74 0C 53 BB 07 00 B4 0E CD   .....<.t.S»..´.Í
0x00000080   10 5B 43 EB ED EB FE 4E 6F 20 62 6F 6F 74 61 62   .[CëíëþNo bootab
0x00000090   6C 65 20 70 61 72 74 69 74 6F 6E 20 69 6E 20 74   le partiton in t
0x000000A0   61 62 6C 65 00 49 6E 76 61 6C 69 64 20 50 61 72   able.Invalid Par
0x000000B0   74 69 74 6F 6E 20 74 61 62 6C 65 00 49 6E 76 61   titon table.Inva
0x000000C0   6C 69 64 20 6F 72 20 64 61 6D 61 67 65 64 20 42   lid or damaged B
0x000000D0   6F 6F 74 61 62 6C 65 20 70 61 72 74 69 74 69 6F   ootable partitio
0x000000E0   6E 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   n...............
0x000000F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000100   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000110   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000120   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000130   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000140   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000150   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000160   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000170   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01   ................
0x000001C0   01 00 0B 0F 60 C7 20 00 00 00 E0 8F 3B 00 00 00   ....`Ç ...à.;...
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

fraha · #24 Příspěvek od **fraha** » 22 led 2012 21:08

Pozerám že tu nedalo jeden príspevok.
Nuž teda TDSSKiller nehlásil nič
aswMBR výpis vyzerá takto:
aswMBR version 0.9.9.1297 Copyright(c) 2011 AVAST Software
Run date: 2012-01-22 17:28:22
-----------------------------
17:28:22.451 OS Version: Windows 6.0.6002 Service Pack 2
17:28:22.451 Number of processors: 2 586 0xF0D
17:28:22.453 ComputerName: SIMON-PC UserName: Simon
17:28:23.365 Initialze error C000010E - driver not loaded
18:07:32.638 AVAST engine defs: 12012200
18:07:48.872 Scan error: Nesprávna funkcia.
18:08:27.638 The log file has been saved successfully to "C:\Users\Simon\Desktop\aswMBR.txt"

aswMBR version 0.9.9.1297 Copyright(c) 2011 AVAST Software
Run date: 2012-01-22 18:24:55
-----------------------------
18:24:55.035 OS Version: Windows 6.0.6002 Service Pack 2
18:24:55.035 Number of processors: 2 586 0xF0D
18:24:55.035 ComputerName: SIMON-PC UserName: Simon
18:25:33.239 Initialze error 0 - driver not loaded
18:25:42.194 AVAST engine defs: 12012200
18:25:56.842 Scan error: Nesprávna funkcia.
18:26:24.563 The log file has been saved successfully to "C:\Users\Simon\Desktop\aswMBR.txt"

aswMBR version 0.9.9.1297 Copyright(c) 2011 AVAST Software
Run date: 2012-01-22 20:07:20
-----------------------------
20:07:20.808 OS Version: Windows 6.0.6002 Service Pack 2
20:07:20.808 Number of processors: 2 586 0xF0D
20:07:20.823 ComputerName: SIMON-PC UserName: Simon
20:07:21.525 Initialize success
20:30:57.600 AVAST engine defs: 12012201
20:31:49.907 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:31:49.907 Disk 0 Vendor: ST932032 SD56 Size: 305245MB BusType: 3
20:31:49.938 Disk 0 MBR read successfully
20:31:49.938 Disk 0 MBR scan
20:31:49.953 Disk 0 Windows VISTA default MBR code
20:31:49.969 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
20:31:49.985 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 152463 MB offset 3074048
20:31:50.031 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 151280 MB offset 315318272
20:31:50.063 Disk 0 scanning sectors +625140400
20:31:50.187 Disk 0 scanning C:\Windows\system32\drivers
20:32:02.449 Service scanning
20:32:04.056 Modules scanning
20:32:07.472 Disk 0 trace - called modules:
20:32:07.503 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
20:32:07.503 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86cb7620]
20:32:07.519 3 CLASSPNP.SYS[8af158b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x862a3028]
20:32:08.174 AVAST engine scan C:\Windows
20:32:11.887 AVAST engine scan C:\Windows\system32
20:34:37.092 AVAST engine scan C:\Windows\system32\drivers
20:34:50.009 AVAST engine scan C:\Users\Simon
20:43:31.095 AVAST engine scan C:\ProgramData
20:53:36.095 Scan finished successfully
20:54:07.887 Disk 0 MBR has been saved successfully to "C:\Users\Simon\Desktop\MBR.dat"
20:54:07.887 The log file has been saved successfully to "C:\Users\Simon\Desktop\aswMBR.txt"

a výpis MBR je vyššie v príspevku.

Je to O.K. ?
Ako to vyzerá

#25 Příspěvek od **vyosek** » 22 led 2012 21:14

Jeste poprosim o log z TDSSKileru (vsude nastavte Skip)

Do normalniho rezimu se nedari nabootovat

fraha · #26 Příspěvek od **fraha** » 22 led 2012 21:17

TU je výpis z TDSS:

a idem skúsiť reštart NTB

#27 Příspěvek od **vyosek** » 22 led 2012 21:18

fraha píše:TU je výpis z TDSS:

a idem skúsiť reštart NTB

Nejak jste jej nevlozil

fraha · #28 Příspěvek od **fraha** » 22 led 2012 21:25

Sorry, akurát prebieha restart NTB tak čakám a hneď vložím aj z výsledkom restartu.
Výsledok ten istý konfigurujú sa aktualizácie, nič sa nedeje a krutý restart zo známou ponukou, nuž teda Safe Mode With networking...

AKo zlikvidovať nábeh aktualizácií ???
Tu je log z TDSS ( aby som znova nezabudol )

21:15:05.0007 0884 TDSS rootkit removing tool 2.7.6.0 Jan 19 2012 13:09:04
21:15:05.0204 0884 ============================================================
21:15:05.0204 0884 Current date / time: 2012/01/22 21:15:05.0204
21:15:05.0204 0884 SystemInfo:
21:15:05.0204 0884
21:15:05.0204 0884 OS Version: 6.0.6002 ServicePack: 2.0
21:15:05.0204 0884 Product type: Workstation
21:15:05.0204 0884 ComputerName: SIMON-PC
21:15:05.0204 0884 UserName: Simon
21:15:05.0204 0884 Windows directory: C:\Windows
21:15:05.0204 0884 System windows directory: C:\Windows
21:15:05.0204 0884 Processor architecture: Intel x86
21:15:05.0204 0884 Number of processors: 2
21:15:05.0204 0884 Page size: 0x1000
21:15:05.0204 0884 Boot type: Safe boot with network
21:15:05.0204 0884 ============================================================
21:15:05.0527 0884 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:15:05.0670 0884 Initialize success
21:15:14.0963 1656 ============================================================
21:15:14.0963 1656 Scan started
21:15:14.0963 1656 Mode: Manual; SigCheck; TDLFS;
21:15:14.0963 1656 ============================================================
21:15:15.0723 1656 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
21:15:15.0806 1656 ACPI - ok
21:15:15.0856 1656 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
21:15:15.0875 1656 adp94xx - ok
21:15:15.0920 1656 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
21:15:15.0931 1656 adpahci - ok
21:15:15.0961 1656 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
21:15:15.0971 1656 adpu160m - ok
21:15:16.0001 1656 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
21:15:16.0011 1656 adpu320 - ok
21:15:16.0064 1656 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
21:15:16.0079 1656 AFD - ok
21:15:16.0131 1656 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
21:15:16.0165 1656 AgereSoftModem - ok
21:15:16.0229 1656 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
21:15:16.0237 1656 agp440 - ok
21:15:16.0323 1656 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
21:15:16.0333 1656 aic78xx - ok
21:15:16.0375 1656 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
21:15:16.0383 1656 aliide - ok
21:15:16.0405 1656 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
21:15:16.0413 1656 amdagp - ok
21:15:16.0446 1656 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
21:15:16.0454 1656 amdide - ok
21:15:16.0486 1656 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
21:15:16.0508 1656 AmdK7 - ok
21:15:16.0533 1656 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
21:15:16.0557 1656 AmdK8 - ok
21:15:16.0587 1656 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
21:15:16.0596 1656 arc - ok
21:15:16.0627 1656 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
21:15:16.0636 1656 arcsas - ok
21:15:16.0673 1656 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
21:15:16.0695 1656 AsyncMac - ok
21:15:16.0732 1656 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
21:15:16.0741 1656 atapi - ok
21:15:16.0795 1656 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
21:15:16.0825 1656 athr - ok
21:15:16.0929 1656 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
21:15:16.0951 1656 Beep - ok
21:15:16.0981 1656 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
21:15:17.0003 1656 blbdrive - ok
21:15:17.0037 1656 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
21:15:17.0048 1656 bowser - ok
21:15:17.0075 1656 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
21:15:17.0093 1656 BrFiltLo - ok
21:15:17.0124 1656 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
21:15:17.0140 1656 BrFiltUp - ok
21:15:17.0227 1656 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
21:15:17.0267 1656 Brserid - ok
21:15:17.0298 1656 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
21:15:17.0337 1656 BrSerWdm - ok
21:15:17.0373 1656 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
21:15:17.0412 1656 BrUsbMdm - ok
21:15:17.0434 1656 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
21:15:17.0473 1656 BrUsbSer - ok
21:15:17.0494 1656 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
21:15:17.0533 1656 BTHMODEM - ok
21:15:17.0583 1656 catchme - ok
21:15:17.0640 1656 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
21:15:17.0663 1656 cdfs - ok
21:15:17.0700 1656 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
21:15:17.0718 1656 cdrom - ok
21:15:17.0740 1656 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
21:15:17.0761 1656 circlass - ok
21:15:17.0804 1656 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
21:15:17.0817 1656 CLFS - ok
21:15:17.0855 1656 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
21:15:17.0876 1656 CmBatt - ok
21:15:17.0895 1656 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
21:15:17.0903 1656 cmdide - ok
21:15:17.0923 1656 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
21:15:17.0931 1656 Compbatt - ok
21:15:17.0950 1656 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
21:15:17.0958 1656 crcdisk - ok
21:15:17.0988 1656 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
21:15:18.0010 1656 Crusoe - ok
21:15:18.0056 1656 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
21:15:18.0075 1656 DfsC - ok
21:15:18.0110 1656 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
21:15:18.0120 1656 disk - ok
21:15:18.0168 1656 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
21:15:18.0184 1656 drmkaud - ok
21:15:18.0225 1656 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
21:15:18.0250 1656 DXGKrnl - ok
21:15:18.0281 1656 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
21:15:18.0304 1656 E1G60 - ok
21:15:18.0348 1656 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
21:15:18.0358 1656 Ecache - ok
21:15:18.0407 1656 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
21:15:18.0422 1656 elxstor - ok
21:15:18.0459 1656 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
21:15:18.0482 1656 ErrDev - ok
21:15:18.0528 1656 ewusbnet (6150c602fc0aad1177e1adc4bad0aafd) C:\Windows\system32\DRIVERS\ewusbnet.sys
21:15:18.0538 1656 ewusbnet - ok
21:15:18.0549 1656 ew_hwusbdev - ok
21:15:18.0600 1656 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
21:15:18.0612 1656 exfat - ok
21:15:18.0657 1656 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
21:15:18.0675 1656 fastfat - ok
21:15:18.0715 1656 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
21:15:18.0738 1656 fdc - ok
21:15:18.0776 1656 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
21:15:18.0785 1656 FileInfo - ok
21:15:18.0810 1656 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
21:15:18.0832 1656 Filetrace - ok
21:15:18.0855 1656 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
21:15:18.0877 1656 flpydisk - ok
21:15:18.0912 1656 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
21:15:18.0924 1656 FltMgr - ok
21:15:18.0947 1656 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
21:15:18.0964 1656 Fs_Rec - ok
21:15:18.0994 1656 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
21:15:19.0002 1656 FwLnk - ok
21:15:19.0030 1656 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
21:15:19.0039 1656 gagp30kx - ok
21:15:19.0106 1656 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
21:15:19.0147 1656 HdAudAddService - ok
21:15:19.0188 1656 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:15:19.0215 1656 HDAudBus - ok
21:15:19.0255 1656 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
21:15:19.0294 1656 HidBth - ok
21:15:19.0310 1656 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
21:15:19.0349 1656 HidIr - ok
21:15:19.0384 1656 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
21:15:19.0403 1656 HidUsb - ok
21:15:19.0452 1656 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
21:15:19.0460 1656 HpCISSs - ok
21:15:19.0516 1656 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
21:15:19.0535 1656 HTTP - ok
21:15:19.0547 1656 huawei_enumerator - ok
21:15:19.0614 1656 hwdatacard (19e6885a061011d8dabe8f64498423fa) C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:15:19.0624 1656 hwdatacard - ok
21:15:19.0681 1656 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
21:15:19.0689 1656 i2omp - ok
21:15:19.0716 1656 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
21:15:19.0733 1656 i8042prt - ok
21:15:19.0772 1656 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
21:15:19.0798 1656 iaStor - ok
21:15:19.0849 1656 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
21:15:19.0860 1656 iaStorV - ok
21:15:19.0955 1656 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys
21:15:20.0016 1656 igfx - ok
21:15:20.0134 1656 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
21:15:20.0141 1656 iirsp - ok
21:15:20.0268 1656 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
21:15:20.0325 1656 IntcAzAudAddService - ok
21:15:20.0431 1656 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
21:15:20.0439 1656 intelide - ok
21:15:20.0464 1656 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
21:15:20.0486 1656 intelppm - ok
21:15:20.0511 1656 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:15:20.0534 1656 IpFilterDriver - ok
21:15:20.0555 1656 IpInIp - ok
21:15:20.0601 1656 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
21:15:20.0624 1656 IPMIDRV - ok
21:15:20.0665 1656 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
21:15:20.0688 1656 IPNAT - ok
21:15:20.0713 1656 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
21:15:20.0735 1656 IRENUM - ok
21:15:20.0763 1656 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
21:15:20.0771 1656 isapnp - ok
21:15:20.0813 1656 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
21:15:20.0825 1656 iScsiPrt - ok
21:15:20.0857 1656 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
21:15:20.0865 1656 iteatapi - ok
21:15:20.0893 1656 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
21:15:20.0901 1656 iteraid - ok
21:15:20.0931 1656 jswpslwf (11ad410f41af42ba12e63187e3ec141a) C:\Windows\system32\DRIVERS\jswpslwf.sys
21:15:20.0942 1656 jswpslwf - ok
21:15:20.0978 1656 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
21:15:20.0986 1656 kbdclass - ok
21:15:21.0019 1656 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
21:15:21.0041 1656 kbdhid - ok
21:15:21.0143 1656 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
21:15:21.0163 1656 KSecDD - ok
21:15:21.0218 1656 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
21:15:21.0241 1656 lltdio - ok
21:15:21.0284 1656 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
21:15:21.0292 1656 LSI_FC - ok
21:15:21.0362 1656 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
21:15:21.0371 1656 LSI_SAS - ok
21:15:21.0392 1656 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
21:15:21.0402 1656 LSI_SCSI - ok
21:15:21.0415 1656 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
21:15:21.0439 1656 luafv - ok
21:15:21.0482 1656 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
21:15:21.0489 1656 MBAMProtector - ok
21:15:21.0517 1656 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
21:15:21.0526 1656 megasas - ok
21:15:21.0557 1656 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
21:15:21.0574 1656 MegaSR - ok
21:15:21.0628 1656 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
21:15:21.0651 1656 Modem - ok
21:15:21.0692 1656 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
21:15:21.0714 1656 monitor - ok
21:15:21.0733 1656 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
21:15:21.0741 1656 mouclass - ok
21:15:21.0767 1656 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
21:15:21.0790 1656 mouhid - ok
21:15:21.0803 1656 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
21:15:21.0812 1656 MountMgr - ok
21:15:21.0839 1656 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
21:15:21.0848 1656 mpio - ok
21:15:21.0873 1656 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
21:15:21.0890 1656 mpsdrv - ok
21:15:21.0933 1656 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
21:15:21.0940 1656 Mraid35x - ok
21:15:21.0971 1656 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
21:15:21.0984 1656 MRxDAV - ok
21:15:22.0011 1656 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:15:22.0023 1656 mrxsmb - ok
21:15:22.0066 1656 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:15:22.0079 1656 mrxsmb10 - ok
21:15:22.0103 1656 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:15:22.0115 1656 mrxsmb20 - ok
21:15:22.0151 1656 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
21:15:22.0159 1656 msahci - ok
21:15:22.0179 1656 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
21:15:22.0188 1656 msdsm - ok
21:15:22.0216 1656 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
21:15:22.0238 1656 Msfs - ok
21:15:22.0265 1656 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
21:15:22.0274 1656 msisadrv - ok
21:15:22.0340 1656 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
21:15:22.0362 1656 MSKSSRV - ok
21:15:22.0383 1656 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
21:15:22.0407 1656 MSPCLOCK - ok
21:15:22.0428 1656 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
21:15:22.0449 1656 MSPQM - ok
21:15:22.0490 1656 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
21:15:22.0501 1656 MsRPC - ok
21:15:22.0537 1656 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
21:15:22.0545 1656 mssmbios - ok
21:15:22.0571 1656 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
21:15:22.0593 1656 MSTEE - ok
21:15:22.0628 1656 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
21:15:22.0637 1656 Mup - ok
21:15:22.0670 1656 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
21:15:22.0683 1656 NativeWifiP - ok
21:15:22.0730 1656 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
21:15:22.0751 1656 NDIS - ok
21:15:22.0848 1656 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
21:15:22.0865 1656 NdisTapi - ok
21:15:22.0887 1656 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
21:15:22.0910 1656 Ndisuio - ok
21:15:22.0951 1656 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:15:22.0971 1656 NdisWan - ok
21:15:23.0031 1656 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
21:15:23.0049 1656 NDProxy - ok
21:15:23.0070 1656 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
21:15:23.0092 1656 NetBIOS - ok
21:15:23.0130 1656 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
21:15:23.0149 1656 netbt - ok
21:15:23.0197 1656 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
21:15:23.0205 1656 nfrd960 - ok
21:15:23.0242 1656 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
21:15:23.0260 1656 Npfs - ok
21:15:23.0286 1656 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
21:15:23.0310 1656 nsiproxy - ok
21:15:23.0375 1656 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
21:15:23.0408 1656 Ntfs - ok
21:15:23.0453 1656 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
21:15:23.0494 1656 ntrigdigi - ok
21:15:23.0513 1656 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
21:15:23.0536 1656 Null - ok
21:15:23.0559 1656 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
21:15:23.0568 1656 nvraid - ok
21:15:23.0594 1656 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
21:15:23.0602 1656 nvstor - ok
21:15:23.0627 1656 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
21:15:23.0636 1656 nv_agp - ok
21:15:23.0649 1656 NwlnkFlt - ok
21:15:23.0663 1656 NwlnkFwd - ok
21:15:23.0699 1656 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
21:15:23.0739 1656 ohci1394 - ok
21:15:23.0802 1656 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
21:15:23.0842 1656 Parport - ok
21:15:23.0891 1656 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
21:15:23.0901 1656 partmgr - ok
21:15:23.0933 1656 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
21:15:23.0973 1656 Parvdm - ok
21:15:24.0004 1656 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
21:15:24.0016 1656 pci - ok
21:15:24.0046 1656 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys
21:15:24.0054 1656 pciide - ok
21:15:24.0083 1656 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
21:15:24.0093 1656 pcmcia - ok
21:15:24.0130 1656 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
21:15:24.0188 1656 PEAUTH - ok
21:15:24.0323 1656 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
21:15:24.0346 1656 PptpMiniport - ok
21:15:24.0383 1656 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
21:15:24.0405 1656 Processor - ok
21:15:24.0474 1656 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
21:15:24.0492 1656 PSched - ok
21:15:24.0509 1656 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
21:15:24.0516 1656 PxHelp20 - ok
21:15:24.0573 1656 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
21:15:24.0609 1656 ql2300 - ok
21:15:24.0724 1656 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
21:15:24.0733 1656 ql40xx - ok
21:15:24.0757 1656 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
21:15:24.0769 1656 QWAVEdrv - ok
21:15:24.0795 1656 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
21:15:24.0818 1656 RasAcd - ok
21:15:24.0849 1656 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:15:24.0871 1656 Rasl2tp - ok
21:15:24.0899 1656 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
21:15:24.0917 1656 RasPppoe - ok
21:15:24.0945 1656 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
21:15:24.0957 1656 RasSstp - ok
21:15:24.0998 1656 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
21:15:25.0018 1656 rdbss - ok
21:15:25.0057 1656 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:15:25.0080 1656 RDPCDD - ok
21:15:25.0110 1656 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
21:15:25.0134 1656 rdpdr - ok
21:15:25.0147 1656 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
21:15:25.0170 1656 RDPENCDD - ok
21:15:25.0249 1656 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
21:15:25.0269 1656 RDPWD - ok
21:15:25.0325 1656 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
21:15:25.0349 1656 rspndr - ok
21:15:25.0404 1656 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
21:15:25.0413 1656 RTL8169 - ok
21:15:25.0437 1656 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS
21:15:25.0446 1656 RTSTOR - ok
21:15:25.0480 1656 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
21:15:25.0488 1656 sbp2port - ok
21:15:25.0542 1656 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:15:25.0581 1656 secdrv - ok
21:15:25.0612 1656 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
21:15:25.0651 1656 Serenum - ok
21:15:25.0673 1656 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
21:15:25.0713 1656 Serial - ok
21:15:25.0739 1656 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
21:15:25.0761 1656 sermouse - ok
21:15:25.0800 1656 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
21:15:25.0817 1656 sffdisk - ok
21:15:25.0852 1656 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
21:15:25.0874 1656 sffp_mmc - ok
21:15:25.0906 1656 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
21:15:25.0928 1656 sffp_sd - ok
21:15:25.0952 1656 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
21:15:25.0992 1656 sfloppy - ok
21:15:26.0030 1656 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
21:15:26.0039 1656 sisagp - ok
21:15:26.0061 1656 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
21:15:26.0069 1656 SiSRaid2 - ok
21:15:26.0097 1656 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
21:15:26.0106 1656 SiSRaid4 - ok
21:15:26.0155 1656 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
21:15:26.0173 1656 Smb - ok
21:15:26.0216 1656 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
21:15:26.0224 1656 spldr - ok
21:15:26.0273 1656 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
21:15:26.0296 1656 sptd - ok
21:15:26.0377 1656 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
21:15:26.0393 1656 srv - ok
21:15:26.0432 1656 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
21:15:26.0444 1656 srv2 - ok
21:15:26.0469 1656 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
21:15:26.0480 1656 srvnet - ok
21:15:26.0526 1656 ss_bus (bd15182e9d2d3fabc1d1313badbd2415) C:\Windows\system32\DRIVERS\ss_bus.sys
21:15:26.0537 1656 ss_bus - ok
21:15:26.0573 1656 ss_mdfl (67d1144f249a3c5e03ebd7a2304dee11) C:\Windows\system32\DRIVERS\ss_mdfl.sys
21:15:26.0581 1656 ss_mdfl - ok
21:15:26.0618 1656 ss_mdm (954b7ce2d54c703d6a8471d6b05a5e13) C:\Windows\system32\DRIVERS\ss_mdm.sys
21:15:26.0626 1656 ss_mdm - ok
21:15:26.0662 1656 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
21:15:26.0669 1656 swenum - ok
21:15:26.0722 1656 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
21:15:26.0729 1656 Symc8xx - ok
21:15:26.0747 1656 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
21:15:26.0755 1656 Sym_hi - ok
21:15:26.0850 1656 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
21:15:26.0858 1656 Sym_u3 - ok
21:15:26.0913 1656 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
21:15:26.0922 1656 SynTP - ok
21:15:26.0997 1656 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
21:15:27.0028 1656 Tcpip - ok
21:15:27.0163 1656 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
21:15:27.0194 1656 Tcpip6 - ok
21:15:27.0238 1656 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
21:15:27.0250 1656 tcpipreg - ok
21:15:27.0304 1656 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys
21:15:27.0312 1656 tdcmdpst - ok
21:15:27.0394 1656 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
21:15:27.0416 1656 TDPIPE - ok
21:15:27.0433 1656 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
21:15:27.0456 1656 TDTCP - ok
21:15:27.0494 1656 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
21:15:27.0512 1656 tdx - ok
21:15:27.0559 1656 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
21:15:27.0568 1656 TermDD - ok
21:15:27.0641 1656 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys
21:15:27.0651 1656 tos_sps32 - ok
21:15:27.0692 1656 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:15:27.0715 1656 tssecsrv - ok
21:15:27.0736 1656 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
21:15:27.0747 1656 tunmp - ok
21:15:27.0767 1656 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
21:15:27.0779 1656 tunnel - ok
21:15:27.0815 1656 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
21:15:27.0821 1656 TVALZ - ok
21:15:27.0866 1656 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
21:15:27.0874 1656 uagp35 - ok
21:15:27.0904 1656 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
21:15:27.0923 1656 udfs - ok
21:15:27.0964 1656 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
21:15:27.0973 1656 uliagpkx - ok
21:15:28.0012 1656 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
21:15:28.0023 1656 uliahci - ok
21:15:28.0050 1656 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
21:15:28.0059 1656 UlSata - ok
21:15:28.0089 1656 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
21:15:28.0098 1656 ulsata2 - ok
21:15:28.0123 1656 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
21:15:28.0145 1656 umbus - ok
21:15:28.0201 1656 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
21:15:28.0218 1656 usbccgp - ok
21:15:28.0252 1656 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
21:15:28.0293 1656 usbcir - ok
21:15:28.0342 1656 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
21:15:28.0360 1656 usbehci - ok
21:15:28.0409 1656 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
21:15:28.0429 1656 usbhub - ok
21:15:28.0463 1656 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
21:15:28.0502 1656 usbohci - ok
21:15:28.0551 1656 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
21:15:28.0591 1656 usbprint - ok
21:15:28.0630 1656 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:15:28.0649 1656 USBSTOR - ok
21:15:28.0675 1656 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
21:15:28.0692 1656 usbuhci - ok
21:15:28.0726 1656 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
21:15:28.0749 1656 usbvideo - ok
21:15:28.0776 1656 UVCFTR (237c444fbd1c697a2e3fa60f02c61f22) C:\Windows\system32\Drivers\UVCFTR_S.SYS
21:15:28.0784 1656 UVCFTR - ok
21:15:28.0873 1656 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
21:15:28.0895 1656 vga - ok
21:15:28.0922 1656 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
21:15:28.0945 1656 VgaSave - ok
21:15:28.0985 1656 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
21:15:28.0993 1656 viaagp - ok
21:15:29.0030 1656 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
21:15:29.0053 1656 ViaC7 - ok
21:15:29.0137 1656 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
21:15:29.0145 1656 viaide - ok
21:15:29.0180 1656 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
21:15:29.0189 1656 volmgr - ok
21:15:29.0222 1656 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
21:15:29.0236 1656 volmgrx - ok
21:15:29.0283 1656 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
21:15:29.0295 1656 volsnap - ok
21:15:29.0341 1656 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
21:15:29.0351 1656 vsmraid - ok
21:15:29.0385 1656 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
21:15:29.0425 1656 WacomPen - ok
21:15:29.0505 1656 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:15:29.0523 1656 Wanarp - ok
21:15:29.0538 1656 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:15:29.0556 1656 Wanarpv6 - ok
21:15:29.0598 1656 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
21:15:29.0606 1656 Wd - ok
21:15:29.0675 1656 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
21:15:29.0694 1656 Wdf01000 - ok
21:15:29.0810 1656 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
21:15:29.0828 1656 WmiAcpi - ok
21:15:29.0876 1656 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
21:15:29.0888 1656 WpdUsb - ok
21:15:29.0918 1656 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
21:15:29.0940 1656 ws2ifsl - ok
21:15:29.0990 1656 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:15:30.0013 1656 WUDFRd - ok
21:15:30.0044 1656 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
21:15:30.0328 1656 \Device\Harddisk0\DR0 - ok
21:15:30.0332 1656 Boot (0x1200) (aacee1cee14e57b13cce49a059f29507) \Device\Harddisk0\DR0\Partition0
21:15:30.0334 1656 \Device\Harddisk0\DR0\Partition0 - ok
21:15:30.0380 1656 Boot (0x1200) (ebf080b2421812ea9e366769271ca493) \Device\Harddisk0\DR0\Partition1
21:15:30.0382 1656 \Device\Harddisk0\DR0\Partition1 - ok
21:15:30.0385 1656 ============================================================
21:15:30.0385 1656 Scan finished
21:15:30.0385 1656 ============================================================
21:15:30.0400 0780 Detected object count: 0
21:15:30.0400 0780 Actual detected object count: 0
21:17:46.0935 1568 ============================================================
21:17:46.0935 1568 Scan started
21:17:46.0935 1568 Mode: Manual; SigCheck; TDLFS;
21:17:46.0935 1568 ============================================================
21:17:48.0027 1568 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
21:17:48.0042 1568 ACPI - ok
21:17:48.0105 1568 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
21:17:48.0120 1568 adp94xx - ok
21:17:48.0167 1568 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
21:17:48.0183 1568 adpahci - ok
21:17:48.0214 1568 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
21:17:48.0214 1568 adpu160m - ok
21:17:48.0245 1568 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
21:17:48.0261 1568 adpu320 - ok
21:17:48.0308 1568 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
21:17:48.0323 1568 AFD - ok
21:17:48.0386 1568 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
21:17:48.0417 1568 AgereSoftModem - ok
21:17:48.0479 1568 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
21:17:48.0479 1568 agp440 - ok
21:17:48.0526 1568 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
21:17:48.0542 1568 aic78xx - ok
21:17:48.0573 1568 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
21:17:48.0588 1568 aliide - ok
21:17:48.0604 1568 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
21:17:48.0620 1568 amdagp - ok
21:17:48.0635 1568 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
21:17:48.0651 1568 amdide - ok
21:17:48.0682 1568 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
21:17:48.0698 1568 AmdK7 - ok
21:17:48.0729 1568 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
21:17:48.0744 1568 AmdK8 - ok
21:17:48.0776 1568 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
21:17:48.0791 1568 arc - ok
21:17:48.0807 1568 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
21:17:48.0822 1568 arcsas - ok
21:17:48.0838 1568 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
21:17:48.0869 1568 AsyncMac - ok
21:17:48.0900 1568 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
21:17:48.0916 1568 atapi - ok
21:17:48.0978 1568 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
21:17:49.0010 1568 athr - ok
21:17:49.0056 1568 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
21:17:49.0072 1568 Beep - ok
21:17:49.0119 1568 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
21:17:49.0134 1568 blbdrive - ok
21:17:49.0166 1568 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
21:17:49.0181 1568 bowser - ok
21:17:49.0212 1568 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
21:17:49.0228 1568 BrFiltLo - ok
21:17:49.0244 1568 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
21:17:49.0259 1568 BrFiltUp - ok
21:17:49.0306 1568 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
21:17:49.0353 1568 Brserid - ok
21:17:49.0400 1568 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
21:17:49.0446 1568 BrSerWdm - ok
21:17:49.0462 1568 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
21:17:49.0509 1568 BrUsbMdm - ok
21:17:49.0524 1568 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
21:17:49.0571 1568 BrUsbSer - ok
21:17:49.0602 1568 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
21:17:49.0634 1568 BTHMODEM - ok
21:17:49.0680 1568 catchme - ok
21:17:49.0727 1568 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
21:17:49.0743 1568 cdfs - ok
21:17:49.0790 1568 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
21:17:49.0805 1568 cdrom - ok
21:17:49.0836 1568 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
21:17:49.0852 1568 circlass - ok
21:17:49.0883 1568 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
21:17:49.0899 1568 CLFS - ok
21:17:49.0930 1568 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
21:17:49.0961 1568 CmBatt - ok
21:17:49.0992 1568 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
21:17:49.0992 1568 cmdide - ok
21:17:50.0008 1568 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
21:17:50.0024 1568 Compbatt - ok
21:17:50.0039 1568 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
21:17:50.0055 1568 crcdisk - ok
21:17:50.0086 1568 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
21:17:50.0102 1568 Crusoe - ok
21:17:50.0164 1568 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
21:17:50.0164 1568 DfsC - ok
21:17:50.0195 1568 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
21:17:50.0211 1568 disk - ok
21:17:50.0258 1568 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
21:17:50.0273 1568 drmkaud - ok
21:17:50.0320 1568 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
21:17:50.0336 1568 DXGKrnl - ok
21:17:50.0367 1568 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
21:17:50.0398 1568 E1G60 - ok
21:17:50.0445 1568 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
21:17:50.0445 1568 Ecache - ok
21:17:50.0492 1568 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
21:17:50.0507 1568 elxstor - ok
21:17:50.0554 1568 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
21:17:50.0570 1568 ErrDev - ok
21:17:50.0648 1568 ewusbnet (6150c602fc0aad1177e1adc4bad0aafd) C:\Windows\system32\DRIVERS\ewusbnet.sys
21:17:50.0648 1568 ewusbnet - ok
21:17:50.0663 1568 ew_hwusbdev - ok
21:17:50.0710 1568 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
21:17:50.0726 1568 exfat - ok
21:17:50.0772 1568 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
21:17:50.0788 1568 fastfat - ok
21:17:50.0835 1568 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
21:17:50.0850 1568 fdc - ok
21:17:50.0866 1568 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
21:17:50.0882 1568 FileInfo - ok
21:17:50.0913 1568 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
21:17:50.0928 1568 Filetrace - ok
21:17:50.0960 1568 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
21:17:50.0975 1568 flpydisk - ok
21:17:51.0022 1568 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
21:17:51.0022 1568 FltMgr - ok
21:17:51.0069 1568 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
21:17:51.0084 1568 Fs_Rec - ok
21:17:51.0116 1568 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
21:17:51.0131 1568 FwLnk - ok
21:17:51.0162 1568 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
21:17:51.0162 1568 gagp30kx - ok
21:17:51.0272 1568 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
21:17:51.0318 1568 HdAudAddService - ok
21:17:51.0365 1568 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:17:51.0381 1568 HDAudBus - ok
21:17:51.0428 1568 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
21:17:51.0459 1568 HidBth - ok
21:17:51.0490 1568 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
21:17:51.0537 1568 HidIr - ok
21:17:51.0568 1568 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
21:17:51.0584 1568 HidUsb - ok
21:17:51.0615 1568 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
21:17:51.0630 1568 HpCISSs - ok
21:17:51.0677 1568 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
21:17:51.0693 1568 HTTP - ok
21:17:51.0708 1568 huawei_enumerator - ok
21:17:51.0755 1568 hwdatacard (19e6885a061011d8dabe8f64498423fa) C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:17:51.0771 1568 hwdatacard - ok
21:17:51.0818 1568 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
21:17:51.0818 1568 i2omp - ok
21:17:51.0864 1568 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
21:17:51.0880 1568 i8042prt - ok
21:17:51.0927 1568 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
21:17:51.0927 1568 iaStor - ok
21:17:51.0989 1568 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
21:17:51.0989 1568 iaStorV - ok
21:17:52.0098 1568 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys
21:17:52.0145 1568 igfx - ok
21:17:52.0254 1568 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
21:17:52.0270 1568 iirsp - ok
21:17:52.0364 1568 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
21:17:52.0410 1568 IntcAzAudAddService - ok
21:17:52.0535 1568 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
21:17:52.0535 1568 intelide - ok
21:17:52.0566 1568 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
21:17:52.0582 1568 intelppm - ok
21:17:52.0629 1568 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:17:52.0644 1568 IpFilterDriver - ok
21:17:52.0660 1568 IpInIp - ok
21:17:52.0691 1568 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
21:17:52.0722 1568 IPMIDRV - ok
21:17:52.0738 1568 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
21:17:52.0769 1568 IPNAT - ok
21:17:52.0800 1568 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
21:17:52.0816 1568 IRENUM - ok
21:17:52.0847 1568 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
21:17:52.0847 1568 isapnp - ok
21:17:52.0878 1568 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
21:17:52.0894 1568 iScsiPrt - ok
21:17:52.0925 1568 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
21:17:52.0941 1568 iteatapi - ok
21:17:52.0956 1568 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
21:17:52.0972 1568 iteraid - ok
21:17:53.0003 1568 jswpslwf (11ad410f41af42ba12e63187e3ec141a) C:\Windows\system32\DRIVERS\jswpslwf.sys
21:17:53.0003 1568 jswpslwf - ok
21:17:53.0050 1568 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
21:17:53.0050 1568 kbdclass - ok
21:17:53.0081 1568 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
21:17:53.0097 1568 kbdhid - ok
21:17:53.0190 1568 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
21:17:53.0222 1568 KSecDD - ok
21:17:53.0268 1568 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
21:17:53.0284 1568 lltdio - ok
21:17:53.0315 1568 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
21:17:53.0331 1568 LSI_FC - ok
21:17:53.0409 1568 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
21:17:53.0424 1568 LSI_SAS - ok
21:17:53.0440 1568 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
21:17:53.0456 1568 LSI_SCSI - ok
21:17:53.0471 1568 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
21:17:53.0487 1568 luafv - ok
21:17:53.0534 1568 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
21:17:53.0534 1568 MBAMProtector - ok
21:17:53.0580 1568 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
21:17:53.0580 1568 megasas - ok
21:17:53.0612 1568 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
21:17:53.0627 1568 MegaSR - ok
21:17:53.0752 1568 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
21:17:53.0783 1568 Modem - ok
21:17:53.0799 1568 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
21:17:53.0814 1568 monitor - ok
21:17:53.0830 1568 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
21:17:53.0846 1568 mouclass - ok
21:17:53.0877 1568 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
21:17:53.0892 1568 mouhid - ok
21:17:53.0908 1568 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
21:17:53.0908 1568 MountMgr - ok
21:17:53.0939 1568 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
21:17:53.0955 1568 mpio - ok
21:17:53.0970 1568 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
21:17:53.0986 1568 mpsdrv - ok
21:17:54.0033 1568 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
21:17:54.0048 1568 Mraid35x - ok
21:17:54.0080 1568 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
21:17:54.0095 1568 MRxDAV - ok
21:17:54.0126 1568 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:17:54.0142 1568 mrxsmb - ok
21:17:54.0173 1568 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:17:54.0189 1568 mrxsmb10 - ok
21:17:54.0220 1568 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:17:54.0236 1568 mrxsmb20 - ok
21:17:54.0298 1568 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
21:17:54.0314 1568 msahci - ok
21:17:54.0329 1568 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
21:17:54.0329 1568 msdsm - ok
21:17:54.0360 1568 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
21:17:54.0392 1568 Msfs - ok
21:17:54.0423 1568 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
21:17:54.0438 1568 msisadrv - ok
21:17:54.0470 1568 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
21:17:54.0485 1568 MSKSSRV - ok
21:17:54.0501 1568 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
21:17:54.0532 1568 MSPCLOCK - ok
21:17:54.0548 1568 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
21:17:54.0579 1568 MSPQM - ok
21:17:54.0610 1568 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
21:17:54.0626 1568 MsRPC - ok
21:17:54.0657 1568 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
21:17:54.0672 1568 mssmbios - ok
21:17:54.0704 1568 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
21:17:54.0719 1568 MSTEE - ok
21:17:54.0750 1568 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
21:17:54.0766 1568 Mup - ok
21:17:54.0813 1568 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
21:17:54.0813 1568 NativeWifiP - ok
21:17:54.0860 1568 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
21:17:54.0891 1568 NDIS - ok
21:17:54.0969 1568 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
21:17:54.0984 1568 NdisTapi - ok
21:17:55.0016 1568 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
21:17:55.0031 1568 Ndisuio - ok
21:17:55.0062 1568 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:17:55.0078 1568 NdisWan - ok
21:17:55.0156 1568 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
21:17:55.0172 1568 NDProxy - ok
21:17:55.0187 1568 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
21:17:55.0218 1568 NetBIOS - ok
21:17:55.0250 1568 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
21:17:55.0281 1568 netbt - ok
21:17:55.0328 1568 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
21:17:55.0328 1568 nfrd960 - ok
21:17:55.0374 1568 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
21:17:55.0390 1568 Npfs - ok
21:17:55.0406 1568 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
21:17:55.0437 1568 nsiproxy - ok
21:17:55.0499 1568 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
21:17:55.0530 1568 Ntfs - ok
21:17:55.0655 1568 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
21:17:55.0702 1568 ntrigdigi - ok
21:17:55.0733 1568 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
21:17:55.0749 1568 Null - ok
21:17:55.0780 1568 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
21:17:55.0796 1568 nvraid - ok
21:17:55.0827 1568 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
21:17:55.0827 1568 nvstor - ok
21:17:55.0858 1568 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
21:17:55.0858 1568 nv_agp - ok
21:17:55.0874 1568 NwlnkFlt - ok
21:17:55.0889 1568 NwlnkFwd - ok
21:17:55.0920 1568 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
21:17:55.0967 1568 ohci1394 - ok
21:17:55.0998 1568 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
21:17:56.0030 1568 Parport - ok
21:17:56.0076 1568 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
21:17:56.0076 1568 partmgr - ok
21:17:56.0108 1568 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
21:17:56.0154 1568 Parvdm - ok
21:17:56.0201 1568 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
21:17:56.0217 1568 pci - ok
21:17:56.0295 1568 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys
21:17:56.0295 1568 pciide - ok
21:17:56.0326 1568 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
21:17:56.0342 1568 pcmcia - ok
21:17:56.0373 1568 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
21:17:56.0435 1568 PEAUTH - ok
21:17:56.0560 1568 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
21:17:56.0576 1568 PptpMiniport - ok
21:17:56.0622 1568 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
21:17:56.0638 1568 Processor - ok
21:17:56.0685 1568 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
21:17:56.0700 1568 PSched - ok
21:17:56.0716 1568 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
21:17:56.0732 1568 PxHelp20 - ok
21:17:56.0778 1568 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
21:17:56.0810 1568 ql2300 - ok
21:17:56.0950 1568 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
21:17:56.0966 1568 ql40xx - ok
21:17:57.0012 1568 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
21:17:57.0012 1568 QWAVEdrv - ok
21:17:57.0044 1568 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
21:17:57.0059 1568 RasAcd - ok
21:17:57.0090 1568 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:17:57.0122 1568 Rasl2tp - ok
21:17:57.0153 1568 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
21:17:57.0168 1568 RasPppoe - ok
21:17:57.0200 1568 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
21:17:57.0200 1568 RasSstp - ok
21:17:57.0246 1568 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
21:17:57.0278 1568 rdbss - ok
21:17:57.0309 1568 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:17:57.0324 1568 RDPCDD - ok
21:17:57.0356 1568 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
21:17:57.0387 1568 rdpdr - ok
21:17:57.0402 1568 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
21:17:57.0418 1568 RDPENCDD - ok
21:17:57.0480 1568 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
21:17:57.0496 1568 RDPWD - ok
21:17:57.0558 1568 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
21:17:57.0590 1568 rspndr - ok
21:17:57.0636 1568 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
21:17:57.0652 1568 RTL8169 - ok
21:17:57.0668 1568 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS
21:17:57.0683 1568 RTSTOR - ok
21:17:57.0714 1568 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
21:17:57.0730 1568 sbp2port - ok
21:17:57.0761 1568 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:17:57.0808 1568 secdrv - ok
21:17:57.0839 1568 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
21:17:57.0870 1568 Serenum - ok
21:17:57.0902 1568 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
21:17:57.0933 1568 Serial - ok
21:17:57.0964 1568 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
21:17:57.0980 1568 sermouse - ok
21:17:58.0042 1568 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
21:17:58.0058 1568 sffdisk - ok
21:17:58.0089 1568 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
21:17:58.0104 1568 sffp_mmc - ok
21:17:58.0136 1568 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
21:17:58.0167 1568 sffp_sd - ok
21:17:58.0182 1568 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
21:17:58.0229 1568 sfloppy - ok
21:17:58.0260 1568 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
21:17:58.0260 1568 sisagp - ok
21:17:58.0292 1568 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
21:17:58.0292 1568 SiSRaid2 - ok
21:17:58.0323 1568 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
21:17:58.0338 1568 SiSRaid4 - ok
21:17:58.0385 1568 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
21:17:58.0401 1568 Smb - ok
21:17:58.0432 1568 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
21:17:58.0432 1568 spldr - ok
21:17:58.0494 1568 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
21:17:58.0510 1568 sptd - ok
21:17:58.0572 1568 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
21:17:58.0588 1568 srv - ok
21:17:58.0666 1568 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
21:17:58.0682 1568 srv2 - ok
21:17:58.0713 1568 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
21:17:58.0728 1568 srvnet - ok
21:17:58.0806 1568 ss_bus (bd15182e9d2d3fabc1d1313badbd2415) C:\Windows\system32\DRIVERS\ss_bus.sys
21:17:58.0822 1568 ss_bus - ok
21:17:58.0853 1568 ss_mdfl (67d1144f249a3c5e03ebd7a2304dee11) C:\Windows\system32\DRIVERS\ss_mdfl.sys
21:17:58.0869 1568 ss_mdfl - ok
21:17:58.0900 1568 ss_mdm (954b7ce2d54c703d6a8471d6b05a5e13) C:\Windows\system32\DRIVERS\ss_mdm.sys
21:17:58.0900 1568 ss_mdm - ok
21:17:58.0947 1568 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
21:17:58.0947 1568 swenum - ok
21:17:59.0009 1568 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
21:17:59.0009 1568 Symc8xx - ok
21:17:59.0040 1568 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
21:17:59.0040 1568 Sym_hi - ok
21:17:59.0150 1568 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
21:17:59.0150 1568 Sym_u3 - ok
21:17:59.0212 1568 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
21:17:59.0212 1568 SynTP - ok
21:17:59.0290 1568 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
21:17:59.0321 1568 Tcpip - ok
21:17:59.0446 1568 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
21:17:59.0477 1568 Tcpip6 - ok
21:17:59.0524 1568 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
21:17:59.0524 1568 tcpipreg - ok
21:17:59.0571 1568 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys
21:17:59.0571 1568 tdcmdpst - ok
21:17:59.0664 1568 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
21:17:59.0680 1568 TDPIPE - ok
21:17:59.0711 1568 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
21:17:59.0742 1568 TDTCP - ok
21:17:59.0820 1568 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
21:17:59.0836 1568 tdx - ok
21:17:59.0867 1568 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
21:17:59.0883 1568 TermDD - ok
21:17:59.0945 1568 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys
21:17:59.0961 1568 tos_sps32 - ok
21:18:00.0008 1568 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:18:00.0023 1568 tssecsrv - ok
21:18:00.0054 1568 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
21:18:00.0054 1568 tunmp - ok
21:18:00.0086 1568 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
21:18:00.0101 1568 tunnel - ok
21:18:00.0132 1568 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
21:18:00.0132 1568 TVALZ - ok
21:18:00.0164 1568 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
21:18:00.0179 1568 uagp35 - ok
21:18:00.0210 1568 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
21:18:00.0226 1568 udfs - ok
21:18:00.0273 1568 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
21:18:00.0273 1568 uliagpkx - ok
21:18:00.0320 1568 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
21:18:00.0320 1568 uliahci - ok
21:18:00.0351 1568 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
21:18:00.0366 1568 UlSata - ok
21:18:00.0398 1568 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
21:18:00.0398 1568 ulsata2 - ok
21:18:00.0429 1568 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
21:18:00.0444 1568 umbus - ok
21:18:00.0538 1568 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
21:18:00.0554 1568 usbccgp - ok
21:18:00.0663 1568 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
21:18:00.0694 1568 usbcir - ok
21:18:00.0741 1568 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
21:18:00.0756 1568 usbehci - ok
21:18:00.0788 1568 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
21:18:00.0803 1568 usbhub - ok
21:18:00.0850 1568 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
21:18:00.0881 1568 usbohci - ok
21:18:00.0912 1568 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
21:18:00.0944 1568 usbprint - ok
21:18:00.0990 1568 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:18:01.0006 1568 USBSTOR - ok
21:18:01.0037 1568 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
21:18:01.0053 1568 usbuhci - ok
21:18:01.0084 1568 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
21:18:01.0115 1568 usbvideo - ok
21:18:01.0131 1568 UVCFTR (237c444fbd1c697a2e3fa60f02c61f22) C:\Windows\system32\Drivers\UVCFTR_S.SYS
21:18:01.0146 1568 UVCFTR - ok
21:18:01.0178 1568 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
21:18:01.0193 1568 vga - ok
21:18:01.0209 1568 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
21:18:01.0240 1568 VgaSave - ok
21:18:01.0256 1568 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
21:18:01.0271 1568 viaagp - ok
21:18:01.0287 1568 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
21:18:01.0318 1568 ViaC7 - ok
21:18:01.0349 1568 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
21:18:01.0365 1568 viaide - ok
21:18:01.0380 1568 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
21:18:01.0396 1568 volmgr - ok
21:18:01.0427 1568 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
21:18:01.0443 1568 volmgrx - ok
21:18:01.0490 1568 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
21:18:01.0505 1568 volsnap - ok
21:18:01.0552 1568 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
21:18:01.0568 1568 vsmraid - ok
21:18:01.0614 1568 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
21:18:01.0646 1568 WacomPen - ok
21:18:01.0724 1568 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:18:01.0755 1568 Wanarp - ok
21:18:01.0770 1568 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:18:01.0786 1568 Wanarpv6 - ok
21:18:01.0817 1568 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
21:18:01.0833 1568 Wd - ok
21:18:01.0895 1568 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
21:18:01.0926 1568 Wdf01000 - ok
21:18:02.0051 1568 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
21:18:02.0067 1568 WmiAcpi - ok
21:18:02.0114 1568 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
21:18:02.0129 1568 WpdUsb - ok
21:18:02.0160 1568 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
21:18:02.0176 1568 ws2ifsl - ok
21:18:02.0223 1568 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:18:02.0254 1568 WUDFRd - ok
21:18:02.0285 1568 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
21:18:02.0582 1568 \Device\Harddisk0\DR0 - ok
21:18:02.0582 1568 Boot (0x1200) (aacee1cee14e57b13cce49a059f29507) \Device\Harddisk0\DR0\Partition0
21:18:02.0582 1568 \Device\Harddisk0\DR0\Partition0 - ok
21:18:02.0628 1568 Boot (0x1200) (ebf080b2421812ea9e366769271ca493) \Device\Harddisk0\DR0\Partition1
21:18:02.0628 1568 \Device\Harddisk0\DR0\Partition1 - ok
21:18:02.0628 1568 ============================================================
21:18:02.0628 1568 Scan finished
21:18:02.0628 1568 ============================================================
21:18:02.0644 1728 Detected object count: 0
21:18:02.0644 1728 Actual detected object count: 0
21:18:23.0657 1200 Deinitialize success

#29 Příspěvek od **vyosek** » 22 led 2012 21:41

Nespoustel jste nahodou ComboFix jeste pred tim nez jste to zacal resit tady u nas na foru

Zabalte mi obsah slozky C:\TDSSKiller_Quarantine a nekam uploadnete

Stahnete TDSS Qlook http://www.malwareinfo.nl/tools/TDSSQlook.exe

Spustte jej a dejte moznost A a odenterujte
Vznikne log TDSSQ.txt, ten sem dejte

fraha · #30 Příspěvek od **fraha** » 22 led 2012 21:53

Pokiaľ viem ja som nespúštal vedome nič, ale kamarátka vravela, že jej ho spolužiak opravoval.
TDSQ.text:
TDSSKiller Quarantine Information log
Version 1.0.0.0
***** START SCAN ne 22. 01. 2012 21:50:08,62 *****

---------- Warning! ----------
TDSSKiller Quarantine folder not found

***** END SCAN ne 22. 01. 2012 21:50:08,62 *****
- EOF -

Na C:/ TDSSKiller_Ouarantine som nenašiel

VIRY.CZ

pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek

Re: pro vyosek